openconnect-8.05/0000775000076400007640000000000013536301731015537 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/iconv.c0000664000076400007640000000402512727726520017032 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include "openconnect-internal.h" static char *convert_str(struct openconnect_info *vpninfo, iconv_t ic, char *instr) { ICONV_CONST char *ic_in; char *ic_out, *outstr; size_t insize, outsize; int addq = 0; if (ic == (iconv_t)-1) return instr; iconv(ic, NULL, NULL, NULL, NULL); insize = strlen(instr) + 1; ic_in = instr; outsize = insize; ic_out = outstr = malloc(outsize); if (!outstr) return instr; while (insize) { if (iconv(ic, &ic_in, &insize, &ic_out, &outsize) == (size_t)-1) { if (errno == EILSEQ) { do { ic_in++; insize--; } while (insize && (ic_in[0] & 0xc0) == 0x80); addq = 1; } if (!outsize || errno == E2BIG) { int outlen = ic_out - outstr; realloc_inplace(outstr, outlen + 10); if (!outstr) return instr; ic_out = outstr + outlen; outsize = 10; } else if (errno != EILSEQ) { /* Should never happen */ free(outstr); return instr; } if (addq) { addq = 0; *(ic_out++) = '?'; outsize--; } } } return outstr; } char *openconnect_legacy_to_utf8(struct openconnect_info *vpninfo, const char *legacy) { return convert_str(vpninfo, vpninfo->ic_legacy_to_utf8, (char *)legacy); } char *openconnect_utf8_to_legacy(struct openconnect_info *vpninfo, const char *utf8) { return convert_str(vpninfo, vpninfo->ic_utf8_to_legacy, (char *)utf8); } openconnect-8.05/compile0000755000076400007640000001632713250314767017132 0ustar00dwoodhoudwoodhou00000000000000#! /bin/sh # Wrapper for compilers which do not understand '-c -o'. scriptversion=2018-03-07.03; # UTC # Copyright (C) 1999-2018 Free Software Foundation, Inc. # Written by Tom Tromey . # # This program is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 2, or (at your option) # any later version. # # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program. If not, see . # As a special exception to the GNU General Public License, if you # distribute this file as part of a program that contains a # configuration script generated by Autoconf, you may include it under # the same distribution terms that you use for the rest of that program. # This file is maintained in Automake, please report # bugs to or send patches to # . nl=' ' # We need space, tab and new line, in precisely that order. Quoting is # there to prevent tools from complaining about whitespace usage. IFS=" "" $nl" file_conv= # func_file_conv build_file lazy # Convert a $build file to $host form and store it in $file # Currently only supports Windows hosts. If the determined conversion # type is listed in (the comma separated) LAZY, no conversion will # take place. func_file_conv () { file=$1 case $file in / | /[!/]*) # absolute file, and not a UNC file if test -z "$file_conv"; then # lazily determine how to convert abs files case `uname -s` in MINGW*) file_conv=mingw ;; CYGWIN*) file_conv=cygwin ;; *) file_conv=wine ;; esac fi case $file_conv/,$2, in *,$file_conv,*) ;; mingw/*) file=`cmd //C echo "$file " | sed -e 's/"\(.*\) " *$/\1/'` ;; cygwin/*) file=`cygpath -m "$file" || echo "$file"` ;; wine/*) file=`winepath -w "$file" || echo "$file"` ;; esac ;; esac } # func_cl_dashL linkdir # Make cl look for libraries in LINKDIR func_cl_dashL () { func_file_conv "$1" if test -z "$lib_path"; then lib_path=$file else lib_path="$lib_path;$file" fi linker_opts="$linker_opts -LIBPATH:$file" } # func_cl_dashl library # Do a library search-path lookup for cl func_cl_dashl () { lib=$1 found=no save_IFS=$IFS IFS=';' for dir in $lib_path $LIB do IFS=$save_IFS if $shared && test -f "$dir/$lib.dll.lib"; then found=yes lib=$dir/$lib.dll.lib break fi if test -f "$dir/$lib.lib"; then found=yes lib=$dir/$lib.lib break fi if test -f "$dir/lib$lib.a"; then found=yes lib=$dir/lib$lib.a break fi done IFS=$save_IFS if test "$found" != yes; then lib=$lib.lib fi } # func_cl_wrapper cl arg... # Adjust compile command to suit cl func_cl_wrapper () { # Assume a capable shell lib_path= shared=: linker_opts= for arg do if test -n "$eat"; then eat= else case $1 in -o) # configure might choose to run compile as 'compile cc -o foo foo.c'. eat=1 case $2 in *.o | *.[oO][bB][jJ]) func_file_conv "$2" set x "$@" -Fo"$file" shift ;; *) func_file_conv "$2" set x "$@" -Fe"$file" shift ;; esac ;; -I) eat=1 func_file_conv "$2" mingw set x "$@" -I"$file" shift ;; -I*) func_file_conv "${1#-I}" mingw set x "$@" -I"$file" shift ;; -l) eat=1 func_cl_dashl "$2" set x "$@" "$lib" shift ;; -l*) func_cl_dashl "${1#-l}" set x "$@" "$lib" shift ;; -L) eat=1 func_cl_dashL "$2" ;; -L*) func_cl_dashL "${1#-L}" ;; -static) shared=false ;; -Wl,*) arg=${1#-Wl,} save_ifs="$IFS"; IFS=',' for flag in $arg; do IFS="$save_ifs" linker_opts="$linker_opts $flag" done IFS="$save_ifs" ;; -Xlinker) eat=1 linker_opts="$linker_opts $2" ;; -*) set x "$@" "$1" shift ;; *.cc | *.CC | *.cxx | *.CXX | *.[cC]++) func_file_conv "$1" set x "$@" -Tp"$file" shift ;; *.c | *.cpp | *.CPP | *.lib | *.LIB | *.Lib | *.OBJ | *.obj | *.[oO]) func_file_conv "$1" mingw set x "$@" "$file" shift ;; *) set x "$@" "$1" shift ;; esac fi shift done if test -n "$linker_opts"; then linker_opts="-link$linker_opts" fi exec "$@" $linker_opts exit 1 } eat= case $1 in '') echo "$0: No command. Try '$0 --help' for more information." 1>&2 exit 1; ;; -h | --h*) cat <<\EOF Usage: compile [--help] [--version] PROGRAM [ARGS] Wrapper for compilers which do not understand '-c -o'. Remove '-o dest.o' from ARGS, run PROGRAM with the remaining arguments, and rename the output as expected. If you are trying to build a whole package this is not the right script to run: please start by reading the file 'INSTALL'. Report bugs to . EOF exit $? ;; -v | --v*) echo "compile $scriptversion" exit $? ;; cl | *[/\\]cl | cl.exe | *[/\\]cl.exe | \ icl | *[/\\]icl | icl.exe | *[/\\]icl.exe ) func_cl_wrapper "$@" # Doesn't return... ;; esac ofile= cfile= for arg do if test -n "$eat"; then eat= else case $1 in -o) # configure might choose to run compile as 'compile cc -o foo foo.c'. # So we strip '-o arg' only if arg is an object. eat=1 case $2 in *.o | *.obj) ofile=$2 ;; *) set x "$@" -o "$2" shift ;; esac ;; *.c) cfile=$1 set x "$@" "$1" shift ;; *) set x "$@" "$1" shift ;; esac fi shift done if test -z "$ofile" || test -z "$cfile"; then # If no '-o' option was seen then we might have been invoked from a # pattern rule where we don't need one. That is ok -- this is a # normal compilation that the losing compiler can handle. If no # '.c' file was seen then we are probably linking. That is also # ok. exec "$@" fi # Name of file we expect compiler to create. cofile=`echo "$cfile" | sed 's|^.*[\\/]||; s|^[a-zA-Z]:||; s/\.c$/.o/'` # Create the lock directory. # Note: use '[/\\:.-]' here to ensure that we don't use the same name # that we are using for the .o file. Also, base the name on the expected # object file name, since that is what matters with a parallel build. lockdir=`echo "$cofile" | sed -e 's|[/\\:.-]|_|g'`.d while true; do if mkdir "$lockdir" >/dev/null 2>&1; then break fi sleep 1 done # FIXME: race condition here if user kills between mkdir and trap. trap "rmdir '$lockdir'; exit 1" 1 2 15 # Run the compile. "$@" ret=$? if test -f "$cofile"; then test "$cofile" = "$ofile" || mv "$cofile" "$ofile" elif test -f "${cofile}bj"; then test "${cofile}bj" = "$ofile" || mv "${cofile}bj" "$ofile" fi rmdir "$lockdir" exit $ret # Local Variables: # mode: shell-script # sh-indentation: 2 # eval: (add-hook 'before-save-hook 'time-stamp) # time-stamp-start: "scriptversion=" # time-stamp-format: "%:y-%02m-%02d.%02H" # time-stamp-time-zone: "UTC0" # time-stamp-end: "; # UTC" # End: openconnect-8.05/lzo.c0000664000076400007640000001713612727726520016527 0ustar00dwoodhoudwoodhou00000000000000/* * LZO 1x decompression * Copyright (c) 2006 Reimar Doeffinger * * This file is part of FFmpeg. * * FFmpeg is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public * License as published by the Free Software Foundation; either * version 2.1 of the License, or (at your option) any later version. * * FFmpeg is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. * * You should have received a copy of the GNU Lesser General Public * License along with FFmpeg; if not, write to the Free Software * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA */ #include //#include "avutil.h" //#include "avassert.h" //#include "common.h" //#include "intreadwrite.h" #include "lzo.h" /// Define if we may write up to 12 bytes beyond the output buffer. #define OUTBUF_PADDED 1 /// Define if we may read up to 8 bytes beyond the input buffer. #define INBUF_PADDED 1 typedef struct LZOContext { const uint8_t *in, *in_end; uint8_t *out_start, *out, *out_end; int error; } LZOContext; /** * @brief Reads one byte from the input buffer, avoiding an overrun. * @return byte read */ static inline int get_byte(LZOContext *c) { if (c->in < c->in_end) return *c->in++; c->error |= AV_LZO_INPUT_DEPLETED; return 1; } #ifdef INBUF_PADDED #define GETB(c) (*(c).in++) #else #define GETB(c) get_byte(&(c)) #endif /** * @brief Decodes a length value in the coding used by lzo. * @param x previous byte value * @param mask bits used from x * @return decoded length value */ static inline int get_len(LZOContext *c, int x, int mask) { int cnt = x & mask; if (!cnt) { while (!(x = get_byte(c))) { if (cnt >= 65535) { c->error |= AV_LZO_ERROR; break; } cnt += 255; } cnt += mask + x; } return cnt; } /** * @brief Copies bytes from input to output buffer with checking. * @param cnt number of bytes to copy, must be >= 0 */ static inline void copy(LZOContext *c, int cnt) { register const uint8_t *src = c->in; register uint8_t *dst = c->out; /* Should never happen */ if (cnt < 0) { c->error |= AV_LZO_ERROR; return; } if (cnt > c->in_end - src) { cnt = FFMAX(c->in_end - src, 0); c->error |= AV_LZO_INPUT_DEPLETED; } if (cnt > c->out_end - dst) { cnt = FFMAX(c->out_end - dst, 0); c->error |= AV_LZO_OUTPUT_FULL; } #if defined(INBUF_PADDED) && defined(OUTBUF_PADDED) AV_COPY32U(dst, src); src += 4; dst += 4; cnt -= 4; if (cnt > 0) #endif memcpy(dst, src, cnt); c->in = src + cnt; c->out = dst + cnt; } /** * @brief Copies previously decoded bytes to current position. * @param back how many bytes back we start, must be > 0 * @param cnt number of bytes to copy, must be > 0 * * cnt > back is valid, this will copy the bytes we just copied, * thus creating a repeating pattern with a period length of back. */ static inline void copy_backptr(LZOContext *c, int back, int cnt) { register uint8_t *dst = c->out; if (cnt <= 0) { c->error |= AV_LZO_ERROR; return; } if (dst - c->out_start < back) { c->error |= AV_LZO_INVALID_BACKPTR; return; } if (cnt > c->out_end - dst) { cnt = FFMAX(c->out_end - dst, 0); c->error |= AV_LZO_OUTPUT_FULL; } av_memcpy_backptr(dst, back, cnt); c->out = dst + cnt; } int av_lzo1x_decode(void *out, int *outlen, const void *in, int *inlen) { int state = 0; int x; LZOContext c; if (*outlen <= 0 || *inlen <= 0) { int res = 0; if (*outlen <= 0) res |= AV_LZO_OUTPUT_FULL; if (*inlen <= 0) res |= AV_LZO_INPUT_DEPLETED; return res; } c.in = in; c.in_end = (const uint8_t *)in + *inlen; c.out = c.out_start = out; c.out_end = (uint8_t *)out + *outlen; c.error = 0; x = GETB(c); if (x > 17) { copy(&c, x - 17); x = GETB(c); if (x < 16) c.error |= AV_LZO_ERROR; } if (c.in > c.in_end) c.error |= AV_LZO_INPUT_DEPLETED; while (!c.error) { int cnt, back; if (x > 15) { if (x > 63) { /* cccbbbnn BBBBBBBB */ cnt = (x >> 5) - 1; back = (GETB(c) << 3) + ((x >> 2) & 7) + 1; } else if (x > 31) { /* 001ccccc (cccccccc...) bbbbbbnn BBBBBBBB */ cnt = get_len(&c, x, 31); x = GETB(c); back = (GETB(c) << 6) + (x >> 2) + 1; } else { /* 0001bccc (cccccccc...) bbbbbbnn BBBBBBBB */ cnt = get_len(&c, x, 7); back = (1 << 14) + ((x & 8) << 11); x = GETB(c); back += (GETB(c) << 6) + (x >> 2); if (back == (1 << 14)) { if (cnt != 1) c.error |= AV_LZO_ERROR; break; } } } else if (!state) { /* 0000llll (llllllll...) { literal... } ( 0000bbnn BBBBBBBB ) */ cnt = get_len(&c, x, 15); copy(&c, cnt + 3); x = GETB(c); if (x > 15) continue; cnt = 1; back = (1 << 11) + (GETB(c) << 2) + (x >> 2) + 1; } else { /* 0000bbnn BBBBBBBB ) */ cnt = 0; back = (GETB(c) << 2) + (x >> 2) + 1; } copy_backptr(&c, back, cnt + 2); state = cnt = x & 3; copy(&c, cnt); x = GETB(c); } *inlen = c.in_end - c.in; if (c.in > c.in_end) *inlen = 0; *outlen = c.out_end - c.out; return c.error; } #ifdef TEST #include #include #include "log.h" #define MAXSZ (10*1024*1024) /* Define one of these to 1 if you wish to benchmark liblzo * instead of our native implementation. */ #define BENCHMARK_LIBLZO_SAFE 0 #define BENCHMARK_LIBLZO_UNSAFE 0 int main(int argc, char *argv[]) { FILE *in = fopen(argv[1], "rb"); int comp_level = argc > 2 ? atoi(argv[2]) : 0; uint8_t *orig = av_malloc(MAXSZ + 16); uint8_t *comp = av_malloc(2*MAXSZ + 16); uint8_t *decomp = av_malloc(MAXSZ + 16); size_t s = fread(orig, 1, MAXSZ, in); lzo_uint clen = 0; long tmp[LZO1X_MEM_COMPRESS]; int inlen, outlen; int i; av_log_set_level(AV_LOG_DEBUG); if (comp_level == 0) { lzo1x_1_compress(orig, s, comp, &clen, tmp); } else if (comp_level == 11) { lzo1x_1_11_compress(orig, s, comp, &clen, tmp); } else if (comp_level == 12) { lzo1x_1_12_compress(orig, s, comp, &clen, tmp); } else if (comp_level == 15) { lzo1x_1_15_compress(orig, s, comp, &clen, tmp); } else lzo1x_999_compress(orig, s, comp, &clen, tmp); for (i = 0; i < 300; i++) { START_TIMER inlen = clen; outlen = MAXSZ; #if BENCHMARK_LIBLZO_SAFE if (lzo1x_decompress_safe(comp, inlen, decomp, &outlen, NULL)) #elif BENCHMARK_LIBLZO_UNSAFE if (lzo1x_decompress(comp, inlen, decomp, &outlen, NULL)) #else if (av_lzo1x_decode(decomp, &outlen, comp, &inlen)) #endif av_log(NULL, AV_LOG_ERROR, "decompression error\n"); STOP_TIMER("lzod") } if (memcmp(orig, decomp, s)) av_log(NULL, AV_LOG_ERROR, "decompression incorrect\n"); else av_log(NULL, AV_LOG_ERROR, "decompression OK\n"); fclose(in); return 0; } #endif openconnect-8.05/http-auth.c0000664000076400007640000002430113352672003017620 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include #include #include #include #include #include "openconnect-internal.h" /* Ick. Yet another wheel to reinvent. But although we could pull it in from OpenSSL, we can't from GnuTLS */ static inline int b64_char(char c) { if (c >= 'A' && c <= 'Z') return c - 'A'; if (c >= 'a' && c <= 'z') return c - 'a' + 26; if (c >= '0' && c <= '9') return c - '0' + 52; if (c == '+') return 62; if (c == '/') return 63; return -1; } void *openconnect_base64_decode(int *ret_len, const char *in) { unsigned char *buf; int b[4]; int len = strlen(in); if (len & 3) { *ret_len = -EINVAL; return NULL; } len = (len * 3) / 4; buf = malloc(len); if (!buf) { *ret_len = -ENOMEM; return NULL; } len = 0; while (*in) { if (!in[1] || !in[2] || !in[3]) goto err; b[0] = b64_char(in[0]); b[1] = b64_char(in[1]); if (b[0] < 0 || b[1] < 0) goto err; buf[len++] = (b[0] << 2) | (b[1] >> 4); if (in[2] == '=') { if (in[3] != '=' || in[4] != 0) goto err; break; } b[2] = b64_char(in[2]); if (b[2] < 0) goto err; buf[len++] = (b[1] << 4) | (b[2] >> 2); if (in[3] == '=') { if (in[4] != 0) goto err; break; } b[3] = b64_char(in[3]); if (b[3] < 0) goto err; buf[len++] = (b[2] << 6) | b[3]; in += 4; } *ret_len = len; return buf; err: free(buf); *ret_len = -EINVAL; return NULL; } static const char b64_table[] = { 'A', 'B', 'C', 'D', 'E', 'F', 'G', 'H', 'I', 'J', 'K', 'L', 'M', 'N', 'O', 'P', 'Q', 'R', 'S', 'T', 'U', 'V', 'W', 'X', 'Y', 'Z', 'a', 'b', 'c', 'd', 'e', 'f', 'g', 'h', 'i', 'j', 'k', 'l', 'm', 'n', 'o', 'p', 'q', 'r', 's', 't', 'u', 'v', 'w', 'x', 'y', 'z', '0', '1', '2', '3', '4', '5', '6', '7', '8', '9', '+', '/' }; void buf_append_base64(struct oc_text_buf *buf, const void *bytes, int len) { const unsigned char *in = bytes; int hibits; if (!buf || buf->error) return; if (buf_ensure_space(buf, (4 * (len + 2) / 3) + 1)) return; while (len > 0) { buf->data[buf->pos++] = b64_table[in[0] >> 2]; hibits = (in[0] << 4) & 0x30; if (len == 1) { buf->data[buf->pos++] = b64_table[hibits]; buf->data[buf->pos++] = '='; buf->data[buf->pos++] = '='; break; } buf->data[buf->pos++] = b64_table[hibits | (in[1] >> 4)]; hibits = (in[1] << 2) & 0x3c; if (len == 2) { buf->data[buf->pos++] = b64_table[hibits]; buf->data[buf->pos++] = '='; break; } buf->data[buf->pos++] = b64_table[hibits | (in[2] >> 6)]; buf->data[buf->pos++] = b64_table[in[2] & 0x3f]; in += 3; len -= 3; } buf->data[buf->pos] = 0; } static int basic_authorization(struct openconnect_info *vpninfo, int proxy, struct http_auth_state *auth_state, struct oc_text_buf *hdrbuf) { struct oc_text_buf *text; const char *user, *pass; if (proxy) { user = vpninfo->proxy_user; pass = vpninfo->proxy_pass; } else { /* Need to parse this out of the URL */ return -EINVAL; } if (!user || !pass) return -EINVAL; if (auth_state->state == AUTH_IN_PROGRESS) { auth_state->state = AUTH_FAILED; return -EAGAIN; } text = buf_alloc(); buf_append(text, "%s:%s", user, pass); if (buf_error(text)) return buf_free(text); buf_append(hdrbuf, "%sAuthorization: Basic ", proxy ? "Proxy-" : ""); buf_append_base64(hdrbuf, text->data, text->pos); buf_append(hdrbuf, "\r\n"); memset(text->data, 0, text->pos); buf_free(text); if (proxy) vpn_progress(vpninfo, PRG_INFO, _("Attempting HTTP Basic authentication to proxy\n")); else vpn_progress(vpninfo, PRG_INFO, _("Attempting HTTP Basic authentication to server '%s'\n"), vpninfo->hostname); auth_state->state = AUTH_IN_PROGRESS; return 0; } #if !defined(HAVE_GSSAPI) && !defined(_WIN32) static int no_gssapi_authorization(struct openconnect_info *vpninfo, int proxy, struct http_auth_state *auth_state, struct oc_text_buf *hdrbuf) { /* This comes last so just complain. We're about to bail. */ vpn_progress(vpninfo, PRG_ERR, _("This version of OpenConnect was built without GSSAPI support\n")); auth_state->state = AUTH_FAILED; return -ENOENT; } #endif struct auth_method { int state_index; const char *name; int (*authorization)(struct openconnect_info *, int, struct http_auth_state *, struct oc_text_buf *); void (*cleanup)(struct openconnect_info *, struct http_auth_state *); } auth_methods[] = { #if defined(HAVE_GSSAPI) || defined(_WIN32) { AUTH_TYPE_GSSAPI, "Negotiate", gssapi_authorization, cleanup_gssapi_auth }, #endif { AUTH_TYPE_NTLM, "NTLM", ntlm_authorization, cleanup_ntlm_auth }, { AUTH_TYPE_DIGEST, "Digest", digest_authorization, NULL }, { AUTH_TYPE_BASIC, "Basic", basic_authorization, NULL }, #if !defined(HAVE_GSSAPI) && !defined(_WIN32) { AUTH_TYPE_GSSAPI, "Negotiate", no_gssapi_authorization, NULL } #endif }; /* Generate Proxy-Authorization: header for request if appropriate */ int gen_authorization_hdr(struct openconnect_info *vpninfo, int proxy, struct oc_text_buf *buf) { int ret; int i; for (i = 0; i < sizeof(auth_methods) / sizeof(auth_methods[0]); i++) { struct http_auth_state *auth_state; if (proxy) auth_state = &vpninfo->proxy_auth[auth_methods[i].state_index]; else auth_state = &vpninfo->http_auth[auth_methods[i].state_index]; if (auth_state->state == AUTH_DEFAULT_DISABLED) { if (proxy) vpn_progress(vpninfo, PRG_ERR, _("Proxy requested Basic authentication which is disabled by default\n")); else vpn_progress(vpninfo, PRG_ERR, _("Server '%s' requested Basic authentication which is disabled by default\n"), vpninfo->hostname); auth_state->state = AUTH_FAILED; return -EINVAL; } if (auth_state->state > AUTH_UNSEEN) { ret = auth_methods[i].authorization(vpninfo, proxy, auth_state, buf); if (ret == -EAGAIN || !ret) return ret; } } vpn_progress(vpninfo, PRG_INFO, _("No more authentication methods to try\n")); if (vpninfo->retry_on_auth_fail) { /* Try again without the X-Support-HTTP-Auth: header */ vpninfo->try_http_auth = 0; return 0; } return -ENOENT; } /* Returns non-zero if it matched */ static int handle_auth_proto(struct openconnect_info *vpninfo, struct http_auth_state *auth_states, struct auth_method *method, char *hdr) { struct http_auth_state *auth = &auth_states[method->state_index]; int l = strlen(method->name); if (auth->state <= AUTH_FAILED) return 0; if (strncmp(method->name, hdr, l)) return 0; if (hdr[l] != ' ' && hdr[l] != 0) return 0; if (auth->state == AUTH_UNSEEN) auth->state = AUTH_AVAILABLE; free(auth->challenge); if (hdr[l]) auth->challenge = strdup(hdr + l + 1); else auth->challenge = NULL; return 1; } int proxy_auth_hdrs(struct openconnect_info *vpninfo, char *hdr, char *val) { int i; if (!strcasecmp(hdr, "Proxy-Connection") || !strcasecmp(hdr, "Connection")) { if (!strcasecmp(val, "close")) vpninfo->proxy_close_during_auth = 1; return 0; } if (strcasecmp(hdr, "Proxy-Authenticate")) return 0; for (i = 0; i < sizeof(auth_methods) / sizeof(auth_methods[0]); i++) { /* Return once we've found a match */ if (handle_auth_proto(vpninfo, vpninfo->proxy_auth, &auth_methods[i], val)) return 0; } return 0; } int http_auth_hdrs(struct openconnect_info *vpninfo, char *hdr, char *val) { int i; if (!strcasecmp(hdr, "X-HTTP-Auth-Support") && !strcasecmp(val, "fallback")) { vpninfo->retry_on_auth_fail = 1; return 0; } if (strcasecmp(hdr, "WWW-Authenticate")) return 0; for (i = 0; i < sizeof(auth_methods) / sizeof(auth_methods[0]); i++) { /* Return once we've found a match */ if (handle_auth_proto(vpninfo, vpninfo->http_auth, &auth_methods[i], val)) return 0; } return 0; } void clear_auth_states(struct openconnect_info *vpninfo, struct http_auth_state *auth_states, int reset) { int i; for (i = 0; i < sizeof(auth_methods) / sizeof(auth_methods[0]); i++) { struct http_auth_state *auth = &auth_states[auth_methods[i].state_index]; /* The 'reset' argument is set when we're connected successfully, to fully reset the state to allow another connection to start again. Otherwise, we need to remember which auth methods have been tried and should not be attempted again. */ if (reset && auth_methods[i].cleanup) auth_methods[i].cleanup(vpninfo, auth); free(auth->challenge); auth->challenge = NULL; /* If it *failed* don't try it again even next time */ if (auth->state <= AUTH_FAILED) continue; if (reset || auth->state == AUTH_AVAILABLE) auth->state = AUTH_UNSEEN; } } static int set_authmethods(struct openconnect_info *vpninfo, struct http_auth_state *auth_states, const char *methods) { int i, len; const char *p; for (i = 0; i < sizeof(auth_methods) / sizeof(auth_methods[0]); i++) auth_states[auth_methods[i].state_index].state = AUTH_DISABLED; while (methods) { p = strchr(methods, ','); if (p) { len = p - methods; p++; } else len = strlen(methods); for (i = 0; i < sizeof(auth_methods) / sizeof(auth_methods[0]); i++) { if (strprefix_match(methods, len, auth_methods[i].name) || (auth_methods[i].state_index == AUTH_TYPE_GSSAPI && strprefix_match(methods, len, "gssapi"))) { auth_states[auth_methods[i].state_index].state = AUTH_UNSEEN; break; } } methods = p; } return 0; } int openconnect_set_http_auth(struct openconnect_info *vpninfo, const char *methods) { return set_authmethods(vpninfo, vpninfo->http_auth, methods); } int openconnect_set_proxy_auth(struct openconnect_info *vpninfo, const char *methods) { return set_authmethods(vpninfo, vpninfo->proxy_auth, methods); } openconnect-8.05/COPYING.LGPL0000664000076400007640000006350211415625247017342 0ustar00dwoodhoudwoodhou00000000000000 GNU LESSER GENERAL PUBLIC LICENSE Version 2.1, February 1999 Copyright (C) 1991, 1999 Free Software Foundation, Inc. 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA Everyone is permitted to copy and distribute verbatim copies of this license document, but changing it is not allowed. [This is the first released version of the Lesser GPL. It also counts as the successor of the GNU Library Public License, version 2, hence the version number 2.1.] Preamble The licenses for most software are designed to take away your freedom to share and change it. By contrast, the GNU General Public Licenses are intended to guarantee your freedom to share and change free software--to make sure the software is free for all its users. This license, the Lesser General Public License, applies to some specially designated software packages--typically libraries--of the Free Software Foundation and other authors who decide to use it. You can use it too, but we suggest you first think carefully about whether this license or the ordinary General Public License is the better strategy to use in any particular case, based on the explanations below. When we speak of free software, we are referring to freedom of use, not price. Our General Public Licenses are designed to make sure that you have the freedom to distribute copies of free software (and charge for this service if you wish); that you receive source code or can get it if you want it; that you can change the software and use pieces of it in new free programs; and that you are informed that you can do these things. To protect your rights, we need to make restrictions that forbid distributors to deny you these rights or to ask you to surrender these rights. These restrictions translate to certain responsibilities for you if you distribute copies of the library or if you modify it. For example, if you distribute copies of the library, whether gratis or for a fee, you must give the recipients all the rights that we gave you. You must make sure that they, too, receive or can get the source code. If you link other code with the library, you must provide complete object files to the recipients, so that they can relink them with the library after making changes to the library and recompiling it. And you must show them these terms so they know their rights. We protect your rights with a two-step method: (1) we copyright the library, and (2) we offer you this license, which gives you legal permission to copy, distribute and/or modify the library. To protect each distributor, we want to make it very clear that there is no warranty for the free library. Also, if the library is modified by someone else and passed on, the recipients should know that what they have is not the original version, so that the original author's reputation will not be affected by problems that might be introduced by others. Finally, software patents pose a constant threat to the existence of any free program. We wish to make sure that a company cannot effectively restrict the users of a free program by obtaining a restrictive license from a patent holder. Therefore, we insist that any patent license obtained for a version of the library must be consistent with the full freedom of use specified in this license. Most GNU software, including some libraries, is covered by the ordinary GNU General Public License. This license, the GNU Lesser General Public License, applies to certain designated libraries, and is quite different from the ordinary General Public License. We use this license for certain libraries in order to permit linking those libraries into non-free programs. When a program is linked with a library, whether statically or using a shared library, the combination of the two is legally speaking a combined work, a derivative of the original library. The ordinary General Public License therefore permits such linking only if the entire combination fits its criteria of freedom. The Lesser General Public License permits more lax criteria for linking other code with the library. We call this license the "Lesser" General Public License because it does Less to protect the user's freedom than the ordinary General Public License. It also provides other free software developers Less of an advantage over competing non-free programs. These disadvantages are the reason we use the ordinary General Public License for many libraries. However, the Lesser license provides advantages in certain special circumstances. For example, on rare occasions, there may be a special need to encourage the widest possible use of a certain library, so that it becomes a de-facto standard. To achieve this, non-free programs must be allowed to use the library. A more frequent case is that a free library does the same job as widely used non-free libraries. In this case, there is little to gain by limiting the free library to free software only, so we use the Lesser General Public License. In other cases, permission to use a particular library in non-free programs enables a greater number of people to use a large body of free software. For example, permission to use the GNU C Library in non-free programs enables many more people to use the whole GNU operating system, as well as its variant, the GNU/Linux operating system. Although the Lesser General Public License is Less protective of the users' freedom, it does ensure that the user of a program that is linked with the Library has the freedom and the wherewithal to run that program using a modified version of the Library. The precise terms and conditions for copying, distribution and modification follow. Pay close attention to the difference between a "work based on the library" and a "work that uses the library". The former contains code derived from the library, whereas the latter must be combined with the library in order to run. GNU LESSER GENERAL PUBLIC LICENSE TERMS AND CONDITIONS FOR COPYING, DISTRIBUTION AND MODIFICATION 0. This License Agreement applies to any software library or other program which contains a notice placed by the copyright holder or other authorized party saying it may be distributed under the terms of this Lesser General Public License (also called "this License"). Each licensee is addressed as "you". A "library" means a collection of software functions and/or data prepared so as to be conveniently linked with application programs (which use some of those functions and data) to form executables. The "Library", below, refers to any such software library or work which has been distributed under these terms. A "work based on the Library" means either the Library or any derivative work under copyright law: that is to say, a work containing the Library or a portion of it, either verbatim or with modifications and/or translated straightforwardly into another language. (Hereinafter, translation is included without limitation in the term "modification".) "Source code" for a work means the preferred form of the work for making modifications to it. For a library, complete source code means all the source code for all modules it contains, plus any associated interface definition files, plus the scripts used to control compilation and installation of the library. Activities other than copying, distribution and modification are not covered by this License; they are outside its scope. The act of running a program using the Library is not restricted, and output from such a program is covered only if its contents constitute a work based on the Library (independent of the use of the Library in a tool for writing it). Whether that is true depends on what the Library does and what the program that uses the Library does. 1. You may copy and distribute verbatim copies of the Library's complete source code as you receive it, in any medium, provided that you conspicuously and appropriately publish on each copy an appropriate copyright notice and disclaimer of warranty; keep intact all the notices that refer to this License and to the absence of any warranty; and distribute a copy of this License along with the Library. You may charge a fee for the physical act of transferring a copy, and you may at your option offer warranty protection in exchange for a fee. 2. You may modify your copy or copies of the Library or any portion of it, thus forming a work based on the Library, and copy and distribute such modifications or work under the terms of Section 1 above, provided that you also meet all of these conditions: a) The modified work must itself be a software library. b) You must cause the files modified to carry prominent notices stating that you changed the files and the date of any change. c) You must cause the whole of the work to be licensed at no charge to all third parties under the terms of this License. d) If a facility in the modified Library refers to a function or a table of data to be supplied by an application program that uses the facility, other than as an argument passed when the facility is invoked, then you must make a good faith effort to ensure that, in the event an application does not supply such function or table, the facility still operates, and performs whatever part of its purpose remains meaningful. (For example, a function in a library to compute square roots has a purpose that is entirely well-defined independent of the application. Therefore, Subsection 2d requires that any application-supplied function or table used by this function must be optional: if the application does not supply it, the square root function must still compute square roots.) These requirements apply to the modified work as a whole. If identifiable sections of that work are not derived from the Library, and can be reasonably considered independent and separate works in themselves, then this License, and its terms, do not apply to those sections when you distribute them as separate works. But when you distribute the same sections as part of a whole which is a work based on the Library, the distribution of the whole must be on the terms of this License, whose permissions for other licensees extend to the entire whole, and thus to each and every part regardless of who wrote it. Thus, it is not the intent of this section to claim rights or contest your rights to work written entirely by you; rather, the intent is to exercise the right to control the distribution of derivative or collective works based on the Library. In addition, mere aggregation of another work not based on the Library with the Library (or with a work based on the Library) on a volume of a storage or distribution medium does not bring the other work under the scope of this License. 3. You may opt to apply the terms of the ordinary GNU General Public License instead of this License to a given copy of the Library. To do this, you must alter all the notices that refer to this License, so that they refer to the ordinary GNU General Public License, version 2, instead of to this License. (If a newer version than version 2 of the ordinary GNU General Public License has appeared, then you can specify that version instead if you wish.) Do not make any other change in these notices. Once this change is made in a given copy, it is irreversible for that copy, so the ordinary GNU General Public License applies to all subsequent copies and derivative works made from that copy. This option is useful when you wish to copy part of the code of the Library into a program that is not a library. 4. You may copy and distribute the Library (or a portion or derivative of it, under Section 2) in object code or executable form under the terms of Sections 1 and 2 above provided that you accompany it with the complete corresponding machine-readable source code, which must be distributed under the terms of Sections 1 and 2 above on a medium customarily used for software interchange. If distribution of object code is made by offering access to copy from a designated place, then offering equivalent access to copy the source code from the same place satisfies the requirement to distribute the source code, even though third parties are not compelled to copy the source along with the object code. 5. A program that contains no derivative of any portion of the Library, but is designed to work with the Library by being compiled or linked with it, is called a "work that uses the Library". Such a work, in isolation, is not a derivative work of the Library, and therefore falls outside the scope of this License. However, linking a "work that uses the Library" with the Library creates an executable that is a derivative of the Library (because it contains portions of the Library), rather than a "work that uses the library". The executable is therefore covered by this License. Section 6 states terms for distribution of such executables. When a "work that uses the Library" uses material from a header file that is part of the Library, the object code for the work may be a derivative work of the Library even though the source code is not. Whether this is true is especially significant if the work can be linked without the Library, or if the work is itself a library. The threshold for this to be true is not precisely defined by law. If such an object file uses only numerical parameters, data structure layouts and accessors, and small macros and small inline functions (ten lines or less in length), then the use of the object file is unrestricted, regardless of whether it is legally a derivative work. (Executables containing this object code plus portions of the Library will still fall under Section 6.) Otherwise, if the work is a derivative of the Library, you may distribute the object code for the work under the terms of Section 6. Any executables containing that work also fall under Section 6, whether or not they are linked directly with the Library itself. 6. As an exception to the Sections above, you may also combine or link a "work that uses the Library" with the Library to produce a work containing portions of the Library, and distribute that work under terms of your choice, provided that the terms permit modification of the work for the customer's own use and reverse engineering for debugging such modifications. You must give prominent notice with each copy of the work that the Library is used in it and that the Library and its use are covered by this License. You must supply a copy of this License. If the work during execution displays copyright notices, you must include the copyright notice for the Library among them, as well as a reference directing the user to the copy of this License. Also, you must do one of these things: a) Accompany the work with the complete corresponding machine-readable source code for the Library including whatever changes were used in the work (which must be distributed under Sections 1 and 2 above); and, if the work is an executable linked with the Library, with the complete machine-readable "work that uses the Library", as object code and/or source code, so that the user can modify the Library and then relink to produce a modified executable containing the modified Library. (It is understood that the user who changes the contents of definitions files in the Library will not necessarily be able to recompile the application to use the modified definitions.) b) Use a suitable shared library mechanism for linking with the Library. A suitable mechanism is one that (1) uses at run time a copy of the library already present on the user's computer system, rather than copying library functions into the executable, and (2) will operate properly with a modified version of the library, if the user installs one, as long as the modified version is interface-compatible with the version that the work was made with. c) Accompany the work with a written offer, valid for at least three years, to give the same user the materials specified in Subsection 6a, above, for a charge no more than the cost of performing this distribution. d) If distribution of the work is made by offering access to copy from a designated place, offer equivalent access to copy the above specified materials from the same place. e) Verify that the user has already received a copy of these materials or that you have already sent this user a copy. For an executable, the required form of the "work that uses the Library" must include any data and utility programs needed for reproducing the executable from it. However, as a special exception, the materials to be distributed need not include anything that is normally distributed (in either source or binary form) with the major components (compiler, kernel, and so on) of the operating system on which the executable runs, unless that component itself accompanies the executable. It may happen that this requirement contradicts the license restrictions of other proprietary libraries that do not normally accompany the operating system. Such a contradiction means you cannot use both them and the Library together in an executable that you distribute. 7. You may place library facilities that are a work based on the Library side-by-side in a single library together with other library facilities not covered by this License, and distribute such a combined library, provided that the separate distribution of the work based on the Library and of the other library facilities is otherwise permitted, and provided that you do these two things: a) Accompany the combined library with a copy of the same work based on the Library, uncombined with any other library facilities. This must be distributed under the terms of the Sections above. b) Give prominent notice with the combined library of the fact that part of it is a work based on the Library, and explaining where to find the accompanying uncombined form of the same work. 8. You may not copy, modify, sublicense, link with, or distribute the Library except as expressly provided under this License. Any attempt otherwise to copy, modify, sublicense, link with, or distribute the Library is void, and will automatically terminate your rights under this License. However, parties who have received copies, or rights, from you under this License will not have their licenses terminated so long as such parties remain in full compliance. 9. You are not required to accept this License, since you have not signed it. However, nothing else grants you permission to modify or distribute the Library or its derivative works. These actions are prohibited by law if you do not accept this License. Therefore, by modifying or distributing the Library (or any work based on the Library), you indicate your acceptance of this License to do so, and all its terms and conditions for copying, distributing or modifying the Library or works based on it. 10. Each time you redistribute the Library (or any work based on the Library), the recipient automatically receives a license from the original licensor to copy, distribute, link with or modify the Library subject to these terms and conditions. You may not impose any further restrictions on the recipients' exercise of the rights granted herein. You are not responsible for enforcing compliance by third parties with this License. 11. If, as a consequence of a court judgment or allegation of patent infringement or for any other reason (not limited to patent issues), conditions are imposed on you (whether by court order, agreement or otherwise) that contradict the conditions of this License, they do not excuse you from the conditions of this License. If you cannot distribute so as to satisfy simultaneously your obligations under this License and any other pertinent obligations, then as a consequence you may not distribute the Library at all. For example, if a patent license would not permit royalty-free redistribution of the Library by all those who receive copies directly or indirectly through you, then the only way you could satisfy both it and this License would be to refrain entirely from distribution of the Library. If any portion of this section is held invalid or unenforceable under any particular circumstance, the balance of the section is intended to apply, and the section as a whole is intended to apply in other circumstances. It is not the purpose of this section to induce you to infringe any patents or other property right claims or to contest validity of any such claims; this section has the sole purpose of protecting the integrity of the free software distribution system which is implemented by public license practices. Many people have made generous contributions to the wide range of software distributed through that system in reliance on consistent application of that system; it is up to the author/donor to decide if he or she is willing to distribute software through any other system and a licensee cannot impose that choice. This section is intended to make thoroughly clear what is believed to be a consequence of the rest of this License. 12. If the distribution and/or use of the Library is restricted in certain countries either by patents or by copyrighted interfaces, the original copyright holder who places the Library under this License may add an explicit geographical distribution limitation excluding those countries, so that distribution is permitted only in or among countries not thus excluded. In such case, this License incorporates the limitation as if written in the body of this License. 13. The Free Software Foundation may publish revised and/or new versions of the Lesser General Public License from time to time. Such new versions will be similar in spirit to the present version, but may differ in detail to address new problems or concerns. Each version is given a distinguishing version number. If the Library specifies a version number of this License which applies to it and "any later version", you have the option of following the terms and conditions either of that version or of any later version published by the Free Software Foundation. If the Library does not specify a license version number, you may choose any version ever published by the Free Software Foundation. 14. If you wish to incorporate parts of the Library into other free programs whose distribution conditions are incompatible with these, write to the author to ask for permission. For software which is copyrighted by the Free Software Foundation, write to the Free Software Foundation; we sometimes make exceptions for this. Our decision will be guided by the two goals of preserving the free status of all derivatives of our free software and of promoting the sharing and reuse of software generally. NO WARRANTY 15. BECAUSE THE LIBRARY IS LICENSED FREE OF CHARGE, THERE IS NO WARRANTY FOR THE LIBRARY, TO THE EXTENT PERMITTED BY APPLICABLE LAW. EXCEPT WHEN OTHERWISE STATED IN WRITING THE COPYRIGHT HOLDERS AND/OR OTHER PARTIES PROVIDE THE LIBRARY "AS IS" WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESSED OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. THE ENTIRE RISK AS TO THE QUALITY AND PERFORMANCE OF THE LIBRARY IS WITH YOU. SHOULD THE LIBRARY PROVE DEFECTIVE, YOU ASSUME THE COST OF ALL NECESSARY SERVICING, REPAIR OR CORRECTION. 16. IN NO EVENT UNLESS REQUIRED BY APPLICABLE LAW OR AGREED TO IN WRITING WILL ANY COPYRIGHT HOLDER, OR ANY OTHER PARTY WHO MAY MODIFY AND/OR REDISTRIBUTE THE LIBRARY AS PERMITTED ABOVE, BE LIABLE TO YOU FOR DAMAGES, INCLUDING ANY GENERAL, SPECIAL, INCIDENTAL OR CONSEQUENTIAL DAMAGES ARISING OUT OF THE USE OR INABILITY TO USE THE LIBRARY (INCLUDING BUT NOT LIMITED TO LOSS OF DATA OR DATA BEING RENDERED INACCURATE OR LOSSES SUSTAINED BY YOU OR THIRD PARTIES OR A FAILURE OF THE LIBRARY TO OPERATE WITH ANY OTHER SOFTWARE), EVEN IF SUCH HOLDER OR OTHER PARTY HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. END OF TERMS AND CONDITIONS How to Apply These Terms to Your New Libraries If you develop a new library, and you want it to be of the greatest possible use to the public, we recommend making it free software that everyone can redistribute and change. You can do so by permitting redistribution under these terms (or, alternatively, under the terms of the ordinary General Public License). To apply these terms, attach the following notices to the library. It is safest to attach them to the start of each source file to most effectively convey the exclusion of warranty; and each file should have at least the "copyright" line and a pointer to where the full notice is found. Copyright (C) This library is free software; you can redistribute it and/or modify it under the terms of the GNU Lesser General Public License as published by the Free Software Foundation; either version 2.1 of the License, or (at your option) any later version. This library is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU Lesser General Public License for more details. You should have received a copy of the GNU Lesser General Public License along with this library; if not, write to the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA Also add information on how to contact you by electronic and paper mail. You should also get your employer (if you work as a programmer) or your school, if any, to sign a "copyright disclaimer" for the library, if necessary. Here is a sample; alter the names: Yoyodyne, Inc., hereby disclaims all copyright interest in the library `Frob' (a library for tweaking knobs) written by James Random Hacker. , 1 April 1990 Ty Coon, President of Vice That's all there is to it! openconnect-8.05/depcomp0000755000076400007640000005602013250314767017123 0ustar00dwoodhoudwoodhou00000000000000#! /bin/sh # depcomp - compile a program generating dependencies as side-effects scriptversion=2018-03-07.03; # UTC # Copyright (C) 1999-2018 Free Software Foundation, Inc. # This program is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 2, or (at your option) # any later version. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # You should have received a copy of the GNU General Public License # along with this program. If not, see . # As a special exception to the GNU General Public License, if you # distribute this file as part of a program that contains a # configuration script generated by Autoconf, you may include it under # the same distribution terms that you use for the rest of that program. # Originally written by Alexandre Oliva . case $1 in '') echo "$0: No command. Try '$0 --help' for more information." 1>&2 exit 1; ;; -h | --h*) cat <<\EOF Usage: depcomp [--help] [--version] PROGRAM [ARGS] Run PROGRAMS ARGS to compile a file, generating dependencies as side-effects. Environment variables: depmode Dependency tracking mode. source Source file read by 'PROGRAMS ARGS'. object Object file output by 'PROGRAMS ARGS'. DEPDIR directory where to store dependencies. depfile Dependency file to output. tmpdepfile Temporary file to use when outputting dependencies. libtool Whether libtool is used (yes/no). Report bugs to . EOF exit $? ;; -v | --v*) echo "depcomp $scriptversion" exit $? ;; esac # Get the directory component of the given path, and save it in the # global variables '$dir'. Note that this directory component will # be either empty or ending with a '/' character. This is deliberate. set_dir_from () { case $1 in */*) dir=`echo "$1" | sed -e 's|/[^/]*$|/|'`;; *) dir=;; esac } # Get the suffix-stripped basename of the given path, and save it the # global variable '$base'. set_base_from () { base=`echo "$1" | sed -e 's|^.*/||' -e 's/\.[^.]*$//'` } # If no dependency file was actually created by the compiler invocation, # we still have to create a dummy depfile, to avoid errors with the # Makefile "include basename.Plo" scheme. make_dummy_depfile () { echo "#dummy" > "$depfile" } # Factor out some common post-processing of the generated depfile. # Requires the auxiliary global variable '$tmpdepfile' to be set. aix_post_process_depfile () { # If the compiler actually managed to produce a dependency file, # post-process it. if test -f "$tmpdepfile"; then # Each line is of the form 'foo.o: dependency.h'. # Do two passes, one to just change these to # $object: dependency.h # and one to simply output # dependency.h: # which is needed to avoid the deleted-header problem. { sed -e "s,^.*\.[$lower]*:,$object:," < "$tmpdepfile" sed -e "s,^.*\.[$lower]*:[$tab ]*,," -e 's,$,:,' < "$tmpdepfile" } > "$depfile" rm -f "$tmpdepfile" else make_dummy_depfile fi } # A tabulation character. tab=' ' # A newline character. nl=' ' # Character ranges might be problematic outside the C locale. # These definitions help. upper=ABCDEFGHIJKLMNOPQRSTUVWXYZ lower=abcdefghijklmnopqrstuvwxyz digits=0123456789 alpha=${upper}${lower} if test -z "$depmode" || test -z "$source" || test -z "$object"; then echo "depcomp: Variables source, object and depmode must be set" 1>&2 exit 1 fi # Dependencies for sub/bar.o or sub/bar.obj go into sub/.deps/bar.Po. depfile=${depfile-`echo "$object" | sed 's|[^\\/]*$|'${DEPDIR-.deps}'/&|;s|\.\([^.]*\)$|.P\1|;s|Pobj$|Po|'`} tmpdepfile=${tmpdepfile-`echo "$depfile" | sed 's/\.\([^.]*\)$/.T\1/'`} rm -f "$tmpdepfile" # Avoid interferences from the environment. gccflag= dashmflag= # Some modes work just like other modes, but use different flags. We # parameterize here, but still list the modes in the big case below, # to make depend.m4 easier to write. Note that we *cannot* use a case # here, because this file can only contain one case statement. if test "$depmode" = hp; then # HP compiler uses -M and no extra arg. gccflag=-M depmode=gcc fi if test "$depmode" = dashXmstdout; then # This is just like dashmstdout with a different argument. dashmflag=-xM depmode=dashmstdout fi cygpath_u="cygpath -u -f -" if test "$depmode" = msvcmsys; then # This is just like msvisualcpp but w/o cygpath translation. # Just convert the backslash-escaped backslashes to single forward # slashes to satisfy depend.m4 cygpath_u='sed s,\\\\,/,g' depmode=msvisualcpp fi if test "$depmode" = msvc7msys; then # This is just like msvc7 but w/o cygpath translation. # Just convert the backslash-escaped backslashes to single forward # slashes to satisfy depend.m4 cygpath_u='sed s,\\\\,/,g' depmode=msvc7 fi if test "$depmode" = xlc; then # IBM C/C++ Compilers xlc/xlC can output gcc-like dependency information. gccflag=-qmakedep=gcc,-MF depmode=gcc fi case "$depmode" in gcc3) ## gcc 3 implements dependency tracking that does exactly what ## we want. Yay! Note: for some reason libtool 1.4 doesn't like ## it if -MD -MP comes after the -MF stuff. Hmm. ## Unfortunately, FreeBSD c89 acceptance of flags depends upon ## the command line argument order; so add the flags where they ## appear in depend2.am. Note that the slowdown incurred here ## affects only configure: in makefiles, %FASTDEP% shortcuts this. for arg do case $arg in -c) set fnord "$@" -MT "$object" -MD -MP -MF "$tmpdepfile" "$arg" ;; *) set fnord "$@" "$arg" ;; esac shift # fnord shift # $arg done "$@" stat=$? if test $stat -ne 0; then rm -f "$tmpdepfile" exit $stat fi mv "$tmpdepfile" "$depfile" ;; gcc) ## Note that this doesn't just cater to obsosete pre-3.x GCC compilers. ## but also to in-use compilers like IMB xlc/xlC and the HP C compiler. ## (see the conditional assignment to $gccflag above). ## There are various ways to get dependency output from gcc. Here's ## why we pick this rather obscure method: ## - Don't want to use -MD because we'd like the dependencies to end ## up in a subdir. Having to rename by hand is ugly. ## (We might end up doing this anyway to support other compilers.) ## - The DEPENDENCIES_OUTPUT environment variable makes gcc act like ## -MM, not -M (despite what the docs say). Also, it might not be ## supported by the other compilers which use the 'gcc' depmode. ## - Using -M directly means running the compiler twice (even worse ## than renaming). if test -z "$gccflag"; then gccflag=-MD, fi "$@" -Wp,"$gccflag$tmpdepfile" stat=$? if test $stat -ne 0; then rm -f "$tmpdepfile" exit $stat fi rm -f "$depfile" echo "$object : \\" > "$depfile" # The second -e expression handles DOS-style file names with drive # letters. sed -e 's/^[^:]*: / /' \ -e 's/^['$alpha']:\/[^:]*: / /' < "$tmpdepfile" >> "$depfile" ## This next piece of magic avoids the "deleted header file" problem. ## The problem is that when a header file which appears in a .P file ## is deleted, the dependency causes make to die (because there is ## typically no way to rebuild the header). We avoid this by adding ## dummy dependencies for each header file. Too bad gcc doesn't do ## this for us directly. ## Some versions of gcc put a space before the ':'. On the theory ## that the space means something, we add a space to the output as ## well. hp depmode also adds that space, but also prefixes the VPATH ## to the object. Take care to not repeat it in the output. ## Some versions of the HPUX 10.20 sed can't process this invocation ## correctly. Breaking it into two sed invocations is a workaround. tr ' ' "$nl" < "$tmpdepfile" \ | sed -e 's/^\\$//' -e '/^$/d' -e "s|.*$object$||" -e '/:$/d' \ | sed -e 's/$/ :/' >> "$depfile" rm -f "$tmpdepfile" ;; hp) # This case exists only to let depend.m4 do its work. It works by # looking at the text of this script. This case will never be run, # since it is checked for above. exit 1 ;; sgi) if test "$libtool" = yes; then "$@" "-Wp,-MDupdate,$tmpdepfile" else "$@" -MDupdate "$tmpdepfile" fi stat=$? if test $stat -ne 0; then rm -f "$tmpdepfile" exit $stat fi rm -f "$depfile" if test -f "$tmpdepfile"; then # yes, the sourcefile depend on other files echo "$object : \\" > "$depfile" # Clip off the initial element (the dependent). Don't try to be # clever and replace this with sed code, as IRIX sed won't handle # lines with more than a fixed number of characters (4096 in # IRIX 6.2 sed, 8192 in IRIX 6.5). We also remove comment lines; # the IRIX cc adds comments like '#:fec' to the end of the # dependency line. tr ' ' "$nl" < "$tmpdepfile" \ | sed -e 's/^.*\.o://' -e 's/#.*$//' -e '/^$/ d' \ | tr "$nl" ' ' >> "$depfile" echo >> "$depfile" # The second pass generates a dummy entry for each header file. tr ' ' "$nl" < "$tmpdepfile" \ | sed -e 's/^.*\.o://' -e 's/#.*$//' -e '/^$/ d' -e 's/$/:/' \ >> "$depfile" else make_dummy_depfile fi rm -f "$tmpdepfile" ;; xlc) # This case exists only to let depend.m4 do its work. It works by # looking at the text of this script. This case will never be run, # since it is checked for above. exit 1 ;; aix) # The C for AIX Compiler uses -M and outputs the dependencies # in a .u file. In older versions, this file always lives in the # current directory. Also, the AIX compiler puts '$object:' at the # start of each line; $object doesn't have directory information. # Version 6 uses the directory in both cases. set_dir_from "$object" set_base_from "$object" if test "$libtool" = yes; then tmpdepfile1=$dir$base.u tmpdepfile2=$base.u tmpdepfile3=$dir.libs/$base.u "$@" -Wc,-M else tmpdepfile1=$dir$base.u tmpdepfile2=$dir$base.u tmpdepfile3=$dir$base.u "$@" -M fi stat=$? if test $stat -ne 0; then rm -f "$tmpdepfile1" "$tmpdepfile2" "$tmpdepfile3" exit $stat fi for tmpdepfile in "$tmpdepfile1" "$tmpdepfile2" "$tmpdepfile3" do test -f "$tmpdepfile" && break done aix_post_process_depfile ;; tcc) # tcc (Tiny C Compiler) understand '-MD -MF file' since version 0.9.26 # FIXME: That version still under development at the moment of writing. # Make that this statement remains true also for stable, released # versions. # It will wrap lines (doesn't matter whether long or short) with a # trailing '\', as in: # # foo.o : \ # foo.c \ # foo.h \ # # It will put a trailing '\' even on the last line, and will use leading # spaces rather than leading tabs (at least since its commit 0394caf7 # "Emit spaces for -MD"). "$@" -MD -MF "$tmpdepfile" stat=$? if test $stat -ne 0; then rm -f "$tmpdepfile" exit $stat fi rm -f "$depfile" # Each non-empty line is of the form 'foo.o : \' or ' dep.h \'. # We have to change lines of the first kind to '$object: \'. sed -e "s|.*:|$object :|" < "$tmpdepfile" > "$depfile" # And for each line of the second kind, we have to emit a 'dep.h:' # dummy dependency, to avoid the deleted-header problem. sed -n -e 's|^ *\(.*\) *\\$|\1:|p' < "$tmpdepfile" >> "$depfile" rm -f "$tmpdepfile" ;; ## The order of this option in the case statement is important, since the ## shell code in configure will try each of these formats in the order ## listed in this file. A plain '-MD' option would be understood by many ## compilers, so we must ensure this comes after the gcc and icc options. pgcc) # Portland's C compiler understands '-MD'. # Will always output deps to 'file.d' where file is the root name of the # source file under compilation, even if file resides in a subdirectory. # The object file name does not affect the name of the '.d' file. # pgcc 10.2 will output # foo.o: sub/foo.c sub/foo.h # and will wrap long lines using '\' : # foo.o: sub/foo.c ... \ # sub/foo.h ... \ # ... set_dir_from "$object" # Use the source, not the object, to determine the base name, since # that's sadly what pgcc will do too. set_base_from "$source" tmpdepfile=$base.d # For projects that build the same source file twice into different object # files, the pgcc approach of using the *source* file root name can cause # problems in parallel builds. Use a locking strategy to avoid stomping on # the same $tmpdepfile. lockdir=$base.d-lock trap " echo '$0: caught signal, cleaning up...' >&2 rmdir '$lockdir' exit 1 " 1 2 13 15 numtries=100 i=$numtries while test $i -gt 0; do # mkdir is a portable test-and-set. if mkdir "$lockdir" 2>/dev/null; then # This process acquired the lock. "$@" -MD stat=$? # Release the lock. rmdir "$lockdir" break else # If the lock is being held by a different process, wait # until the winning process is done or we timeout. while test -d "$lockdir" && test $i -gt 0; do sleep 1 i=`expr $i - 1` done fi i=`expr $i - 1` done trap - 1 2 13 15 if test $i -le 0; then echo "$0: failed to acquire lock after $numtries attempts" >&2 echo "$0: check lockdir '$lockdir'" >&2 exit 1 fi if test $stat -ne 0; then rm -f "$tmpdepfile" exit $stat fi rm -f "$depfile" # Each line is of the form `foo.o: dependent.h', # or `foo.o: dep1.h dep2.h \', or ` dep3.h dep4.h \'. # Do two passes, one to just change these to # `$object: dependent.h' and one to simply `dependent.h:'. sed "s,^[^:]*:,$object :," < "$tmpdepfile" > "$depfile" # Some versions of the HPUX 10.20 sed can't process this invocation # correctly. Breaking it into two sed invocations is a workaround. sed 's,^[^:]*: \(.*\)$,\1,;s/^\\$//;/^$/d;/:$/d' < "$tmpdepfile" \ | sed -e 's/$/ :/' >> "$depfile" rm -f "$tmpdepfile" ;; hp2) # The "hp" stanza above does not work with aCC (C++) and HP's ia64 # compilers, which have integrated preprocessors. The correct option # to use with these is +Maked; it writes dependencies to a file named # 'foo.d', which lands next to the object file, wherever that # happens to be. # Much of this is similar to the tru64 case; see comments there. set_dir_from "$object" set_base_from "$object" if test "$libtool" = yes; then tmpdepfile1=$dir$base.d tmpdepfile2=$dir.libs/$base.d "$@" -Wc,+Maked else tmpdepfile1=$dir$base.d tmpdepfile2=$dir$base.d "$@" +Maked fi stat=$? if test $stat -ne 0; then rm -f "$tmpdepfile1" "$tmpdepfile2" exit $stat fi for tmpdepfile in "$tmpdepfile1" "$tmpdepfile2" do test -f "$tmpdepfile" && break done if test -f "$tmpdepfile"; then sed -e "s,^.*\.[$lower]*:,$object:," "$tmpdepfile" > "$depfile" # Add 'dependent.h:' lines. sed -ne '2,${ s/^ *// s/ \\*$// s/$/:/ p }' "$tmpdepfile" >> "$depfile" else make_dummy_depfile fi rm -f "$tmpdepfile" "$tmpdepfile2" ;; tru64) # The Tru64 compiler uses -MD to generate dependencies as a side # effect. 'cc -MD -o foo.o ...' puts the dependencies into 'foo.o.d'. # At least on Alpha/Redhat 6.1, Compaq CCC V6.2-504 seems to put # dependencies in 'foo.d' instead, so we check for that too. # Subdirectories are respected. set_dir_from "$object" set_base_from "$object" if test "$libtool" = yes; then # Libtool generates 2 separate objects for the 2 libraries. These # two compilations output dependencies in $dir.libs/$base.o.d and # in $dir$base.o.d. We have to check for both files, because # one of the two compilations can be disabled. We should prefer # $dir$base.o.d over $dir.libs/$base.o.d because the latter is # automatically cleaned when .libs/ is deleted, while ignoring # the former would cause a distcleancheck panic. tmpdepfile1=$dir$base.o.d # libtool 1.5 tmpdepfile2=$dir.libs/$base.o.d # Likewise. tmpdepfile3=$dir.libs/$base.d # Compaq CCC V6.2-504 "$@" -Wc,-MD else tmpdepfile1=$dir$base.d tmpdepfile2=$dir$base.d tmpdepfile3=$dir$base.d "$@" -MD fi stat=$? if test $stat -ne 0; then rm -f "$tmpdepfile1" "$tmpdepfile2" "$tmpdepfile3" exit $stat fi for tmpdepfile in "$tmpdepfile1" "$tmpdepfile2" "$tmpdepfile3" do test -f "$tmpdepfile" && break done # Same post-processing that is required for AIX mode. aix_post_process_depfile ;; msvc7) if test "$libtool" = yes; then showIncludes=-Wc,-showIncludes else showIncludes=-showIncludes fi "$@" $showIncludes > "$tmpdepfile" stat=$? grep -v '^Note: including file: ' "$tmpdepfile" if test $stat -ne 0; then rm -f "$tmpdepfile" exit $stat fi rm -f "$depfile" echo "$object : \\" > "$depfile" # The first sed program below extracts the file names and escapes # backslashes for cygpath. The second sed program outputs the file # name when reading, but also accumulates all include files in the # hold buffer in order to output them again at the end. This only # works with sed implementations that can handle large buffers. sed < "$tmpdepfile" -n ' /^Note: including file: *\(.*\)/ { s//\1/ s/\\/\\\\/g p }' | $cygpath_u | sort -u | sed -n ' s/ /\\ /g s/\(.*\)/'"$tab"'\1 \\/p s/.\(.*\) \\/\1:/ H $ { s/.*/'"$tab"'/ G p }' >> "$depfile" echo >> "$depfile" # make sure the fragment doesn't end with a backslash rm -f "$tmpdepfile" ;; msvc7msys) # This case exists only to let depend.m4 do its work. It works by # looking at the text of this script. This case will never be run, # since it is checked for above. exit 1 ;; #nosideeffect) # This comment above is used by automake to tell side-effect # dependency tracking mechanisms from slower ones. dashmstdout) # Important note: in order to support this mode, a compiler *must* # always write the preprocessed file to stdout, regardless of -o. "$@" || exit $? # Remove the call to Libtool. if test "$libtool" = yes; then while test "X$1" != 'X--mode=compile'; do shift done shift fi # Remove '-o $object'. IFS=" " for arg do case $arg in -o) shift ;; $object) shift ;; *) set fnord "$@" "$arg" shift # fnord shift # $arg ;; esac done test -z "$dashmflag" && dashmflag=-M # Require at least two characters before searching for ':' # in the target name. This is to cope with DOS-style filenames: # a dependency such as 'c:/foo/bar' could be seen as target 'c' otherwise. "$@" $dashmflag | sed "s|^[$tab ]*[^:$tab ][^:][^:]*:[$tab ]*|$object: |" > "$tmpdepfile" rm -f "$depfile" cat < "$tmpdepfile" > "$depfile" # Some versions of the HPUX 10.20 sed can't process this sed invocation # correctly. Breaking it into two sed invocations is a workaround. tr ' ' "$nl" < "$tmpdepfile" \ | sed -e 's/^\\$//' -e '/^$/d' -e '/:$/d' \ | sed -e 's/$/ :/' >> "$depfile" rm -f "$tmpdepfile" ;; dashXmstdout) # This case only exists to satisfy depend.m4. It is never actually # run, as this mode is specially recognized in the preamble. exit 1 ;; makedepend) "$@" || exit $? # Remove any Libtool call if test "$libtool" = yes; then while test "X$1" != 'X--mode=compile'; do shift done shift fi # X makedepend shift cleared=no eat=no for arg do case $cleared in no) set ""; shift cleared=yes ;; esac if test $eat = yes; then eat=no continue fi case "$arg" in -D*|-I*) set fnord "$@" "$arg"; shift ;; # Strip any option that makedepend may not understand. Remove # the object too, otherwise makedepend will parse it as a source file. -arch) eat=yes ;; -*|$object) ;; *) set fnord "$@" "$arg"; shift ;; esac done obj_suffix=`echo "$object" | sed 's/^.*\././'` touch "$tmpdepfile" ${MAKEDEPEND-makedepend} -o"$obj_suffix" -f"$tmpdepfile" "$@" rm -f "$depfile" # makedepend may prepend the VPATH from the source file name to the object. # No need to regex-escape $object, excess matching of '.' is harmless. sed "s|^.*\($object *:\)|\1|" "$tmpdepfile" > "$depfile" # Some versions of the HPUX 10.20 sed can't process the last invocation # correctly. Breaking it into two sed invocations is a workaround. sed '1,2d' "$tmpdepfile" \ | tr ' ' "$nl" \ | sed -e 's/^\\$//' -e '/^$/d' -e '/:$/d' \ | sed -e 's/$/ :/' >> "$depfile" rm -f "$tmpdepfile" "$tmpdepfile".bak ;; cpp) # Important note: in order to support this mode, a compiler *must* # always write the preprocessed file to stdout. "$@" || exit $? # Remove the call to Libtool. if test "$libtool" = yes; then while test "X$1" != 'X--mode=compile'; do shift done shift fi # Remove '-o $object'. IFS=" " for arg do case $arg in -o) shift ;; $object) shift ;; *) set fnord "$@" "$arg" shift # fnord shift # $arg ;; esac done "$@" -E \ | sed -n -e '/^# [0-9][0-9]* "\([^"]*\)".*/ s:: \1 \\:p' \ -e '/^#line [0-9][0-9]* "\([^"]*\)".*/ s:: \1 \\:p' \ | sed '$ s: \\$::' > "$tmpdepfile" rm -f "$depfile" echo "$object : \\" > "$depfile" cat < "$tmpdepfile" >> "$depfile" sed < "$tmpdepfile" '/^$/d;s/^ //;s/ \\$//;s/$/ :/' >> "$depfile" rm -f "$tmpdepfile" ;; msvisualcpp) # Important note: in order to support this mode, a compiler *must* # always write the preprocessed file to stdout. "$@" || exit $? # Remove the call to Libtool. if test "$libtool" = yes; then while test "X$1" != 'X--mode=compile'; do shift done shift fi IFS=" " for arg do case "$arg" in -o) shift ;; $object) shift ;; "-Gm"|"/Gm"|"-Gi"|"/Gi"|"-ZI"|"/ZI") set fnord "$@" shift shift ;; *) set fnord "$@" "$arg" shift shift ;; esac done "$@" -E 2>/dev/null | sed -n '/^#line [0-9][0-9]* "\([^"]*\)"/ s::\1:p' | $cygpath_u | sort -u > "$tmpdepfile" rm -f "$depfile" echo "$object : \\" > "$depfile" sed < "$tmpdepfile" -n -e 's% %\\ %g' -e '/^\(.*\)$/ s::'"$tab"'\1 \\:p' >> "$depfile" echo "$tab" >> "$depfile" sed < "$tmpdepfile" -n -e 's% %\\ %g' -e '/^\(.*\)$/ s::\1\::p' >> "$depfile" rm -f "$tmpdepfile" ;; msvcmsys) # This case exists only to let depend.m4 do its work. It works by # looking at the text of this script. This case will never be run, # since it is checked for above. exit 1 ;; none) exec "$@" ;; *) echo "Unknown depmode $depmode" 1>&2 exit 1 ;; esac exit 0 # Local Variables: # mode: shell-script # sh-indentation: 2 # eval: (add-hook 'before-save-hook 'time-stamp) # time-stamp-start: "scriptversion=" # time-stamp-format: "%:y-%02m-%02d.%02H" # time-stamp-time-zone: "UTC0" # time-stamp-end: "; # UTC" # End: openconnect-8.05/ABOUT-NLS0000644000076400007640000026713312424411475017002 0ustar00dwoodhoudwoodhou000000000000001 Notes on the Free Translation Project *************************************** Free software is going international! The Free Translation Project is a way to get maintainers of free software, translators, and users all together, so that free software will gradually become able to speak many languages. A few packages already provide translations for their messages. If you found this `ABOUT-NLS' file inside a distribution, you may assume that the distributed package does use GNU `gettext' internally, itself available at your nearest GNU archive site. But you do _not_ need to install GNU `gettext' prior to configuring, installing or using this package with messages translated. Installers will find here some useful hints. These notes also explain how users should proceed for getting the programs to use the available translations. They tell how people wanting to contribute and work on translations can contact the appropriate team. 1.1 INSTALL Matters =================== Some packages are "localizable" when properly installed; the programs they contain can be made to speak your own native language. Most such packages use GNU `gettext'. Other packages have their own ways to internationalization, predating GNU `gettext'. By default, this package will be installed to allow translation of messages. It will automatically detect whether the system already provides the GNU `gettext' functions. Installers may use special options at configuration time for changing the default behaviour. The command: ./configure --disable-nls will _totally_ disable translation of messages. When you already have GNU `gettext' installed on your system and run configure without an option for your new package, `configure' will probably detect the previously built and installed `libintl' library and will decide to use it. If not, you may have to to use the `--with-libintl-prefix' option to tell `configure' where to look for it. Internationalized packages usually have many `po/LL.po' files, where LL gives an ISO 639 two-letter code identifying the language. Unless translations have been forbidden at `configure' time by using the `--disable-nls' switch, all available translations are installed together with the package. However, the environment variable `LINGUAS' may be set, prior to configuration, to limit the installed set. `LINGUAS' should then contain a space separated list of two-letter codes, stating which languages are allowed. 1.2 Using This Package ====================== As a user, if your language has been installed for this package, you only have to set the `LANG' environment variable to the appropriate `LL_CC' combination. If you happen to have the `LC_ALL' or some other `LC_xxx' environment variables set, you should unset them before setting `LANG', otherwise the setting of `LANG' will not have the desired effect. Here `LL' is an ISO 639 two-letter language code, and `CC' is an ISO 3166 two-letter country code. For example, let's suppose that you speak German and live in Germany. At the shell prompt, merely execute `setenv LANG de_DE' (in `csh'), `export LANG; LANG=de_DE' (in `sh') or `export LANG=de_DE' (in `bash'). This can be done from your `.login' or `.profile' file, once and for all. You might think that the country code specification is redundant. But in fact, some languages have dialects in different countries. For example, `de_AT' is used for Austria, and `pt_BR' for Brazil. The country code serves to distinguish the dialects. The locale naming convention of `LL_CC', with `LL' denoting the language and `CC' denoting the country, is the one use on systems based on GNU libc. On other systems, some variations of this scheme are used, such as `LL' or `LL_CC.ENCODING'. You can get the list of locales supported by your system for your language by running the command `locale -a | grep '^LL''. Not all programs have translations for all languages. By default, an English message is shown in place of a nonexistent translation. If you understand other languages, you can set up a priority list of languages. This is done through a different environment variable, called `LANGUAGE'. GNU `gettext' gives preference to `LANGUAGE' over `LANG' for the purpose of message handling, but you still need to have `LANG' set to the primary language; this is required by other parts of the system libraries. For example, some Swedish users who would rather read translations in German than English for when Swedish is not available, set `LANGUAGE' to `sv:de' while leaving `LANG' to `sv_SE'. Special advice for Norwegian users: The language code for Norwegian bokma*l changed from `no' to `nb' recently (in 2003). During the transition period, while some message catalogs for this language are installed under `nb' and some older ones under `no', it's recommended for Norwegian users to set `LANGUAGE' to `nb:no' so that both newer and older translations are used. In the `LANGUAGE' environment variable, but not in the `LANG' environment variable, `LL_CC' combinations can be abbreviated as `LL' to denote the language's main dialect. For example, `de' is equivalent to `de_DE' (German as spoken in Germany), and `pt' to `pt_PT' (Portuguese as spoken in Portugal) in this context. 1.3 Translating Teams ===================== For the Free Translation Project to be a success, we need interested people who like their own language and write it well, and who are also able to synergize with other translators speaking the same language. Each translation team has its own mailing list. The up-to-date list of teams can be found at the Free Translation Project's homepage, `http://translationproject.org/', in the "Teams" area. If you'd like to volunteer to _work_ at translating messages, you should become a member of the translating team for your own language. The subscribing address is _not_ the same as the list itself, it has `-request' appended. For example, speakers of Swedish can send a message to `sv-request@li.org', having this message body: subscribe Keep in mind that team members are expected to participate _actively_ in translations, or at solving translational difficulties, rather than merely lurking around. If your team does not exist yet and you want to start one, or if you are unsure about what to do or how to get started, please write to `coordinator@translationproject.org' to reach the coordinator for all translator teams. The English team is special. It works at improving and uniformizing the terminology in use. Proven linguistic skills are praised more than programming skills, here. 1.4 Available Packages ====================== Languages are not equally supported in all packages. The following matrix shows the current state of internationalization, as of June 2010. The matrix shows, in regard of each package, for which languages PO files have been submitted to translation coordination, with a translation percentage of at least 50%. Ready PO files af am an ar as ast az be be@latin bg bn_IN bs ca +--------------------------------------------------+ a2ps | [] [] | aegis | | ant-phone | | anubis | | aspell | [] [] | bash | | bfd | | bibshelf | [] | binutils | | bison | | bison-runtime | [] | bluez-pin | [] [] | bombono-dvd | | buzztard | | cflow | | clisp | | coreutils | [] [] | cpio | | cppi | | cpplib | [] | cryptsetup | | dfarc | | dialog | [] [] | dico | | diffutils | [] | dink | | doodle | | e2fsprogs | [] | enscript | [] | exif | | fetchmail | [] | findutils | [] | flex | [] | freedink | | gas | | gawk | [] [] | gcal | [] | gcc | | gettext-examples | [] [] [] [] | gettext-runtime | [] [] | gettext-tools | [] [] | gip | [] | gjay | | gliv | [] | glunarclock | [] [] | gnubiff | | gnucash | [] | gnuedu | | gnulib | | gnunet | | gnunet-gtk | | gnutls | | gold | | gpe-aerial | | gpe-beam | | gpe-bluetooth | | gpe-calendar | | gpe-clock | [] | gpe-conf | | gpe-contacts | | gpe-edit | | gpe-filemanager | | gpe-go | | gpe-login | | gpe-ownerinfo | [] | gpe-package | | gpe-sketchbook | | gpe-su | [] | gpe-taskmanager | [] | gpe-timesheet | [] | gpe-today | [] | gpe-todo | | gphoto2 | | gprof | [] | gpsdrive | | gramadoir | | grep | | grub | [] [] | gsasl | | gss | | gst-plugins-bad | [] | gst-plugins-base | [] | gst-plugins-good | [] | gst-plugins-ugly | [] | gstreamer | [] [] [] | gtick | | gtkam | [] | gtkorphan | [] | gtkspell | [] [] [] | gutenprint | | hello | [] | help2man | | hylafax | | idutils | | indent | [] [] | iso_15924 | | iso_3166 | [] [] [] [] [] [] [] | iso_3166_2 | | iso_4217 | | iso_639 | [] [] [] [] | iso_639_3 | | jwhois | | kbd | | keytouch | [] | keytouch-editor | | keytouch-keyboa... | [] | klavaro | [] | latrine | | ld | [] | leafpad | [] [] | libc | [] [] | libexif | () | libextractor | | libgnutls | | libgpewidget | | libgpg-error | | libgphoto2 | | libgphoto2_port | | libgsasl | | libiconv | [] | libidn | | lifelines | | liferea | [] [] | lilypond | | linkdr | [] | lordsawar | | lprng | | lynx | [] | m4 | | mailfromd | | mailutils | | make | | man-db | | man-db-manpages | | minicom | | mkisofs | | myserver | | nano | [] [] | opcodes | | parted | | pies | | popt | | psmisc | | pspp | [] | pwdutils | | radius | [] | recode | [] [] | rosegarden | | rpm | | rush | | sarg | | screem | | scrollkeeper | [] [] [] | sed | [] [] | sharutils | [] [] | shishi | | skencil | | solfege | | solfege-manual | | soundtracker | | sp | | sysstat | | tar | [] | texinfo | | tin | | unicode-han-tra... | | unicode-transla... | | util-linux-ng | [] | vice | | vmm | | vorbis-tools | | wastesedge | | wdiff | | wget | [] [] | wyslij-po | | xchat | [] [] [] [] | xdg-user-dirs | [] [] [] [] [] [] [] [] [] | xkeyboard-config | [] [] | +--------------------------------------------------+ af am an ar as ast az be be@latin bg bn_IN bs ca 6 0 1 2 3 19 1 10 3 28 3 1 38 crh cs da de el en en_GB en_ZA eo es et eu fa +-------------------------------------------------+ a2ps | [] [] [] [] [] [] [] | aegis | [] [] [] | ant-phone | [] () | anubis | [] [] | aspell | [] [] [] [] [] | bash | [] [] [] | bfd | [] | bibshelf | [] [] [] | binutils | [] | bison | [] [] | bison-runtime | [] [] [] [] | bluez-pin | [] [] [] [] [] [] | bombono-dvd | [] | buzztard | [] [] [] | cflow | [] [] | clisp | [] [] [] [] | coreutils | [] [] [] [] | cpio | | cppi | | cpplib | [] [] [] | cryptsetup | [] | dfarc | [] [] [] | dialog | [] [] [] [] [] | dico | | diffutils | [] [] [] [] [] [] | dink | [] [] [] | doodle | [] | e2fsprogs | [] [] [] | enscript | [] [] [] | exif | () [] [] | fetchmail | [] [] () [] [] [] | findutils | [] [] [] | flex | [] [] | freedink | [] [] [] | gas | [] | gawk | [] [] [] | gcal | [] | gcc | [] [] | gettext-examples | [] [] [] [] | gettext-runtime | [] [] [] [] | gettext-tools | [] [] [] | gip | [] [] [] [] | gjay | [] | gliv | [] [] [] | glunarclock | [] [] | gnubiff | () | gnucash | [] () () () () | gnuedu | [] [] | gnulib | [] [] | gnunet | | gnunet-gtk | [] | gnutls | [] [] | gold | [] | gpe-aerial | [] [] [] [] | gpe-beam | [] [] [] [] | gpe-bluetooth | [] [] | gpe-calendar | [] | gpe-clock | [] [] [] [] | gpe-conf | [] [] [] | gpe-contacts | [] [] [] | gpe-edit | [] [] | gpe-filemanager | [] [] [] | gpe-go | [] [] [] [] | gpe-login | [] [] | gpe-ownerinfo | [] [] [] [] | gpe-package | [] [] [] | gpe-sketchbook | [] [] [] [] | gpe-su | [] [] [] [] | gpe-taskmanager | [] [] [] [] | gpe-timesheet | [] [] [] [] | gpe-today | [] [] [] [] | gpe-todo | [] [] [] | gphoto2 | [] [] () [] [] [] | gprof | [] [] [] | gpsdrive | [] [] [] | gramadoir | [] [] [] | grep | [] | grub | [] [] | gsasl | [] | gss | | gst-plugins-bad | [] [] [] [] [] | gst-plugins-base | [] [] [] [] [] | gst-plugins-good | [] [] [] [] [] [] | gst-plugins-ugly | [] [] [] [] [] [] | gstreamer | [] [] [] [] [] | gtick | [] () [] | gtkam | [] [] () [] [] | gtkorphan | [] [] [] [] | gtkspell | [] [] [] [] [] [] [] | gutenprint | [] [] [] | hello | [] [] [] [] | help2man | [] | hylafax | [] [] | idutils | [] [] | indent | [] [] [] [] [] [] [] | iso_15924 | [] () [] [] | iso_3166 | [] [] [] [] () [] [] [] () | iso_3166_2 | () | iso_4217 | [] [] [] () [] [] | iso_639 | [] [] [] [] () [] [] | iso_639_3 | [] | jwhois | [] | kbd | [] [] [] [] [] | keytouch | [] [] | keytouch-editor | [] [] | keytouch-keyboa... | [] | klavaro | [] [] [] [] | latrine | [] () | ld | [] [] | leafpad | [] [] [] [] [] [] | libc | [] [] [] [] | libexif | [] [] () | libextractor | | libgnutls | [] | libgpewidget | [] [] | libgpg-error | [] [] | libgphoto2 | [] () | libgphoto2_port | [] () [] | libgsasl | | libiconv | [] [] [] [] [] | libidn | [] [] [] | lifelines | [] () | liferea | [] [] [] [] [] | lilypond | [] [] [] | linkdr | [] [] [] | lordsawar | [] | lprng | | lynx | [] [] [] [] | m4 | [] [] [] [] | mailfromd | | mailutils | [] | make | [] [] [] | man-db | | man-db-manpages | | minicom | [] [] [] [] | mkisofs | | myserver | | nano | [] [] [] | opcodes | [] [] | parted | [] [] | pies | | popt | [] [] [] [] [] | psmisc | [] [] [] | pspp | [] | pwdutils | [] | radius | [] | recode | [] [] [] [] [] [] | rosegarden | () () () | rpm | [] [] [] | rush | | sarg | | screem | | scrollkeeper | [] [] [] [] [] | sed | [] [] [] [] [] [] | sharutils | [] [] [] [] | shishi | | skencil | [] () [] | solfege | [] [] [] | solfege-manual | [] [] | soundtracker | [] [] [] | sp | [] | sysstat | [] [] [] | tar | [] [] [] [] | texinfo | [] [] [] | tin | [] [] | unicode-han-tra... | | unicode-transla... | | util-linux-ng | [] [] [] [] | vice | () () | vmm | [] | vorbis-tools | [] [] | wastesedge | [] | wdiff | [] [] | wget | [] [] [] | wyslij-po | | xchat | [] [] [] [] [] | xdg-user-dirs | [] [] [] [] [] [] [] [] [] | xkeyboard-config | [] [] [] [] [] [] | +-------------------------------------------------+ crh cs da de el en en_GB en_ZA eo es et eu fa 5 64 105 117 18 1 8 0 28 89 18 19 0 fi fr ga gl gu he hi hr hu hy id is it ja ka kn +----------------------------------------------------+ a2ps | [] [] [] [] | aegis | [] [] | ant-phone | [] [] | anubis | [] [] [] [] | aspell | [] [] [] [] | bash | [] [] [] [] | bfd | [] [] [] | bibshelf | [] [] [] [] [] | binutils | [] [] [] | bison | [] [] [] [] | bison-runtime | [] [] [] [] [] [] | bluez-pin | [] [] [] [] [] [] [] [] | bombono-dvd | [] | buzztard | [] | cflow | [] [] [] | clisp | [] | coreutils | [] [] [] [] [] | cpio | [] [] [] [] | cppi | [] [] | cpplib | [] [] [] | cryptsetup | [] [] [] | dfarc | [] [] [] | dialog | [] [] [] [] [] [] [] | dico | | diffutils | [] [] [] [] [] [] [] [] [] | dink | [] | doodle | [] [] | e2fsprogs | [] [] | enscript | [] [] [] [] | exif | [] [] [] [] [] [] | fetchmail | [] [] [] [] | findutils | [] [] [] [] [] [] | flex | [] [] [] | freedink | [] [] [] | gas | [] [] | gawk | [] [] [] [] () [] | gcal | [] | gcc | [] | gettext-examples | [] [] [] [] [] [] [] | gettext-runtime | [] [] [] [] [] [] | gettext-tools | [] [] [] [] | gip | [] [] [] [] [] [] | gjay | [] | gliv | [] () | glunarclock | [] [] [] [] | gnubiff | () [] () | gnucash | () () () () () [] | gnuedu | [] [] | gnulib | [] [] [] [] [] [] | gnunet | | gnunet-gtk | [] | gnutls | [] [] | gold | [] [] | gpe-aerial | [] [] [] | gpe-beam | [] [] [] [] | gpe-bluetooth | [] [] [] [] | gpe-calendar | [] [] | gpe-clock | [] [] [] [] [] | gpe-conf | [] [] [] [] | gpe-contacts | [] [] [] [] | gpe-edit | [] [] [] | gpe-filemanager | [] [] [] [] | gpe-go | [] [] [] [] [] | gpe-login | [] [] [] | gpe-ownerinfo | [] [] [] [] [] | gpe-package | [] [] [] | gpe-sketchbook | [] [] [] [] | gpe-su | [] [] [] [] [] [] | gpe-taskmanager | [] [] [] [] [] | gpe-timesheet | [] [] [] [] [] | gpe-today | [] [] [] [] [] [] [] | gpe-todo | [] [] [] | gphoto2 | [] [] [] [] [] [] | gprof | [] [] [] [] | gpsdrive | [] [] [] | gramadoir | [] [] [] | grep | [] [] | grub | [] [] [] [] | gsasl | [] [] [] [] [] | gss | [] [] [] [] [] | gst-plugins-bad | [] [] [] [] [] [] | gst-plugins-base | [] [] [] [] [] [] | gst-plugins-good | [] [] [] [] [] [] | gst-plugins-ugly | [] [] [] [] [] [] | gstreamer | [] [] [] [] [] | gtick | [] [] [] [] [] | gtkam | [] [] [] [] [] | gtkorphan | [] [] [] | gtkspell | [] [] [] [] [] [] [] [] [] | gutenprint | [] [] [] [] | hello | [] [] [] | help2man | [] [] | hylafax | [] | idutils | [] [] [] [] [] [] | indent | [] [] [] [] [] [] [] [] | iso_15924 | [] () [] [] | iso_3166 | [] () [] [] [] [] [] [] [] [] [] [] | iso_3166_2 | () [] [] [] | iso_4217 | [] () [] [] [] [] | iso_639 | [] () [] [] [] [] [] [] [] | iso_639_3 | () [] [] | jwhois | [] [] [] [] [] | kbd | [] [] | keytouch | [] [] [] [] [] [] | keytouch-editor | [] [] [] [] [] | keytouch-keyboa... | [] [] [] [] [] | klavaro | [] [] | latrine | [] [] [] | ld | [] [] [] [] | leafpad | [] [] [] [] [] [] [] () | libc | [] [] [] [] [] | libexif | [] | libextractor | | libgnutls | [] [] | libgpewidget | [] [] [] [] | libgpg-error | [] [] | libgphoto2 | [] [] [] | libgphoto2_port | [] [] [] | libgsasl | [] [] [] [] [] | libiconv | [] [] [] [] [] [] | libidn | [] [] [] [] | lifelines | () | liferea | [] [] [] [] | lilypond | [] [] | linkdr | [] [] [] [] [] | lordsawar | | lprng | [] | lynx | [] [] [] [] [] | m4 | [] [] [] [] [] [] | mailfromd | | mailutils | [] [] | make | [] [] [] [] [] [] [] [] [] | man-db | [] [] | man-db-manpages | [] | minicom | [] [] [] [] [] | mkisofs | [] [] [] [] | myserver | | nano | [] [] [] [] [] [] | opcodes | [] [] [] [] | parted | [] [] [] [] | pies | | popt | [] [] [] [] [] [] [] [] [] | psmisc | [] [] [] | pspp | | pwdutils | [] [] | radius | [] [] | recode | [] [] [] [] [] [] [] [] | rosegarden | () () () () () | rpm | [] [] | rush | | sarg | [] | screem | [] [] | scrollkeeper | [] [] [] [] | sed | [] [] [] [] [] [] [] [] | sharutils | [] [] [] [] [] [] [] | shishi | [] | skencil | [] | solfege | [] [] [] [] | solfege-manual | [] [] | soundtracker | [] [] | sp | [] () | sysstat | [] [] [] [] [] | tar | [] [] [] [] [] [] [] | texinfo | [] [] [] [] | tin | [] | unicode-han-tra... | | unicode-transla... | [] [] | util-linux-ng | [] [] [] [] [] [] | vice | () () () | vmm | [] | vorbis-tools | [] | wastesedge | () () | wdiff | [] | wget | [] [] [] [] [] [] [] [] | wyslij-po | [] [] [] | xchat | [] [] [] [] [] [] [] [] [] | xdg-user-dirs | [] [] [] [] [] [] [] [] [] [] [] [] [] | xkeyboard-config | [] [] [] [] [] | +----------------------------------------------------+ fi fr ga gl gu he hi hr hu hy id is it ja ka kn 105 121 53 20 4 8 3 5 53 2 120 5 84 67 0 4 ko ku ky lg lt lv mk ml mn mr ms mt nb nds ne +-----------------------------------------------+ a2ps | [] | aegis | | ant-phone | | anubis | [] [] | aspell | [] | bash | | bfd | | bibshelf | [] [] | binutils | | bison | [] | bison-runtime | [] [] [] [] [] | bluez-pin | [] [] [] [] [] | bombono-dvd | | buzztard | | cflow | | clisp | | coreutils | [] | cpio | | cppi | | cpplib | | cryptsetup | | dfarc | [] | dialog | [] [] [] [] [] | dico | | diffutils | [] [] | dink | | doodle | | e2fsprogs | | enscript | | exif | [] | fetchmail | | findutils | | flex | | freedink | [] | gas | | gawk | | gcal | | gcc | | gettext-examples | [] [] [] [] | gettext-runtime | [] | gettext-tools | [] | gip | [] [] | gjay | | gliv | | glunarclock | [] | gnubiff | | gnucash | () () () () | gnuedu | | gnulib | | gnunet | | gnunet-gtk | | gnutls | [] | gold | | gpe-aerial | [] | gpe-beam | [] | gpe-bluetooth | [] [] | gpe-calendar | [] | gpe-clock | [] [] [] [] [] | gpe-conf | [] [] | gpe-contacts | [] [] | gpe-edit | [] | gpe-filemanager | [] [] | gpe-go | [] [] [] | gpe-login | [] | gpe-ownerinfo | [] [] | gpe-package | [] [] | gpe-sketchbook | [] [] | gpe-su | [] [] [] [] [] [] | gpe-taskmanager | [] [] [] [] [] [] | gpe-timesheet | [] [] | gpe-today | [] [] [] [] | gpe-todo | [] [] | gphoto2 | | gprof | [] | gpsdrive | | gramadoir | | grep | | grub | | gsasl | | gss | | gst-plugins-bad | [] [] [] [] | gst-plugins-base | [] [] | gst-plugins-good | [] [] | gst-plugins-ugly | [] [] [] [] [] | gstreamer | | gtick | | gtkam | [] | gtkorphan | [] [] | gtkspell | [] [] [] [] [] [] [] | gutenprint | | hello | [] [] [] | help2man | | hylafax | | idutils | | indent | | iso_15924 | [] [] | iso_3166 | [] [] () [] [] [] [] [] | iso_3166_2 | | iso_4217 | [] [] | iso_639 | [] [] | iso_639_3 | [] | jwhois | [] | kbd | | keytouch | [] | keytouch-editor | [] | keytouch-keyboa... | [] | klavaro | [] | latrine | [] | ld | | leafpad | [] [] [] | libc | [] | libexif | | libextractor | | libgnutls | [] | libgpewidget | [] [] | libgpg-error | | libgphoto2 | | libgphoto2_port | | libgsasl | | libiconv | | libidn | | lifelines | | liferea | | lilypond | | linkdr | | lordsawar | | lprng | | lynx | | m4 | | mailfromd | | mailutils | | make | [] | man-db | | man-db-manpages | | minicom | [] | mkisofs | | myserver | | nano | [] [] | opcodes | | parted | | pies | | popt | [] [] [] | psmisc | | pspp | | pwdutils | | radius | | recode | | rosegarden | | rpm | | rush | | sarg | | screem | | scrollkeeper | [] [] | sed | | sharutils | | shishi | | skencil | | solfege | [] | solfege-manual | | soundtracker | | sp | | sysstat | [] | tar | [] | texinfo | [] | tin | | unicode-han-tra... | | unicode-transla... | | util-linux-ng | | vice | | vmm | | vorbis-tools | | wastesedge | | wdiff | | wget | [] | wyslij-po | | xchat | [] [] [] | xdg-user-dirs | [] [] [] [] [] [] [] [] | xkeyboard-config | [] [] [] | +-----------------------------------------------+ ko ku ky lg lt lv mk ml mn mr ms mt nb nds ne 20 5 10 1 13 48 4 2 2 4 24 10 20 3 1 nl nn or pa pl ps pt pt_BR ro ru rw sk sl sq sr +---------------------------------------------------+ a2ps | [] [] [] [] [] [] [] [] | aegis | [] [] [] | ant-phone | [] [] | anubis | [] [] [] | aspell | [] [] [] [] [] | bash | [] [] | bfd | [] | bibshelf | [] [] | binutils | [] [] | bison | [] [] [] | bison-runtime | [] [] [] [] [] [] [] | bluez-pin | [] [] [] [] [] [] [] [] | bombono-dvd | [] () | buzztard | [] [] | cflow | [] | clisp | [] [] | coreutils | [] [] [] [] [] [] | cpio | [] [] [] | cppi | [] | cpplib | [] | cryptsetup | [] | dfarc | [] | dialog | [] [] [] [] | dico | [] | diffutils | [] [] [] [] [] [] | dink | () | doodle | [] [] | e2fsprogs | [] [] | enscript | [] [] [] [] [] | exif | [] [] [] () [] | fetchmail | [] [] [] [] | findutils | [] [] [] [] [] | flex | [] [] [] [] [] | freedink | [] [] | gas | | gawk | [] [] [] [] | gcal | | gcc | [] | gettext-examples | [] [] [] [] [] [] [] [] | gettext-runtime | [] [] [] [] [] [] [] [] [] | gettext-tools | [] [] [] [] [] [] | gip | [] [] [] [] [] | gjay | | gliv | [] [] [] [] [] [] | glunarclock | [] [] [] [] [] | gnubiff | [] () | gnucash | [] () () () | gnuedu | [] | gnulib | [] [] [] [] | gnunet | | gnunet-gtk | | gnutls | [] [] | gold | | gpe-aerial | [] [] [] [] [] [] [] | gpe-beam | [] [] [] [] [] [] [] | gpe-bluetooth | [] [] | gpe-calendar | [] [] [] [] | gpe-clock | [] [] [] [] [] [] [] [] | gpe-conf | [] [] [] [] [] [] [] | gpe-contacts | [] [] [] [] [] | gpe-edit | [] [] [] | gpe-filemanager | [] [] [] | gpe-go | [] [] [] [] [] [] [] [] | gpe-login | [] [] | gpe-ownerinfo | [] [] [] [] [] [] [] [] | gpe-package | [] [] | gpe-sketchbook | [] [] [] [] [] [] [] | gpe-su | [] [] [] [] [] [] [] [] | gpe-taskmanager | [] [] [] [] [] [] [] [] | gpe-timesheet | [] [] [] [] [] [] [] [] | gpe-today | [] [] [] [] [] [] [] [] | gpe-todo | [] [] [] [] [] | gphoto2 | [] [] [] [] [] [] [] [] | gprof | [] [] [] | gpsdrive | [] [] | gramadoir | [] [] | grep | [] [] [] [] | grub | [] [] [] | gsasl | [] [] [] [] | gss | [] [] [] | gst-plugins-bad | [] [] [] [] [] [] | gst-plugins-base | [] [] [] [] [] | gst-plugins-good | [] [] [] [] [] | gst-plugins-ugly | [] [] [] [] [] [] | gstreamer | [] [] [] [] [] | gtick | [] [] [] | gtkam | [] [] [] [] [] [] | gtkorphan | [] | gtkspell | [] [] [] [] [] [] [] [] [] [] | gutenprint | [] [] | hello | [] [] [] [] | help2man | [] [] | hylafax | [] | idutils | [] [] [] [] [] | indent | [] [] [] [] [] [] [] | iso_15924 | [] [] [] [] | iso_3166 | [] [] [] [] [] () [] [] [] [] [] [] [] [] | iso_3166_2 | [] [] [] | iso_4217 | [] [] [] [] [] [] [] [] | iso_639 | [] [] [] [] [] [] [] [] [] | iso_639_3 | [] [] | jwhois | [] [] [] [] | kbd | [] [] [] | keytouch | [] [] [] | keytouch-editor | [] [] [] | keytouch-keyboa... | [] [] [] | klavaro | [] [] | latrine | [] [] | ld | | leafpad | [] [] [] [] [] [] [] [] [] | libc | [] [] [] [] | libexif | [] [] () [] | libextractor | | libgnutls | [] [] | libgpewidget | [] [] [] | libgpg-error | [] [] | libgphoto2 | [] [] | libgphoto2_port | [] [] [] [] [] | libgsasl | [] [] [] [] [] | libiconv | [] [] [] [] [] | libidn | [] [] | lifelines | [] [] | liferea | [] [] [] [] [] () () [] | lilypond | [] | linkdr | [] [] [] | lordsawar | | lprng | [] | lynx | [] [] [] | m4 | [] [] [] [] [] | mailfromd | [] | mailutils | [] | make | [] [] [] [] | man-db | [] [] [] | man-db-manpages | [] [] [] | minicom | [] [] [] [] | mkisofs | [] [] [] | myserver | | nano | [] [] [] [] | opcodes | [] [] | parted | [] [] [] [] | pies | [] | popt | [] [] [] [] | psmisc | [] [] [] | pspp | [] [] | pwdutils | [] | radius | [] [] [] | recode | [] [] [] [] [] [] [] [] | rosegarden | () () | rpm | [] [] [] | rush | [] [] | sarg | | screem | | scrollkeeper | [] [] [] [] [] [] [] [] | sed | [] [] [] [] [] [] [] [] [] | sharutils | [] [] [] [] | shishi | [] | skencil | [] [] | solfege | [] [] [] [] | solfege-manual | [] [] [] | soundtracker | [] | sp | | sysstat | [] [] [] [] | tar | [] [] [] [] | texinfo | [] [] [] [] | tin | [] | unicode-han-tra... | | unicode-transla... | | util-linux-ng | [] [] [] [] [] | vice | [] | vmm | [] | vorbis-tools | [] [] | wastesedge | [] | wdiff | [] [] | wget | [] [] [] [] [] [] [] | wyslij-po | [] [] [] | xchat | [] [] [] [] [] [] [] [] [] | xdg-user-dirs | [] [] [] [] [] [] [] [] [] [] [] [] [] [] | xkeyboard-config | [] [] [] | +---------------------------------------------------+ nl nn or pa pl ps pt pt_BR ro ru rw sk sl sq sr 135 10 4 7 105 1 29 62 47 91 3 54 46 9 37 sv sw ta te tg th tr uk vi wa zh_CN zh_HK zh_TW +---------------------------------------------------+ a2ps | [] [] [] [] [] | 27 aegis | [] | 9 ant-phone | [] [] [] [] | 9 anubis | [] [] [] [] | 15 aspell | [] [] [] | 20 bash | [] [] [] | 12 bfd | [] | 6 bibshelf | [] [] [] | 16 binutils | [] [] | 8 bison | [] [] | 12 bison-runtime | [] [] [] [] [] [] | 29 bluez-pin | [] [] [] [] [] [] [] [] | 37 bombono-dvd | [] | 4 buzztard | [] | 7 cflow | [] [] [] | 9 clisp | | 10 coreutils | [] [] [] [] | 22 cpio | [] [] [] [] [] [] | 13 cppi | [] [] | 5 cpplib | [] [] [] [] [] [] | 14 cryptsetup | [] [] | 7 dfarc | [] | 9 dialog | [] [] [] [] [] [] [] | 30 dico | [] | 2 diffutils | [] [] [] [] [] [] | 30 dink | | 4 doodle | [] [] | 7 e2fsprogs | [] [] [] | 11 enscript | [] [] [] [] | 17 exif | [] [] [] | 16 fetchmail | [] [] [] | 17 findutils | [] [] [] [] [] | 20 flex | [] [] [] [] | 15 freedink | [] | 10 gas | [] | 4 gawk | [] [] [] [] | 18 gcal | [] [] | 5 gcc | [] [] [] | 7 gettext-examples | [] [] [] [] [] [] [] | 34 gettext-runtime | [] [] [] [] [] [] [] | 29 gettext-tools | [] [] [] [] [] [] | 22 gip | [] [] [] [] | 22 gjay | [] | 3 gliv | [] [] [] | 14 glunarclock | [] [] [] [] [] | 19 gnubiff | [] [] | 4 gnucash | () [] () [] () | 10 gnuedu | [] [] | 7 gnulib | [] [] [] [] | 16 gnunet | [] | 1 gnunet-gtk | [] [] [] | 5 gnutls | [] [] [] | 10 gold | [] | 4 gpe-aerial | [] [] [] | 18 gpe-beam | [] [] [] | 19 gpe-bluetooth | [] [] [] | 13 gpe-calendar | [] [] [] [] | 12 gpe-clock | [] [] [] [] [] | 28 gpe-conf | [] [] [] [] | 20 gpe-contacts | [] [] [] | 17 gpe-edit | [] [] [] | 12 gpe-filemanager | [] [] [] [] | 16 gpe-go | [] [] [] [] [] | 25 gpe-login | [] [] [] | 11 gpe-ownerinfo | [] [] [] [] [] | 25 gpe-package | [] [] [] | 13 gpe-sketchbook | [] [] [] | 20 gpe-su | [] [] [] [] [] | 30 gpe-taskmanager | [] [] [] [] [] | 29 gpe-timesheet | [] [] [] [] [] | 25 gpe-today | [] [] [] [] [] [] | 30 gpe-todo | [] [] [] [] | 17 gphoto2 | [] [] [] [] [] | 24 gprof | [] [] [] | 15 gpsdrive | [] [] [] | 11 gramadoir | [] [] [] | 11 grep | [] [] [] | 10 grub | [] [] [] | 14 gsasl | [] [] [] [] | 14 gss | [] [] [] | 11 gst-plugins-bad | [] [] [] [] | 26 gst-plugins-base | [] [] [] [] [] | 24 gst-plugins-good | [] [] [] [] | 24 gst-plugins-ugly | [] [] [] [] [] | 29 gstreamer | [] [] [] [] | 22 gtick | [] [] [] | 13 gtkam | [] [] [] | 20 gtkorphan | [] [] [] | 14 gtkspell | [] [] [] [] [] [] [] [] [] | 45 gutenprint | [] | 10 hello | [] [] [] [] [] [] | 21 help2man | [] [] | 7 hylafax | [] | 5 idutils | [] [] [] [] | 17 indent | [] [] [] [] [] [] | 30 iso_15924 | () [] () [] [] | 16 iso_3166 | [] [] () [] [] () [] [] [] () | 53 iso_3166_2 | () [] () [] | 9 iso_4217 | [] () [] [] () [] [] | 26 iso_639 | [] [] [] () [] () [] [] [] [] | 38 iso_639_3 | [] () | 8 jwhois | [] [] [] [] [] | 16 kbd | [] [] [] [] [] | 15 keytouch | [] [] [] | 16 keytouch-editor | [] [] [] | 14 keytouch-keyboa... | [] [] [] | 14 klavaro | [] | 11 latrine | [] [] [] | 10 ld | [] [] [] [] | 11 leafpad | [] [] [] [] [] [] | 33 libc | [] [] [] [] [] | 21 libexif | [] () | 7 libextractor | [] | 1 libgnutls | [] [] [] | 9 libgpewidget | [] [] [] | 14 libgpg-error | [] [] [] | 9 libgphoto2 | [] [] | 8 libgphoto2_port | [] [] [] [] | 14 libgsasl | [] [] [] | 13 libiconv | [] [] [] [] | 21 libidn | () [] [] | 11 lifelines | [] | 4 liferea | [] [] [] | 21 lilypond | [] | 7 linkdr | [] [] [] [] [] | 17 lordsawar | | 1 lprng | [] | 3 lynx | [] [] [] [] | 17 m4 | [] [] [] [] | 19 mailfromd | [] [] | 3 mailutils | [] | 5 make | [] [] [] [] | 21 man-db | [] [] [] | 8 man-db-manpages | | 4 minicom | [] [] | 16 mkisofs | [] [] | 9 myserver | | 0 nano | [] [] [] [] | 21 opcodes | [] [] [] | 11 parted | [] [] [] [] [] | 15 pies | [] [] | 3 popt | [] [] [] [] [] [] | 27 psmisc | [] [] | 11 pspp | | 4 pwdutils | [] [] | 6 radius | [] [] | 9 recode | [] [] [] [] | 28 rosegarden | () | 0 rpm | [] [] [] | 11 rush | [] [] | 4 sarg | | 1 screem | [] | 3 scrollkeeper | [] [] [] [] [] | 27 sed | [] [] [] [] [] | 30 sharutils | [] [] [] [] [] | 22 shishi | [] | 3 skencil | [] [] | 7 solfege | [] [] [] [] | 16 solfege-manual | [] | 8 soundtracker | [] [] [] | 9 sp | [] | 3 sysstat | [] [] | 15 tar | [] [] [] [] [] [] | 23 texinfo | [] [] [] [] [] | 17 tin | | 4 unicode-han-tra... | | 0 unicode-transla... | | 2 util-linux-ng | [] [] [] [] | 20 vice | () () | 1 vmm | [] | 4 vorbis-tools | [] | 6 wastesedge | | 2 wdiff | [] [] | 7 wget | [] [] [] [] [] | 26 wyslij-po | [] [] | 8 xchat | [] [] [] [] [] [] | 36 xdg-user-dirs | [] [] [] [] [] [] [] [] [] [] | 63 xkeyboard-config | [] [] [] | 22 +---------------------------------------------------+ 85 teams sv sw ta te tg th tr uk vi wa zh_CN zh_HK zh_TW 178 domains 119 1 3 3 0 10 65 51 155 17 98 7 41 2618 Some counters in the preceding matrix are higher than the number of visible blocks let us expect. This is because a few extra PO files are used for implementing regional variants of languages, or language dialects. For a PO file in the matrix above to be effective, the package to which it applies should also have been internationalized and distributed as such by its maintainer. There might be an observable lag between the mere existence a PO file and its wide availability in a distribution. If June 2010 seems to be old, you may fetch a more recent copy of this `ABOUT-NLS' file on most GNU archive sites. The most up-to-date matrix with full percentage details can be found at `http://translationproject.org/extra/matrix.html'. 1.5 Using `gettext' in new packages =================================== If you are writing a freely available program and want to internationalize it you are welcome to use GNU `gettext' in your package. Of course you have to respect the GNU Library General Public License which covers the use of the GNU `gettext' library. This means in particular that even non-free programs can use `libintl' as a shared library, whereas only free software can use `libintl' as a static library or use modified versions of `libintl'. Once the sources are changed appropriately and the setup can handle the use of `gettext' the only thing missing are the translations. The Free Translation Project is also available for packages which are not developed inside the GNU project. Therefore the information given above applies also for every other Free Software Project. Contact `coordinator@translationproject.org' to make the `.pot' files available to the translation teams. openconnect-8.05/xml.c0000664000076400007640000001172612727726520016522 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * Copyright © 2008 Nick Andrew * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include #include #include #include #include #include #include #include "openconnect-internal.h" ssize_t read_file_into_string(struct openconnect_info *vpninfo, const char *fname, char **ptr) { int fd, len; struct stat st; char *buf; fd = openconnect_open_utf8(vpninfo, fname, O_RDONLY|O_BINARY); if (fd < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to open %s: %s\n"), fname, strerror(errno)); return -ENOENT; } if (fstat(fd, &st)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to fstat() %s: %s\n"), fname, strerror(errno)); close(fd); return -EIO; } len = st.st_size; buf = malloc(len + 1); if (!buf) { vpn_progress(vpninfo, PRG_ERR, _("Failed to allocate %d bytes for %s\n"), len + 1, fname); close(fd); return -ENOMEM; } if (read(fd, buf, len) != len) { vpn_progress(vpninfo, PRG_ERR, _("Failed to read %s: %s\n"), fname, strerror(errno)); free(buf); close(fd); return -EIO; } buf[len] = 0; close(fd); *ptr = buf; return len; } static char *fetch_and_trim(xmlNode *node) { char *str = (char *)xmlNodeGetContent(node), *p; int i, len; if (!str) return NULL; len = strlen(str); for (i = len-1; i >= 0; i--) { if (isspace((int)(unsigned char)str[i])) str[i] = 0; else break; } for (p = str; isspace((int)(unsigned char)*p); p++) ; if (p == str) return str; p = strdup(p); free(str); return p; } int config_lookup_host(struct openconnect_info *vpninfo, const char *host) { int i; ssize_t size; char *xmlfile; unsigned char sha1[SHA1_SIZE]; xmlDocPtr xml_doc; xmlNode *xml_node, *xml_node2; if (!vpninfo->xmlconfig) return 0; size = read_file_into_string(vpninfo, vpninfo->xmlconfig, &xmlfile); if (size == -ENOENT) { fprintf(stderr, _("Treating host \"%s\" as a raw hostname\n"), host); return 0; } else if (size <= 0) { return size; } if (openconnect_sha1(sha1, xmlfile, size)) { fprintf(stderr, _("Failed to SHA1 existing file\n")); free(xmlfile); return -1; } for (i = 0; i < SHA1_SIZE; i++) snprintf(&vpninfo->xmlsha1[i*2], 3, "%02x", sha1[i]); vpn_progress(vpninfo, PRG_DEBUG, _("XML config file SHA1: %s\n"), vpninfo->xmlsha1); xml_doc = xmlReadMemory(xmlfile, size, "noname.xml", NULL, 0); free(xmlfile); if (!xml_doc) { fprintf(stderr, _("Failed to parse XML config file %s\n"), vpninfo->xmlconfig); fprintf(stderr, _("Treating host \"%s\" as a raw hostname\n"), host); return 0; } xml_node = xmlDocGetRootElement(xml_doc); for (xml_node = xml_node->children; xml_node; xml_node = xml_node->next) { if (xml_node->type == XML_ELEMENT_NODE && !strcmp((char *)xml_node->name, "ServerList")) { for (xml_node = xml_node->children; xml_node && !vpninfo->hostname; xml_node = xml_node->next) { if (xml_node->type == XML_ELEMENT_NODE && !strcmp((char *)xml_node->name, "HostEntry")) { int match = 0; for (xml_node2 = xml_node->children; match >= 0 && xml_node2; xml_node2 = xml_node2->next) { if (xml_node2->type != XML_ELEMENT_NODE) continue; if (!match && !strcmp((char *)xml_node2->name, "HostName")) { char *content = fetch_and_trim(xml_node2); if (content && !strcmp(content, host)) match = 1; else match = -1; free(content); } else if (match && !strcmp((char *)xml_node2->name, "HostAddress")) { char *content = fetch_and_trim(xml_node2); if (content && !openconnect_parse_url(vpninfo, content)) { printf(_("Host \"%s\" has address \"%s\"\n"), host, content); } free(content); } else if (match && !strcmp((char *)xml_node2->name, "UserGroup")) { char *content = fetch_and_trim(xml_node2); if (content) { free(vpninfo->urlpath); vpninfo->urlpath = content; printf(_("Host \"%s\" has UserGroup \"%s\"\n"), host, content); } } } } } break; } } xmlFreeDoc(xml_doc); if (!vpninfo->hostname) { fprintf(stderr, _("Host \"%s\" not listed in config; treating as raw hostname\n"), host); } return 0; } openconnect-8.05/test-driver0000755000076400007640000001104213250314767017737 0ustar00dwoodhoudwoodhou00000000000000#! /bin/sh # test-driver - basic testsuite driver script. scriptversion=2018-03-07.03; # UTC # Copyright (C) 2011-2018 Free Software Foundation, Inc. # # This program is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 2, or (at your option) # any later version. # # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program. If not, see . # As a special exception to the GNU General Public License, if you # distribute this file as part of a program that contains a # configuration script generated by Autoconf, you may include it under # the same distribution terms that you use for the rest of that program. # This file is maintained in Automake, please report # bugs to or send patches to # . # Make unconditional expansion of undefined variables an error. This # helps a lot in preventing typo-related bugs. set -u usage_error () { echo "$0: $*" >&2 print_usage >&2 exit 2 } print_usage () { cat <$log_file 2>&1 estatus=$? if test $enable_hard_errors = no && test $estatus -eq 99; then tweaked_estatus=1 else tweaked_estatus=$estatus fi case $tweaked_estatus:$expect_failure in 0:yes) col=$red res=XPASS recheck=yes gcopy=yes;; 0:*) col=$grn res=PASS recheck=no gcopy=no;; 77:*) col=$blu res=SKIP recheck=no gcopy=yes;; 99:*) col=$mgn res=ERROR recheck=yes gcopy=yes;; *:yes) col=$lgn res=XFAIL recheck=no gcopy=yes;; *:*) col=$red res=FAIL recheck=yes gcopy=yes;; esac # Report the test outcome and exit status in the logs, so that one can # know whether the test passed or failed simply by looking at the '.log' # file, without the need of also peaking into the corresponding '.trs' # file (automake bug#11814). echo "$res $test_name (exit status: $estatus)" >>$log_file # Report outcome to console. echo "${col}${res}${std}: $test_name" # Register the test result, and other relevant metadata. echo ":test-result: $res" > $trs_file echo ":global-test-result: $res" >> $trs_file echo ":recheck: $recheck" >> $trs_file echo ":copy-in-global-log: $gcopy" >> $trs_file # Local Variables: # mode: shell-script # sh-indentation: 2 # eval: (add-hook 'before-save-hook 'time-stamp) # time-stamp-start: "scriptversion=" # time-stamp-format: "%:y-%02m-%02d.%02H" # time-stamp-time-zone: "UTC0" # time-stamp-end: "; # UTC" # End: openconnect-8.05/po/0000775000076400007640000000000013536301732016156 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/po/id.po0000664000076400007640000036101313470043037017114 0ustar00dwoodhoudwoodhou00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: # Andika Triwidada , 2012. msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2019-05-18 10:44-0700\n" "PO-Revision-Date: 2012-11-15 08:31+0000\n" "Last-Translator: David Woodhouse \n" "Language-Team: Indonesian (http://www.transifex.com/projects/p/meego/" "language/id/)\n" "Language: id\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=1; plural=0;\n" #: auth-globalprotect.c:108 #, c-format msgid "" "SAML login is required via %s to this URL:\n" "\t%s" msgstr "" #: auth-globalprotect.c:110 msgid "Please enter your username and password" msgstr "" #: auth-globalprotect.c:119 msgid "Username" msgstr "" #: auth-globalprotect.c:134 msgid "Password" msgstr "" #: auth-globalprotect.c:181 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:260 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:266 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:272 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:315 msgid "Please select GlobalProtect gateway." msgstr "" #: auth-globalprotect.c:325 msgid "GATEWAY:" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:379 #, c-format msgid "%d gateway servers available:\n" msgstr "" #: auth-globalprotect.c:400 #, c-format msgid " %s (%s)\n" msgstr "" #: auth-globalprotect.c:484 auth-juniper.c:730 auth.c:669 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "Gagal menjangkitkan kode token OTP: menonaktifkan token\n" #: auth-globalprotect.c:584 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" #: auth-globalprotect.c:636 oncp.c:1266 msgid "Logout failed.\n" msgstr "Log keluar gagal.\n" #: auth-globalprotect.c:638 msgid "Logout successful\n" msgstr "" #: auth-juniper.c:142 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "Mengabaikan butir kirim formulir tak dikenal '%s'\n" #: auth-juniper.c:153 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "Mengabaikan tipe masukan formulir '%s' yang tak dikenal\n" #: auth-juniper.c:163 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "Membuang opsi duplikat '%s'\n" #: auth-juniper.c:236 auth.c:408 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Tak bisa menangani method='%s', action='%s' milik form\n" #: auth-juniper.c:267 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "Ruas textarea tak dikenal: '%s'\n" #: auth-juniper.c:337 msgid "TNCC support not implemented yet on Windows\n" msgstr "Dukungan TNCC belum diimplementasikan pada Windows\n" #: auth-juniper.c:359 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "Tidak ada cookie DSPREAUTH; tidak mencoba TNCC\n" #: auth-juniper.c:397 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "Gagal exec skrip TNCC %s: %s\n" #: auth-juniper.c:411 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "Gagal mengalokasikan memori untuk komunikasi dengan TNCC\n" #: auth-juniper.c:418 msgid "Failed to send start command to TNCC\n" msgstr "Gagal mengirim perintah mulai ke TNCC\n" #: auth-juniper.c:425 msgid "Sent start; waiting for response from TNCC\n" msgstr "Pengiriman dimulai; menunggu respon dari TNCC\n" #: auth-juniper.c:432 msgid "Failed to read response from TNCC\n" msgstr "Gagal membaca respon dari TNCC\n" #: auth-juniper.c:439 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "Menerima respon %s yang tidak sukses dari TNCC\n" #: auth-juniper.c:445 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:452 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "Mendapat cookie DSPREAUTH baru dari TNCC: %s\n" #: auth-juniper.c:474 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:481 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:650 msgid "Failed to parse HTML document\n" msgstr "Gagal mengurai dokumen HTML\n" #: auth-juniper.c:667 msgid "Failed to find or parse web form in login page\n" msgstr "Gagal temukan atau uraikan form web dalam halaman log masuk\n" #: auth-juniper.c:675 msgid "Encountered form with no ID\n" msgstr "Menemui form tanpa ID\n" #: auth-juniper.c:713 #, c-format msgid "Unknown form ID '%s'\n" msgstr "ID form '%s' tak dikenal\n" #: auth-juniper.c:716 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "Mencurahkan form HTML yang tak dikenal:\n" #: auth.c:96 msgid "Form choice has no name\n" msgstr "Pilihan form tak punya nama\n" #: auth.c:181 #, c-format msgid "name %s not input\n" msgstr "nama %s bukan masukan\n" #: auth.c:188 msgid "No input type in form\n" msgstr "Tak ada tipe masukan dalam form\n" #: auth.c:200 msgid "No input name in form\n" msgstr "Tak ada nama masukan dalam form\n" #: auth.c:230 #, c-format msgid "Unknown input type %s in form\n" msgstr "Tipe masukan %s tak dikenal dalam form\n" #: auth.c:540 gpst.c:214 msgid "Empty response from server\n" msgstr "Respon kosong dari server\n" #: auth.c:551 gpst.c:289 msgid "Failed to parse server response\n" msgstr "Gagal mengurai respon server\n" #: auth.c:553 gpst.c:291 #, c-format msgid "Response was:%s\n" msgstr "Respon adalah:%s\n" #: auth.c:575 msgid "Received when not expected.\n" msgstr "Menerima ketika tak mengharapkannya.\n" #: auth.c:603 msgid "XML response has no \"auth\" node\n" msgstr "Respon XML tak memiliki node \"auth\"\n" #: auth.c:636 msgid "Asked for password but '--no-passwd' set\n" msgstr "Meminta sandi tapi '--no-passwd' ditata\n" #: auth.c:925 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "Tak mengunduh profil XML karena SHA1 telah cocok\n" #: auth.c:931 cstp.c:335 http.c:916 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Gagal membuka koneksi HTTPS ke %s\n" #: auth.c:952 msgid "Failed to send GET request for new config\n" msgstr "Gagal mengirim permintaan GET untuk konfig baru\n" #: auth.c:976 msgid "Downloaded config file did not match intended SHA1\n" msgstr "Konfig yang diunduh tak cocok dengan SHA1 yang dikehendaki\n" #: auth.c:981 msgid "Downloaded new XML profile\n" msgstr "Mengunduh profil XML baru\n" #: auth.c:992 auth.c:1044 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" "Galat: Menjalankan trojan 'Cisco Secure Desktop' pada platform ini belum " "diimplementasi.\n" #: auth.c:1003 mainloop.c:144 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "Gagal menata gid %ld: %s\n" #: auth.c:1010 mainloop.c:151 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "Gagal menata grup ke %ld: %s\n" #: auth.c:1017 mainloop.c:158 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "Gagal menata uid %ld: %s\n" #: auth.c:1024 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "Pengguna uid=%ld tidak valid: %s\n" #: auth.c:1031 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Gagal mengubah ke direktori rumah CSD '%s': %s\n" #: auth.c:1053 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Galat: Server meminta kita menjalankan hostscan CSD.\n" "Anda perlu menyediakan agrumen --csd-wrapper yang sesuai.\n" #: auth.c:1060 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Galat: Server meminta kita untuk mengunduh dan menjalankan suatu trojan " "'Cisco Secure Desktop'.\n" "Fasilitas ini dinonaktifkan secara baku untuk alasan keamanan, maka Anda " "mungkin ingin memfungsikannya.\n" #: auth.c:1067 msgid "Trying to run Linux CSD trojan script.\n" msgstr "Mencoba menjalankan skrip trojan CSD Linux.\n" #: auth.c:1094 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "Direktori temporer '%s' tidak dapat ditulisi: %s\n" #: auth.c:1102 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Gagal membuka berkas skrip CSD temporer: %s\n" #: auth.c:1111 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Gagal menulis berkas skrip CSD sementara: %s\n" #: auth.c:1141 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Peringatan: Anda sedang menjalankan kode CSD yang tak aman dengan hak root\n" "\t Gunakan opsi baris perintah \"--csd-user\"\n" #: auth.c:1189 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Gagal exec skrip CSD %s\n" #: auth.c:1221 msgid "Unknown response from server\n" msgstr "Respon tak dikenal dari server\n" #: auth.c:1342 msgid "Server requested SSL client certificate after one was provided\n" msgstr "Server meminta sertifikat klien SSL setelah satu disediakan\n" #: auth.c:1346 msgid "Server requested SSL client certificate; none was configured\n" msgstr "Server meminta sertifikat klien SSL; tak ada yang dikonfigurasi\n" #: auth.c:1362 msgid "XML POST enabled\n" msgstr "XML POST difungsikan\n" #: auth.c:1405 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Menyegarkan %s setelah 1 detik...\n" #: compat.c:207 #, c-format msgid "(error 0x%lx)" msgstr "(galat 0x%lx)" #: compat.c:210 msgid "(Error while describing error!)" msgstr "(Galat ketika menjelaskan kesalahan!)" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "GALAT: Tak bisa menginisialisasi soket\n" #: cstp.c:112 gpst.c:341 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:134 gpst.c:360 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:281 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" "GALAT KRITIS: Rahasia induk DTLS tak terinisialisasi. Harap laporkan ini.\n" #: cstp.c:312 msgid "Error creating HTTPS CONNECT request\n" msgstr "Galat saat membuat permintaan HTTPS CONNECT\n" #: cstp.c:328 http.c:384 msgid "Error fetching HTTPS response\n" msgstr "Galat saat mengambil respon HTTPS\n" #: cstp.c:355 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "Layanan VPN tak tersedia; alasan: %s\n" #: cstp.c:360 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Mendapat respon HTTP CONNECT yang tak sepantasnya: %s\n" #: cstp.c:367 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Mendapat respon CONNECT: %s\n" #: cstp.c:396 cstp.c:404 msgid "No memory for options\n" msgstr "Tak ada memori bagi opsi\n" #: cstp.c:413 http.c:444 msgid "" msgstr "" #: cstp.c:433 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Session-ID buka 64 karacter; yaitu: \"%s\"\n" #: cstp.c:450 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "X-DTLS-Session-ID tidak valid; yaitu: \"%s\"\n" #: cstp.c:468 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "DTLS-Content-Encoding %s tak dikenal\n" #: cstp.c:510 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "CSTP-Content-Encoding %s tak dikenal\n" #: cstp.c:585 msgid "No MTU received. Aborting\n" msgstr "MTU tak diterima. Menggugurkan\n" #: cstp.c:593 gpst.c:641 msgid "No IP address received. Aborting\n" msgstr "Alamat IP tak diterima. Menggugurkan\n" #: cstp.c:599 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "Konfigurasi IPv6 diterima tapi MTU %d terlalu kecil.\n" #: cstp.c:605 gpst.c:648 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Menyambung ulang memberi alamat IP Legacy yang berbeda (%s != %s)\n" #: cstp.c:614 gpst.c:657 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "Menyambung ulang memberi netmask IP Legacy yang berbeda (%s != %s)\n" #: cstp.c:622 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Menyambung ulang memberi alamat IPv6 yang berbeda (%s != %s)\n" #: cstp.c:630 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Menyambung ulang memberi netmask IPv6 yang berbeda (%s != %s)\n" #: cstp.c:638 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP tersambung. DPD %d, Keepalive %d\n" #: cstp.c:640 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "CSTP Ciphersuite: %s\n" #: cstp.c:702 msgid "Compression setup failed\n" msgstr "Penyiapan kompresi gagal\n" #: cstp.c:719 msgid "Allocation of deflate buffer failed\n" msgstr "Alokasi penyangga deflate gagal\n" #: cstp.c:781 msgid "inflate failed\n" msgstr "inflate gagal\n" #: cstp.c:804 #, c-format msgid "LZS decompression failed: %s\n" msgstr "Dekompresi LZS gagal: %s\n" #: cstp.c:817 msgid "LZ4 decompression failed\n" msgstr "Dekompresi LZ4 gagal\n" #: cstp.c:824 #, c-format msgid "Unknown compression type %d\n" msgstr "Tipe kompresi %d tak dikenal\n" #: cstp.c:829 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "Menerima %s paket data terkompresi %d byte (sebelumnya %d)\n" #: cstp.c:849 #, c-format msgid "deflate failed %d\n" msgstr "deflate gagal %d\n" #: cstp.c:922 dtls.c:281 dtls.c:740 esp.c:129 gpst.c:1042 mainloop.c:69 #: oncp.c:914 msgid "Allocation failed\n" msgstr "Alokasi gagal\n" #: cstp.c:933 gpst.c:1055 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "Diterima paket pendek (%d byte)\n" #: cstp.c:946 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Panjang paket tak diharapkan. SSL_read mengembalikan %d tapi paket\n" #: cstp.c:960 msgid "Got CSTP DPD request\n" msgstr "Mendapat permintaan CSTP DPD\n" #: cstp.c:966 msgid "Got CSTP DPD response\n" msgstr "Mendapat respon CSTP DPD\n" #: cstp.c:971 msgid "Got CSTP Keepalive\n" msgstr "Mendapat CSTP Keepalive\n" #: cstp.c:976 oncp.c:1003 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Menerima paket data tak terkompresi %d byte\n" #: cstp.c:993 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Menerima pemutusan server: %02x '%s'\n" #: cstp.c:996 msgid "Received server disconnect\n" msgstr "Menerima pemutusan server\n" #: cstp.c:1004 msgid "Compressed packet received in !deflate mode\n" msgstr "Paket terkompresi diterima dalam mode !deflate\n" #: cstp.c:1013 msgid "received server terminate packet\n" msgstr "menerima paket terminasi server\n" #: cstp.c:1020 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Paket tak dikenal %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1063 gpst.c:1142 oncp.c:1121 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL menulis terlalu sedikit byte! Minta %d, dikirimi %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1091 oncp.c:1155 msgid "CSTP rekey due\n" msgstr "Kunci ulang CSTP jatuh tempo\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1098 oncp.c:1162 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Jabat tangan ulang gagal; mencoba tunnel baru\n" #: cstp.c:1109 oncp.c:1173 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "Pendeteksi Pasangan Mati CSTP mendeteksi pasangan yang mati!\n" #: cstp.c:1113 gpst.c:1166 oncp.c:1091 oncp.c:1177 msgid "Reconnect failed\n" msgstr "Sambung ulang gagal\n" #: cstp.c:1129 oncp.c:1193 msgid "Send CSTP DPD\n" msgstr "Kirim DPD CSTP\n" #: cstp.c:1141 oncp.c:1204 msgid "Send CSTP Keepalive\n" msgstr "Kirim Keepalive CSTP\n" #: cstp.c:1166 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "Mengirim paket data terkompresi %d byte (sebelumnya %d)\n" #: cstp.c:1177 oncp.c:1238 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Mengirim paket data tak terkompresi %d byte\n" #: cstp.c:1216 #, c-format msgid "Send BYE packet: %s\n" msgstr "Kirim paket BYE: %s\n" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "Mencoba otentikasi digest ke proksi\n" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "Mencoba otentikasi Digest ke server '%s'\n" #: dtls.c:113 msgid "DTLS connection attempted with an existing fd\n" msgstr "Koneksi DTLS dicoba dengan fd yang ada\n" #: dtls.c:119 msgid "No DTLS address\n" msgstr "Tak ada alamat DTLS\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:126 msgid "Server offered no DTLS cipher option\n" msgstr "Server tak menawarkan opsi cipher DTLS\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:133 msgid "No DTLS when connected via proxy\n" msgstr "Tak ada DTLS ketika tersambung lewat proksi\n" #: dtls.c:200 #, c-format msgid "DTLS option %s : %s\n" msgstr "Opsi DTLS %s : %s\n" #: dtls.c:239 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS diinisialisasi. DPD %d, Keepalive %d\n" #: dtls.c:265 msgid "Attempt new DTLS connection\n" msgstr "Mencoba koneksi DTLS baru\n" #: dtls.c:292 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Diterima paket DTLS 0x%02x dari %d byte\n" #: dtls.c:306 msgid "Got DTLS DPD request\n" msgstr "Mendapat permintaan DTLS DPD\n" #: dtls.c:312 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Gagal mengirim respon DPD. Mengharapkan pemutusan koneksi\n" #: dtls.c:316 msgid "Got DTLS DPD response\n" msgstr "Mendapat respon DTLS DPD\n" #: dtls.c:320 msgid "Got DTLS Keepalive\n" msgstr "Mendapat DTLS Keepalive\n" #: dtls.c:326 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "Paket DTLS terkompresi diterima ketika kompresi tidak difungsikan\n" #: dtls.c:334 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Tipe paket DTLS tak dikenal %02x, len %d\n" #: dtls.c:356 msgid "DTLS rekey due\n" msgstr "Kunci ulang DTLS jatuh tempo\n" #: dtls.c:363 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "Jabat tangan ulang DTLS gagal; menyambung ulang.\n" #: dtls.c:372 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "Pendeteksi Pasangan Mati DTLS mendeteksi pasangan yang mati!\n" #: dtls.c:378 msgid "Send DTLS DPD\n" msgstr "Kirim DPD DTLS\n" #: dtls.c:383 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Gagal mengirim permintaan DPD. Mengharapkan pemutusan koneksi\n" #: dtls.c:396 msgid "Send DTLS Keepalive\n" msgstr "Kirim Keepalive DTLS\n" #: dtls.c:401 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Gagal mengirim permintaan keepalive. Mengharapkan pemutusan koneksi\n" #: dtls.c:432 tun.c:541 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Paket tak dikenal (len %d) diterima: %02x %02x %02x %02x...\n" #: dtls.c:439 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "TOS ini: %d, TOS terakhir: %d\n" #: dtls.c:443 msgid "UDP setsockopt" msgstr "UDP setsockopt" #: dtls.c:474 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "DTLS mendapat galat tulis %d. Berpindah ke SSL\n" #: dtls.c:488 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "DTLS mendapat galat tulis: %s. Berpindah ke SSL\n" #: dtls.c:503 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "Dikirim paket DTLS %d byte; DTLS send mengembalikan %d\n" #: dtls.c:531 #, c-format msgid "Initiating IPv4 MTU detection (min=%d, max=%d)\n" msgstr "Mengawali deteksi MTU IPv4 (min=%d, maks=%d)\n" #: dtls.c:551 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" "Terlalu lama dalam loop deteksi MTU; mengasumsikan MTU yang dinegosiasikan.\n" #: dtls.c:555 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "Terlalu lama dalam loop deteksi MTU; MTU ditata ke %d.\n" #: dtls.c:564 #, c-format msgid "Sending MTU DPD probe (%u bytes, min=%u, max=%u)\n" msgstr "Mengirim probe DPD MTU (%u byte, min=%u, maks=%u)\n" #: dtls.c:568 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "Gagal mengirim permintaan DPD (%d %d)\n" #: dtls.c:582 dtls.c:690 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" "Menerima paket yang tak diharapkan (%.2x) dalam deteksi MTU; melewati.\n" #: dtls.c:594 #, c-format msgid "Timeout while waiting for DPD response; trying %d\n" msgstr "Habis waktu saat menunggu respon DPD; mencoba %d\n" #: dtls.c:601 dtls.c:682 msgid "Timeout while waiting for DPD response; resending probe.\n" msgstr "Habis waktu saat menunggu respon DPD; mengirim ulang probe.\n" #: dtls.c:608 dtls.c:709 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "Gagal recv permintaan DPD (%d)\n" #: dtls.c:613 #, c-format msgid "Received MTU DPD probe (%u bytes of %u)\n" msgstr "Diterima probe DPD MTU (%u byte dari %u)\n" #: dtls.c:651 msgid "Initiating IPv6 MTU detection\n" msgstr "Mengawali deteksi MTU IPv6\n" #: dtls.c:666 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "Mengirim probe DPD MTU (%u byte)\n" #: dtls.c:670 #, c-format msgid "Failed to send DPD request (%d)\n" msgstr "Gagal mengirim permintaan DPD (%d)\n" #: dtls.c:695 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "Diterima probe DPD MTU (%u byte)\n" #: dtls.c:759 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "MTU terdeteksi %d byte (sebelumnya %d)\n" #: dtls.c:762 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "Tidak ada perubahan MTU setelah deteksi (sebelumnya %d)\n" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "Menerima paket ESP yang diharapkan dengan seq %u\n" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" "Menerima paket ESP yang lebih lambat dari yang diharapkan dengan seq %u " "(diharapkan %)\n" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "Membuang paket ESP kuno dengan seq %u (diharapkan %)\n" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "Mentoleransi paket ESP kuno dengan seq %u (diharapkan %)\n" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "Membuang paket ESP yang terkirim ulang dengan seq %u\n" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "Mentoleransi paket ESP yang terkirim ulang dengan seq %u\n" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" "Menerima paket ESP diluar urutan dengan seq %u (diharapkan %)\n" #: esp.c:63 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "Parameter untuk ESP %s: SPI 0x%08x\n" #: esp.c:66 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "Tipe enkripsi ESP %s kunci 0x%s\n" #: esp.c:69 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "Otentikasi ESP tipe %s kunci 0x%s\n" #: esp.c:87 msgid "incoming" msgstr "masuk" #: esp.c:88 msgid "outgoing" msgstr "keluar" #: esp.c:90 esp.c:113 msgid "Send ESP probes\n" msgstr "Kirim probe ESP\n" #: esp.c:138 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "Diterima paket ESP %d byte\n" #: esp.c:155 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "Paket ESP diterima dari SPI lama 0x%x, seq %u\n" #: esp.c:161 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "Menerima paket ESP dengan SPI tak valid 0x%08x\n" #: esp.c:174 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "Menerima paket ESP dengan tipe muatan tak dikenal %02x\n" #: esp.c:181 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "Panjang pad %02x tak valid dalam ESP\n" #: esp.c:193 msgid "Invalid padding bytes in ESP\n" msgstr "Byte pad tak valid dalam ESP\n" #: esp.c:202 msgid "ESP session established with server\n" msgstr "Sesi ESP terjalin dengan server\n" #: esp.c:213 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "Gagal mengalokasikan memori untuk mendekripsi paket ESP\n" #: esp.c:219 msgid "LZO decompression of ESP packet failed\n" msgstr "Dekompresi LZO atas paket ESP gagal\n" #: esp.c:225 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "LZO %d byte terdekompresi menjadi %d\n" #: esp.c:239 msgid "Rekey not implemented for ESP\n" msgstr "Rekey tidak diimplementasikan bagi ESP\n" #: esp.c:243 msgid "ESP detected dead peer\n" msgstr "ESP mendeteksi pasangan yang mati\n" #: esp.c:251 msgid "Send ESP probes for DPD\n" msgstr "Kirim probe ESP bagi DPD\n" #: esp.c:258 msgid "Keepalive not implemented for ESP\n" msgstr "Keepalive tidak diimplementasikan bagi ESP\n" #: esp.c:278 #, c-format msgid "Failed to encrypt ESP packet: %d\n" msgstr "" #: esp.c:294 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:301 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "Gagal mengirim paket ESP: %s\n" #: esp.c:307 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "Mengirim paket ESP %d byte\n" #: gnutls-dtls.c:190 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "Menunda melanjutkan DTLS sampai CSTP membuat suatu PSK\n" #: gnutls-dtls.c:198 msgid "Failed to generate DTLS priority string\n" msgstr "Gagal membuat string prioritas DTLS\n" #: gnutls-dtls.c:207 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "Gagal menginisialisasi DTLS: %s\n" #: gnutls-dtls.c:216 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "Gagal menata prioritas DTLS: '%s': %s\n" #: gnutls-dtls.c:240 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "Gagal mengalokasikan kredensial: %s\n" #: gnutls-dtls.c:253 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "Gagal membuat kunci DTLS: %s\n" #: gnutls-dtls.c:267 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "Gagal menata kunci DTLS: %s\n" #: gnutls-dtls.c:275 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "Gagal menata kredensial PSK DTLS: %s\n" #: gnutls-dtls.c:309 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Parameter DTLS tak dikenal bagi CipherSuite '%s' yang diminta\n" #: gnutls-dtls.c:324 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "Gagal menata prioritas DTLS: %s\n" #: gnutls-dtls.c:345 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Gagal menata parameter sesi DTLS: %s\n" #: gnutls-dtls.c:373 openssl-dtls.c:534 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "MTU peer %d terlalu kecil untuk memungkinkan DTLS\n" #: gnutls-dtls.c:382 openssl-dtls.c:545 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "MTU DTLS dikurangi menjadi %d\n" #: gnutls-dtls.c:392 openssl-dtls.c:554 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" "Pelanjutan sesi DTLS gagal; mungkin serangan MITM. Menonaktifkan DTLS.\n" #: gnutls-dtls.c:405 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Gagal menata MTU DTLS: %s\n" #: gnutls-dtls.c:416 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "Terjalink koneksi DTLS (memakai GnuTLS). Ciphersuite %s.\n" #: gnutls-dtls.c:422 openssl-dtls.c:572 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "Kompresi koneksi DTLS memakai %s.\n" #: gnutls-dtls.c:437 openssl-dtls.c:653 openssl-dtls.c:657 msgid "DTLS handshake timed out\n" msgstr "Habis waktu jabat tangan DTLS\n" #: gnutls-dtls.c:440 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "Jabat tangan DTLS gagal: %s\n" #: gnutls-dtls.c:444 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(Apakah sebuah firewall mencegah Anda mengirim paket-paket UDP?)\n" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "Gagal menginisialisasi cipher ESP: %s\n" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "Gagal menginisialisasi HMAC ESP: %s\n" #: gnutls-esp.c:121 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "Gagal membuat kunci acak bagi ESP: %s\n" #: gnutls-esp.c:132 msgid "Failed to generate ESP IV\n" msgstr "" #: gnutls-esp.c:161 gnutls-esp.c:217 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "Gagal menghitung HMAC bagi paket ESP: %s\n" #: gnutls-esp.c:168 openssl-esp.c:192 msgid "Received ESP packet with invalid HMAC\n" msgstr "Menerima paket ESP dengan HMAC yang tak valid\n" #: gnutls-esp.c:180 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "Gagal mendekripsi paket ESP: %s\n" #: gnutls-esp.c:209 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "Gagal mengenkripsi paket ESP: %s\n" #: gnutls.c:95 openssl.c:154 msgid "SSL write cancelled\n" msgstr "SSL write dibatalkan\n" #: gnutls.c:99 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "Gagal menulis ke soket SSL: %s\n" #: gnutls.c:145 gnutls.c:237 openssl.c:204 openssl.c:271 msgid "SSL read cancelled\n" msgstr "SSL read dibatalkan\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:158 msgid "SSL socket closed uncleanly\n" msgstr "Soket SSL ditutup tak secara bersih\n" #: gnutls.c:168 gnutls.c:246 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "Gagal baca dari soket SSL: %s\n" #: gnutls.c:266 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "Galat SSL read: %s; menyambung ulang.\n" #: gnutls.c:302 #, c-format msgid "SSL send failed: %s\n" msgstr "SSL send gagal: %s\n" #: gnutls.c:315 msgid "Could not extract expiration time of certificate\n" msgstr "Tak bisa mengekstrak waktu kedaluarsa dari sertifikat\n" #: gnutls.c:320 openssl.c:1592 msgid "Client certificate has expired at" msgstr "Sertifikat klien telah kedaluarsa pada" #: gnutls.c:322 openssl.c:1597 msgid "Client certificate expires soon at" msgstr "Sertifikat klien segera kedaluarsa pada" #: gnutls.c:371 openssl.c:771 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Gagal memuat butir '%s' dari penyimpanan kunci: %s\n" #: gnutls.c:384 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Gagal membuka berkas kunci/sertifikat %s: %s\n" #: gnutls.c:391 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Gagal men-stat berkas kunci/sertifikat %s: %s\n" #: gnutls.c:400 msgid "Failed to allocate certificate buffer\n" msgstr "Gagal mengalokasikan penyangga sertifikat\n" #: gnutls.c:408 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Gagal membaca sertifikat ke dalam memori: %s\n" #: gnutls.c:439 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Gagal menyiapkan struktur data PKCS#12: %s\n" #: gnutls.c:462 openssl.c:534 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Gagal mendekripsi berkas sertifikat PKCS#12\n" #: gnutls.c:466 openssl.c:537 msgid "Enter PKCS#12 pass phrase:" msgstr "Masukkan frasa sandi PKCS#12:" #: gnutls.c:489 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Gagal memroses berkas PKCS#12: %s\n" #: gnutls.c:501 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Gagal memuat sertifikat PKCS#12: %s\n" #: gnutls.c:584 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Pengimporan sertifikat X509 gagal: %s\n" #: gnutls.c:594 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Penataan sertifikat PKCS#12 gagal: %s\n" #: gnutls.c:628 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Tak bisa menginisialisasi hash MD5: %s\n" #: gnutls.c:638 #, c-format msgid "MD5 hash error: %s\n" msgstr "Galat hash MD5: %s\n" #: gnutls.c:696 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "Kurang DEK-Info: header dari kunci terenkripsi OpenSSL\n" #: gnutls.c:703 msgid "Cannot determine PEM encryption type\n" msgstr "Tak bisa menentukan tipe enkripsi PEM\n" #: gnutls.c:716 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Tipe enkripsi PEM yang tak didukung: %s\n" #: gnutls.c:741 gnutls.c:754 msgid "Invalid salt in encrypted PEM file\n" msgstr "Salt tak valid dalam berkas PEM yang terenkripsi\n" #: gnutls.c:778 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Galat saat mengawa kode base64 berkas PEM terenkripsi: %s\n" #: gnutls.c:786 msgid "Encrypted PEM file too short\n" msgstr "Berkas PEM terenkripsi terlalu pendek\n" #: gnutls.c:814 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "Gagal menginisialisasi cipher untuk pendekripsian berkas PEM: %s\n" #: gnutls.c:825 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Gagal mendekripsi kunci PEM: %s\n" #: gnutls.c:877 msgid "Decrypting PEM key failed\n" msgstr "Pendekripsian kunci PEM gagal\n" #: gnutls.c:881 gnutls.c:1405 openssl.c:458 msgid "Enter PEM pass phrase:" msgstr "Masukkan frasa sandi PEM:" #: gnutls.c:942 msgid "This binary built without system key support\n" msgstr "Biner ini dibangun tanpa dukungan kunci sistem\n" #: gnutls.c:949 msgid "This binary built without PKCS#11 support\n" msgstr "Biner ini dibangun tanpa dukungan PKCS#12\n" #: gnutls.c:993 openssl-pkcs11.c:407 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Memakai sertifikat PKCS#11 %s\n" #: gnutls.c:994 #, c-format msgid "Using system certificate %s\n" msgstr "Memakai sertifikat sistem %s\n" #: gnutls.c:1012 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Galat saat memuat sertifikat dari PKCS#11: %s\n" #: gnutls.c:1013 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Galat saat memuat sertifikat sistem: %s\n" #: gnutls.c:1024 openssl.c:827 #, c-format msgid "Using certificate file %s\n" msgstr "Memakai berkas sertifikat %s\n" #: gnutls.c:1052 msgid "PKCS#11 file contained no certificate\n" msgstr "Berkas PKCS#11 tak memuat sertifikat\n" #: gnutls.c:1078 msgid "No certificate found in file" msgstr "Tak ditemukan sertifikat dalam berkas" #: gnutls.c:1083 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Pemuatan sertifikat gagal: %s\n" #: gnutls.c:1098 #, c-format msgid "Using system key %s\n" msgstr "Memakai kunci sistem %s\n" #: gnutls.c:1103 gnutls.c:1271 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Galat saat menginisialisasi struktur kunci pribadi: %s\n" #: gnutls.c:1114 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Galat saat mengimpor kunci sistem %s: %s\n" #: gnutls.c:1125 gnutls.c:1219 gnutls.c:1247 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "Mencoba URL PKCS#11 %s\n" #: gnutls.c:1130 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Galat saat menginisialisasi struktur kunci PKCS#11: %s\n" #: gnutls.c:1259 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Galat saat mengimpor URL PKCS#11 %s: %s\n" #: gnutls.c:1266 openssl-pkcs11.c:644 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Memakai kunci PKCS#11 %s\n" #: gnutls.c:1281 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "Galat saat mengimpor kunci PKCS#11 ke struktur kunci pribadi: %s\n" #: gnutls.c:1299 #, c-format msgid "Using private key file %s\n" msgstr "Memakai berkas kunci pribadi %s\n" #: gnutls.c:1310 openssl.c:651 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Versi OpenConnect ini dibangun tanpa dukungan TPM\n" #: gnutls.c:1326 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1347 msgid "Failed to interpret PEM file\n" msgstr "Gagal mengintepretasi berkas PEM\n" #: gnutls.c:1366 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Gagal memuat kunci privat PKCS#1: %s\n" #: gnutls.c:1379 gnutls.c:1393 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Gagal memuat kunci privat sebagai PKCS#8: %s\n" #: gnutls.c:1401 gnutls.c:1434 openssl.c:1002 openssl.c:1012 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Gagal mendekripsi berkas sertifikat PKCS#8\n" #: gnutls.c:1426 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Gagal menentukan jenis kunci privat %s\n" #: gnutls.c:1438 openssl.c:1008 msgid "Enter PKCS#8 pass phrase:" msgstr "Masukkan frasa sandi PKCS#8:" #: gnutls.c:1454 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Gagal memperoleh ID kunci: %s\n" #: gnutls.c:1499 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Galat saat menandatangani data uji dengan kunci privat: %s\n" #: gnutls.c:1514 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Galat saat memvalidasi tanda tangan terhadap sertifikat: %s\n" #: gnutls.c:1539 msgid "No SSL certificate found to match private key\n" msgstr "Tak ditemukan sertifikat SSL yang cocok dengan kunci privat\n" #: gnutls.c:1551 openssl.c:560 openssl.c:709 #, c-format msgid "Using client certificate '%s'\n" msgstr "Memakai sertifikat klien '%s'\n" #: gnutls.c:1558 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "Pengaturan daftar pencabutan sertifikat gagal: %s\n" #: gnutls.c:1579 gnutls.c:1589 msgid "Failed to allocate memory for certificate\n" msgstr "Gagal mengalokasikan memori untuk sertifikat\n" #: gnutls.c:1625 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" "PERINGATAN: GnuTLS mengembalikan sert penerbit yang tak benar; otentikasi " "mungkin gagal!\n" #: gnutls.c:1648 msgid "Got no issuer from PKCS#11\n" msgstr "Tidak memperoleh penerbit dari PKCS#11\n" #: gnutls.c:1653 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "Mendapat CA berikutnya '%s' dari PKCS11\n" #: gnutls.c:1679 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Gagal mengalokasikan memori untuk sertifikat pendukung\n" #: gnutls.c:1702 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Menambah dukungan CA '%s'\n" #: gnutls.c:1724 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1748 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Penataan sertifikat gagal: %s\n" #: gnutls.c:1941 msgid "Server presented no certificate\n" msgstr "Server tak menyajikan sertifikat\n" #: gnutls.c:1949 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "Galat ketika membandingkan sert server saat jabat tangan ulang: %s\n" #: gnutls.c:1954 openssl.c:1515 msgid "Server presented different cert on rehandshake\n" msgstr "Server menyajikan sertifikat lain saat jabat tangan ulang\n" #: gnutls.c:1959 openssl.c:1518 msgid "Server presented identical cert on rehandshake\n" msgstr "Server menyajikan sertifikat yang identik saat jabat tangan ulang\n" #: gnutls.c:1965 msgid "Error initialising X509 cert structure\n" msgstr "Galat saat menginisialisasi struktur sert X509\n" #: gnutls.c:1971 msgid "Error importing server's cert\n" msgstr "Galat ketika mengimpor sert server\n" #: gnutls.c:1980 main.c:1794 msgid "Could not calculate hash of server's certificate\n" msgstr "Tak bisa menghitung hash dari sertifikat server\n" #: gnutls.c:1985 msgid "Error checking server cert status\n" msgstr "Galat saat memeriksa status sert server\n" #: gnutls.c:1990 msgid "certificate revoked" msgstr "sertifikat dicabut" #: gnutls.c:1992 msgid "signer not found" msgstr "penandatangan tak ditemukan" #: gnutls.c:1994 msgid "signer not a CA certificate" msgstr "penandatangan bukan suatu sertifikat CA" #: gnutls.c:1996 msgid "insecure algorithm" msgstr "algoritma tak aman" #: gnutls.c:1998 msgid "certificate not yet activated" msgstr "sertifikat belum diaktifkan" #: gnutls.c:2000 msgid "certificate expired" msgstr "sertifikat kadaluarsa" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2005 msgid "signature verification failed" msgstr "verifikasi tandatangan gagal" #: gnutls.c:2054 openssl.c:1399 openssl.c:1551 msgid "certificate does not match hostname" msgstr "sertifikat tak cocok dengan nama host" #: gnutls.c:2059 openssl.c:1398 openssl.c:1557 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Gagal verifikasi sertifikat server: %s\n" #: gnutls.c:2126 msgid "Failed to allocate memory for cafile certs\n" msgstr "Gagal mengalokasikan memori untuk sert cafile\n" #: gnutls.c:2147 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Gagal baca sert dari cafile: %s\n" #: gnutls.c:2163 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Gagal membuka berkas CA '%s': %s\n" #: gnutls.c:2176 openssl.c:1679 msgid "Loading certificate failed. Aborting.\n" msgstr "Pemuatan sertifikat gagal. Menggugurkan.\n" #: gnutls.c:2237 #, c-format msgid "Failed to set TLS priority string (\"%s\"): %s\n" msgstr "Gagal menata string prioritas TLS (\"%s\"): %s\n" #: gnutls.c:2249 openssl.c:1796 #, c-format msgid "SSL negotiation with %s\n" msgstr "Negosiasi SSL dengan %s\n" #: gnutls.c:2296 openssl.c:1822 msgid "SSL connection cancelled\n" msgstr "Koneksi SSL dibatalkan\n" #: gnutls.c:2303 #, c-format msgid "SSL connection failure: %s\n" msgstr "Kegagalan koneksi SSL: %s\n" #: gnutls.c:2312 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "GnuTLS kembalian tak fatal selama jabat tangan: %s\n" #: gnutls.c:2318 openssl.c:1839 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "Tersambung ke HTTPS pada %s\n" #: gnutls.c:2321 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "Renegosiasi SSL pada %s\n" #: gnutls.c:2483 openssl-pkcs11.c:199 #, c-format msgid "PIN required for %s" msgstr "Diperlukan PIN untuk %s" #: gnutls.c:2487 openssl-pkcs11.c:202 msgid "Wrong PIN" msgstr "PIN salah" #: gnutls.c:2490 msgid "This is the final try before locking!" msgstr "Ini adalah percobaan terakhir sebelum penguncian!" #: gnutls.c:2492 msgid "Only a few tries left before locking!" msgstr "Hanya beberapa percobaan tersisa sebelum mengunci!" #: gnutls.c:2497 openssl-pkcs11.c:206 msgid "Enter PIN:" msgstr "Masukkan PIN:" #: gnutls.c:2583 openssl.c:1967 msgid "Unsupported OATH HMAC algorithm\n" msgstr "Algoritma HMAC OATH tak didukung\n" #: gnutls.c:2592 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "Gagal menghitung HMAC OATH: %s\n" #: gnutls_tpm.c:54 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "Fungsi tanda tangan TPM dipanggil untuk %d byte.\n" #: gnutls_tpm.c:61 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Gagal membuat objek hash TPM: %s\n" #: gnutls_tpm.c:68 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Gagal menata nilai dalam objek hash TPM: %s\n" #: gnutls_tpm.c:78 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "Tandatangan hash TPM gagal: %s\n" #: gnutls_tpm.c:100 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Galat saat mengawa kode blob kunci TSS: %s\n" #: gnutls_tpm.c:108 gnutls_tpm.c:119 gnutls_tpm.c:132 msgid "Error in TSS key blob\n" msgstr "Galat dalam blob kunci TSS\n" #: gnutls_tpm.c:139 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Gagal membuat konteks TPM: %s\n" #: gnutls_tpm.c:146 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Gagal menyambung konteks TPM: %s\n" #: gnutls_tpm.c:154 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Gagal memuat kunci SRK TPM: %s\n" #: gnutls_tpm.c:161 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Gagal memuat objek kebijakan SRK TPM: %s\n" #: gnutls_tpm.c:182 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Gagal menata PIN TPM: %s\n" #: gnutls_tpm.c:198 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Gagal memuat blob kunci TPM: %s\n" #: gnutls_tpm.c:205 msgid "Enter TPM SRK PIN:" msgstr "Masukkan PIN SRK TPM:" #: gnutls_tpm.c:226 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Gagal membuat objek kebijakan kunci: %s\n" #: gnutls_tpm.c:234 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Gagal menugaskan kebijakan ke kunci: %s\n" #: gnutls_tpm.c:240 msgid "Enter TPM key PIN:" msgstr "Masukkan PIN kunci TPM:" #: gnutls_tpm.c:251 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Gagal menata PIN kunci: %s\n" #: gnutls_tpm2.c:92 gnutls_tpm2_esys.c:474 gnutls_tpm2_ibm.c:419 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:198 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:208 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:217 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:225 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:231 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:249 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:270 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:275 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:384 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2_esys.c:173 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:189 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:190 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:191 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:192 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:196 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:201 gnutls_tpm2_ibm.c:262 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:209 gnutls_tpm2_esys.c:303 gnutls_tpm2_esys.c:374 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:221 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:226 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:245 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:250 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:258 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:261 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:274 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:295 gnutls_tpm2_ibm.c:278 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:309 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:317 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:323 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:333 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:363 gnutls_tpm2_ibm.c:363 gnutls_tpm2_ibm.c:450 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:395 #, c-format msgid "TPM2 RSA sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:414 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:420 gnutls_tpm2_esys.c:500 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:464 gnutls_tpm2_ibm.c:405 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:494 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:532 gnutls_tpm2_ibm.c:485 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:546 gnutls_tpm2_ibm.c:502 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:555 gnutls_tpm2_ibm.c:512 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:569 gnutls_tpm2_ibm.c:523 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:54 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:226 #, c-format msgid "%s\n" msgstr "" #: gpst.c:229 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:417 #, c-format msgid "Unknown ESP %s algorithm: %s" msgstr "" #: gpst.c:477 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: gpst.c:483 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:487 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:498 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:551 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:560 oncp.c:835 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" "Mengabaikan kunci ESP karena dukungan ESP tak tersedia pada build ini\n" #: gpst.c:627 msgid "ESP disabled" msgstr "" #: gpst.c:629 msgid "No ESP keys received" msgstr "" #: gpst.c:631 msgid "ESP support not available in this build" msgstr "" #: gpst.c:635 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:680 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:702 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:711 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:719 #, c-format msgid "Got inappropriate HTTP GET-tunnel response: %.*s\n" msgstr "" #: gpst.c:861 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" "VPN connectivity may be disabled or limited without HIP report submission.\n" "You need to provide a --csd-wrapper argument with the HIP report submission " "script.\n" msgstr "" #: gpst.c:871 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:900 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:905 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:911 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:913 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:942 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:966 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:972 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:999 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1015 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1051 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1072 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1082 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1086 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1092 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: gpst.c:1101 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1109 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1157 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1162 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1182 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1202 #, c-format msgid "Sending data packet of %d bytes\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Galat saat mengimpor nama GSSAPI untuk otentikasi\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "Galat saat menjangkitkan respons GSSAPI\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "Mencoba otentikasi GSSAPI ke proksi\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "Mencoba otentikasi GSSAPI ke server '%s'\n" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "Otentikasi GSSAPI telah lengkap\n" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "Token GSSAPI terlalu besar (%zd byte)\n" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "Sedang mengirim token GSSAPI berukuran %zu byte\n" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "Gagal mengirim token otentikasi GSSAPI ke proksi: %s\n" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "Gagal menerima token otentikasi GSSAPI dari proksi: %s\n" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "Server SOCKS melaporkan kegagalan konteks GSSAPI\n" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "Respons status GSSAPI yang tak dikenal (0x%02x) dari server SOCKS\n" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "Mendapat token GSSAPI berukuran %zu byte: %02x %02x %02x %02x\n" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "Mengirim negosiasi proteksi GSSAPI %zu byte\n" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "Gagal mengirim respons proteksi GSSAPI ke proksi: %s\n" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "Gagal menerima respons proteksi GSSAPI dari proksi: %s\n" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "Mendapat respons proteksi GSSAPI %zu byte: %02x %02x %02x %02x\n" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "Respons proteksi GSSAPI yang tak valid dari proksi (%zu byte)\n" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "Proksi SOCKS menuntut integritas pesan, yang tak didukung\n" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "Proksi SOCKS menuntut kerahasiaan pesan, yang tak didukung\n" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "Proksi SOCKS menuntuk proteksi yang tak dikenal bertipe 0x%02x\n" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "Mencoba otentikasi Dasar HTTP ke proksi\n" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "Mencoba otentikasi Dasar HTTP ke server '%s'\n" #: http-auth.c:200 http.c:1165 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "Versi OpenConnect ini dibangun tanpa dukungan GSSAPI\n" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "Proksi meminta otentikasi Dasar yang secara baku dinonaktifkan\n" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "Server '%s' meminta otentikasi Dasar yang secara baku dinonaktifkan\n" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "Tak ada lagi metoda otentikasi yang dapat dicoba\n" #: http.c:319 msgid "No memory for allocating cookies\n" msgstr "Tak ada memori untuk mengalokasikan cookie\n" #: http.c:394 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Gagal mengurai tanggapan HTTP '%s'\n" #: http.c:400 #, c-format msgid "Got HTTP response: %s\n" msgstr "Mendapat respon HTTP: %s\n" #: http.c:408 msgid "Error processing HTTP response\n" msgstr "Galat saat memroses respon HTTP\n" #: http.c:415 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Mengabaikan baris respon HTTP tak dikenal '%s'\n" #: http.c:435 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Cookie yang tak valid ditawarkan: %s\n" #: http.c:454 msgid "SSL certificate authentication failed\n" msgstr "Otentikasi sertifikat SSL gagal\n" #: http.c:485 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Tubuh respon punya ukuran negatif (%d)\n" #: http.c:496 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Transfer-Encoding tak dikenal: %s\n" #. Now the body, if there is one #: http.c:515 #, c-format msgid "HTTP body %s (%d)\n" msgstr "HTTP body %s (%d)\n" #: http.c:529 http.c:556 msgid "Error reading HTTP response body\n" msgstr "Galat saat membaca tubuh respon HTTP\n" #: http.c:542 msgid "Error fetching chunk header\n" msgstr "Galat saat mengambil tajuk penggalan\n" #: http.c:566 msgid "Error fetching HTTP response body\n" msgstr "Galat saat mengambil tubuh respon HTTP\n" #: http.c:569 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "Galat dalam pengawakodean terpenggal. Berharap '', mendapat: '%s'" #: http.c:581 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Tak bisa menerima tubuh HTTP 1.0 tanpa menutup koneksi\n" #: http.c:708 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Gagal mengurai URL terbelokkan '%s': %s\n" #: http.c:732 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Tak bisa mengikuti pengalihan ke URL bukan https '%s'\n" #: http.c:760 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Gagal mengalokasikan path baru bagi pengalihan relatif: %s\n" #: http.c:973 oncp.c:591 #, c-format msgid "Unexpected %d result from server\n" msgstr "Hasil %d yang tak diharapkan dari server\n" #: http.c:1021 msgid "request granted" msgstr "permintaan diberikan" #: http.c:1022 msgid "general failure" msgstr "kegagalan umum" #: http.c:1023 msgid "connection not allowed by ruleset" msgstr "koneksi tidak diijinkan oleh ruleset" #: http.c:1024 msgid "network unreachable" msgstr "jaringan tak dapat dijangkau" #: http.c:1025 msgid "host unreachable" msgstr "host tak dapat dihubungi" #: http.c:1026 msgid "connection refused by destination host" msgstr "koneksi ditolak oleh host tujuan" #: http.c:1027 msgid "TTL expired" msgstr "TTL kadaluarsa" #: http.c:1028 msgid "command not supported / protocol error" msgstr "perintah tidak didukung / galat protokol" #: http.c:1029 msgid "address type not supported" msgstr "tipe alamat tidak didukung" #: http.c:1039 msgid "SOCKS server requested username/password but we have none\n" msgstr "Server SOCKS meminta nama pengguna/sandi tapi kami tak punya\n" #: http.c:1047 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "Nama pengguna dan sandi untuk otentikasi SOCKS mesti < 255 byte\n" #: http.c:1062 http.c:1118 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Galat saat menulis permintaan auth ke proksi SOCKS: %s\n" #: http.c:1070 http.c:1125 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Galat saat membaca respon auth dari proksi SOCKS: %s\n" #: http.c:1077 http.c:1131 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Respon auth yang tak diharapkan dari proksi SOCKS: %02x %02x\n" #: http.c:1083 msgid "Authenticated to SOCKS server using password\n" msgstr "Terotentikasi ke server SOCKS memakai sandi\n" #: http.c:1087 msgid "Password authentication to SOCKS server failed\n" msgstr "Otentikasi sandi ke server SOCKS gagal\n" #: http.c:1143 http.c:1150 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "Server SOCKS meminta otentikasi GSSAPI\n" #: http.c:1156 msgid "SOCKS server requested password authentication\n" msgstr "Server SOCKS meminta otentikasi sandi\n" #: http.c:1163 msgid "SOCKS server requires authentication\n" msgstr "Server SOCKS memerlukan otentikasi\n" #: http.c:1170 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "Server SOCKS meminta otentikasi yang tak dikenal bertipe %02x\n" #: http.c:1176 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Meminta koneksi proksi SOCKS ke %s:%d\n" #: http.c:1191 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Galat saat menulis permintaan koneksi ke proksi SOCKS: %s\n" #: http.c:1199 http.c:1241 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Galat saat membaca respon koneksi dari proksi SOCKS: %s\n" #: http.c:1205 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Respon koneksi yang tak diharapkan dari proksi SOCKS: %02x %02x\n" #: http.c:1213 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "Galat proksi SOCKS %02x: %s\n" #: http.c:1217 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "Galat proksi SOCKS %02x\n" #: http.c:1234 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Tipe alamat yang tak diharapkan %02x dalam respon koneksi SOCKS\n" #: http.c:1257 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Meminta koneksi proksi HTTP ke %s:%d\n" #: http.c:1292 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Pengiriman permintaan proksi gagal: %s\n" #: http.c:1315 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "Permintaan CONNECT proksi gagal: %d\n" #: http.c:1334 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Tipe proksi '%s' tak dikenal\n" #: http.c:1383 msgid "Only http or socks(5) proxies supported\n" msgstr "Hanya proksi http atau socks(5) yang didukung\n" #: library.c:112 msgid "Cisco AnyConnect or openconnect" msgstr "Cisco AnyConnect atau openconnect" #: library.c:113 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "Kompatibel dengan Cisco AnyConnect SSL VPN, serta ocserv" #: library.c:129 msgid "Juniper Network Connect" msgstr "Juniper Network Connect" #: library.c:130 msgid "Compatible with Juniper Network Connect / Pulse Secure SSL VPN" msgstr "Kompatibel dengan VPN SSL Juniper Network Connect / Pulse Secure" #: library.c:148 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:149 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:211 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "Protokol VPN '%s' tak dikenal\n" #: library.c:233 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Dibangun terhadap pustaka SSL tanpa dukungan DTLS Cisco\n" #: library.c:656 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Gagal mengurai URL server '%s\n" #: library.c:662 msgid "Only https:// permitted for server URL\n" msgstr "Hanya https:// yang diijinkan bagi URL server\n" #: library.c:1056 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "Hash sertifikat tidak dikenal: %s.\n" #: library.c:1085 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" "Ukuran dari sidik jari yang disediakan kurang dari minimum yang diperlukan " "(%u).\n" #: library.c:1146 msgid "No form handler; cannot authenticate.\n" msgstr "Tak ada penangan formulir; tak bisa mengotentikasi.\n" #: main.c:340 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "CommandLineToArgvW() gagal: %s\n" #: main.c:353 #, c-format msgid "Fatal error in command line handling\n" msgstr "Galat fatal dalam penanganan baris perintah\n" #: main.c:388 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "ReadConsole() gagal: %s\n" #: main.c:401 #, c-format msgid "fgetws() failed: %s\n" msgstr "fgetws() gagal: %s\n" #: main.c:416 main.c:429 #, c-format msgid "Error converting console input: %s\n" msgstr "Galat saat mengonversi masukan konsol: %s\n" #: main.c:423 main.c:689 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Kegagalan alokasi bagi string dari stdin\n" #: main.c:584 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" "Untuk bantuan atas OpenConnect, harap lihat halaman web di\n" " http://www.infradead.org/openconnect/mail.html\n" #: main.c:593 #, c-format msgid "Using OpenSSL. Features present:" msgstr "Memakai OpenSSL. Fitur yang ada:" #: main.c:595 #, c-format msgid "Using GnuTLS. Features present:" msgstr "Memakai GnuTLS. Fitur yang ada:" #: main.c:608 msgid "OpenSSL ENGINE not present" msgstr "MESIN OpenSSL tak ada" #: main.c:647 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" "PERINGATAN: Biner ini tidak memiliki dukungan DTLS dan/atau ESP. Kinerja " "akan terganggu.\n" #: main.c:657 #, c-format msgid "Supported protocols:" msgstr "Protokol yang didukung:" #: main.c:659 main.c:675 msgid " (default)" msgstr "(baku)" #: main.c:672 msgid "Set VPN protocol" msgstr "" #: main.c:713 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:754 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Tak bisa memroses path executable \"%s\" ini" #: main.c:760 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "Alokasi bagi path vpnc-script gagal\n" #: main.c:780 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "Timpa nama host '%s' menjadi '%s'\n" #: main.c:793 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Cara pakai: openconnect [opsi] \n" #: main.c:794 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" "Klien terbuka bagi beberapa protokol VPN, versi %s\n" "\n" #: main.c:796 msgid "Read options from config file" msgstr "Baca opsi dari berkas konfig" #: main.c:797 msgid "Report version number" msgstr "Laporkan nomor versi" #: main.c:798 msgid "Display help text" msgstr "Tampilkan teks bantuan" #: main.c:802 msgid "Authentication" msgstr "" #: main.c:803 msgid "Set login username" msgstr "Tata nama log masuk" #: main.c:804 msgid "Disable password/SecurID authentication" msgstr "Matikan otentikasi sandi/SecurID" #: main.c:805 msgid "Do not expect user input; exit if it is required" msgstr "Jangan mengharapkan masukan pengguna; keluar bila itu diperlukan" #: main.c:806 msgid "Read password from standard input" msgstr "Baca kata sandi dari masukan standar" #: main.c:807 msgid "Choose authentication login selection" msgstr "Pilih otentikasi log masuk" #: main.c:808 msgid "Provide authentication form responses" msgstr "" #: main.c:809 msgid "Use SSL client certificate CERT" msgstr "Pakai sertifikat klien SSL SERT" #: main.c:810 msgid "Use SSL private key file KEY" msgstr "Memakai berkas kunci pribadi SSL KEY" #: main.c:811 msgid "Warn when certificate lifetime < DAYS" msgstr "Peringatkan ketika masa hidup sertifikat < HARI" #: main.c:812 msgid "Set login usergroup" msgstr "Tata grup log masuk" #: main.c:813 msgid "Set key passphrase or TPM SRK PIN" msgstr "Atur frasa sandi kunci atau PIN TPM SRK" #: main.c:814 msgid "Key passphrase is fsid of file system" msgstr "Frasa sandi kunci adalah fsid dari sistem berkas" #: main.c:815 msgid "Software token type: rsa, totp or hotp" msgstr "Tipe token perangkat lunak: rsa, totp, atau hotp" #: main.c:816 msgid "Software token secret" msgstr "Rahasia token perangkat lunak" #: main.c:818 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "(CATATAN: libstoken (RSA SecurID) dimatikan dalam build ini)" #: main.c:821 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(CATATAN: OATH YubiKey dimatikan dalam build ini)" #: main.c:824 msgid "Server validation" msgstr "" #: main.c:825 msgid "Server's certificate SHA1 fingerprint" msgstr "Sidik jari SHA1 sertifikat server" #: main.c:826 msgid "Do not require server SSL cert to be valid" msgstr "Jangan mempersyaratkan agar sert SSL server mesti valid" #: main.c:827 msgid "Disable default system certificate authorities" msgstr "Nonaktifkan certificate authority sistem baku" #: main.c:828 msgid "Cert file for server verification" msgstr "Berkas cert bagi verifikasi server" #: main.c:830 msgid "Internet connectivity" msgstr "" #: main.c:831 msgid "Set proxy server" msgstr "Tata server proksi" #: main.c:832 msgid "Set proxy authentication methods" msgstr "Atur metoda otentikasi proksi" #: main.c:833 msgid "Disable proxy" msgstr "Matikan proxy" #: main.c:834 msgid "Use libproxy to automatically configure proxy" msgstr "Pakai libproxy untuk menata proksi secara otomatis" #: main.c:836 msgid "(NOTE: libproxy disabled in this build)" msgstr "(CATATAN: libproxy dimatikan dalam build ini)" #: main.c:838 msgid "Connection retry timeout in seconds" msgstr "Tenggat waktu coba ulang koneksi dalam detik" #: main.c:839 msgid "Use IP when connecting to HOST" msgstr "Pakai IP ketika menyambung ke HOST" #: main.c:840 msgid "copy TOS / TCLASS when using DTLS" msgstr "salin TOS / TCLASS ketika memakai DTLS" #: main.c:841 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:843 msgid "Authentication (two-phase)" msgstr "" #: main.c:844 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:845 msgid "Read cookie from standard input" msgstr "Baca cookie dari masukan standar" #: main.c:846 msgid "Authenticate only and print login info" msgstr "Hanya otentikasi dan cetak info log masuk" #: main.c:847 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:848 msgid "Print cookie before connecting" msgstr "" #: main.c:851 msgid "Process control" msgstr "" #: main.c:852 msgid "Continue in background after startup" msgstr "Lanjutkan di latar belakang setelah awal mula" #: main.c:853 msgid "Write the daemon's PID to this file" msgstr "Tulis PID daemon ke berkas ini" #: main.c:854 msgid "Drop privileges after connecting" msgstr "Lepas privilese setelah menyambung" #: main.c:857 msgid "Logging (two-phase)" msgstr "" #: main.c:859 msgid "Use syslog for progress messages" msgstr "Pakai syslog untuk pesan-pesan kemajuan" #: main.c:861 msgid "More output" msgstr "Lebih banyak keluaran" #: main.c:862 msgid "Less output" msgstr "Keluaran lebih sedikit" #: main.c:863 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "Curahkan trafik otentikasi HTTP (mengimplikasikan --verbose)" #: main.c:864 msgid "Prepend timestamp to progress messages" msgstr "Sisipkan tanda waktu ke pesan-pesan kemajuan" #: main.c:866 msgid "VPN configuration script" msgstr "" #: main.c:867 msgid "Use IFNAME for tunnel interface" msgstr "Memakai IFNAME untuk antar muka terowongan" #: main.c:868 msgid "Shell command line for using a vpnc-compatible config script" msgstr "Baris perintah shell untuk memakai skrip konfig kompatibel vpnc" #: main.c:869 msgid "default" msgstr "baku" #: main.c:871 msgid "Pass traffic to 'script' program, not tun" msgstr "Lewatkan trafik ke program 'skrip', bukan tun" #: main.c:874 msgid "Tunnel control" msgstr "" #: main.c:875 msgid "Do not ask for IPv6 connectivity" msgstr "Jangan meminta konektivitas IPv6" #: main.c:876 msgid "XML config file" msgstr "Berkas konfig XML" #: main.c:877 msgid "Request MTU from server (legacy servers only)" msgstr "Minta MTU dari server (hanya server legacy)" #: main.c:878 msgid "Indicate path MTU to/from server" msgstr "Indikasikan MTU path dari/ke server" #: main.c:879 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:880 msgid "Disable all compression" msgstr "" #: main.c:881 msgid "Set minimum Dead Peer Detection interval" msgstr "Atur interval Dead Peer Detection (Deteksi Peer Mati) minimum" #: main.c:882 msgid "Require perfect forward secrecy" msgstr "Persyaratkan perfect forward secrecy" #: main.c:883 msgid "Disable DTLS and ESP" msgstr "" #: main.c:884 msgid "OpenSSL ciphers to support for DTLS" msgstr "Cipher OpenSSL yang didukung untuk DTLS" #: main.c:885 msgid "Set packet queue limit to LEN pkts" msgstr "Atur batas antrian paket ke LEN paket" #: main.c:887 msgid "Local system information" msgstr "" #: main.c:888 msgid "HTTP header User-Agent: field" msgstr "HTTP header ruas User-Agent:" #: main.c:889 msgid "Local hostname to advertise to server" msgstr "Nama host yang diumumkan ke server" #: main.c:890 msgid "OS type (linux,linux-64,win,...) to report" msgstr "Tipe OS (linux,linux-64,win,…) untuk dilaporkan" #: main.c:891 msgid "reported version string during authentication" msgstr "" #: main.c:892 msgid "default:" msgstr "" #: main.c:895 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:896 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:897 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:900 msgid "Server bugs" msgstr "" #: main.c:901 msgid "Disable HTTP connection re-use" msgstr "Nonfungsikan pemakaian ulang koneksi HTTP" #: main.c:902 msgid "Do not attempt XML POST authentication" msgstr "Jangan coba otentikasi XML POST" #: main.c:924 #, c-format msgid "Failed to allocate string\n" msgstr "Gagal mengalokasikan string\n" #: main.c:997 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Gagal memperoleh baris dari berkas konfigurasi: '%s'\n" #: main.c:1037 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Opsi tak dikenal di baris %d: '%s'\n" #: main.c:1047 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Opsi '%s' tak meminta argumen pada baris %d\n" #: main.c:1051 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Opsi '%s' memerlukan argumen pada baris %d\n" #: main.c:1076 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "Pengguna tidak valid \"%s\": %s\n" #: main.c:1086 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "ID pengguna tidak valid \"%d\": %s\n" #: main.c:1130 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "PERINGATAN: Tidak dapat mengatur lokal: %s\n" #: main.c:1140 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "PERINGATAN: Versi openconnect ini dibangun tanpa dukungan\n" " iconv tapi nampaknya Anda memakai set karakter legasi\n" " \"%s\". Bersiaplah mengalami keanehan.\n" #: main.c:1147 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "PERINGATAN: Versi openconnect ini adalah %s tapi\n" " pustaka libopenconnect adalah %s\n" #: main.c:1157 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Gagal mengalokasikan struktur vpninfo\n" #: main.c:1215 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Tak bisa memakai opsi 'config' di dalam berkas konfig\n" #: main.c:1223 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Tak bisa membuka berkas konfig '%s': %s\n" #: main.c:1239 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "Mode kompresi '%s' yang tak valid\n" #: main.c:1260 #, c-format msgid "Missing colon in resolve option\n" msgstr "Kurang titik dua dalam opsi resolve\n" #: main.c:1265 #, c-format msgid "Failed to allocate memory\n" msgstr "Gagal mengalokasikan memori\n" #: main.c:1349 main.c:1358 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d terlalu kecil\n" #: main.c:1388 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Mematikan penggunaan ulang semua koneksi HTTP karena opsi --no-http-" "keepalive.\n" "Bila ini membantu, harap laporkan ke .\n" #: main.c:1394 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" "Opsi --no-cert-check tidak aman dan telah dihapus.\n" "Perbaiki sertifikat server Anda atau gunakan --servercert untuk " "mempercayainya.\n" #: main.c:1411 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Panjang antrian nol tak diijinkan; memakai 1\n" #: main.c:1425 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect versi %s\n" #: main.c:1463 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Mode token perangkat lunak yang tak valid \"%s\"\n" #: main.c:1473 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "Identitas OS tidak sah \"%s\"\n" #: main.c:1506 #, c-format msgid "Too many arguments on command line\n" msgstr "Argumen terlalu banyak pada baris perintah\n" #: main.c:1509 #, c-format msgid "No server specified\n" msgstr "Tak ada server yang dinyatakan\n" #: main.c:1525 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "Versi openconnect ini dibangun tanpa dukungan libproxy\n" #: main.c:1555 #, c-format msgid "Error opening cmd pipe\n" msgstr "Gagal membuka pipa cmd\n" #: main.c:1588 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "Gagal mendapat cookie WebVPN\n" #: main.c:1609 #, c-format msgid "Creating SSL connection failed\n" msgstr "Pembuatan koneksi SSL gagal\n" #: main.c:1625 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:1633 #, c-format msgid "Connected as %s%s%s, using SSL%s%s, with %s%s%s %s\n" msgstr "" #: main.c:1639 msgid "disabled" msgstr "" #: main.c:1639 msgid "in progress" msgstr "" #: main.c:1643 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "Tak ada argumen --script yang diberikan; DNS dan routing tak ditata\n" #: main.c:1645 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Lihat http://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:1658 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Gagal membuka '%s' untuk menulis: %s\n" #: main.c:1670 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Menlanjutkan di latar belakang; pid %d\n" #: main.c:1687 msgid "User requested reconnect\n" msgstr "Pengguna meminta sambung ulang\n" #: main.c:1695 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "Cookie ditolak saat koneksi; keluar.\n" #: main.c:1699 msgid "Session terminated by server; exiting.\n" msgstr "Sesi diakhiri oleh server; keluar.\n" #: main.c:1703 msgid "User cancelled (SIGINT/SIGTERM); exiting.\n" msgstr "" #: main.c:1707 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "Pengguna melepas dari sesi (SIGHUP); keluar.\n" #: main.c:1711 msgid "Unknown error; exiting.\n" msgstr "Galat tak dikenal; keluar.\n" #: main.c:1730 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Gagal membuka %s untuk menulis: %s\n" #: main.c:1738 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Gagal menulis konfig ke %s: %s\n" #: main.c:1797 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "Sertifikat SSL server tak cocok: %s\n" #: main.c:1816 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Sertifikat dari server VPN \"%s\" gagal verifikasi.\n" "Alasan: %s\n" #: main.c:1819 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" "Untuk mempercayai server ini di masa mendatang, mungkin tambahkan ini ke " "baris perintah Anda:\n" #: main.c:1820 #, c-format msgid " --servercert %s\n" msgstr " --servercert %s\n" #: main.c:1825 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Masukkan '%s' untuk menerima, '%s' untuk menggugurkan; sebarang yang lain " "untuk menilik:" #: main.c:1826 main.c:1844 msgid "no" msgstr "tidak" #: main.c:1826 main.c:1832 msgid "yes" msgstr "ya" #: main.c:1853 #, c-format msgid "Server key hash: %s\n" msgstr "Hash kunci server: %s\n" #: main.c:1887 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Pilihan auth \"%s\" cocok dengan opsi berganda\n" #: main.c:1890 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Pilihan auth \"%s\" tak tersedia\n" #: main.c:1911 msgid "User input required in non-interactive mode\n" msgstr "Masukan pengguna diperlukan dalam mode non interaktif\n" #: main.c:2149 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Gagal membuka berkas token untuk menulis: %s\n" #: main.c:2157 #, c-format msgid "Failed to write token: %s\n" msgstr "Gagal menulis token: %s\n" #: main.c:2203 main.c:2224 #, c-format msgid "Soft token string is invalid\n" msgstr "String token lunak tak valid\n" #: main.c:2206 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Tak bisa membuka berkas ~/.stokenrc\n" #: main.c:2209 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "OpenConnect tak dibangun dengan dukungan libstoken\n" #: main.c:2212 #, c-format msgid "General failure in libstoken\n" msgstr "Kegagalan umum dalam libstoken\n" #: main.c:2227 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "OpenConnect tak dibangun dengan dukungan liboath\n" #: main.c:2230 #, c-format msgid "General failure in liboath\n" msgstr "Kegagalan umum dalam liboath\n" #: main.c:2241 #, c-format msgid "Yubikey token not found\n" msgstr "Token YubiKey tak ditemukan\n" #: main.c:2244 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "OpenConnect tak dibangun dengan dukungan YubiKey\n" #: main.c:2247 #, c-format msgid "General Yubikey failure: %s\n" msgstr "Kegagalan umum Yubikey: %s\n" #: mainloop.c:127 #, c-format msgid "Set up tun script failed\n" msgstr "Penyiapan skrip tun gagal\n" #: mainloop.c:134 #, c-format msgid "Set up tun device failed\n" msgstr "Penyiapan perangkat tun gagal\n" #: mainloop.c:265 msgid "Caller paused the connection\n" msgstr "Pemanggil mengistirahatkan koneksi\n" #: mainloop.c:273 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Tak ada pekerjaan; tidur selama %d ms...\n" #: mainloop.c:294 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "WaitForMultipleObjects gagal: %s\n" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "InitializeSecurityContext() gagal: %lx\n" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "AcquireCredentialsHandle() gagal: %lx\n" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "Galat saat berkomunikasi dengan pembantu ntlm_auth\n" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "Mencoba otentikasi NTLM HTTP ke proksi (single-sign-on)\n" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "Mencoba otentikasi NTLM HTTP ke server '%s' (single-sign-on)\n" #: ntlm.c:978 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "Mencoba otentikasi NTLMv%d HTTP ke proksi\n" #: ntlm.c:982 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "Mencoba otentikasi NTLMv%d HTTP ke server '%s'\n" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "String token base32 tak valid\n" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "Gagal mengalokasikan memori untuk dekode rahasia OATH\n" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "Versi OpenConnect ini dibangun tanpa dukungan PSKC\n" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "Ok untuk menjangkitkan tokencode INITIAL\n" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "Ok untuk menjangkitkan tokencode NEXT\n" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "Server menolak token lunak; berpindah ke entri manual\n" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "Menjangkitkan kode token OATH TOTP\n" #: oath.c:565 msgid "Generating OATH HOTP token code\n" msgstr "Menjangkitkan kode token OATH HOTP\n" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "Cookie '%s' tak valid\n" #: oncp.c:160 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "Panjang %d yang tak diharapkan untuk TLV %d/%d\n" #: oncp.c:166 #, c-format msgid "Received MTU %d from server\n" msgstr "Menerima MTU %d dari server\n" #: oncp.c:175 #, c-format msgid "Received DNS server %s\n" msgstr "Menerima server DNS %s\n" #: oncp.c:186 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "Meneriman domain pencarian DNS %.*s\n" #: oncp.c:201 #, c-format msgid "Received internal IP address %s\n" msgstr "Menerima alamat IP internal %s\n" #: oncp.c:210 #, c-format msgid "Received netmask %s\n" msgstr "Menerima netmask %s\n" #: oncp.c:219 #, c-format msgid "Received internal gateway address %s\n" msgstr "Menerima alamat gateway internal %s\n" #: oncp.c:232 #, c-format msgid "Received split include route %s\n" msgstr "Menerima split termasuk route %s\n" #: oncp.c:254 #, c-format msgid "Received split exclude route %s\n" msgstr "Menerima split tidak termasuk route %s\n" #: oncp.c:274 #, c-format msgid "Received WINS server %s\n" msgstr "Menerima server WINS %s\n" #: oncp.c:297 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "Enkripsi ESP: 0x%02x (%s)\n" #: oncp.c:316 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "HMAC ESP: 0x%02x (%s)\n" #: oncp.c:327 #, c-format msgid "ESP compression: %d\n" msgstr "Kompresi ESP: %d\n" #: oncp.c:335 #, c-format msgid "ESP port: %d\n" msgstr "Port ESP: %d\n" #: oncp.c:342 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "Seumur hidup kunci ESP: %u byte\n" #: oncp.c:350 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "Seumur hidup kunci ESP: %u detik\n" #: oncp.c:358 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "Fallback ESP ke SSL: %u detik\n" #: oncp.c:366 #, c-format msgid "ESP replay protection: %d\n" msgstr "Perlindungan putar ulang ESP: %d\n" #: oncp.c:374 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "SPI ESP (ke luar): %x\n" #: oncp.c:383 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "%d byte rahasia ESP\n" #: oncp.c:395 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "Grup TLV %d tak dikenal attr %d len %d: %s\n" #: oncp.c:473 msgid "Failed to parse KMP header\n" msgstr "Gagal mengurai header KMP\n" #: oncp.c:490 msgid "Failed to parse KMP message\n" msgstr "Gagal mengurai pesan KMP\n" #: oncp.c:496 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "Mendapat KMP pesan %d berukuran %d\n" #: oncp.c:512 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "Menerima TLV non-ESP (group %d) dalam KMP negosiasi ESP\n" #: oncp.c:577 oncp.c:609 oncp.c:747 msgid "Error creating oNCP negotiation request\n" msgstr "Kesalahan saat membuat permintaaan negosiasi oNCP\n" #: oncp.c:618 oncp.c:783 msgid "Short write in oNCP negotiation\n" msgstr "Tulis pendek dalam negosiasi oNCP\n" #: oncp.c:631 oncp.c:666 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "Baca %d byte dari record SSL\n" #: oncp.c:636 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "Respon tak diharapkan berukuran %d setelah paket nama host\n" #: oncp.c:643 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "Respon server ke paket nama host salah 0x%02x\n" #: oncp.c:670 msgid "Invalid packet waiting for KMP 301\n" msgstr "Paket tak valid saat menunggu KMP 301\n" #: oncp.c:683 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "Mengharapkan pesan KMP 301 dari server tapi memperoleh %d\n" #: oncp.c:692 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "Pesan 301 KMP dari server terlalu besar (%d byte)\n" #: oncp.c:698 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "Mendapat pesan KMP 301 sepanjang %d\n" #: oncp.c:705 msgid "Failed to read continuation record length\n" msgstr "Gagal membaca panjang rekaman lanjutan\n" #: oncp.c:711 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "Catatan tambahan %d byte terlalu besar; akan membuat %d\n" #: oncp.c:720 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "Gagal membaca rekaman lanjutan sepanjang %d\n" #: oncp.c:726 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "Membaca tambahan %d byte KMP pesan 301\n" #: oncp.c:767 msgid "Error negotiating ESP keys\n" msgstr "Kesalahan saat menegosiasi kunci ESP\n" #: oncp.c:776 msgid "oNCP negotiation request outgoing:\n" msgstr "Permintaan negosiasi oNCP ke luar:\n" #: oncp.c:829 msgid "new incoming" msgstr "masuk baru" #: oncp.c:830 msgid "new outgoing" msgstr "keluar baru" #: oncp.c:855 msgid "Read only 1 byte of oNCP length field\n" msgstr "Membaca hanya 1 byte ruas panjang oNCP\n" #: oncp.c:864 msgid "Server terminated connection (session expired)\n" msgstr "Server mengakhiri koneksi (sesi kedaluarsa)\n" #: oncp.c:868 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "Server mengakhiri koneksi (alasan: %d)\n" #: oncp.c:874 msgid "Server sent zero-length oNCP record\n" msgstr "Server mengirim rekaman oNCP panjang-nol\n" #: oncp.c:969 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "KMP masuk pesan %d berukuran %d (mendapat %d)\n" #: oncp.c:972 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "Melanjutkan memroses KMP pesan %d kini ukuran %d (mendapat %d)\n" #: oncp.c:991 msgid "Unrecognised data packet\n" msgstr "Paket data tak dikenal\n" #: oncp.c:1053 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "Pesan KMP %d tak dikenal berukuran %d:\n" #: oncp.c:1058 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr ".... + %d byte lagi belum diterima\n" #: oncp.c:1073 msgid "Packet outgoing:\n" msgstr "Paket keluar:\n" #: oncp.c:1134 msgid "Sent ESP enable control packet\n" msgstr "Mengirim paket kendali fungsikan ESP\n" #: oncp.c:1268 msgid "Logout successful.\n" msgstr "Log keluar sukses.\n" #: openconnect-internal.h:1119 openconnect-internal.h:1127 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "GALAT: %s() dipanggil dengan UTF-8 yang tak valid bagi argumen '%s'\n" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "Tidak mampu menghitung overhead DTLS untuk %s\n" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "Gagal membuat SSL_SESSION ASN.1 untuk OpenSSL: %s\n" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "OpenSSL gagal mengurai SSL_SESSION ASN.1\n" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "Inisialisasi sesi DTLSv1 gagal\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "callback PSK\n" #: openssl-dtls.c:365 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Inisialisasi DTLSv1 CTX gagal\n" #: openssl-dtls.c:378 msgid "Set DTLS CTX version failed\n" msgstr "Gagal menata versi CTX DTLS\n" #: openssl-dtls.c:395 msgid "Failed to generate DTLS key\n" msgstr "Gagal membuat kunci DTLS\n" #: openssl-dtls.c:413 msgid "Set DTLS cipher list failed\n" msgstr "Penataan daftar cipher DTLS gagal\n" #: openssl-dtls.c:439 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:460 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "SSL_set_session() gagal dengan versi protokol lama 0x%x\n" "Apakah Anda memakai versi OpenSSL yang lebih tua dari 0.9.8m?\n" "Lihat http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Pakai opsi baris perintah --no-dtls untuk menghindari pesan ini\n" #: openssl-dtls.c:493 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:566 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "Terjalin koneksi DTLS (memakai OpenSSL). Ciphersuite %s.\n" #: openssl-dtls.c:603 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" "OpenSSL Anda lebih tua daripada yang Anda pakai untuk membangun, sehingga " "DTLS mungkin gagal!" #: openssl-dtls.c:654 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Ini mungkin karena OpenSSL Anda rusak\n" "Lihat http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: openssl-dtls.c:661 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "Jabat tangan DTLS gagal: %d\n" #: openssl-esp.c:87 msgid "Failed to initialise ESP cipher:\n" msgstr "Gagal menginisialisasi cipher ESP:\n" #: openssl-esp.c:101 msgid "Failed to initialize ESP HMAC\n" msgstr "Gagal menginisialisasi HMAC ESP\n" #: openssl-esp.c:157 msgid "Failed to generate random keys for ESP:\n" msgstr "Gagal membuat kunci acak bagi ESP:\n" #: openssl-esp.c:202 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "Gagal menyiapkan konteks dekripsi bagi paket ESP:\n" #: openssl-esp.c:210 msgid "Failed to decrypt ESP packet:\n" msgstr "Gagal mendekripsi paket ESP:\n" #: openssl-esp.c:241 msgid "Failed to encrypt ESP packet:\n" msgstr "Gagal mengenkripsi paket ESP:\n" #: openssl-pkcs11.c:43 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "Gagal menjalin konteks PKCS#11 libp11:\n" #: openssl-pkcs11.c:49 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "Gagal memuat modul penyedia PKCS#11 (%s):\n" #: openssl-pkcs11.c:269 msgid "PIN locked\n" msgstr "PIN terkunci\n" #: openssl-pkcs11.c:272 msgid "PIN expired\n" msgstr "PIN kedaluarsa\n" #: openssl-pkcs11.c:275 msgid "Another user already logged in\n" msgstr "Pengguna lain telah log masuk\n" #: openssl-pkcs11.c:279 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "Galat tak dikenal saat log masuk ke token PKCS#11\n" #: openssl-pkcs11.c:286 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "Log masuk ke slot PKCS#11 '%s'\n" #: openssl-pkcs11.c:300 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "Gagal meng-enumerasi cert dalam slot PKCS#11 '%s'\n" #: openssl-pkcs11.c:306 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "Menemukan %d cert dalam slot '%s'\n" #: openssl-pkcs11.c:342 openssl-pkcs11.c:565 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "Gagal mengurai URI PKCS#11 '%s'\n" #: openssl-pkcs11.c:349 openssl-pkcs11.c:575 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "Gagal meng-enumerasi slot PKCS#11\n" #: openssl-pkcs11.c:383 openssl-pkcs11.c:617 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "Log masuk ke slot PKCS#11 '%s'\n" #: openssl-pkcs11.c:393 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "Gagal menemukan cert PKCS#11 '%s'\n" #: openssl-pkcs11.c:401 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "Isi X.509 sertifikat tidak diambil oleh libp11\n" #: openssl-pkcs11.c:412 openssl.c:713 msgid "Failed to install certificate in OpenSSL context\n" msgstr "Gagal memasang sertifikat dalam konteks OpenSSL\n" #: openssl-pkcs11.c:458 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "Gagal meng-enumerasi kunci dalam slot PKCS#11 '%s'\n" #: openssl-pkcs11.c:464 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "Menemukan %d kunci dalam slot '%s'\n" #: openssl-pkcs11.c:497 msgid "Certificate has no public key\n" msgstr "Sertifikat tidak punya kunci publik\n" #: openssl-pkcs11.c:503 openssl-pkcs11.c:526 msgid "Certificate does not match private key\n" msgstr "Sertifikat tidak cocok dengan kunci privat\n" #: openssl-pkcs11.c:506 msgid "Checking EC key matches cert\n" msgstr "Memeriksa kunci EC cocok cert\n" #: openssl-pkcs11.c:510 msgid "Failed to allocate signature buffer\n" msgstr "Gagal mengalokasikan penyangga tanda tangan\n" #: openssl-pkcs11.c:520 msgid "Failed to sign dummy data to validate EC key\n" msgstr "Gagal menandatangani data dummy untuk memvalidasi kunci EC\n" #: openssl-pkcs11.c:638 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "Gagal menemukan kunci PKCS#11 '%s'\n" #: openssl-pkcs11.c:649 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "Gagal meng-instansiasi kunci privat dari PKCS#11\n" #: openssl-pkcs11.c:678 msgid "Add key from PKCS#11 failed\n" msgstr "Gagal menambah kunci dari PKCS#11\n" #: openssl-pkcs11.c:710 openssl-pkcs11.c:716 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "Versi OpenConnect ini dibangun tanpa dukungan PKCS#11\n" #: openssl.c:147 msgid "Failed to write to SSL socket\n" msgstr "Gagal menulis ke soket SSL\n" #: openssl.c:197 openssl.c:263 msgid "Failed to read from SSL socket\n" msgstr "Gagal baca dari soket SSL\n" #: openssl.c:292 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" "Galat baca SSL %d (server mungkin menutup koneksi); menyambung ulang.\n" #: openssl.c:317 #, c-format msgid "SSL_write failed: %d\n" msgstr "SSL_write gagal: %d\n" #: openssl.c:389 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "Permintaan UI SSL tak tertangani bertipe %d\n" #: openssl.c:465 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "Kata sandi PEM terlalu panjang (%d >= %d)\n" #: openssl.c:498 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Sertifikat ekstra dari %s: '%s'\n" #: openssl.c:548 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Mengurai PKCS#12 gagal (lihat galat di atas)\n" #: openssl.c:563 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS#12 tak memuat sertifikat!\n" #: openssl.c:572 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS#12 tak memuat kunci privat!\n" #: openssl.c:577 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:600 msgid "Can't load TPM engine.\n" msgstr "Tak bisa memuat mesin TPM.\n" #: openssl.c:606 msgid "Failed to init TPM engine\n" msgstr "Gagal init mesin TPM\n" #: openssl.c:616 msgid "Failed to set TPM SRK password\n" msgstr "Gagal menata kata sandi SRK TPM\n" #: openssl.c:630 msgid "Failed to load TPM private key\n" msgstr "Gagal memuat kunci privat TPM\n" #: openssl.c:636 msgid "Add key from TPM failed\n" msgstr "Gagal menambah kunci dari TPM\n" #: openssl.c:687 openssl.c:835 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Gagal membuka berkas sertifikat %s: %s\n" #: openssl.c:697 msgid "Loading certificate failed\n" msgstr "Pemuatan sertifikat gagal\n" #: openssl.c:735 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "Gagal memroses semua sertifikat pendukung. Tetap mencoba...\n" #: openssl.c:748 msgid "PEM file" msgstr "berkas PEM" #: openssl.c:777 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Gagal membuat BIO bagi butir penyimpanan kunci '%s'\n" #: openssl.c:802 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Memuat kunci privat gagal (kata sandi salah?)\n" #: openssl.c:808 msgid "Loading private key failed (see above errors)\n" msgstr "Memuat kunci privat gagal (lihat galat di atas)\n" #: openssl.c:858 msgid "Failed to load X509 certificate from keystore\n" msgstr "Gagal memuat sertifikat X509 dari penyimpanan kunci\n" #: openssl.c:864 msgid "Failed to use X509 certificate from keystore\n" msgstr "Gagal memakai sertifikat X509 dari penyimpanan kunci\n" #: openssl.c:896 msgid "Failed to use private key from keystore\n" msgstr "Gagal memakai kunci privat dari penyimpanan kunci\n" #: openssl.c:912 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Gagal membuka berkas kunci pribadi %s: %s\n" #: openssl.c:936 openssl.c:951 openssl.c:972 openssl.c:1038 msgid "Loading private key failed\n" msgstr "Memuat kunci privat gagal\n" #: openssl.c:1032 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "Gagal mengonversi PKCS#8 ke OpenSSL EVP_PKEY\n" #: openssl.c:1049 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Gagal mengidentifikasi tipe kunci privat dalam '%s'\n" #: openssl.c:1203 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Altname DNS cocok '%s'\n" #: openssl.c:1210 #, c-format msgid "No match for altname '%s'\n" msgstr "Tak ada yang cocok dengan altname '%s'\n" #: openssl.c:1224 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "Sertifikat memiliki altname GEN_IPADD dengan panjang palsu %d\n" #: openssl.c:1235 openssl.c:1381 #, c-format msgid "Matched %s address '%s'\n" msgstr "Cocok alamat %s '%s'\n" #: openssl.c:1242 #, c-format msgid "No match for %s address '%s'\n" msgstr "Tak ada kecocokan bagi alamat %s '%s'\n" #: openssl.c:1284 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "URI '%s' mengandung path tak kosong; mengabaikan\n" #: openssl.c:1289 #, c-format msgid "Matched URI '%s'\n" msgstr "Cocok URI '%s'\n" #: openssl.c:1300 #, c-format msgid "No match for URI '%s'\n" msgstr "Tidak ada yang cocok untuk URI '%s'\n" #: openssl.c:1315 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "Tak ada altname dalam sert pasangan cocok dengan '%s'\n" #: openssl.c:1323 msgid "No subject name in peer cert!\n" msgstr "Tak ada nama subjek dalam sert pasangan!\n" #: openssl.c:1343 msgid "Failed to parse subject name in peer cert\n" msgstr "Gagal mengurai nama subjek dalam sert pasangan\n" #: openssl.c:1350 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Subjek sert pasangan tak cocok ('%s' != '%s')\n" #: openssl.c:1355 openssl.c:1389 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Nama subjek sertifikat pasangan cocok '%s'\n" #: openssl.c:1451 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Sert ekstra dari cafile: '%s'\n" #: openssl.c:1589 msgid "Error in client cert notAfter field\n" msgstr "Galat dalam sert klien ruas notAfter\n" #: openssl.c:1602 msgid "" msgstr "" #: openssl.c:1655 msgid "Create TLSv1 CTX failed\n" msgstr "Membuat CTX TLSv1 gagal\n" #: openssl.c:1674 msgid "SSL certificate and key do not match\n" msgstr "Sertifikat SSL dan kunci tidak cocok\n" #: openssl.c:1719 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Gagal baca sert dari berkas CA '%s'\n" #: openssl.c:1752 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Gagal membuka berkas CA '%s'\n" #: openssl.c:1812 msgid "SSL connection failure\n" msgstr "Kegagalan koneksi SSL\n" #: openssl.c:1973 msgid "Failed to calculate OATH HMAC\n" msgstr "Gagal menghitung HMAC OATH\n" #: script.c:130 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Buang split buruk termasuk: \"%s\"\n" #: script.c:134 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Buang split buruk selain: \"%s\"\n" #: script.c:507 script.c:555 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Gagal spawn skrip '%s' bagi %s: %s\n" #: script.c:562 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "Skrip '%s' berhenti secara abnormal (%x)\n" #: script.c:570 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Skrip '%s' mengembalikan galat %d\n" #: ssl.c:108 msgid "Socket connect cancelled\n" msgstr "Koneksi soket dibatalkan\n" #: ssl.c:217 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "Gagal menyambung ulang ke proksi %s: %s\n" #: ssl.c:221 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "Gagal menyambung ulang ke host %s: %s\n" #: ssl.c:289 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Proksi dari libproxy: %s://%s:%d/\n" #: ssl.c:317 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "getaddrinfo gagal untuk host '%s': %s\n" #: ssl.c:326 ssl.c:451 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" "Menyambung ulang ke server DynDNS memakai alamat IP yang sebelumnya " "tersinggah\n" #: ssl.c:341 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Sedang mencoba menyambung ke proksi %s%s%s:%s\n" #: ssl.c:342 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Sedang mencoba menyambung ke server %s%s%s:%s\n" #: ssl.c:362 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "Tersambung ke %s%s%s:%s\n" #: ssl.c:374 msgid "Failed to allocate sockaddr storage\n" msgstr "Gagal mengalokasikan penyimpanan sockaddr\n" #: ssl.c:416 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "Gagal menyambung ke %s%s%s:%s: %s\n" #: ssl.c:434 msgid "Forgetting non-functional previous peer address\n" msgstr "Melupakan alamat pasangan sebelumnya yang tak berfungsi\n" #: ssl.c:446 #, c-format msgid "Failed to connect to host %s\n" msgstr "Gagal menyambung ke host %s\n" #: ssl.c:465 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "Menyambung ulang ke proksi %s\n" #: ssl.c:536 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:564 msgid "Could not obtain file system ID for passphrase\n" msgstr "Tak bisa memperoleh ID sistem berkas bagi frasa sandi\n" #: ssl.c:575 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "Gagal membuka berkas kunci pribadi '%s': %s\n" #: ssl.c:603 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:694 msgid "No error" msgstr "Tanpa galat" #: ssl.c:695 msgid "Keystore locked" msgstr "Penyimpanan kunci terkunci" #: ssl.c:696 msgid "Keystore uninitialized" msgstr "Penyimpanan kunci tak terinisialisasi" #: ssl.c:697 msgid "System error" msgstr "Galat sistem" #: ssl.c:698 msgid "Protocol error" msgstr "Galat protokol" #: ssl.c:699 msgid "Permission denied" msgstr "Ijin ditolak" #: ssl.c:700 msgid "Key not found" msgstr "Kunci tak ditemukan" #: ssl.c:701 msgid "Value corrupted" msgstr "Nilai rusak" #: ssl.c:702 msgid "Undefined action" msgstr "Aksi yang tak didefinisikan" #: ssl.c:706 msgid "Wrong password" msgstr "Sandi salah" #: ssl.c:707 msgid "Unknown error" msgstr "Galat tak dikenal" #: ssl.c:896 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "openconnect_fopen_utf8() dipakai dengan mode '%s' yang tak didukung\n" #: ssl.c:931 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "Keluarga protokol %d tak dikenal. Tak bisa membuat alamat server UDP\n" #: ssl.c:950 msgid "Open UDP socket" msgstr "Buka soket UDP" #: ssl.c:981 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "Keluarga protokol %d tak dikenal. Tak bisa memakai transport UDP\n" #: ssl.c:989 msgid "Bind UDP socket" msgstr "Ikatkan soket UDP" #: ssl.c:996 msgid "Connect UDP socket\n" msgstr "Sambungkan soket UDP\n" #: ssl.c:1034 msgid "Cookie is no longer valid, ending session\n" msgstr "Cookie tak valid lagi, mengakhiri sesi\n" #: ssl.c:1038 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "tidur %dd, tenggang waktu tersisa %dd\n" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "Token SSPI terlalu besar (%ld byte)\n" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "Mengirim token SSPI berukuran %lu byte\n" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "Gagal mengirim token otentikasi SSPI ke proksi: %s\n" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "Gagal menerima token otentikasi SSPI dari proksi: %s\n" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "Server SOCKS melaporkan kegagalan konteks SSPI\n" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "Respons status SSPI yang tak dikenal (0x%02x) dari server SOCKS\n" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "Mendapat token SSPI %lu byte: %02x %02x %02x %02x\n" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "QueryContextAttributes() gagal: %lx\n" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "EncryptMessage() gagal: %lx\n" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "Hasil EncryptMessage() terlalu besar (%lu + %lu + %lu)\n" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "Mengirim negosiasi proteksi SSPI %u byte\n" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "Gagal mengirim respons proteksi SSPI ke proksi: %s\n" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "Gagal menerima respons proteksi SSPI dari proksi: %s\n" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "Mendapat respons proteksi SSPI %d byte: %02x %02x %02x %02x\n" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "DecryptMessage gagal: %lx\n" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "Respons proteksi SSPI yang tak valid dari proksi (%lu byte)\n" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "Masukkan kredensial untuk membuka kunci token perangkat lunak." #: stoken.c:82 msgid "Device ID:" msgstr "ID Perangkat:" #: stoken.c:89 msgid "Password:" msgstr "Kata Sandi:" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "Pengguna mem-bypass token lunak.\n" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "Semua ruas diperlukan; coba lagi.\n" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "Kegagalan umum dalam libstoken.\n" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "Kata sandi atau ID perangkat tak benar; coba lagi.\n" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "Init token lunak sukses.\n" #: stoken.c:185 msgid "Enter software token PIN." msgstr "Masukkan PIN token perangkat lunak." #: stoken.c:189 msgid "PIN:" msgstr "PIN: " #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "Format PIN tak valid; coba lagi.\n" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "Menjangkitkan kode token RSA\n" #: tun-win32.c:76 msgid "Error accessing registry key for network adapters\n" msgstr "Galat saat mengakses kunci registri bagi adaptor jaringan\n" #: tun-win32.c:139 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "Mengabaikan antar muka TAP \"%s\" yang tak cocok\n" #: tun-win32.c:154 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "Tak ditemukan adaptor Windows-TAP. Apakah driver terpasang?\n" #: tun-win32.c:186 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" "GetAdapterIndex() failed: %s\n" "Memakai cadangan GetAdaptersInfo()\n" #: tun-win32.c:200 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "GetAdaptersInfo() gagal: %s\n" #: tun-win32.c:231 #, c-format msgid "Failed to open %s\n" msgstr "Gagal membuka %s\n" #: tun-win32.c:236 #, c-format msgid "Opened tun device %s\n" msgstr "Membuka perangkat tun: %s\n" #: tun-win32.c:244 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Gagal memperoleh versi driver TAP: %s\n" #: tun-win32.c:250 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Galat: Diperlukan driver TAP-Windows v9.9 atau lebih (ditemukan %ld.%ld)\n" #: tun-win32.c:271 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Gagal menata alamat IP TAP: %s\n" #: tun-win32.c:283 tun-win32.c:406 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Gagal menata status media TAP: %s\n" #: tun-win32.c:316 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "Perangkat TAP menggugurkan ketersambungan. Memutus.\n" #: tun-win32.c:321 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Gagal membaca dari perangkat TAP: %s\n" #: tun-win32.c:335 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Gagal melengkapi baca dari perangkat TAP: %s\n" #: tun-win32.c:358 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "Menulis %ld byte ke tun\n" #: tun-win32.c:368 msgid "Waiting for tun write...\n" msgstr "Menunggun menulis tun…\n" #: tun-win32.c:371 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "Menulis %ld byte ke tun setelah menunggu\n" #: tun-win32.c:378 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Gagal menulis ke perangkat TAP: %s\n" #: tun-win32.c:423 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "Span skrip tunnel belum didukung pada Windows\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Tak bisa membuka /dev/tun untuk plumbing" #: tun.c:92 msgid "Can't push IP" msgstr "Tak bisa push IP" #: tun.c:102 msgid "Can't set ifname" msgstr "Tak bisa menata ifname" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "Tak bisa membuka %s: %s" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Tak bisa plumb %s untuk IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "buka /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Gagal membuat tun baru" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "Gagal meletakkan deskriptor berkas tun ke dalam mode message-discard" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "Perangkat tun tak didukung pada plaform ini\n" #: tun.c:205 msgid "open net" msgstr "buka net" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Gagal membuka perangkat tun: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "Gagal mengikat perangkat tun lokal (TUNSETIFF): %s\n" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" "Untuk mengatur konfigurasi jejaring lokal, openconnect mesti dijalankan " "sebagai root\n" "Lihat http://www.infradead.org/openconnect/nonroot.html untuk informasi " "lebih lanjut\n" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" "Nama antar muka '%s' tak valid; mesti sesuai pola 'utun%%d' atau 'tun%%d'\n" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "Gagal membuka soket SYSPROTO_CONTROL: %s\n" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "Gagal meng-kuiri id kendali utun: %s\n" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "Gagal mengalokasikan nama perangkat utun\n" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "Gagal menyambung unit utun: %s\n" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Nama antar muka '%s' tak valid; mesti sesuai pola 'tun%%d'\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Tak bisa membuka '%s': %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:479 #, c-format msgid "socketpair failed: %s\n" msgstr "socketpair gagal: %s\n" #: tun.c:484 #, c-format msgid "fork failed: %s\n" msgstr "fork gagal: %s\n" #: tun.c:488 msgid "setpgid" msgstr "setpgid" #: tun.c:493 msgid "execl" msgstr "execl" #: tun.c:498 msgid "(script)" msgstr "(skrip)" #: tun.c:566 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Gagal menulis paket datang: %s\n" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "Gagal membuka %s: %s\n" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "Gagal fstat() %s: %s\n" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Gagal mengalokasikan %d byte untuk %s\n" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "Gagal baca %s: %s\n" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Memperlakukan host \"%s\" sebagai nama host mentah\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Gagal menghitung SHA1 berkas yang ada\n" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "SHA1 berkas konfig XML: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Gagal mengurai berkas konfig XML %s\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Host \"%s\" memiliki alamat \"%s\"\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Host \"%s\" memiliki UserGroup \"%s\"\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "Host \"%s\" tidak terdaftar dalam konfig; memperlakukan sebagai nama host " "mentah\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "Gagal mengirim \"%s\" ke aplet ykneo-oath: %s\n" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "Respon pendek yang tak valid ke \"%s\" dari aplet ykneo-oath\n" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "Gagal merespon ke \"%s\": %04x\n" #: yubikey.c:174 msgid "select applet command" msgstr "pilih perintah aplet" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "Respon yang tak dikenal dari aplet ykneo-oath\n" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "Menemukan aplet ykneo-oath v%d.%d.%d.\n" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "Diperlukan PIN untuk aplet OATH Yubikey" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "PIN Yubikey:" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "Gagal menghitung respon buka kunci Yubikey\n" #: yubikey.c:274 msgid "unlock command" msgstr "perintah buka kunci" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "Mencoba varian PBKBF2 truncated-char dari PIN Yubikey\n" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "Gagal menjalin konteks PC/SC: %s\n" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "Terjalin konteks PC/SC\n" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "Gagal mengkuiri daftar pembaca: %s\n" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "Gagal menyambung ke pembaca PC/SC '%s': %s\n" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "Tersambung pembaca PC/SC '%s'\n" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "Gagal memperoleh akses eksklusif ke pembaca '%s': %s\n" #: yubikey.c:412 msgid "list keys command" msgstr "perintah daftar kunci" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "Ditemukan %s/%s kunci '%s' pada '%s'\n" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "Token '%s' tak ditemukan pada Yubikey '%s'. Mencari Yubikey lain...\n" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "Server menolak token Yubikey; berpindah ke entri manual\n" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "Menjangkitkan kode token Yubikey\n" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "Gagal memperoleh akses eksklusif ke Yubikey: %s\n" #: yubikey.c:619 msgid "calculate command" msgstr "menghitung perintah" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "Respons tak dikenal dari Yubikey ketika membuat kode token\n" openconnect-8.05/po/ca.po0000664000076400007640000041376313470043037017115 0ustar00dwoodhoudwoodhou00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2019-05-18 10:44-0700\n" "PO-Revision-Date: 2011-09-22 22:31+0000\n" "Last-Translator: FULL NAME \n" "Language-Team: Catalan (http://www.transifex.net/projects/p/meego/team/ca/)\n" "Language: ca\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1)\n" #: auth-globalprotect.c:108 #, c-format msgid "" "SAML login is required via %s to this URL:\n" "\t%s" msgstr "" "Cal l'usuari SAML via %s per aquesta URL:\n" "\t%s" #: auth-globalprotect.c:110 msgid "Please enter your username and password" msgstr "Entreu el vostre nom d'usuari i contrasenya" #: auth-globalprotect.c:119 msgid "Username" msgstr "Nom d'usuari" #: auth-globalprotect.c:134 msgid "Password" msgstr "Contrasenya" #: auth-globalprotect.c:181 msgid "Challenge: " msgstr "Desafiament:" #: auth-globalprotect.c:260 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "Nom d'usuari retornat GlobalProtect %s=%s (esperat %s)\n" #: auth-globalprotect.c:266 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "El nom d'usuari retornat GlobalProtect està buit o s'ha perdut %s\n" #: auth-globalprotect.c:272 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "Nom d'usuari retornat GlobalProtect %s=%s\n" #: auth-globalprotect.c:315 msgid "Please select GlobalProtect gateway." msgstr "Seleccioneu passarel·la Globalprotect." #: auth-globalprotect.c:325 msgid "GATEWAY:" msgstr "PASSAREL·LA:" #. each entry looks like Label #: auth-globalprotect.c:379 #, c-format msgid "%d gateway servers available:\n" msgstr "%d servidors de passarel·la disponibles:\n" #: auth-globalprotect.c:400 #, c-format msgid " %s (%s)\n" msgstr " %s (%s)\n" #: auth-globalprotect.c:484 auth-juniper.c:730 auth.c:669 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" "Error en generar el codi de testimoni OTP; s'està deshabilitant el " "testimoni\n" #: auth-globalprotect.c:584 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "El servidor no és ni un portal GlobalProtect ni una passarel·la.\n" #: auth-globalprotect.c:636 oncp.c:1266 msgid "Logout failed.\n" msgstr "Sortida de sessió errònia.\n" #: auth-globalprotect.c:638 msgid "Logout successful\n" msgstr "Sortida de sessió amb èxit\n" #: auth-juniper.c:142 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "S'està ignorant l'element desconegut «%s» enviat pel formulari.\n" #: auth-juniper.c:153 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "S'està ignorant el tipus d'entrada desconeguda «%s» al formulari.\n" #: auth-juniper.c:163 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "S'està descartant l'opció duplicada «%s»\n" #: auth-juniper.c:236 auth.c:408 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "No es pot gestionar el mètode = «%s» al formulari, acció = «%s»\n" #: auth-juniper.c:267 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "Camp desconegut d'àrea de text: «%s»\n" #: auth-juniper.c:337 msgid "TNCC support not implemented yet on Windows\n" msgstr "El suport TNCC no està implementat encara en Windows\n" #: auth-juniper.c:359 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "Sense la galeta DSPREAUTH; no s'intentarà TNCC\n" #: auth-juniper.c:397 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "Error en executar el script TNCC %s: %s\n" #: auth-juniper.c:411 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "Error en assignar memòria per comunicar-se amb TNCC\n" #: auth-juniper.c:418 msgid "Failed to send start command to TNCC\n" msgstr "Error en enviar l'ordre d'inici a TNCC\n" #: auth-juniper.c:425 msgid "Sent start; waiting for response from TNCC\n" msgstr "S'ha enviat l'inici; espereu la resposta des de TNCC\n" #: auth-juniper.c:432 msgid "Failed to read response from TNCC\n" msgstr "Error en llegir la resposta des de TNCC\n" #: auth-juniper.c:439 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "S'ha rebut la resposta incorrecta %s des de TNCC\n" #: auth-juniper.c:445 msgid "TNCC response 200 OK\n" msgstr "Resposta TNCC 200 OK\n" #: auth-juniper.c:452 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "Segona línia de la resposta TNCC: «%s»\n" #: auth-juniper.c:461 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "S'ha obtingut la nova galeta DSPREAUTH des de TNCC: %s\n" #: auth-juniper.c:474 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" "Línia no buida inesperada de TNCC després de la galeta DSPREAUTH: «%s»\n" #: auth-juniper.c:481 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:650 msgid "Failed to parse HTML document\n" msgstr "Error en analitzar el document d'HTML\n" #: auth-juniper.c:667 msgid "Failed to find or parse web form in login page\n" msgstr "Error en trobar o analitzar el formulari web a la pàgina d'accés\n" #: auth-juniper.c:675 msgid "Encountered form with no ID\n" msgstr "S'ha trobat un formulari sense identificació\n" #: auth-juniper.c:713 #, c-format msgid "Unknown form ID '%s'\n" msgstr "Formulari amb identificació «%s» desconeguda\n" #: auth-juniper.c:716 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "S'està bolcant el formulari HTML desconegut:\n" #: auth.c:96 msgid "Form choice has no name\n" msgstr "El formulari triat no té nom\n" #: auth.c:181 #, c-format msgid "name %s not input\n" msgstr "nom %s sense entrada\n" #: auth.c:188 msgid "No input type in form\n" msgstr "Formulari sense tipus d'entrada\n" #: auth.c:200 msgid "No input name in form\n" msgstr "Formulari sense nom d'entrada\n" #: auth.c:230 #, c-format msgid "Unknown input type %s in form\n" msgstr "Tipus d'entrada desconegut %s al formulari\n" #: auth.c:540 gpst.c:214 msgid "Empty response from server\n" msgstr "Resposta buida des del servidor\n" #: auth.c:551 gpst.c:289 msgid "Failed to parse server response\n" msgstr "Error en analitzar la resposta del servidor\n" #: auth.c:553 gpst.c:291 #, c-format msgid "Response was:%s\n" msgstr "La resposta ha estat: %s\n" #: auth.c:575 msgid "Received when not expected.\n" msgstr "S'ha rebut quan no s'esperava.\n" #: auth.c:603 msgid "XML response has no \"auth\" node\n" msgstr "La resposta XML no té el node «auth»\n" #: auth.c:636 msgid "Asked for password but '--no-passwd' set\n" msgstr "S'ha preguntat per la contrasenya però està configurat «--no-passwd»\n" #: auth.c:925 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "No s'està descarregant el perfil XML ja que SHA1 concorda realment\n" #: auth.c:931 cstp.c:335 http.c:916 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Error en obrir la connexió HTTPS amb %s\n" #: auth.c:952 msgid "Failed to send GET request for new config\n" msgstr "Error en enviar una sol·licitud GET per una configuració nova\n" #: auth.c:976 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" "El fitxer de configuració descarregat no concorda amb la SHA1 desitjada\n" #: auth.c:981 msgid "Downloaded new XML profile\n" msgstr "Perfil XML nou descarregat\n" #: auth.c:992 auth.c:1044 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" "Error: L'execució del cavall de Troia «Cisco Secure Desktop» no està " "implementada encara.\n" #: auth.c:1003 mainloop.c:144 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "No s'ha pogut establir el gid %ld: %s\n" #: auth.c:1010 mainloop.c:151 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "No s'han pogut establir els grups a %ld: %s\n" #: auth.c:1017 mainloop.c:158 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "No s'ha pogut establir l'uid %ld: %s\n" #: auth.c:1024 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "Usuari no vàlid uid=%ld: %s\n" #: auth.c:1031 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Error en canviar al directori d'inici CSD «%s»: %s\n" #: auth.c:1053 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Error: El servidor us ha preguntat per executar l'escànner d'amfitrions " "CSD.\n" "Cal que proporcioneu un argument «--csd-wrapper» adequat.\n" #: auth.c:1060 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Error: El servidor us ha preguntat per descarregar i executar el cavall de " "Troia «Cisco Secure Desktop».\n" "Aquesta opció està desactivada per defecte per raons de seguretat, però " "podeu habilitar-la.\n" #: auth.c:1067 msgid "Trying to run Linux CSD trojan script.\n" msgstr "S'està intentant executar el script de Linux cavall de Troia CSD.\n" #: auth.c:1094 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "El directori temporal «%s» no té permisos d'escriptura: %s\n" #: auth.c:1102 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Error en obrir temporalment el fitxer script CSD: %s\n" #: auth.c:1111 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Error en escriure temporalment al fitxer script CSD: %s\n" #: auth.c:1141 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "AVÍS: Esteu executant codi no segur CSD amb privilegis d'administrador\n" "\t Utilitzeu l'opció de la línia d'ordres «--csd-user»\n" #: auth.c:1189 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Error en executar el script CSD %s\n" #: auth.c:1221 msgid "Unknown response from server\n" msgstr "Resposta desconeguda des del servidor\n" #: auth.c:1342 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" "El servidor ha demanat el certificat de client SSL després que el primer fou " "enviat\n" #: auth.c:1346 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" "El servidor ha demanat el certificat de client SSL; cap certificat ha estat " "configurat\n" #: auth.c:1362 msgid "XML POST enabled\n" msgstr "POST XML habilitat\n" #: auth.c:1405 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "S'està refrescant %s després d'1 segon ...\n" #: compat.c:207 #, c-format msgid "(error 0x%lx)" msgstr "(Error 0x%lx)" #: compat.c:210 msgid "(Error while describing error!)" msgstr "(Error mentre es descrivia l'error!)" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "ERROR: No es poden inicialitzar els sòcols\n" #: cstp.c:112 gpst.c:341 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:134 gpst.c:360 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:281 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" "ERROR CRÍTIC: el secret mestre DTLS no està inicialitzat. Informeu-ne.\n" #: cstp.c:312 msgid "Error creating HTTPS CONNECT request\n" msgstr "Error mentre es crea la sol·licitud CONNEXIÓ HTTPS\n" #: cstp.c:328 http.c:384 msgid "Error fetching HTTPS response\n" msgstr "Error en recollir la resposta HTTPS\n" #: cstp.c:355 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "Servei VPN no disponible; motiu: %s\n" #: cstp.c:360 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "S'ha obtingut la resposta inapropiada CONNEXIÓ HTTP: %s\n" #: cstp.c:367 #, c-format msgid "Got CONNECT response: %s\n" msgstr "S'ha obtingut la resposta CONNEXIÓ: %s\n" #: cstp.c:396 cstp.c:404 msgid "No memory for options\n" msgstr "No hi ha memòria per a les opcions\n" #: cstp.c:413 http.c:444 msgid "" msgstr "" #: cstp.c:433 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Session-ID no són 64 caràcters; són: «%s»\n" #: cstp.c:450 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "X-DTLS-Session-ID és no vàlid; és: «%s»\n" #: cstp.c:468 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "Desconegut DTLS-Content-Encoding %s\n" #: cstp.c:510 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Desconegut CSTP-Content-Encoding %s\n" #: cstp.c:585 msgid "No MTU received. Aborting\n" msgstr "Cap MTU rebut. S'està avortant\n" #: cstp.c:593 gpst.c:641 msgid "No IP address received. Aborting\n" msgstr "Cap adreça IP rebuda. S'està avortant\n" #: cstp.c:599 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "S'ha rebut la configuració IPv6 però MTU %d és massa petit.\n" #: cstp.c:605 gpst.c:648 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Torneu a connectar i doneu una adreça IP antiga diferent (%s != %s)\n" #: cstp.c:614 gpst.c:657 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" "Torneu a connectar i doneu una mascara de xarxa IP antiga diferent (%s != " "%s)\n" #: cstp.c:622 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Torneu a connectar i doneu una adreça IPv6 diferent (%s != %s)\n" #: cstp.c:630 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "" "Torneu a connectar i doneu una mascara de xarxa IPv6 diferent (%s != %s)\n" #: cstp.c:638 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP connectat. DPD %d, Keepalive %d\n" #: cstp.c:640 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "Conjunt de xifrat CSTP: %s\n" #: cstp.c:702 msgid "Compression setup failed\n" msgstr "La configuració de la compressió ha fallat\n" #: cstp.c:719 msgid "Allocation of deflate buffer failed\n" msgstr "L'assignació de la memòria intermèdia de desinflat ha fallat\n" #: cstp.c:781 msgid "inflate failed\n" msgstr "La inflació ha fallat\n" #: cstp.c:804 #, c-format msgid "LZS decompression failed: %s\n" msgstr "La descompressió LZS ha fallat: %s\n" #: cstp.c:817 msgid "LZ4 decompression failed\n" msgstr "La descompressió LZ4 ha fallat\n" #: cstp.c:824 #, c-format msgid "Unknown compression type %d\n" msgstr "Tipus de compressió desconegut %d\n" #: cstp.c:829 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "S'han rebuts %s paquets de dades comprimides de %d bytes (eren %d)\n" #: cstp.c:849 #, c-format msgid "deflate failed %d\n" msgstr "La deflació ha fallat %d\n" #: cstp.c:922 dtls.c:281 dtls.c:740 esp.c:129 gpst.c:1042 mainloop.c:69 #: oncp.c:914 msgid "Allocation failed\n" msgstr "L'assignació ha fallat\n" #: cstp.c:933 gpst.c:1055 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "S'ha rebut un paquet petit (%d bytes)\n" #: cstp.c:946 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Paquet gran inesperat. SSL_read mostra %d però el paquet és\n" #: cstp.c:960 msgid "Got CSTP DPD request\n" msgstr "S'ha rebut la petició DPD CSTP\n" #: cstp.c:966 msgid "Got CSTP DPD response\n" msgstr "S'ha rebut la resposta DPD CSTP\n" #: cstp.c:971 msgid "Got CSTP Keepalive\n" msgstr "S'ha rebut Keepalive CSTP\n" #: cstp.c:976 oncp.c:1003 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "S'ha rebut paquet de dades descomprimides de %d bytes\n" #: cstp.c:993 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "S'ha rebut el servidor desconnectat: %02x «%s»\n" #: cstp.c:996 msgid "Received server disconnect\n" msgstr "S'ha rebut el servidor desconnectat\n" #: cstp.c:1004 msgid "Compressed packet received in !deflate mode\n" msgstr "S'ha rebut paquet comprimit! Mode desinflat\n" #: cstp.c:1013 msgid "received server terminate packet\n" msgstr "S'ha rebut servidor de paquet d'acabat\n" #: cstp.c:1020 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Paquet desconegut %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1063 gpst.c:1142 oncp.c:1121 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL ha escrit molt pocs bytes! S'ha preguntat per %d, s'ha enviat %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1091 oncp.c:1155 msgid "CSTP rekey due\n" msgstr "Degut a la reclau CSTP\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1098 oncp.c:1162 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Reencaixada errònia; s'està intentant un túnel nou\n" #: cstp.c:1109 oncp.c:1173 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "El detector de parells morts CSTP ha detectat un parell mort!\n" #: cstp.c:1113 gpst.c:1166 oncp.c:1091 oncp.c:1177 msgid "Reconnect failed\n" msgstr "Reconnexió errònia\n" #: cstp.c:1129 oncp.c:1193 msgid "Send CSTP DPD\n" msgstr "Envia DPD CSTP\n" #: cstp.c:1141 oncp.c:1204 msgid "Send CSTP Keepalive\n" msgstr "Envia Keepalive CSTP\n" #: cstp.c:1166 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "S'està enviant un paquet de dades comprimides de %d bytes (eren %d)\n" #: cstp.c:1177 oncp.c:1238 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "S'està enviant un paquet de dades descomprimides de %d bytes\n" #: cstp.c:1216 #, c-format msgid "Send BYE packet: %s\n" msgstr "Envia paquet ADÉU: %s\n" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "S'està intentant autenticar el resum per al servidor intermediari\n" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "S'està intentant autenticar el resum per al servidor «%s»\n" #: dtls.c:113 msgid "DTLS connection attempted with an existing fd\n" msgstr "Connexió DTLS intentada amb un FD\n" #: dtls.c:119 msgid "No DTLS address\n" msgstr "Sense adreça DTLS\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:126 msgid "Server offered no DTLS cipher option\n" msgstr "El servidor no ha oferit cap opció de xifrat DTLS\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:133 msgid "No DTLS when connected via proxy\n" msgstr "Sense DTLS quan es connecta amb un servidor intermediari\n" #: dtls.c:200 #, c-format msgid "DTLS option %s : %s\n" msgstr "Opció DTLS %s : %s\n" #: dtls.c:239 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS inicialitzades. DPD %d, Keepalive %d\n" #: dtls.c:265 msgid "Attempt new DTLS connection\n" msgstr "Intenta una connexió nova DTLS\n" #: dtls.c:292 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Rebuts 0x%02x paquets DTLS de %d bytes\n" #: dtls.c:306 msgid "Got DTLS DPD request\n" msgstr "S'ha obtingut la petició DPD DTLS\n" #: dtls.c:312 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Error en enviar la resposta DPD. S'esperava desconnexió\n" #: dtls.c:316 msgid "Got DTLS DPD response\n" msgstr "S'ha obtingut la resposta DPD DTLS\n" #: dtls.c:320 msgid "Got DTLS Keepalive\n" msgstr "S'ha obtingut Keepalive DTLS\n" #: dtls.c:326 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" "S'ha rebut paquet DTLS comprimit quan la compressió no està habilitada\n" #: dtls.c:334 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Paquet desconegut DTLS de tipus %02x, longitud %d\n" #: dtls.c:356 msgid "DTLS rekey due\n" msgstr "Degut a la reclau DTLS\n" #: dtls.c:363 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "Reencaixat DTLS fallat; s'està reconnectant.\n" #: dtls.c:372 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "El detector de parells morts DTLS ha detectat un parell mort!\n" #: dtls.c:378 msgid "Send DTLS DPD\n" msgstr "Envia DPD DTLS\n" #: dtls.c:383 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Error en enviar la sol·licitud DPD. S'esperava la desconnexió\n" #: dtls.c:396 msgid "Send DTLS Keepalive\n" msgstr "Envia Keepalive DTLS\n" #: dtls.c:401 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Error en enviar la sol·licitud keepalive. S'esperava desconnexió\n" #: dtls.c:432 tun.c:541 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "" "S'ha rebut un paquet desconegut (longitud %d): %02x %02x %02x %02x...\n" #: dtls.c:439 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "TOS aquest: %d, TOS últim: %d\n" #: dtls.c:443 msgid "UDP setsockopt" msgstr "UDP setsockopt" #: dtls.c:474 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "" "DTLS ha tingut l'error d'escriptura %d. Alternativament s'utilitzarà SSL\n" #: dtls.c:488 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "" "DTLS ha tingut l'error d'escriptura: %s. Alternativament s'utilitzarà SSL\n" #: dtls.c:503 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "S'ha enviat el paquet DTLS de %d bytes; DTLS envia %d retornats\n" #: dtls.c:531 #, c-format msgid "Initiating IPv4 MTU detection (min=%d, max=%d)\n" msgstr "S'està iniciant la detecció IPv4 MTU (mín=%d, màx=%d)\n" #: dtls.c:551 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" "Temps massa llarg al bucle de detecció del MTU; s'està assumint la MTU " "negociada.\n" #: dtls.c:555 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" "Temps massa llarg al bucle de detecció del MTU; es configura MTU com %d.\n" #: dtls.c:564 #, c-format msgid "Sending MTU DPD probe (%u bytes, min=%u, max=%u)\n" msgstr "S'estan enviant sondejos MTU DPD (%u bytes, min=%u, max=%u)\n" #: dtls.c:568 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "No s'ha pogut enviar la demanda DPD (%d %d)\n" #: dtls.c:582 dtls.c:690 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" "S'ha rebut un paquet inesperat (%.2x) a la detecció del MTU; s'ignorarà.\n" #: dtls.c:594 #, c-format msgid "Timeout while waiting for DPD response; trying %d\n" msgstr "Temps mentre s'espera la resposta DPD; s'està intentant %d\n" #: dtls.c:601 dtls.c:682 msgid "Timeout while waiting for DPD response; resending probe.\n" msgstr "Temps mentre s'espera la resposta DPD; es torna a enviar el sondeig.\n" #: dtls.c:608 dtls.c:709 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "No s'ha pogut rebre la demanda DPD (%d)\n" #: dtls.c:613 #, c-format msgid "Received MTU DPD probe (%u bytes of %u)\n" msgstr "S'ha rebut la sonda DPD MTU (%u bytes de %u)\n" #: dtls.c:651 msgid "Initiating IPv6 MTU detection\n" msgstr "S'està iniciant la detecció IPv6 MTU\n" #: dtls.c:666 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "S'està enviant la sonda DPD MTU (%u bytes)\n" #: dtls.c:670 #, c-format msgid "Failed to send DPD request (%d)\n" msgstr "No s'ha pogut enviar la demanda DPD (%d)\n" #: dtls.c:695 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "Rebuda la sonda DPD MTU (%u bytes)\n" #: dtls.c:759 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "S'ha detectat MTP de %d bytes (era %d)\n" #: dtls.c:762 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "Cap canvi al MTU després de la detecció (era %d)\n" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "S'està acceptant el paquet esperat ESP amb seqüència %u\n" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" "S'està acceptant el paquet ESP més tard del que s'esperava amb seqüència %u " "(s'esperava %)\n" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" "S'està descartant el paquet antic ESP amb seqüència %u (s'esperava " "%)\n" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" "S'està tolerant el paquet antic ESP amb seqüència %u (s'esperava %)\n" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "S'està descartant el paquet repetit ESP amb seqüència %u\n" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "S'està tolerant el paquet repetit ESP amb seqüència %u\n" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" "S'està acceptant el paquet ESP fora de rang amb seqüència %u (s'esperava " "%)\n" #: esp.c:63 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "Paràmetres per a ESP %s: SPI 0x%08x\n" #: esp.c:66 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "Xifrat ESP del tipus %s clau 0x%s\n" #: esp.c:69 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "Autenticació ESP del tipus %s clau 0x%s\n" #: esp.c:87 msgid "incoming" msgstr "Entrant" #: esp.c:88 msgid "outgoing" msgstr "Sortint" #: esp.c:90 esp.c:113 msgid "Send ESP probes\n" msgstr "Envia sondejos ESP\n" #: esp.c:138 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "Rebut paquet ESP de %d bytes\n" #: esp.c:155 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "S'ha rebut paquet ESP amb un antic SPI 0x%x, amb seqüència %u\n" #: esp.c:161 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "S'ha rebut paquet ESP amb no vàlida SPI 0x%08x\n" #: esp.c:174 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "S'ha rebut paquet ESP amb carrega útil no reconeguda del tipus %02x\n" #: esp.c:181 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "Longitud de farciment %02x no reconeguda en ESP\n" #: esp.c:193 msgid "Invalid padding bytes in ESP\n" msgstr "Bytes de farciment no vàlids en ESP\n" #: esp.c:202 msgid "ESP session established with server\n" msgstr "Sessió ESP establerta amb el servidor\n" #: esp.c:213 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "Error en assignar memòria per desxifrar el paquet ESP\n" #: esp.c:219 msgid "LZO decompression of ESP packet failed\n" msgstr "Error en la descompressió LZO del paquet ESP\n" #: esp.c:225 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "Descompressió LZO de %d bytes dintre %d\n" #: esp.c:239 msgid "Rekey not implemented for ESP\n" msgstr "Reclau no implementada per a ESP\n" #: esp.c:243 msgid "ESP detected dead peer\n" msgstr "ESP ha detectat parell mort\n" #: esp.c:251 msgid "Send ESP probes for DPD\n" msgstr "Envia sondejos ESP a DPD\n" #: esp.c:258 msgid "Keepalive not implemented for ESP\n" msgstr "Keepalive no està implementat per a ESP\n" #: esp.c:278 #, c-format msgid "Failed to encrypt ESP packet: %d\n" msgstr "" #: esp.c:294 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:301 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "Error en enviar el paquet ESP: %s\n" #: esp.c:307 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "S'ha enviat el paquet ESP de %d bytes\n" #: gnutls-dtls.c:190 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "Posposa la reactivació de DTLS fins que CSTP generi un PSK \n" #: gnutls-dtls.c:198 msgid "Failed to generate DTLS priority string\n" msgstr "Error en generar la cadena de prioritat DTLS\n" #: gnutls-dtls.c:207 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "Error en inicialitzar DTLS: %s\n" #: gnutls-dtls.c:216 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "Error en establir la prioritat DTLS: «%s»: %s\n" #: gnutls-dtls.c:240 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "Error en assignar credencials: %s\n" #: gnutls-dtls.c:253 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "Error en generar la clau DTLS: %s\n" #: gnutls-dtls.c:267 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "Error en establir la clau DTLS: %s\n" #: gnutls-dtls.c:275 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "Error en establir les credencials PSK DTLS: %s\n" #: gnutls-dtls.c:309 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Paràmetres DTLS desconeguts en l'entorn de xifrat demanat «%s»\n" #: gnutls-dtls.c:324 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "Error en establir la prioritat DTLS: %s\n" #: gnutls-dtls.c:345 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Error en establir els paràmetres de la sessió DTLS: %s\n" #: gnutls-dtls.c:373 openssl-dtls.c:534 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "Parell MTU %d massa petit per permetre DTLS\n" #: gnutls-dtls.c:382 openssl-dtls.c:545 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "MTU DTLS reduït a %d\n" #: gnutls-dtls.c:392 openssl-dtls.c:554 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" "Ha fallat la continuació de la sessió DTLS; possible atac MITM. S'està " "deshabilitant DTLS.\n" #: gnutls-dtls.c:405 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Error en establir MTU DTLS: %s\n" #: gnutls-dtls.c:416 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "Establerta la connexió DTLS (usant GnuTLS). Entorn de xifrat %s.\n" #: gnutls-dtls.c:422 openssl-dtls.c:572 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "Compressió de connexió DTLS usant %s.\n" #: gnutls-dtls.c:437 openssl-dtls.c:653 openssl-dtls.c:657 msgid "DTLS handshake timed out\n" msgstr "L'encaixada DTLS ha expirat\n" #: gnutls-dtls.c:440 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "Error d'encaixat DTLS: %s\n" #: gnutls-dtls.c:444 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(Està un tallafocs impedint que envieu paquets UDP?)\n" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "Error en inicialitzar el xifrat de ESP: %s\n" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "Error en inicialitzar HMAC ESP: %s\n" #: gnutls-esp.c:121 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "Error en generar claus aleatòries per a ESP: %s\n" #: gnutls-esp.c:132 msgid "Failed to generate ESP IV\n" msgstr "" #: gnutls-esp.c:161 gnutls-esp.c:217 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "Error en calcular HMAC per al paquet ESP: %s\n" #: gnutls-esp.c:168 openssl-esp.c:192 msgid "Received ESP packet with invalid HMAC\n" msgstr "S'ha rebut el paquet ESP amb una HMAC no vàlida\n" #: gnutls-esp.c:180 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "El desxifrat del paquet ESP ha fallat: %s\n" #: gnutls-esp.c:209 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "Error en xifrar el paquet ESP: %s\n" #: gnutls.c:95 openssl.c:154 msgid "SSL write cancelled\n" msgstr "Escriptura SSL cancel·lada\n" #: gnutls.c:99 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "Error en escriure al sòcol SSL: %s\n" #: gnutls.c:145 gnutls.c:237 openssl.c:204 openssl.c:271 msgid "SSL read cancelled\n" msgstr "Lectura SSL cancel·lada\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:158 msgid "SSL socket closed uncleanly\n" msgstr "Sòcol SSL tancat de forma no neta\n" #: gnutls.c:168 gnutls.c:246 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "Error en llegir del sòcol SSL: %s\n" #: gnutls.c:266 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "Error de lectura SSL:%s; s'està tornant a connectar.\n" #: gnutls.c:302 #, c-format msgid "SSL send failed: %s\n" msgstr "Ha fallat l'enviament SSL: %s\n" #: gnutls.c:315 msgid "Could not extract expiration time of certificate\n" msgstr "No es pot extraure el temps caducitat del certificat\n" #: gnutls.c:320 openssl.c:1592 msgid "Client certificate has expired at" msgstr "El certificat ha caducat a" #: gnutls.c:322 openssl.c:1597 msgid "Client certificate expires soon at" msgstr "El certificat del client caducarà aviat a" #: gnutls.c:371 openssl.c:771 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Error en carregar l'element «%s» del magatzem de claus: %s\n" #: gnutls.c:384 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Error en obrir el fitxer %s de clau/certificat: %s\n" #: gnutls.c:391 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Error en fer «stat» al fitxer %s de clau/certificat: %s\n" #: gnutls.c:400 msgid "Failed to allocate certificate buffer\n" msgstr "Error en assignar la memòria intermèdia del certificat\n" #: gnutls.c:408 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Error en llegir el certificat dins la memòria: %s\n" #: gnutls.c:439 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Error en configurar l'estructura de dades PKCS#12: %s\n" #: gnutls.c:462 openssl.c:534 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Error en desxifrar el certificat del fitxer PKCS#12\n" #: gnutls.c:466 openssl.c:537 msgid "Enter PKCS#12 pass phrase:" msgstr "Entreu la contrasenya PKCS#12:" #: gnutls.c:489 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Error en processar el fitxer PKCS#12: %s\n" #: gnutls.c:501 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Error en carregar el certificat PKCS#12: %s\n" #: gnutls.c:584 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "La importació del certificat X509 ha fallat: %s\n" #: gnutls.c:594 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "La configuració del certificat PKCS#11 ha fallat: %s\n" #: gnutls.c:628 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "No es pot inicialitzar el resum MD5: %s\n" #: gnutls.c:638 #, c-format msgid "MD5 hash error: %s\n" msgstr "Error al resum MD5: %s\n" #: gnutls.c:696 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "S'ha perdut DEK-Info: capçalera de la clau xifrada d'OpenSSL\n" #: gnutls.c:703 msgid "Cannot determine PEM encryption type\n" msgstr "No es pot determinar el tipus de xifrat PEM\n" #: gnutls.c:716 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Tipus de xifrat PEM no suportat: %s\n" #: gnutls.c:741 gnutls.c:754 msgid "Invalid salt in encrypted PEM file\n" msgstr "Sal no vàlida al fitxer PEM xifrat\n" #: gnutls.c:778 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Error de base64 en descodificar el fitxer PEM xifrat: %s\n" #: gnutls.c:786 msgid "Encrypted PEM file too short\n" msgstr "Fitxer PEM xifrat massa curt\n" #: gnutls.c:814 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "Error en inicialitzar el xifrat per desxifrar el fitxer PEM: %s\n" #: gnutls.c:825 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Error en desxifrar la clau PEM: %s\n" #: gnutls.c:877 msgid "Decrypting PEM key failed\n" msgstr "El desxifrat de la clau PEM ha fallat\n" #: gnutls.c:881 gnutls.c:1405 openssl.c:458 msgid "Enter PEM pass phrase:" msgstr "Entreu la contrasenya PEM:" #: gnutls.c:942 msgid "This binary built without system key support\n" msgstr "Aquest binari està muntat sense suport de claus de sistema\n" #: gnutls.c:949 msgid "This binary built without PKCS#11 support\n" msgstr "Aquest binari està muntat sense suport de PKCS#11\n" #: gnutls.c:993 openssl-pkcs11.c:407 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "S'està utilitzant el certificat %s PKCS#11\n" #: gnutls.c:994 #, c-format msgid "Using system certificate %s\n" msgstr "S'està usant el certificat de sistema %s\n" #: gnutls.c:1012 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Error en carregar el certificat de PKCS#11: %s\n" #: gnutls.c:1013 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Error en carregar el certificat de sistema: %s\n" #: gnutls.c:1024 openssl.c:827 #, c-format msgid "Using certificate file %s\n" msgstr "S'està usant el certificat del fitxer %s\n" #: gnutls.c:1052 msgid "PKCS#11 file contained no certificate\n" msgstr "El fitxer PKCS#11 no conté cap certificat\n" #: gnutls.c:1078 msgid "No certificate found in file" msgstr "No s'ha trobat cap certificat al fitxer" #: gnutls.c:1083 #, c-format msgid "Loading certificate failed: %s\n" msgstr "La carrega del certificat ha fallat: %s\n" #: gnutls.c:1098 #, c-format msgid "Using system key %s\n" msgstr "S'està usant la clau de sistema %s\n" #: gnutls.c:1103 gnutls.c:1271 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Error en inicialitzar l'estructura de la clau privada: %s\n" #: gnutls.c:1114 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Error en importar la clau de sistema %s: %s\n" #: gnutls.c:1125 gnutls.c:1219 gnutls.c:1247 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "S'està intentant PKCS#11 de clau URL %s\n" #: gnutls.c:1130 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Error inicialitzant PKCS#11 d'estructura de clau: %s\n" #: gnutls.c:1259 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Error en importar PKCS#11 URL %s: %s\n" #: gnutls.c:1266 openssl-pkcs11.c:644 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "S'està usant PKCS#11 clau %s\n" #: gnutls.c:1281 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" "Error en importar clau PKCS#11 dins de l'estructura de clau privada: %s\n" #: gnutls.c:1299 #, c-format msgid "Using private key file %s\n" msgstr "S'està usant el fitxer de clau privada %s\n" #: gnutls.c:1310 openssl.c:651 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Aquesta versió d'OpenConnect ha sigut muntada sense suport de TPM\n" #: gnutls.c:1326 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "Aquesta versió d'OpenConnect ha sigut muntada sense suport de TPM2\n" #: gnutls.c:1347 msgid "Failed to interpret PEM file\n" msgstr "Error en interpretar el fitxer PEM\n" #: gnutls.c:1366 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Error en carregar la clau privada PKCS#1: %s\n" #: gnutls.c:1379 gnutls.c:1393 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Error en carregar la clau privada com PKCS#8: %s\n" #: gnutls.c:1401 gnutls.c:1434 openssl.c:1002 openssl.c:1012 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Error en desxifrar el fitxer del certificat PKCS#8\n" #: gnutls.c:1426 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Error en determinar el tipus de clau privada %s\n" #: gnutls.c:1438 openssl.c:1008 msgid "Enter PKCS#8 pass phrase:" msgstr "Introduïu la contrasenya PKCS#8:" #: gnutls.c:1454 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Error en obtenir la identificació de la clau: %s\n" #: gnutls.c:1499 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Error de dades de la prova de signatura amb la clau privada: %s\n" #: gnutls.c:1514 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Error en validar la signatura del certificat: %s\n" #: gnutls.c:1539 msgid "No SSL certificate found to match private key\n" msgstr "No s'ha trobat cap certificat SSL que concordi amb la clau privada\n" #: gnutls.c:1551 openssl.c:560 openssl.c:709 #, c-format msgid "Using client certificate '%s'\n" msgstr "S'està usant el certificat del client «%s»\n" #: gnutls.c:1558 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "" "La configuració de la llista de recuperació del certificat ha fallat: %s\n" #: gnutls.c:1579 gnutls.c:1589 msgid "Failed to allocate memory for certificate\n" msgstr "Error en assignar memòria per al certificat\n" #: gnutls.c:1625 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" "AVÍS: GnuTLS ha retornat un certificat emissor incorrecte; l'autenticació " "pot haver fallat!\n" #: gnutls.c:1648 msgid "Got no issuer from PKCS#11\n" msgstr "No s'ha obtingut l'emissor de PKCS#11\n" #: gnutls.c:1653 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "S'ha obtingut el següent CA «%s» de PKCS11\n" #: gnutls.c:1679 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Error en assignar memòria per als certificats suportats\n" #: gnutls.c:1702 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "S'està afegint el suport CA «%s»\n" #: gnutls.c:1724 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" "La clau privada sembla no suportar RSA-PSS. S'està deshabilitant TLSv1.3\n" #: gnutls.c:1748 #, c-format msgid "Setting certificate failed: %s\n" msgstr "La configuració del certificat ha fallat: %s\n" #: gnutls.c:1941 msgid "Server presented no certificate\n" msgstr "El servidor no ha presentat cap certificat\n" #: gnutls.c:1949 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" "S'ha produït un error quan s'estava comparant el certificat del servidor a " "la reencaixada: %s\n" #: gnutls.c:1954 openssl.c:1515 msgid "Server presented different cert on rehandshake\n" msgstr "El servidor ha presentat un certificat diferent a la reencaixada\n" #: gnutls.c:1959 openssl.c:1518 msgid "Server presented identical cert on rehandshake\n" msgstr "El servidor ha presentat un certificat idèntic a la reencaixada\n" #: gnutls.c:1965 msgid "Error initialising X509 cert structure\n" msgstr "Error en inicialitzar l'estructura de certificat X509\n" #: gnutls.c:1971 msgid "Error importing server's cert\n" msgstr "Error en importar el certificat del servidor\n" #: gnutls.c:1980 main.c:1794 msgid "Could not calculate hash of server's certificate\n" msgstr "No es pot calcular el resum del certificat del servidor\n" #: gnutls.c:1985 msgid "Error checking server cert status\n" msgstr "Error en comprovar l'estat del certificat del servidor\n" #: gnutls.c:1990 msgid "certificate revoked" msgstr "certificat revocat" #: gnutls.c:1992 msgid "signer not found" msgstr "signant no trobat" #: gnutls.c:1994 msgid "signer not a CA certificate" msgstr "signant sense certificat CA" #: gnutls.c:1996 msgid "insecure algorithm" msgstr "algoritme insegur" #: gnutls.c:1998 msgid "certificate not yet activated" msgstr "certificat no activat encara" #: gnutls.c:2000 msgid "certificate expired" msgstr "certificat expirat" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2005 msgid "signature verification failed" msgstr "la verificació de la signatura ha fallat" #: gnutls.c:2054 openssl.c:1399 openssl.c:1551 msgid "certificate does not match hostname" msgstr "el certificat no concorda amb el nom de l'amfitrió" #: gnutls.c:2059 openssl.c:1398 openssl.c:1557 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "La verificació del certificat el servidor ha fallat: %s\n" #: gnutls.c:2126 msgid "Failed to allocate memory for cafile certs\n" msgstr "Error en assignar memòria per al certificat de fitxer CA\n" #: gnutls.c:2147 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Error en llegir certificats del fitxer CA: %s\n" #: gnutls.c:2163 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Error en obrir el fitxer CA «%s»: %s\n" #: gnutls.c:2176 openssl.c:1679 msgid "Loading certificate failed. Aborting.\n" msgstr "La carrega del certificat ha fallat. S'està avortant.\n" #: gnutls.c:2237 #, c-format msgid "Failed to set TLS priority string (\"%s\"): %s\n" msgstr "" "No s'ha pogut establir la cadena de caràcters de prioritat TLS («%s»): %s\n" #: gnutls.c:2249 openssl.c:1796 #, c-format msgid "SSL negotiation with %s\n" msgstr "Negociació SSL amb %s\n" #: gnutls.c:2296 openssl.c:1822 msgid "SSL connection cancelled\n" msgstr "Connexió SSL cancel·lada\n" #: gnutls.c:2303 #, c-format msgid "SSL connection failure: %s\n" msgstr "Connexió SSL fallada: %s\n" #: gnutls.c:2312 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "GnuTLS retorna no fatal durant la reencaixada: %s\n" #: gnutls.c:2318 openssl.c:1839 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "S'ha connectat a HTTPS en %s\n" #: gnutls.c:2321 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "S'ha renegociat SSL en %s\n" #: gnutls.c:2483 openssl-pkcs11.c:199 #, c-format msgid "PIN required for %s" msgstr "Cal PIN en %s" #: gnutls.c:2487 openssl-pkcs11.c:202 msgid "Wrong PIN" msgstr "PIN dolent" #: gnutls.c:2490 msgid "This is the final try before locking!" msgstr "Aquest és l'últim intent abans de bloquejar-ho!" #: gnutls.c:2492 msgid "Only a few tries left before locking!" msgstr "Només alguns intents abans de bloquejar-ho!" #: gnutls.c:2497 openssl-pkcs11.c:206 msgid "Enter PIN:" msgstr "Entreu el PIN:" #: gnutls.c:2583 openssl.c:1967 msgid "Unsupported OATH HMAC algorithm\n" msgstr "Algoritme HMAC OATH no suportat\n" #: gnutls.c:2592 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "Error en calcular HMAC OATH: %s\n" #: gnutls_tpm.c:54 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "La funció de signatura TPM ha cridat a %d bytes.\n" #: gnutls_tpm.c:61 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Error en crear l'objecte resum TPM: %s\n" #: gnutls_tpm.c:68 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Error en configurar el valor en l'objecte resum TPM: %s\n" #: gnutls_tpm.c:78 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "La signatura resum TPM ha fallat: %s\n" #: gnutls_tpm.c:100 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Error en descodificar la bombolla clau TSS: %s\n" #: gnutls_tpm.c:108 gnutls_tpm.c:119 gnutls_tpm.c:132 msgid "Error in TSS key blob\n" msgstr "Error en la bombolla clau TSS\n" #: gnutls_tpm.c:139 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Errada per a crear el context TPM: %s\n" #: gnutls_tpm.c:146 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Errada per a connectar el context TPM: %s\n" #: gnutls_tpm.c:154 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Errada per a carregar la clau SRK TPM: %s\n" #: gnutls_tpm.c:161 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Errada per a carregar l'objecte de política SRK TPM: %s\n" #: gnutls_tpm.c:182 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Errada per a configurar PIN TPM: %s\n" #: gnutls_tpm.c:198 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Errada per a carregar la bombolla de clau TPM: %s\n" #: gnutls_tpm.c:205 msgid "Enter TPM SRK PIN:" msgstr "Entreu el PIN SRK TPM:" #: gnutls_tpm.c:226 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Errada per a crear l'objecte de política clau: %s\n" #: gnutls_tpm.c:234 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Errada per a assignar la política a la clau: %s\n" #: gnutls_tpm.c:240 msgid "Enter TPM key PIN:" msgstr "Entreu la clau PIN de TPM:" #: gnutls_tpm.c:251 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Errada per a configurar la clau PIN: %s\n" #: gnutls_tpm2.c:92 gnutls_tpm2_esys.c:474 gnutls_tpm2_ibm.c:419 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "Resum TPM2 EC desconegut de mida %d:\n" #: gnutls_tpm2.c:198 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "Error en descodificar la bombolla clau TSS2: %s\n" #: gnutls_tpm2.c:208 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "Error en crear el tipus ASN.1 per a TPM2: %s\n" #: gnutls_tpm2.c:217 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "Errada per a descodificar la clau TPM2 ASN.1: %s\n" #: gnutls_tpm2.c:225 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "Error en analitzar el tipus de clau TPM2 OID: %s\n" #: gnutls_tpm2.c:231 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "La clau TPM2 té un tipus desconegut OID %s no %s\n" #: gnutls_tpm2.c:249 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "Errada per analitzar la clau TPM2 pare: %s\n" #: gnutls_tpm2.c:270 msgid "Failed to parse TPM2 pubkey element\n" msgstr "Error en analitzar l'element TPM2 de la clau pública\n" #: gnutls_tpm2.c:275 msgid "Failed to parse TPM2 privkey element\n" msgstr "Error en analitzar l'element TPM2 de la clau privada\n" #: gnutls_tpm2.c:280 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "S'ha analitzat la clau TPM2 amb pare %x, autenticació buida %d \n" #: gnutls_tpm2.c:384 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "Resum TPM2 massa gran: %d > %d \n" #: gnutls_tpm2_esys.c:173 msgid "TPM2 password too long; truncating\n" msgstr "Contrasenya TPM2 massa gran; s'està tallant\n" #: gnutls_tpm2_esys.c:189 msgid "owner" msgstr "Propietari" #: gnutls_tpm2_esys.c:190 msgid "null" msgstr "nul" #: gnutls_tpm2_esys.c:191 msgid "endorsement" msgstr "Suport" #: gnutls_tpm2_esys.c:192 msgid "platform" msgstr "Plataforma" #: gnutls_tpm2_esys.c:196 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "S'està creant la clau primària sota la jerarquia %s. \n" #: gnutls_tpm2_esys.c:201 gnutls_tpm2_ibm.c:262 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "Entreu la contrasenya de jerarquia %s TPM2:" #: gnutls_tpm2_esys.c:209 gnutls_tpm2_esys.c:303 gnutls_tpm2_esys.c:374 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "Ha fallat Esys_TR_SetAuth TPM2 : 0x%x \n" #: gnutls_tpm2_esys.c:221 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "Ha fallat l'autenticació del propietari Esys_CreatePrimary TPM2 \n" #: gnutls_tpm2_esys.c:226 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "Ha fallat Esys_CreatePrimary TPM2: 0x%x \n" #: gnutls_tpm2_esys.c:245 msgid "Establishing connection with TPM.\n" msgstr "Connexió establida amb TPM, \n" #: gnutls_tpm2_esys.c:250 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" "Ha fallat Esys_Initialize TPM2: 0x%x \n" "\n" #: gnutls_tpm2_esys.c:258 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" "TPM2 es va iniciar per això hi ha un fals positiu en la fallada de registre " "tpm2tss. \n" #: gnutls_tpm2_esys.c:261 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" "Ha fallat Esys_Startup TPM2: 0x%x \n" "\n" #: gnutls_tpm2_esys.c:274 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "Ha fallat Esys_TR_FromTPMPublic per gestionar 0x%x: 0x%x \n" #: gnutls_tpm2_esys.c:295 gnutls_tpm2_ibm.c:278 msgid "Enter TPM2 parent key password:" msgstr "Entreu la contrasenya de la clau pare TPM2:" #: gnutls_tpm2_esys.c:309 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "S'està carregant la bombolla clau TPM2, pare %x. \n" #: gnutls_tpm2_esys.c:317 msgid "TPM2 Esys_Load auth failed\n" msgstr "Ha fallat l'autenticació Esys_Load TPM2\n" #: gnutls_tpm2_esys.c:323 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" "Ha fallat Esys_Load TPM2: 0x%x \n" "\n" #: gnutls_tpm2_esys.c:333 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "Ha fallat Esys_FlushContext TPM2 per al primari generat: 0x%x \n" #: gnutls_tpm2_esys.c:363 gnutls_tpm2_ibm.c:363 gnutls_tpm2_ibm.c:450 msgid "Enter TPM2 key password:" msgstr "Entreu la contrasenya TPM2:" #: gnutls_tpm2_esys.c:395 #, c-format msgid "TPM2 RSA sign function called for %d bytes.\n" msgstr "La funció de signatura TPM2 RSA ha cridat a %d bytes.\n" #: gnutls_tpm2_esys.c:414 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "Ha fallat l'autenticació Esys_RSA_Decrypt TPM2\n" #: gnutls_tpm2_esys.c:420 gnutls_tpm2_esys.c:500 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" "TPM2 ha fallat en generar la signatura RSA: 0x%x \n" "\n" #: gnutls_tpm2_esys.c:464 gnutls_tpm2_ibm.c:405 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "La funció de signatura TPM2 EC ha cridat a %d bytes.\n" #: gnutls_tpm2_esys.c:494 msgid "TPM2 Esys_Sign auth failed\n" msgstr "Ha fallat l'autenticació Esys_Sign TPM2 \n" #: gnutls_tpm2_esys.c:532 gnutls_tpm2_ibm.c:485 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "Gestor pare TPM2 no vàlid 0x%08x \n" #: gnutls_tpm2_esys.c:546 gnutls_tpm2_ibm.c:502 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "Error en importar les dades de la clau privada TPM2: 0x%x \n" #: gnutls_tpm2_esys.c:555 gnutls_tpm2_ibm.c:512 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" "Errada per a importar les dades de la clau pública TPM2: 0x%x \n" "\n" #: gnutls_tpm2_esys.c:569 gnutls_tpm2_ibm.c:523 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" "Tipus de clau TPM2 no suportat %d \n" "\n" #: gnutls_tpm2_ibm.c:54 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "L'operació TPM2 %s ha fallat (%d): %s%s%s \n" #: gpst.c:226 #, c-format msgid "%s\n" msgstr "%s\n" #: gpst.c:229 #, c-format msgid "Challenge: %s\n" msgstr "Desafiament: %s\n" #: gpst.c:417 #, c-format msgid "Unknown ESP %s algorithm: %s" msgstr "Algoritme %s ESP desconegut: %s" #: gpst.c:477 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "El temps d'espera és %d minuts.\n" #: gpst.c:483 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "Camí al túnel SSL no estàndard: %s\n" #: gpst.c:487 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "El temps d'espera del túnel (interval de reclau) és %d minuts.\n" #: gpst.c:498 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" "L'adreça de la passarel·la al fitxer de configuració XML (%s) difereix de " "l'adreça de la passarel·la externa (%s).\n" #: gpst.c:551 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" "La configuració GlobalProtect ha enviat ipsec-mode=%s (s'esperava esp-" "tunnel)\n" #: gpst.c:560 oncp.c:835 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" "S'està ignorant les claus ESP mentre el suport ESP no estigui disponible per " "a aquest muntatge\n" #: gpst.c:627 msgid "ESP disabled" msgstr "ESP Inhabilitat" #: gpst.c:629 msgid "No ESP keys received" msgstr "No s'han rebut claus ESP" #: gpst.c:631 msgid "ESP support not available in this build" msgstr "El suport a ESP no està disponible en aquesta compilació" #: gpst.c:635 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "Cap MTU rebut. Calculat %d per a %s%s\n" #: gpst.c:680 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "S'està connectant al final del túnel HTTPS...\n" #: gpst.c:702 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "Error en recollir la resposta del túnel-GET HTTPS.\n" #: gpst.c:711 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" "Passarel·la desconnectada immediatament després de la petició GET-túnel.\n" #: gpst.c:719 #, c-format msgid "Got inappropriate HTTP GET-tunnel response: %.*s\n" msgstr "S'ha obtingut la resposta inapropiada al GET-túnel HTTP: %.*s\n" #: gpst.c:861 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" "VPN connectivity may be disabled or limited without HIP report submission.\n" "You need to provide a --csd-wrapper argument with the HIP report submission " "script.\n" msgstr "" "AVÍS: el servidor ens ha demanat que enviem un informe HIP amb md5sum %s. \n" "La connectivitat VPN pot estar inhabilitada o limitada sense l'enviament " "d'informes HIP.\n" "Heu de proporcionar un argument --csd-wrapper amb l'script d'enviament " "d'informes HIP.\n" #: gpst.c:871 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" "Error: L'execució del script «'HIP Report» no està implementada encara.\n" #: gpst.c:900 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "El script HIP «%s» ha acabat de forma anòmala\n" #: gpst.c:905 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "El script HIP «%s» ha retornat l'error no-cero: %d\n" #: gpst.c:911 msgid "HIP report submission failed.\n" msgstr "L'enviament de l'informe HIP ha fallat.\n" #: gpst.c:913 msgid "HIP report submitted successfully.\n" msgstr "L'enviament de l'informe HIP ha estat un èxit.\n" #: gpst.c:942 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "Error en executar el script HIP %s\n" #: gpst.c:966 msgid "Gateway says HIP report submission is needed.\n" msgstr "La passarel·la diu que l'enviament de l'informe HIP és necessari.\n" #: gpst.c:972 msgid "Gateway says no HIP report submission is needed.\n" msgstr "La passarel·la diu que l'enviament de l'informe HIP no és necessari.\n" #: gpst.c:999 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" "El túnel ESP està connectat; s'està sortint del bucle principal HTTPS.\n" #: gpst.c:1015 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "Error en connectar el túnel ESP;s'està usant al seu lloc HTTPS.\n" #: gpst.c:1051 #, c-format msgid "Packet receive error: %s\n" msgstr "Error de recepció de paquets: %s\n" #: gpst.c:1072 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" "Paquet gran inesperat. SSL_read mostra %d (inclou capçalera de 16 bytes) " "però payload_len de la capçalera és %d\n" #: gpst.c:1082 msgid "Got GPST DPD/keepalive response\n" msgstr "S'ha rebut la resposta GPST DPD/keepalive.\n" #: gpst.c:1086 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" "S'esperava 0000000000000000 als darrers 8 bytes de la capçalera del paquet " "DPD/keepalive però teniu: \n" #: gpst.c:1092 #, c-format msgid "Received data packet of %d bytes\n" msgstr "S'ha rebut el paquet de dades de %d bytes\n" #: gpst.c:1101 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" "S'esperava 0100000000000000 als darrers 8 bytes de la capçalera del paquet " "de dades però teniu: \n" #: gpst.c:1109 msgid "Unknown packet. Header dump follows:\n" msgstr "Paquet desconegut. Segueix el bolcat de la capçalera:\n" #: gpst.c:1157 msgid "GlobalProtect rekey due\n" msgstr "Venciment de la reclau GlobalProtect\n" #: gpst.c:1162 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "El detector de parells morts GPST ha detectat un parell mort!\n" #: gpst.c:1182 msgid "Send GPST DPD/keepalive request\n" msgstr "Envia petició GPST DPD/keepalive\n" #: gpst.c:1202 #, c-format msgid "Sending data packet of %d bytes\n" msgstr "S'està enviant un paquet de dades de %d bytes\n" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Error en importar el nom GSSAPI per autenticació:\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "Error en generar la resposta GSSAPI:\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "S'està intentant l'autenticació GSSAPI al servidor intermediari\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "S'està intentant l'autenticació GSSAPI al servidor «%s»\n" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "Autenticació GSSAPI completada\n" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "Testimoni GSSAPI massa gran (%zd bytes)\n" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "S'està enviant el testimoni GSSAPI de %zu bytes\n" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" "Errada per a enviar el testimoni de l'autenticació GSSAPI al servidor " "intermediari: %s\n" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" "Errada per a rebre el testimoni de l'autenticació GSSAPI del servidor " "intermediari: %s\n" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "El servidor SOCKS ha informat de context GSSAPI erroni\n" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "Resposta d'estat GSSAPI desconeguda (0x%02x) del servidor SOCKS\n" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "S'ha obtingut el testimoni GSSAPI de %zu bytes: %02x %02x %02x %02x\n" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "S'està enviant protecció GSSAPI en la negociació de %zu bytes\n" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" "Errada per a enviar la resposta de protecció GSSAPI al servidor " "intermediari: %s\n" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" "Errada per a rebre la resposta de protecció GSSAPI del servidor " "intermediari: %s\n" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" "S'ha obtingut la resposta de protecció GSSAPI de %zu bytes: %02x %02x %02x " "%02x\n" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" "Resposta de protecció GSSAPI no vàlida del servidor intermediari (%zu " "bytes)\n" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" "Servidor intermediari SOCKS demana la integritat del missatge, que no està " "suportada\n" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" "Servidor intermediari SOCKS demana la confidencialitat del missatge, que no " "està suportada\n" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" "Servidor intermediari SOCKS demana la protecció del tipus desconegut 0x" "%02x\n" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "S'està intentant l'autenticació bàsica HTTP al servidor intermediari\n" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "S'està intentant l'autenticació bàsica HTTP al servidor «%s»\n" #: http-auth.c:200 http.c:1165 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "Aquesta versió d'OpenConnect ha sigut muntada sense suport GSSAPI\n" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" "El servidor intermediari ha demanat autenticació bàsica que està " "deshabilitada per defecte\n" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" "El servidor «%s» ha demanat per autenticació bàsica que està deshabilitada " "per defecte\n" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "No hi ha més mètodes d'autenticació per a provar\n" #: http.c:319 msgid "No memory for allocating cookies\n" msgstr "No hi ha memòria per assignar galetes\n" #: http.c:394 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Error per a analitzar la resposta HTTP «%s»\n" #: http.c:400 #, c-format msgid "Got HTTP response: %s\n" msgstr "S'ha obtingut la resposta HTTP: %s\n" #: http.c:408 msgid "Error processing HTTP response\n" msgstr "Error en processar la resposta HTTP\n" #: http.c:415 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "S'està ignorant la resposta HTTP desconeguda de línia «%s»\n" #: http.c:435 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Galeta oferida no vàlida: %s\n" #: http.c:454 msgid "SSL certificate authentication failed\n" msgstr "L'autenticació del certificat SSL ha fallat\n" #: http.c:485 #, c-format msgid "Response body has negative size (%d)\n" msgstr "La resposta del cos té una mida negativa (%d)\n" #: http.c:496 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Codificació de transferència desconeguda: %s\n" #. Now the body, if there is one #: http.c:515 #, c-format msgid "HTTP body %s (%d)\n" msgstr "Cos HTTP %s (%d)\n" #: http.c:529 http.c:556 msgid "Error reading HTTP response body\n" msgstr "Error en llegir el cos de la resposta HTTP\n" #: http.c:542 msgid "Error fetching chunk header\n" msgstr "Error en recollir un fragment de capçalera\n" #: http.c:566 msgid "Error fetching HTTP response body\n" msgstr "Error en recollir el cos de la resposta HTTP\n" #: http.c:569 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "Error en un fragment descodificat. S'esperava '', s'ha obtingut «%s»" #: http.c:581 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "No es pot rebre el cos HTTP 1.0 sense tancar la connexió\n" #: http.c:708 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Error per a analitzar la redirecció URL «%s»: %s\n" #: http.c:732 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "No es pot seguir la redirecció a la URL no https «%s»\n" #: http.c:760 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "S'està assignant el nou camí per la redirecció relativa errònia: %s\n" #: http.c:973 oncp.c:591 #, c-format msgid "Unexpected %d result from server\n" msgstr "Resultat %d inesperat del servidor\n" #: http.c:1021 msgid "request granted" msgstr "petició concedida" #: http.c:1022 msgid "general failure" msgstr "errada general" #: http.c:1023 msgid "connection not allowed by ruleset" msgstr "connexió no permesa per configurador de regles" #: http.c:1024 msgid "network unreachable" msgstr "xarxa no disponible" #: http.c:1025 msgid "host unreachable" msgstr "servidor no disponible" #: http.c:1026 msgid "connection refused by destination host" msgstr "connexió rebutjada pel servidor de destí" #: http.c:1027 msgid "TTL expired" msgstr "TTL caducada" #: http.c:1028 msgid "command not supported / protocol error" msgstr "ordre no suportada / error de protocol" #: http.c:1029 msgid "address type not supported" msgstr "tipus d'adreça no suportada" #: http.c:1039 msgid "SOCKS server requested username/password but we have none\n" msgstr "" "Servidor SOCKS ha preguntat per nom d'usuari / contrasenya però no n'hi ha\n" #: http.c:1047 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" "El nom d'usuari i la contrasenya per a l'autenticació SOCKS cal que sigui < " "255 bytes\n" #: http.c:1062 http.c:1118 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" "Error en escriure la sol·licitud d'autenticació per al servidor intermediari " "SOCKS: %s\n" #: http.c:1070 http.c:1125 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" "Error en llegir la resposta de l'autenticació per al servidor intermediari " "SOCKS: %s\n" #: http.c:1077 http.c:1131 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" "Resposta d'autenticació desconeguda del servidor intermediari SOCKS: %02x " "%02x\n" #: http.c:1083 msgid "Authenticated to SOCKS server using password\n" msgstr "Autenticat al servidor SOCKS utilitzant la contrasenya\n" #: http.c:1087 msgid "Password authentication to SOCKS server failed\n" msgstr "Contrasenya d'autenticació al servidor SOCKS errònia\n" #: http.c:1143 http.c:1150 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "El servidor SOCKS ha preguntat per autenticació GSSAPI\n" #: http.c:1156 msgid "SOCKS server requested password authentication\n" msgstr "El servidor SOCKS ha preguntat per autenticació de contrasenya\n" #: http.c:1163 msgid "SOCKS server requires authentication\n" msgstr "El servidor SOCKS demana autenticació\n" #: http.c:1170 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" "El servidor SOCKS ha demanat per autenticació del tipus desconegut %02x\n" #: http.c:1176 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "" "S'està sol·licitant connexió al servidor intermediari SOCKS per %s:%d\n" #: http.c:1191 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" "Error en escriure la sol·licitud de connexió al servidor intermediari SOCKS: " "%s\n" #: http.c:1199 http.c:1241 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "" "Error en llegir la resposta de connexió al servidor intermediari SOCKS: %s\n" #: http.c:1205 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "" "Resposta de connexió inesperada al servidor intermediari SOCKS:%02x %02x...\n" #: http.c:1213 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "Error al servidor intermediari SOCKS %02x: %s\n" #: http.c:1217 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "Error al servidor intermediari SOCKS %02x\n" #: http.c:1234 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Tipus d'adreça inesperada %02x a la resposta de connexió SOCKS\n" #: http.c:1257 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "" "S'està sol·licitant la connexió al servidor intermediari HTTP per %s:%d\n" #: http.c:1292 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "L'enviament de la sol·licitud al servidor intermediari ha fallat: %s\n" #: http.c:1315 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "La sol·licitud de CONNEXIÓ al servidor intermediari ha fallat: %d\n" #: http.c:1334 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Tipus de servidor intermediari desconegut «%s»\n" #: http.c:1383 msgid "Only http or socks(5) proxies supported\n" msgstr "Sols estan suportats http o el servidor intermediaris socks(5)\n" #: library.c:112 msgid "Cisco AnyConnect or openconnect" msgstr "Cisco AnyConnect o openconnect" #: library.c:113 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "Compatible amb VPN SSL Cisco AnyConnect així com amb ocserv" #: library.c:129 msgid "Juniper Network Connect" msgstr "Juniper Network Connect" #: library.c:130 msgid "Compatible with Juniper Network Connect / Pulse Secure SSL VPN" msgstr "Compatible amb Juniper Network Connect / Pulse Secure SSL VPN" #: library.c:148 msgid "Palo Alto Networks GlobalProtect" msgstr "Palo Alto Networks GlobalProtect" #: library.c:149 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "Compatible amb Palo Alto Networks (PAN) GlobalProtect SSL VPN" #: library.c:211 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "Protocol VPN desconegut «%s»\n" #: library.c:233 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Muntatge de la llibreria SSL sense suport DTLS Cisco\n" #: library.c:656 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Error en analitzar el servidor URL «%s»\n" #: library.c:662 msgid "Only https:// permitted for server URL\n" msgstr "Sols està permès https:// per la URL servidor\n" #: library.c:1056 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "Suma del certificat desconeguda: %s.\n" #: library.c:1085 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" "La mida de l'empremta digital proporcionada és menor que el mínim requerit " "(%u).\n" #: library.c:1146 msgid "No form handler; cannot authenticate.\n" msgstr "Sense formulari gestor; no es pot autenticar.\n" #: main.c:340 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "CommandLineToArgvW() ha fallat: %s\n" #: main.c:353 #, c-format msgid "Fatal error in command line handling\n" msgstr "Error fatal en la gestió de la línia d'ordres\n" #: main.c:388 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "ReadConsole() ha fallat: %s\n" #: main.c:401 #, c-format msgid "fgetws() failed: %s\n" msgstr "fgetws() ha fallat: %s\n" #: main.c:416 main.c:429 #, c-format msgid "Error converting console input: %s\n" msgstr "Error en convertir l'entrada de consola: %s\n" #: main.c:423 main.c:689 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Assignació errònia de la cadena de l'entrada estàndard\n" #: main.c:584 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" "Per assistència amb OpenConnect, mireu la pàgina web a\n" " http://www.infradead.org/openconnect/mail.html\n" #: main.c:593 #, c-format msgid "Using OpenSSL. Features present:" msgstr "S'està utilitzant OpenSSL. Característiques presents:" #: main.c:595 #, c-format msgid "Using GnuTLS. Features present:" msgstr "S'està utilitzant GnuTLS. Característiques presents:" #: main.c:608 msgid "OpenSSL ENGINE not present" msgstr "L'OpenSSL ENGINE no està present" #: main.c:647 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" "AVÍS: Sense suport DTLS i/o ESP en aquest binari. Es veurà perjudicat el " "rendiment.\n" #: main.c:657 #, c-format msgid "Supported protocols:" msgstr "Protocols suportats:" #: main.c:659 main.c:675 msgid " (default)" msgstr "(per defecte)" #: main.c:672 msgid "Set VPN protocol" msgstr "Estableix el protocol VPN" #: main.c:713 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:754 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "No es pot processar aquest camí executable «%s»" #: main.c:760 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "L'assignació del camí per a vpnc-script ha fallat\n" #: main.c:780 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "Sobreescriu el nom de l'ordinador de «%s» a «%s»\n" #: main.c:793 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Ús: openconnect [opcions] \n" #: main.c:794 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" "Client obert per a múltiples protocols VPN, versió %s\n" "\n" #: main.c:796 msgid "Read options from config file" msgstr "Llegeix les opcions del fitxer de configuració" #: main.c:797 msgid "Report version number" msgstr "Informa del nombre de versió" #: main.c:798 msgid "Display help text" msgstr "Mostra text d'ajuda" #: main.c:802 msgid "Authentication" msgstr "Autentificació" #: main.c:803 msgid "Set login username" msgstr "Configura el nom d'usuari d'entrada" #: main.c:804 msgid "Disable password/SecurID authentication" msgstr "Deshabilita l'autenticació de la contrasenya/SecurID" #: main.c:805 msgid "Do not expect user input; exit if it is required" msgstr "No esperis entrada de l'usuari; surt si aquesta és requerida" #: main.c:806 msgid "Read password from standard input" msgstr "Llegeix la contrasenya de l'entrada estàndard" #: main.c:807 msgid "Choose authentication login selection" msgstr "Trieu la selecció d'autenticació de l'entrada de sessió" #: main.c:808 msgid "Provide authentication form responses" msgstr "Proporciona respostes a formularis d'autenticació" #: main.c:809 msgid "Use SSL client certificate CERT" msgstr "Usa el certificat CERT del client SSL" #: main.c:810 msgid "Use SSL private key file KEY" msgstr "Usa la clau privada SSL al fitxer KEY" #: main.c:811 msgid "Warn when certificate lifetime < DAYS" msgstr "Avisa quan la vida del certificat < DAYS" #: main.c:812 msgid "Set login usergroup" msgstr "Configura l'entrada del grup d'usuaris" #: main.c:813 msgid "Set key passphrase or TPM SRK PIN" msgstr "Configura la contrasenya de la clau o PIN SRK TPM" #: main.c:814 msgid "Key passphrase is fsid of file system" msgstr "La contrasenya de la clau és fsid del sistema de fitxers" #: main.c:815 msgid "Software token type: rsa, totp or hotp" msgstr "Tipus de testimoni de programari: rsa, totp o hotp" #: main.c:816 msgid "Software token secret" msgstr "Testimoni secret de programari" #: main.c:818 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "(NOTA: libstoken (RSA SecurID) deshabilitada en aquest muntatge)" #: main.c:821 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(NOTA: Yubikey OATH deshabilitada en aquest muntatge)" #: main.c:824 msgid "Server validation" msgstr "Validació del servidor" #: main.c:825 msgid "Server's certificate SHA1 fingerprint" msgstr "Empremta SHA1 del certificat del servidor" #: main.c:826 msgid "Do not require server SSL cert to be valid" msgstr "No es requereix el certificat SSL del servidor per validar-se" #: main.c:827 msgid "Disable default system certificate authorities" msgstr "Deshabilita per defecte els certificats d'autoritats del sistema" #: main.c:828 msgid "Cert file for server verification" msgstr "Fitxer CERT per la verificació del servidor" #: main.c:830 msgid "Internet connectivity" msgstr "Connectivitat d'Internet" #: main.c:831 msgid "Set proxy server" msgstr "Configura el servidor intermediari" #: main.c:832 msgid "Set proxy authentication methods" msgstr "Configura els mètodes d'autenticació del servidor intermediari" #: main.c:833 msgid "Disable proxy" msgstr "Deshabilita el servidor intermediari" #: main.c:834 msgid "Use libproxy to automatically configure proxy" msgstr "" "Utilitza libproxy per configurar de forma automàtica el servidor intermediari" #: main.c:836 msgid "(NOTE: libproxy disabled in this build)" msgstr "(NOTA: libproxy deshabilitat en aquest muntatge)" #: main.c:838 msgid "Connection retry timeout in seconds" msgstr "Temps d'espera en segons per reintentar la connexió" #: main.c:839 msgid "Use IP when connecting to HOST" msgstr "Usa l'IP quan et connectis a HOST" #: main.c:840 msgid "copy TOS / TCLASS when using DTLS" msgstr "copia TOS / TCLASS quan s'usa DTLS" #: main.c:841 msgid "Set local port for DTLS and ESP datagrams" msgstr "Configura el port per als datagrames DTLS i ESP" #: main.c:843 msgid "Authentication (two-phase)" msgstr "Autenticació (dues fases)" #: main.c:844 msgid "Use authentication cookie COOKIE" msgstr "Usa galeta d'autenticació COOKIE" #: main.c:845 msgid "Read cookie from standard input" msgstr "Llegeix la galeta de l'entrada estàndard" #: main.c:846 msgid "Authenticate only and print login info" msgstr "Autentica sols i imprimeix la informació de l'entrada de sessió" #: main.c:847 msgid "Fetch and print cookie only; don't connect" msgstr "Sols obteniu i imprimiu la galeta; no connecteu" #: main.c:848 msgid "Print cookie before connecting" msgstr "Imprimiu la galeta abans de connectar-vos" #: main.c:851 msgid "Process control" msgstr "Control de procés" #: main.c:852 msgid "Continue in background after startup" msgstr "Continua al fons després de l'inici" #: main.c:853 msgid "Write the daemon's PID to this file" msgstr "Escriu els PID dels dimonis per aquest fitxer" #: main.c:854 msgid "Drop privileges after connecting" msgstr "Descarta els privilegis després de la connexió" #: main.c:857 msgid "Logging (two-phase)" msgstr "Registre (dues fases)" #: main.c:859 msgid "Use syslog for progress messages" msgstr "Usa registres de sistema per al progrés dels missatges" #: main.c:861 msgid "More output" msgstr "Més sortida" #: main.c:862 msgid "Less output" msgstr "Menys sortida" #: main.c:863 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "Bolca el trafic d'autenticació HTTP (implica --verbose)" #: main.c:864 msgid "Prepend timestamp to progress messages" msgstr "Avantposa la marca horària per al progrés dels missatges" #: main.c:866 msgid "VPN configuration script" msgstr "Script de configuració VPN." #: main.c:867 msgid "Use IFNAME for tunnel interface" msgstr "Usa IFNAME per la interfície de túnel" #: main.c:868 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" "Terminal de la línia d'ordres per utilitzar un vpnc compatible amb el script " "de configuració" #: main.c:869 msgid "default" msgstr "per defecte" #: main.c:871 msgid "Pass traffic to 'script' program, not tun" msgstr "Passa el trafic al «script» del programa, no al controlador de xarxa" #: main.c:874 msgid "Tunnel control" msgstr "Control del túnel" #: main.c:875 msgid "Do not ask for IPv6 connectivity" msgstr "No pregunteu per la connectivitat IPv6" #: main.c:876 msgid "XML config file" msgstr "Fitxer de configuració XML" #: main.c:877 msgid "Request MTU from server (legacy servers only)" msgstr "Demana del MTU al servidor (sols servidors antics)" #: main.c:878 msgid "Indicate path MTU to/from server" msgstr "Indica el camí MTU a / des del servidor" #: main.c:879 msgid "Enable stateful compression (default is stateless only)" msgstr "Habilita la compressió amb estat (per defecte és sols sense estat)" #: main.c:880 msgid "Disable all compression" msgstr "Deshabilita tota la compressió" #: main.c:881 msgid "Set minimum Dead Peer Detection interval" msgstr "Configura l'interval mínim de detecció de parells morts" #: main.c:882 msgid "Require perfect forward secrecy" msgstr "Requerida confidencialitat directa perfecta" #: main.c:883 msgid "Disable DTLS and ESP" msgstr "Deshabilita DTLS i ESP" #: main.c:884 msgid "OpenSSL ciphers to support for DTLS" msgstr "Xifrat OpenSSL per suportar a DTLS" #: main.c:885 msgid "Set packet queue limit to LEN pkts" msgstr "Configura el límit de la cua del paquet a LEN pkts" #: main.c:887 msgid "Local system information" msgstr "Informació del sistema local" #: main.c:888 msgid "HTTP header User-Agent: field" msgstr "Capçalera HTTP de l'usuari-agent: camp" #: main.c:889 msgid "Local hostname to advertise to server" msgstr "Nom d'amfitrió local per publicitar al servidor" #: main.c:890 msgid "OS type (linux,linux-64,win,...) to report" msgstr "Tipus de sistema operatiu (linux,linux-64,win,...) per l'informe" #: main.c:891 msgid "reported version string during authentication" msgstr "Cadena de versió informada durant l'autenticació" #: main.c:892 msgid "default:" msgstr "per defecte:" #: main.c:895 msgid "Trojan binary (CSD) execution" msgstr "Execució (CSD) del binari troià" #: main.c:896 msgid "Drop privileges during trojan execution" msgstr "Descarta els privilegis durant l'execució del troià" #: main.c:897 msgid "Run SCRIPT instead of trojan binary" msgstr "Executa SCRIPT en lloc de binari troià" #: main.c:900 msgid "Server bugs" msgstr "Errors de programari del servidor" #: main.c:901 msgid "Disable HTTP connection re-use" msgstr "Deshabilita la reutilització de la connexió HTTP" #: main.c:902 msgid "Do not attempt XML POST authentication" msgstr "No intentis l'autenticació POST XML" #: main.c:924 #, c-format msgid "Failed to allocate string\n" msgstr "Error en assignar la cadena\n" #: main.c:997 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Error en obtindre la línia del fitxer de configuració: %s\n" #: main.c:1037 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Opció no reconeguda a la línia %d: «%s»\n" #: main.c:1047 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "L'opció «%s» no té argument a la línia %d\n" #: main.c:1051 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "L'opció «%s» requereix un argument a la línia %d\n" #: main.c:1076 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "Usuari no vàlid «%s»: %s\n" #: main.c:1086 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "ID d'usuari no vàlid «%d»: %s\n" #: main.c:1130 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "AVÍS: No es pot configurar la localització: %s\n" #: main.c:1140 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "AVÍS: Aquesta versió d'openconnect ha estat muntada sense suport\n" " per iconv però sembla que esteu utilitzant un caràcter antic\n" " establert com «%s». S'esperen coses estranyes.\n" #: main.c:1147 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "AVÍS: Aquesta versió d'openconnect és %s però\n" " la llibreria libopenconnect és %s\n" #: main.c:1157 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Error en assignar l'estructura vpninfo\n" #: main.c:1215 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "No es pot utilitzar l'opció «config» dins del fitxer de configuració\n" #: main.c:1223 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "No es pot obrir el fitxer de configuració «%s»: %s\n" #: main.c:1239 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "Mode de compressió no vàlid «%s»\n" #: main.c:1260 #, c-format msgid "Missing colon in resolve option\n" msgstr "Falten els dos punts a l'opció resolve\n" #: main.c:1265 #, c-format msgid "Failed to allocate memory\n" msgstr "No s'ha pogut assignar memòria\n" #: main.c:1349 main.c:1358 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d massa petit\n" #: main.c:1388 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Deshabiliteu la reutilització de totes les connexions HTTP degut a \n" "l'opció --no-http-keepalive. Si això ajuda informeu a .\n" #: main.c:1394 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" "L'opció --no-cert-check era no segura i ha estat suprimida.\n" "Fixeu els vostres certificats dels servidors o useu --servercert per confiar-" "hi.\n" #: main.c:1411 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Longitud de cua zero no permesa; s'està usant 1\n" #: main.c:1425 #, c-format msgid "OpenConnect version %s\n" msgstr "Versió d'OpenConnect %s\n" #: main.c:1463 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Mode de testimoni de programari «%s» no vàlid\n" #: main.c:1473 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "Identitat del sistema operatiu «%s» no vàlida\n" #: main.c:1506 #, c-format msgid "Too many arguments on command line\n" msgstr "Massa arguments a la línia d'ordres\n" #: main.c:1509 #, c-format msgid "No server specified\n" msgstr "No heu especificat servidor\n" #: main.c:1525 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" "Aquesta versió d'openconnect ha estat muntada sense suport per libproxy\n" #: main.c:1555 #, c-format msgid "Error opening cmd pipe\n" msgstr "Error en obrir el conducte «cmd»\n" #: main.c:1588 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "Error per a obtenir la galeta WebVPN\n" #: main.c:1609 #, c-format msgid "Creating SSL connection failed\n" msgstr "La creació de la connexió SSL ha fallat\n" #: main.c:1625 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "La configuració de UDP ha fallat; s'està usant SSL al seu lloc\n" #: main.c:1633 #, c-format msgid "Connected as %s%s%s, using SSL%s%s, with %s%s%s %s\n" msgstr "" "Connectat com a %s%s%s, s'està utilitzant SSL%s%s, amb %s%s%s %s \n" "\n" #: main.c:1639 msgid "disabled" msgstr "Inhabilitat" #: main.c:1639 msgid "in progress" msgstr "en progrés" #: main.c:1643 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "Cap argument --script proporcionat; DNS i encaminament no estan configurats\n" #: main.c:1645 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Mireu http://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:1658 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Errada per a obrir «%s» per escriure: %s\n" #: main.c:1670 #, c-format msgid "Continuing in background; pid %d\n" msgstr "S'està continuant al fons; PID %d\n" #: main.c:1687 msgid "User requested reconnect\n" msgstr "Torna a connectar la sol·licitud de l'usuari\n" #: main.c:1695 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "La galeta ha estat rebutjada en la reconnexió; s'està sortint.\n" #: main.c:1699 msgid "Session terminated by server; exiting.\n" msgstr "Sessió acabada pel servidor; s'està sortint.\n" #: main.c:1703 msgid "User cancelled (SIGINT/SIGTERM); exiting.\n" msgstr "Usuari cancel·lat (SIGINT/SIGTERM)); s'està sortint.\n" #: main.c:1707 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "Usuari desconnectat de la sessió (SIGHUP); s'està sortint.\n" #: main.c:1711 msgid "Unknown error; exiting.\n" msgstr "Error desconegut; s'està sortint.\n" #: main.c:1730 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Error per a obrir %s per escriure: %s\n" #: main.c:1738 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Error en escriure a config %s: %s\n" #: main.c:1797 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "El certificat del servidor SSL no concorda: %s\n" #: main.c:1816 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "El certificat del servidor VPN «%s» ha fallat la verificació.\n" "Motiu: %s\n" #: main.c:1819 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" "Per confiar en aquest servidor en el futur, potser afegiu això a la línia " "d'ordres:\n" #: main.c:1820 #, c-format msgid " --servercert %s\n" msgstr " --servercert %s\n" #: main.c:1825 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Entreu «%s» per acceptar, «%s» per avortar; qualsevol altra cosa per mostrar:" #: main.c:1826 main.c:1844 msgid "no" msgstr "No" #: main.c:1826 main.c:1832 msgid "yes" msgstr "Sí" #: main.c:1853 #, c-format msgid "Server key hash: %s\n" msgstr "Resum de la clau del servidor: %s\n" #: main.c:1887 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "La tria d'autenticació «%s» concorda amb múltiples opcions\n" #: main.c:1890 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "La tria d'autenticació «%s» no està disponible\n" #: main.c:1911 msgid "User input required in non-interactive mode\n" msgstr "L'entrada de l'usuari és requerida en mode no interactiu\n" #: main.c:2149 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Error en obrir el fitxer testimoni per escriptura: %s\n" #: main.c:2157 #, c-format msgid "Failed to write token: %s\n" msgstr "Error en escriure el testimoni: %s\n" #: main.c:2203 main.c:2224 #, c-format msgid "Soft token string is invalid\n" msgstr "El testimoni tou de la cadena és no vàlid\n" #: main.c:2206 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "No es pot obrir el fitxer ~/.stokenrc\n" #: main.c:2209 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "OpenConnect ha sigut muntat sense suport per libstoken\n" #: main.c:2212 #, c-format msgid "General failure in libstoken\n" msgstr "Errada general en libstoken\n" #: main.c:2227 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "OpenConnect ha sigut muntat sense suport per liboath\n" #: main.c:2230 #, c-format msgid "General failure in liboath\n" msgstr "Errada general en liboath\n" #: main.c:2241 #, c-format msgid "Yubikey token not found\n" msgstr "El testimoni Yubikey no s'ha trobat\n" #: main.c:2244 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "OpenConnect ha sigut muntat sense suport per Yubikey\n" #: main.c:2247 #, c-format msgid "General Yubikey failure: %s\n" msgstr "Errada general en Yubikey: %s\n" #: mainloop.c:127 #, c-format msgid "Set up tun script failed\n" msgstr "La configuració del script del controlador de xarxa ha fallat\n" #: mainloop.c:134 #, c-format msgid "Set up tun device failed\n" msgstr "La configuració del dispositiu del controlador de xarxa ha fallat\n" #: mainloop.c:265 msgid "Caller paused the connection\n" msgstr "El cridador ha aturat la connexió\n" #: mainloop.c:273 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Sense treball que fer; dormint durant %d ms...\n" #: mainloop.c:294 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "EsperantMultiplesObjectes ha fallat: %s\n" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "InicialitzaContextSeguretat() ha fallat: %lx\n" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "GestorCredencialAdquirides() ha fallat: %lx\n" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "Error en comunicar amb l'ajuda ntlm_auth\n" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" "S'està intentant l'autenticació NTLM HTTP amb el servidor intermediari " "(inici-sessió-única)\n" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" "S'està intentant l'autenticació NTLM HTTP amb el servidor «%s» (inici-sessió-" "única)\n" #: ntlm.c:978 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" "S'està intentant l'autenticació NTLMv%d HTTP amb el servidor intermediari \n" #: ntlm.c:982 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "S'està intentant l'autenticació NTLMv%d HTTP amb el servidor «%s»\n" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "Cadena testimoni de base32 no vàlida\n" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "Error en assignar memòria per descodificar el secret OATH\n" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "Aquesta versió d'OpenConnect ha estat muntada sense suport PSKC\n" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "D'acord per generar el codi testimoni INICIAL\n" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "D'acord per generar el codi testimoni SEGÜENT\n" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" "El servidor està rebutjant el testimoni tou; s'està canviant a entrada " "manual\n" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "S'està generant el codi testimoni TOTP OATH\n" #: oath.c:565 msgid "Generating OATH HOTP token code\n" msgstr "S'està generant el codi testimoni HOTP OATH\n" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "Galeta no vàlida «%s»\n" #: oncp.c:160 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "Longitud inesperada %d per TLV %d/%d\n" #: oncp.c:166 #, c-format msgid "Received MTU %d from server\n" msgstr "S'ha rebut MTU %d del servidor\n" #: oncp.c:175 #, c-format msgid "Received DNS server %s\n" msgstr "S'ha rebut el servidor DNS %s\n" #: oncp.c:186 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "Rebuda la cerca de dominis DNS %.*s\n" #: oncp.c:201 #, c-format msgid "Received internal IP address %s\n" msgstr "Rebuda l'adreça IP interna %s\n" #: oncp.c:210 #, c-format msgid "Received netmask %s\n" msgstr "Rebuda la mascara de xarxa %s\n" #: oncp.c:219 #, c-format msgid "Received internal gateway address %s\n" msgstr "Rebuda l'adreça interna de passarel·la %s\n" #: oncp.c:232 #, c-format msgid "Received split include route %s\n" msgstr "Rebuda ruta inclosa en la divisió %s\n" #: oncp.c:254 #, c-format msgid "Received split exclude route %s\n" msgstr "Rebut divisió exclosa la ruta %s\n" #: oncp.c:274 #, c-format msgid "Received WINS server %s\n" msgstr "Rebut el servidor WINS %s\n" #: oncp.c:297 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "Xifrat ESP: 0x%02x (%s)\n" #: oncp.c:316 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "ESP HMAC: 0x%02x (%s)\n" #: oncp.c:327 #, c-format msgid "ESP compression: %d\n" msgstr "Compressió ESP: %d\n" #: oncp.c:335 #, c-format msgid "ESP port: %d\n" msgstr "Port ESP: %d\n" #: oncp.c:342 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "Vida de la clau ESP: %u bytes\n" #: oncp.c:350 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "Temps de vida de la clau ESP: %u segons\n" #: oncp.c:358 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "ESP al SSL alternatiu: %u segons\n" #: oncp.c:366 #, c-format msgid "ESP replay protection: %d\n" msgstr "Protecció de repetició ESP: %d\n" #: oncp.c:374 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "SPI ESP (sortida): %x\n" #: oncp.c:383 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "%d bytes de secrets ESP\n" #: oncp.c:395 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "Grup TLV desconegut %d attr %d len %d:%s\n" #: oncp.c:473 msgid "Failed to parse KMP header\n" msgstr "Error en analitzar la capçalera KMP\n" #: oncp.c:490 msgid "Failed to parse KMP message\n" msgstr "Error en analitzar el missatge KMP\n" #: oncp.c:496 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "S'ha obtingut el missatge KMP %d de mida %d\n" #: oncp.c:512 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "Rebuts no-ESP TLVs (grup %d) en la negociació ESP KMP\n" #: oncp.c:577 oncp.c:609 oncp.c:747 msgid "Error creating oNCP negotiation request\n" msgstr "Error en crear la sol·licitud de negociació oNCP\n" #: oncp.c:618 oncp.c:783 msgid "Short write in oNCP negotiation\n" msgstr "Escrit curt en la negociació oNCP\n" #: oncp.c:631 oncp.c:666 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "Llegits %d bytes del registre SSL\n" #: oncp.c:636 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" "Resposta inesperada de mida %d després del paquet de nom de l'amfitrió\n" #: oncp.c:643 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" "La resposta del servidor al paquet de nom de l'amfitrió és l'error 0x%02x\n" #: oncp.c:670 msgid "Invalid packet waiting for KMP 301\n" msgstr "Paquet no vàlid mentre s'està esperant a KMP 301\n" #: oncp.c:683 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "Esperat el missatge 301 KMP del servidor però s'ha obtingut %d\n" #: oncp.c:692 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "El missatge 301 de KMP del servidor és massa llarg (%d bytes)\n" #: oncp.c:698 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "S'ha obtingut el missatge 301 de KMP de mida %d\n" #: oncp.c:705 msgid "Failed to read continuation record length\n" msgstr "No s'ha pogut llegir la longitud del registre de continuació\n" #: oncp.c:711 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "El registre de %d bytes addicionals és massa llarg; es farà de %d\n" #: oncp.c:720 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "No s'ha pogut llegir el registre de continuació de longitud %d\n" #: oncp.c:726 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "Llegeix %d bytes addicionals del missatge 301 de KMP\n" #: oncp.c:767 msgid "Error negotiating ESP keys\n" msgstr "Error en negociar les claus ESP\n" #: oncp.c:776 msgid "oNCP negotiation request outgoing:\n" msgstr "Sortida de la sol·licitud de negociació oNCP:\n" #: oncp.c:829 msgid "new incoming" msgstr "entrada nova" #: oncp.c:830 msgid "new outgoing" msgstr "sortida nova" #: oncp.c:855 msgid "Read only 1 byte of oNCP length field\n" msgstr "Llegeix sols 1 byte del camp de longitud oNCP\n" #: oncp.c:864 msgid "Server terminated connection (session expired)\n" msgstr "La connexió del servidor ha acabat (sessió expirada)\n" #: oncp.c:868 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "La connexió del servidor ha acabat (motiu: %d)\n" #: oncp.c:874 msgid "Server sent zero-length oNCP record\n" msgstr "El servidor ha enviat un registre oNCP de longitud zero\n" #: oncp.c:969 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "S'està rebent un missatge %d d'entrada KMP de mida %d (rebut %d)\n" #: oncp.c:972 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" "S'està continuant al missatge %d KMP de procés amb mida %d (rebut %d)\n" #: oncp.c:991 msgid "Unrecognised data packet\n" msgstr "Paquet de dades no reconegudes\n" #: oncp.c:1053 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "Missatge KMP %d desconegut de mida %d:\n" #: oncp.c:1058 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr ".... + %d bytes més sense rebre\n" #: oncp.c:1073 msgid "Packet outgoing:\n" msgstr "Paquet de sortida:\n" #: oncp.c:1134 msgid "Sent ESP enable control packet\n" msgstr "S'ha enviat habilitació ESP de control de paquets\n" #: oncp.c:1268 msgid "Logout successful.\n" msgstr "Sortida de sessió amb èxit.\n" #: openconnect-internal.h:1119 openconnect-internal.h:1127 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "ERROR: %s() cridada amb UTF-8 no vàlida de l'argument «%s»\n" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "No es pot calcular la sobrecarrega DTLS per a %s\n" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "Error en generar claus aleatòries\n" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "Error en crear ASN.1 SSL_SESSION per a OpenSSL: %s\n" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "OpenSSL ha fallat en analitzar ASN.1 SSL_SESSION\n" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "La inicialització de la sessió DTLSv1 ha fallat\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "La mida de la identificador és massa gran\n" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "Crida de retorn PSK\n" #: openssl-dtls.c:365 msgid "Initialise DTLSv1 CTX failed\n" msgstr "La inicialització de CTX DTLSv1 ha fallat\n" #: openssl-dtls.c:378 msgid "Set DTLS CTX version failed\n" msgstr "L'establiment de la versió DTLS CTX ha fallat\n" #: openssl-dtls.c:395 msgid "Failed to generate DTLS key\n" msgstr "Error en generar la clau DTLS\n" #: openssl-dtls.c:413 msgid "Set DTLS cipher list failed\n" msgstr "La configuració de la llista de xifrat DTLS ha fallat\n" #: openssl-dtls.c:439 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "El xifrat DTLS «%s» no es troba\n" #: openssl-dtls.c:460 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "SSL_set_session() ha fallat amb un protocol antic amb versió 0x%x\n" "Esteu utilitzant una versió de OpenSSL més vella que 0.9.8m?\n" "Mireu http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Useu l'opció --no-dtls a la línia d'ordres per evitar aquest missatge\n" #: openssl-dtls.c:493 msgid "SSL_set_session() failed\n" msgstr "Ha fallat SSL_set_session() \n" #: openssl-dtls.c:566 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "" "Establerta la connexió DTLS (utilitzant OpenSSL). Entorn de xifrat %s.\n" #: openssl-dtls.c:603 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" "La vostra OpenSSL és més antiga que una que heu muntat abans, per això DTLS " "pot fallar!" #: openssl-dtls.c:654 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Això és degut a que el vostre OpenSSL està trencat\n" "Mireu http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: openssl-dtls.c:661 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "L'encaixada DTLS ha fallat: %d\n" #: openssl-esp.c:87 msgid "Failed to initialise ESP cipher:\n" msgstr "Error en inicialitzar el xifrat ESP:\n" #: openssl-esp.c:101 msgid "Failed to initialize ESP HMAC\n" msgstr "Error en inicialitzar HMAC ESP\n" #: openssl-esp.c:157 msgid "Failed to generate random keys for ESP:\n" msgstr "Error en generar claus aleatòries per a ESP:\n" #: openssl-esp.c:202 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "Error en configurar el context de desxifrat per al paquet ESP:\n" #: openssl-esp.c:210 msgid "Failed to decrypt ESP packet:\n" msgstr "Error en desxifrar el paquet ESP:\n" #: openssl-esp.c:241 msgid "Failed to encrypt ESP packet:\n" msgstr "Error en xifrar el paquet ESP:\n" #: openssl-pkcs11.c:43 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "Error en establir el context PKCS#11 libp11:\n" #: openssl-pkcs11.c:49 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "Error en carregar el mòdul que proporciona PKCS#11 (%s):\n" #: openssl-pkcs11.c:269 msgid "PIN locked\n" msgstr "PIN bloquejat\n" #: openssl-pkcs11.c:272 msgid "PIN expired\n" msgstr "PIN caducat\n" #: openssl-pkcs11.c:275 msgid "Another user already logged in\n" msgstr "Un altre usuari està realment connectat\n" #: openssl-pkcs11.c:279 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "Error desconegut al registrar-se al testimoni PKCS#11\n" #: openssl-pkcs11.c:286 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "Registrat en PKCS#11 ranura «%s»\n" #: openssl-pkcs11.c:300 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "Error en enumerar certificats de PKCS#11 ranura «%s»\n" #: openssl-pkcs11.c:306 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "S'han trobat %d certificats a la ranura «%s»\n" #: openssl-pkcs11.c:342 openssl-pkcs11.c:565 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "Error en analitzar PKCS#11 URI «%s»\n" #: openssl-pkcs11.c:349 openssl-pkcs11.c:575 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "Error en enumerar les ranures PKCS#11\n" #: openssl-pkcs11.c:383 openssl-pkcs11.c:617 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "S'està registrant en PKCS#11 ranura «%s»\n" #: openssl-pkcs11.c:393 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "Error en cercar el certificat PKCS#11 «%s»\n" #: openssl-pkcs11.c:401 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "Contingut del certificat X.509 no recuperat per libp11\n" #: openssl-pkcs11.c:412 openssl.c:713 msgid "Failed to install certificate in OpenSSL context\n" msgstr "Error en instal·lar el certificat al context OpenSSL\n" #: openssl-pkcs11.c:458 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "Error en enumerar les claus al PKCS#11 ranura «%s»\n" #: openssl-pkcs11.c:464 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "S'han trobat %d claus a la ranura «%s»\n" #: openssl-pkcs11.c:497 msgid "Certificate has no public key\n" msgstr "El certificat no té clau pública\n" #: openssl-pkcs11.c:503 openssl-pkcs11.c:526 msgid "Certificate does not match private key\n" msgstr "El certificat no coincideix amb la clau privada\n" #: openssl-pkcs11.c:506 msgid "Checking EC key matches cert\n" msgstr "S'està comprovant la coincidència de la clau EC amb el certificat\n" #: openssl-pkcs11.c:510 msgid "Failed to allocate signature buffer\n" msgstr "Error en assignar la memòria intermèdia de la signatura\n" #: openssl-pkcs11.c:520 msgid "Failed to sign dummy data to validate EC key\n" msgstr "Error en signar les dates simulades per validar la clau EC\n" #: openssl-pkcs11.c:638 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "Error en cercar la clau PKCS#11 «%s»\n" #: openssl-pkcs11.c:649 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "Error en instanciar la clau privada de PKCS#11\n" #: openssl-pkcs11.c:678 msgid "Add key from PKCS#11 failed\n" msgstr "L'afegit de la clau de PKCS#11 ha fallat\n" #: openssl-pkcs11.c:710 openssl-pkcs11.c:716 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "Aquesta versió d'OpenConnect ha sigut muntada sense suport PKCS#11\n" #: openssl.c:147 msgid "Failed to write to SSL socket\n" msgstr "Error en escriure al sòcol SSL\n" #: openssl.c:197 openssl.c:263 msgid "Failed to read from SSL socket\n" msgstr "Error en llegir del sòcol SSL\n" #: openssl.c:292 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" "Error %d de lectura SSL (el servidor probablement ha tancat la connexió); " "s'està tornant a connectar\n" #: openssl.c:317 #, c-format msgid "SSL_write failed: %d\n" msgstr "SSL_write ha fallat: %d\n" #: openssl.c:389 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "Tipus %d de sol·licitud UI SSL no gestionat\n" #: openssl.c:465 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "Contrasenya PEM massa gran (%d >= %d)\n" #: openssl.c:498 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Extra cert de %s: «%s»\n" #: openssl.c:548 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "L'anàlisi PKCS#12 ha fallat (mireu amunt els errors)\n" #: openssl.c:563 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS#12 no conté cap certificat!\n" #: openssl.c:572 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS#12 no conté cap clau privada!\n" #: openssl.c:577 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:600 msgid "Can't load TPM engine.\n" msgstr "No es pot carregar l'enginy TPM.\n" #: openssl.c:606 msgid "Failed to init TPM engine\n" msgstr "Error en iniciar l'enginy TPM\n" #: openssl.c:616 msgid "Failed to set TPM SRK password\n" msgstr "Error en configurar la contrasenya SRK TPM\n" #: openssl.c:630 msgid "Failed to load TPM private key\n" msgstr "Error en carregar la clau privada TPM\n" #: openssl.c:636 msgid "Add key from TPM failed\n" msgstr "L'afegit de la clau de TPM a fallat\n" #: openssl.c:687 openssl.c:835 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Error en obrir el fitxer certificat %s: %s\n" #: openssl.c:697 msgid "Loading certificate failed\n" msgstr "La carrega del certificat ha fallat\n" #: openssl.c:735 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" "Error en processar tots els certificats suportats. S'està intentant de tota " "manera...\n" #: openssl.c:748 msgid "PEM file" msgstr "Fitxer PEM" #: openssl.c:777 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Error en crear BIO per a l'element «%s» del magatzem de claus\n" #: openssl.c:802 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "La carrega de la clau privada ha fallat (contrasenya dolenta? )\n" #: openssl.c:808 msgid "Loading private key failed (see above errors)\n" msgstr "La carrega de la clau privada ha fallat (mireu amunt els errors)\n" #: openssl.c:858 msgid "Failed to load X509 certificate from keystore\n" msgstr "Error en carregar el certificat X509 del magatzem de claus\n" #: openssl.c:864 msgid "Failed to use X509 certificate from keystore\n" msgstr "Error en utilitzar el certificat X509 del magatzem de claus\n" #: openssl.c:896 msgid "Failed to use private key from keystore\n" msgstr "Error en utilitzar la clau privativa del magatzem de claus\n" #: openssl.c:912 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Error en obrir el fitxer %s de la clau privativa: %s\n" #: openssl.c:936 openssl.c:951 openssl.c:972 openssl.c:1038 msgid "Loading private key failed\n" msgstr "La carrega de la clau privativa ha fallat\n" #: openssl.c:1032 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "No s'ha pogut convertir PKCS#8 a OpenSSL EVP_PKEY\n" #: openssl.c:1049 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Errada en identificar el tipus de clau privativa en «%s»\n" #: openssl.c:1203 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Coincideix el nom alternatiu DNS «%s»\n" #: openssl.c:1210 #, c-format msgid "No match for altname '%s'\n" msgstr "No hi ha concordances per al nom alternatiu «%s»\n" #: openssl.c:1224 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" "El certificat té un nom alternatiu GEN_IPADD amb la longitud amb errors %d\n" #: openssl.c:1235 openssl.c:1381 #, c-format msgid "Matched %s address '%s'\n" msgstr "Coincideix %s amb l'adreça «%s»\n" #: openssl.c:1242 #, c-format msgid "No match for %s address '%s'\n" msgstr "No hi ha concordances per l'adreça %s amb «%s»\n" #: openssl.c:1284 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "URI «%s» no té un camí buit; s'està ignorant\n" #: openssl.c:1289 #, c-format msgid "Matched URI '%s'\n" msgstr "Coincideix URI «%s»\n" #: openssl.c:1300 #, c-format msgid "No match for URI '%s'\n" msgstr "No hi ha concordances per URI «%s»\n" #: openssl.c:1315 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "No hi ha nom alternatiu al certificat parell trobat «%s»\n" #: openssl.c:1323 msgid "No subject name in peer cert!\n" msgstr "No hi ha nom de l'assumpte al certificat del parell!\n" #: openssl.c:1343 msgid "Failed to parse subject name in peer cert\n" msgstr "Error en analitzar el nom de l'assumpte al certificat del parell\n" #: openssl.c:1350 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "L'assumpte del certificat del parell no coincideix ('%s' != '%s')\n" #: openssl.c:1355 openssl.c:1389 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "El nom de l'assumpte del certificat del parell coincideix «%s»\n" #: openssl.c:1451 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Extra cert del certificat del fitxer: «%s»\n" #: openssl.c:1589 msgid "Error in client cert notAfter field\n" msgstr "Error al camp notAfter del certificat del client\n" #: openssl.c:1602 msgid "" msgstr "" #: openssl.c:1655 msgid "Create TLSv1 CTX failed\n" msgstr "Ha fallat la creació de TLSv1 CTX\n" #: openssl.c:1674 msgid "SSL certificate and key do not match\n" msgstr "El certificat SSL i la clau no coincideixen\n" #: openssl.c:1719 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Error en llegir certificats del fitxer CA «%s»\n" #: openssl.c:1752 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Error en obrir el fitxer CA «%s»\n" #: openssl.c:1812 msgid "SSL connection failure\n" msgstr "La connexió SSL ha fallat\n" #: openssl.c:1973 msgid "Failed to calculate OATH HMAC\n" msgstr "Error en calcular HMAC OATH\n" #: script.c:130 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Descarta la divisió dolenta inclosa: «%s»\n" #: script.c:134 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Descarta la divisió dolenta exclosa: «%s»\n" #: script.c:507 script.c:555 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Error en engendrar el script «%s» per %s: %s\n" #: script.c:562 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "El script «%s» ha acabat de forma anòmala (%x)\n" #: script.c:570 #, c-format msgid "Script '%s' returned error %d\n" msgstr "El script «%s» ha retornat l'error %d\n" #: ssl.c:108 msgid "Socket connect cancelled\n" msgstr "S'ha cancel·lat la connexió del sòcol\n" #: ssl.c:217 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "No s'ha pogut tornar a connectar amb el servidor intermediari %s: %s\n" #: ssl.c:221 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "No s'ha pogut tornar a connectar amb l'amfitrió %s: %s\n" #: ssl.c:289 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Servidor intermediari de libproxy: %s://%s:%d/\n" #: ssl.c:317 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "getaddrinfo ha fallat per a l'amfitrió «%s»: %s\n" #: ssl.c:326 ssl.c:451 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" "S'està tornant a connectar amb el servidor DynDNS utilitzant l'adreça IP " "amagada prèviament\n" #: ssl.c:341 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "S'està intentant connectar amb el servidor intermediari %s%s%s:%s\n" #: ssl.c:342 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "S'està intentant connectar amb el servidor %s%s%s:%s\n" #: ssl.c:362 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "Connectat a %s%s%s:%s\n" #: ssl.c:374 msgid "Failed to allocate sockaddr storage\n" msgstr "Error en assignar el magatzem sockaddr\n" #: ssl.c:416 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "No s'ha pogut connectar a %s%s%s:%s: %s\n" #: ssl.c:434 msgid "Forgetting non-functional previous peer address\n" msgstr "S'estan oblidant les adreces parell prèvies no funcionals\n" #: ssl.c:446 #, c-format msgid "Failed to connect to host %s\n" msgstr "Error en connectar amb l'amfitrió %s\n" #: ssl.c:465 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "S'està tornant a connectar amb el servidor intermediari %s\n" #: ssl.c:536 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:564 msgid "Could not obtain file system ID for passphrase\n" msgstr "" "No es pot obtindre la identificació del sistema de fitxers per la " "contrasenya\n" #: ssl.c:575 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "Error en obrir el fitxer de clau privada «%s»: %s\n" #: ssl.c:603 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:694 msgid "No error" msgstr "Sense errors" #: ssl.c:695 msgid "Keystore locked" msgstr "Magatzem de claus bloquejat" #: ssl.c:696 msgid "Keystore uninitialized" msgstr "Magatzem de claus no inicialitzat" #: ssl.c:697 msgid "System error" msgstr "Error de sistema" #: ssl.c:698 msgid "Protocol error" msgstr "Error de protocol" #: ssl.c:699 msgid "Permission denied" msgstr "Permís denegat" #: ssl.c:700 msgid "Key not found" msgstr "Clau no trobada" #: ssl.c:701 msgid "Value corrupted" msgstr "Valor corrupte" #: ssl.c:702 msgid "Undefined action" msgstr "Acció no definida" #: ssl.c:706 msgid "Wrong password" msgstr "Contrasenya dolenta" #: ssl.c:707 msgid "Unknown error" msgstr "Error desconegut" #: ssl.c:896 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "S'ha utilitzat openconnect_fopen_utf8() amb un medi no suportat «%s»\n" #: ssl.c:931 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" "Família %d de protocol desconegut. No es pot crear l'adreça del servidor " "UDP\n" #: ssl.c:950 msgid "Open UDP socket" msgstr "Sòcol UDP obert" #: ssl.c:981 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "Família %d de protocol desconegut. No es pot usar el transport UDP\n" #: ssl.c:989 msgid "Bind UDP socket" msgstr "Sòcol UDP d'enllaç" #: ssl.c:996 msgid "Connect UDP socket\n" msgstr "Connecta el sòcol UDP\n" #: ssl.c:1034 msgid "Cookie is no longer valid, ending session\n" msgstr "La galeta no és ja vàlida, s'està acabant la sessió\n" #: ssl.c:1038 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "dormint %ds, temps restant %ds\n" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "Testimoni SSPI massa gran (%ld bytes)\n" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "S'està enviant el testimoni SSPI de %lu bytes\n" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" "Errada per enviar el testimoni d'autenticació SSPI al servidor intermediari: " "%s\n" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" "Errada per rebre el testimoni d'autenticació SSPI del servidor intermediari: " "%s\n" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "El servidor SOCKS ha informat de fallades de context SSPI\n" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "Resposta d'estat SSPI desconeguda (0x%02x) del servidor SOCKS\n" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "S'ha rebut testimoni SSPI de %lu bytes: %02x %02x %02x %02x\n" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "QueryContextAttributes() ha fallat: %lx\n" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "EncryptMessage() ha fallat: %lx\n" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "El EncryptMessage() ha resultat massa gran (%lu + %lu + %lu)\n" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "S'està enviant la negociació de protecció SSPI de %u bytes\n" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" "Error en enviar la resposta de protecció SSPI al servidor intermediari: %s\n" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" "Error en rebre la resposta de protecció SSPI del servidor intermediari: %s\n" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" "S'ha rebut la resposta de protecció SSPI de %d bytes: %02x %02x %02x %02x\n" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "DecryptMessage ha fallat: %lx\n" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" "La resposta de protecció SSPI del servidor intermediari és no vàlida (%lu " "bytes)\n" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "Entreu les credencials per desbloquejar el testimoni del programari." #: stoken.c:82 msgid "Device ID:" msgstr "Identificació del dispositiu: " #: stoken.c:89 msgid "Password:" msgstr "Contrasenya:" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "L'usuari ha omès el testimoni tou.\n" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "Es requereixen tots els camps; torneu-ho a intentar\n" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "Fallada general en libstoken.\n" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "" "Identificació o contrasenya de dispositiu no correctes; torneu-ho a " "intentar.\n" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "La inicialització del testimoni tou ha sigut un èxit.\n" #: stoken.c:185 msgid "Enter software token PIN." msgstr "Entreu el PIN del testimoni de programari." #: stoken.c:189 msgid "PIN:" msgstr "PIN:" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "Format de PIN no vàlid; torneu a intentar.\n" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "S'està generant el codi de testimoni RSA\n" #: tun-win32.c:76 msgid "Error accessing registry key for network adapters\n" msgstr "Error en accedir a la clau de registre per als adaptadors de xarxa\n" #: tun-win32.c:139 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "S'està ignorant la interfície TAP no concordant «%s»\n" #: tun-win32.c:154 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" "No s'han trobat adaptadors TAP per Windows. Està el controlador instal·lat?\n" #: tun-win32.c:186 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" "GetAdapterIndex() ha fallat: %s\n" "Alternativament, s'utilitzarà GetAdaptersInfo()\n" #: tun-win32.c:200 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "GetAdaptersInfo() ha fallat: %s\n" #: tun-win32.c:231 #, c-format msgid "Failed to open %s\n" msgstr "Error en obrir %s\n" #: tun-win32.c:236 #, c-format msgid "Opened tun device %s\n" msgstr "S'ha obert el dispositiu controlador de xarxa %s\n" #: tun-win32.c:244 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Error en obtindre la versió del controlador TAP: %s\n" #: tun-win32.c:250 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Error: El controlador TAP de Windows v9.9 o superior és requerit (s'ha " "trobat %ld.%ld)\n" #: tun-win32.c:271 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Error en configurar l'adreça IP TAP: %s\n" #: tun-win32.c:283 tun-win32.c:406 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Error en configurar l'estat del medi TAP: %s\n" #: tun-win32.c:316 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "El dispositiu TAP ha avortat la connectivitat. S'està desconnectant.\n" #: tun-win32.c:321 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Error en llegir del dispositiu TAP: %s\n" #: tun-win32.c:335 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Error en completar la lectura des del dispositiu TAP: %s\n" #: tun-win32.c:358 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "Escrits %ld bytes al controlador de xarxa\n" #: tun-win32.c:368 msgid "Waiting for tun write...\n" msgstr "S'està esperant l'escriptura del controlador de xarxa...\n" #: tun-win32.c:371 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "Escrits %ld bytes al controlador de xarxa després d'esperar\n" #: tun-win32.c:378 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Error en escriure al dispositiu TAP: %s\n" #: tun-win32.c:423 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "L'engendrat de scripts de túnel no està encara suportat en Windows\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "No es pot obrir /dev/tun per fer canonades" #: tun.c:92 msgid "Can't push IP" msgstr "No es pot empènyer IP" #: tun.c:102 msgid "Can't set ifname" msgstr "No es pot configurar «ifname»" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "No es pot obrir %s: %s" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "No es pot fer la canonada %s a IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "obre /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Error per crear un controlador de xarxa nou" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" "Error en posar el descriptor del fitxer del controlador de xarxa al mode " "descarrega-missatge" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "el dispositiu tun no té suport a aquesta plataforma\n" #: tun.c:205 msgid "open net" msgstr "obre la xarxa" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Error en obrir el dispositiu controlador de xarxa: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" "Error en vincular el dispositiu controlador de xarxa local (TUNSETIFF): %s\n" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" "Per configurar la xarxa local, openconnect cal que sigui executat com a " "root\n" "Mireu http://www.infradead.org/openconnect/nonroot.html per més informació\n" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" "Nom d'interfície no vàlida «%s»; hauria de coincidir 'utun%%d' o 'tun%%d'\n" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "Error en obrir el sòcol SYSPROTO_CONTROL: %s\n" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "Error en consultar la identificació de control «utun»: %s\n" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "Error en assignar el nom al dispositiu «utun»\n" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "Error en connectar la unitat «utun»: %s\n" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Nom d'interfície no vàlida «%s»; hauria de concordar «tun%%d»\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "No es pot obrir «%s»: %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:479 #, c-format msgid "socketpair failed: %s\n" msgstr "El parell sòcol ha fallat: %s\n" #: tun.c:484 #, c-format msgid "fork failed: %s\n" msgstr "La bifurcació ha fallat: %s\n" #: tun.c:488 msgid "setpgid" msgstr "setpgid" #: tun.c:493 msgid "execl" msgstr "execl" #: tun.c:498 msgid "(script)" msgstr "(script)" #: tun.c:566 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Error en escriure al paquet d'entrada: %s\n" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "Error en obrir %s: %s\n" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "Errada a fstat() %s: %s\n" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Error en assignar %d bytes per %s\n" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "Error en llegir %s: %s\n" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "S'està tractant l'amfitrió «%s» com un nom d'amfitrió en brut\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Error al fitxer SHA1 que existeix\n" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "SHA1 del fitxer de configuració XML: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Error en analitzar el fitxer de configuració XML %s\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "L'amfitrió \"%s\" té l'adreça \"%s\"\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "L'amfitrió «%s» té el grup d'usuari «%s»\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "L'amfitrió «%s» no està llistat al fitxer de configuració; s'està com un nom " "d'amfitrió en brut\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "Error en enviar «%s» a la miniaplicació ykneo-oath: %s\n" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "Resposta curta no vàlida a «%s» de la miniaplicació ykneo-oath\n" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "Error en la resposta a «%s»: %04x\n" #: yubikey.c:174 msgid "select applet command" msgstr "selecciona ordre de la miniaplicació" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "Resposta no reconeguda de la miniaplicació ykneo-oath\n" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "S'ha trobat miniaplicació ykneo-oath v%d.%d.%d.\n" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "PIN requerit per la miniaplicació OATH Yubikey" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "PIN Yubikey:" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "Error en calcular la resposta de desbloqueig Yubikey\n" #: yubikey.c:274 msgid "unlock command" msgstr "ordre de desbloqueig" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "S'està intentant la cadena truncada PBKBF2 variant del PIN Yubikey\n" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "Error en establir el context PC/SC: %s\n" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "Establert el context PC/SC\n" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "Error en consultar la llista de lectura: %s\n" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "Error en connectar al lector PC/SC «%s»: %s\n" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "Connectat el lector PC/SC «%s»\n" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "Error en obtenir accés exclusiu al lector «%s»: %s\n" #: yubikey.c:412 msgid "list keys command" msgstr "llista d'ordres clau" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "S'ha trobat %s/%s clau «%s» en «%s»\n" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" "Testimoni «%s» no trobat en Yubikey «%s». S'està cercant una altra " "Yubikey...\n" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" "El servidor està rebutjant el testimoni Yubikey, s'està canviant a l'entrada " "manual\n" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "S'està generant el codi testimoni Yubikey\n" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "Error en obtindre l'accés exclusiu a Yubikey: %s\n" #: yubikey.c:619 msgid "calculate command" msgstr "ordre calcula" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" "Resposta no reconeguda de Yubikey mentre s'està generant el codi testimoni\n" openconnect-8.05/po/zh_CN.po0000664000076400007640000025607613470043037017535 0ustar00dwoodhoudwoodhou00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: # , 2011. # Wylmer Wang , 2011. msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2019-05-18 10:44-0700\n" "PO-Revision-Date: 2012-11-15 08:31+0000\n" "Last-Translator: David Woodhouse \n" "Language-Team: Chinese (China) (http://www.transifex.com/projects/p/meego/" "language/zh_CN/)\n" "Language: zh_CN\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=1; plural=0;\n" #: auth-globalprotect.c:108 #, c-format msgid "" "SAML login is required via %s to this URL:\n" "\t%s" msgstr "" #: auth-globalprotect.c:110 msgid "Please enter your username and password" msgstr "" #: auth-globalprotect.c:119 msgid "Username" msgstr "" #: auth-globalprotect.c:134 msgid "Password" msgstr "" #: auth-globalprotect.c:181 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:260 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:266 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:272 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:315 msgid "Please select GlobalProtect gateway." msgstr "" #: auth-globalprotect.c:325 msgid "GATEWAY:" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:379 #, c-format msgid "%d gateway servers available:\n" msgstr "" #: auth-globalprotect.c:400 #, c-format msgid " %s (%s)\n" msgstr "" #: auth-globalprotect.c:484 auth-juniper.c:730 auth.c:669 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth-globalprotect.c:584 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" #: auth-globalprotect.c:636 oncp.c:1266 msgid "Logout failed.\n" msgstr "" #: auth-globalprotect.c:638 msgid "Logout successful\n" msgstr "" #: auth-juniper.c:142 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:153 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:163 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:236 auth.c:408 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "无法处理表单,方法=“%s”,操作=“%s”\n" #: auth-juniper.c:267 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "" #: auth-juniper.c:337 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:359 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:397 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:411 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:418 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:425 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:432 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:439 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:445 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:452 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:481 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:650 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:667 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:675 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:713 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:716 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth.c:96 msgid "Form choice has no name\n" msgstr "表单选择没有名字\n" #: auth.c:181 #, c-format msgid "name %s not input\n" msgstr "名称 %s 不是输入控件\n" #: auth.c:188 msgid "No input type in form\n" msgstr "表单中没有输入类型\n" #: auth.c:200 msgid "No input name in form\n" msgstr "表单中没有输入名称\n" #: auth.c:230 #, c-format msgid "Unknown input type %s in form\n" msgstr "表单中没有输入类型 %s\n" #: auth.c:540 gpst.c:214 msgid "Empty response from server\n" msgstr "" #: auth.c:551 gpst.c:289 msgid "Failed to parse server response\n" msgstr "解析服务器响应失败\n" #: auth.c:553 gpst.c:291 #, c-format msgid "Response was:%s\n" msgstr "响应为:%s\n" #: auth.c:575 msgid "Received when not expected.\n" msgstr "" #: auth.c:603 msgid "XML response has no \"auth\" node\n" msgstr "" #: auth.c:636 msgid "Asked for password but '--no-passwd' set\n" msgstr "请求密码,但设置了“--no-password”\n" #: auth.c:925 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:931 cstp.c:335 http.c:916 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "打开到 %s 的 HTTPS 连接失败\n" #: auth.c:952 msgid "Failed to send GET request for new config\n" msgstr "" #: auth.c:976 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" #: auth.c:981 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:992 auth.c:1044 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" #: auth.c:1003 mainloop.c:144 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "" #: auth.c:1010 mainloop.c:151 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "" #: auth.c:1017 mainloop.c:158 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "" #: auth.c:1024 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "" #: auth.c:1031 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "" #: auth.c:1053 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:1060 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" #: auth.c:1067 msgid "Trying to run Linux CSD trojan script.\n" msgstr "" #: auth.c:1094 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1102 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "" #: auth.c:1111 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "" #: auth.c:1141 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" #: auth.c:1189 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "" #: auth.c:1221 msgid "Unknown response from server\n" msgstr "未知的服务器响应\n" #: auth.c:1342 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1346 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" #: auth.c:1362 msgid "XML POST enabled\n" msgstr "" #: auth.c:1405 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "" #: compat.c:207 #, c-format msgid "(error 0x%lx)" msgstr "" #: compat.c:210 msgid "(Error while describing error!)" msgstr "" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:112 gpst.c:341 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "" #: cstp.c:134 gpst.c:360 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "" #: cstp.c:281 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:312 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:328 http.c:384 msgid "Error fetching HTTPS response\n" msgstr "获取 HTTPS 响应出错\n" #: cstp.c:355 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "VPN 服务不可用,原因:%s\n" #: cstp.c:360 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "收到不正确的 HTTP CONNECT 响应:%s\n" #: cstp.c:367 #, c-format msgid "Got CONNECT response: %s\n" msgstr "收到CONNECT响应:%s\n" #: cstp.c:396 cstp.c:404 msgid "No memory for options\n" msgstr "选项的内存不足\n" #: cstp.c:413 http.c:444 msgid "" msgstr "" #: cstp.c:433 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "" #: cstp.c:450 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "" #: cstp.c:468 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:510 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "未知的 CSTP-Content-Encoding %s\n" #: cstp.c:585 msgid "No MTU received. Aborting\n" msgstr "" #: cstp.c:593 gpst.c:641 msgid "No IP address received. Aborting\n" msgstr "未收到 IP 地址。中止\n" #: cstp.c:599 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: cstp.c:605 gpst.c:648 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "重连给出了不同的旧 IP 地址(%s != %s)\n" #: cstp.c:614 gpst.c:657 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "重连给出了不同的旧 IP 网络掩码(%s != %s)\n" #: cstp.c:622 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "重连给出了不同的旧 IPv6 地址(%s != %s)\n" #: cstp.c:630 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "重连给出了不同的旧 IPv6 网络掩码(%s != %s)\n" #: cstp.c:638 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP 已连接。DPD %d, 保持连接 %d\n" #: cstp.c:640 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "" #: cstp.c:702 msgid "Compression setup failed\n" msgstr "压缩设置失败\n" #: cstp.c:719 msgid "Allocation of deflate buffer failed\n" msgstr "重新分配缩小的缓存失败\n" #: cstp.c:781 msgid "inflate failed\n" msgstr "缩减失败\n" #: cstp.c:804 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:817 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:824 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:829 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:849 #, c-format msgid "deflate failed %d\n" msgstr "" #: cstp.c:922 dtls.c:281 dtls.c:740 esp.c:129 gpst.c:1042 mainloop.c:69 #: oncp.c:914 msgid "Allocation failed\n" msgstr "" #: cstp.c:933 gpst.c:1055 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: cstp.c:946 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "包长度不对。SSL_read 返回 %d 但包长是\n" #: cstp.c:960 msgid "Got CSTP DPD request\n" msgstr "收到 CSTP DPD 请求\n" #: cstp.c:966 msgid "Got CSTP DPD response\n" msgstr "收到 CSTP DPD 响应\n" #: cstp.c:971 msgid "Got CSTP Keepalive\n" msgstr "收到 CSTP 保持在线信号\n" #: cstp.c:976 oncp.c:1003 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "收到未压缩的数据包,长度 %d 字节\n" #: cstp.c:993 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "收到服务器断开:%02x '%s'\n" #: cstp.c:996 msgid "Received server disconnect\n" msgstr "" #: cstp.c:1004 msgid "Compressed packet received in !deflate mode\n" msgstr "在非 deflate 模式下收到了压缩包\n" #: cstp.c:1013 msgid "received server terminate packet\n" msgstr "收到服务器终止包\n" #: cstp.c:1020 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "未知的包 %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1063 gpst.c:1142 oncp.c:1121 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL 写入的字节过少!请求 %d,发送了 %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1091 oncp.c:1155 msgid "CSTP rekey due\n" msgstr "" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1098 oncp.c:1162 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: cstp.c:1109 oncp.c:1173 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "" #: cstp.c:1113 gpst.c:1166 oncp.c:1091 oncp.c:1177 msgid "Reconnect failed\n" msgstr "重连失败\n" #: cstp.c:1129 oncp.c:1193 msgid "Send CSTP DPD\n" msgstr "发送 CSTP DPD\n" #: cstp.c:1141 oncp.c:1204 msgid "Send CSTP Keepalive\n" msgstr "发送 CSTP 保持在线信号\n" #: cstp.c:1166 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1177 oncp.c:1238 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:1216 #, c-format msgid "Send BYE packet: %s\n" msgstr "" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:113 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:119 msgid "No DTLS address\n" msgstr "" #. We probably didn't offer it any ciphers it liked #: dtls.c:126 msgid "Server offered no DTLS cipher option\n" msgstr "" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:133 msgid "No DTLS when connected via proxy\n" msgstr "" #: dtls.c:200 #, c-format msgid "DTLS option %s : %s\n" msgstr "DTLS 选项 %s : %s\n" #: dtls.c:239 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:265 msgid "Attempt new DTLS connection\n" msgstr "尝试新的 DTLS 连接\n" #: dtls.c:292 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "" #: dtls.c:306 msgid "Got DTLS DPD request\n" msgstr "收到 DTLS DPD 请求\n" #: dtls.c:312 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "" #: dtls.c:316 msgid "Got DTLS DPD response\n" msgstr "收到 DTLS DPD 响应\n" #: dtls.c:320 msgid "Got DTLS Keepalive\n" msgstr "" #: dtls.c:326 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:334 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "" #: dtls.c:356 msgid "DTLS rekey due\n" msgstr "" #: dtls.c:363 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: dtls.c:372 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "" #: dtls.c:378 msgid "Send DTLS DPD\n" msgstr "发送 DTLS DPD\n" #: dtls.c:383 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "" #: dtls.c:396 msgid "Send DTLS Keepalive\n" msgstr "" #: dtls.c:401 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" #: dtls.c:432 tun.c:541 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "" #: dtls.c:439 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "" #: dtls.c:443 msgid "UDP setsockopt" msgstr "" #: dtls.c:474 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "" #: dtls.c:488 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "" #: dtls.c:503 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "" #: dtls.c:531 #, c-format msgid "Initiating IPv4 MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:551 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" #: dtls.c:555 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" #: dtls.c:564 #, c-format msgid "Sending MTU DPD probe (%u bytes, min=%u, max=%u)\n" msgstr "" #: dtls.c:568 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "" #: dtls.c:582 dtls.c:690 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" #: dtls.c:594 #, c-format msgid "Timeout while waiting for DPD response; trying %d\n" msgstr "" #: dtls.c:601 dtls.c:682 msgid "Timeout while waiting for DPD response; resending probe.\n" msgstr "" #: dtls.c:608 dtls.c:709 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "" #: dtls.c:613 #, c-format msgid "Received MTU DPD probe (%u bytes of %u)\n" msgstr "" #: dtls.c:651 msgid "Initiating IPv6 MTU detection\n" msgstr "" #: dtls.c:666 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:670 #, c-format msgid "Failed to send DPD request (%d)\n" msgstr "" #: dtls.c:695 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:759 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "" #: dtls.c:762 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" #: esp.c:63 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:66 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:69 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:87 msgid "incoming" msgstr "" #: esp.c:88 msgid "outgoing" msgstr "" #: esp.c:90 esp.c:113 msgid "Send ESP probes\n" msgstr "" #: esp.c:138 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:155 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:161 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:174 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:181 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:193 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:202 msgid "ESP session established with server\n" msgstr "" #: esp.c:213 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:219 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:225 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:239 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:243 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:251 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:258 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:278 #, c-format msgid "Failed to encrypt ESP packet: %d\n" msgstr "" #: esp.c:294 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:301 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:307 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-dtls.c:190 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "" #: gnutls-dtls.c:198 msgid "Failed to generate DTLS priority string\n" msgstr "" #: gnutls-dtls.c:207 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "" #: gnutls-dtls.c:216 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "" #: gnutls-dtls.c:240 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "" #: gnutls-dtls.c:253 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:267 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:275 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "" #: gnutls-dtls.c:309 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "" #: gnutls-dtls.c:324 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "" #: gnutls-dtls.c:345 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "" #: gnutls-dtls.c:373 openssl-dtls.c:534 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "" #: gnutls-dtls.c:382 openssl-dtls.c:545 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "" #: gnutls-dtls.c:392 openssl-dtls.c:554 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" #: gnutls-dtls.c:405 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "" #: gnutls-dtls.c:416 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: gnutls-dtls.c:422 openssl-dtls.c:572 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "" #: gnutls-dtls.c:437 openssl-dtls.c:653 openssl-dtls.c:657 msgid "DTLS handshake timed out\n" msgstr "DTLS 握手超时\n" #: gnutls-dtls.c:440 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "" #: gnutls-dtls.c:444 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:121 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:132 msgid "Failed to generate ESP IV\n" msgstr "" #: gnutls-esp.c:161 gnutls-esp.c:217 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:168 openssl-esp.c:192 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:180 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:209 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:95 openssl.c:154 msgid "SSL write cancelled\n" msgstr "" #: gnutls.c:99 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "" #: gnutls.c:145 gnutls.c:237 openssl.c:204 openssl.c:271 msgid "SSL read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:158 msgid "SSL socket closed uncleanly\n" msgstr "" #: gnutls.c:168 gnutls.c:246 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "" #: gnutls.c:266 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "" #: gnutls.c:302 #, c-format msgid "SSL send failed: %s\n" msgstr "" #: gnutls.c:315 msgid "Could not extract expiration time of certificate\n" msgstr "" #: gnutls.c:320 openssl.c:1592 msgid "Client certificate has expired at" msgstr "" #: gnutls.c:322 openssl.c:1597 msgid "Client certificate expires soon at" msgstr "" #: gnutls.c:371 openssl.c:771 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" #: gnutls.c:384 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "" #: gnutls.c:391 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" #: gnutls.c:400 msgid "Failed to allocate certificate buffer\n" msgstr "" #: gnutls.c:408 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "" #: gnutls.c:439 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "" #: gnutls.c:462 openssl.c:534 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "" #: gnutls.c:466 openssl.c:537 msgid "Enter PKCS#12 pass phrase:" msgstr "" #: gnutls.c:489 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "" #: gnutls.c:501 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:584 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "" #: gnutls.c:594 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "" #: gnutls.c:628 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "" #: gnutls.c:638 #, c-format msgid "MD5 hash error: %s\n" msgstr "" #: gnutls.c:696 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" #: gnutls.c:703 msgid "Cannot determine PEM encryption type\n" msgstr "" #: gnutls.c:716 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "" #: gnutls.c:741 gnutls.c:754 msgid "Invalid salt in encrypted PEM file\n" msgstr "" #: gnutls.c:778 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "" #: gnutls.c:786 msgid "Encrypted PEM file too short\n" msgstr "" #: gnutls.c:814 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" #: gnutls.c:825 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "" #: gnutls.c:877 msgid "Decrypting PEM key failed\n" msgstr "" #: gnutls.c:881 gnutls.c:1405 openssl.c:458 msgid "Enter PEM pass phrase:" msgstr "" #: gnutls.c:942 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:949 msgid "This binary built without PKCS#11 support\n" msgstr "" #: gnutls.c:993 openssl-pkcs11.c:407 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "" #: gnutls.c:994 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1012 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "" #: gnutls.c:1013 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1024 openssl.c:827 #, c-format msgid "Using certificate file %s\n" msgstr "" #: gnutls.c:1052 msgid "PKCS#11 file contained no certificate\n" msgstr "" #: gnutls.c:1078 msgid "No certificate found in file" msgstr "" #: gnutls.c:1083 #, c-format msgid "Loading certificate failed: %s\n" msgstr "" #: gnutls.c:1098 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1103 gnutls.c:1271 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "" #: gnutls.c:1114 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1125 gnutls.c:1219 gnutls.c:1247 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1130 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "" #: gnutls.c:1259 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "" #: gnutls.c:1266 openssl-pkcs11.c:644 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "" #: gnutls.c:1281 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" #: gnutls.c:1299 #, c-format msgid "Using private key file %s\n" msgstr "" #: gnutls.c:1310 openssl.c:651 msgid "This version of OpenConnect was built without TPM support\n" msgstr "" #: gnutls.c:1326 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1347 msgid "Failed to interpret PEM file\n" msgstr "" #: gnutls.c:1366 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "" #: gnutls.c:1379 gnutls.c:1393 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "" #: gnutls.c:1401 gnutls.c:1434 openssl.c:1002 openssl.c:1012 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "" #: gnutls.c:1426 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "" #: gnutls.c:1438 openssl.c:1008 msgid "Enter PKCS#8 pass phrase:" msgstr "" #: gnutls.c:1454 #, c-format msgid "Failed to get key ID: %s\n" msgstr "" #: gnutls.c:1499 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "" #: gnutls.c:1514 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "" #: gnutls.c:1539 msgid "No SSL certificate found to match private key\n" msgstr "" #: gnutls.c:1551 openssl.c:560 openssl.c:709 #, c-format msgid "Using client certificate '%s'\n" msgstr "" #: gnutls.c:1558 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "" #: gnutls.c:1579 gnutls.c:1589 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1625 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" #: gnutls.c:1648 msgid "Got no issuer from PKCS#11\n" msgstr "" #: gnutls.c:1653 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "" #: gnutls.c:1679 msgid "Failed to allocate memory for supporting certificates\n" msgstr "" #: gnutls.c:1702 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "" #: gnutls.c:1724 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1748 #, c-format msgid "Setting certificate failed: %s\n" msgstr "" #: gnutls.c:1941 msgid "Server presented no certificate\n" msgstr "" #: gnutls.c:1949 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" #: gnutls.c:1954 openssl.c:1515 msgid "Server presented different cert on rehandshake\n" msgstr "" #: gnutls.c:1959 openssl.c:1518 msgid "Server presented identical cert on rehandshake\n" msgstr "" #: gnutls.c:1965 msgid "Error initialising X509 cert structure\n" msgstr "" #: gnutls.c:1971 msgid "Error importing server's cert\n" msgstr "" #: gnutls.c:1980 main.c:1794 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:1985 msgid "Error checking server cert status\n" msgstr "" #: gnutls.c:1990 msgid "certificate revoked" msgstr "" #: gnutls.c:1992 msgid "signer not found" msgstr "" #: gnutls.c:1994 msgid "signer not a CA certificate" msgstr "" #: gnutls.c:1996 msgid "insecure algorithm" msgstr "" #: gnutls.c:1998 msgid "certificate not yet activated" msgstr "" #: gnutls.c:2000 msgid "certificate expired" msgstr "" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2005 msgid "signature verification failed" msgstr "" #: gnutls.c:2054 openssl.c:1399 openssl.c:1551 msgid "certificate does not match hostname" msgstr "" #: gnutls.c:2059 openssl.c:1398 openssl.c:1557 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "" #: gnutls.c:2126 msgid "Failed to allocate memory for cafile certs\n" msgstr "" #: gnutls.c:2147 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "" #: gnutls.c:2163 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "" #: gnutls.c:2176 openssl.c:1679 msgid "Loading certificate failed. Aborting.\n" msgstr "" #: gnutls.c:2237 #, c-format msgid "Failed to set TLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2249 openssl.c:1796 #, c-format msgid "SSL negotiation with %s\n" msgstr "" #: gnutls.c:2296 openssl.c:1822 msgid "SSL connection cancelled\n" msgstr "" #: gnutls.c:2303 #, c-format msgid "SSL connection failure: %s\n" msgstr "" #: gnutls.c:2312 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "" #: gnutls.c:2318 openssl.c:1839 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "" #: gnutls.c:2321 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "" #: gnutls.c:2483 openssl-pkcs11.c:199 #, c-format msgid "PIN required for %s" msgstr "" #: gnutls.c:2487 openssl-pkcs11.c:202 msgid "Wrong PIN" msgstr "" #: gnutls.c:2490 msgid "This is the final try before locking!" msgstr "" #: gnutls.c:2492 msgid "Only a few tries left before locking!" msgstr "" #: gnutls.c:2497 openssl-pkcs11.c:206 msgid "Enter PIN:" msgstr "" #: gnutls.c:2583 openssl.c:1967 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2592 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:54 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm.c:61 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:68 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:78 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "" #: gnutls_tpm.c:100 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "" #: gnutls_tpm.c:108 gnutls_tpm.c:119 gnutls_tpm.c:132 msgid "Error in TSS key blob\n" msgstr "" #: gnutls_tpm.c:139 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "" #: gnutls_tpm.c:146 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "" #: gnutls_tpm.c:154 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "" #: gnutls_tpm.c:161 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "" #: gnutls_tpm.c:182 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "" #: gnutls_tpm.c:198 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "" #: gnutls_tpm.c:205 msgid "Enter TPM SRK PIN:" msgstr "" #: gnutls_tpm.c:226 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "" #: gnutls_tpm.c:234 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "" #: gnutls_tpm.c:240 msgid "Enter TPM key PIN:" msgstr "" #: gnutls_tpm.c:251 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "" #: gnutls_tpm2.c:92 gnutls_tpm2_esys.c:474 gnutls_tpm2_ibm.c:419 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:198 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:208 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:217 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:225 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:231 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:249 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:270 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:275 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:384 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2_esys.c:173 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:189 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:190 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:191 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:192 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:196 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:201 gnutls_tpm2_ibm.c:262 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:209 gnutls_tpm2_esys.c:303 gnutls_tpm2_esys.c:374 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:221 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:226 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:245 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:250 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:258 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:261 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:274 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:295 gnutls_tpm2_ibm.c:278 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:309 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:317 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:323 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:333 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:363 gnutls_tpm2_ibm.c:363 gnutls_tpm2_ibm.c:450 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:395 #, c-format msgid "TPM2 RSA sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:414 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:420 gnutls_tpm2_esys.c:500 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:464 gnutls_tpm2_ibm.c:405 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:494 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:532 gnutls_tpm2_ibm.c:485 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:546 gnutls_tpm2_ibm.c:502 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:555 gnutls_tpm2_ibm.c:512 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:569 gnutls_tpm2_ibm.c:523 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:54 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:226 #, c-format msgid "%s\n" msgstr "" #: gpst.c:229 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:417 #, c-format msgid "Unknown ESP %s algorithm: %s" msgstr "" #: gpst.c:477 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: gpst.c:483 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:487 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:498 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:551 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:560 oncp.c:835 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: gpst.c:627 msgid "ESP disabled" msgstr "" #: gpst.c:629 msgid "No ESP keys received" msgstr "" #: gpst.c:631 msgid "ESP support not available in this build" msgstr "" #: gpst.c:635 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:680 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:702 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:711 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:719 #, c-format msgid "Got inappropriate HTTP GET-tunnel response: %.*s\n" msgstr "" #: gpst.c:861 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" "VPN connectivity may be disabled or limited without HIP report submission.\n" "You need to provide a --csd-wrapper argument with the HIP report submission " "script.\n" msgstr "" #: gpst.c:871 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:900 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:905 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:911 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:913 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:942 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:966 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:972 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:999 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1015 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1051 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1072 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1082 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1086 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1092 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: gpst.c:1101 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1109 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1157 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1162 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1182 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1202 #, c-format msgid "Sending data packet of %d bytes\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1165 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "" #: http.c:319 msgid "No memory for allocating cookies\n" msgstr "" #: http.c:394 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "" #: http.c:400 #, c-format msgid "Got HTTP response: %s\n" msgstr "收到 HTTP 响应:%s\n" #: http.c:408 msgid "Error processing HTTP response\n" msgstr "处理 HTTP 响应出错\n" #: http.c:415 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "" #: http.c:435 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "" #: http.c:454 msgid "SSL certificate authentication failed\n" msgstr "" #: http.c:485 #, c-format msgid "Response body has negative size (%d)\n" msgstr "" #: http.c:496 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "" #. Now the body, if there is one #: http.c:515 #, c-format msgid "HTTP body %s (%d)\n" msgstr "" #: http.c:529 http.c:556 msgid "Error reading HTTP response body\n" msgstr "" #: http.c:542 msgid "Error fetching chunk header\n" msgstr "" #: http.c:566 msgid "Error fetching HTTP response body\n" msgstr "" #: http.c:569 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "" #: http.c:581 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "" #: http.c:708 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "" #: http.c:732 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "" #: http.c:760 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "" #: http.c:973 oncp.c:591 #, c-format msgid "Unexpected %d result from server\n" msgstr "" #: http.c:1021 msgid "request granted" msgstr "" #: http.c:1022 msgid "general failure" msgstr "常规错误" #: http.c:1023 msgid "connection not allowed by ruleset" msgstr "" #: http.c:1024 msgid "network unreachable" msgstr "网络不可达" #: http.c:1025 msgid "host unreachable" msgstr "主机不可达" #: http.c:1026 msgid "connection refused by destination host" msgstr "" #: http.c:1027 msgid "TTL expired" msgstr "TTL 过期" #: http.c:1028 msgid "command not supported / protocol error" msgstr "命令不支持/协议错误" #: http.c:1029 msgid "address type not supported" msgstr "不支持的地址类型" #: http.c:1039 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1047 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1062 http.c:1118 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" #: http.c:1070 http.c:1125 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" #: http.c:1077 http.c:1131 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" #: http.c:1083 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1087 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1143 http.c:1150 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1156 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1163 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1170 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1176 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "" #: http.c:1191 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" #: http.c:1199 http.c:1241 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "" #: http.c:1205 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "" #: http.c:1213 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "" #: http.c:1217 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "" #: http.c:1234 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "" #: http.c:1257 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "" #: http.c:1292 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "" #: http.c:1315 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1334 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "" #: http.c:1383 msgid "Only http or socks(5) proxies supported\n" msgstr "" #: library.c:112 msgid "Cisco AnyConnect or openconnect" msgstr "" #: library.c:113 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "" #: library.c:129 msgid "Juniper Network Connect" msgstr "" #: library.c:130 msgid "Compatible with Juniper Network Connect / Pulse Secure SSL VPN" msgstr "" #: library.c:148 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:149 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:211 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:233 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "" #: library.c:656 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "" #: library.c:662 msgid "Only https:// permitted for server URL\n" msgstr "" #: library.c:1056 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "" #: library.c:1085 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" #: library.c:1146 msgid "No form handler; cannot authenticate.\n" msgstr "" #: main.c:340 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:353 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:388 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:401 #, c-format msgid "fgetws() failed: %s\n" msgstr "" #: main.c:416 main.c:429 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:423 main.c:689 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "" #: main.c:584 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:593 #, c-format msgid "Using OpenSSL. Features present:" msgstr "" #: main.c:595 #, c-format msgid "Using GnuTLS. Features present:" msgstr "" #: main.c:608 msgid "OpenSSL ENGINE not present" msgstr "" #: main.c:647 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" #: main.c:657 #, c-format msgid "Supported protocols:" msgstr "" #: main.c:659 main.c:675 msgid " (default)" msgstr "" #: main.c:672 msgid "Set VPN protocol" msgstr "" #: main.c:713 msgid "fgets (stdin)" msgstr "" #: main.c:754 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:760 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:780 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "" #: main.c:793 #, c-format msgid "Usage: openconnect [options] \n" msgstr "" #: main.c:794 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" #: main.c:796 msgid "Read options from config file" msgstr "" #: main.c:797 msgid "Report version number" msgstr "报告版本号" #: main.c:798 msgid "Display help text" msgstr "显示帮助文本" #: main.c:802 msgid "Authentication" msgstr "" #: main.c:803 msgid "Set login username" msgstr "设置登录用户名" #: main.c:804 msgid "Disable password/SecurID authentication" msgstr "" #: main.c:805 msgid "Do not expect user input; exit if it is required" msgstr "" #: main.c:806 msgid "Read password from standard input" msgstr "" #: main.c:807 msgid "Choose authentication login selection" msgstr "" #: main.c:808 msgid "Provide authentication form responses" msgstr "" #: main.c:809 msgid "Use SSL client certificate CERT" msgstr "" #: main.c:810 msgid "Use SSL private key file KEY" msgstr "" #: main.c:811 msgid "Warn when certificate lifetime < DAYS" msgstr "" #: main.c:812 msgid "Set login usergroup" msgstr "设置登录的用户组" #: main.c:813 msgid "Set key passphrase or TPM SRK PIN" msgstr "" #: main.c:814 msgid "Key passphrase is fsid of file system" msgstr "" #: main.c:815 msgid "Software token type: rsa, totp or hotp" msgstr "" #: main.c:816 msgid "Software token secret" msgstr "" #: main.c:818 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" #: main.c:821 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:824 msgid "Server validation" msgstr "" #: main.c:825 msgid "Server's certificate SHA1 fingerprint" msgstr "" #: main.c:826 msgid "Do not require server SSL cert to be valid" msgstr "" #: main.c:827 msgid "Disable default system certificate authorities" msgstr "" #: main.c:828 msgid "Cert file for server verification" msgstr "" #: main.c:830 msgid "Internet connectivity" msgstr "" #: main.c:831 msgid "Set proxy server" msgstr "设置代理服务器" #: main.c:832 msgid "Set proxy authentication methods" msgstr "" #: main.c:833 msgid "Disable proxy" msgstr "禁用代理" #: main.c:834 msgid "Use libproxy to automatically configure proxy" msgstr "" #: main.c:836 msgid "(NOTE: libproxy disabled in this build)" msgstr "" #: main.c:838 msgid "Connection retry timeout in seconds" msgstr "" #: main.c:839 msgid "Use IP when connecting to HOST" msgstr "" #: main.c:840 msgid "copy TOS / TCLASS when using DTLS" msgstr "" #: main.c:841 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:843 msgid "Authentication (two-phase)" msgstr "" #: main.c:844 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:845 msgid "Read cookie from standard input" msgstr "" #: main.c:846 msgid "Authenticate only and print login info" msgstr "" #: main.c:847 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:848 msgid "Print cookie before connecting" msgstr "" #: main.c:851 msgid "Process control" msgstr "" #: main.c:852 msgid "Continue in background after startup" msgstr "" #: main.c:853 msgid "Write the daemon's PID to this file" msgstr "" #: main.c:854 msgid "Drop privileges after connecting" msgstr "" #: main.c:857 msgid "Logging (two-phase)" msgstr "" #: main.c:859 msgid "Use syslog for progress messages" msgstr "" #: main.c:861 msgid "More output" msgstr "更多输出" #: main.c:862 msgid "Less output" msgstr "简化输出" #: main.c:863 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "" #: main.c:864 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:866 msgid "VPN configuration script" msgstr "" #: main.c:867 msgid "Use IFNAME for tunnel interface" msgstr "" #: main.c:868 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" #: main.c:869 msgid "default" msgstr "" #: main.c:871 msgid "Pass traffic to 'script' program, not tun" msgstr "" #: main.c:874 msgid "Tunnel control" msgstr "" #: main.c:875 msgid "Do not ask for IPv6 connectivity" msgstr "" #: main.c:876 msgid "XML config file" msgstr "XML 配置文件" #: main.c:877 msgid "Request MTU from server (legacy servers only)" msgstr "" #: main.c:878 msgid "Indicate path MTU to/from server" msgstr "" #: main.c:879 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:880 msgid "Disable all compression" msgstr "" #: main.c:881 msgid "Set minimum Dead Peer Detection interval" msgstr "" #: main.c:882 msgid "Require perfect forward secrecy" msgstr "" #: main.c:883 msgid "Disable DTLS and ESP" msgstr "" #: main.c:884 msgid "OpenSSL ciphers to support for DTLS" msgstr "" #: main.c:885 msgid "Set packet queue limit to LEN pkts" msgstr "" #: main.c:887 msgid "Local system information" msgstr "" #: main.c:888 msgid "HTTP header User-Agent: field" msgstr "" #: main.c:889 msgid "Local hostname to advertise to server" msgstr "" #: main.c:890 msgid "OS type (linux,linux-64,win,...) to report" msgstr "" #: main.c:891 msgid "reported version string during authentication" msgstr "" #: main.c:892 msgid "default:" msgstr "" #: main.c:895 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:896 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:897 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:900 msgid "Server bugs" msgstr "" #: main.c:901 msgid "Disable HTTP connection re-use" msgstr "" #: main.c:902 msgid "Do not attempt XML POST authentication" msgstr "" #: main.c:924 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:997 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "" #: main.c:1037 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "" #: main.c:1047 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "" #: main.c:1051 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "" #: main.c:1076 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "" #: main.c:1086 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "" #: main.c:1130 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "" #: main.c:1140 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:1147 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:1157 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "" #: main.c:1215 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" #: main.c:1223 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "" #: main.c:1239 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1260 #, c-format msgid "Missing colon in resolve option\n" msgstr "" #: main.c:1265 #, c-format msgid "Failed to allocate memory\n" msgstr "" #: main.c:1349 main.c:1358 #, c-format msgid "MTU %d too small\n" msgstr "" #: main.c:1388 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" #: main.c:1394 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" #: main.c:1411 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "" #: main.c:1425 #, c-format msgid "OpenConnect version %s\n" msgstr "" #: main.c:1463 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "" #: main.c:1473 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "" #: main.c:1506 #, c-format msgid "Too many arguments on command line\n" msgstr "" #: main.c:1509 #, c-format msgid "No server specified\n" msgstr "" #: main.c:1525 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" #: main.c:1555 #, c-format msgid "Error opening cmd pipe\n" msgstr "" #: main.c:1588 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "" #: main.c:1609 #, c-format msgid "Creating SSL connection failed\n" msgstr "" #: main.c:1625 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:1633 #, c-format msgid "Connected as %s%s%s, using SSL%s%s, with %s%s%s %s\n" msgstr "" #: main.c:1639 msgid "disabled" msgstr "" #: main.c:1639 msgid "in progress" msgstr "" #: main.c:1643 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" #: main.c:1645 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "" #: main.c:1658 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "" #: main.c:1670 #, c-format msgid "Continuing in background; pid %d\n" msgstr "" #: main.c:1687 msgid "User requested reconnect\n" msgstr "" #: main.c:1695 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "" #: main.c:1699 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:1703 msgid "User cancelled (SIGINT/SIGTERM); exiting.\n" msgstr "" #: main.c:1707 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "" #: main.c:1711 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:1730 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "" #: main.c:1738 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "" #: main.c:1797 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "" #: main.c:1816 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" #: main.c:1819 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" #: main.c:1820 #, c-format msgid " --servercert %s\n" msgstr "" #: main.c:1825 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" #: main.c:1826 main.c:1844 msgid "no" msgstr "取消" #: main.c:1826 main.c:1832 msgid "yes" msgstr "确定" #: main.c:1853 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:1887 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:1890 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "认证选择“%s”不可用\n" #: main.c:1911 msgid "User input required in non-interactive mode\n" msgstr "" #: main.c:2149 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:2157 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:2203 main.c:2224 #, c-format msgid "Soft token string is invalid\n" msgstr "" #: main.c:2206 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "" #: main.c:2209 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "" #: main.c:2212 #, c-format msgid "General failure in libstoken\n" msgstr "" #: main.c:2227 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "" #: main.c:2230 #, c-format msgid "General failure in liboath\n" msgstr "" #: main.c:2241 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2244 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2247 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: mainloop.c:127 #, c-format msgid "Set up tun script failed\n" msgstr "" #: mainloop.c:134 #, c-format msgid "Set up tun device failed\n" msgstr "" #: mainloop.c:265 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:273 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "" #: mainloop.c:294 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:978 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:982 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:565 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:160 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:166 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:175 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:186 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:201 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:210 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:219 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:232 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:254 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:274 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:297 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:316 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:327 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:335 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:342 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:350 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:358 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:366 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:374 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:383 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:395 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:473 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:490 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:496 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:512 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:577 oncp.c:609 oncp.c:747 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:618 oncp.c:783 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:631 oncp.c:666 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:636 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:643 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:670 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:683 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:692 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "" #: oncp.c:698 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "" #: oncp.c:705 msgid "Failed to read continuation record length\n" msgstr "" #: oncp.c:711 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "" #: oncp.c:720 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "" #: oncp.c:726 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "" #: oncp.c:767 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:776 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:829 msgid "new incoming" msgstr "" #: oncp.c:830 msgid "new outgoing" msgstr "" #: oncp.c:855 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:864 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:868 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:874 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:969 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:972 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:991 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1053 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1058 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1073 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1134 msgid "Sent ESP enable control packet\n" msgstr "" #: oncp.c:1268 msgid "Logout successful.\n" msgstr "" #: openconnect-internal.h:1119 openconnect-internal.h:1127 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "" #: openssl-dtls.c:365 msgid "Initialise DTLSv1 CTX failed\n" msgstr "" #: openssl-dtls.c:378 msgid "Set DTLS CTX version failed\n" msgstr "" #: openssl-dtls.c:395 msgid "Failed to generate DTLS key\n" msgstr "" #: openssl-dtls.c:413 msgid "Set DTLS cipher list failed\n" msgstr "" #: openssl-dtls.c:439 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:460 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: openssl-dtls.c:493 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:566 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "" #: openssl-dtls.c:603 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" #: openssl-dtls.c:654 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" #: openssl-dtls.c:661 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "DTLS 握手失败:%d\n" #: openssl-esp.c:87 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:101 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:157 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:202 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:210 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:241 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:43 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:49 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "" #: openssl-pkcs11.c:269 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:272 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:275 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:279 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:286 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:300 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:306 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:342 openssl-pkcs11.c:565 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:349 openssl-pkcs11.c:575 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:383 openssl-pkcs11.c:617 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:393 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "" #: openssl-pkcs11.c:401 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:412 openssl.c:713 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl-pkcs11.c:458 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:464 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:497 msgid "Certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:503 openssl-pkcs11.c:526 msgid "Certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:506 msgid "Checking EC key matches cert\n" msgstr "" #: openssl-pkcs11.c:510 msgid "Failed to allocate signature buffer\n" msgstr "" #: openssl-pkcs11.c:520 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" #: openssl-pkcs11.c:638 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "" #: openssl-pkcs11.c:649 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:678 msgid "Add key from PKCS#11 failed\n" msgstr "" #: openssl-pkcs11.c:710 openssl-pkcs11.c:716 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:147 msgid "Failed to write to SSL socket\n" msgstr "" #: openssl.c:197 openssl.c:263 msgid "Failed to read from SSL socket\n" msgstr "" #: openssl.c:292 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "SSL 读取错误 %d (服务器可能断开了连接);正在重连。\n" #: openssl.c:317 #, c-format msgid "SSL_write failed: %d\n" msgstr "SSL_write 失败:%d\n" #: openssl.c:389 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:465 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "" #: openssl.c:498 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "" #: openssl.c:548 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:563 msgid "PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:572 msgid "PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:577 msgid "PKCS#12" msgstr "" #: openssl.c:600 msgid "Can't load TPM engine.\n" msgstr "" #: openssl.c:606 msgid "Failed to init TPM engine\n" msgstr "" #: openssl.c:616 msgid "Failed to set TPM SRK password\n" msgstr "" #: openssl.c:630 msgid "Failed to load TPM private key\n" msgstr "" #: openssl.c:636 msgid "Add key from TPM failed\n" msgstr "" #: openssl.c:687 openssl.c:835 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "" #: openssl.c:697 msgid "Loading certificate failed\n" msgstr "" #: openssl.c:735 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:748 msgid "PEM file" msgstr "" #: openssl.c:777 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "" #: openssl.c:802 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:808 msgid "Loading private key failed (see above errors)\n" msgstr "" #: openssl.c:858 msgid "Failed to load X509 certificate from keystore\n" msgstr "" #: openssl.c:864 msgid "Failed to use X509 certificate from keystore\n" msgstr "" #: openssl.c:896 msgid "Failed to use private key from keystore\n" msgstr "" #: openssl.c:912 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "" #: openssl.c:936 openssl.c:951 openssl.c:972 openssl.c:1038 msgid "Loading private key failed\n" msgstr "" #: openssl.c:1032 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1049 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "" #: openssl.c:1203 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "" #: openssl.c:1210 #, c-format msgid "No match for altname '%s'\n" msgstr "" #: openssl.c:1224 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" #: openssl.c:1235 openssl.c:1381 #, c-format msgid "Matched %s address '%s'\n" msgstr "" #: openssl.c:1242 #, c-format msgid "No match for %s address '%s'\n" msgstr "" #: openssl.c:1284 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "" #: openssl.c:1289 #, c-format msgid "Matched URI '%s'\n" msgstr "" #: openssl.c:1300 #, c-format msgid "No match for URI '%s'\n" msgstr "" #: openssl.c:1315 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" #: openssl.c:1323 msgid "No subject name in peer cert!\n" msgstr "" #: openssl.c:1343 msgid "Failed to parse subject name in peer cert\n" msgstr "" #: openssl.c:1350 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "" #: openssl.c:1355 openssl.c:1389 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "" #: openssl.c:1451 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "" #: openssl.c:1589 msgid "Error in client cert notAfter field\n" msgstr "" #: openssl.c:1602 msgid "" msgstr ";<错误>" #: openssl.c:1655 msgid "Create TLSv1 CTX failed\n" msgstr "" #: openssl.c:1674 msgid "SSL certificate and key do not match\n" msgstr "" #: openssl.c:1719 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "" #: openssl.c:1752 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "" #: openssl.c:1812 msgid "SSL connection failure\n" msgstr "SSL连接失败\n" #: openssl.c:1973 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:130 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "" #: script.c:134 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "" #: script.c:507 script.c:555 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "" #: script.c:562 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "" #: script.c:570 #, c-format msgid "Script '%s' returned error %d\n" msgstr "" #: ssl.c:108 msgid "Socket connect cancelled\n" msgstr "" #: ssl.c:217 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "" #: ssl.c:221 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "" #: ssl.c:289 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "" #: ssl.c:317 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "" #: ssl.c:326 ssl.c:451 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:341 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "" #: ssl.c:342 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "" #: ssl.c:362 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "" #: ssl.c:374 msgid "Failed to allocate sockaddr storage\n" msgstr "" #: ssl.c:416 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "" #: ssl.c:434 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:446 #, c-format msgid "Failed to connect to host %s\n" msgstr "" #: ssl.c:465 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:536 #, c-format msgid "statvfs: %s\n" msgstr "" #: ssl.c:564 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:575 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:603 #, c-format msgid "statfs: %s\n" msgstr "" #: ssl.c:694 msgid "No error" msgstr "" #: ssl.c:695 msgid "Keystore locked" msgstr "" #: ssl.c:696 msgid "Keystore uninitialized" msgstr "" #: ssl.c:697 msgid "System error" msgstr "" #: ssl.c:698 msgid "Protocol error" msgstr "" #: ssl.c:699 msgid "Permission denied" msgstr "" #: ssl.c:700 msgid "Key not found" msgstr "" #: ssl.c:701 msgid "Value corrupted" msgstr "" #: ssl.c:702 msgid "Undefined action" msgstr "" #: ssl.c:706 msgid "Wrong password" msgstr "" #: ssl.c:707 msgid "Unknown error" msgstr "" #: ssl.c:896 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:931 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:950 msgid "Open UDP socket" msgstr "" #: ssl.c:981 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:989 msgid "Bind UDP socket" msgstr "" #: ssl.c:996 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:1034 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:1038 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "睡眠 %ds,剩余超时 %ds\n" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "" #: stoken.c:82 msgid "Device ID:" msgstr "" #: stoken.c:89 msgid "Password:" msgstr "" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "" #: stoken.c:185 msgid "Enter software token PIN." msgstr "" #: stoken.c:189 msgid "PIN:" msgstr "" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "" #: tun-win32.c:76 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:139 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "" #: tun-win32.c:154 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" #: tun-win32.c:186 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" #: tun-win32.c:200 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "" #: tun-win32.c:231 #, c-format msgid "Failed to open %s\n" msgstr "" #: tun-win32.c:236 #, c-format msgid "Opened tun device %s\n" msgstr "" #: tun-win32.c:244 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:250 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:271 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:283 tun-win32.c:406 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:316 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:321 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:335 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:358 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:368 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:371 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:423 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "" #: tun.c:92 msgid "Can't push IP" msgstr "" #: tun.c:102 msgid "Can't set ifname" msgstr "" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "" #: tun.c:139 msgid "open /dev/tun" msgstr "" #: tun.c:145 msgid "Failed to create new tun" msgstr "" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "" #: tun.c:205 msgid "open net" msgstr "开放网络" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:479 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:484 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:488 msgid "setpgid" msgstr "" #: tun.c:493 msgid "execl" msgstr "execl" #: tun.c:498 msgid "(script)" msgstr "(脚本;)" #: tun.c:566 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:174 msgid "select applet command" msgstr "" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:274 msgid "unlock command" msgstr "" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:412 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:619 msgid "calculate command" msgstr "" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-8.05/po/zh_TW.po0000664000076400007640000025231413470043037017556 0ustar00dwoodhoudwoodhou00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: # Cheng-Chia Tseng , 2011-2012. msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2019-05-18 10:44-0700\n" "PO-Revision-Date: 2012-12-14 15:03+0000\n" "Last-Translator: Cheng-Chia Tseng \n" "Language-Team: Chinese (Taiwan) (http://www.transifex.com/projects/p/meego/" "language/zh_TW/)\n" "Language: zh_TW\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=1; plural=0;\n" #: auth-globalprotect.c:108 #, c-format msgid "" "SAML login is required via %s to this URL:\n" "\t%s" msgstr "" #: auth-globalprotect.c:110 msgid "Please enter your username and password" msgstr "" #: auth-globalprotect.c:119 msgid "Username" msgstr "" #: auth-globalprotect.c:134 msgid "Password" msgstr "" #: auth-globalprotect.c:181 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:260 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:266 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:272 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:315 msgid "Please select GlobalProtect gateway." msgstr "" #: auth-globalprotect.c:325 msgid "GATEWAY:" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:379 #, c-format msgid "%d gateway servers available:\n" msgstr "" #: auth-globalprotect.c:400 #, c-format msgid " %s (%s)\n" msgstr "" #: auth-globalprotect.c:484 auth-juniper.c:730 auth.c:669 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth-globalprotect.c:584 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" #: auth-globalprotect.c:636 oncp.c:1266 msgid "Logout failed.\n" msgstr "" #: auth-globalprotect.c:638 msgid "Logout successful\n" msgstr "" #: auth-juniper.c:142 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:153 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:163 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:236 auth.c:408 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "" #: auth-juniper.c:267 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "" #: auth-juniper.c:337 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:359 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:397 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:411 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:418 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:425 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:432 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:439 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:445 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:452 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:481 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:650 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:667 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:675 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:713 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:716 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth.c:96 msgid "Form choice has no name\n" msgstr "表單選擇沒有名稱\n" #: auth.c:181 #, c-format msgid "name %s not input\n" msgstr "名稱 %s 未輸入\n" #: auth.c:188 msgid "No input type in form\n" msgstr "表單內無輸入類型\n" #: auth.c:200 msgid "No input name in form\n" msgstr "表單內無輸入名稱\n" #: auth.c:230 #, c-format msgid "Unknown input type %s in form\n" msgstr "表單中有未知輸入類型 %s\n" #: auth.c:540 gpst.c:214 msgid "Empty response from server\n" msgstr "" #: auth.c:551 gpst.c:289 msgid "Failed to parse server response\n" msgstr "無法解析伺服器回應\n" #: auth.c:553 gpst.c:291 #, c-format msgid "Response was:%s\n" msgstr "回應為:%s\n" #: auth.c:575 msgid "Received when not expected.\n" msgstr "" #: auth.c:603 msgid "XML response has no \"auth\" node\n" msgstr "" #: auth.c:636 msgid "Asked for password but '--no-passwd' set\n" msgstr "" #: auth.c:925 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:931 cstp.c:335 http.c:916 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "" #: auth.c:952 msgid "Failed to send GET request for new config\n" msgstr "" #: auth.c:976 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" #: auth.c:981 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:992 auth.c:1044 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" #: auth.c:1003 mainloop.c:144 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "" #: auth.c:1010 mainloop.c:151 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "" #: auth.c:1017 mainloop.c:158 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "" #: auth.c:1024 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "" #: auth.c:1031 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "" #: auth.c:1053 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:1060 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" #: auth.c:1067 msgid "Trying to run Linux CSD trojan script.\n" msgstr "" #: auth.c:1094 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1102 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "" #: auth.c:1111 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "" #: auth.c:1141 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" #: auth.c:1189 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "" #: auth.c:1221 msgid "Unknown response from server\n" msgstr "" #: auth.c:1342 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1346 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" #: auth.c:1362 msgid "XML POST enabled\n" msgstr "" #: auth.c:1405 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "" #: compat.c:207 #, c-format msgid "(error 0x%lx)" msgstr "" #: compat.c:210 msgid "(Error while describing error!)" msgstr "" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:112 gpst.c:341 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "" #: cstp.c:134 gpst.c:360 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "" #: cstp.c:281 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:312 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:328 http.c:384 msgid "Error fetching HTTPS response\n" msgstr "" #: cstp.c:355 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "" #: cstp.c:360 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "" #: cstp.c:367 #, c-format msgid "Got CONNECT response: %s\n" msgstr "" #: cstp.c:396 cstp.c:404 msgid "No memory for options\n" msgstr "" #: cstp.c:413 http.c:444 msgid "" msgstr "" #: cstp.c:433 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "" #: cstp.c:450 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "" #: cstp.c:468 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:510 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "" #: cstp.c:585 msgid "No MTU received. Aborting\n" msgstr "" #: cstp.c:593 gpst.c:641 msgid "No IP address received. Aborting\n" msgstr "" #: cstp.c:599 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: cstp.c:605 gpst.c:648 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "" #: cstp.c:614 gpst.c:657 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" #: cstp.c:622 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "" #: cstp.c:630 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "" #: cstp.c:638 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "" #: cstp.c:640 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "" #: cstp.c:702 msgid "Compression setup failed\n" msgstr "" #: cstp.c:719 msgid "Allocation of deflate buffer failed\n" msgstr "" #: cstp.c:781 msgid "inflate failed\n" msgstr "" #: cstp.c:804 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:817 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:824 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:829 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:849 #, c-format msgid "deflate failed %d\n" msgstr "" #: cstp.c:922 dtls.c:281 dtls.c:740 esp.c:129 gpst.c:1042 mainloop.c:69 #: oncp.c:914 msgid "Allocation failed\n" msgstr "" #: cstp.c:933 gpst.c:1055 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: cstp.c:946 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" #: cstp.c:960 msgid "Got CSTP DPD request\n" msgstr "" #: cstp.c:966 msgid "Got CSTP DPD response\n" msgstr "" #: cstp.c:971 msgid "Got CSTP Keepalive\n" msgstr "" #: cstp.c:976 oncp.c:1003 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:993 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "" #: cstp.c:996 msgid "Received server disconnect\n" msgstr "" #: cstp.c:1004 msgid "Compressed packet received in !deflate mode\n" msgstr "" #: cstp.c:1013 msgid "received server terminate packet\n" msgstr "" #: cstp.c:1020 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "" #: cstp.c:1063 gpst.c:1142 oncp.c:1121 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1091 oncp.c:1155 msgid "CSTP rekey due\n" msgstr "" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1098 oncp.c:1162 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: cstp.c:1109 oncp.c:1173 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "" #: cstp.c:1113 gpst.c:1166 oncp.c:1091 oncp.c:1177 msgid "Reconnect failed\n" msgstr "" #: cstp.c:1129 oncp.c:1193 msgid "Send CSTP DPD\n" msgstr "" #: cstp.c:1141 oncp.c:1204 msgid "Send CSTP Keepalive\n" msgstr "" #: cstp.c:1166 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1177 oncp.c:1238 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:1216 #, c-format msgid "Send BYE packet: %s\n" msgstr "" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:113 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:119 msgid "No DTLS address\n" msgstr "" #. We probably didn't offer it any ciphers it liked #: dtls.c:126 msgid "Server offered no DTLS cipher option\n" msgstr "" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:133 msgid "No DTLS when connected via proxy\n" msgstr "" #: dtls.c:200 #, c-format msgid "DTLS option %s : %s\n" msgstr "" #: dtls.c:239 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:265 msgid "Attempt new DTLS connection\n" msgstr "" #: dtls.c:292 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "" #: dtls.c:306 msgid "Got DTLS DPD request\n" msgstr "" #: dtls.c:312 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "" #: dtls.c:316 msgid "Got DTLS DPD response\n" msgstr "" #: dtls.c:320 msgid "Got DTLS Keepalive\n" msgstr "" #: dtls.c:326 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:334 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "" #: dtls.c:356 msgid "DTLS rekey due\n" msgstr "" #: dtls.c:363 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: dtls.c:372 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "" #: dtls.c:378 msgid "Send DTLS DPD\n" msgstr "" #: dtls.c:383 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "" #: dtls.c:396 msgid "Send DTLS Keepalive\n" msgstr "" #: dtls.c:401 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" #: dtls.c:432 tun.c:541 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "" #: dtls.c:439 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "" #: dtls.c:443 msgid "UDP setsockopt" msgstr "" #: dtls.c:474 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "" #: dtls.c:488 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "" #: dtls.c:503 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "" #: dtls.c:531 #, c-format msgid "Initiating IPv4 MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:551 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" #: dtls.c:555 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" #: dtls.c:564 #, c-format msgid "Sending MTU DPD probe (%u bytes, min=%u, max=%u)\n" msgstr "" #: dtls.c:568 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "" #: dtls.c:582 dtls.c:690 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" #: dtls.c:594 #, c-format msgid "Timeout while waiting for DPD response; trying %d\n" msgstr "" #: dtls.c:601 dtls.c:682 msgid "Timeout while waiting for DPD response; resending probe.\n" msgstr "" #: dtls.c:608 dtls.c:709 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "" #: dtls.c:613 #, c-format msgid "Received MTU DPD probe (%u bytes of %u)\n" msgstr "" #: dtls.c:651 msgid "Initiating IPv6 MTU detection\n" msgstr "" #: dtls.c:666 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:670 #, c-format msgid "Failed to send DPD request (%d)\n" msgstr "" #: dtls.c:695 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:759 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "" #: dtls.c:762 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" #: esp.c:63 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:66 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:69 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:87 msgid "incoming" msgstr "" #: esp.c:88 msgid "outgoing" msgstr "" #: esp.c:90 esp.c:113 msgid "Send ESP probes\n" msgstr "" #: esp.c:138 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:155 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:161 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:174 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:181 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:193 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:202 msgid "ESP session established with server\n" msgstr "" #: esp.c:213 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:219 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:225 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:239 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:243 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:251 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:258 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:278 #, c-format msgid "Failed to encrypt ESP packet: %d\n" msgstr "" #: esp.c:294 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:301 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:307 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-dtls.c:190 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "" #: gnutls-dtls.c:198 msgid "Failed to generate DTLS priority string\n" msgstr "" #: gnutls-dtls.c:207 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "" #: gnutls-dtls.c:216 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "" #: gnutls-dtls.c:240 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "" #: gnutls-dtls.c:253 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:267 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:275 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "" #: gnutls-dtls.c:309 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "" #: gnutls-dtls.c:324 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "" #: gnutls-dtls.c:345 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "" #: gnutls-dtls.c:373 openssl-dtls.c:534 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "" #: gnutls-dtls.c:382 openssl-dtls.c:545 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "" #: gnutls-dtls.c:392 openssl-dtls.c:554 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" #: gnutls-dtls.c:405 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "" #: gnutls-dtls.c:416 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: gnutls-dtls.c:422 openssl-dtls.c:572 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "" #: gnutls-dtls.c:437 openssl-dtls.c:653 openssl-dtls.c:657 msgid "DTLS handshake timed out\n" msgstr "" #: gnutls-dtls.c:440 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "" #: gnutls-dtls.c:444 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:121 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:132 msgid "Failed to generate ESP IV\n" msgstr "" #: gnutls-esp.c:161 gnutls-esp.c:217 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:168 openssl-esp.c:192 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:180 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:209 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:95 openssl.c:154 msgid "SSL write cancelled\n" msgstr "" #: gnutls.c:99 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "" #: gnutls.c:145 gnutls.c:237 openssl.c:204 openssl.c:271 msgid "SSL read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:158 msgid "SSL socket closed uncleanly\n" msgstr "" #: gnutls.c:168 gnutls.c:246 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "" #: gnutls.c:266 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "" #: gnutls.c:302 #, c-format msgid "SSL send failed: %s\n" msgstr "" #: gnutls.c:315 msgid "Could not extract expiration time of certificate\n" msgstr "" #: gnutls.c:320 openssl.c:1592 msgid "Client certificate has expired at" msgstr "" #: gnutls.c:322 openssl.c:1597 msgid "Client certificate expires soon at" msgstr "" #: gnutls.c:371 openssl.c:771 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" #: gnutls.c:384 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "" #: gnutls.c:391 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" #: gnutls.c:400 msgid "Failed to allocate certificate buffer\n" msgstr "" #: gnutls.c:408 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "" #: gnutls.c:439 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "" #: gnutls.c:462 openssl.c:534 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "" #: gnutls.c:466 openssl.c:537 msgid "Enter PKCS#12 pass phrase:" msgstr "" #: gnutls.c:489 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "" #: gnutls.c:501 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:584 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "" #: gnutls.c:594 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "" #: gnutls.c:628 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "" #: gnutls.c:638 #, c-format msgid "MD5 hash error: %s\n" msgstr "" #: gnutls.c:696 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" #: gnutls.c:703 msgid "Cannot determine PEM encryption type\n" msgstr "" #: gnutls.c:716 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "" #: gnutls.c:741 gnutls.c:754 msgid "Invalid salt in encrypted PEM file\n" msgstr "" #: gnutls.c:778 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "" #: gnutls.c:786 msgid "Encrypted PEM file too short\n" msgstr "" #: gnutls.c:814 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" #: gnutls.c:825 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "" #: gnutls.c:877 msgid "Decrypting PEM key failed\n" msgstr "" #: gnutls.c:881 gnutls.c:1405 openssl.c:458 msgid "Enter PEM pass phrase:" msgstr "" #: gnutls.c:942 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:949 msgid "This binary built without PKCS#11 support\n" msgstr "" #: gnutls.c:993 openssl-pkcs11.c:407 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "" #: gnutls.c:994 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1012 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "" #: gnutls.c:1013 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1024 openssl.c:827 #, c-format msgid "Using certificate file %s\n" msgstr "" #: gnutls.c:1052 msgid "PKCS#11 file contained no certificate\n" msgstr "" #: gnutls.c:1078 msgid "No certificate found in file" msgstr "" #: gnutls.c:1083 #, c-format msgid "Loading certificate failed: %s\n" msgstr "" #: gnutls.c:1098 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1103 gnutls.c:1271 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "" #: gnutls.c:1114 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1125 gnutls.c:1219 gnutls.c:1247 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1130 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "" #: gnutls.c:1259 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "" #: gnutls.c:1266 openssl-pkcs11.c:644 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "" #: gnutls.c:1281 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" #: gnutls.c:1299 #, c-format msgid "Using private key file %s\n" msgstr "" #: gnutls.c:1310 openssl.c:651 msgid "This version of OpenConnect was built without TPM support\n" msgstr "" #: gnutls.c:1326 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1347 msgid "Failed to interpret PEM file\n" msgstr "" #: gnutls.c:1366 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "" #: gnutls.c:1379 gnutls.c:1393 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "" #: gnutls.c:1401 gnutls.c:1434 openssl.c:1002 openssl.c:1012 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "" #: gnutls.c:1426 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "" #: gnutls.c:1438 openssl.c:1008 msgid "Enter PKCS#8 pass phrase:" msgstr "" #: gnutls.c:1454 #, c-format msgid "Failed to get key ID: %s\n" msgstr "" #: gnutls.c:1499 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "" #: gnutls.c:1514 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "" #: gnutls.c:1539 msgid "No SSL certificate found to match private key\n" msgstr "" #: gnutls.c:1551 openssl.c:560 openssl.c:709 #, c-format msgid "Using client certificate '%s'\n" msgstr "" #: gnutls.c:1558 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "" #: gnutls.c:1579 gnutls.c:1589 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1625 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" #: gnutls.c:1648 msgid "Got no issuer from PKCS#11\n" msgstr "" #: gnutls.c:1653 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "" #: gnutls.c:1679 msgid "Failed to allocate memory for supporting certificates\n" msgstr "" #: gnutls.c:1702 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "" #: gnutls.c:1724 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1748 #, c-format msgid "Setting certificate failed: %s\n" msgstr "" #: gnutls.c:1941 msgid "Server presented no certificate\n" msgstr "" #: gnutls.c:1949 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" #: gnutls.c:1954 openssl.c:1515 msgid "Server presented different cert on rehandshake\n" msgstr "" #: gnutls.c:1959 openssl.c:1518 msgid "Server presented identical cert on rehandshake\n" msgstr "" #: gnutls.c:1965 msgid "Error initialising X509 cert structure\n" msgstr "" #: gnutls.c:1971 msgid "Error importing server's cert\n" msgstr "" #: gnutls.c:1980 main.c:1794 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:1985 msgid "Error checking server cert status\n" msgstr "" #: gnutls.c:1990 msgid "certificate revoked" msgstr "" #: gnutls.c:1992 msgid "signer not found" msgstr "" #: gnutls.c:1994 msgid "signer not a CA certificate" msgstr "" #: gnutls.c:1996 msgid "insecure algorithm" msgstr "" #: gnutls.c:1998 msgid "certificate not yet activated" msgstr "" #: gnutls.c:2000 msgid "certificate expired" msgstr "" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2005 msgid "signature verification failed" msgstr "" #: gnutls.c:2054 openssl.c:1399 openssl.c:1551 msgid "certificate does not match hostname" msgstr "" #: gnutls.c:2059 openssl.c:1398 openssl.c:1557 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "" #: gnutls.c:2126 msgid "Failed to allocate memory for cafile certs\n" msgstr "" #: gnutls.c:2147 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "" #: gnutls.c:2163 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "" #: gnutls.c:2176 openssl.c:1679 msgid "Loading certificate failed. Aborting.\n" msgstr "" #: gnutls.c:2237 #, c-format msgid "Failed to set TLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2249 openssl.c:1796 #, c-format msgid "SSL negotiation with %s\n" msgstr "" #: gnutls.c:2296 openssl.c:1822 msgid "SSL connection cancelled\n" msgstr "" #: gnutls.c:2303 #, c-format msgid "SSL connection failure: %s\n" msgstr "" #: gnutls.c:2312 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "" #: gnutls.c:2318 openssl.c:1839 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "" #: gnutls.c:2321 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "" #: gnutls.c:2483 openssl-pkcs11.c:199 #, c-format msgid "PIN required for %s" msgstr "" #: gnutls.c:2487 openssl-pkcs11.c:202 msgid "Wrong PIN" msgstr "" #: gnutls.c:2490 msgid "This is the final try before locking!" msgstr "" #: gnutls.c:2492 msgid "Only a few tries left before locking!" msgstr "" #: gnutls.c:2497 openssl-pkcs11.c:206 msgid "Enter PIN:" msgstr "" #: gnutls.c:2583 openssl.c:1967 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2592 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:54 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm.c:61 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:68 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:78 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "" #: gnutls_tpm.c:100 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "" #: gnutls_tpm.c:108 gnutls_tpm.c:119 gnutls_tpm.c:132 msgid "Error in TSS key blob\n" msgstr "" #: gnutls_tpm.c:139 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "" #: gnutls_tpm.c:146 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "" #: gnutls_tpm.c:154 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "" #: gnutls_tpm.c:161 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "" #: gnutls_tpm.c:182 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "" #: gnutls_tpm.c:198 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "" #: gnutls_tpm.c:205 msgid "Enter TPM SRK PIN:" msgstr "" #: gnutls_tpm.c:226 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "" #: gnutls_tpm.c:234 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "" #: gnutls_tpm.c:240 msgid "Enter TPM key PIN:" msgstr "" #: gnutls_tpm.c:251 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "" #: gnutls_tpm2.c:92 gnutls_tpm2_esys.c:474 gnutls_tpm2_ibm.c:419 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:198 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:208 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:217 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:225 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:231 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:249 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:270 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:275 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:384 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2_esys.c:173 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:189 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:190 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:191 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:192 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:196 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:201 gnutls_tpm2_ibm.c:262 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:209 gnutls_tpm2_esys.c:303 gnutls_tpm2_esys.c:374 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:221 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:226 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:245 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:250 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:258 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:261 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:274 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:295 gnutls_tpm2_ibm.c:278 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:309 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:317 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:323 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:333 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:363 gnutls_tpm2_ibm.c:363 gnutls_tpm2_ibm.c:450 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:395 #, c-format msgid "TPM2 RSA sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:414 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:420 gnutls_tpm2_esys.c:500 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:464 gnutls_tpm2_ibm.c:405 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:494 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:532 gnutls_tpm2_ibm.c:485 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:546 gnutls_tpm2_ibm.c:502 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:555 gnutls_tpm2_ibm.c:512 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:569 gnutls_tpm2_ibm.c:523 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:54 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:226 #, c-format msgid "%s\n" msgstr "" #: gpst.c:229 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:417 #, c-format msgid "Unknown ESP %s algorithm: %s" msgstr "" #: gpst.c:477 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: gpst.c:483 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:487 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:498 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:551 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:560 oncp.c:835 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: gpst.c:627 msgid "ESP disabled" msgstr "" #: gpst.c:629 msgid "No ESP keys received" msgstr "" #: gpst.c:631 msgid "ESP support not available in this build" msgstr "" #: gpst.c:635 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:680 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:702 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:711 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:719 #, c-format msgid "Got inappropriate HTTP GET-tunnel response: %.*s\n" msgstr "" #: gpst.c:861 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" "VPN connectivity may be disabled or limited without HIP report submission.\n" "You need to provide a --csd-wrapper argument with the HIP report submission " "script.\n" msgstr "" #: gpst.c:871 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:900 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:905 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:911 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:913 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:942 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:966 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:972 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:999 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1015 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1051 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1072 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1082 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1086 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1092 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: gpst.c:1101 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1109 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1157 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1162 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1182 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1202 #, c-format msgid "Sending data packet of %d bytes\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1165 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "" #: http.c:319 msgid "No memory for allocating cookies\n" msgstr "" #: http.c:394 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "" #: http.c:400 #, c-format msgid "Got HTTP response: %s\n" msgstr "" #: http.c:408 msgid "Error processing HTTP response\n" msgstr "" #: http.c:415 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "" #: http.c:435 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "" #: http.c:454 msgid "SSL certificate authentication failed\n" msgstr "" #: http.c:485 #, c-format msgid "Response body has negative size (%d)\n" msgstr "" #: http.c:496 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "" #. Now the body, if there is one #: http.c:515 #, c-format msgid "HTTP body %s (%d)\n" msgstr "" #: http.c:529 http.c:556 msgid "Error reading HTTP response body\n" msgstr "" #: http.c:542 msgid "Error fetching chunk header\n" msgstr "" #: http.c:566 msgid "Error fetching HTTP response body\n" msgstr "" #: http.c:569 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "" #: http.c:581 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "" #: http.c:708 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "" #: http.c:732 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "" #: http.c:760 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "" #: http.c:973 oncp.c:591 #, c-format msgid "Unexpected %d result from server\n" msgstr "" #: http.c:1021 msgid "request granted" msgstr "" #: http.c:1022 msgid "general failure" msgstr "" #: http.c:1023 msgid "connection not allowed by ruleset" msgstr "" #: http.c:1024 msgid "network unreachable" msgstr "" #: http.c:1025 msgid "host unreachable" msgstr "" #: http.c:1026 msgid "connection refused by destination host" msgstr "" #: http.c:1027 msgid "TTL expired" msgstr "" #: http.c:1028 msgid "command not supported / protocol error" msgstr "" #: http.c:1029 msgid "address type not supported" msgstr "" #: http.c:1039 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1047 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1062 http.c:1118 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" #: http.c:1070 http.c:1125 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" #: http.c:1077 http.c:1131 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" #: http.c:1083 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1087 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1143 http.c:1150 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1156 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1163 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1170 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1176 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "" #: http.c:1191 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" #: http.c:1199 http.c:1241 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "" #: http.c:1205 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "" #: http.c:1213 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "" #: http.c:1217 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "" #: http.c:1234 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "" #: http.c:1257 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "" #: http.c:1292 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "" #: http.c:1315 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1334 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "" #: http.c:1383 msgid "Only http or socks(5) proxies supported\n" msgstr "" #: library.c:112 msgid "Cisco AnyConnect or openconnect" msgstr "" #: library.c:113 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "" #: library.c:129 msgid "Juniper Network Connect" msgstr "" #: library.c:130 msgid "Compatible with Juniper Network Connect / Pulse Secure SSL VPN" msgstr "" #: library.c:148 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:149 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:211 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:233 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "" #: library.c:656 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "" #: library.c:662 msgid "Only https:// permitted for server URL\n" msgstr "" #: library.c:1056 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "" #: library.c:1085 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" #: library.c:1146 msgid "No form handler; cannot authenticate.\n" msgstr "" #: main.c:340 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:353 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:388 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:401 #, c-format msgid "fgetws() failed: %s\n" msgstr "" #: main.c:416 main.c:429 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:423 main.c:689 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "" #: main.c:584 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:593 #, c-format msgid "Using OpenSSL. Features present:" msgstr "" #: main.c:595 #, c-format msgid "Using GnuTLS. Features present:" msgstr "" #: main.c:608 msgid "OpenSSL ENGINE not present" msgstr "" #: main.c:647 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" #: main.c:657 #, c-format msgid "Supported protocols:" msgstr "" #: main.c:659 main.c:675 msgid " (default)" msgstr "" #: main.c:672 msgid "Set VPN protocol" msgstr "" #: main.c:713 msgid "fgets (stdin)" msgstr "" #: main.c:754 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:760 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:780 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "" #: main.c:793 #, c-format msgid "Usage: openconnect [options] \n" msgstr "" #: main.c:794 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" #: main.c:796 msgid "Read options from config file" msgstr "" #: main.c:797 msgid "Report version number" msgstr "" #: main.c:798 msgid "Display help text" msgstr "" #: main.c:802 msgid "Authentication" msgstr "" #: main.c:803 msgid "Set login username" msgstr "" #: main.c:804 msgid "Disable password/SecurID authentication" msgstr "" #: main.c:805 msgid "Do not expect user input; exit if it is required" msgstr "" #: main.c:806 msgid "Read password from standard input" msgstr "" #: main.c:807 msgid "Choose authentication login selection" msgstr "" #: main.c:808 msgid "Provide authentication form responses" msgstr "" #: main.c:809 msgid "Use SSL client certificate CERT" msgstr "" #: main.c:810 msgid "Use SSL private key file KEY" msgstr "" #: main.c:811 msgid "Warn when certificate lifetime < DAYS" msgstr "" #: main.c:812 msgid "Set login usergroup" msgstr "" #: main.c:813 msgid "Set key passphrase or TPM SRK PIN" msgstr "" #: main.c:814 msgid "Key passphrase is fsid of file system" msgstr "" #: main.c:815 msgid "Software token type: rsa, totp or hotp" msgstr "" #: main.c:816 msgid "Software token secret" msgstr "" #: main.c:818 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" #: main.c:821 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:824 msgid "Server validation" msgstr "" #: main.c:825 msgid "Server's certificate SHA1 fingerprint" msgstr "" #: main.c:826 msgid "Do not require server SSL cert to be valid" msgstr "" #: main.c:827 msgid "Disable default system certificate authorities" msgstr "" #: main.c:828 msgid "Cert file for server verification" msgstr "" #: main.c:830 msgid "Internet connectivity" msgstr "" #: main.c:831 msgid "Set proxy server" msgstr "" #: main.c:832 msgid "Set proxy authentication methods" msgstr "" #: main.c:833 msgid "Disable proxy" msgstr "" #: main.c:834 msgid "Use libproxy to automatically configure proxy" msgstr "" #: main.c:836 msgid "(NOTE: libproxy disabled in this build)" msgstr "" #: main.c:838 msgid "Connection retry timeout in seconds" msgstr "" #: main.c:839 msgid "Use IP when connecting to HOST" msgstr "" #: main.c:840 msgid "copy TOS / TCLASS when using DTLS" msgstr "" #: main.c:841 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:843 msgid "Authentication (two-phase)" msgstr "" #: main.c:844 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:845 msgid "Read cookie from standard input" msgstr "" #: main.c:846 msgid "Authenticate only and print login info" msgstr "" #: main.c:847 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:848 msgid "Print cookie before connecting" msgstr "" #: main.c:851 msgid "Process control" msgstr "" #: main.c:852 msgid "Continue in background after startup" msgstr "" #: main.c:853 msgid "Write the daemon's PID to this file" msgstr "" #: main.c:854 msgid "Drop privileges after connecting" msgstr "" #: main.c:857 msgid "Logging (two-phase)" msgstr "" #: main.c:859 msgid "Use syslog for progress messages" msgstr "" #: main.c:861 msgid "More output" msgstr "" #: main.c:862 msgid "Less output" msgstr "" #: main.c:863 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "" #: main.c:864 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:866 msgid "VPN configuration script" msgstr "" #: main.c:867 msgid "Use IFNAME for tunnel interface" msgstr "" #: main.c:868 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" #: main.c:869 msgid "default" msgstr "" #: main.c:871 msgid "Pass traffic to 'script' program, not tun" msgstr "" #: main.c:874 msgid "Tunnel control" msgstr "" #: main.c:875 msgid "Do not ask for IPv6 connectivity" msgstr "" #: main.c:876 msgid "XML config file" msgstr "" #: main.c:877 msgid "Request MTU from server (legacy servers only)" msgstr "" #: main.c:878 msgid "Indicate path MTU to/from server" msgstr "" #: main.c:879 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:880 msgid "Disable all compression" msgstr "" #: main.c:881 msgid "Set minimum Dead Peer Detection interval" msgstr "" #: main.c:882 msgid "Require perfect forward secrecy" msgstr "" #: main.c:883 msgid "Disable DTLS and ESP" msgstr "" #: main.c:884 msgid "OpenSSL ciphers to support for DTLS" msgstr "" #: main.c:885 msgid "Set packet queue limit to LEN pkts" msgstr "" #: main.c:887 msgid "Local system information" msgstr "" #: main.c:888 msgid "HTTP header User-Agent: field" msgstr "" #: main.c:889 msgid "Local hostname to advertise to server" msgstr "" #: main.c:890 msgid "OS type (linux,linux-64,win,...) to report" msgstr "" #: main.c:891 msgid "reported version string during authentication" msgstr "" #: main.c:892 msgid "default:" msgstr "" #: main.c:895 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:896 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:897 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:900 msgid "Server bugs" msgstr "" #: main.c:901 msgid "Disable HTTP connection re-use" msgstr "" #: main.c:902 msgid "Do not attempt XML POST authentication" msgstr "" #: main.c:924 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:997 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "" #: main.c:1037 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "" #: main.c:1047 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "" #: main.c:1051 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "" #: main.c:1076 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "" #: main.c:1086 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "" #: main.c:1130 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "" #: main.c:1140 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:1147 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:1157 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "" #: main.c:1215 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" #: main.c:1223 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "" #: main.c:1239 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1260 #, c-format msgid "Missing colon in resolve option\n" msgstr "" #: main.c:1265 #, c-format msgid "Failed to allocate memory\n" msgstr "" #: main.c:1349 main.c:1358 #, c-format msgid "MTU %d too small\n" msgstr "" #: main.c:1388 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" #: main.c:1394 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" #: main.c:1411 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "" #: main.c:1425 #, c-format msgid "OpenConnect version %s\n" msgstr "" #: main.c:1463 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "" #: main.c:1473 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "" #: main.c:1506 #, c-format msgid "Too many arguments on command line\n" msgstr "" #: main.c:1509 #, c-format msgid "No server specified\n" msgstr "" #: main.c:1525 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" #: main.c:1555 #, c-format msgid "Error opening cmd pipe\n" msgstr "" #: main.c:1588 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "" #: main.c:1609 #, c-format msgid "Creating SSL connection failed\n" msgstr "" #: main.c:1625 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:1633 #, c-format msgid "Connected as %s%s%s, using SSL%s%s, with %s%s%s %s\n" msgstr "" #: main.c:1639 msgid "disabled" msgstr "" #: main.c:1639 msgid "in progress" msgstr "" #: main.c:1643 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" #: main.c:1645 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "" #: main.c:1658 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "" #: main.c:1670 #, c-format msgid "Continuing in background; pid %d\n" msgstr "" #: main.c:1687 msgid "User requested reconnect\n" msgstr "" #: main.c:1695 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "" #: main.c:1699 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:1703 msgid "User cancelled (SIGINT/SIGTERM); exiting.\n" msgstr "" #: main.c:1707 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "" #: main.c:1711 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:1730 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "" #: main.c:1738 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "" #: main.c:1797 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "" #: main.c:1816 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" #: main.c:1819 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" #: main.c:1820 #, c-format msgid " --servercert %s\n" msgstr "" #: main.c:1825 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" #: main.c:1826 main.c:1844 msgid "no" msgstr "" #: main.c:1826 main.c:1832 msgid "yes" msgstr "" #: main.c:1853 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:1887 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:1890 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "" #: main.c:1911 msgid "User input required in non-interactive mode\n" msgstr "" #: main.c:2149 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:2157 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:2203 main.c:2224 #, c-format msgid "Soft token string is invalid\n" msgstr "" #: main.c:2206 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "" #: main.c:2209 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "" #: main.c:2212 #, c-format msgid "General failure in libstoken\n" msgstr "" #: main.c:2227 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "" #: main.c:2230 #, c-format msgid "General failure in liboath\n" msgstr "" #: main.c:2241 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2244 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2247 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: mainloop.c:127 #, c-format msgid "Set up tun script failed\n" msgstr "" #: mainloop.c:134 #, c-format msgid "Set up tun device failed\n" msgstr "" #: mainloop.c:265 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:273 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "" #: mainloop.c:294 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:978 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:982 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:565 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:160 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:166 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:175 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:186 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:201 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:210 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:219 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:232 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:254 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:274 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:297 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:316 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:327 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:335 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:342 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:350 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:358 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:366 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:374 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:383 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:395 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:473 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:490 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:496 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:512 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:577 oncp.c:609 oncp.c:747 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:618 oncp.c:783 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:631 oncp.c:666 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:636 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:643 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:670 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:683 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:692 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "" #: oncp.c:698 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "" #: oncp.c:705 msgid "Failed to read continuation record length\n" msgstr "" #: oncp.c:711 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "" #: oncp.c:720 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "" #: oncp.c:726 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "" #: oncp.c:767 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:776 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:829 msgid "new incoming" msgstr "" #: oncp.c:830 msgid "new outgoing" msgstr "" #: oncp.c:855 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:864 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:868 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:874 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:969 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:972 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:991 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1053 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1058 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1073 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1134 msgid "Sent ESP enable control packet\n" msgstr "" #: oncp.c:1268 msgid "Logout successful.\n" msgstr "" #: openconnect-internal.h:1119 openconnect-internal.h:1127 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "" #: openssl-dtls.c:365 msgid "Initialise DTLSv1 CTX failed\n" msgstr "" #: openssl-dtls.c:378 msgid "Set DTLS CTX version failed\n" msgstr "" #: openssl-dtls.c:395 msgid "Failed to generate DTLS key\n" msgstr "" #: openssl-dtls.c:413 msgid "Set DTLS cipher list failed\n" msgstr "" #: openssl-dtls.c:439 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:460 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: openssl-dtls.c:493 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:566 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "" #: openssl-dtls.c:603 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" #: openssl-dtls.c:654 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" #: openssl-dtls.c:661 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "" #: openssl-esp.c:87 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:101 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:157 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:202 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:210 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:241 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:43 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:49 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "" #: openssl-pkcs11.c:269 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:272 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:275 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:279 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:286 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:300 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:306 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:342 openssl-pkcs11.c:565 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:349 openssl-pkcs11.c:575 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:383 openssl-pkcs11.c:617 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:393 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "" #: openssl-pkcs11.c:401 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:412 openssl.c:713 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl-pkcs11.c:458 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:464 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:497 msgid "Certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:503 openssl-pkcs11.c:526 msgid "Certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:506 msgid "Checking EC key matches cert\n" msgstr "" #: openssl-pkcs11.c:510 msgid "Failed to allocate signature buffer\n" msgstr "" #: openssl-pkcs11.c:520 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" #: openssl-pkcs11.c:638 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "" #: openssl-pkcs11.c:649 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:678 msgid "Add key from PKCS#11 failed\n" msgstr "" #: openssl-pkcs11.c:710 openssl-pkcs11.c:716 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:147 msgid "Failed to write to SSL socket\n" msgstr "" #: openssl.c:197 openssl.c:263 msgid "Failed to read from SSL socket\n" msgstr "" #: openssl.c:292 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" #: openssl.c:317 #, c-format msgid "SSL_write failed: %d\n" msgstr "" #: openssl.c:389 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:465 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "" #: openssl.c:498 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "" #: openssl.c:548 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:563 msgid "PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:572 msgid "PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:577 msgid "PKCS#12" msgstr "" #: openssl.c:600 msgid "Can't load TPM engine.\n" msgstr "" #: openssl.c:606 msgid "Failed to init TPM engine\n" msgstr "" #: openssl.c:616 msgid "Failed to set TPM SRK password\n" msgstr "" #: openssl.c:630 msgid "Failed to load TPM private key\n" msgstr "" #: openssl.c:636 msgid "Add key from TPM failed\n" msgstr "" #: openssl.c:687 openssl.c:835 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "" #: openssl.c:697 msgid "Loading certificate failed\n" msgstr "" #: openssl.c:735 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:748 msgid "PEM file" msgstr "" #: openssl.c:777 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "" #: openssl.c:802 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:808 msgid "Loading private key failed (see above errors)\n" msgstr "" #: openssl.c:858 msgid "Failed to load X509 certificate from keystore\n" msgstr "" #: openssl.c:864 msgid "Failed to use X509 certificate from keystore\n" msgstr "" #: openssl.c:896 msgid "Failed to use private key from keystore\n" msgstr "" #: openssl.c:912 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "" #: openssl.c:936 openssl.c:951 openssl.c:972 openssl.c:1038 msgid "Loading private key failed\n" msgstr "" #: openssl.c:1032 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1049 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "" #: openssl.c:1203 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "" #: openssl.c:1210 #, c-format msgid "No match for altname '%s'\n" msgstr "" #: openssl.c:1224 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" #: openssl.c:1235 openssl.c:1381 #, c-format msgid "Matched %s address '%s'\n" msgstr "" #: openssl.c:1242 #, c-format msgid "No match for %s address '%s'\n" msgstr "" #: openssl.c:1284 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "" #: openssl.c:1289 #, c-format msgid "Matched URI '%s'\n" msgstr "" #: openssl.c:1300 #, c-format msgid "No match for URI '%s'\n" msgstr "" #: openssl.c:1315 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" #: openssl.c:1323 msgid "No subject name in peer cert!\n" msgstr "" #: openssl.c:1343 msgid "Failed to parse subject name in peer cert\n" msgstr "" #: openssl.c:1350 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "" #: openssl.c:1355 openssl.c:1389 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "" #: openssl.c:1451 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "" #: openssl.c:1589 msgid "Error in client cert notAfter field\n" msgstr "" #: openssl.c:1602 msgid "" msgstr "" #: openssl.c:1655 msgid "Create TLSv1 CTX failed\n" msgstr "" #: openssl.c:1674 msgid "SSL certificate and key do not match\n" msgstr "" #: openssl.c:1719 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "" #: openssl.c:1752 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "" #: openssl.c:1812 msgid "SSL connection failure\n" msgstr "" #: openssl.c:1973 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:130 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "" #: script.c:134 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "" #: script.c:507 script.c:555 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "" #: script.c:562 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "" #: script.c:570 #, c-format msgid "Script '%s' returned error %d\n" msgstr "" #: ssl.c:108 msgid "Socket connect cancelled\n" msgstr "" #: ssl.c:217 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "" #: ssl.c:221 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "" #: ssl.c:289 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "" #: ssl.c:317 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "" #: ssl.c:326 ssl.c:451 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:341 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "" #: ssl.c:342 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "" #: ssl.c:362 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "" #: ssl.c:374 msgid "Failed to allocate sockaddr storage\n" msgstr "" #: ssl.c:416 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "" #: ssl.c:434 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:446 #, c-format msgid "Failed to connect to host %s\n" msgstr "" #: ssl.c:465 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:536 #, c-format msgid "statvfs: %s\n" msgstr "" #: ssl.c:564 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:575 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:603 #, c-format msgid "statfs: %s\n" msgstr "" #: ssl.c:694 msgid "No error" msgstr "" #: ssl.c:695 msgid "Keystore locked" msgstr "" #: ssl.c:696 msgid "Keystore uninitialized" msgstr "" #: ssl.c:697 msgid "System error" msgstr "" #: ssl.c:698 msgid "Protocol error" msgstr "" #: ssl.c:699 msgid "Permission denied" msgstr "" #: ssl.c:700 msgid "Key not found" msgstr "" #: ssl.c:701 msgid "Value corrupted" msgstr "" #: ssl.c:702 msgid "Undefined action" msgstr "" #: ssl.c:706 msgid "Wrong password" msgstr "" #: ssl.c:707 msgid "Unknown error" msgstr "" #: ssl.c:896 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:931 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:950 msgid "Open UDP socket" msgstr "" #: ssl.c:981 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:989 msgid "Bind UDP socket" msgstr "" #: ssl.c:996 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:1034 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:1038 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "" #: stoken.c:82 msgid "Device ID:" msgstr "" #: stoken.c:89 msgid "Password:" msgstr "" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "" #: stoken.c:185 msgid "Enter software token PIN." msgstr "" #: stoken.c:189 msgid "PIN:" msgstr "" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "" #: tun-win32.c:76 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:139 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "" #: tun-win32.c:154 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" #: tun-win32.c:186 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" #: tun-win32.c:200 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "" #: tun-win32.c:231 #, c-format msgid "Failed to open %s\n" msgstr "" #: tun-win32.c:236 #, c-format msgid "Opened tun device %s\n" msgstr "" #: tun-win32.c:244 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:250 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:271 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:283 tun-win32.c:406 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:316 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:321 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:335 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:358 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:368 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:371 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:423 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "" #: tun.c:92 msgid "Can't push IP" msgstr "" #: tun.c:102 msgid "Can't set ifname" msgstr "" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "" #: tun.c:139 msgid "open /dev/tun" msgstr "" #: tun.c:145 msgid "Failed to create new tun" msgstr "" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "" #: tun.c:205 msgid "open net" msgstr "" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "" #: tun.c:479 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:484 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:488 msgid "setpgid" msgstr "" #: tun.c:493 msgid "execl" msgstr "" #: tun.c:498 msgid "(script)" msgstr "" #: tun.c:566 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:174 msgid "select applet command" msgstr "" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:274 msgid "unlock command" msgstr "" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:412 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:619 msgid "calculate command" msgstr "" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-8.05/po/uk.po0000664000076400007640000026100513470043037017137 0ustar00dwoodhoudwoodhou00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: # Yuri Chornoivan , 2012. msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2019-05-18 10:44-0700\n" "PO-Revision-Date: 2012-11-15 08:31+0000\n" "Last-Translator: David Woodhouse \n" "Language-Team: Ukrainian (http://www.transifex.com/projects/p/meego/language/" "uk/)\n" "Language: uk\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && n" "%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2);\n" #: auth-globalprotect.c:108 #, c-format msgid "" "SAML login is required via %s to this URL:\n" "\t%s" msgstr "" #: auth-globalprotect.c:110 msgid "Please enter your username and password" msgstr "" #: auth-globalprotect.c:119 msgid "Username" msgstr "" #: auth-globalprotect.c:134 msgid "Password" msgstr "" #: auth-globalprotect.c:181 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:260 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:266 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:272 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:315 msgid "Please select GlobalProtect gateway." msgstr "" #: auth-globalprotect.c:325 msgid "GATEWAY:" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:379 #, c-format msgid "%d gateway servers available:\n" msgstr "" #: auth-globalprotect.c:400 #, c-format msgid " %s (%s)\n" msgstr "" #: auth-globalprotect.c:484 auth-juniper.c:730 auth.c:669 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth-globalprotect.c:584 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" #: auth-globalprotect.c:636 oncp.c:1266 msgid "Logout failed.\n" msgstr "" #: auth-globalprotect.c:638 msgid "Logout successful\n" msgstr "" #: auth-juniper.c:142 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:153 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:163 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:236 auth.c:408 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "" #: auth-juniper.c:267 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "" #: auth-juniper.c:337 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:359 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:397 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:411 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:418 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:425 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:432 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:439 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:445 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:452 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:481 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:650 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:667 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:675 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:713 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:716 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth.c:96 msgid "Form choice has no name\n" msgstr "" #: auth.c:181 #, c-format msgid "name %s not input\n" msgstr "" #: auth.c:188 msgid "No input type in form\n" msgstr "" #: auth.c:200 msgid "No input name in form\n" msgstr "" #: auth.c:230 #, c-format msgid "Unknown input type %s in form\n" msgstr "" #: auth.c:540 gpst.c:214 msgid "Empty response from server\n" msgstr "" #: auth.c:551 gpst.c:289 msgid "Failed to parse server response\n" msgstr "" #: auth.c:553 gpst.c:291 #, c-format msgid "Response was:%s\n" msgstr "" #: auth.c:575 msgid "Received when not expected.\n" msgstr "" #: auth.c:603 msgid "XML response has no \"auth\" node\n" msgstr "" #: auth.c:636 msgid "Asked for password but '--no-passwd' set\n" msgstr "" #: auth.c:925 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:931 cstp.c:335 http.c:916 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "" #: auth.c:952 msgid "Failed to send GET request for new config\n" msgstr "" #: auth.c:976 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" #: auth.c:981 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:992 auth.c:1044 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" #: auth.c:1003 mainloop.c:144 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "" #: auth.c:1010 mainloop.c:151 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "" #: auth.c:1017 mainloop.c:158 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "" #: auth.c:1024 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "" #: auth.c:1031 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "" #: auth.c:1053 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:1060 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" #: auth.c:1067 msgid "Trying to run Linux CSD trojan script.\n" msgstr "" #: auth.c:1094 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1102 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "" #: auth.c:1111 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "" #: auth.c:1141 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" #: auth.c:1189 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "" #: auth.c:1221 msgid "Unknown response from server\n" msgstr "Невідома відповідь сервера\n" #: auth.c:1342 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1346 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" #: auth.c:1362 msgid "XML POST enabled\n" msgstr "" #: auth.c:1405 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "" #: compat.c:207 #, c-format msgid "(error 0x%lx)" msgstr "" #: compat.c:210 msgid "(Error while describing error!)" msgstr "" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:112 gpst.c:341 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "" #: cstp.c:134 gpst.c:360 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "" #: cstp.c:281 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:312 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:328 http.c:384 msgid "Error fetching HTTPS response\n" msgstr "" #: cstp.c:355 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "" #: cstp.c:360 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "" #: cstp.c:367 #, c-format msgid "Got CONNECT response: %s\n" msgstr "" #: cstp.c:396 cstp.c:404 msgid "No memory for options\n" msgstr "" #: cstp.c:413 http.c:444 msgid "" msgstr "" #: cstp.c:433 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "" #: cstp.c:450 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "" #: cstp.c:468 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:510 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "" #: cstp.c:585 msgid "No MTU received. Aborting\n" msgstr "" #: cstp.c:593 gpst.c:641 msgid "No IP address received. Aborting\n" msgstr "" #: cstp.c:599 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: cstp.c:605 gpst.c:648 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "" #: cstp.c:614 gpst.c:657 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" #: cstp.c:622 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "" #: cstp.c:630 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "" #: cstp.c:638 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "" #: cstp.c:640 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "" #: cstp.c:702 msgid "Compression setup failed\n" msgstr "" #: cstp.c:719 msgid "Allocation of deflate buffer failed\n" msgstr "" #: cstp.c:781 msgid "inflate failed\n" msgstr "" #: cstp.c:804 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:817 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:824 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:829 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:849 #, c-format msgid "deflate failed %d\n" msgstr "" #: cstp.c:922 dtls.c:281 dtls.c:740 esp.c:129 gpst.c:1042 mainloop.c:69 #: oncp.c:914 msgid "Allocation failed\n" msgstr "" #: cstp.c:933 gpst.c:1055 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: cstp.c:946 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" #: cstp.c:960 msgid "Got CSTP DPD request\n" msgstr "" #: cstp.c:966 msgid "Got CSTP DPD response\n" msgstr "" #: cstp.c:971 msgid "Got CSTP Keepalive\n" msgstr "" #: cstp.c:976 oncp.c:1003 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:993 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "" #: cstp.c:996 msgid "Received server disconnect\n" msgstr "" #: cstp.c:1004 msgid "Compressed packet received in !deflate mode\n" msgstr "" #: cstp.c:1013 msgid "received server terminate packet\n" msgstr "" #: cstp.c:1020 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "" #: cstp.c:1063 gpst.c:1142 oncp.c:1121 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1091 oncp.c:1155 msgid "CSTP rekey due\n" msgstr "" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1098 oncp.c:1162 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: cstp.c:1109 oncp.c:1173 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "" #: cstp.c:1113 gpst.c:1166 oncp.c:1091 oncp.c:1177 msgid "Reconnect failed\n" msgstr "" #: cstp.c:1129 oncp.c:1193 msgid "Send CSTP DPD\n" msgstr "" #: cstp.c:1141 oncp.c:1204 msgid "Send CSTP Keepalive\n" msgstr "" #: cstp.c:1166 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1177 oncp.c:1238 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:1216 #, c-format msgid "Send BYE packet: %s\n" msgstr "" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:113 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:119 msgid "No DTLS address\n" msgstr "" #. We probably didn't offer it any ciphers it liked #: dtls.c:126 msgid "Server offered no DTLS cipher option\n" msgstr "" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:133 msgid "No DTLS when connected via proxy\n" msgstr "" #: dtls.c:200 #, c-format msgid "DTLS option %s : %s\n" msgstr "" #: dtls.c:239 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:265 msgid "Attempt new DTLS connection\n" msgstr "" #: dtls.c:292 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "" #: dtls.c:306 msgid "Got DTLS DPD request\n" msgstr "" #: dtls.c:312 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "" #: dtls.c:316 msgid "Got DTLS DPD response\n" msgstr "" #: dtls.c:320 msgid "Got DTLS Keepalive\n" msgstr "" #: dtls.c:326 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:334 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "" #: dtls.c:356 msgid "DTLS rekey due\n" msgstr "" #: dtls.c:363 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: dtls.c:372 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "" #: dtls.c:378 msgid "Send DTLS DPD\n" msgstr "" #: dtls.c:383 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "" #: dtls.c:396 msgid "Send DTLS Keepalive\n" msgstr "" #: dtls.c:401 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" #: dtls.c:432 tun.c:541 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "" #: dtls.c:439 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "" #: dtls.c:443 msgid "UDP setsockopt" msgstr "" #: dtls.c:474 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "" #: dtls.c:488 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "" #: dtls.c:503 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "" #: dtls.c:531 #, c-format msgid "Initiating IPv4 MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:551 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" #: dtls.c:555 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" #: dtls.c:564 #, c-format msgid "Sending MTU DPD probe (%u bytes, min=%u, max=%u)\n" msgstr "" #: dtls.c:568 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "" #: dtls.c:582 dtls.c:690 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" #: dtls.c:594 #, c-format msgid "Timeout while waiting for DPD response; trying %d\n" msgstr "" #: dtls.c:601 dtls.c:682 msgid "Timeout while waiting for DPD response; resending probe.\n" msgstr "" #: dtls.c:608 dtls.c:709 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "" #: dtls.c:613 #, c-format msgid "Received MTU DPD probe (%u bytes of %u)\n" msgstr "" #: dtls.c:651 msgid "Initiating IPv6 MTU detection\n" msgstr "" #: dtls.c:666 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:670 #, c-format msgid "Failed to send DPD request (%d)\n" msgstr "" #: dtls.c:695 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:759 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "" #: dtls.c:762 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" #: esp.c:63 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:66 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:69 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:87 msgid "incoming" msgstr "" #: esp.c:88 msgid "outgoing" msgstr "" #: esp.c:90 esp.c:113 msgid "Send ESP probes\n" msgstr "" #: esp.c:138 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:155 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:161 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:174 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:181 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:193 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:202 msgid "ESP session established with server\n" msgstr "" #: esp.c:213 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:219 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:225 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:239 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:243 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:251 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:258 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:278 #, c-format msgid "Failed to encrypt ESP packet: %d\n" msgstr "" #: esp.c:294 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:301 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:307 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-dtls.c:190 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "" #: gnutls-dtls.c:198 msgid "Failed to generate DTLS priority string\n" msgstr "" #: gnutls-dtls.c:207 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "" #: gnutls-dtls.c:216 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "" #: gnutls-dtls.c:240 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "" #: gnutls-dtls.c:253 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:267 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:275 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "" #: gnutls-dtls.c:309 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "" #: gnutls-dtls.c:324 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "" #: gnutls-dtls.c:345 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "" #: gnutls-dtls.c:373 openssl-dtls.c:534 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "" #: gnutls-dtls.c:382 openssl-dtls.c:545 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "" #: gnutls-dtls.c:392 openssl-dtls.c:554 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" #: gnutls-dtls.c:405 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "" #: gnutls-dtls.c:416 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: gnutls-dtls.c:422 openssl-dtls.c:572 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "" #: gnutls-dtls.c:437 openssl-dtls.c:653 openssl-dtls.c:657 msgid "DTLS handshake timed out\n" msgstr "" #: gnutls-dtls.c:440 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "" #: gnutls-dtls.c:444 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:121 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:132 msgid "Failed to generate ESP IV\n" msgstr "" #: gnutls-esp.c:161 gnutls-esp.c:217 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:168 openssl-esp.c:192 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:180 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:209 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:95 openssl.c:154 msgid "SSL write cancelled\n" msgstr "" #: gnutls.c:99 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "Не вдалося виконати читання до сокета SSL: %s\n" #: gnutls.c:145 gnutls.c:237 openssl.c:204 openssl.c:271 msgid "SSL read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:158 msgid "SSL socket closed uncleanly\n" msgstr "" #: gnutls.c:168 gnutls.c:246 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "Не вдалося виконати читання з сокета SSL: %s\n" #: gnutls.c:266 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "" #: gnutls.c:302 #, c-format msgid "SSL send failed: %s\n" msgstr "" #: gnutls.c:315 msgid "Could not extract expiration time of certificate\n" msgstr "Не вдалося видобути час завершення строку дії сертифіката\n" #: gnutls.c:320 openssl.c:1592 msgid "Client certificate has expired at" msgstr "" #: gnutls.c:322 openssl.c:1597 msgid "Client certificate expires soon at" msgstr "" #: gnutls.c:371 openssl.c:771 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" #: gnutls.c:384 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "" #: gnutls.c:391 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" #: gnutls.c:400 msgid "Failed to allocate certificate buffer\n" msgstr "Не вдалося розмістити буфер сертифікатів\n" #: gnutls.c:408 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Не вдалося прочитати сертифікат до пам’яті: %s\n" #: gnutls.c:439 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Не вдалося налаштувати структуру даних PKCS#12: %s\n" #: gnutls.c:462 openssl.c:534 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "" #: gnutls.c:466 openssl.c:537 msgid "Enter PKCS#12 pass phrase:" msgstr "" #: gnutls.c:489 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Не вдалося обробити файл PKCS#12: %s\n" #: gnutls.c:501 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Не вдалося завантажити сертифікат PKCS#12: %s\n" #: gnutls.c:584 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Спроба імпортування сертифіката X509 зазнала невдачі: %s\n" #: gnutls.c:594 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Спроба встановлення сертифіката PKCS#11 зазнала невдачі: %s\n" #: gnutls.c:628 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "" #: gnutls.c:638 #, c-format msgid "MD5 hash error: %s\n" msgstr "" #: gnutls.c:696 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" #: gnutls.c:703 msgid "Cannot determine PEM encryption type\n" msgstr "" #: gnutls.c:716 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "" #: gnutls.c:741 gnutls.c:754 msgid "Invalid salt in encrypted PEM file\n" msgstr "" #: gnutls.c:778 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "" #: gnutls.c:786 msgid "Encrypted PEM file too short\n" msgstr "" #: gnutls.c:814 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" #: gnutls.c:825 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "" #: gnutls.c:877 msgid "Decrypting PEM key failed\n" msgstr "" #: gnutls.c:881 gnutls.c:1405 openssl.c:458 msgid "Enter PEM pass phrase:" msgstr "" #: gnutls.c:942 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:949 msgid "This binary built without PKCS#11 support\n" msgstr "" #: gnutls.c:993 openssl-pkcs11.c:407 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Використовуємо сертифікат PKCS#11 %s\n" #: gnutls.c:994 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1012 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Помилка під час завантаження сертифіката з PKCS#11: %s\n" #: gnutls.c:1013 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1024 openssl.c:827 #, c-format msgid "Using certificate file %s\n" msgstr "" #: gnutls.c:1052 msgid "PKCS#11 file contained no certificate\n" msgstr "У файлі PKCS#11 не міститься сертифіката\n" #: gnutls.c:1078 msgid "No certificate found in file" msgstr "У файлі не знайдено сертифіката" #: gnutls.c:1083 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Спроба завантаження сертифіката зазнала невдачі: %s\n" #: gnutls.c:1098 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1103 gnutls.c:1271 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Помилка під час спроби ініціалізувати структуру закритих ключів: %s\n" #: gnutls.c:1114 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1125 gnutls.c:1219 gnutls.c:1247 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1130 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "" #: gnutls.c:1259 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Помилка під час імпортування адреси PKCS#11 %s: %s\n" #: gnutls.c:1266 openssl-pkcs11.c:644 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Використовуємо ключ PKCS#11 %s\n" #: gnutls.c:1281 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" #: gnutls.c:1299 #, c-format msgid "Using private key file %s\n" msgstr "Використовуємо файл закритого ключа %s\n" #: gnutls.c:1310 openssl.c:651 msgid "This version of OpenConnect was built without TPM support\n" msgstr "" #: gnutls.c:1326 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1347 msgid "Failed to interpret PEM file\n" msgstr "" #: gnutls.c:1366 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "" #: gnutls.c:1379 gnutls.c:1393 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "" #: gnutls.c:1401 gnutls.c:1434 openssl.c:1002 openssl.c:1012 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "" #: gnutls.c:1426 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "" #: gnutls.c:1438 openssl.c:1008 msgid "Enter PKCS#8 pass phrase:" msgstr "" #: gnutls.c:1454 #, c-format msgid "Failed to get key ID: %s\n" msgstr "" #: gnutls.c:1499 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "" #: gnutls.c:1514 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "" #: gnutls.c:1539 msgid "No SSL certificate found to match private key\n" msgstr "" #: gnutls.c:1551 openssl.c:560 openssl.c:709 #, c-format msgid "Using client certificate '%s'\n" msgstr "" #: gnutls.c:1558 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "" "Спроба встановлення списку відкликаних сертифікатів зазнала невдачі: %s\n" #: gnutls.c:1579 gnutls.c:1589 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1625 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" #: gnutls.c:1648 msgid "Got no issuer from PKCS#11\n" msgstr "" #: gnutls.c:1653 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "" #: gnutls.c:1679 msgid "Failed to allocate memory for supporting certificates\n" msgstr "" #: gnutls.c:1702 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Додавання підтримувального CA «%s»\n" #: gnutls.c:1724 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1748 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Спроба встановлення сертифіката зазнала невдачі: %s\n" #: gnutls.c:1941 msgid "Server presented no certificate\n" msgstr "Сервером не надано сертифіката\n" #: gnutls.c:1949 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" #: gnutls.c:1954 openssl.c:1515 msgid "Server presented different cert on rehandshake\n" msgstr "" #: gnutls.c:1959 openssl.c:1518 msgid "Server presented identical cert on rehandshake\n" msgstr "" #: gnutls.c:1965 msgid "Error initialising X509 cert structure\n" msgstr "" #: gnutls.c:1971 msgid "Error importing server's cert\n" msgstr "" #: gnutls.c:1980 main.c:1794 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:1985 msgid "Error checking server cert status\n" msgstr "Помилка під час спроби перевірити стан сертифіката сервера\n" #: gnutls.c:1990 msgid "certificate revoked" msgstr "сертифікат відкликано" #: gnutls.c:1992 msgid "signer not found" msgstr "підписувача не знайдено" #: gnutls.c:1994 msgid "signer not a CA certificate" msgstr "" #: gnutls.c:1996 msgid "insecure algorithm" msgstr "" #: gnutls.c:1998 msgid "certificate not yet activated" msgstr "" #: gnutls.c:2000 msgid "certificate expired" msgstr "строк дії сертифіката збіг" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2005 msgid "signature verification failed" msgstr "" #: gnutls.c:2054 openssl.c:1399 openssl.c:1551 msgid "certificate does not match hostname" msgstr "" #: gnutls.c:2059 openssl.c:1398 openssl.c:1557 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "" #: gnutls.c:2126 msgid "Failed to allocate memory for cafile certs\n" msgstr "" #: gnutls.c:2147 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "" #: gnutls.c:2163 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "" #: gnutls.c:2176 openssl.c:1679 msgid "Loading certificate failed. Aborting.\n" msgstr "" #: gnutls.c:2237 #, c-format msgid "Failed to set TLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2249 openssl.c:1796 #, c-format msgid "SSL negotiation with %s\n" msgstr "" #: gnutls.c:2296 openssl.c:1822 msgid "SSL connection cancelled\n" msgstr "Спробу з’єднання SSL скасовано\n" #: gnutls.c:2303 #, c-format msgid "SSL connection failure: %s\n" msgstr "" #: gnutls.c:2312 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "" #: gnutls.c:2318 openssl.c:1839 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "" #: gnutls.c:2321 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "" #: gnutls.c:2483 openssl-pkcs11.c:199 #, c-format msgid "PIN required for %s" msgstr "" #: gnutls.c:2487 openssl-pkcs11.c:202 msgid "Wrong PIN" msgstr "Помилковий код" #: gnutls.c:2490 msgid "This is the final try before locking!" msgstr "Це остання спроба перед блокуванням!" #: gnutls.c:2492 msgid "Only a few tries left before locking!" msgstr "" #: gnutls.c:2497 openssl-pkcs11.c:206 msgid "Enter PIN:" msgstr "Вкажіть пінкод: " #: gnutls.c:2583 openssl.c:1967 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2592 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:54 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm.c:61 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:68 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:78 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "" #: gnutls_tpm.c:100 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "" #: gnutls_tpm.c:108 gnutls_tpm.c:119 gnutls_tpm.c:132 msgid "Error in TSS key blob\n" msgstr "" #: gnutls_tpm.c:139 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "" #: gnutls_tpm.c:146 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "" #: gnutls_tpm.c:154 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "" #: gnutls_tpm.c:161 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "" #: gnutls_tpm.c:182 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "" #: gnutls_tpm.c:198 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "" #: gnutls_tpm.c:205 msgid "Enter TPM SRK PIN:" msgstr "" #: gnutls_tpm.c:226 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "" #: gnutls_tpm.c:234 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "" #: gnutls_tpm.c:240 msgid "Enter TPM key PIN:" msgstr "" #: gnutls_tpm.c:251 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "" #: gnutls_tpm2.c:92 gnutls_tpm2_esys.c:474 gnutls_tpm2_ibm.c:419 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:198 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:208 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:217 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:225 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:231 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:249 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:270 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:275 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:384 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2_esys.c:173 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:189 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:190 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:191 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:192 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:196 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:201 gnutls_tpm2_ibm.c:262 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:209 gnutls_tpm2_esys.c:303 gnutls_tpm2_esys.c:374 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:221 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:226 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:245 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:250 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:258 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:261 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:274 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:295 gnutls_tpm2_ibm.c:278 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:309 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:317 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:323 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:333 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:363 gnutls_tpm2_ibm.c:363 gnutls_tpm2_ibm.c:450 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:395 #, c-format msgid "TPM2 RSA sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:414 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:420 gnutls_tpm2_esys.c:500 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:464 gnutls_tpm2_ibm.c:405 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:494 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:532 gnutls_tpm2_ibm.c:485 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:546 gnutls_tpm2_ibm.c:502 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:555 gnutls_tpm2_ibm.c:512 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:569 gnutls_tpm2_ibm.c:523 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:54 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:226 #, c-format msgid "%s\n" msgstr "" #: gpst.c:229 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:417 #, c-format msgid "Unknown ESP %s algorithm: %s" msgstr "" #: gpst.c:477 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: gpst.c:483 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:487 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:498 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:551 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:560 oncp.c:835 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: gpst.c:627 msgid "ESP disabled" msgstr "" #: gpst.c:629 msgid "No ESP keys received" msgstr "" #: gpst.c:631 msgid "ESP support not available in this build" msgstr "" #: gpst.c:635 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:680 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:702 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:711 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:719 #, c-format msgid "Got inappropriate HTTP GET-tunnel response: %.*s\n" msgstr "" #: gpst.c:861 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" "VPN connectivity may be disabled or limited without HIP report submission.\n" "You need to provide a --csd-wrapper argument with the HIP report submission " "script.\n" msgstr "" #: gpst.c:871 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:900 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:905 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:911 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:913 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:942 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:966 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:972 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:999 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1015 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1051 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1072 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1082 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1086 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1092 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: gpst.c:1101 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1109 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1157 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1162 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1182 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1202 #, c-format msgid "Sending data packet of %d bytes\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1165 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "" #: http.c:319 msgid "No memory for allocating cookies\n" msgstr "" #: http.c:394 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "" #: http.c:400 #, c-format msgid "Got HTTP response: %s\n" msgstr "Отримано відповідь HTTP: %s\n" #: http.c:408 msgid "Error processing HTTP response\n" msgstr "" #: http.c:415 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "" #: http.c:435 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Запропоновано некоректну куку: %s\n" #: http.c:454 msgid "SSL certificate authentication failed\n" msgstr "" #: http.c:485 #, c-format msgid "Response body has negative size (%d)\n" msgstr "" #: http.c:496 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "" #. Now the body, if there is one #: http.c:515 #, c-format msgid "HTTP body %s (%d)\n" msgstr "" #: http.c:529 http.c:556 msgid "Error reading HTTP response body\n" msgstr "" #: http.c:542 msgid "Error fetching chunk header\n" msgstr "" #: http.c:566 msgid "Error fetching HTTP response body\n" msgstr "" #: http.c:569 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "" #: http.c:581 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "" #: http.c:708 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "" #: http.c:732 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "" #: http.c:760 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "" #: http.c:973 oncp.c:591 #, c-format msgid "Unexpected %d result from server\n" msgstr "" #: http.c:1021 msgid "request granted" msgstr "" #: http.c:1022 msgid "general failure" msgstr "загальна помилка" #: http.c:1023 msgid "connection not allowed by ruleset" msgstr "з’єднання заборонено набором правил" #: http.c:1024 msgid "network unreachable" msgstr "мережа недоступна" #: http.c:1025 msgid "host unreachable" msgstr "вузол недоступний" #: http.c:1026 msgid "connection refused by destination host" msgstr "у з’єднанні відмовлено вузлом призначення" #: http.c:1027 msgid "TTL expired" msgstr "Завершився строк дії TTL" #: http.c:1028 msgid "command not supported / protocol error" msgstr "команда не підтримується / помилка у протоколі" #: http.c:1029 msgid "address type not supported" msgstr "тип адреси не підтримується" #: http.c:1039 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1047 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1062 http.c:1118 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" #: http.c:1070 http.c:1125 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" #: http.c:1077 http.c:1131 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" #: http.c:1083 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1087 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1143 http.c:1150 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1156 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1163 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1170 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1176 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "" #: http.c:1191 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" #: http.c:1199 http.c:1241 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "" #: http.c:1205 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "" #: http.c:1213 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "" #: http.c:1217 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "" #: http.c:1234 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "" #: http.c:1257 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "" #: http.c:1292 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "" #: http.c:1315 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1334 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "" #: http.c:1383 msgid "Only http or socks(5) proxies supported\n" msgstr "" #: library.c:112 msgid "Cisco AnyConnect or openconnect" msgstr "" #: library.c:113 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "" #: library.c:129 msgid "Juniper Network Connect" msgstr "" #: library.c:130 msgid "Compatible with Juniper Network Connect / Pulse Secure SSL VPN" msgstr "" #: library.c:148 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:149 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:211 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:233 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "" #: library.c:656 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "" #: library.c:662 msgid "Only https:// permitted for server URL\n" msgstr "" #: library.c:1056 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "" #: library.c:1085 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" #: library.c:1146 msgid "No form handler; cannot authenticate.\n" msgstr "" #: main.c:340 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:353 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:388 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:401 #, c-format msgid "fgetws() failed: %s\n" msgstr "" #: main.c:416 main.c:429 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:423 main.c:689 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "" #: main.c:584 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:593 #, c-format msgid "Using OpenSSL. Features present:" msgstr "" #: main.c:595 #, c-format msgid "Using GnuTLS. Features present:" msgstr "" #: main.c:608 msgid "OpenSSL ENGINE not present" msgstr "" #: main.c:647 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" #: main.c:657 #, c-format msgid "Supported protocols:" msgstr "" #: main.c:659 main.c:675 msgid " (default)" msgstr "" #: main.c:672 msgid "Set VPN protocol" msgstr "" #: main.c:713 msgid "fgets (stdin)" msgstr "" #: main.c:754 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:760 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:780 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "" #: main.c:793 #, c-format msgid "Usage: openconnect [options] \n" msgstr "" #: main.c:794 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" #: main.c:796 msgid "Read options from config file" msgstr "" #: main.c:797 msgid "Report version number" msgstr "" #: main.c:798 msgid "Display help text" msgstr "" #: main.c:802 msgid "Authentication" msgstr "" #: main.c:803 msgid "Set login username" msgstr "" #: main.c:804 msgid "Disable password/SecurID authentication" msgstr "" #: main.c:805 msgid "Do not expect user input; exit if it is required" msgstr "" #: main.c:806 msgid "Read password from standard input" msgstr "" #: main.c:807 msgid "Choose authentication login selection" msgstr "" #: main.c:808 msgid "Provide authentication form responses" msgstr "" #: main.c:809 msgid "Use SSL client certificate CERT" msgstr "" #: main.c:810 msgid "Use SSL private key file KEY" msgstr "" #: main.c:811 msgid "Warn when certificate lifetime < DAYS" msgstr "" #: main.c:812 msgid "Set login usergroup" msgstr "" #: main.c:813 msgid "Set key passphrase or TPM SRK PIN" msgstr "" #: main.c:814 msgid "Key passphrase is fsid of file system" msgstr "" #: main.c:815 msgid "Software token type: rsa, totp or hotp" msgstr "" #: main.c:816 msgid "Software token secret" msgstr "" #: main.c:818 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" #: main.c:821 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:824 msgid "Server validation" msgstr "" #: main.c:825 msgid "Server's certificate SHA1 fingerprint" msgstr "" #: main.c:826 msgid "Do not require server SSL cert to be valid" msgstr "" #: main.c:827 msgid "Disable default system certificate authorities" msgstr "" #: main.c:828 msgid "Cert file for server verification" msgstr "" #: main.c:830 msgid "Internet connectivity" msgstr "" #: main.c:831 msgid "Set proxy server" msgstr "" #: main.c:832 msgid "Set proxy authentication methods" msgstr "" #: main.c:833 msgid "Disable proxy" msgstr "" #: main.c:834 msgid "Use libproxy to automatically configure proxy" msgstr "" #: main.c:836 msgid "(NOTE: libproxy disabled in this build)" msgstr "" #: main.c:838 msgid "Connection retry timeout in seconds" msgstr "" #: main.c:839 msgid "Use IP when connecting to HOST" msgstr "" #: main.c:840 msgid "copy TOS / TCLASS when using DTLS" msgstr "" #: main.c:841 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:843 msgid "Authentication (two-phase)" msgstr "" #: main.c:844 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:845 msgid "Read cookie from standard input" msgstr "" #: main.c:846 msgid "Authenticate only and print login info" msgstr "" #: main.c:847 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:848 msgid "Print cookie before connecting" msgstr "" #: main.c:851 msgid "Process control" msgstr "" #: main.c:852 msgid "Continue in background after startup" msgstr "" #: main.c:853 msgid "Write the daemon's PID to this file" msgstr "" #: main.c:854 msgid "Drop privileges after connecting" msgstr "" #: main.c:857 msgid "Logging (two-phase)" msgstr "" #: main.c:859 msgid "Use syslog for progress messages" msgstr "" #: main.c:861 msgid "More output" msgstr "" #: main.c:862 msgid "Less output" msgstr "" #: main.c:863 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "" #: main.c:864 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:866 msgid "VPN configuration script" msgstr "" #: main.c:867 msgid "Use IFNAME for tunnel interface" msgstr "" #: main.c:868 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" #: main.c:869 msgid "default" msgstr "типовий" #: main.c:871 msgid "Pass traffic to 'script' program, not tun" msgstr "" #: main.c:874 msgid "Tunnel control" msgstr "" #: main.c:875 msgid "Do not ask for IPv6 connectivity" msgstr "" #: main.c:876 msgid "XML config file" msgstr "" #: main.c:877 msgid "Request MTU from server (legacy servers only)" msgstr "" #: main.c:878 msgid "Indicate path MTU to/from server" msgstr "" #: main.c:879 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:880 msgid "Disable all compression" msgstr "" #: main.c:881 msgid "Set minimum Dead Peer Detection interval" msgstr "" #: main.c:882 msgid "Require perfect forward secrecy" msgstr "" #: main.c:883 msgid "Disable DTLS and ESP" msgstr "" #: main.c:884 msgid "OpenSSL ciphers to support for DTLS" msgstr "" #: main.c:885 msgid "Set packet queue limit to LEN pkts" msgstr "" #: main.c:887 msgid "Local system information" msgstr "" #: main.c:888 msgid "HTTP header User-Agent: field" msgstr "" #: main.c:889 msgid "Local hostname to advertise to server" msgstr "" #: main.c:890 msgid "OS type (linux,linux-64,win,...) to report" msgstr "" #: main.c:891 msgid "reported version string during authentication" msgstr "" #: main.c:892 msgid "default:" msgstr "" #: main.c:895 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:896 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:897 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:900 msgid "Server bugs" msgstr "" #: main.c:901 msgid "Disable HTTP connection re-use" msgstr "" #: main.c:902 msgid "Do not attempt XML POST authentication" msgstr "" #: main.c:924 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:997 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "" #: main.c:1037 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "" #: main.c:1047 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "" #: main.c:1051 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "" #: main.c:1076 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "" #: main.c:1086 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "" #: main.c:1130 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "" #: main.c:1140 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:1147 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:1157 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "" #: main.c:1215 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" #: main.c:1223 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "" #: main.c:1239 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1260 #, c-format msgid "Missing colon in resolve option\n" msgstr "" #: main.c:1265 #, c-format msgid "Failed to allocate memory\n" msgstr "" #: main.c:1349 main.c:1358 #, c-format msgid "MTU %d too small\n" msgstr "" #: main.c:1388 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" #: main.c:1394 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" #: main.c:1411 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "" #: main.c:1425 #, c-format msgid "OpenConnect version %s\n" msgstr "" #: main.c:1463 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "" #: main.c:1473 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "" #: main.c:1506 #, c-format msgid "Too many arguments on command line\n" msgstr "" #: main.c:1509 #, c-format msgid "No server specified\n" msgstr "" #: main.c:1525 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" #: main.c:1555 #, c-format msgid "Error opening cmd pipe\n" msgstr "" #: main.c:1588 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "" #: main.c:1609 #, c-format msgid "Creating SSL connection failed\n" msgstr "" #: main.c:1625 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:1633 #, c-format msgid "Connected as %s%s%s, using SSL%s%s, with %s%s%s %s\n" msgstr "" #: main.c:1639 msgid "disabled" msgstr "" #: main.c:1639 msgid "in progress" msgstr "" #: main.c:1643 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" #: main.c:1645 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "" #: main.c:1658 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "" #: main.c:1670 #, c-format msgid "Continuing in background; pid %d\n" msgstr "" #: main.c:1687 msgid "User requested reconnect\n" msgstr "" #: main.c:1695 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "" #: main.c:1699 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:1703 msgid "User cancelled (SIGINT/SIGTERM); exiting.\n" msgstr "" #: main.c:1707 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "" #: main.c:1711 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:1730 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "" #: main.c:1738 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "" #: main.c:1797 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "" #: main.c:1816 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" #: main.c:1819 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" #: main.c:1820 #, c-format msgid " --servercert %s\n" msgstr "" #: main.c:1825 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" #: main.c:1826 main.c:1844 msgid "no" msgstr "ні" #: main.c:1826 main.c:1832 msgid "yes" msgstr "так" #: main.c:1853 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:1887 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:1890 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "" #: main.c:1911 msgid "User input required in non-interactive mode\n" msgstr "" #: main.c:2149 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:2157 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:2203 main.c:2224 #, c-format msgid "Soft token string is invalid\n" msgstr "" #: main.c:2206 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "" #: main.c:2209 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "" #: main.c:2212 #, c-format msgid "General failure in libstoken\n" msgstr "" #: main.c:2227 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "" #: main.c:2230 #, c-format msgid "General failure in liboath\n" msgstr "" #: main.c:2241 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2244 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2247 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: mainloop.c:127 #, c-format msgid "Set up tun script failed\n" msgstr "" #: mainloop.c:134 #, c-format msgid "Set up tun device failed\n" msgstr "" #: mainloop.c:265 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:273 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "" #: mainloop.c:294 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:978 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:982 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:565 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:160 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:166 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:175 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:186 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:201 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:210 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:219 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:232 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:254 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:274 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:297 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:316 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:327 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:335 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:342 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:350 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:358 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:366 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:374 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:383 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:395 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:473 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:490 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:496 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:512 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:577 oncp.c:609 oncp.c:747 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:618 oncp.c:783 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:631 oncp.c:666 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:636 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:643 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:670 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:683 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:692 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "" #: oncp.c:698 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "" #: oncp.c:705 msgid "Failed to read continuation record length\n" msgstr "" #: oncp.c:711 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "" #: oncp.c:720 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "" #: oncp.c:726 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "" #: oncp.c:767 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:776 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:829 msgid "new incoming" msgstr "" #: oncp.c:830 msgid "new outgoing" msgstr "" #: oncp.c:855 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:864 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:868 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:874 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:969 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:972 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:991 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1053 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1058 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1073 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1134 msgid "Sent ESP enable control packet\n" msgstr "" #: oncp.c:1268 msgid "Logout successful.\n" msgstr "" #: openconnect-internal.h:1119 openconnect-internal.h:1127 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "" #: openssl-dtls.c:365 msgid "Initialise DTLSv1 CTX failed\n" msgstr "" #: openssl-dtls.c:378 msgid "Set DTLS CTX version failed\n" msgstr "" #: openssl-dtls.c:395 msgid "Failed to generate DTLS key\n" msgstr "" #: openssl-dtls.c:413 msgid "Set DTLS cipher list failed\n" msgstr "" #: openssl-dtls.c:439 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:460 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: openssl-dtls.c:493 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:566 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "" #: openssl-dtls.c:603 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" #: openssl-dtls.c:654 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" #: openssl-dtls.c:661 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "" #: openssl-esp.c:87 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:101 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:157 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:202 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:210 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:241 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:43 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:49 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "" #: openssl-pkcs11.c:269 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:272 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:275 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:279 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:286 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:300 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:306 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:342 openssl-pkcs11.c:565 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:349 openssl-pkcs11.c:575 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:383 openssl-pkcs11.c:617 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:393 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "" #: openssl-pkcs11.c:401 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:412 openssl.c:713 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl-pkcs11.c:458 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:464 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:497 msgid "Certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:503 openssl-pkcs11.c:526 msgid "Certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:506 msgid "Checking EC key matches cert\n" msgstr "" #: openssl-pkcs11.c:510 msgid "Failed to allocate signature buffer\n" msgstr "" #: openssl-pkcs11.c:520 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" #: openssl-pkcs11.c:638 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "" #: openssl-pkcs11.c:649 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:678 msgid "Add key from PKCS#11 failed\n" msgstr "" #: openssl-pkcs11.c:710 openssl-pkcs11.c:716 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:147 msgid "Failed to write to SSL socket\n" msgstr "Не вдалося виконати читання до сокета SSL\n" #: openssl.c:197 openssl.c:263 msgid "Failed to read from SSL socket\n" msgstr "" #: openssl.c:292 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" #: openssl.c:317 #, c-format msgid "SSL_write failed: %d\n" msgstr "" #: openssl.c:389 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:465 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "" #: openssl.c:498 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "" #: openssl.c:548 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:563 msgid "PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:572 msgid "PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:577 msgid "PKCS#12" msgstr "" #: openssl.c:600 msgid "Can't load TPM engine.\n" msgstr "" #: openssl.c:606 msgid "Failed to init TPM engine\n" msgstr "" #: openssl.c:616 msgid "Failed to set TPM SRK password\n" msgstr "" #: openssl.c:630 msgid "Failed to load TPM private key\n" msgstr "" #: openssl.c:636 msgid "Add key from TPM failed\n" msgstr "" #: openssl.c:687 openssl.c:835 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "" #: openssl.c:697 msgid "Loading certificate failed\n" msgstr "" #: openssl.c:735 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:748 msgid "PEM file" msgstr "" #: openssl.c:777 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "" #: openssl.c:802 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:808 msgid "Loading private key failed (see above errors)\n" msgstr "" #: openssl.c:858 msgid "Failed to load X509 certificate from keystore\n" msgstr "" #: openssl.c:864 msgid "Failed to use X509 certificate from keystore\n" msgstr "" #: openssl.c:896 msgid "Failed to use private key from keystore\n" msgstr "" #: openssl.c:912 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "" #: openssl.c:936 openssl.c:951 openssl.c:972 openssl.c:1038 msgid "Loading private key failed\n" msgstr "" #: openssl.c:1032 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1049 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "" #: openssl.c:1203 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "" #: openssl.c:1210 #, c-format msgid "No match for altname '%s'\n" msgstr "" #: openssl.c:1224 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" #: openssl.c:1235 openssl.c:1381 #, c-format msgid "Matched %s address '%s'\n" msgstr "" #: openssl.c:1242 #, c-format msgid "No match for %s address '%s'\n" msgstr "" #: openssl.c:1284 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "" #: openssl.c:1289 #, c-format msgid "Matched URI '%s'\n" msgstr "" #: openssl.c:1300 #, c-format msgid "No match for URI '%s'\n" msgstr "" #: openssl.c:1315 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" #: openssl.c:1323 msgid "No subject name in peer cert!\n" msgstr "" #: openssl.c:1343 msgid "Failed to parse subject name in peer cert\n" msgstr "" #: openssl.c:1350 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "" #: openssl.c:1355 openssl.c:1389 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "" #: openssl.c:1451 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "" #: openssl.c:1589 msgid "Error in client cert notAfter field\n" msgstr "" #: openssl.c:1602 msgid "" msgstr "" #: openssl.c:1655 msgid "Create TLSv1 CTX failed\n" msgstr "" #: openssl.c:1674 msgid "SSL certificate and key do not match\n" msgstr "" #: openssl.c:1719 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "" #: openssl.c:1752 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "" #: openssl.c:1812 msgid "SSL connection failure\n" msgstr "" #: openssl.c:1973 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:130 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "" #: script.c:134 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "" #: script.c:507 script.c:555 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "" #: script.c:562 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "" #: script.c:570 #, c-format msgid "Script '%s' returned error %d\n" msgstr "" #: ssl.c:108 msgid "Socket connect cancelled\n" msgstr "" #: ssl.c:217 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "" #: ssl.c:221 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "" #: ssl.c:289 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Проксі від libproxy: %s://%s:%d/\n" #: ssl.c:317 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "" #: ssl.c:326 ssl.c:451 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:341 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "" #: ssl.c:342 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "" #: ssl.c:362 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "" #: ssl.c:374 msgid "Failed to allocate sockaddr storage\n" msgstr "" #: ssl.c:416 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "" #: ssl.c:434 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:446 #, c-format msgid "Failed to connect to host %s\n" msgstr "" #: ssl.c:465 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:536 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:564 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:575 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:603 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:694 msgid "No error" msgstr "Немає помилок" #: ssl.c:695 msgid "Keystore locked" msgstr "" #: ssl.c:696 msgid "Keystore uninitialized" msgstr "Неініціалізоване сховище ключів" #: ssl.c:697 msgid "System error" msgstr "Системна помилка" #: ssl.c:698 msgid "Protocol error" msgstr "Помилка протоколу" #: ssl.c:699 msgid "Permission denied" msgstr "Відмовлено у доступі" #: ssl.c:700 msgid "Key not found" msgstr "Ключ не знайдено" #: ssl.c:701 msgid "Value corrupted" msgstr "Значення пошкоджено" #: ssl.c:702 msgid "Undefined action" msgstr "Невизначена дія" #: ssl.c:706 msgid "Wrong password" msgstr "Неправильний пароль" #: ssl.c:707 msgid "Unknown error" msgstr "Невідома помилка" #: ssl.c:896 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:931 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:950 msgid "Open UDP socket" msgstr "" #: ssl.c:981 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:989 msgid "Bind UDP socket" msgstr "" #: ssl.c:996 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:1034 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:1038 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "" #: stoken.c:82 msgid "Device ID:" msgstr "" #: stoken.c:89 msgid "Password:" msgstr "" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "" #: stoken.c:185 msgid "Enter software token PIN." msgstr "" #: stoken.c:189 msgid "PIN:" msgstr "" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "" #: tun-win32.c:76 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:139 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "" #: tun-win32.c:154 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" #: tun-win32.c:186 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" #: tun-win32.c:200 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "" #: tun-win32.c:231 #, c-format msgid "Failed to open %s\n" msgstr "" #: tun-win32.c:236 #, c-format msgid "Opened tun device %s\n" msgstr "" #: tun-win32.c:244 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:250 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:271 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:283 tun-win32.c:406 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:316 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:321 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:335 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:358 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:368 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:371 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:423 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "" #: tun.c:92 msgid "Can't push IP" msgstr "" #: tun.c:102 msgid "Can't set ifname" msgstr "" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "" #: tun.c:139 msgid "open /dev/tun" msgstr "" #: tun.c:145 msgid "Failed to create new tun" msgstr "" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "" #: tun.c:205 msgid "open net" msgstr "" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Не вдалося відкрити %s: %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "" #: tun.c:479 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:484 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:488 msgid "setpgid" msgstr "" #: tun.c:493 msgid "execl" msgstr "" #: tun.c:498 msgid "(script)" msgstr "(скрипт)" #: tun.c:566 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:174 msgid "select applet command" msgstr "" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:274 msgid "unlock command" msgstr "" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:412 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:619 msgid "calculate command" msgstr "" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-8.05/po/pt_BR.po0000664000076400007640000042675313536301641017544 0ustar00dwoodhoudwoodhou00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2019-09-11 14:49+0100\n" "PO-Revision-Date: 2013-01-18 22:04+0000\n" "Last-Translator: David Woodhouse \n" "Language-Team: Portuguese (Brazil) \n" "Language: pt_BR\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n > 1);\n" #: auth-globalprotect.c:124 #, c-format msgid "" "SAML login is required via %s to this URL:\n" "\t%s" msgstr "" "Login SAML é exigido via %s para essa URL:\n" "\t%s" #: auth-globalprotect.c:126 msgid "Please enter your username and password" msgstr "Por favor, insira seu nome de usuário e senha" #: auth-globalprotect.c:135 msgid "Username" msgstr "Nome de usuário" #: auth-globalprotect.c:150 msgid "Password" msgstr "Senha" #: auth-globalprotect.c:197 msgid "Challenge: " msgstr "Desafio: " #: auth-globalprotect.c:276 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "Login GlobalProtect retornou %s=%s (esperava %s)\n" #: auth-globalprotect.c:282 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "Login GlobalProtect retornou %s vazio ou faltando\n" #: auth-globalprotect.c:288 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "Login GlobalProtect retornou %s=%s\n" #: auth-globalprotect.c:331 msgid "Please select GlobalProtect gateway." msgstr "Por favor, selecione o gateway GlobalProtect." #: auth-globalprotect.c:341 msgid "GATEWAY:" msgstr "GATEWAY:" #. each entry looks like Label #: auth-globalprotect.c:395 #, c-format msgid "%d gateway servers available:\n" msgstr "%d servidores gateway disponíveis:\n" #: auth-globalprotect.c:416 #, c-format msgid " %s (%s)\n" msgstr " %s (%s)\n" #: auth-globalprotect.c:492 auth-juniper.c:730 auth.c:669 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "Falhou ao gerar código de token OTP; desabilitando token\n" #: auth-globalprotect.c:588 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "O servidor não é um portal nem gateway GlobalProtect.\n" #: auth-globalprotect.c:640 oncp.c:1267 msgid "Logout failed.\n" msgstr "Desconexão falhou\n" #: auth-globalprotect.c:642 msgid "Logout successful\n" msgstr "Desconexão feita com sucesso\n" #: auth-juniper.c:142 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "Ignorando item submetido de formulário desconhecido \"%s\"\n" #: auth-juniper.c:153 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "Ignorando item de entrada de formulário desconhecido \"%s\"\n" #: auth-juniper.c:163 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "Descartando opção duplicada \"%s\"\n" #: auth-juniper.c:236 auth.c:408 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Não foi possível lidar com method=\"%s\" e action=\"%s\" da forma\n" #: auth-juniper.c:267 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "Campo de área de texto desconhecida: \"%s\"\n" #: auth-juniper.c:337 msgid "TNCC support not implemented yet on Windows\n" msgstr "Suporte a TNCC não foi implementado ainda no Windows\n" #: auth-juniper.c:359 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "Nenhum cookie DSPREAUTH; não tentar TNCC\n" #: auth-juniper.c:397 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "Falha ao executar script TNCC %s: %s\n" #: auth-juniper.c:411 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "Falha ao alocar memória para comunicação com TNCC\n" #: auth-juniper.c:418 msgid "Failed to send start command to TNCC\n" msgstr "Falha ao enviar comando de início para TNCC\n" #: auth-juniper.c:425 msgid "Sent start; waiting for response from TNCC\n" msgstr "Início enviado; esperando por uma resposta do TNCC\n" #: auth-juniper.c:432 msgid "Failed to read response from TNCC\n" msgstr "Falha ao ler resposta de TNCC\n" #: auth-juniper.c:439 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "Recebida resposta de %s malsucedida de TNCC\n" #: auth-juniper.c:445 msgid "TNCC response 200 OK\n" msgstr "TNCC resposta 200 OK\n" #: auth-juniper.c:452 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "Segunda linha da resposta TNCC: “%s”\n" #: auth-juniper.c:461 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "Obteve novo cookie DSPREAUTH do TNCC: %s\n" #: auth-juniper.c:474 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "Linha não vazia inesperada de TNCC após cookie DSPREAUTH: “%s”\n" #: auth-juniper.c:481 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "Muitas linhas não vazias do TNCC após o cookie DSPREAUTH\n" #: auth-juniper.c:650 msgid "Failed to parse HTML document\n" msgstr "Falha ao analisar documento HTTP\n" #: auth-juniper.c:667 msgid "Failed to find or parse web form in login page\n" msgstr "Falha ao localizar ou analisar formulário web na página de login\n" #: auth-juniper.c:675 msgid "Encountered form with no ID\n" msgstr "Encontrada formulário com nenhum ID\n" #: auth-juniper.c:713 #, c-format msgid "Unknown form ID '%s'\n" msgstr "ID de formulário desconhecido \"%s\"\n" #: auth-juniper.c:716 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "Despejando formulário HTML desconhecido:\n" #: auth.c:96 msgid "Form choice has no name\n" msgstr "Escolha da forma não possui nome\n" #: auth.c:181 #, c-format msgid "name %s not input\n" msgstr "nome %s não inserido\n" #: auth.c:188 msgid "No input type in form\n" msgstr "Nenhum tipo de entrada na forma\n" #: auth.c:200 msgid "No input name in form\n" msgstr "Nenhum nome de entrada na forma\n" #: auth.c:230 #, c-format msgid "Unknown input type %s in form\n" msgstr "Tipo de entrada desconhecida %s na forma\n" #: auth.c:540 gpst.c:214 msgid "Empty response from server\n" msgstr "Resposta vazia do servidor\n" #: auth.c:551 gpst.c:289 msgid "Failed to parse server response\n" msgstr "Falhou ao analisar resposta do servidor\n" #: auth.c:553 gpst.c:291 #, c-format msgid "Response was:%s\n" msgstr "Resposta foi: %s\n" #: auth.c:575 msgid "Received when not expected.\n" msgstr "Recebeu quando não esperava.\n" #: auth.c:603 msgid "XML response has no \"auth\" node\n" msgstr "Resposta XML não possui nó de \"auth\"\n" #: auth.c:636 msgid "Asked for password but '--no-passwd' set\n" msgstr "Requisitou senha, mas \"--no-passwd\" está definido\n" #: auth.c:925 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "Não será baixado perfil XML porque SHA1 já corresponde\n" #: auth.c:931 cstp.c:335 http.c:944 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Falhou ao abrir conexão HTTPS para %s\n" #: auth.c:952 msgid "Failed to send GET request for new config\n" msgstr "Falhou ao enviar requisição GET para nova configuração\n" #: auth.c:976 msgid "Downloaded config file did not match intended SHA1\n" msgstr "Arquivo de configuração baixado não confere com SHA1 esperado\n" #: auth.c:981 msgid "Downloaded new XML profile\n" msgstr "Baixado novo perfil XML\n" #: auth.c:992 auth.c:1044 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" "Erro: A execução do trojan \"Cisco Secure Desktop\" nesta plataforma não " "está implementada ainda.\n" #: auth.c:1003 mainloop.c:144 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "Falha ao definir gid %ld: %s\n" #: auth.c:1010 mainloop.c:151 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "Falha ao definir grupos para %ld: %s\n" #: auth.c:1017 mainloop.c:158 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "Falha ao definir uid %ld: %s\n" #: auth.c:1024 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "Usuário de uid=%ld inválido: %s\n" #: auth.c:1031 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Falhou ao mudar para o diretório inicial do CSD \"%s\": %s\n" #: auth.c:1053 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Erro: O servidor solicitou que nós executemos hostscan de CSD.\n" "Você precisa fornecer um argumento --csd-wrapper adequado.\n" #: auth.c:1060 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Erro. O servidor solicitou baixar e executar um trojan de 'Cisco Secure " "Desktop'.\n" "Esta funcionalidade está desabilitada por padrão por motivos de segurança. " "Então, talvez você queira habilitá-la.\n" #: auth.c:1067 msgid "Trying to run Linux CSD trojan script.\n" msgstr "Tentando executar o script trojan CSD para Linux.\n" #: auth.c:1094 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "O diretório temporário \"%s\" não pode ser escrito: %s\n" #: auth.c:1102 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Falhou ao abrir arquivo de script CSD temporário: %s\n" #: auth.c:1111 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Falhou ao escrever arquivo de script CSD temporário: %s\n" #: auth.c:1141 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Aviso: você está executando um código de CSD inseguro com privilégios de " "root\n" "\t Use a opção de linha de comando \"--csd-user\"\n" #: auth.c:1189 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Falhou ao executar script CSD %s\n" #: auth.c:1221 msgid "Unknown response from server\n" msgstr "Resposta desconhecida do servidor\n" #: auth.c:1342 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" "Servidor requisitou certificado de cliente SSL após um ter sido fornecido\n" #: auth.c:1346 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" "O servidor requisitou um certificado de cliente SSL, mas nenhum foi " "configurado\n" #: auth.c:1362 msgid "XML POST enabled\n" msgstr "XML POST habilitado\n" #: auth.c:1405 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Renovando %s após 1 segundo...\n" #: compat.c:207 #, c-format msgid "(error 0x%lx)" msgstr "(erro 0x%lx)" #: compat.c:210 msgid "(Error while describing error!)" msgstr "(Erro ao descrever erro!)" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "ERRO: Não foi possível inicializar sockets\n" #: cstp.c:112 gpst.c:341 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:134 gpst.c:360 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:281 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" "ERRO CRÍTICO: segredo mestre DTLS está não inicializado. Por favor, relate " "isso.\n" #: cstp.c:312 msgid "Error creating HTTPS CONNECT request\n" msgstr "Erro ao criar requisição de HTTPS CONNECT\n" #: cstp.c:328 http.c:386 msgid "Error fetching HTTPS response\n" msgstr "Erro ao obter resposta HTTPS\n" #: cstp.c:355 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "Serviço VPN indisponível - motivo: %s\n" #: cstp.c:360 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Obteve resposta HTTP CONNECT inapropriável: %s\n" #: cstp.c:367 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Obteve resposta CONNECT: %s\n" #: cstp.c:396 cstp.c:404 msgid "No memory for options\n" msgstr "Sem memória suficiente para as opções\n" #: cstp.c:413 http.c:447 msgid "" msgstr "" #: cstp.c:433 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Session-ID não tem 64 caracteres - tem: \"%s\"\n" #: cstp.c:450 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "X-DTLS-Session-ID é inválido; tem: “%s”\n" #: cstp.c:468 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "DTLS-Content-Encoding desconhecido %s\n" #: cstp.c:510 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "CSTP-Content-Encoding desconhecido %s\n" #: cstp.c:586 msgid "No MTU received. Aborting\n" msgstr "Nenhum MTU foi recebido. Abortando\n" #: cstp.c:594 gpst.c:670 msgid "No IP address received. Aborting\n" msgstr "Nenhum endereço IP recebido. Abortando\n" #: cstp.c:600 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "Configuração IPv6 recebido, mas MTU %d é muito pequeno.\n" #: cstp.c:606 gpst.c:677 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Reconexão deu um endereço IP legado diferente (%s != %s)\n" #: cstp.c:615 gpst.c:686 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "Reconexão deu uma máscara de rede IP legado diferente (%s != %s)\n" #: cstp.c:623 gpst.c:695 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Reconexão deu uma máscara de rede IPv6 diferente (%s != %s)\n" #: cstp.c:631 gpst.c:703 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Reconexão deu um endereço IPv6 diferente (%s != %s)\n" #: cstp.c:639 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP conectado. DPD %d, Keepalive %d\n" #: cstp.c:641 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "Ciphersuite CTSP: %s\n" #: cstp.c:703 msgid "Compression setup failed\n" msgstr "Configuração da compressão falhou\n" #: cstp.c:720 msgid "Allocation of deflate buffer failed\n" msgstr "Alocação da buffer de deflate falhou\n" #: cstp.c:782 msgid "inflate failed\n" msgstr "falhou ao inflar\n" #: cstp.c:805 #, c-format msgid "LZS decompression failed: %s\n" msgstr "Descompressão LZS falhou: %s\n" #: cstp.c:818 msgid "LZ4 decompression failed\n" msgstr "Descompressão LZ4 falhou\n" #: cstp.c:825 #, c-format msgid "Unknown compression type %d\n" msgstr "Tipo de compressão desconhecida %d\n" #: cstp.c:830 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "Recebeu o pacote de dados comprimido %s de %d bytes (era %d)\n" #: cstp.c:850 #, c-format msgid "deflate failed %d\n" msgstr "deflate falhou %d\n" #: cstp.c:923 dtls.c:281 dtls.c:690 esp.c:163 gpst.c:1096 mainloop.c:69 #: oncp.c:914 pulse.c:2297 msgid "Allocation failed\n" msgstr "Alocação falhou\n" #: cstp.c:934 gpst.c:1109 pulse.c:2309 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "Pacote curto recebido (%d bytes)\n" #: cstp.c:947 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Tamanho de pacote inesperado. SSL_read retornou %d, mas o pacote é\n" #: cstp.c:961 msgid "Got CSTP DPD request\n" msgstr "Obtendo requisição DPD de CSTP\n" #: cstp.c:967 msgid "Got CSTP DPD response\n" msgstr "Obteve resposta DPD CSTP\n" #: cstp.c:972 msgid "Got CSTP Keepalive\n" msgstr "Obteve keepalive CSTP\n" #: cstp.c:977 oncp.c:1003 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Recebeu pacote de dados sem compressão de %d bytes\n" #: cstp.c:994 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Recebeu desconexão do servidor: %02x \"%s\"\n" #: cstp.c:997 msgid "Received server disconnect\n" msgstr "Recebeu desconexão do servidor\n" #: cstp.c:1005 msgid "Compressed packet received in !deflate mode\n" msgstr "Pacote comprimido recebido em modo !deflate\n" #: cstp.c:1014 msgid "received server terminate packet\n" msgstr "recebeu pacote de terminação do servidor\n" #: cstp.c:1021 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Pacote desconhecido %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1064 gpst.c:1197 oncp.c:1121 pulse.c:2452 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL não escreveu bytes suficiente! Perguntou por %d, enviou %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1092 oncp.c:1156 pulse.c:2479 msgid "CSTP rekey due\n" msgstr "Renovação da chave CSTP falhou\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1099 oncp.c:1163 pulse.c:2486 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Re-negociação falhou; tentando novo túnel\n" #: cstp.c:1110 oncp.c:1174 pulse.c:2497 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "Dead Peer Detection CSTP detectou par morto!\n" #: cstp.c:1114 gpst.c:1221 oncp.c:1091 oncp.c:1178 pulse.c:2422 pulse.c:2502 msgid "Reconnect failed\n" msgstr "Reconexão falhou\n" #: cstp.c:1130 oncp.c:1194 pulse.c:2518 msgid "Send CSTP DPD\n" msgstr "Enviar DPD CSTP\n" #: cstp.c:1142 oncp.c:1205 pulse.c:2530 msgid "Send CSTP Keepalive\n" msgstr "Enviar keepalive CSTP\n" #: cstp.c:1167 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "Enviando pacote de dados comprimido de %d bytes (era %d)\n" #: cstp.c:1178 oncp.c:1239 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Enviando pacote de %d bytes comm dados não comprimidos\n" #: cstp.c:1217 #, c-format msgid "Send BYE packet: %s\n" msgstr "Enviar pacote BYE: %s\n" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "Tentando autenticação Digest ao proxy\n" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "Tentando autenticação Digest ao servidor \"%s\"\n" #: dtls.c:113 msgid "DTLS connection attempted with an existing fd\n" msgstr "Conexão DTLS tentada com um descritor de arquivo existente\n" #: dtls.c:119 msgid "No DTLS address\n" msgstr "Nenhum endereço DTLS\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:126 msgid "Server offered no DTLS cipher option\n" msgstr "O servidor ofereceu nenhuma opção de cifra DTLS\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:133 msgid "No DTLS when connected via proxy\n" msgstr "Nenhum DTLS quando conectado via proxy\n" #: dtls.c:200 #, c-format msgid "DTLS option %s : %s\n" msgstr "Opção DTLS %s: %s\n" #: dtls.c:239 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS inicializado. DPD %d, Keepalive %d\n" #: dtls.c:265 msgid "Attempt new DTLS connection\n" msgstr "Tentar nova conexão DTLS\n" #: dtls.c:292 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Recebido pacote DTLS 0x%02x de %d bytes\n" #: dtls.c:306 msgid "Got DTLS DPD request\n" msgstr "Obteve requisição de DPD DTLS\n" #: dtls.c:312 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Falhou ao enviar resposta de DPD. Esperar desconexão\n" #: dtls.c:316 msgid "Got DTLS DPD response\n" msgstr "Obteve resposta de DPD DTLS\n" #: dtls.c:320 msgid "Got DTLS Keepalive\n" msgstr "Obteve keepalive DTLS\n" #: dtls.c:326 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" "O pacote comprimido DTLS recebido quando a compressão não está habilitada\n" #: dtls.c:334 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Tipo de pacote DTLS desconhecido %02x, tamanho %d\n" #: dtls.c:356 msgid "DTLS rekey due\n" msgstr "Renovação da chave DTLS expirou\n" #: dtls.c:363 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "A re-negociação DTLS falhou - reconectando.\n" #: dtls.c:372 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "Dead Peer Detection DTLS detectou par morto!\n" #: dtls.c:378 msgid "Send DTLS DPD\n" msgstr "Enviar DPD DTLS\n" #: dtls.c:383 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Falha ao enviar requisição DPD. Esperar desconexão\n" #: dtls.c:396 msgid "Send DTLS Keepalive\n" msgstr "Enviar keepalive DTLS\n" #: dtls.c:401 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Falhou ao enviar requisição de keepalive. Esperar desconexão\n" #: dtls.c:432 tun.c:541 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Pacote desconhecido (tamanho %d) recebido: %02x %02x %02x %02x...\n" #: dtls.c:439 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "TOS isso: %d, TOS último: %d\n" #: dtls.c:443 msgid "UDP setsockopt" msgstr "setsockopt UDP" #: dtls.c:474 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "DTLS obteve erro de escrita %d. Voltando para SSL\n" #: dtls.c:488 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "DTLS obteve erro de escrita: %s. Voltando para SSL\n" #: dtls.c:503 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "Enviou pacote DTLS de %d bytes - Envio de DTLS retornou %d\n" #: dtls.c:551 #, c-format msgid "Initiating MTU detection (min=%d, max=%d)\n" msgstr "Iniciando detecção de MTU (min=%d, máx=%d)\n" #: dtls.c:585 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "Enviando sonda DPD de MTU (%u bytes)\n" #: dtls.c:589 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "Falha ao enviar requisição DPD (%d %d)\n" #: dtls.c:612 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" "Tempo muito longo no loop de detecção de MTU; presumindo MTU negociado.\n" #: dtls.c:616 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "Tempo muito longo no loop de detecção de MTU; MTU definido para %d.\n" #: dtls.c:633 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "Recebido pacote (%.2x) inesperado na detecção de MTU; ignorando.\n" #: dtls.c:640 #, c-format msgid "No response to size %u after %d tries; declare MTU is %u\n" msgstr "" "Nenhuma resposta para tamanho %u após %d tentativas; MTU declarado é %u\n" #: dtls.c:647 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "Falha ao receber requisição DPD (%d)\n" #: dtls.c:651 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "Recebida sonda DPD de MTU (%u bytes)\n" #: dtls.c:701 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "Detectado MTU de %d bytes (era %d)\n" #: dtls.c:704 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "Nenhuma alteração no MTU após detecção (era %d)\n" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "Aceitando pacote ESP esperado com seq %u\n" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" "Aceitando pacote ESP depois do esperado com seq %u (esperava %)\n" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "Descartando pacote ESP antigo com seq %u (esperava %)\n" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "Tolerando pacote ESP antigo com seq %u (esperava %)\n" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "Descartando replay de pacote ESP com seq %u\n" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "Tolerando replay de pacote ESP com seq %u\n" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "Aceitando pacote ESP problemático com seq %u (esperava %)\n" #: esp.c:66 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "Parâmetros para ESP %s: SPI 0x%08x\n" #: esp.c:69 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "Criptografia ESP tipo %s chave 0x%s\n" #: esp.c:72 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "Autenticação ESP tipo %s com chave 0x%s\n" #: esp.c:90 msgid "incoming" msgstr "entrada" #: esp.c:91 msgid "outgoing" msgstr "saída" #: esp.c:93 esp.c:147 msgid "Send ESP probes\n" msgstr "Enviar sondas ESP\n" #: esp.c:172 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "Recebido pacote ESP de %d bytes\n" #: esp.c:189 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "Recebido pacote ESP de SPI antigo 0x%x, seq %u\n" #: esp.c:195 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "Recebido pacote ESP com SPI 0x%08x inválido\n" #: esp.c:208 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "Recebido pacote ESP com tipo de carga não reconhecida %02x\n" #: esp.c:215 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "Comprimento de preenchimento %02x inválido no ESP\n" #: esp.c:227 msgid "Invalid padding bytes in ESP\n" msgstr "Bytes de preenchimento inválidos em ESP\n" #: esp.c:236 msgid "ESP session established with server\n" msgstr "Sessão ESP estabelecida com o servidor\n" #: esp.c:247 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "Falha ao alocar memória para descriptografar pacote ESP\n" #: esp.c:253 msgid "LZO decompression of ESP packet failed\n" msgstr "Descompressão LZO de pacote ESP falhou\n" #: esp.c:259 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "LZO descomprimiu %d bytes em %d\n" #: esp.c:273 msgid "Rekey not implemented for ESP\n" msgstr "Renovação de chave não implementada para ESP\n" #: esp.c:277 msgid "ESP detected dead peer\n" msgstr "ESP detectou par morto\n" #: esp.c:285 msgid "Send ESP probes for DPD\n" msgstr "Enviar sondas ESP para DPD\n" #: esp.c:292 msgid "Keepalive not implemented for ESP\n" msgstr "Keepalive não implementado para ESP\n" #: esp.c:346 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "Reenfileirando envio falho de ESP:%s\n" #: esp.c:353 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "Falha ao enviar pacote ESP: %s\n" #: esp.c:359 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "Enviado pacote ESP de %d bytes\n" #: esp.c:430 msgid "Failed to generate random keys for ESP\n" msgstr "Falha ao gerar chaves aleatórias para ESP\n" #: esp.c:437 msgid "Failed to generate initial IV for ESP\n" msgstr "Falha ao gerar IV inicial para ESP\n" #: gnutls-dtls.c:190 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "Adiando a retomada de DTLS até CSTP gerar uma PSK\n" #: gnutls-dtls.c:198 msgid "Failed to generate DTLS priority string\n" msgstr "Falha ao gerar string de prioridade DTLS\n" #: gnutls-dtls.c:207 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "Falha ao inicializar DTLS: %s\n" #: gnutls-dtls.c:216 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "Falha ao definir a prioridade DTLS: “%s”: %s\n" #: gnutls-dtls.c:240 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "Falha ao alocar credenciais: %s\n" #: gnutls-dtls.c:253 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "Falha ao gerar chave DTLS: %s\n" #: gnutls-dtls.c:267 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "Falha ao definir a chave DTLS: %s\n" #: gnutls-dtls.c:275 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "Falha ao definir a credenciais PSK DTLS: %s\n" #: gnutls-dtls.c:309 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Parâmetros DTLS desconhecidos para a CipherSuite requisitada \"%s\"\n" #: gnutls-dtls.c:324 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "Falhou ao definir a prioridade DTLS: %s\n" #: gnutls-dtls.c:345 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Falhou ao definir os parâmetros de sessão DTLS: %s\n" #: gnutls-dtls.c:373 openssl-dtls.c:574 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "MTU %d do par é muito pequeno para permitir DTLS\n" #: gnutls-dtls.c:382 openssl-dtls.c:585 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "MTU de DTLS reduzido para %d\n" #: gnutls-dtls.c:392 openssl-dtls.c:594 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" "Resumo de sessão DTLS falhou; possível ataque MITM. Desabilitando DTLS.\n" #: gnutls-dtls.c:405 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Falhou ao definir o MTU DTLS: %s\n" #: gnutls-dtls.c:416 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "Conexão DTLS estabelecida (usando GnuTLS). Ciphersuite %s.\n" #: gnutls-dtls.c:422 openssl-dtls.c:612 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "Compressão de conexão DTLS usando %s.\n" #: gnutls-dtls.c:437 openssl-dtls.c:693 openssl-dtls.c:697 msgid "DTLS handshake timed out\n" msgstr "Limite de tempo para negociação DTLS\n" #: gnutls-dtls.c:440 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "Negociação DTLS falhou: %s\n" #: gnutls-dtls.c:444 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(Há algum firewall impedindo que você envie pacotes UDP?)\n" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "Falha ao inicializar cifra ESP: %s\n" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "Falha ao inicializar HMAC ESP: %s\n" #: gnutls-esp.c:128 gnutls-esp.c:171 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "Falha ao calcular HMAC para pacote ESP: %s\n" #: gnutls-esp.c:135 openssl-esp.c:166 msgid "Received ESP packet with invalid HMAC\n" msgstr "Recebido pacote ESP com HMAC inválido\n" #: gnutls-esp.c:147 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "Descriptografia de pacote ESP falhou: %s\n" #: gnutls-esp.c:163 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "Falha ao criptografar pacote ESP: %s\n" #: gnutls.c:95 openssl.c:154 msgid "SSL write cancelled\n" msgstr "Escrita SSL cancelada\n" #: gnutls.c:99 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "Falhou ao escrever em socket SSL: %s\n" #: gnutls.c:145 gnutls.c:237 openssl.c:204 openssl.c:271 msgid "SSL read cancelled\n" msgstr "Leitura SSL cancelada\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:158 msgid "SSL socket closed uncleanly\n" msgstr "Socket SSL fechado inadequadamente\n" #: gnutls.c:168 gnutls.c:246 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "Falhou ao ler de socket SSL: %s\n" #: gnutls.c:266 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "Erro de leitura SSL: %s - reconectando.\n" #: gnutls.c:302 #, c-format msgid "SSL send failed: %s\n" msgstr "Falha de leitura SSL: %s\n" #: gnutls.c:315 msgid "Could not extract expiration time of certificate\n" msgstr "Não foi possível extrair o tempo de expiração do certificado\n" #: gnutls.c:320 openssl.c:1592 msgid "Client certificate has expired at" msgstr "Certificado do cliente expirou em" #: gnutls.c:322 openssl.c:1597 msgid "Client certificate expires soon at" msgstr "Certificado do cliente expira em breve em" #: gnutls.c:371 openssl.c:771 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Falhou ao carregar item \"%s\" da keystore: %s\n" #: gnutls.c:384 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Falhou ao abrir o arquivo de chave/certificado %s: %s\n" #: gnutls.c:391 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Falhou ao obter estado do arquivo de chave/certificado %s: %s\n" #: gnutls.c:400 msgid "Failed to allocate certificate buffer\n" msgstr "Falhou ao alocar buffer do certificado\n" #: gnutls.c:408 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Falha ao ler certificado para a memória: %s\n" #: gnutls.c:439 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Falhou ao configurar estrutura de dados PKCS#12: %s\n" #: gnutls.c:462 openssl.c:534 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Falhou ao descriptografar arquivo de certificado PKCS#12\n" #: gnutls.c:466 openssl.c:537 msgid "Enter PKCS#12 pass phrase:" msgstr "Digite uma frase secreta PKCS#12:" #: gnutls.c:489 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Falhou ao processar arquivo PKCS#12: %s\n" #: gnutls.c:501 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Falhou ao ler certificado PKCS#12: %s\n" #: gnutls.c:584 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Importação de certificado X509 falhou: %s\n" #: gnutls.c:594 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Configuração de certificado PKCS#11 falhou: %s\n" #: gnutls.c:628 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Não foi possível inicializar o hash MD5: %s\n" #: gnutls.c:638 #, c-format msgid "MD5 hash error: %s\n" msgstr "Erro no hash MD5: %s\n" #: gnutls.c:696 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "Faltando o cabeçalho DEK-Info: da chave criptografada em OpenSSL\n" #: gnutls.c:703 msgid "Cannot determine PEM encryption type\n" msgstr "Não foi possível determinar o tipo de criptografia de PEM\n" #: gnutls.c:716 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Tipo de criptografia PEM não suportada: %s\n" #: gnutls.c:741 gnutls.c:754 msgid "Invalid salt in encrypted PEM file\n" msgstr "Sal inválido no arquivo PEM criptografado\n" #: gnutls.c:778 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Erro na decodificação base64 de arquivo PEM criptografado: %s\n" #: gnutls.c:786 msgid "Encrypted PEM file too short\n" msgstr "Arquivo PEM criptografado muito curto\n" #: gnutls.c:814 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "Falhou ao inicializar cifra para descriptografar arquivo PEM: %s\n" #: gnutls.c:825 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Falhou ao descriptografar chave PEM: %s\n" #: gnutls.c:877 msgid "Decrypting PEM key failed\n" msgstr "Descriptografia de chave PEM falhou\n" #: gnutls.c:881 gnutls.c:1406 openssl.c:458 msgid "Enter PEM pass phrase:" msgstr "Digita a frase secreta de PEM:" #: gnutls.c:942 msgid "This binary built without system key support\n" msgstr "Esse binário compilado sem suporte a chave do sistema\n" #: gnutls.c:949 msgid "This binary built without PKCS#11 support\n" msgstr "Esse binário compilado sem suporte a PKCS#11\n" #: gnutls.c:993 openssl-pkcs11.c:407 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Usando certificado PKCS#11 %s\n" #: gnutls.c:994 #, c-format msgid "Using system certificate %s\n" msgstr "Usando certificado do sistema %s\n" #: gnutls.c:1012 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Erro no carregamento de certificado de PKCS#11: %s\n" #: gnutls.c:1013 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Erro no carregamento de certificado do sistema: %s\n" #: gnutls.c:1024 openssl.c:827 #, c-format msgid "Using certificate file %s\n" msgstr "Usando arquivo de certificado %s\n" #: gnutls.c:1052 msgid "PKCS#11 file contained no certificate\n" msgstr "O arquivo PKCS#11 continha nenhum certificado\n" #: gnutls.c:1078 msgid "No certificate found in file" msgstr "Nenhum certificado encontrado no arquivo" #: gnutls.c:1083 #, c-format msgid "Loading certificate failed: %s\n" msgstr "O carregamento de certificado falhou: %s\n" #: gnutls.c:1099 #, c-format msgid "Using system key %s\n" msgstr "Usando chave do sistema %s\n" #: gnutls.c:1104 gnutls.c:1272 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Erro na inicialização da estrutura de chave privada: %s\n" #: gnutls.c:1115 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Erro na importação da chave de sistema %s: %s\n" #: gnutls.c:1126 gnutls.c:1220 gnutls.c:1248 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "Tentando a URL de chave PKCS#11 %s\n" #: gnutls.c:1131 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Erro na inicialização da estrutura de chave PKCS#11: %s\n" #: gnutls.c:1260 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Erro na importação da URL PKCS#11 %s: %s\n" #: gnutls.c:1267 openssl-pkcs11.c:644 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Usando chave PKCS#11 %s\n" #: gnutls.c:1282 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" "Erro na importação de chave PKCS#11 para a estrutura de chave privada: %s\n" #: gnutls.c:1300 #, c-format msgid "Using private key file %s\n" msgstr "Usando arquivo de chave privada %s\n" #: gnutls.c:1311 openssl.c:651 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Essa versão de OpenConnect foi compilada sem suporte a TPM\n" #: gnutls.c:1327 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "Essa versão de OpenConnect foi compilada sem suporte a TPM2\n" #: gnutls.c:1348 msgid "Failed to interpret PEM file\n" msgstr "Falhou ao interpretar arquivo PEM\n" #: gnutls.c:1367 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Falhou ao carregar chave privada PKCS#1: %s\n" #: gnutls.c:1380 gnutls.c:1394 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Falhou ao carregar chave privada como PKCS#8: %s\n" #: gnutls.c:1402 gnutls.c:1435 openssl.c:1002 openssl.c:1012 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Falhou ao descriptografar arquivo de certificado PKCS#8\n" #: gnutls.c:1427 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Falhou ao determinar o tipo da chave privada %s\n" #: gnutls.c:1439 openssl.c:1008 msgid "Enter PKCS#8 pass phrase:" msgstr "Digite uma frase secreta PKCS#8:" #: gnutls.c:1455 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Falhou ao obter ID da chave: %s\n" #: gnutls.c:1500 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Erro na assinatura de dados de teste com a chave privada: %s\n" #: gnutls.c:1515 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Erro na validação da assinatura contra certificado: %s\n" #: gnutls.c:1540 msgid "No SSL certificate found to match private key\n" msgstr "Nenhum certificado SSL encontrado para conferir a chave privada\n" #: gnutls.c:1552 openssl.c:560 openssl.c:709 #, c-format msgid "Using client certificate '%s'\n" msgstr "Usando certificado \"%s\" do cliente\n" #: gnutls.c:1559 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "A configuração da lista de revogação de certificados falhou: %s\n" #: gnutls.c:1580 gnutls.c:1590 msgid "Failed to allocate memory for certificate\n" msgstr "Ocorreu falha ao alocar memória para certificado\n" #: gnutls.c:1626 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" "AVISO: GnuTLS retornou certificados de emissor incorreto - a autenticação " "pode falhar!\n" #: gnutls.c:1649 msgid "Got no issuer from PKCS#11\n" msgstr "Nenhum emissor obtido da PKCS#11\n" #: gnutls.c:1654 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "Próxima AC \"%s\" obtida de PKCS11\n" #: gnutls.c:1680 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Falhou em alocar memória para certificados de apoio\n" #: gnutls.c:1703 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Adicionando AC de apoio \"%s\"\n" #: gnutls.c:1725 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" "Chave privada parece não ter suporte a RSA-PSS. Desabilitando TLSv1.3\n" #: gnutls.c:1749 #, c-format msgid "Setting certificate failed: %s\n" msgstr "A configuração de certificado falhou: %s\n" #: gnutls.c:1942 msgid "Server presented no certificate\n" msgstr "O servidor apresentou nenhum certificado\n" #: gnutls.c:1950 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "Erro na comparação do certificado do servidor na re-negociação: %s\n" #: gnutls.c:1955 openssl.c:1515 msgid "Server presented different cert on rehandshake\n" msgstr "O servidor apresentou um certificado diferente na re-negociação\n" #: gnutls.c:1960 openssl.c:1518 msgid "Server presented identical cert on rehandshake\n" msgstr "O servidor apresentou um certificado idêntico na re-negociação\n" #: gnutls.c:1966 msgid "Error initialising X509 cert structure\n" msgstr "Erro na inicialização da estrutura de certificado X509\n" #: gnutls.c:1972 msgid "Error importing server's cert\n" msgstr "Erro na importação do certificado do servidor\n" #: gnutls.c:1981 main.c:1794 msgid "Could not calculate hash of server's certificate\n" msgstr "Não foi possível calcular hash do certificado do servidor\n" #: gnutls.c:1986 msgid "Error checking server cert status\n" msgstr "Erro na verificação do estado do certificado do servidor\n" #: gnutls.c:1991 msgid "certificate revoked" msgstr "certificado revogado" #: gnutls.c:1993 msgid "signer not found" msgstr "assinado não encontrado" #: gnutls.c:1995 msgid "signer not a CA certificate" msgstr "assinador não é um certificado de AC" #: gnutls.c:1997 msgid "insecure algorithm" msgstr "algoritmo inseguro" #: gnutls.c:1999 msgid "certificate not yet activated" msgstr "certificado não ativado ainda" #: gnutls.c:2001 msgid "certificate expired" msgstr "certificado expirou" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2006 msgid "signature verification failed" msgstr "verificação da assinatura falhou" #: gnutls.c:2055 openssl.c:1399 openssl.c:1551 msgid "certificate does not match hostname" msgstr "certificado não confere com o hostname" #: gnutls.c:2060 openssl.c:1398 openssl.c:1557 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Verificação do certificado do servidor falhou: %s\n" #: gnutls.c:2127 msgid "Failed to allocate memory for cafile certs\n" msgstr "Falhou ao alocar memória para certificados do CAfile\n" #: gnutls.c:2148 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Falhou ao ler certificados do CAfile: %s\n" #: gnutls.c:2164 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Falhou ao abrir o CAfile \"%s\": %s\n" #: gnutls.c:2177 openssl.c:1679 msgid "Loading certificate failed. Aborting.\n" msgstr "Carregamento do certificado falhou. Abortando.\n" #: gnutls.c:2238 #, c-format msgid "Failed to set TLS priority string (\"%s\"): %s\n" msgstr "Falha ao definir string de prioridade TLS (\"%s\"): %s\n" #: gnutls.c:2250 openssl.c:1796 #, c-format msgid "SSL negotiation with %s\n" msgstr "Negociação SSL com %s\n" #: gnutls.c:2297 openssl.c:1822 msgid "SSL connection cancelled\n" msgstr "Conexão SSL cancelada\n" #: gnutls.c:2304 #, c-format msgid "SSL connection failure: %s\n" msgstr "Falha de conexão SSL: %s\n" #: gnutls.c:2313 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "Retorno não fatal do GnuTLS durante negociação: %s\n" #: gnutls.c:2319 openssl.c:1839 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "Conectado a HTTPS em %s\n" #: gnutls.c:2322 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "Renegociou SSL em %s\n" #: gnutls.c:2484 openssl-pkcs11.c:199 #, c-format msgid "PIN required for %s" msgstr "PIN necessário para %s" #: gnutls.c:2488 openssl-pkcs11.c:202 msgid "Wrong PIN" msgstr "PIN incorreto" #: gnutls.c:2491 msgid "This is the final try before locking!" msgstr "Essa é a tentativa final antes de travar!" #: gnutls.c:2493 msgid "Only a few tries left before locking!" msgstr "Somente poucas tentativas restantes antes de travar!" #: gnutls.c:2498 openssl-pkcs11.c:206 msgid "Enter PIN:" msgstr "Insira o PIN:" #: gnutls.c:2584 openssl.c:1969 msgid "Unsupported OATH HMAC algorithm\n" msgstr "Algoritmo HMAC de OATH sem suporte\n" #: gnutls.c:2593 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "Falha ao calcular HMAC de OATH: %s\n" #: gnutls.c:2607 #, c-format msgid "ttls_pull_timeout_func %dms\n" msgstr "ttls_pull_timeout_func %dms\n" #: gnutls.c:2650 openssl.c:2084 msgid "Established EAP-TTLS session\n" msgstr "Sessão EAP-TTLS estabelecida\n" #: gnutls_tpm.c:54 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "A função de assinatura do TPM solicitou %d bytes.\n" #: gnutls_tpm.c:61 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Falhou ao criar objeto de hash TPM: %s\n" #: gnutls_tpm.c:68 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Falhou ao definir valor em objeto de hashs TPM: %s\n" #: gnutls_tpm.c:78 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "Assinatura de hash TPM falhou: %s\n" #: gnutls_tpm.c:100 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Erro na decodificação de blob de chave TSS: %s\n" #: gnutls_tpm.c:108 gnutls_tpm.c:119 gnutls_tpm.c:132 msgid "Error in TSS key blob\n" msgstr "Erro no blob de chave TSS\n" #: gnutls_tpm.c:139 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Falhou ao criar contexto TPM: %s\n" #: gnutls_tpm.c:146 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Falhou ao conectar contexto TPM: %s\n" #: gnutls_tpm.c:154 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Falhou ao carregar chave de SRK TPM: %s\n" #: gnutls_tpm.c:161 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Falhou ao carregar objeto de política de SRK TPM: %s\n" #: gnutls_tpm.c:182 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Falhou ao definir PIN TPM: %s\n" #: gnutls_tpm.c:198 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Falhou ao carregar blob de chave TPM: %s\n" #: gnutls_tpm.c:205 msgid "Enter TPM SRK PIN:" msgstr "Digite o PIN de SRK TPM:" #: gnutls_tpm.c:226 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Falhou ao criar objeto de política de chaves: %s\n" #: gnutls_tpm.c:234 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Falhou ao atribuir política a chave: %s\n" #: gnutls_tpm.c:240 msgid "Enter TPM key PIN:" msgstr "Digite o PIN da chave TPM:" #: gnutls_tpm.c:251 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Falhou ao definir o PIN de chave: %s\n" #: gnutls_tpm2.c:92 gnutls_tpm2_esys.c:474 gnutls_tpm2_ibm.c:419 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "Digest TMP2 EC com tamanho desconhecido %d\n" #: gnutls_tpm2.c:198 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "Erro na decodificação de blob de chave TSS2: %s\n" #: gnutls_tpm2.c:208 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "Falha ao criar tipo ASN.1 para TPM2: %s\n" #: gnutls_tpm2.c:217 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "Falha ao decodificar ASN.1 de chave TMP2: %s\n" #: gnutls_tpm2.c:225 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "Falha ao analisar OID de tipo de chave TPM2: %s\n" #: gnutls_tpm2.c:231 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "Chave TPM2 possui OID de tipo desconhecido %s não %s\n" #: gnutls_tpm2.c:249 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "Falha ao analisar pai de chave TPM2: %s\n" #: gnutls_tpm2.c:270 msgid "Failed to parse TPM2 pubkey element\n" msgstr "Falha ao analisar o elemento pubkey de TPM2\n" #: gnutls_tpm2.c:275 msgid "Failed to parse TPM2 privkey element\n" msgstr "Falha ao analisar o elemento privkey de TPM2\n" #: gnutls_tpm2.c:280 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "Analisada chave TPM2 com pai %x, emptyauth %d\n" #: gnutls_tpm2.c:384 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "Digest de TPM2 grande demais: %d > %d\n" #: gnutls_tpm2_esys.c:173 msgid "TPM2 password too long; truncating\n" msgstr "Senha de TMP2 muito longa; truncando\n" #: gnutls_tpm2_esys.c:189 msgid "owner" msgstr "dono" #: gnutls_tpm2_esys.c:190 msgid "null" msgstr "nulo" #: gnutls_tpm2_esys.c:191 msgid "endorsement" msgstr "endosso" #: gnutls_tpm2_esys.c:192 msgid "platform" msgstr "plataforma" #: gnutls_tpm2_esys.c:196 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "Criando a chave primária na hierarquia %s.\n" #: gnutls_tpm2_esys.c:201 gnutls_tpm2_ibm.c:262 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "Digite a senha de hierarquia de TPM2 %s:" #: gnutls_tpm2_esys.c:209 gnutls_tpm2_esys.c:303 gnutls_tpm2_esys.c:374 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "TPM2 Esys_TR_SetAuth falhou: 0x%x\n" #: gnutls_tpm2_esys.c:221 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "Autenticação de dono de TPM2 Esys_CreatePrimary falhou\n" #: gnutls_tpm2_esys.c:226 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "TPM2 Esys_CreatePrimary falhou: 0x%x\n" #: gnutls_tpm2_esys.c:245 msgid "Establishing connection with TPM.\n" msgstr "Estabelecendo conexão com TPM.\n" #: gnutls_tpm2_esys.c:250 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "TPM2 Esys_Initialize falhou: 0x%x\n" #: gnutls_tpm2_esys.c:258 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" "O TPM2 já foi iniciado, portanto falhando com positivo falso no log " "tpm2tss.\n" #: gnutls_tpm2_esys.c:261 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "TPM2 Esys_Startup falhou: 0x%x\n" #: gnutls_tpm2_esys.c:274 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "Esys_TR_FromTPMPublic falhou para manipulador 0x%x: 0x%x\n" #: gnutls_tpm2_esys.c:295 gnutls_tpm2_ibm.c:278 msgid "Enter TPM2 parent key password:" msgstr "Digite a senha da chave pai TMP2:" #: gnutls_tpm2_esys.c:309 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "Carregando o blob de chave TPM2, pai %x.\n" #: gnutls_tpm2_esys.c:317 msgid "TPM2 Esys_Load auth failed\n" msgstr "Autenticação de TPM2 Esys_Load falhou\n" #: gnutls_tpm2_esys.c:323 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "TPM2 Esys_Load falhou: 0x%x\n" #: gnutls_tpm2_esys.c:333 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "TPM2 Esys_FlushContext para primária gerada falhou: 0x%x\n" #: gnutls_tpm2_esys.c:363 gnutls_tpm2_ibm.c:363 gnutls_tpm2_ibm.c:450 msgid "Enter TPM2 key password:" msgstr "Digite a senha da chave TMP2:" #: gnutls_tpm2_esys.c:395 #, c-format msgid "TPM2 RSA sign function called for %d bytes.\n" msgstr "A função de assinatura do TPM2 RSA solicitou %d bytes.\n" #: gnutls_tpm2_esys.c:414 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "Autenticação de TPM2 Esys_RSA_Decrypt falhou\n" #: gnutls_tpm2_esys.c:420 gnutls_tpm2_esys.c:500 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "TPM2 falhou em gerar assinatura RSA: 0x%x\n" #: gnutls_tpm2_esys.c:464 gnutls_tpm2_ibm.c:405 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "A função de assinatura do TPM2 EC solicitou %d bytes.\n" #: gnutls_tpm2_esys.c:494 msgid "TPM2 Esys_Sign auth failed\n" msgstr "Autenticação de TPM2 Esys_Sign falhou\n" #: gnutls_tpm2_esys.c:532 gnutls_tpm2_ibm.c:485 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "Manipulador pai de TMP2 inválido 0x%08x\n" #: gnutls_tpm2_esys.c:546 gnutls_tpm2_ibm.c:502 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "Falha ao importar dados de chave privada TPM2: 0x%x\n" #: gnutls_tpm2_esys.c:555 gnutls_tpm2_ibm.c:512 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "Falha ao importar dados de chave pública TPM2: 0x%x\n" #: gnutls_tpm2_esys.c:569 gnutls_tpm2_ibm.c:523 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "Tipo de chave TMP2 sem suporte %d\n" #: gnutls_tpm2_ibm.c:54 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "Operação TPM2 %s falhou (%d): %s%s%s\n" #: gpst.c:226 #, c-format msgid "%s\n" msgstr "%s\n" #: gpst.c:229 #, c-format msgid "Challenge: %s\n" msgstr "Desafio: %s\n" #: gpst.c:412 #, c-format msgid "Unknown ESP MAC algorithm: %s" msgstr "Algoritmo ESP MAC desconhecido: %s" #: gpst.c:420 #, c-format msgid "Unknown ESP encryption algorithm: %s" msgstr "Algoritmo de criptografia ESP desconhecido: %s" #: gpst.c:486 #, c-format msgid "Session will expire after %d minutes.\n" msgstr "A sessão vai expirar após %d minutos.\n" #: gpst.c:489 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "Tempo limite de ociosidade é %d minutos.\n" #: gpst.c:495 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "Caminho de túnel SSL não-padrão: %s\n" #: gpst.c:499 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" "Tempo limite do túnel (intervalo de renovação de chave) é %d minutos.\n" #: gpst.c:510 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" "Endereço do gateway no XML de config (%s) difere do endereço externo do " "gateway (%s).\n" #: gpst.c:564 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "Config GlobalProtect enviou ipsec-mode=%s (esperava esp-tunnel)\n" #: gpst.c:573 oncp.c:835 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" "Ignorando chaves ESP já que suporte a ESP não está disponível nesta " "compilação\n" #: gpst.c:591 #, c-format msgid "" "Potential IPv6-related GlobalProtect config tag <%s>: %s\n" "This build does not support GlobalProtect IPv6 due to a lack of\n" "of information on how it is configured. Please report this\n" "to .\n" msgstr "" "Tag de config de GlobalProtect possivelmente relacionada a IPv6 <%s>: %s\n" "Essa compilação não suporta o GlobalProtect IPv6 devido à falta de\n" "de informações sobre como está configurado. Por favor, reporte isso\n" "para .\n" #: gpst.c:596 #, c-format msgid "Unknown GlobalProtect config tag <%s>: %s\n" msgstr "Tag de configuração GlobalProtect desconhecida <%s>: %s\n" #: gpst.c:655 msgid "ESP disabled" msgstr "ESP desabilitado" #: gpst.c:657 msgid "No ESP keys received" msgstr "Nenhuma chave ESP recebida" #: gpst.c:659 msgid "ESP support not available in this build" msgstr "Suporte ESP não está disponível nesta compilação" #: gpst.c:663 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "Nenhum MTU foi recebido. Calculado %d para %s%s\n" #: gpst.c:725 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "Conectado ao ponto de extremidade do túnel HTTPS ...\n" #: gpst.c:747 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "Erro ao obter resposta HTTPS GET-tunnel.\n" #: gpst.c:756 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "Gateway desconectado imediatamente após requisição GET-tunnel.\n" #: gpst.c:764 #, c-format msgid "Got inappropriate HTTP GET-tunnel response: %.*s\n" msgstr "Obteve resposta GET-tunnel HTTP inapropriável: %.*s\n" #: gpst.c:909 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" "VPN connectivity may be disabled or limited without HIP report submission.\n" "You need to provide a --csd-wrapper argument with the HIP report submission " "script.\n" msgstr "" "AVISO: O servidor nos pediu para enviar o relatório HIP com a soma de " "verificação %s.\n" "A conectividade VPN pode ser desativada ou limitada sem envio de relatório " "HIP.\n" "Você precisa fornecer um argumento --csd-wrapper com o script de envio do " "relatório HIP.\n" #: gpst.c:919 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" "Erro: A execução do script “HIP report” nesta plataforma não está " "implementada ainda.\n" #: gpst.c:948 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "O script HIP “%s” saiu anormalmente\n" #: gpst.c:953 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "O script HIP “%s” retornou status não-zero: %d\n" #: gpst.c:959 msgid "HIP report submission failed.\n" msgstr "Envio de relatório HIP falhou.\n" #: gpst.c:961 msgid "HIP report submitted successfully.\n" msgstr "Relatório HIP enviado com sucesso.\n" #: gpst.c:996 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "Falha ao executar script HIP %s\n" #: gpst.c:1020 msgid "Gateway says HIP report submission is needed.\n" msgstr "O gateway diz que envio de relatório HIP é necessário.\n" #: gpst.c:1026 msgid "Gateway says no HIP report submission is needed.\n" msgstr "O gateway diz que envio de relatório HIP não é necessário.\n" #: gpst.c:1053 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "Túnel ESP conectado; saindo do loop principal de HTTPS.\n" #: gpst.c:1069 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "Falha ao conectar a túnel ESP; usando HTTPS.\n" #: gpst.c:1105 #, c-format msgid "Packet receive error: %s\n" msgstr "Erro de recebimento de pacote: %s\n" #: gpst.c:1126 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" "Tamanho de pacote inesperado. SSL_read retornou %d (inclui 16 bytes de " "cabeçalho), mas payload_len do cabeçalho é %d\n" #: gpst.c:1136 msgid "Got GPST DPD/keepalive response\n" msgstr "Obteve resposta GPST DPD/keepalive\n" #: gpst.c:1140 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" "Esperava 0000000000000000 como últimos 8 bytes de cabeçalho de pacote DPD/" "keepalive, mas obteve:\n" #: gpst.c:1147 #, c-format msgid "Received IPv%d data packet of %d bytes\n" msgstr "Recebido pacote de dados IPv%d de %d bytes\n" #: gpst.c:1156 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" "Esperava 0100000000000000 como últimos 8 bytes de cabeçalho de pacote de " "dados, mas obteve:\n" #: gpst.c:1164 msgid "Unknown packet. Header dump follows:\n" msgstr "Pacote desconhecido. Despejo de cabeçalho segue:\n" #: gpst.c:1212 msgid "GlobalProtect rekey due\n" msgstr "Renovação da chave GlobalProtect por causa de\n" #: gpst.c:1217 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "Dead Peer Detection GPST detectou par morto!\n" #: gpst.c:1237 msgid "Send GPST DPD/keepalive request\n" msgstr "Enviar requisição GPST DPD/keepalive\n" #: gpst.c:1260 #, c-format msgid "Sending IPv%d data packet of %d bytes\n" msgstr "Enviando pacote de dados IPv%d de %d bytes\n" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Erro ao importar nome GSSAPI para autenticação:\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "Erro ao gerar resposta GSSAPI:\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "Tentando autenticação GSSAPI ao proxy\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "Tentando autenticação GSSAPI ao servidor \"%s\"\n" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "Autenticação GSSAPI concluída\n" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "Token GSSAPI muito grande (%zd bytes)\n" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "Enviando token GSSPAI de %zu bytes\n" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "Falhou ao enviar autenticação GSSAPI para o proxy: %s\n" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "Falhou ao receber o token de autenticação GSSAPI do proxy %s\n" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "O servidor SOCKS relatou falha de contexto GSSAPI\n" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "Resposta de status GSSPI desconhecido (0x%02x) do servidor SOCKS\n" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "Obteve token GSSAPI de %zu bytes: %02x %02x %02x %02x\n" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "Enviando negociação de proteção GSSAPI de %zu bytes\n" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "Falhou ao enviar resposta de proteção GSSAPI ao proxy %s\n" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "Falhou ao receber resposta de proteção GSSAPI do proxy %s\n" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "Obteve resposta de proteção GSSAPI de %zu bytes: %02x %02x %02x %02x\n" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "Resposta de proteção GSSAPI inválida do proxy (%zu bytes)\n" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" "O proxy SOCKS demanda uma integridade de mensagem, o que não é suportado\n" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" "O proxy SOCKS demanda uma confidencialidade de mensagem, o que não é " "suportado\n" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "O proxy SOCKS demanda um tipo de proteção desconhecida 0x%02x\n" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "Tentando autenticação Básica de HTTP para o proxy\n" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "Tentando autenticação Básica de HTTP ao servidor \"%s\"\n" #: http-auth.c:200 http.c:1201 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "Essa versão de OpenConnect foi compilada sem suporte a GSSAPI\n" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" "O proxy requisitou autenticação Básica, a qual está desabilitada por padrão\n" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" "O servidor \"%s\" requisitou autenticação Básica, a qual está desabilitada " "por padrão\n" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "Sem mais métodos de autenticação para tentar\n" #: http.c:321 msgid "No memory for allocating cookies\n" msgstr "Nenhuma memória para alocação de cookies\n" #: http.c:396 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Falhou ao analisar resposta HTTP \"%s\"\n" #: http.c:402 #, c-format msgid "Got HTTP response: %s\n" msgstr "Obteve resposta HTTP: %s\n" #: http.c:410 msgid "Error processing HTTP response\n" msgstr "Erro no processamento da resposta HTTP\n" #: http.c:417 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Ignorando linha de resposta HTTP desconhecida \"%s\"\n" #: http.c:437 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Cookie inválido oferecido: %s\n" #: http.c:457 msgid "SSL certificate authentication failed\n" msgstr "Autenticação de certificado SSL falhou\n" #: http.c:492 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Corpo da resposta possui tamanho negativo (%d)\n" #: http.c:503 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Transfer-Encoding negativo: %s\n" #. Now the body, if there is one #: http.c:522 #, c-format msgid "HTTP body %s (%d)\n" msgstr "Corpo de HTTP %s (%d)\n" #: http.c:538 http.c:568 msgid "Error reading HTTP response body\n" msgstr "Erro na leitura do corpo da resposta HTTP\n" #: http.c:551 msgid "Error fetching chunk header\n" msgstr "Erro ao obter cabeçalho do bloco\n" #: http.c:579 msgid "Error fetching HTTP response body\n" msgstr "Erro ao obter corpo de resposta HTTP\n" #: http.c:582 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "Erro na decodificação fragmentada. Esperava \"\", obteve: \"%s\"" #: http.c:595 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Não foi possível receber corpo de HTTP 1.0 sem fechar a conexão\n" #: http.c:724 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Falhou ao analisar URL redirecionada \"%s\": %s\n" #: http.c:748 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Não foi possível seguir o redirecionamento para URL não https \"%s\"\n" #: http.c:776 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "A alocação de novo caminho para redirecionamento relativo falhou: %s\n" #: http.c:1001 oncp.c:591 pulse.c:1292 #, c-format msgid "Unexpected %d result from server\n" msgstr "Resultado inesperado %d do servidor\n" #: http.c:1049 msgid "request granted" msgstr "requisição concedida" #: http.c:1050 msgid "general failure" msgstr "falha geral" #: http.c:1051 msgid "connection not allowed by ruleset" msgstr "conexão não permitida pelo conjunto de regras" #: http.c:1052 msgid "network unreachable" msgstr "a rede está inacessível" #: http.c:1053 msgid "host unreachable" msgstr "o host está inacessível" #: http.c:1054 msgid "connection refused by destination host" msgstr "Conexão recusada pelo host de destino" #: http.c:1055 msgid "TTL expired" msgstr "TTL expirou" #: http.c:1056 msgid "command not supported / protocol error" msgstr "comando não suportado / erro de protocolo" #: http.c:1057 msgid "address type not supported" msgstr "tipo de endereço não suportado" #: http.c:1067 msgid "SOCKS server requested username/password but we have none\n" msgstr "" "O servidor SOCKS requisitou nome de usuário e senha, mas temos nenhum\n" #: http.c:1075 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" "Nome de usuário e senha para autenticação SOCKS devem ser < 255 bytes\n" #: http.c:1090 http.c:1153 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Erro na escrita de requisição de autenticação para proxy SOCKS: %s\n" #: http.c:1098 http.c:1160 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Erro na leitura de reposta de autenticação de proxy SOCKS: %s\n" #: http.c:1105 http.c:1166 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Resposta de autenticação inesperada de proxy SOCKS: %02x %02x\n" #: http.c:1111 msgid "Authenticated to SOCKS server using password\n" msgstr "Autenticou para o servidor SOCKS usando senha\n" #: http.c:1115 msgid "Password authentication to SOCKS server failed\n" msgstr "Autenticação por senha para o servidor SOCKS falhou\n" #: http.c:1178 http.c:1185 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "O servidor SOCKS requisitou autenticação por GSSAPI\n" #: http.c:1191 msgid "SOCKS server requested password authentication\n" msgstr "O servidor SOCKS requisitou autenticação por senha\n" #: http.c:1198 msgid "SOCKS server requires authentication\n" msgstr "O servidor SOCKS requer autenticação\n" #: http.c:1207 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "O servidor SOCKS requisitou tipo de autenticação desconhecida %02x\n" #: http.c:1213 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Requisitando conexão ao proxy SOCKS para %s:%d\n" #: http.c:1228 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Erro na escrita de requisição de conexão para proxy SOCKS: %s\n" #: http.c:1236 http.c:1278 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Erro na leitura de resposta de conexão de proxy SOCKS: %s\n" #: http.c:1242 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Resposta de conexão inesperada de proxy SOCKS: %02x %02x...\n" #: http.c:1250 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "Erro de proxy SOCKS %02x: %s\n" #: http.c:1254 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "Erro de proxy SOCKS %02x\n" #: http.c:1271 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Tipo de endereço %02x inesperado na resposta de conexão SOCKS\n" #: http.c:1294 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Requisitando conexão proxy HTTP para %s:%d\n" #: http.c:1329 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Envio de requisição proxy falhou: %s\n" #: http.c:1352 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "Requisição de proxy CONNECT falhou: %d\n" #: http.c:1371 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Tipo de proxy desconhecido \"%s\"\n" #: http.c:1397 #, c-format msgid "Failed to parse proxy '%s'\n" msgstr "" #: http.c:1421 msgid "Only http or socks(5) proxies supported\n" msgstr "Somente proxy http ou socks(5) são suportados\n" #: library.c:116 msgid "Cisco AnyConnect or openconnect" msgstr "Cisco AnyConnect ou openconnect" #: library.c:117 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "Compatível com Cisco AnyConnect SSL VPN, bem como ocserv" #: library.c:133 msgid "Juniper Network Connect" msgstr "Juniper Network Connect" #: library.c:134 msgid "Compatible with Juniper Network Connect" msgstr "Compatível com Juniper Network Connect" #: library.c:152 msgid "Palo Alto Networks GlobalProtect" msgstr "Palo Alto Networks GlobalProtect" #: library.c:153 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "Compatível com Palo Alto Networks (PAN) GlobalProtect SSL VPN" #: library.c:171 msgid "Pulse Connect Secure" msgstr "Pulse Connect Secure" #: library.c:172 msgid "Compatible with Pulse Connect Secure SSL VPN" msgstr "Compatível com Pulse Connect Secure SSL VPN" #: library.c:234 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "Protocolo VPN desconhecido \"%s\"\n" #: library.c:256 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Compilado com biblioteca SSL sem suporte a DTLS da Cisco\n" #: library.c:683 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Falhou ao analisar URL do servidor \"%s\"\n" #: library.c:689 msgid "Only https:// permitted for server URL\n" msgstr "Somente https:// é permitido como URL de servidor\n" #: library.c:1084 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "Hash de certificado desconhecido: %s.\n" #: library.c:1113 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" "O tamanho da impressão digital fornecida é menor do que o mínimo exigido " "(%u).\n" #: library.c:1174 msgid "No form handler; cannot authenticate.\n" msgstr "nenhum manipulador de forma - não foi possível autenticar.\n" #: main.c:340 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "CommandLineToArgvW() falhou: %s\n" #: main.c:353 #, c-format msgid "Fatal error in command line handling\n" msgstr "Erro fatal ao manipular a linha de comando\n" #: main.c:388 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "ReadConsole() falhou: %s\n" # é uma função - fork() #: main.c:401 #, c-format msgid "fgetws() failed: %s\n" msgstr "fgetws() falhou: %s\n" #: main.c:416 main.c:429 #, c-format msgid "Error converting console input: %s\n" msgstr "Erro ao converter a entrada de console: %s\n" #: main.c:423 main.c:689 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Falha ao alocar de string da stdin\n" #: main.c:584 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" "Para assistência com OpenConnect, por favor veja a página web em\n" " http://www.infradead.org/openconnect/mail.html\n" #: main.c:593 #, c-format msgid "Using OpenSSL. Features present:" msgstr "Usando OpenSSL. Recursos presentes:" #: main.c:595 #, c-format msgid "Using GnuTLS. Features present:" msgstr "Usando GnuTLS. Recursos presentes:" #: main.c:608 msgid "OpenSSL ENGINE not present" msgstr "OpenSSL ENGINE não presente" #: main.c:647 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" "AVISO: Esse binário carece de suporte a DTLS e/ou ESP. A performance será " "prejudicada.\n" #: main.c:657 #, c-format msgid "Supported protocols:" msgstr "Protocolos com suporte:" #: main.c:659 main.c:675 msgid " (default)" msgstr " (padrão)" #: main.c:672 msgid "Set VPN protocol" msgstr "Definir protocolo VPN" #: main.c:713 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:754 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Não foi possível processar este caminho de executável \"%s\"" #: main.c:760 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "Alocação para caminho de vpnc-script falhou\n" #: main.c:780 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "Substituição hostname \"%s\" com \"%s\"\n" #: main.c:793 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Uso: openconnect [opções] \n" #: main.c:794 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" "Cliente aberto para múltiplos protocolos VPN, versão %s\n" "\n" #: main.c:796 msgid "Read options from config file" msgstr "Lê as opções do arquivo de configuração" #: main.c:797 msgid "Report version number" msgstr "Informa o número da versão" #: main.c:798 msgid "Display help text" msgstr "Exibe o texto de ajuda" #: main.c:802 msgid "Authentication" msgstr "Autenticação" #: main.c:803 msgid "Set login username" msgstr "Define o nome de usuário do login" #: main.c:804 msgid "Disable password/SecurID authentication" msgstr "Desabilita autenticação por senha/SecurID" #: main.c:805 msgid "Do not expect user input; exit if it is required" msgstr "Não espera entrada do usuário - sai se for requisitado" #: main.c:806 msgid "Read password from standard input" msgstr "Lê senha da entrada padrão" #: main.c:807 msgid "Choose authentication login selection" msgstr "Escolhe a seleção de login para autenticação" #: main.c:808 msgid "Provide authentication form responses" msgstr "Fornece respostas a formulário de autenticação" #: main.c:809 msgid "Use SSL client certificate CERT" msgstr "Usa o certificado CERT do cliente SSL" #: main.c:810 msgid "Use SSL private key file KEY" msgstr "Usa o arquivo KEY de chave privada SSL" #: main.c:811 msgid "Warn when certificate lifetime < DAYS" msgstr "Avisa quando o tempo de vida do certificado < DAYS" #: main.c:812 msgid "Set login usergroup" msgstr "Define o grupo de usuário do login" #: main.c:813 msgid "Set key passphrase or TPM SRK PIN" msgstr "Define a frase secreta chave ou TPM SRK PIN" #: main.c:814 msgid "Key passphrase is fsid of file system" msgstr "Frase secreta chave é fsid do sistema de arquivos" #: main.c:815 msgid "Software token type: rsa, totp or hotp" msgstr "Tipo de token de software: rsa, totp ou hotp" #: main.c:816 msgid "Software token secret" msgstr "Segredo de token de software" #: main.c:818 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "(NOTA: libstoken (RSA SecurID) desabilitado nesta compilação)" #: main.c:821 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(NOTA: Yubikey OATH desabilitado nesta compilação)" #: main.c:824 msgid "Server validation" msgstr "Validação de servidor" #: main.c:825 msgid "Server's certificate SHA1 fingerprint" msgstr "Impressão digital SHA1 do certificado do servidor" #: main.c:826 msgid "Do not require server SSL cert to be valid" msgstr "Não exige que o certificado SSL do servidor seja válido" #: main.c:827 msgid "Disable default system certificate authorities" msgstr "Desabilita autoridades certificadoras padrão do sistema" #: main.c:828 msgid "Cert file for server verification" msgstr "Arquivo de certificado para verificação do servidor" #: main.c:830 msgid "Internet connectivity" msgstr "Conectividade de internet" #: main.c:831 msgid "Set proxy server" msgstr "Define o servidor proxy" #: main.c:832 msgid "Set proxy authentication methods" msgstr "Define os métodos de autenticação de proxy" #: main.c:833 msgid "Disable proxy" msgstr "Desabilita o proxy" #: main.c:834 msgid "Use libproxy to automatically configure proxy" msgstr "Usa libproxy para configurar automaticamente o proxy" #: main.c:836 msgid "(NOTE: libproxy disabled in this build)" msgstr "(NOTA: libproxy desabilitado nesta compilação)" #: main.c:838 msgid "Connection retry timeout in seconds" msgstr "Limite de tempo em segundos para nova tentativa de conexão" #: main.c:839 msgid "Use IP when connecting to HOST" msgstr "Usar IP ao conectar ao HOST" #: main.c:840 msgid "copy TOS / TCLASS when using DTLS" msgstr "Copia TOS / TCLASS ao usar DTLS" #: main.c:841 msgid "Set local port for DTLS and ESP datagrams" msgstr "Define a porta local para datagramas DTLS e ESP" #: main.c:843 msgid "Authentication (two-phase)" msgstr "Autenticação (duas fases)" #: main.c:844 msgid "Use authentication cookie COOKIE" msgstr "Usa o cookie de autenticação COOKIE" #: main.c:845 msgid "Read cookie from standard input" msgstr "Lê o cookie da entrada padrão" #: main.c:846 msgid "Authenticate only and print login info" msgstr "Só autentica e imprime informação de login" #: main.c:847 msgid "Fetch and print cookie only; don't connect" msgstr "Obtém e imprime cookie apenas; não conecta" #: main.c:848 msgid "Print cookie before connecting" msgstr "Imprime o cookie antes de conectar" #: main.c:851 msgid "Process control" msgstr "Controle de processo" #: main.c:852 msgid "Continue in background after startup" msgstr "Continua em plano de fundo após inicialização" #: main.c:853 msgid "Write the daemon's PID to this file" msgstr "Escreve o PID do daemon neste arquivo" #: main.c:854 msgid "Drop privileges after connecting" msgstr "Descarta privilégios após conexão" #: main.c:857 msgid "Logging (two-phase)" msgstr "Registro de log (duas fases)" #: main.c:859 msgid "Use syslog for progress messages" msgstr "Usa syslog para as mensagens de progresso" #: main.c:861 msgid "More output" msgstr "Mais saída" #: main.c:862 msgid "Less output" msgstr "Menos saída" #: main.c:863 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "Despeja o tráfego de autenticação HTTP (--verbose implícito)" #: main.c:864 msgid "Prepend timestamp to progress messages" msgstr "Prefixa marca de tempo nas mensagens de progresso" #: main.c:866 msgid "VPN configuration script" msgstr "Script de configuração de VPN" #: main.c:867 msgid "Use IFNAME for tunnel interface" msgstr "Usa IFNAME para a interface do túnel" #: main.c:868 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" "Linha de comando shell para usar um script de configuração compatível com " "vpnc" #: main.c:869 msgid "default" msgstr "padrão" #: main.c:871 msgid "Pass traffic to 'script' program, not tun" msgstr "Passa tráfego para o programa \"script\", ao invés do tun" #: main.c:874 msgid "Tunnel control" msgstr "Controle de túnel" #: main.c:875 msgid "Do not ask for IPv6 connectivity" msgstr "Não solicita conectividade em IPv6" #: main.c:876 msgid "XML config file" msgstr "Arquivo de configuração XML" #: main.c:877 msgid "Request MTU from server (legacy servers only)" msgstr "Requisita MTU do servidor (servidores legado apenas)" #: main.c:878 msgid "Indicate path MTU to/from server" msgstr "Indica MTU do caminho de/para o servidor" #: main.c:879 msgid "Enable stateful compression (default is stateless only)" msgstr "Habilita compressão stateful (padrão é apenas stateful)" #: main.c:880 msgid "Disable all compression" msgstr "Desabilita toda compressão" #: main.c:881 msgid "Set minimum Dead Peer Detection interval" msgstr "Define um intervalo mínimo de Dead Peer Detection" #: main.c:882 msgid "Require perfect forward secrecy" msgstr "Exige perfect forward secrecy (PFS)" #: main.c:883 msgid "Disable DTLS and ESP" msgstr "Desabilita DTLS e ESP" #: main.c:884 msgid "OpenSSL ciphers to support for DTLS" msgstr "Cifras de OpenSSL a serem suportadas para DTLS" #: main.c:885 msgid "Set packet queue limit to LEN pkts" msgstr "Define limite da fila de pacotes para LEN pkts" #: main.c:887 msgid "Local system information" msgstr "Informações do sistema local" #: main.c:888 msgid "HTTP header User-Agent: field" msgstr "Campo User-Agent: do cabeçalho de HTTP" #: main.c:889 msgid "Local hostname to advertise to server" msgstr "Hostname local a ser anunciado ao servidor" #: main.c:890 msgid "OS type (linux,linux-64,win,...) to report" msgstr "Tipo de SO (linux,linux-64,mac,win,...) para informar" #: main.c:891 msgid "reported version string during authentication" msgstr "string de versão relatada durante autenticação" #: main.c:892 msgid "default:" msgstr "padrão:" #: main.c:895 msgid "Trojan binary (CSD) execution" msgstr "Execução do binário de trojan (CSD)" #: main.c:896 msgid "Drop privileges during trojan execution" msgstr "Descarta privilégios durante execução de trojan" #: main.c:897 msgid "Run SCRIPT instead of trojan binary" msgstr "Executa SCRIPT ao invés do binário do trojan" #: main.c:900 msgid "Server bugs" msgstr "Bugs do servidor" #: main.c:901 msgid "Disable HTTP connection re-use" msgstr "Desabilita reuso de conexão HTTP" #: main.c:902 msgid "Do not attempt XML POST authentication" msgstr "Não tenta autenticação XML POST" #: main.c:924 #, c-format msgid "Failed to allocate string\n" msgstr "Falhou ao alocar string\n" #: main.c:997 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Falha ao obter linha de arquivo de configuração: %s\n" #: main.c:1037 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Opção não reconhecida na linha %d: \"%s\"\n" #: main.c:1047 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Opção \"%s\" não leva um argumento na linha %d\n" #: main.c:1051 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Opção \"%s\" requer um argumento na linha %d\n" #: main.c:1076 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "Usuário inválido \"%s\": %s\n" #: main.c:1086 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "ID de usuário inválido \"%d\": %s\n" #: main.c:1130 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "AVISO: Não foi possível definir a localidade: %s\n" #: main.c:1140 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "AVISO: Essa versão do openconnect foi compilada sem suporte\n" " a iconv, mas você parece estar usando o conjunto de\n" " caracteres legado \"%s\". Espere coisas estranhas.\n" #: main.c:1147 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "AVISO: Essa versão do openconnect é %s, mas\n" " a biblioteca libopenconnect é %s\n" #: main.c:1157 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Falha ao alocar a estrutura de vpninfo\n" #: main.c:1215 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Não é possível usar \"config\" dentro do arquivo de configuração\n" #: main.c:1223 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Não foi possível usar o arquivo de configuração \"%s\": %s\n" #: main.c:1239 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "Modo de compressão \"%s\" inválido\n" #: main.c:1260 #, c-format msgid "Missing colon in resolve option\n" msgstr "Faltando dois-pontos na opção de resolução\n" #: main.c:1265 #, c-format msgid "Failed to allocate memory\n" msgstr "Falha ao alocar memória\n" #: main.c:1349 main.c:1358 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d é muito pequeno\n" #: main.c:1388 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Desabilitando todo reuso de conexões HTTP por causa da opção --no-http-" "keepalive.\n" "Se isso ajuda, por favor relate para .\n" #: main.c:1394 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" "A opção --no-cert-check era insegura e foi removida.\n" "Corrija o certificado do servidor ou use --servercert para confiar nele.\n" #: main.c:1411 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Fila com tamanho zero não é permitido - usando 1\n" #: main.c:1425 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect versão %s\n" #: main.c:1463 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Modo de token de software \" %s\" inválido\n" #: main.c:1473 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "Identidade do SO inválida \"%s\"\n" #: main.c:1506 #, c-format msgid "Too many arguments on command line\n" msgstr "Argumentos demais na linha de comando\n" #: main.c:1509 #, c-format msgid "No server specified\n" msgstr "Nenhum servidor especificado\n" #: main.c:1525 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "Essa versão do openconnect foi compilada sem suporte a libproxy\n" #: main.c:1555 #, c-format msgid "Error opening cmd pipe\n" msgstr "Erro ao abrir redirecionamento de comando\n" #: main.c:1588 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "Falha ao obter um cookie de WebVPN\n" #: main.c:1609 #, c-format msgid "Creating SSL connection failed\n" msgstr "A criação da conexão SSL falhou\n" #: main.c:1625 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "A configuração de UDP falhou; usando SSL em vez disso\n" #: main.c:1633 #, c-format msgid "Connected as %s%s%s, using SSL%s%s, with %s%s%s %s\n" msgstr "Conectado como %s%s%s, usando SSL%s%s, com %s%s%s %s\n" #: main.c:1639 msgid "disabled" msgstr "desabilitado" #: main.c:1639 msgid "in progress" msgstr "em progresso" #: main.c:1643 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "Nenhum argumento --script fornecido - DNS e roteamento não estão " "configurados\n" #: main.c:1645 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Veja http://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:1658 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Falha ao abrir \"%s\" para escrita: %s\n" #: main.c:1670 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Continuando em plano de fundo - pid %d\n" #: main.c:1687 msgid "User requested reconnect\n" msgstr "Usuário requisitou reconexão\n" #: main.c:1695 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "Cookie rejeitado na reconexão; saindo.\n" #: main.c:1699 msgid "Session terminated by server; exiting.\n" msgstr "Sessão terminada pelo servidor; saindo.\n" #: main.c:1703 msgid "User cancelled (SIGINT/SIGTERM); exiting.\n" msgstr "Usuário cancelado (SIGINT/SIGTERM); saindo.\n" #: main.c:1707 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "Usuário desanexado da sessão (SIGHUP); saindo.\n" #: main.c:1711 msgid "Unknown error; exiting.\n" msgstr "Erro desconhecido; saída.\n" #: main.c:1730 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Falha ao abrir %s para escrita: %s\n" #: main.c:1738 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Falha ao escrever a configuração para %s: %s\n" #: main.c:1797 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "Certificado SSL do servidor não correspondem: %s\n" #: main.c:1816 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Certificado do servidor VPN \"%s\" falhou na verificação.\n" "Motivo: %s\n" #: main.c:1819 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" "Para confiar neste servidor no futuro, você pode adicionar isso a sua linha " "de comando:\n" #: main.c:1820 #, c-format msgid " --servercert %s\n" msgstr " --servercert %s\n" #: main.c:1825 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Digite \"%s\" para aceitar, \"%s\" para abortar ou qualquer outra coisa para " "visualizar: " #: main.c:1826 main.c:1844 msgid "no" msgstr "não" #: main.c:1826 main.c:1832 msgid "yes" msgstr "sim" #: main.c:1853 #, c-format msgid "Server key hash: %s\n" msgstr "Hash da chave do servidor: %s\n" #: main.c:1887 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Escolha de autenticação \"%s\" corresponde a múltiplas opções\n" #: main.c:1890 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Escolha de autenticação \"%s\" não disponível\n" #: main.c:1911 msgid "User input required in non-interactive mode\n" msgstr "Entrada do usuário requisitada em modo não interativo\n" #: main.c:2149 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Falhou ao abrir arquivo de token para escrita: %s\n" #: main.c:2157 #, c-format msgid "Failed to write token: %s\n" msgstr "Falhou ao escrever token: %s\n" #: main.c:2203 main.c:2224 #, c-format msgid "Soft token string is invalid\n" msgstr "String de token de software é inválida\n" #: main.c:2206 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Não foi possível abrir o arquivo ~/.stokenrc\n" #: main.c:2209 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "OpenConnect não foi compilado com suporte a libstoken\n" #: main.c:2212 #, c-format msgid "General failure in libstoken\n" msgstr "Falha geral no libstoken\n" #: main.c:2227 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "OpenConnect não foi compilado com suporte a libauth\n" #: main.c:2230 #, c-format msgid "General failure in liboath\n" msgstr "Falha geral no libauth\n" #: main.c:2241 #, c-format msgid "Yubikey token not found\n" msgstr "Token Yubikey não encontrado\n" #: main.c:2244 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "OpenConnect não foi compilado com suporte a Yubikey\n" #: main.c:2247 #, c-format msgid "General Yubikey failure: %s\n" msgstr "Falha geral no Yubikey: %s\n" #: mainloop.c:127 #, c-format msgid "Set up tun script failed\n" msgstr "A configuração de script tun falhou\n" #: mainloop.c:134 #, c-format msgid "Set up tun device failed\n" msgstr "A configuração de um dispositivo tun falhou\n" #: mainloop.c:265 msgid "Caller paused the connection\n" msgstr "Chamador parou a conexão\n" #: mainloop.c:273 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Nenhum trabalho para fazer - dormindo por %d ms...\n" #: mainloop.c:294 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "WaitForMultipleObjects falhou: %s\n" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "InitializeSecurityContext() falhou: %lx\n" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "AcquireCredentialsHandle() falhou: %lx\n" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "Erro na comunicação com auxiliar ntlm_auth\n" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "Tentando autenticação HTTP NTLM para o proxy (sigle-sign-on)\n" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "Tentando autenticação HTTP NTLM ao servidor \"%s\" (sigle-sign-on)\n" #: ntlm.c:978 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "Tentando autenticação HTTP NTLMv%d para o proxy\n" #: ntlm.c:982 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "Tentando autenticação HTTP NTLMv%d ao servidor \"%s\"\n" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "String de token base32 inválida\n" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "Falha ao alocar memória para decodificar segredo OATH\n" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "Essa versão de OpenConnect foi compilada sem suporte a PSKC\n" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "OK para gerar tokencode INITIAL\n" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "OK para gerar tokencode NEXT\n" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" "O servidor está rejeitando o token de software - alternando para entrada " "manual\n" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "Gerando código de token TOTP OATH\n" #: oath.c:565 msgid "Generating OATH HOTP token code\n" msgstr "Gerando código de token HOTP OATH\n" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "Cookie inválido \"%s\"\n" #: oncp.c:160 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "Comprimento %d inesperado para TLV %d/%d\n" #: oncp.c:166 pulse.c:402 #, c-format msgid "Received MTU %d from server\n" msgstr "Recebido MTU %d do servidor\n" #: oncp.c:175 pulse.c:285 pulse.c:343 #, c-format msgid "Received DNS server %s\n" msgstr "Recebido servidor DNS %s\n" #: oncp.c:186 pulse.c:411 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "Recebido domínio de pesquisa DNS %.*s\n" #: oncp.c:201 #, c-format msgid "Received internal IP address %s\n" msgstr "Recebido endereço IP interno %s\n" #: oncp.c:210 pulse.c:276 #, c-format msgid "Received netmask %s\n" msgstr "Recebida máscara de rede %s\n" #: oncp.c:219 pulse.c:426 #, c-format msgid "Received internal gateway address %s\n" msgstr "Recebido endereço de gateway interno %s\n" #: oncp.c:232 pulse.c:2001 #, c-format msgid "Received split include route %s\n" msgstr "Recebida rota de inclusão de split %s\n" #: oncp.c:254 pulse.c:2014 #, c-format msgid "Received split exclude route %s\n" msgstr "Recebida rota de exclusão de split %s\n" #: oncp.c:274 pulse.c:300 #, c-format msgid "Received WINS server %s\n" msgstr "Recebido servidor WINS %s\n" #: oncp.c:297 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "Criptografia ESP: 0x%02x (%s)\n" #: oncp.c:316 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "HMAC ESP: 0x%02x (%s)\n" #: oncp.c:327 #, c-format msgid "ESP compression: %d\n" msgstr "Compressão ESP: %d\n" #: oncp.c:335 pulse.c:506 #, c-format msgid "ESP port: %d\n" msgstr "Porta ESP: %d\n" #: oncp.c:342 pulse.c:489 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "Tempo de vida de chave ESP: %u bytes\n" #: oncp.c:350 pulse.c:481 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "Tempo de vida de chave ESP: %u segundos\n" #: oncp.c:358 pulse.c:513 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "Fallback ESP para SSL: %u segundos\n" #: oncp.c:366 pulse.c:497 #, c-format msgid "ESP replay protection: %d\n" msgstr "Proteção de replay ESP: %d\n" #: oncp.c:374 pulse.c:529 pulse.c:2115 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "SPI de ESP (saída): %x\n" #: oncp.c:383 pulse.c:538 pulse.c:2103 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "%d bytes de segredos ESP\n" #: oncp.c:395 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "TLV desconhecido com grupo %d, atributo %d, tamanho %d:%s\n" #: oncp.c:473 msgid "Failed to parse KMP header\n" msgstr "Falha ao analisar cabeçalho KMP\n" #: oncp.c:490 msgid "Failed to parse KMP message\n" msgstr "Falha ao analisar mensagem KMP\n" #: oncp.c:496 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "Obteve mensagem KMP %d de tamanho %d\n" #: oncp.c:512 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "Recebido TLVs (grupo %d) não-ESP em KMP de negociação ESP\n" #: oncp.c:577 oncp.c:609 oncp.c:747 msgid "Error creating oNCP negotiation request\n" msgstr "Erro ao criar requisição de negociação oNCP\n" #: oncp.c:618 oncp.c:783 msgid "Short write in oNCP negotiation\n" msgstr "Escrita curta em negociação oNCP\n" #: oncp.c:631 oncp.c:666 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "Lidos %d bytes de registro SSL\n" #: oncp.c:636 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "Resposta inesperada de tamanho %d após pacote de hostname\n" #: oncp.c:643 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "Resposta do servidor ao pacote do hostname é erro 0x%02x\n" #: oncp.c:670 msgid "Invalid packet waiting for KMP 301\n" msgstr "Pacote inválido, esperando por KMP 301\n" #: oncp.c:683 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "Esperava mensagem KMP 301 do servidor, mas obteve %d\n" #: oncp.c:692 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "Mensagem KMP 301 do servidor muito grande (%d bytes)\n" #: oncp.c:698 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "Obteve mensagem KMP 301 de comprimento %d\n" #: oncp.c:705 msgid "Failed to read continuation record length\n" msgstr "Falha ao ler tamanho de registro de continuação\n" #: oncp.c:711 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "Registro de %d bytes adicionais muito grande; resultaria em %d\n" #: oncp.c:720 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "Falha ao ler registro de continuação de tamanho %d\n" #: oncp.c:726 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "Lidos %d bytes adicionais de mensagem KMP 301\n" #: oncp.c:767 msgid "Error negotiating ESP keys\n" msgstr "Erro ao negociar chaves ESP\n" #: oncp.c:776 msgid "oNCP negotiation request outgoing:\n" msgstr "Saída da requisição de negociação oNCP:\n" #: oncp.c:829 pulse.c:2372 msgid "new incoming" msgstr "nova entrada" #: oncp.c:830 pulse.c:2373 msgid "new outgoing" msgstr "nova saída" #: oncp.c:855 msgid "Read only 1 byte of oNCP length field\n" msgstr "Lido apenas 1 byte de campo de comprimento oNCP\n" #: oncp.c:864 msgid "Server terminated connection (session expired)\n" msgstr "Servidor terminou a conexão (sessão expirou)\n" #: oncp.c:868 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "Servidor terminou a conexão (motivo: %d)\n" #: oncp.c:874 msgid "Server sent zero-length oNCP record\n" msgstr "Servidor enviou registro oNCP de comprimento zero\n" #: oncp.c:969 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "Recebendo mensagem KMP %d de tamanho %d (obteve %d)\n" #: oncp.c:972 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" "Continuando a processar mensagem KMP %d agora com tamanho %d (obteve %d)\n" #: oncp.c:991 msgid "Unrecognised data packet\n" msgstr "Pacote de dados não reconhecido\n" #: oncp.c:1053 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "Mensagem KMP desconhecida %d de tamanho %d:\n" #: oncp.c:1058 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr ".... + mais %d bytes não recebidos\n" #: oncp.c:1073 pulse.c:2404 msgid "Packet outgoing:\n" msgstr "Pacote de saída:\n" #: oncp.c:1135 msgid "Sent ESP enable control packet\n" msgstr "Enviado pacote de controle com capacidade de ESP\n" #: oncp.c:1269 msgid "Logout successful.\n" msgstr "Desconexão feita com sucesso.\n" #: openconnect-internal.h:1164 openconnect-internal.h:1172 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "ERRO: %s() chamado com UTF-8 inválido para \"%s\" argumento\n" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "Não foi possível calcular sobrecarga de DTLS para %s\n" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "Falha ao gerar chave aleatória\n" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "Falha ao criar ASN.1 de SL_SESSION para OpenSSL: %s\n" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "Falha do OpenSSL ao analisar ASN.1 de SL_SESSION\n" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "A inicialização da sessão de DTLSv1 falhou\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "Tamanho de ID de aplicativo grande demais\n" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "Retorno de PSK\n" #: openssl-dtls.c:366 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Inicialização de DTLSv1 CTX falhou\n" #: openssl-dtls.c:376 msgid "Set DTLS CTX version failed\n" msgstr "Definição da versão CTX de DTLS falhou\n" #: openssl-dtls.c:398 msgid "Failed to generate DTLS key\n" msgstr "Falha ao gerar chave DTLS\n" #: openssl-dtls.c:453 msgid "Set DTLS cipher list failed\n" msgstr "A definição da lista de cifras DTLS falhou\n" #: openssl-dtls.c:479 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "Cifra DTLS “%s” não localizada\n" #: openssl-dtls.c:500 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "SSL_set_session() falhou com versão antiga de protocolo 0x%x\n" "Você está usando uma versão do OpenSSL mais antiga do que 0.9.8m?\n" "Veja http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use a opção de linha de comando --no-dtls para evitar esta mensagem\n" #: openssl-dtls.c:533 msgid "SSL_set_session() failed\n" msgstr "SSL_set_session() falhou\n" #: openssl-dtls.c:606 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "Conexão DTLS estabelecida (usando OpenSSL). Ciphersuite %s.\n" #: openssl-dtls.c:643 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" "Seu OpenSSL é mais antigo do que aquele com o qual se compilou o OpenConnect " "e, portanto, DTLS pode falhar!" #: openssl-dtls.c:694 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Isso é provavelmente porque o seu OpenSSL está quebrado\n" "Veja http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: openssl-dtls.c:701 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "A negociação DTLS falhou: %d\n" #: openssl-esp.c:86 msgid "Failed to initialise ESP cipher:\n" msgstr "Erro ao inicializar cifra ESP:\n" #: openssl-esp.c:100 msgid "Failed to initialize ESP HMAC\n" msgstr "Erro ao inicializar HMAC de ESP\n" #: openssl-esp.c:176 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "Falha ao configurar contexto de descriptografia para pacote ESP:\n" #: openssl-esp.c:184 msgid "Failed to decrypt ESP packet:\n" msgstr "Falha ao descriptografar pacote ESP:\n" #: openssl-esp.c:200 msgid "Failed to encrypt ESP packet:\n" msgstr "Falha ao criptografar pacote ESP:\n" #: openssl-pkcs11.c:43 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "Falha ao estabelecer contexto PKCS#11 de libp11:\n" #: openssl-pkcs11.c:49 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "Falha ao carregar módulo provedor de PKCS#11 (%s):\n" #: openssl-pkcs11.c:269 msgid "PIN locked\n" msgstr "PIN travado\n" #: openssl-pkcs11.c:272 msgid "PIN expired\n" msgstr "PIN expirou\n" #: openssl-pkcs11.c:275 msgid "Another user already logged in\n" msgstr "Um outro usuário já está conectado\n" #: openssl-pkcs11.c:279 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "Erro desconhecido ao conectar ao token PKCS#11\n" #: openssl-pkcs11.c:286 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "Conectado ao slot PKCS#11 \"%s\"\n" #: openssl-pkcs11.c:300 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "Falha ao enumerar certificados no slot PKCS#11 \"%s\"\n" #: openssl-pkcs11.c:306 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "Encontrada %d certificados no slot \"%s\"\n" #: openssl-pkcs11.c:342 openssl-pkcs11.c:565 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "Falha ao analisar URI PKCS#11 \"%s\"\n" #: openssl-pkcs11.c:349 openssl-pkcs11.c:575 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "Falha ao enumerar slots PKCS#11\n" #: openssl-pkcs11.c:383 openssl-pkcs11.c:617 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "Conectando ao slot PKCS#11 \"%s\"\n" #: openssl-pkcs11.c:393 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "Falha ao localizar certificado PKCS#11 “%s”\n" #: openssl-pkcs11.c:401 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "Conteúdo de certificado X.509 não obtido por libp11\n" #: openssl-pkcs11.c:412 openssl.c:713 msgid "Failed to install certificate in OpenSSL context\n" msgstr "Falhou ao instalar certificado em contexto OpenSSL\n" #: openssl-pkcs11.c:458 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "Falha ao enumerar chaves no slot PKCS#11 \"%s\"\n" #: openssl-pkcs11.c:464 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "Encontradas %d chaves no slot \"%s\"\n" #: openssl-pkcs11.c:497 msgid "Certificate has no public key\n" msgstr "O certificado não possui chave pública\n" #: openssl-pkcs11.c:503 openssl-pkcs11.c:526 msgid "Certificate does not match private key\n" msgstr "O certificado não confere com a chave privada\n" #: openssl-pkcs11.c:506 msgid "Checking EC key matches cert\n" msgstr "A verificação da chave EC confere com o certificado\n" #: openssl-pkcs11.c:510 msgid "Failed to allocate signature buffer\n" msgstr "Falha ao alocar buffer de assinatura\n" #: openssl-pkcs11.c:520 msgid "Failed to sign dummy data to validate EC key\n" msgstr "Falha ao assinar dados fictícios para validar a chave EC\n" #: openssl-pkcs11.c:638 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "Falha ao localizar chave PKCS#11 “%s”\n" #: openssl-pkcs11.c:649 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "Falha ao instanciar chave privada de PKCS#11\n" #: openssl-pkcs11.c:678 msgid "Add key from PKCS#11 failed\n" msgstr "Adição de chave de PKCS#11 falhou\n" #: openssl-pkcs11.c:710 openssl-pkcs11.c:716 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "Essa versão do OpenConnect foi compilada sem suporte a PKCS#11\n" #: openssl.c:147 msgid "Failed to write to SSL socket\n" msgstr "Falhou ao escrever para socket SSL\n" #: openssl.c:197 openssl.c:263 msgid "Failed to read from SSL socket\n" msgstr "Falhou ao escrever de socket SSL\n" #: openssl.c:292 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" "Erro de leitura SSL %d (servidor provavelmente fechou a conexão) - " "reconectando.\n" #: openssl.c:317 #, c-format msgid "SSL_write failed: %d\n" msgstr "SSL_write falhou: %d\n" #: openssl.c:389 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "Tipo de requisição de UI SSL não lidada %d\n" #: openssl.c:465 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "Senha de PEM muito longa (%d >= %d)\n" #: openssl.c:498 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Certificado extra de %s: '%s'\n" #: openssl.c:548 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Análise de PKCS#12 falhou (veja os erros acima)\n" #: openssl.c:563 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS#12 continha nenhum certificado!\n" #: openssl.c:572 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS#12 continha nenhuma chave privada!\n" #: openssl.c:577 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:600 msgid "Can't load TPM engine.\n" msgstr "Não foi possível carregar mecanismo de TMP.\n" #: openssl.c:606 msgid "Failed to init TPM engine\n" msgstr "Falhou ao inicializar mecanismo de TMP\n" #: openssl.c:616 msgid "Failed to set TPM SRK password\n" msgstr "Falhou ao definir senha de SRK TPM\n" #: openssl.c:630 msgid "Failed to load TPM private key\n" msgstr "Falhou ao carregar chave privada de TPM\n" #: openssl.c:636 msgid "Add key from TPM failed\n" msgstr "Adição de chave de TPM falhou\n" #: openssl.c:687 openssl.c:835 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Falhou ao abrir arquivo de certificado %s: %s\n" #: openssl.c:697 msgid "Loading certificate failed\n" msgstr "Carregamento de certificado falhou\n" #: openssl.c:735 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" "Falhou ao processar todos os certificados suportados. Tentando mesmo " "assim...\n" #: openssl.c:748 msgid "PEM file" msgstr "Arquivo PEM" #: openssl.c:777 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Falhou ao criar BIO para item da keystore \"%s\"\n" #: openssl.c:802 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Carregamento de chave privada falhou (frase secreta incorreta?)\n" #: openssl.c:808 msgid "Loading private key failed (see above errors)\n" msgstr "Carregamento de chave privada falhou (veja os erros acima)\n" #: openssl.c:858 msgid "Failed to load X509 certificate from keystore\n" msgstr "Falhou ao carregar certificado X509 da keystore\n" #: openssl.c:864 msgid "Failed to use X509 certificate from keystore\n" msgstr "Falhou ao usar certificado X509 da keystore\n" #: openssl.c:896 msgid "Failed to use private key from keystore\n" msgstr "Falhou ao usar chave privada da keystore\n" #: openssl.c:912 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Falhou ao abrir arquivo de chave privada %s: %s\n" #: openssl.c:936 openssl.c:951 openssl.c:972 openssl.c:1038 msgid "Loading private key failed\n" msgstr "Carregamento de chaves privadas falhou\n" #: openssl.c:1032 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "Falha ao converter PKCS#8 para EVP_PKEY de OpenSSL\n" #: openssl.c:1049 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Falhou ao identificar o tipo de chave privada em \"%s\"\n" #: openssl.c:1203 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Correspondeu ao altname DNS de \"%s\"\n" #: openssl.c:1210 #, c-format msgid "No match for altname '%s'\n" msgstr "Não corresponder para altname de \"%s\"\n" #: openssl.c:1224 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "O certificado tem um altname GEN_IPADD com tamanho falho %d\n" #: openssl.c:1235 openssl.c:1381 #, c-format msgid "Matched %s address '%s'\n" msgstr "Correspondeu o endereço %s a \"%s\"\n" #: openssl.c:1242 #, c-format msgid "No match for %s address '%s'\n" msgstr "Nenhuma correspondência para endereço %s de \"%s\"\n" #: openssl.c:1284 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "A URI \"%s\" possui caminho não vazio - ignorando\n" #: openssl.c:1289 #, c-format msgid "Matched URI '%s'\n" msgstr "Correspondeu a URI \"%s\"\n" #: openssl.c:1300 #, c-format msgid "No match for URI '%s'\n" msgstr "Nenhuma correspondência com URI \"%s\"\n" #: openssl.c:1315 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "Nenhum altname no certificado do par correspondeu \"%s\"\n" #: openssl.c:1323 msgid "No subject name in peer cert!\n" msgstr "Nenhum nome do sujeito no certificado do par!\n" #: openssl.c:1343 msgid "Failed to parse subject name in peer cert\n" msgstr "Falhou ao analisar nome do sujeito no certificado do par\n" #: openssl.c:1350 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Sujeito do certificado do par não confere (\"%s\" != \"%s\")\n" #: openssl.c:1355 openssl.c:1389 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Correspondeu ao nome do sujeito \"%s\" do certificado do par\n" #: openssl.c:1451 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Certificado extra do CAfile: \"%s\"\n" #: openssl.c:1589 msgid "Error in client cert notAfter field\n" msgstr "Erro no campo notAfter do certificado do cliente\n" #: openssl.c:1602 msgid "" msgstr "" #: openssl.c:1655 msgid "Create TLSv1 CTX failed\n" msgstr "Criação de CTX de TLSv1 falhou\n" #: openssl.c:1674 msgid "SSL certificate and key do not match\n" msgstr "Certificado SSL e chave não correspondem\n" #: openssl.c:1719 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Falhou ao ler certificados do CAfile \"%s\"\n" #: openssl.c:1752 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Falhou ao abrir o CAfile \"%s\"\n" #: openssl.c:1812 msgid "SSL connection failure\n" msgstr "Falha de conexão SSL\n" #: openssl.c:1975 msgid "Failed to calculate OATH HMAC\n" msgstr "Falha ao calcular HMAC de OATH\n" #: openssl.c:2078 #, c-format msgid "EAP-TTLS negotiation with %s\n" msgstr "Negociação EAP-TTLS com %s\n" #: openssl.c:2089 #, c-format msgid "EAP-TTLS connection failure %d\n" msgstr "Falha de conexão EAP-TTLS: %d\n" #: pulse.c:267 #, c-format msgid "Received internal Legacy IP address %s\n" msgstr "Recebido endereço IP legado interno %s\n" #: pulse.c:315 pulse.c:332 pulse.c:351 pulse.c:374 msgid "Failed to handle IPv6 address\n" msgstr "Falha ao tratar de endereço IPv6: %s\n" #: pulse.c:324 #, c-format msgid "Received internal IPv6 address %s\n" msgstr "Recebido endereço IPv6 interno %s\n" #: pulse.c:366 #, c-format msgid "Received IPv6 split include %s\n" msgstr "Recebida inclusão de split IPv6 %s\n" #: pulse.c:389 #, c-format msgid "Received IPv6 split exclude %s\n" msgstr "Recebida exclusão de split IPv6 %s\n" #: pulse.c:396 #, c-format msgid "Unexpected length %d for attr 0x%x\n" msgstr "Comprimento %d inesperado para atributo 0x%x\n" #: pulse.c:447 #, c-format msgid "ESP encryption: 0x%04x (%s)\n" msgstr "Criptografia ESP: 0x%04x (%s)\n" #: pulse.c:471 #, c-format msgid "ESP HMAC: 0x%04x (%s)\n" msgstr "ESP HMAC: 0x%04x (%s)\n" #. Amusingly, this isn't enforced. It's client-only #: pulse.c:521 #, c-format msgid "ESP only: %d\n" msgstr "ESP apenas: %d\n" #: pulse.c:563 #, c-format msgid "Unknown attr 0x%x len %d:%s\n" msgstr "Atributo desconhecido 0x%x tamanho %d:%s\n" #: pulse.c:574 #, c-format msgid "Read %d bytes of IF-T/TLS record\n" msgstr "Lidos %d bytes de registro IF-T/TLS\n" #: pulse.c:591 msgid "Short write to IF-T/TLS\n" msgstr "Escrita curta para IF-T/TLS\n" #: pulse.c:604 msgid "Error creating IF-T packet\n" msgstr "Erro ao criar pacote IF-T\n" #: pulse.c:624 msgid "Error creating EAP packet\n" msgstr "Erro ao criar pacote EAP\n" #: pulse.c:659 pulse.c:1358 pulse.c:1421 msgid "Unexpected IF-T/TLS authentication challenge:\n" msgstr "Desafio inesperado de autenticação IF-T/TLS:\n" #: pulse.c:677 msgid "Unexpected EAP-TTLS payload:\n" msgstr "Carga inesperada EAP-TTLS:\n" #: pulse.c:710 #, c-format msgid "AVP 0x%x/0x%x:%s\n" msgstr "AVP 0x%x/0x%x:%s\n" #: pulse.c:712 #, c-format msgid "AVP %d:%s\n" msgstr "AVP %d:%s\n" #: pulse.c:779 msgid "Enter Pulse user realm:" msgstr "Insira o reino do usuário Pulse:" #: pulse.c:784 pulse.c:827 msgid "Realm:" msgstr "Reino:" #: pulse.c:822 msgid "Choose Pulse user realm:" msgstr "Escolha o reino do usuário Pulse:" #: pulse.c:838 pulse.c:1487 pulse.c:1556 msgid "Failed to parse AVP\n" msgstr "Falha ao analisar AVP\n" #: pulse.c:905 msgid "Session limit reached. Choose session to kill:\n" msgstr "Limite de sessões atingido. Escolha a sessão para encerrar:\n" #: pulse.c:910 msgid "Session:" msgstr "Sessão:" #: pulse.c:926 msgid "Failed to parse session list\n" msgstr "Falha ao analisar lista de sessões\n" #: pulse.c:1012 msgid "Enter secondary credentials:" msgstr "Insira as credenciais secundárias:" #. Point to password prompt in case that's all we use #: pulse.c:1012 msgid "Enter user credentials:" msgstr "Insira as credenciais do usuário:" #: pulse.c:1022 pulse.c:1115 msgid "Secondary username:" msgstr "Nome de usuário secundário:" #: pulse.c:1022 pulse.c:1115 msgid "Username:" msgstr "Nome de usuário:" #: pulse.c:1032 stoken.c:89 msgid "Password:" msgstr "Senha:" #: pulse.c:1032 msgid "Secondary password:" msgstr "Senha secundária:" #: pulse.c:1105 msgid "Token code request:" msgstr "Requisição de código do token:" #: pulse.c:1129 msgid "Please enter response:" msgstr "Por favor, insira a resposta:" #: pulse.c:1133 msgid "Please enter your passcode:" msgstr "Por favor, insira sua senha:" #: pulse.c:1135 msgid "Please enter your secondary token information:" msgstr "Por favor, insira as informações do token secundário:" #: pulse.c:1275 msgid "Error creating Pulse connection request\n" msgstr "Erro ao criar requisição de conexão Pulse\n" #: pulse.c:1318 msgid "Unexpected response to IF-T/TLS version negotiation:\n" msgstr "Resposta inesperada a negociação de versão IF-T/TLS:\n" #: pulse.c:1323 #, c-format msgid "IF-T/TLS version from server: %d\n" msgstr "Versão IF-T/TLS do servidor: %d\n" #: pulse.c:1449 msgid "Failed to establish EAP-TTLS session\n" msgstr "Falha ao estabelecer sessão EAP-TTLS\n" #: pulse.c:1568 msgid "Server certificate mismatch. Aborting due to suspected MITM attack\n" msgstr "" "Incompatibilidade de certificado do servidor. Interrupção devido a suspeita " "de ataque MITM\n" #: pulse.c:1583 msgid "Authentication failure: Account locked out\n" msgstr "Falha na autenticação: Conta bloqueada\n" #: pulse.c:1586 #, c-format msgid "Authentication failure: Code 0x%02x\n" msgstr "Falha na autenticação: Código 0x%02x\n" #: pulse.c:1668 msgid "Unhandled Pulse authentication packet, or authentication failure\n" msgstr "Pacote de autenticação Pulse não tratado ou falha de autenticação\n" #: pulse.c:1684 msgid "Pulse authentication cookie not accepted\n" msgstr "Cookie de autenticação Pulse não aceito\n" #: pulse.c:1690 msgid "Pulse realm entry\n" msgstr "Registro de reino Pulse\n" #: pulse.c:1696 msgid "Pulse realm choice\n" msgstr "Escolha de reino Pulse\n" #: pulse.c:1703 #, c-format msgid "Pulse password auth request, code 0x%02x\n" msgstr "Requisição de autenticação por senha Pulse, código 0x%02x\n" #: pulse.c:1714 msgid "Pulse password general token code request\n" msgstr "Requisição de código de token geral por senha Pulse\n" #: pulse.c:1725 #, c-format msgid "Pulse session limit, %d sessions\n" msgstr "Limite de sessão de Pulse, %d sessões\n" #: pulse.c:1734 msgid "Unhandled Pulse auth request\n" msgstr "Requisição de autenticação Pulse não tratada %d\n" #: pulse.c:1771 msgid "Unexpected response instead of IF-T/TLS auth success:\n" msgstr "Resposta inesperada em vez de sucesso de autenticação IF-T/TLS:\n" #: pulse.c:1844 #, c-format msgid "Read %d bytes of IF-T/TLS EAP-TTLS record\n" msgstr "Lidos %d bytes de registro IF-T/TLS EAP-TTLS\n" #: pulse.c:1855 msgid "Bad EAP-TTLS packet\n" msgstr "Pacote EAP-TTLS inválido\n" #: pulse.c:1968 msgid "Unexpected Pulse config packet:\n" msgstr "Pacote de configuração Pulse inesperado:\n" #: pulse.c:2025 #, c-format msgid "Receive route of unknown type 0x%08x\n" msgstr "Recebida rota de tipo desconhecido 0x%08x\n" #: pulse.c:2096 msgid "Invalid ESP config packet:\n" msgstr "Pacote de configuração ESP inválido:\n" #: pulse.c:2108 msgid "Invalid ESP setup\n" msgstr "Configuração ESP inválida\n" #: pulse.c:2183 msgid "Bad IF-T/TLS packet when expecting configuration:\n" msgstr "Pacote IF-T/TLS inválido ao esperar a configuração:\n" #: pulse.c:2191 msgid "Unexpected IF-T/TLS packet when expecting configuration.\n" msgstr "Pacote IF-T/TLS inesperado ao esperar a configuração.\n" #: pulse.c:2342 #, c-format msgid "Received data packet of %d bytes\n" msgstr "Recebido pacote de dados de %d bytes\n" #: pulse.c:2364 msgid "ESP rekey failed\n" msgstr "Renovação da chave ESP falhou\n" #: pulse.c:2388 msgid "Unknown Pulse packet\n" msgstr "Pacote Pulse desconhecido\n" #: pulse.c:2566 #, c-format msgid "Sending IF-T/TLS data packet of %d bytes\n" msgstr "Enviando pacote de dados IF-T/TLS de %d bytes\n" #: script.c:130 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Descartar inclusão de split incorreta: \"%s\"\n" #: script.c:134 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Descartar exclusão de split incorreta: \"%s\"\n" #: script.c:507 script.c:555 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Falhou ao executar o script \"%s\" para %s: %s\n" #: script.c:562 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "O script \"%s\" saiu anormalmente (%x)\n" #: script.c:570 #, c-format msgid "Script '%s' returned error %d\n" msgstr "O script \"%s\" retornou erro %d\n" #: ssl.c:108 msgid "Socket connect cancelled\n" msgstr "Conexão de socket cancelada\n" #: ssl.c:217 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "Falha ao reconectar ao proxy %s: %s\n" #: ssl.c:221 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "Falha ao reconectar ao host %s: %s\n" #: ssl.c:289 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Proxy de libproxy: %s://%s:%d/\n" #: ssl.c:317 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "getaddrinfo falhou para o host \"%s\": %s\n" #: ssl.c:326 ssl.c:451 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" "Reconectando ao servidor DynDNS usando endereço IP anteriormente em cache\n" #: ssl.c:341 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Tentando conectar ao proxy %s%s%s:%s\n" #: ssl.c:342 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Tentando conectar ao servidor %s%s%s:%s\n" #: ssl.c:362 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "Conectado a %s%s%s:%s\n" #: ssl.c:374 msgid "Failed to allocate sockaddr storage\n" msgstr "Falhou ao alocar armazenamento de sockaddr\n" #: ssl.c:416 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "Falha ao conectar a %s%s%s:%s: %s\n" #: ssl.c:434 msgid "Forgetting non-functional previous peer address\n" msgstr "Esquecendo de endereço de par anteriormente não funcional\n" #: ssl.c:446 #, c-format msgid "Failed to connect to host %s\n" msgstr "Falhou ao conectar ao host %s\n" #: ssl.c:465 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "Reconectando ao proxy %s\n" #: ssl.c:536 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:564 msgid "Could not obtain file system ID for passphrase\n" msgstr "" "Não foi possível obter o ID de sistema de arquivos para palavra frase\n" #: ssl.c:575 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "Falhou ao abrir o arquivo de chaves privadas \"%s\": %s\n" #: ssl.c:603 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:694 msgid "No error" msgstr "Nenhum erro" #: ssl.c:695 msgid "Keystore locked" msgstr "Keystore travada" #: ssl.c:696 msgid "Keystore uninitialized" msgstr "Keystore não inicializada" #: ssl.c:697 msgid "System error" msgstr "Erro de sistema" #: ssl.c:698 msgid "Protocol error" msgstr "Erro de protocolo" #: ssl.c:699 msgid "Permission denied" msgstr "Permissão negada" #: ssl.c:700 msgid "Key not found" msgstr "Chave não encontrada" #: ssl.c:701 msgid "Value corrupted" msgstr "Valor corrompido" #: ssl.c:702 msgid "Undefined action" msgstr "Ação não definida" #: ssl.c:706 msgid "Wrong password" msgstr "Senha incorreta" #: ssl.c:707 msgid "Unknown error" msgstr "Erro desconhecido" #: ssl.c:896 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "openconnect_fopen_utf8() usado como modo sem suporte \"%s\"\n" #: ssl.c:931 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" "Família %d de protocolo desconhecido. Não foi possível criar endereço de " "servidor UDP\n" #: ssl.c:950 msgid "Open UDP socket" msgstr "Socket UDP aberto" #: ssl.c:981 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" "Família %d de protocolo desconhecido. Não foi possível usar transporte UDP\n" #: ssl.c:989 msgid "Bind UDP socket" msgstr "Socket UDP alocado" #: ssl.c:996 msgid "Connect UDP socket\n" msgstr "Conectar ao socket UDP\n" #: ssl.c:1034 msgid "Cookie is no longer valid, ending session\n" msgstr "O cookie não é mais válido, finalizando sessão\n" #: ssl.c:1038 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "dormir por %ds, tempo limite restante %ds\n" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "Token SSPI muito grande (%ld bytes)\n" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "Enviando token SSPI de de %lu bytes\n" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "Falhou ao enviar um token de autenticação SSPI para o proxy: %s\n" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "Falhou ao receber um token de autenticação SSPI do proxy %s\n" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "O servidor SOCKS relatou uma falha de contexto SSPI\n" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "Resposta de status SSPI (0x%02x) desconhecida do servidor SOCKS\n" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "Obteve token SSPI de %lu bytes: %02x %02x %02x %02x\n" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "QueryContextAttributes() falhou: %lx\n" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "EncryptMessage() falhou: %lx\n" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "Resultado de EncryptMessage() muito grande (%lu + %lu + %lu)\n" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "Enviando negociação de proteção SSPI de %u bytes\n" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "Falhou ao enviar resposta de proteção SSPI ao proxy %s\n" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "Falhou ao receber resposta de proteção SSPI do proxy %s\n" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "Obteve resposta de proteção SSPI de %d bytes: %02x %02x %02x %02x\n" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "DecryptMessage falhou: %lx\n" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "Resposta de proteção SSPI inválida do proxy (%lu bytes)\n" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "Digite as credenciais para destravar o token de software." #: stoken.c:82 msgid "Device ID:" msgstr "ID de dispositivo:" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "O usuário contornou o token de software.\n" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "Todos os campos são necessários - tente novamente.\n" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "Falha geral no libstoken.\n" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "ID ou senha incorretos para o dispositivo - tente novamente.\n" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "Inicialização do token de software concluiu com sucesso.\n" #: stoken.c:185 msgid "Enter software token PIN." msgstr "Insira o PIN do token." #: stoken.c:189 msgid "PIN:" msgstr "PIN:" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "Formato inválido de PIN - tente novamente.\n" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "Gerando código de token RSA\n" #: tun-win32.c:76 msgid "Error accessing registry key for network adapters\n" msgstr "Erro ao acessar chave de registro de adaptadores de rede\n" #: tun-win32.c:139 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "Ignorando interface TAP não correspondente \"%s\"\n" #: tun-win32.c:154 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "Nenhum adaptador TAP do Windows encontrado. O driver está instalado?\n" #: tun-win32.c:186 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" "GetAdapterIndex() falhou: %s\n" "Retornando para GetAdaptersInfo()\n" #: tun-win32.c:200 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "GetAdaptersInfo() falhou: %s\n" #: tun-win32.c:231 #, c-format msgid "Failed to open %s\n" msgstr "Falha ao abrir %s\n" #: tun-win32.c:236 #, c-format msgid "Opened tun device %s\n" msgstr "Abriu dispositivo tun %s\n" #: tun-win32.c:244 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Falhou ao obter versão do driver TAP: %s\n" #: tun-win32.c:250 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Erro: Driver de TAP do Windows versão v9.9 ou mais recente é necessário " "(encontrou %ld.%ld)\n" #: tun-win32.c:271 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Falhou ao definir endereços IP TAP: %s\n" #: tun-win32.c:283 tun-win32.c:406 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Falhou ao definir status de mídia TAP: %s\n" #: tun-win32.c:316 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "Dispositivo TAP abortou conectividade. Desconectando.\n" #: tun-win32.c:321 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Falhou ao ler do dispositivo TAP: %s\n" #: tun-win32.c:335 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Falhou ao completar leitura do dispositivo TAP: %s\n" #: tun-win32.c:358 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "Escreveu %ld bytes para tun\n" #: tun-win32.c:368 msgid "Waiting for tun write...\n" msgstr "Esperando o tun escrever...\n" #: tun-win32.c:371 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "Escreveu %ld bytes para tun após espera\n" #: tun-win32.c:378 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Falhou ao escrever no dispositivo TAP: %s\n" #: tun-win32.c:423 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "Scripts de criação de túnel não têm suporte no Windows\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Não foi possível abrir /dev/tun para canalização" #: tun.c:92 msgid "Can't push IP" msgstr "Não foi possível enviar IP" #: tun.c:102 msgid "Can't set ifname" msgstr "Não foi possível configurar ifname" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "Não foi possível abrir %s: %s" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Não foi possível canalizar %s para IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "abrir /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Falhou ao criar novo tun" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "Falhou ao colocar descritor de arquivo tun no modo message-discard" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "dispositivo tun sem suporte nesta plataforma\n" #: tun.c:205 msgid "open net" msgstr "rede aberta" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Falhou ao abrir dispositivo tun: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "Falha ao alocar dispositivo tun local (TUNSETIFF): %s\n" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" "Para configurar a rede local, openconnect deve ser executado como root\n" "Veja http://www.infradead.org/openconnect/nonroot.html para mais informação\n" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" "Nome inválido de interface \"%s\"; deve corresponder a \"utun%%d\" ou \"tun" "%%d\"\n" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "Falhou ao abrir socket SYSPROTO_CONTROL: %s\n" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "Falhou ao consultar id de controle utun: %s\n" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "Falhou ao alocar nome do dispositivo utun: %s\n" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "Falhou ao conectar a unidade utun: %s\n" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Nome inválido de interface \"%s\" - deve corresponder a \"tun%%d\"\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Não foi possível abrir \"%s\": %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" # é uma função - socketpair() #: tun.c:479 #, c-format msgid "socketpair failed: %s\n" msgstr "socketpair falhou: %s\n" # é uma função - fork() #: tun.c:484 #, c-format msgid "fork failed: %s\n" msgstr "fork falhou: %s\n" #: tun.c:488 msgid "setpgid" msgstr "setpgid" #: tun.c:493 msgid "execl" msgstr "execl" #: tun.c:498 msgid "(script)" msgstr "(script)" #: tun.c:566 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Falhou ao escrever pacote de entrada: %s\n" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "Falhou ao abrir %s: %s\n" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "Falhou ao fstat() %s: %s\n" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Falhou ao alocar %d bytes para %s\n" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "Falhou ao ler %s: %s\n" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Tratando o host \"%s\" como um hostname simples\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Falha ao executar SHA1 em arquivo existente\n" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "SHA1 de arquivo de configuração XML: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Falha ao analisar arquivo de configuração XML %s\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "O host \"%s\" possui endereço \"%s\"\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "O host \"%s\" possui UserGroup \"%s\"\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "O host \"%s\" não está listado na configuração - tratando-o como um hostname " "simples\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "Falhou ao enviar \"%s\" para miniaplicativo ykneo-oath: %s\n" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "Reposta curta inválida para \"%s\" do miniaplicativo ykneo-oath\n" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "Falhou ao responder a \"%s\": %04x\n" #: yubikey.c:174 msgid "select applet command" msgstr "comando select applet" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "Resposta não reconhecida do miniaplicativo ykneo-oath\n" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "Encontrado miniaplicativo ykneo-oath v%d.%d.%d.\n" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "PIN necessário para o miniaplicativo Yubikey OATH" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "Yubikey PIN:" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "Falhou ao calcular resposta de destravamento de Yubikey\n" #: yubikey.c:274 msgid "unlock command" msgstr "comando unlock" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" "Tentando uma variante de PBKBF2 com caractere truncado de PIN de Yubikey\n" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "Falhou ao estabelecer contexto PC/SC: %s\n" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "Contexto PC/SC estabelecido\n" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "Falhou ao consultar lista de leitores: %s\n" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "Falhou ao conectar ao leitor PC/SC \"%s\": %s\n" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "Conectado ao leitor PC/SC \"%s\"\n" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "Falhou ao obter acesso exclusivo para ler \"%s\": %s\n" #: yubikey.c:412 msgid "list keys command" msgstr "comando list keys" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "Encontrada a chave de %s/%s \"%s\" em \"%s\"\n" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" "Token \"%s\" não encontrado no Yubikey '%s'. Pesquisando por outro " "Yubikey...\n" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" "O servidor está rejeitando o token Yubikey - alternando para entrada manual\n" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "Gerando código de token Yubikey\n" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "Falhou ao obter acesso exclusivo ao Yubikey: %s\n" #: yubikey.c:619 msgid "calculate command" msgstr "comando calculate" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "Resposta não reconhecida do Yubikey ao gerar código de token\n" #~ msgid "Failed to generate random keys for ESP:\n" #~ msgstr "Falha ao gerar chaves aleatórias para ESP:\n" #~ msgid "Compatible with Juniper Network Connect / Pulse Secure SSL VPN" #~ msgstr "Compatível com Juniper Network Connect / Pulse Secure SSL VPN" #~ msgid "Sending data packet of %d bytes\n" #~ msgstr "Enviando pacote de dados de %d bytes\n" #~ msgid "Unknown ESP %s algorithm: %s" #~ msgstr "Algoritmo ESP %s desconhecido: %s" #~ msgid "Failed to generate random keys for ESP: %s\n" #~ msgstr "Falha ao gerar chaves aleatórias para ESP: %s\n" #~ msgid "Failed to send DPD request (%d)\n" #~ msgstr "Falha ao enviar requisição DPD (%d)\n" #~ msgid "Initiating IPv6 MTU detection\n" #~ msgstr "Iniciando detecção MTU de IPv6\n" #~ msgid "Received MTU DPD probe (%u bytes of %u)\n" #~ msgstr "Recebida sonda DPD de MTU (%u bytes de %u)\n" #~ msgid "Timeout while waiting for DPD response; resending probe.\n" #~ msgstr "" #~ "Tempo esgotou enquanto esperava por uma resposta DPD; reenviando a " #~ "sonda.\n" #~ msgid "Timeout while waiting for DPD response; trying %d\n" #~ msgstr "Tempo esgotou enquanto esperava por uma resposta DPD; tentando %d\n" #~ msgid "Sending MTU DPD probe (%u bytes, min=%u, max=%u)\n" #~ msgstr "Enviando sonda DPD de MTU (%u bytes, mín=%u, máx=%u)\n" #~ msgid "Initiating IPv4 MTU detection (min=%d, max=%d)\n" #~ msgstr "Iniciando detecção de MTU de IPv4 (min=%d, máx=%d)\n" openconnect-8.05/po/sl.po0000664000076400007640000032263713470043037017147 0ustar00dwoodhoudwoodhou00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2019-05-18 10:44-0700\n" "PO-Revision-Date: 2012-11-15 08:31+0000\n" "Last-Translator: David Woodhouse \n" "Language-Team: Slovenian \n" "Language: sl\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=4; plural=(n%100==1 ? 0 : n%100==2 ? 1 : n%100==3 || n" "%100==4 ? 2 : 3);\n" #: auth-globalprotect.c:108 #, c-format msgid "" "SAML login is required via %s to this URL:\n" "\t%s" msgstr "" #: auth-globalprotect.c:110 msgid "Please enter your username and password" msgstr "" #: auth-globalprotect.c:119 msgid "Username" msgstr "" #: auth-globalprotect.c:134 msgid "Password" msgstr "" #: auth-globalprotect.c:181 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:260 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:266 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:272 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:315 msgid "Please select GlobalProtect gateway." msgstr "" #: auth-globalprotect.c:325 msgid "GATEWAY:" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:379 #, c-format msgid "%d gateway servers available:\n" msgstr "" #: auth-globalprotect.c:400 #, c-format msgid " %s (%s)\n" msgstr "" #: auth-globalprotect.c:484 auth-juniper.c:730 auth.c:669 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth-globalprotect.c:584 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" #: auth-globalprotect.c:636 oncp.c:1266 msgid "Logout failed.\n" msgstr "" #: auth-globalprotect.c:638 msgid "Logout successful\n" msgstr "" #: auth-juniper.c:142 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:153 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:163 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:236 auth.c:408 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Ni mogoče obravnavati obrazca method='%s', action='%s'\n" #: auth-juniper.c:267 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "" #: auth-juniper.c:337 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:359 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:397 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:411 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:418 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:425 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:432 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:439 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:445 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:452 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:481 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:650 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:667 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:675 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:713 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:716 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth.c:96 msgid "Form choice has no name\n" msgstr "Izbor obrazca je brez imena.\n" #: auth.c:181 #, c-format msgid "name %s not input\n" msgstr "ime %s ni vnosno ime\n" #: auth.c:188 msgid "No input type in form\n" msgstr "Ni vnosnega vrste v obrazcu.\n" #: auth.c:200 msgid "No input name in form\n" msgstr "Ni vnosnega imena v obrazcu.\n" #: auth.c:230 #, c-format msgid "Unknown input type %s in form\n" msgstr "Neznana vnosna vrsta %s v obrazcu\n" #: auth.c:540 gpst.c:214 msgid "Empty response from server\n" msgstr "Prazen odgovor strežnika\n" #: auth.c:551 gpst.c:289 msgid "Failed to parse server response\n" msgstr "Razčlenjevanje odgovora strežnika je spodletelo.\n" #: auth.c:553 gpst.c:291 #, c-format msgid "Response was:%s\n" msgstr "Odziv je: %s\n" #: auth.c:575 msgid "Received when not expected.\n" msgstr "Prejet , ko ni bil pričakovan.\n" #: auth.c:603 msgid "XML response has no \"auth\" node\n" msgstr "Odziv XML je brez vozlišča \"auth\".\n" #: auth.c:636 msgid "Asked for password but '--no-passwd' set\n" msgstr "Zahtevano je geslo, vendar je uporabljena zastavica '--no-passwd'\n" #: auth.c:925 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:931 cstp.c:335 http.c:916 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Napaka med odpiranjem povezave HTTPS %s\n" #: auth.c:952 msgid "Failed to send GET request for new config\n" msgstr "Pošiljanje zahteve GET za novo nastavitev je spodletela.\n" #: auth.c:976 msgid "Downloaded config file did not match intended SHA1\n" msgstr "Prejeta datoteka nastavitev ni skladna z razpršilom SHA1\n" #: auth.c:981 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:992 auth.c:1044 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" #: auth.c:1003 mainloop.c:144 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "" #: auth.c:1010 mainloop.c:151 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "" #: auth.c:1017 mainloop.c:158 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "" #: auth.c:1024 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "" #: auth.c:1031 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Sprememba domače mape CSD '%s' je spodletela: %s\n" #: auth.c:1053 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Napaka: strežnik zahteva zagon pregleda gostitelja CSD\n" "Podati je treba ustrezni parameter --csd-wrapper.\n" #: auth.c:1060 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Napaka: strežnik zahteva prejem in zagon trojanskega datoteke 'Cisco Secure " "Desktop'.\n" "Ta možnost je iz varnostnih razlogov privzeto onemogočena. Če želite možnost " "uporabljati, jo omogočite.\n" #: auth.c:1067 msgid "Trying to run Linux CSD trojan script.\n" msgstr "Poskus poganjanja trojanskega skripta CSD za Linux.\n" #: auth.c:1094 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1102 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Odpiranje začasne datoteke skripta CSD je spodletelo: %s\n" #: auth.c:1111 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Zapisovanje začasne datoteke skripta CSD je spodletelo: %s\n" #: auth.c:1141 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Opozorilo: kodo CSD, ki ni varna, zaganjate s skrbniškimi dovoljenji.\n" "\t Uporabite možnost ukazne vrstice \"--csd-user\"\n" #: auth.c:1189 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Izvajanje skripta CSD %s je spodletelo.\n" #: auth.c:1221 msgid "Unknown response from server\n" msgstr "Neznan odgovor s strežnika.\n" #: auth.c:1342 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" "Strežnik je zahteval potrdilo odjemalca SSL, ko je bilo že posredovano\n" #: auth.c:1346 msgid "Server requested SSL client certificate; none was configured\n" msgstr "Strežnik je zahteval potrdilo odjemalca SSL; nobeno ni nastavljeno\n" #: auth.c:1362 msgid "XML POST enabled\n" msgstr "Omogočena zmožnost XML POST\n" #: auth.c:1405 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Osveževanje %s po steklo po 1 sekundi ...\n" #: compat.c:207 #, c-format msgid "(error 0x%lx)" msgstr "" #: compat.c:210 msgid "(Error while describing error!)" msgstr "" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:112 gpst.c:341 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:134 gpst.c:360 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:281 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:312 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:328 http.c:384 msgid "Error fetching HTTPS response\n" msgstr "Napaka med pridobivanjem odziva HTTP\n" #: cstp.c:355 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "Storitev VPN ni na voljo; razlog: %s\n" #: cstp.c:360 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Prejet neustrezen odziv HTTP CONNECT: %s\n" #: cstp.c:367 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Prejet je odziv CONNECT: %s\n" #: cstp.c:396 cstp.c:404 msgid "No memory for options\n" msgstr "Ni pomnilnika za možnosti\n" #: cstp.c:413 http.c:444 msgid "" msgstr "" #: cstp.c:433 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "ID seje X-DTLS-Session-ID ni dolžine 64 znakov, ampak: \"%s\"\n" #: cstp.c:450 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "" #: cstp.c:468 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:510 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Neznano kodiranje vsebine CSTP %s\n" #: cstp.c:585 msgid "No MTU received. Aborting\n" msgstr "MTU ni bil prejet. Opravilo bo prekinjeno.\n" #: cstp.c:593 gpst.c:641 msgid "No IP address received. Aborting\n" msgstr "Ni prejetega nobenega naslova IP. Opravilo je preklicano.\n" #: cstp.c:599 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: cstp.c:605 gpst.c:648 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "" "S ponovno povezavo je pridobljen drugačen opuščen naslov IP (%s != %s)\n" #: cstp.c:614 gpst.c:657 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" "S ponovno povezavo je pridobljena drugačna opuščena maska omrežja IP (%s != " "%s)\n" #: cstp.c:622 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "S ponovno povezavo je pridobljen drugačen naslov IPv6 (%s != %s)\n" #: cstp.c:630 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "" "S ponovno povezavo je pridobljena drugačna maska omrežja IPv6 (%s != %s)\n" #: cstp.c:638 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "Vzpostavljena je povezava CSTP. DPD %d, KEEPALIVE %d\n" #: cstp.c:640 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "" #: cstp.c:702 msgid "Compression setup failed\n" msgstr "Nastavitev stiskanja je spodletela\n" #: cstp.c:719 msgid "Allocation of deflate buffer failed\n" msgstr "Dodelitev medpomnilnika za stiskanje je spodletela\n" #: cstp.c:781 msgid "inflate failed\n" msgstr "razširjanje je spodletelo\n" #: cstp.c:804 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:817 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:824 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:829 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:849 #, c-format msgid "deflate failed %d\n" msgstr "razširjanje je spodletelo %d\n" #: cstp.c:922 dtls.c:281 dtls.c:740 esp.c:129 gpst.c:1042 mainloop.c:69 #: oncp.c:914 msgid "Allocation failed\n" msgstr "" #: cstp.c:933 gpst.c:1055 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: cstp.c:946 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Nepričakovana dolžina paketa. SSL_read je vrnil %d, paket pa je\n" #: cstp.c:960 msgid "Got CSTP DPD request\n" msgstr "Prejeta zahteva DPD CSTP\n" #: cstp.c:966 msgid "Got CSTP DPD response\n" msgstr "Pridobljen je odziv CSTP DPD\n" #: cstp.c:971 msgid "Got CSTP Keepalive\n" msgstr "Prejet je ukaz KEEPALIVE CSTP\n" #: cstp.c:976 oncp.c:1003 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Prejet je ne-stisnjen paket podatkov velikosti %d bajtov\n" #: cstp.c:993 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Prejeta prekinitev povezave s strežnikom: %02x '%s'\n" #: cstp.c:996 msgid "Received server disconnect\n" msgstr "" #: cstp.c:1004 msgid "Compressed packet received in !deflate mode\n" msgstr "Prejet stisnjen paket v načinu !deflate\n" #: cstp.c:1013 msgid "received server terminate packet\n" msgstr "Prejet paket prekinitve strežnika\n" #: cstp.c:1020 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Neznan paket %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1063 gpst.c:1142 oncp.c:1121 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL je zapisal premalo bajtov! Zahtevanih je %d, poslanih pa %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1091 oncp.c:1155 msgid "CSTP rekey due\n" msgstr "Protokol CSTP zahteva ponovno preverjanje ključa\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1098 oncp.c:1162 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: cstp.c:1109 oncp.c:1173 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "" "Zaznava mrtvih omrežnih soležnikov CSTP je zaznala mrtvega omrežnega " "soležnika!\n" #: cstp.c:1113 gpst.c:1166 oncp.c:1091 oncp.c:1177 msgid "Reconnect failed\n" msgstr "Ponovna povezava je spodletela\n" #: cstp.c:1129 oncp.c:1193 msgid "Send CSTP DPD\n" msgstr "Pošlji zahtevo CSTP DPD\n" #: cstp.c:1141 oncp.c:1204 msgid "Send CSTP Keepalive\n" msgstr "Pošlji zahtevo CSTP Keepalive\n" #: cstp.c:1166 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1177 oncp.c:1238 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Pošiljanje ne-stisnjenega paketa podatkov velikosti %d bajtov\n" #: cstp.c:1216 #, c-format msgid "Send BYE packet: %s\n" msgstr "Pošlji paket BYE: %s\n" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:113 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:119 msgid "No DTLS address\n" msgstr "Ni naslova DTLS\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:126 msgid "Server offered no DTLS cipher option\n" msgstr "Strežnik ni ponudil možnosti šifer DTLS\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:133 msgid "No DTLS when connected via proxy\n" msgstr "Pri povezavi prek posredniškega strežnika, DTLS ni na voljo.\n" #: dtls.c:200 #, c-format msgid "DTLS option %s : %s\n" msgstr "Možnost DTLS %s: %s\n" #: dtls.c:239 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS začet. DPD %d, Keepalive %d\n" #: dtls.c:265 msgid "Attempt new DTLS connection\n" msgstr "Poskus nove povezave DTLS\n" #: dtls.c:292 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Prejet je paket DTLS 0x%02x velikosti %d bajtov\n" #: dtls.c:306 msgid "Got DTLS DPD request\n" msgstr "Prejeta zahteva DPD DTLS\n" #: dtls.c:312 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "" "Pošiljanje odziva DPD je spodletelo. Pričakovana je prekinitev povezave.\n" #: dtls.c:316 msgid "Got DTLS DPD response\n" msgstr "Prejet je odziv DTLS DPD\n" #: dtls.c:320 msgid "Got DTLS Keepalive\n" msgstr "Prejet je ukaz KEEPALIVE DTLS\n" #: dtls.c:326 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:334 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Neznana vrsta paketa DTLS %02x, dolžina je %d\n" #: dtls.c:356 msgid "DTLS rekey due\n" msgstr "Ponovno uporaba ključa DTLS je potekla.\n" #: dtls.c:363 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: dtls.c:372 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "Zaznava nedejavnih soležnikov je vrnila zadetke nedejavnih povezav!\n" #: dtls.c:378 msgid "Send DTLS DPD\n" msgstr "Pošlji DPD DTLS\n" #: dtls.c:383 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "" "Pošiljanje zahteve DPD je spodletelo. Pričakujte prekinitev povezave.\n" #: dtls.c:396 msgid "Send DTLS Keepalive\n" msgstr "Pošlji KEEPALIVE DTLS\n" #: dtls.c:401 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" "Pošiljanje zahteve KEEPALIVE je spodletelo. Pričakujte prekinitev povezave.\n" #: dtls.c:432 tun.c:541 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Prejet je neznan paket (len %d): %02x %02x %02x %02x...\n" #: dtls.c:439 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "" #: dtls.c:443 msgid "UDP setsockopt" msgstr "" #: dtls.c:474 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "Prejeta napaka pisanja DTLS %d. Opravilo bo povrnjeno na SSL.\n" #: dtls.c:488 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "Prejeta napaka pisanja DTLS: %s. Opravilo bo povrnjeno na SSL.\n" #: dtls.c:503 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "" "Poslan je bil paket DTLS dolžine %d bajtov; vrnjen paket DTLS pa je %d\n" #: dtls.c:531 #, c-format msgid "Initiating IPv4 MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:551 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" #: dtls.c:555 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" #: dtls.c:564 #, c-format msgid "Sending MTU DPD probe (%u bytes, min=%u, max=%u)\n" msgstr "" #: dtls.c:568 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "" #: dtls.c:582 dtls.c:690 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" #: dtls.c:594 #, c-format msgid "Timeout while waiting for DPD response; trying %d\n" msgstr "" #: dtls.c:601 dtls.c:682 msgid "Timeout while waiting for DPD response; resending probe.\n" msgstr "" #: dtls.c:608 dtls.c:709 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "" #: dtls.c:613 #, c-format msgid "Received MTU DPD probe (%u bytes of %u)\n" msgstr "" #: dtls.c:651 msgid "Initiating IPv6 MTU detection\n" msgstr "" #: dtls.c:666 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:670 #, c-format msgid "Failed to send DPD request (%d)\n" msgstr "" #: dtls.c:695 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:759 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "" #: dtls.c:762 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" #: esp.c:63 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:66 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:69 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:87 msgid "incoming" msgstr "" #: esp.c:88 msgid "outgoing" msgstr "" #: esp.c:90 esp.c:113 msgid "Send ESP probes\n" msgstr "" #: esp.c:138 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:155 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:161 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:174 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:181 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:193 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:202 msgid "ESP session established with server\n" msgstr "" #: esp.c:213 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:219 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:225 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:239 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:243 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:251 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:258 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:278 #, c-format msgid "Failed to encrypt ESP packet: %d\n" msgstr "" #: esp.c:294 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:301 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:307 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-dtls.c:190 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "" #: gnutls-dtls.c:198 msgid "Failed to generate DTLS priority string\n" msgstr "" #: gnutls-dtls.c:207 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "" #: gnutls-dtls.c:216 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "" #: gnutls-dtls.c:240 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "" #: gnutls-dtls.c:253 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:267 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:275 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "" #: gnutls-dtls.c:309 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Neznani parametri DTLS za zahtevani CipherSuite '%s'\n" #: gnutls-dtls.c:324 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "Nastavljanje prednosti DTLS je spodletelo: %s\n" #: gnutls-dtls.c:345 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Nastavljanje parametrov seje DTLS je spodletelo: %s\n" #: gnutls-dtls.c:373 openssl-dtls.c:534 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "" #: gnutls-dtls.c:382 openssl-dtls.c:545 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "" #: gnutls-dtls.c:392 openssl-dtls.c:554 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" #: gnutls-dtls.c:405 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Nastavljanje MTU za DTLS je spodletelo: %s\n" #: gnutls-dtls.c:416 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: gnutls-dtls.c:422 openssl-dtls.c:572 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "" #: gnutls-dtls.c:437 openssl-dtls.c:653 openssl-dtls.c:657 msgid "DTLS handshake timed out\n" msgstr "Izmenjava signalov DTLS je presegla dovoljeni čas\n" #: gnutls-dtls.c:440 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "Izmenjava signalov DTLS je spodletela: %s\n" #: gnutls-dtls.c:444 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:121 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:132 msgid "Failed to generate ESP IV\n" msgstr "" #: gnutls-esp.c:161 gnutls-esp.c:217 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:168 openssl-esp.c:192 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:180 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:209 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:95 openssl.c:154 msgid "SSL write cancelled\n" msgstr "Zapisovanje SSL je bilo preklicano\n" #: gnutls.c:99 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "Pisanje v vtič SSL je spodletelo: %s\n" #: gnutls.c:145 gnutls.c:237 openssl.c:204 openssl.c:271 msgid "SSL read cancelled\n" msgstr "Branje SSL je bilo preklicano\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:158 msgid "SSL socket closed uncleanly\n" msgstr "" #: gnutls.c:168 gnutls.c:246 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "Branje z vtiča SSL je spodletelo: %s\n" #: gnutls.c:266 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "Napaka branja SSL: %s; sledi ponovna povezava.\n" #: gnutls.c:302 #, c-format msgid "SSL send failed: %s\n" msgstr "Pošiljanje SSL je spodletelo: %s\n" #: gnutls.c:315 msgid "Could not extract expiration time of certificate\n" msgstr "Datuma poteka potrdila ni mogoče izluščiti.\n" #: gnutls.c:320 openssl.c:1592 msgid "Client certificate has expired at" msgstr "Potrdilo odjemalca je poteklo dne" #: gnutls.c:322 openssl.c:1597 msgid "Client certificate expires soon at" msgstr "Potrdilo odjemalca poteče ob" #: gnutls.c:371 openssl.c:771 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Nalaganje '%s' iz shrambe ključev je spodletelo: %s\n" #: gnutls.c:384 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Odpiranje datoteke ključa/potrdila %s je spodletelo: %s\n" #: gnutls.c:391 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Ustvarjanje datoteke ključa/potrdila %s je spodletelo: %s\n" #: gnutls.c:400 msgid "Failed to allocate certificate buffer\n" msgstr "Dodeljevanje medpomnilnika potrdil je spodletelo\n" #: gnutls.c:408 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Branje potrdila v pomnilnik je spodletelo: %s\n" #: gnutls.c:439 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Vzpostavitev podatkovne strukture PKCS#12 je spodletela: %s\n" #: gnutls.c:462 openssl.c:534 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Odšifriranje datoteke PKCS#12 je spodletelo\n" #: gnutls.c:466 openssl.c:537 msgid "Enter PKCS#12 pass phrase:" msgstr "Vnos šifrirnega gesla PKCS#12:" #: gnutls.c:489 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Obdelava datoteke PKCS#12 je spodletela: %s\n" #: gnutls.c:501 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Nalaganje potrdila PKCS#12 je spodletelo: %s\n" #: gnutls.c:584 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Uvažanje potrdila X509 je spodletelo: %s\n" #: gnutls.c:594 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Nastavljanje potrdila PKCS#11 je spodletelo: %s\n" #: gnutls.c:628 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Razprtšila MD5 ni mogoče začeti: %s\n" #: gnutls.c:638 #, c-format msgid "MD5 hash error: %s\n" msgstr "Napaka razpršila MD5: %s\n" #: gnutls.c:696 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "Manjkajoči podatki DEK: glava iz šifriranega ključa OpenSSL\n" #: gnutls.c:703 msgid "Cannot determine PEM encryption type\n" msgstr "Vrste šifriranja PEM ni mogoče razpoznati\n" #: gnutls.c:716 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Nepodprta vrsta šifriranja PEM: %s\n" #: gnutls.c:741 gnutls.c:754 msgid "Invalid salt in encrypted PEM file\n" msgstr "Neveljaven salt v šifrirani datoteki PEM\n" #: gnutls.c:778 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Napaka pri odkodiranju BASE64 šifrirane datoteke PEM: %s\n" #: gnutls.c:786 msgid "Encrypted PEM file too short\n" msgstr "Šifrirana datoteka PEM je prekratka\n" #: gnutls.c:814 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "Začenjanje šifre za dešifriranje datoteke PEM je spodletelo: %s\n" #: gnutls.c:825 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Odšifriranje ključa PEM je spodletelo: %s\n" #: gnutls.c:877 msgid "Decrypting PEM key failed\n" msgstr "Odšifriranje ključa PEM je spodletelo\n" #: gnutls.c:881 gnutls.c:1405 openssl.c:458 msgid "Enter PEM pass phrase:" msgstr "Vnos šifrirnega gesla PEM:" #: gnutls.c:942 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:949 msgid "This binary built without PKCS#11 support\n" msgstr "Ta program je izgrajen brez podpore za PKCS#11\n" #: gnutls.c:993 openssl-pkcs11.c:407 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Uporabljeno je potrdilo PKCS#12 %s\n" #: gnutls.c:994 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1012 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Napaka pri nalaganju potrdila iz PKCS#11: %s\n" #: gnutls.c:1013 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1024 openssl.c:827 #, c-format msgid "Using certificate file %s\n" msgstr "Uporabljena bo datoteka potrdila %s\n" #: gnutls.c:1052 msgid "PKCS#11 file contained no certificate\n" msgstr "Datoteka PKCS#11 ne vsebuje potrdil\n" #: gnutls.c:1078 msgid "No certificate found in file" msgstr "V datoteki ni mogoče najti potrdila" #: gnutls.c:1083 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Nalaganje potrdila je spodletelo: %s\n" #: gnutls.c:1098 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1103 gnutls.c:1271 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Napaka pri začenjanju strukture osebnih ključev: %s\n" #: gnutls.c:1114 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1125 gnutls.c:1219 gnutls.c:1247 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1130 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Napaka pri začenjanju strukture ključev PKCS#11: %s\n" #: gnutls.c:1259 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Napaka pri uvozu naslova URL %s PKCS#11: %s\n" #: gnutls.c:1266 openssl-pkcs11.c:644 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Uporabljen je ključ PKCS#11 %s\n" #: gnutls.c:1281 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "Napaka pri uvozu ključa PKCS#11 v strukturo osebnih ključev: %s\n" #: gnutls.c:1299 #, c-format msgid "Using private key file %s\n" msgstr "Uporaba datoteke zasebnega ključa %s\n" #: gnutls.c:1310 openssl.c:651 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Ta različica programa OpenConnect je izgrajena brez podpore za TPM\n" #: gnutls.c:1326 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1347 msgid "Failed to interpret PEM file\n" msgstr "Tolmačenje datoteke PEM je spodletelo\n" #: gnutls.c:1366 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Nalaganje zasebnega ključa PKCS#1 je spodletelo: %s\n" #: gnutls.c:1379 gnutls.c:1393 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Nalaganje osebnega ključa kot PKCS#8 je spodletelo: %s\n" #: gnutls.c:1401 gnutls.c:1434 openssl.c:1002 openssl.c:1012 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Odšifriranje datoteke potrdila PKCS#8 je spodletelo\n" #: gnutls.c:1426 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Ni mogoče določiti vrste zasebnega ključa %s\n" #: gnutls.c:1438 openssl.c:1008 msgid "Enter PKCS#8 pass phrase:" msgstr "Vnos šifrirnega gesla PKCS#8:" #: gnutls.c:1454 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Pridobivanje ID ključa je spodletelo: %s\n" #: gnutls.c:1499 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Napaka pri podpisovanju preizkusnih podatkov z osebnim ključem: %s\n" #: gnutls.c:1514 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Napaka pri overjanju podpisa s potrdilom: %s\n" #: gnutls.c:1539 msgid "No SSL certificate found to match private key\n" msgstr "Z zasebnim ključem se ne ujema nobeno potrdilo SSL\n" #: gnutls.c:1551 openssl.c:560 openssl.c:709 #, c-format msgid "Using client certificate '%s'\n" msgstr "Uporabljeno bo potrdilo odjemalca '%s'\n" #: gnutls.c:1558 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "Določanje seznama preklicev potrdil je spodletelo: %s\n" #: gnutls.c:1579 gnutls.c:1589 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1625 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" "OPOZORILO: program GnuTLS je vrnil nepravilno potrdilo izdajatelja; overitev " "bo najverjetneje spodletela!\n" #: gnutls.c:1648 msgid "Got no issuer from PKCS#11\n" msgstr "" #: gnutls.c:1653 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "" #: gnutls.c:1679 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Dodeljevanje pomnilnika podpornim potrdilom je spodletelo\n" #: gnutls.c:1702 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Dodajanje podpornega CA '%s'\n" #: gnutls.c:1724 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1748 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Nastavljanje potrdila je spodletelo: %s\n" #: gnutls.c:1941 msgid "Server presented no certificate\n" msgstr "Strežnik ni javil podatkov o potrdilu\n" #: gnutls.c:1949 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" #: gnutls.c:1954 openssl.c:1515 msgid "Server presented different cert on rehandshake\n" msgstr "" #: gnutls.c:1959 openssl.c:1518 msgid "Server presented identical cert on rehandshake\n" msgstr "" #: gnutls.c:1965 msgid "Error initialising X509 cert structure\n" msgstr "Napaka pri začenjanju strukture potrdil X509\n" #: gnutls.c:1971 msgid "Error importing server's cert\n" msgstr "Napaka med uvažanjem potrdila strežnika\n" #: gnutls.c:1980 main.c:1794 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:1985 msgid "Error checking server cert status\n" msgstr "Napaka pri preverjanju stanja potrdila strežnika\n" #: gnutls.c:1990 msgid "certificate revoked" msgstr "potrdilo je preklicano" #: gnutls.c:1992 msgid "signer not found" msgstr "podpisnika ni mogoče najti" #: gnutls.c:1994 msgid "signer not a CA certificate" msgstr "podpisnik ni overitelj potrdila CA" #: gnutls.c:1996 msgid "insecure algorithm" msgstr "algoritem ni varen" #: gnutls.c:1998 msgid "certificate not yet activated" msgstr "potrdilo še ni omogočeno" #: gnutls.c:2000 msgid "certificate expired" msgstr "potrdilo je preteklo" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2005 msgid "signature verification failed" msgstr "preverjanje podpisa je spodletelo" #: gnutls.c:2054 openssl.c:1399 openssl.c:1551 msgid "certificate does not match hostname" msgstr "potrdilo se ne ujema z imenom gostitelja" #: gnutls.c:2059 openssl.c:1398 openssl.c:1557 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Preverjanje potrdila strežnika je spodletelo: %s\n" #: gnutls.c:2126 msgid "Failed to allocate memory for cafile certs\n" msgstr "Dodeljevanje pomnilnika podpornim potrdilom je spodletelo\n" #: gnutls.c:2147 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Ni mogoče prebrati potrdil iz datoteke cafile: %s\n" #: gnutls.c:2163 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Odpiranje datoteke CA '%s' je spodletelo: %s\n" #: gnutls.c:2176 openssl.c:1679 msgid "Loading certificate failed. Aborting.\n" msgstr "Nalaganje potrdila je spodletelo. Opravilo je prekinjeno.\n" #: gnutls.c:2237 #, c-format msgid "Failed to set TLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2249 openssl.c:1796 #, c-format msgid "SSL negotiation with %s\n" msgstr "Poteka pogajanje SSL z %s\n" #: gnutls.c:2296 openssl.c:1822 msgid "SSL connection cancelled\n" msgstr "Povezava SSL je preklicana\n" #: gnutls.c:2303 #, c-format msgid "SSL connection failure: %s\n" msgstr "Povezava SSL je spodletela: %s\n" #: gnutls.c:2312 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "Vrnjena je ne-usodna napaka GnuTLS med izmenjavo signalov: %s\n" #: gnutls.c:2318 openssl.c:1839 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "Vzpostavljena je povezava s HTTPS na %s\n" #: gnutls.c:2321 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "" #: gnutls.c:2483 openssl-pkcs11.c:199 #, c-format msgid "PIN required for %s" msgstr "Za %s je zahtevana koda PIN" #: gnutls.c:2487 openssl-pkcs11.c:202 msgid "Wrong PIN" msgstr "Napačna koda PIN" #: gnutls.c:2490 msgid "This is the final try before locking!" msgstr "To je zadnji poskus pred zaklepom!" #: gnutls.c:2492 msgid "Only a few tries left before locking!" msgstr "Ostaja le še nekaj poskusov do zaklepa!" #: gnutls.c:2497 openssl-pkcs11.c:206 msgid "Enter PIN:" msgstr "Koda PIN:" #: gnutls.c:2583 openssl.c:1967 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2592 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:54 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "Funkcija podpisovanja TPM je pričakovala %d bajtov.\n" #: gnutls_tpm.c:61 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Ustvarjanje predmeta razpršila TPM je spodletelo: %s\n" #: gnutls_tpm.c:68 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Nastavljanje vrednosti predmeta razpršila TPM je spodletelo: %s\n" #: gnutls_tpm.c:78 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "Ustvarjanje predmeta razpršila TPM je spodletelo: %s\n" #: gnutls_tpm.c:100 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Napaka odkodiranja binarnem paketu ključa TSS: %s\n" #: gnutls_tpm.c:108 gnutls_tpm.c:119 gnutls_tpm.c:132 msgid "Error in TSS key blob\n" msgstr "Napaka v binarnem paketu ključa TSS\n" #: gnutls_tpm.c:139 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Ustvarjanje vsebine TPM je spodletelo: %s\n" #: gnutls_tpm.c:146 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Povezovanje vsebine TPM je spodletelo: %s\n" #: gnutls_tpm.c:154 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Nalaganje ključa TPM SRK je spodletelo: %s\n" #: gnutls_tpm.c:161 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Nalaganje predmeta pravil TPM SRK je spodletelo: %s\n" #: gnutls_tpm.c:182 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Natavljanje kode PIN TPM je spodletelo: %s\n" #: gnutls_tpm.c:198 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Nalaganje ključa BLOB TPM je spodletelo: %s\n" #: gnutls_tpm.c:205 msgid "Enter TPM SRK PIN:" msgstr "Vnesite kodo PIN TPM SRK:" #: gnutls_tpm.c:226 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Ustvarjanje predmeta pravil ključa je spodletelo: %s\n" #: gnutls_tpm.c:234 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Dodelitev pravil ključu je spodletela: %s\n" #: gnutls_tpm.c:240 msgid "Enter TPM key PIN:" msgstr "Vnos ključa PIN TPM:" #: gnutls_tpm.c:251 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Nastavljanje ključa PIN je spodletelo: %s\n" #: gnutls_tpm2.c:92 gnutls_tpm2_esys.c:474 gnutls_tpm2_ibm.c:419 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:198 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:208 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:217 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:225 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:231 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:249 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:270 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:275 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:384 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2_esys.c:173 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:189 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:190 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:191 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:192 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:196 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:201 gnutls_tpm2_ibm.c:262 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:209 gnutls_tpm2_esys.c:303 gnutls_tpm2_esys.c:374 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:221 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:226 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:245 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:250 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:258 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:261 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:274 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:295 gnutls_tpm2_ibm.c:278 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:309 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:317 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:323 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:333 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:363 gnutls_tpm2_ibm.c:363 gnutls_tpm2_ibm.c:450 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:395 #, c-format msgid "TPM2 RSA sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:414 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:420 gnutls_tpm2_esys.c:500 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:464 gnutls_tpm2_ibm.c:405 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:494 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:532 gnutls_tpm2_ibm.c:485 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:546 gnutls_tpm2_ibm.c:502 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:555 gnutls_tpm2_ibm.c:512 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:569 gnutls_tpm2_ibm.c:523 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:54 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:226 #, c-format msgid "%s\n" msgstr "" #: gpst.c:229 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:417 #, c-format msgid "Unknown ESP %s algorithm: %s" msgstr "" #: gpst.c:477 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: gpst.c:483 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:487 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:498 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:551 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:560 oncp.c:835 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: gpst.c:627 msgid "ESP disabled" msgstr "" #: gpst.c:629 msgid "No ESP keys received" msgstr "" #: gpst.c:631 msgid "ESP support not available in this build" msgstr "" #: gpst.c:635 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:680 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:702 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:711 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:719 #, c-format msgid "Got inappropriate HTTP GET-tunnel response: %.*s\n" msgstr "" #: gpst.c:861 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" "VPN connectivity may be disabled or limited without HIP report submission.\n" "You need to provide a --csd-wrapper argument with the HIP report submission " "script.\n" msgstr "" #: gpst.c:871 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:900 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:905 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:911 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:913 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:942 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:966 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:972 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:999 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1015 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1051 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1072 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1082 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1086 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1092 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: gpst.c:1101 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1109 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1157 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1162 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1182 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1202 #, c-format msgid "Sending data packet of %d bytes\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1165 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "" #: http.c:319 msgid "No memory for allocating cookies\n" msgstr "Ni pomnilnika za dodeljevanje piškotkov\n" #: http.c:394 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Razčlenjevanje odgovora HTTP '%s' je spodletelo\n" #: http.c:400 #, c-format msgid "Got HTTP response: %s\n" msgstr "Prejet je odziv HTTP: %s\n" #: http.c:408 msgid "Error processing HTTP response\n" msgstr "Napaka pri obdelavi odgovora HTTP\n" #: http.c:415 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Prezrta bo neznana vrstica odziva HTTP '%s'\n" #: http.c:435 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Ponujen je neveljaven piškotek: %s\n" #: http.c:454 msgid "SSL certificate authentication failed\n" msgstr "Overitev potrdila SSL je spodletela.\n" #: http.c:485 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Telo odgovora ima negativno velikost (%d)\n" #: http.c:496 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Neznano kodiranje prenosa: %s\n" #. Now the body, if there is one #: http.c:515 #, c-format msgid "HTTP body %s (%d)\n" msgstr "Telo HTTP %s (%d)\n" #: http.c:529 http.c:556 msgid "Error reading HTTP response body\n" msgstr "Napaka branja telesa odziva HTTP\n" #: http.c:542 msgid "Error fetching chunk header\n" msgstr "Napaka pri pridobivanju glave sporočila\n" #: http.c:566 msgid "Error fetching HTTP response body\n" msgstr "Napaka branja telesa odziva HTTP\n" #: http.c:569 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "Napaka odkodiranja po kosih. Pričakovan je znak '', prejet pa: '%s'" #: http.c:581 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Telesa HTTP različice 1.0 brez zapiranja povezave ni mogoče prejeti.\n" #: http.c:708 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Razčlenjevanje preusmeritvenega naslova URL '%s' je spodletelo: %s\n" #: http.c:732 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "" "Preusmeritvi na naslov URL '%s', ki ni vrste HTTPS, ni mogoče slediti\n" #: http.c:760 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Dodeljevanje nove poti za relativno preusmeritev je spodletelo: %s\n" #: http.c:973 oncp.c:591 #, c-format msgid "Unexpected %d result from server\n" msgstr "Nepričakovan odgovor strežnika %d.\n" #: http.c:1021 msgid "request granted" msgstr "zahteva je odobrena" #: http.c:1022 msgid "general failure" msgstr "splošna napaka" #: http.c:1023 msgid "connection not allowed by ruleset" msgstr "nabor pravil ne dovoljuje povezave" #: http.c:1024 msgid "network unreachable" msgstr "omrežje ni dosegljivo" #: http.c:1025 msgid "host unreachable" msgstr "gostitelj ni dosegljiv" #: http.c:1026 msgid "connection refused by destination host" msgstr "povezava je zavrnjena na ciljnem gostitelju" #: http.c:1027 msgid "TTL expired" msgstr "Potrdilo TTL je preteklo" #: http.c:1028 msgid "command not supported / protocol error" msgstr "ukaz ni podprt; napaka protokola" #: http.c:1029 msgid "address type not supported" msgstr "vrsta naslova ni ni podprta." #: http.c:1039 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1047 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1062 http.c:1118 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Napaka pisanja odziva auth s posredniškega strežnika SOCKS: %s\n" #: http.c:1070 http.c:1125 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Napaka branja odziva auth s posredniškega strežnika SOCKS: %s\n" #: http.c:1077 http.c:1131 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" "Nepričakovan odziv povezave posredniškega strežnika SOCKS: %02x %02x...\n" #: http.c:1083 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1087 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1143 http.c:1150 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1156 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1163 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1170 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1176 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Poslana je zahteva povezave s posredniškim strežnikom SOCKS %s:%d\n" #: http.c:1191 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" "Napaka zapisovanja zahtev povezave s posredniškim strežnikom SOCKS: %s\n" #: http.c:1199 http.c:1241 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Napaka branja odzivov povezave s posredniškega strežnika SOCKS: %s\n" #: http.c:1205 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "" "Nepričakovan odziv povezave posredniškega strežnika SOCKS: %02x %02x...\n" #: http.c:1213 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "Napaka posredniškega strežnika SOCKS %02x: %s\n" #: http.c:1217 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "Napaka posredniškega strežnika SOCKS %02x\n" #: http.c:1234 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Nepričakovana vrsta naslova %02x v odzivu povezave SOCKS\n" #: http.c:1257 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Poslana je zahteva povezave s posredniškim strežnikom HTTP %s:%d\n" #: http.c:1292 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Pošiljanje zahteve posredniškega strežnika je spodletelo: %s\n" #: http.c:1315 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1334 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Neznana vrsta posredniškega strežnika '%s'.\n" #: http.c:1383 msgid "Only http or socks(5) proxies supported\n" msgstr "Podprti so le posredniški strežniki HTTP in SOCKS(5)\n" #: library.c:112 msgid "Cisco AnyConnect or openconnect" msgstr "" #: library.c:113 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "" #: library.c:129 msgid "Juniper Network Connect" msgstr "" #: library.c:130 msgid "Compatible with Juniper Network Connect / Pulse Secure SSL VPN" msgstr "" #: library.c:148 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:149 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:211 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:233 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Izgrajeno na osnovi knjižnice SSL brez podpore za Cisco DTLS.\n" #: library.c:656 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Napaka med razčlenjevanjem naslova URL strežnika '%s'\n" #: library.c:662 msgid "Only https:// permitted for server URL\n" msgstr "Za strežniški naslov URL je dovoljen le protokol https://\n" #: library.c:1056 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "" #: library.c:1085 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" #: library.c:1146 msgid "No form handler; cannot authenticate.\n" msgstr "Ni ročnika obrazca; vnosov ni mogoče overiti\n" #: main.c:340 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:353 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:388 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:401 #, c-format msgid "fgetws() failed: %s\n" msgstr "" #: main.c:416 main.c:429 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:423 main.c:689 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Napaka dodeljevanja za niz s standardnega vhoda\n" #: main.c:584 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:593 #, c-format msgid "Using OpenSSL. Features present:" msgstr "Uporaba OpenSSL. Možnosti vključujejo:" #: main.c:595 #, c-format msgid "Using GnuTLS. Features present:" msgstr "Uporaba GnuTLS. Možnosti vključujejo:" #: main.c:608 msgid "OpenSSL ENGINE not present" msgstr "Programnik OpenSSL ni na voljo" #: main.c:647 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" #: main.c:657 #, c-format msgid "Supported protocols:" msgstr "" #: main.c:659 main.c:675 msgid " (default)" msgstr "" #: main.c:672 msgid "Set VPN protocol" msgstr "" #: main.c:713 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:754 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:760 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:780 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "" #: main.c:793 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Uporaba: openconnect [možnosti] \n" #: main.c:794 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" #: main.c:796 msgid "Read options from config file" msgstr "Preberi možnosti iz nastavitvene datoteke" #: main.c:797 msgid "Report version number" msgstr "Pošli poročilo o različici" #: main.c:798 msgid "Display help text" msgstr "Pokaži besedilo pomoči" #: main.c:802 msgid "Authentication" msgstr "" #: main.c:803 msgid "Set login username" msgstr "Nastavi prijavno uporabniško ime" #: main.c:804 msgid "Disable password/SecurID authentication" msgstr "Onemogoči overitev gesla/SecurID" #: main.c:805 msgid "Do not expect user input; exit if it is required" msgstr "Ne pričakuj odziva uporabnika; prekini, če je obvezen" #: main.c:806 msgid "Read password from standard input" msgstr "Preberi geslo z navadnega vhoda" #: main.c:807 msgid "Choose authentication login selection" msgstr "Izbor načina overitvene prijave" #: main.c:808 msgid "Provide authentication form responses" msgstr "" #: main.c:809 msgid "Use SSL client certificate CERT" msgstr "Uporabi potrdilo SSL CERT" #: main.c:810 msgid "Use SSL private key file KEY" msgstr "Uporabi zasebno datoteko KEY ključa SSL" #: main.c:811 msgid "Warn when certificate lifetime < DAYS" msgstr "Opozori, ko je življenjska doba potrdila manj kot določeno število dni" #: main.c:812 msgid "Set login usergroup" msgstr "Nastavi prijavno uporabniško skupino" #: main.c:813 msgid "Set key passphrase or TPM SRK PIN" msgstr "Nastavi šifrirno frazo ali kodo PIN za TPM SRK" #: main.c:814 msgid "Key passphrase is fsid of file system" msgstr "Šifrirno geslo ključa je fsid datotečnega sistema" #: main.c:815 msgid "Software token type: rsa, totp or hotp" msgstr "" #: main.c:816 msgid "Software token secret" msgstr "Skrivnost programskega žetona" #: main.c:818 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" "(Opomba: knjižnica libstoken (RSA SecurID) je v tej izgradnji onemogočena)" #: main.c:821 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:824 msgid "Server validation" msgstr "" #: main.c:825 msgid "Server's certificate SHA1 fingerprint" msgstr "Prstni odtis potrdila SHA1 strežnika" #: main.c:826 msgid "Do not require server SSL cert to be valid" msgstr "Ne zahtevaj veljavnosti potrdila strežnika SSL" #: main.c:827 msgid "Disable default system certificate authorities" msgstr "" #: main.c:828 msgid "Cert file for server verification" msgstr "Datoteka potrdila za preverjanje istovetnosti strežnika" #: main.c:830 msgid "Internet connectivity" msgstr "" #: main.c:831 msgid "Set proxy server" msgstr "Nastavi posredniški strežnik" #: main.c:832 msgid "Set proxy authentication methods" msgstr "" #: main.c:833 msgid "Disable proxy" msgstr "Onemogoči posredniški strežnik" #: main.c:834 msgid "Use libproxy to automatically configure proxy" msgstr "Uporabi libproxy za samodejno nastavljanje posredniškega strežnika" #: main.c:836 msgid "(NOTE: libproxy disabled in this build)" msgstr "(Opomba: knjižnica libproxy je v tej izgradnji onemogočena)" #: main.c:838 msgid "Connection retry timeout in seconds" msgstr "Časovni zamik ponovnega vzpostavljanja povezave v sekundah" #: main.c:839 msgid "Use IP when connecting to HOST" msgstr "" #: main.c:840 msgid "copy TOS / TCLASS when using DTLS" msgstr "" #: main.c:841 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:843 msgid "Authentication (two-phase)" msgstr "" #: main.c:844 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:845 msgid "Read cookie from standard input" msgstr "Preberi piškotek z navadnega vhoda" #: main.c:846 msgid "Authenticate only and print login info" msgstr "Le overi in izpiši podrobnosti prijave" #: main.c:847 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:848 msgid "Print cookie before connecting" msgstr "" #: main.c:851 msgid "Process control" msgstr "" #: main.c:852 msgid "Continue in background after startup" msgstr "Po zagonu nadaljuj v ozadju" #: main.c:853 msgid "Write the daemon's PID to this file" msgstr "Zapiši PID ozadnjega programa v navedeno datoteko" #: main.c:854 msgid "Drop privileges after connecting" msgstr "Opusti dovoljenja po povezavi" #: main.c:857 msgid "Logging (two-phase)" msgstr "" #: main.c:859 msgid "Use syslog for progress messages" msgstr "Uporabi sistem syslog za obdelavo sporočil" #: main.c:861 msgid "More output" msgstr "Več podrobnosti odvoda" #: main.c:862 msgid "Less output" msgstr "Manj podroben odvod" #: main.c:863 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "" "Zapiši pretok podatkov overitve HTTP (omogoči podroben izpis z zastavico --" "verbose)" #: main.c:864 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:866 msgid "VPN configuration script" msgstr "" #: main.c:867 msgid "Use IFNAME for tunnel interface" msgstr "Za vmesnik tunela uporabi IFNAME" #: main.c:868 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" "Ukazna vrstica v lupini za uporabo prilagoditvenega skripta, združljivega z " "vpnc" #: main.c:869 msgid "default" msgstr "privzeto" #: main.c:871 msgid "Pass traffic to 'script' program, not tun" msgstr "Prepusti promet programu 'script', ne pa TUN" #: main.c:874 msgid "Tunnel control" msgstr "" #: main.c:875 msgid "Do not ask for IPv6 connectivity" msgstr "Ne zahtevaj povezave IPv6" #: main.c:876 msgid "XML config file" msgstr "Nastavitvena datoteka XML" #: main.c:877 msgid "Request MTU from server (legacy servers only)" msgstr "" #: main.c:878 msgid "Indicate path MTU to/from server" msgstr "Nakaži pot MTU z/na strežnik" #: main.c:879 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:880 msgid "Disable all compression" msgstr "" #: main.c:881 msgid "Set minimum Dead Peer Detection interval" msgstr "Določite najmanjši interval zaznave nedejavnih soležnikov" #: main.c:882 msgid "Require perfect forward secrecy" msgstr "" #: main.c:883 msgid "Disable DTLS and ESP" msgstr "" #: main.c:884 msgid "OpenSSL ciphers to support for DTLS" msgstr "Šifre OpenSSL za podporo DTLS" #: main.c:885 msgid "Set packet queue limit to LEN pkts" msgstr "Nastavi omejitev vrste paketov na LEN paketov" #: main.c:887 msgid "Local system information" msgstr "" #: main.c:888 msgid "HTTP header User-Agent: field" msgstr "Glava HTTP uporabniškega posrednika: polje" #: main.c:889 msgid "Local hostname to advertise to server" msgstr "" #: main.c:890 msgid "OS type (linux,linux-64,win,...) to report" msgstr "" #: main.c:891 msgid "reported version string during authentication" msgstr "" #: main.c:892 msgid "default:" msgstr "" #: main.c:895 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:896 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:897 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:900 msgid "Server bugs" msgstr "" #: main.c:901 msgid "Disable HTTP connection re-use" msgstr "Onemogoči ponovno uporabo povezave HTTP" #: main.c:902 msgid "Do not attempt XML POST authentication" msgstr "Ne izvajaj overitev preko XML POST" #: main.c:924 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:997 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Pridobivanje vrstice iz nastavitvene datoteke je spodletelo: %s\n" #: main.c:1037 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Neprepoznana možnost v vrstici %d: '%s'\n" #: main.c:1047 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Možnost '%s' ne sprejme argumenta v vrstici %d\n" #: main.c:1051 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Možnost '%s' zahteva argument v vrstici %d\n" #: main.c:1076 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "" #: main.c:1086 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "" #: main.c:1130 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "" #: main.c:1140 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:1147 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:1157 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Strukture vpninfo ni mogoče dodeliti.\n" #: main.c:1215 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Možnosti 'config' ni mogoče uporabiti znotraj nastavitvene datoteke\n" #: main.c:1223 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Ni mogoče odpreti nastavitvene datoteke '%s': %s\n" #: main.c:1239 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1260 #, c-format msgid "Missing colon in resolve option\n" msgstr "" #: main.c:1265 #, c-format msgid "Failed to allocate memory\n" msgstr "" #: main.c:1349 main.c:1358 #, c-format msgid "MTU %d too small\n" msgstr "Vrednost MTU %d je premajhna.\n" #: main.c:1388 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Zaradi uporabe možnosti --no-http-keepalive je onemogočena ponovna uporaba " "povezav HTTP.\n" "V kolikor možnost deluje, pošljite poročilo na .\n" #: main.c:1394 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" #: main.c:1411 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Ničelna dolžina uvrstitve ni dovoljena; uporabljena bo 1\n" #: main.c:1425 #, c-format msgid "OpenConnect version %s\n" msgstr "Različica OpenConnect %s\n" #: main.c:1463 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Neveljaven način programskega žetona \"%s\"\n" #: main.c:1473 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "Neveljavna istovetnost OS \"%s\"\n" #: main.c:1506 #, c-format msgid "Too many arguments on command line\n" msgstr "Navedenih je preveč argumentov v ukazni vrstici.\n" #: main.c:1509 #, c-format msgid "No server specified\n" msgstr "Ni določenega strežnika\n" #: main.c:1525 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "Ta različica openconnect je zgrajena brez podpore libproxy\n" #: main.c:1555 #, c-format msgid "Error opening cmd pipe\n" msgstr "" #: main.c:1588 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "Pridobivanje piškotka WebVPN je spodletelo\n" #: main.c:1609 #, c-format msgid "Creating SSL connection failed\n" msgstr "Ustvarjanje povezave SSL je spodletelo.\n" #: main.c:1625 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:1633 #, c-format msgid "Connected as %s%s%s, using SSL%s%s, with %s%s%s %s\n" msgstr "" #: main.c:1639 msgid "disabled" msgstr "" #: main.c:1639 msgid "in progress" msgstr "" #: main.c:1643 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "Ni navedenega argumenta --script; Vrednosti DNS in nastavitve preusmerjanja " "niso nastavljene.\n" #: main.c:1645 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Oglejte si http://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:1658 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Datoteke '%s' ni mogoče odpreti za pisanje: %s\n" #: main.c:1670 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Izvajanje programa je poslano v ozadje; pid %d\n" #: main.c:1687 msgid "User requested reconnect\n" msgstr "" #: main.c:1695 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "" #: main.c:1699 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:1703 msgid "User cancelled (SIGINT/SIGTERM); exiting.\n" msgstr "" #: main.c:1707 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "" #: main.c:1711 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:1730 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Datoteke %s ni mogoče odpreti za pisanje: %s\n" #: main.c:1738 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Zapisovanje nastavitev v %s je spodletelo: %s\n" #: main.c:1797 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "Potrdilo SSL strežnika se ne ujema: %s\n" #: main.c:1816 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Overjanje potrdila strežnika VPN \"%s\" je spodletelo.\n" "Vzrok: %s\n" #: main.c:1819 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" #: main.c:1820 #, c-format msgid " --servercert %s\n" msgstr "" #: main.c:1825 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "Vnesite '%s' za sprejem, '%s' za prekinitev; vse drugo za pogled: " #: main.c:1826 main.c:1844 msgid "no" msgstr "ne" #: main.c:1826 main.c:1832 msgid "yes" msgstr "da" #: main.c:1853 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:1887 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:1890 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Izbira overitve \"%s\" ni na voljo.\n" #: main.c:1911 msgid "User input required in non-interactive mode\n" msgstr "Zahtevano je uporabniško posredovanje v načinu brez posredovanja.\n" #: main.c:2149 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:2157 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:2203 main.c:2224 #, c-format msgid "Soft token string is invalid\n" msgstr "Uporabniški prstni odtis je neveljaven\n" #: main.c:2206 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Ni mogoče odpreti datoteke ~/.stokenrc.\n" #: main.c:2209 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "Program OpenConnect ni izgrajen s podporo za libstoken\n" #: main.c:2212 #, c-format msgid "General failure in libstoken\n" msgstr "Splošna napaka v knjižnici libstoken.\n" #: main.c:2227 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "Program OpenConnect ni izgrajen s podporo za liboath\n" #: main.c:2230 #, c-format msgid "General failure in liboath\n" msgstr "Splošna napaka v knjižnici liboath.\n" #: main.c:2241 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2244 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2247 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: mainloop.c:127 #, c-format msgid "Set up tun script failed\n" msgstr "" #: mainloop.c:134 #, c-format msgid "Set up tun device failed\n" msgstr "Nastavitev naprave je spodletela\n" #: mainloop.c:265 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:273 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "V pričakovanju novih nalog; stanje nedejavnosti je %d ms ...\n" #: mainloop.c:294 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:978 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:982 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "Zahtevana je potrditev za ustvarjanje ZAŽETNE kode žetona.\n" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "Zahtevana je potrditev za ustvarjanje NASLEDNJE kode žetona.\n" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" "Strežnik zavrača uporabniški prstni odtis; preklopljen bo način za ročni " "vnos.\n" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "Poteka ustvarjanje kode žetona OATH TOTP.\n" #: oath.c:565 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:160 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:166 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:175 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:186 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:201 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:210 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:219 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:232 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:254 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:274 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:297 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:316 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:327 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:335 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:342 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:350 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:358 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:366 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:374 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:383 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:395 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:473 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:490 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:496 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:512 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:577 oncp.c:609 oncp.c:747 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:618 oncp.c:783 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:631 oncp.c:666 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:636 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:643 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:670 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:683 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:692 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "" #: oncp.c:698 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "" #: oncp.c:705 msgid "Failed to read continuation record length\n" msgstr "" #: oncp.c:711 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "" #: oncp.c:720 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "" #: oncp.c:726 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "" #: oncp.c:767 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:776 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:829 msgid "new incoming" msgstr "" #: oncp.c:830 msgid "new outgoing" msgstr "" #: oncp.c:855 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:864 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:868 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:874 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:969 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:972 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:991 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1053 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1058 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1073 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1134 msgid "Sent ESP enable control packet\n" msgstr "" #: oncp.c:1268 msgid "Logout successful.\n" msgstr "" #: openconnect-internal.h:1119 openconnect-internal.h:1127 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "Začenjanje seje DTLSv1 je spodletela\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "" #: openssl-dtls.c:365 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Začenjanje DTLSv1 CTX je spodletelo.\n" #: openssl-dtls.c:378 msgid "Set DTLS CTX version failed\n" msgstr "" #: openssl-dtls.c:395 msgid "Failed to generate DTLS key\n" msgstr "" #: openssl-dtls.c:413 msgid "Set DTLS cipher list failed\n" msgstr "Nastavljanje seznama šifer DTLS je spodletelo.\n" #: openssl-dtls.c:439 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:460 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "Predmet SSL_set_session() je spodletel s staro različico protokola 0x%x\n" "Ali je v uporabi različica programa OpenSSL, ki je starejša od različice " "0.9.8m?\n" "Za več podrobnosti si oglejte http://rt.openssl.org/Ticket/Display.html?" "id=1751\n" "Z uporabo zastavice --no-dtls v argumentu ukaza, se izognete temu sporočilu\n" #: openssl-dtls.c:493 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:566 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "" #: openssl-dtls.c:603 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" "Različica OpenSSL je starejša kot tisti, s katero je bil program izgrajen, " "zato lahko DTLS spodleti!" #: openssl-dtls.c:654 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Vzrok je najbrž v vašem okvarjenem OpenSSL.\n" "Oglejte si http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: openssl-dtls.c:661 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "Izmenjava signalov DTLS je spodletela: %d\n" #: openssl-esp.c:87 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:101 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:157 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:202 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:210 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:241 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:43 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:49 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "" #: openssl-pkcs11.c:269 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:272 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:275 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:279 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:286 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:300 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:306 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:342 openssl-pkcs11.c:565 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:349 openssl-pkcs11.c:575 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:383 openssl-pkcs11.c:617 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:393 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "" #: openssl-pkcs11.c:401 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:412 openssl.c:713 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl-pkcs11.c:458 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:464 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:497 msgid "Certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:503 openssl-pkcs11.c:526 msgid "Certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:506 msgid "Checking EC key matches cert\n" msgstr "" #: openssl-pkcs11.c:510 msgid "Failed to allocate signature buffer\n" msgstr "" #: openssl-pkcs11.c:520 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" #: openssl-pkcs11.c:638 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "" #: openssl-pkcs11.c:649 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:678 msgid "Add key from PKCS#11 failed\n" msgstr "" #: openssl-pkcs11.c:710 openssl-pkcs11.c:716 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:147 msgid "Failed to write to SSL socket\n" msgstr "Pisanje v vtič SSL je spodletelo\n" #: openssl.c:197 openssl.c:263 msgid "Failed to read from SSL socket\n" msgstr "Branje iz vtiča SSL je spodletelo\n" #: openssl.c:292 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" "Napaka branja SSL %d (strežnik je najverjetneje zaprl povezavo); sledi " "ponovna povezava.\n" #: openssl.c:317 #, c-format msgid "SSL_write failed: %d\n" msgstr "Pisanje SSL je spodletelo: %d\n" #: openssl.c:389 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:465 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "Geslo PEM je predolgo (%d >= %d)\n" #: openssl.c:498 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Dodatno potrdilo %s: '%s'\n" #: openssl.c:548 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "" "Razčlenjevanje Parse PKCS#12 je spodletelo (napaka je navedena zgoraj)\n" #: openssl.c:563 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS#12 ne vsebuje potrdil!\n" #: openssl.c:572 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS#12 ne vsebuje osebnega ključa!\n" #: openssl.c:577 msgid "PKCS#12" msgstr "" #: openssl.c:600 msgid "Can't load TPM engine.\n" msgstr "Programnika TPM ni mogoče naložiti.\n" #: openssl.c:606 msgid "Failed to init TPM engine\n" msgstr "Začenjanje programnika TPM je spodletelo.\n" #: openssl.c:616 msgid "Failed to set TPM SRK password\n" msgstr "Nastavljanje gesla TPM SRK je spodletelo\n" #: openssl.c:630 msgid "Failed to load TPM private key\n" msgstr "Nalaganje zasebnega ključa TPM je spodletelo\n" #: openssl.c:636 msgid "Add key from TPM failed\n" msgstr "Dodajanje ključa iz TPM je spodletelo\n" #: openssl.c:687 openssl.c:835 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Odpiranje datoteke potrdila %s je spodletelo: %s\n" #: openssl.c:697 msgid "Loading certificate failed\n" msgstr "Nalaganje potrdila je spodletelo\n" #: openssl.c:735 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:748 msgid "PEM file" msgstr "" #: openssl.c:777 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Ustvarjanje pravil BIO za predmet shrambe ključa '%s'\n" #: openssl.c:802 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Nalaganje zasebnega ključa je spodletelo (napačno šifrirno geslo?)\n" #: openssl.c:808 msgid "Loading private key failed (see above errors)\n" msgstr "Nalaganje zasebnega ključa je spodletelo (glejte napake zgoraj)\n" #: openssl.c:858 msgid "Failed to load X509 certificate from keystore\n" msgstr "Nalaganje potrdila X509 iz shrambe ključev je spodletelo\n" #: openssl.c:864 msgid "Failed to use X509 certificate from keystore\n" msgstr "Uporaba potrdila X509 iz shrambe ključev je spodletela\n" #: openssl.c:896 msgid "Failed to use private key from keystore\n" msgstr "Uporaba zasebnega ključa iz shrambe ključev je spodletelo\n" #: openssl.c:912 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Odpiranje zasebne datoteke ključa %s je spodletelo: %s\n" #: openssl.c:936 openssl.c:951 openssl.c:972 openssl.c:1038 msgid "Loading private key failed\n" msgstr "" #: openssl.c:1032 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1049 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Določevanje vrste zasebnega ključa v '%s' je spodletelo\n" #: openssl.c:1203 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Ujemajoče altname DNS '%s'\n" #: openssl.c:1210 #, c-format msgid "No match for altname '%s'\n" msgstr "Ni zadetkov za altname '%s'\n" #: openssl.c:1224 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" "Potrdilo ima določena drugotna imena GEN_IPADD z nedovoljeno dolžino %d\n" #: openssl.c:1235 openssl.c:1381 #, c-format msgid "Matched %s address '%s'\n" msgstr "Skladnih je %s naslovov '%s'\n" #: openssl.c:1242 #, c-format msgid "No match for %s address '%s'\n" msgstr "Ni zadetkov za %s z naslovom '%s'\n" #: openssl.c:1284 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "Naslov URI '%s' nima prazne poti; naslov bo prezrt.\n" #: openssl.c:1289 #, c-format msgid "Matched URI '%s'\n" msgstr "Ujemajoči naslov URI '%s'\n" #: openssl.c:1300 #, c-format msgid "No match for URI '%s'\n" msgstr "Ni zadetkov za naslov URI '%s'\n" #: openssl.c:1315 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "Nobeno izmed navedenih drugotnih imen v potrdilu ni skladno z '%s'\n" #: openssl.c:1323 msgid "No subject name in peer cert!\n" msgstr "Ni imena zadeve v potrdilu soležnika!\n" #: openssl.c:1343 msgid "Failed to parse subject name in peer cert\n" msgstr "Razčlenjevanje imena zadeve v potrdilu soležnika je spodletelo.\n" #: openssl.c:1350 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Neskladno potrdilo zadeve soležnika ('%s' != '%s')\n" #: openssl.c:1355 openssl.c:1389 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Skladno je ime zadeve v potrdilu soležnika '%s'\n" #: openssl.c:1451 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Dodatno potrdilo iz datoteke potrdil: '%s'\n" #: openssl.c:1589 msgid "Error in client cert notAfter field\n" msgstr "Napaka v polju potrdila odjemalca notAfter\n" #: openssl.c:1602 msgid "" msgstr "" #: openssl.c:1655 msgid "Create TLSv1 CTX failed\n" msgstr "" #: openssl.c:1674 msgid "SSL certificate and key do not match\n" msgstr "" #: openssl.c:1719 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Branje potrdil iz datoteke CA '%s' je spodletelo\n" #: openssl.c:1752 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Odpiranje datoteke CA '%s' je spodletelo\n" #: openssl.c:1812 msgid "SSL connection failure\n" msgstr "Povezava SSL je spodletela\n" #: openssl.c:1973 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:130 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Opusti slabo deljenja z vključevanjem: \"%s\"\n" #: script.c:134 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Opusti slabo deljenje z izključevanjem: \"%s\"\n" #: script.c:507 script.c:555 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Oživljanje skripta '%s' za %s je spodletelo: %s\n" #: script.c:562 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "Skript '%s' je zaključen z napako (%x)\n" #: script.c:570 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Skript '%s' je vrnil napako %d\n" #: ssl.c:108 msgid "Socket connect cancelled\n" msgstr "Povezava z vtičem je spodletela\n" #: ssl.c:217 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "" #: ssl.c:221 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "" #: ssl.c:289 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Posredniški strežnik iz libproxy: %s://%s:%d/\n" #: ssl.c:317 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "Ukaz getaddrinfo za gostitelja '%s' je spodletel: %s\n" #: ssl.c:326 ssl.c:451 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:341 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Vzpostavlja se povezava s posredniškim strežnikom %s%s%s:%s\n" #: ssl.c:342 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Vzpostavlja se povezava s strežnikom %s%s%s:%s\n" #: ssl.c:362 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "" #: ssl.c:374 msgid "Failed to allocate sockaddr storage\n" msgstr "Dodeljevanje shrambe sockaddr je spodletelo\n" #: ssl.c:416 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "" #: ssl.c:434 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:446 #, c-format msgid "Failed to connect to host %s\n" msgstr "Povezava z gostiteljem %s je spodletela.\n" #: ssl.c:465 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:536 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:564 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:575 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:603 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:694 msgid "No error" msgstr "Brez napake" #: ssl.c:695 msgid "Keystore locked" msgstr "Shramba ključev je zaklenjena" #: ssl.c:696 msgid "Keystore uninitialized" msgstr "Shramba ključev ni začeta" #: ssl.c:697 msgid "System error" msgstr "Sistemska napaka" #: ssl.c:698 msgid "Protocol error" msgstr "Napaka v protokolu" #: ssl.c:699 msgid "Permission denied" msgstr "Dovoljenje je zavrnjeno" #: ssl.c:700 msgid "Key not found" msgstr "Ključa ni mogoče najti" #: ssl.c:701 msgid "Value corrupted" msgstr "Vrednost je okvarjena" #: ssl.c:702 msgid "Undefined action" msgstr "Nedoločeno dejanje" #: ssl.c:706 msgid "Wrong password" msgstr "Napačno geslo" #: ssl.c:707 msgid "Unknown error" msgstr "Neznana napaka" #: ssl.c:896 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:931 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:950 msgid "Open UDP socket" msgstr "" #: ssl.c:981 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:989 msgid "Bind UDP socket" msgstr "" #: ssl.c:996 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:1034 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:1038 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "v mirovanju %ds, preostaja še %ds.\n" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "Vnos poveril za odklep uporabniškega prstnega odtisa." #: stoken.c:82 msgid "Device ID:" msgstr "ID naprave:" #: stoken.c:89 msgid "Password:" msgstr "Geslo:" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "Uporabnik je obšel uporabniški prstni odtis.\n" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "Zahtevana so vsa polja; poskusite znova.\n" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "Splošna napaka v knjižnici libstoken.\n" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "Neveljaven ID naprave ali pa ni veljavno geslo; poskusite znova.\n" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "Začenjanje uporabniškega prstnega odtisa je bilo uspešno.\n" #: stoken.c:185 msgid "Enter software token PIN." msgstr "" #: stoken.c:189 msgid "PIN:" msgstr "PIN: " #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "Napačno geslo PIN, poskusite znova.\n" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "Poteka ustvarjanje kode žetona RSA.\n" #: tun-win32.c:76 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:139 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "" #: tun-win32.c:154 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" #: tun-win32.c:186 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" #: tun-win32.c:200 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "" #: tun-win32.c:231 #, c-format msgid "Failed to open %s\n" msgstr "" #: tun-win32.c:236 #, c-format msgid "Opened tun device %s\n" msgstr "" #: tun-win32.c:244 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:250 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:271 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:283 tun-win32.c:406 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:316 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:321 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:335 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:358 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:368 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:371 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:423 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Ni mogoče izvesti /dev/tun za razpeljavo" #: tun.c:92 msgid "Can't push IP" msgstr "Ni mogoče objaviti IP" #: tun.c:102 msgid "Can't set ifname" msgstr "Ni mogoče nastaviti ifname" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "Ni mogoče odpreti %s: %s" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Ni mogoče razpeljati %s za IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "open /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Ni mogoče ustvariti novega naprave tun" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" "Podajanje opisnika datoteke TUN v načunu izločanja sporočil je spodletela." #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "" #: tun.c:205 msgid "open net" msgstr "open net" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Odpiranje naprave tun je spodletelo: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Neveljavno ime vmesnika '%s'; skladno mora biti z imenom 'tun%%d'\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Ni mogoče odpreti '%s': %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:479 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:484 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:488 msgid "setpgid" msgstr "setpgid" #: tun.c:493 msgid "execl" msgstr "execl" #: tun.c:498 msgid "(script)" msgstr "(skript)" #: tun.c:566 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Zapisovanje prihajajočega paketa je spodletelo: %s\n" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Gostitelj \"%s\" je obravnavan kot ime gostitelja.\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Določevanje razpršila SHA1 obstoječe datoteke je spodletelo\n" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "Nastavitvena datoteka XML SHA1: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Razčlenjevanje nastavitvene datoteke XML %s je spodletelo.\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Gostitelj \"%s\" je na naslovu \"%s\".\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Gostitelj \"%s\" vključuje uporabniško skupino \"%s\".\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "Gostitelj \"%s\" v datoteki config ni naveden; obravnavan bo kot " "neoblikovano ime gostitelja\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:174 msgid "select applet command" msgstr "" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:274 msgid "unlock command" msgstr "" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:412 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:619 msgid "calculate command" msgstr "" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-8.05/po/nl.po0000664000076400007640000040071013470043037017127 0ustar00dwoodhoudwoodhou00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: # André Koot , 2011-2012. msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2019-05-18 10:44-0700\n" "PO-Revision-Date: 2012-12-20 19:06+0000\n" "Last-Translator: André Koot \n" "Language-Team: Dutch (http://www.transifex.com/projects/p/meego/language/" "nl/)\n" "Language: nl\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: auth-globalprotect.c:108 #, c-format msgid "" "SAML login is required via %s to this URL:\n" "\t%s" msgstr "" "SAML-aanmelding vereist via %s voor deze URL:\n" "\t%s" #: auth-globalprotect.c:110 msgid "Please enter your username and password" msgstr "Voer uw gebruikersnaam en wachtwoord in" #: auth-globalprotect.c:119 msgid "Username" msgstr "Gebruikersnaam" #: auth-globalprotect.c:134 msgid "Password" msgstr "Wachtwoord" #: auth-globalprotect.c:181 msgid "Challenge: " msgstr "Uitdaging: " #: auth-globalprotect.c:260 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "GlobalProtect-aanmelding gaf %s=%s weer (%s verwacht)\n" #: auth-globalprotect.c:266 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "GlobalProtect-aanmelding gaf lege of ontbrekende %s weer\n" #: auth-globalprotect.c:272 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "GlobalProtect-aanmelding gaf %s=%s weer\n" #: auth-globalprotect.c:315 msgid "Please select GlobalProtect gateway." msgstr "Selecteer een GlobalProtect-gateway." #: auth-globalprotect.c:325 msgid "GATEWAY:" msgstr "GATEWAY:" #. each entry looks like Label #: auth-globalprotect.c:379 #, c-format msgid "%d gateway servers available:\n" msgstr "%d gatewayservers beschikbaar:\n" #: auth-globalprotect.c:400 #, c-format msgid " %s (%s)\n" msgstr " %s (%s)\n" #: auth-globalprotect.c:484 auth-juniper.c:730 auth.c:669 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "Genereren van OTP-tokencode mislukt; token wordt uitgeschakeld\n" #: auth-globalprotect.c:584 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "Server is geen GlobalProtect-portaal, noch een gateway.\n" #: auth-globalprotect.c:636 oncp.c:1266 msgid "Logout failed.\n" msgstr "Afmelden mislukt.\n" #: auth-globalprotect.c:638 msgid "Logout successful\n" msgstr "Afgemeld\n" #: auth-juniper.c:142 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "Onbekend submit-item '%s' van formulier wordt genegeerd\n" #: auth-juniper.c:153 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "Onbekend invoertype '%s' van formulier wordt genegeerd\n" #: auth-juniper.c:163 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "Dubbele optie '%s' wordt verworpen\n" #: auth-juniper.c:236 auth.c:408 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Kan niet overweg met formuliermethode = '%s', actie = '%s'\n" #: auth-juniper.c:267 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "Onbekend tekstveld: ‘%s’\n" #: auth-juniper.c:337 msgid "TNCC support not implemented yet on Windows\n" msgstr "TNCC-ondersteuning is nog niet geïmplementeerd op Windows\n" #: auth-juniper.c:359 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "Geen DSPREAUTH-cookie; TNCC wordt niet geprobeerd\n" #: auth-juniper.c:397 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "Uitvoeren van TNCC-script %s mislukt: %s\n" #: auth-juniper.c:411 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "Toewijzen van geheugen voor communicatie met TNCC mislukt\n" #: auth-juniper.c:418 msgid "Failed to send start command to TNCC\n" msgstr "Verzenden van startopdracht aan TNCC mislukt\n" #: auth-juniper.c:425 msgid "Sent start; waiting for response from TNCC\n" msgstr "Start verzonden; wachten op antwoord van TNCC\n" #: auth-juniper.c:432 msgid "Failed to read response from TNCC\n" msgstr "Lezen van antwoord van TNCC mislukt\n" #: auth-juniper.c:439 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "Onsuccesvol %s-antwoord ontvangen van TNCC\n" #: auth-juniper.c:445 msgid "TNCC response 200 OK\n" msgstr "TNCC-antwoord 200 oké\n" #: auth-juniper.c:452 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "Tweede regel van TNCC-reactie: '%s'\n" #: auth-juniper.c:461 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "Nieuwe DSPREAUTH-cookie gekregen van TNCC: %s\n" #: auth-juniper.c:474 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "Onverwachte niet-lege regel van TNCC na DSPREAUTH-cookie: '%s'\n" #: auth-juniper.c:481 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:650 msgid "Failed to parse HTML document\n" msgstr "Ontleden van HTML-document mislukt\n" #: auth-juniper.c:667 msgid "Failed to find or parse web form in login page\n" msgstr "Vinden of ontleden van webformulier op aanmeldingspagina mislukt\n" #: auth-juniper.c:675 msgid "Encountered form with no ID\n" msgstr "Formulier zonder ID tegengekomen\n" #: auth-juniper.c:713 #, c-format msgid "Unknown form ID '%s'\n" msgstr "Onbekende formulier-ID ‘%s’\n" #: auth-juniper.c:716 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "Onbekend HTML-formulier wordt gedumpt:\n" #: auth.c:96 msgid "Form choice has no name\n" msgstr "Formulier keuze heeft geen naam\n" #: auth.c:181 #, c-format msgid "name %s not input\n" msgstr "naam %s niet ingevoerd\n" #: auth.c:188 msgid "No input type in form\n" msgstr "Geen inputtype in het formulier\n" #: auth.c:200 msgid "No input name in form\n" msgstr "Geen invoernaam in het formulier\n" #: auth.c:230 #, c-format msgid "Unknown input type %s in form\n" msgstr "Onbekend inputtype %s in het formulier\n" #: auth.c:540 gpst.c:214 msgid "Empty response from server\n" msgstr "Leeg antwoord van server\n" #: auth.c:551 gpst.c:289 msgid "Failed to parse server response\n" msgstr "Vertalen van de serverreactie mislukt\n" #: auth.c:553 gpst.c:291 #, c-format msgid "Response was:%s\n" msgstr "Reactie was: %s\n" #: auth.c:575 msgid "Received when not expected.\n" msgstr " ontvangen, maar niet verwacht.\n" #: auth.c:603 msgid "XML response has no \"auth\" node\n" msgstr "XML antwoord heeft geen \"auth\" sectie\n" #: auth.c:636 msgid "Asked for password but '--no-passwd' set\n" msgstr "Vroeg naar wachtwoord, maar '- no-passwd' is ingesteld\n" #: auth.c:925 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "XML-profiel wordt niet gedownload, want SHA1 komt reeds overeen\n" #: auth.c:931 cstp.c:335 http.c:916 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Kan geen HTTPS-verbinding openen met %s\n" #: auth.c:952 msgid "Failed to send GET request for new config\n" msgstr "Versturen GET aanvraag voor nieuwe configuratie mislukt\n" #: auth.c:976 msgid "Downloaded config file did not match intended SHA1\n" msgstr "Gedownloade config-bestand komt niet overeen bedoelde SHA1\n" #: auth.c:981 msgid "Downloaded new XML profile\n" msgstr "Nieuw XML-profiel gedownload\n" #: auth.c:992 auth.c:1044 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" "Fout: uitvoeren van het ‘Cisco Secure Desktop’-Trojaans paard wordt op dit " "platform nog niet ondersteund.\n" #: auth.c:1003 mainloop.c:144 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "Instellen van gid %ld mislukt: %s\n" #: auth.c:1010 mainloop.c:151 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "Instellen van groepen op %ld mislukt: %s\n" #: auth.c:1017 mainloop.c:158 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "Instellen van uid %ld: %s\n" #: auth.c:1024 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "Ongeldige gebruikers-uid=%ld: %s\n" #: auth.c:1031 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Mislukt om te schakelen naar CSD home directory '%s':%s\n" #: auth.c:1053 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Fout: server vroeg ons om CSD-hostscan uit te voeren.\n" "U dient een geschikte parameter voor --csd-wrapper op te geven.\n" #: auth.c:1060 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Fout: Server vroeg ons om een 'Cisco Secure Desktop' trojan te downloaden en " "uit te voeren. Deze faciliteit is standaard om veiligheidsredenen " "uitgeschakeld. U kunt zelf besluiten om dit mogelijk te maken.\n" #: auth.c:1067 msgid "Trying to run Linux CSD trojan script.\n" msgstr "Poging Linux CSD trojan script uit te voeren.\n" #: auth.c:1094 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "Tijdelijke map ‘%s’ is niet schrijfbaar: %s\n" #: auth.c:1102 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Niet te openen tijdelijk CSD scriptbestand: %s\n" #: auth.c:1111 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Niet mogelijk om tijdelijk CSD script file weg te schrijven: %s\n" #: auth.c:1141 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Waarschuwing: je draait onveilige CSD-code met root privileges\n" "\t Gebruik commandoregel optie \"--csd-user\"\n" #: auth.c:1189 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Niet gelukt om CSD script te draaien %s\n" #: auth.c:1221 msgid "Unknown response from server\n" msgstr "Onbekende reactie van de server\n" #: auth.c:1342 msgid "Server requested SSL client certificate after one was provided\n" msgstr "Server vroeg om SSL-cliëntcertificaat nadat er een werd gegeven\n" #: auth.c:1346 msgid "Server requested SSL client certificate; none was configured\n" msgstr "Server vroeg om SSL-cliëntcertificaat; geen ingesteld\n" #: auth.c:1362 msgid "XML POST enabled\n" msgstr "XML POST toegestaan\n" #: auth.c:1405 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Verversing %s na 1 seconde ...\n" #: compat.c:207 #, c-format msgid "(error 0x%lx)" msgstr "(fout 0x%lx)" #: compat.c:210 msgid "(Error while describing error!)" msgstr "(Fout bij beschrijven van fout!)" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "FOUT: kan sockets niet initialiseren\n" #: cstp.c:112 gpst.c:341 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:134 gpst.c:360 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:281 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" "KRITIEKE FOUT: DTLS-hoofdgeheim is ongeïnitialiseerd. Gelieve dit te " "melden.\n" #: cstp.c:312 msgid "Error creating HTTPS CONNECT request\n" msgstr "Fout bij aanmaken van HTTPS CONNECT-verzoek\n" #: cstp.c:328 http.c:384 msgid "Error fetching HTTPS response\n" msgstr "Fout bij het ophalen HTTPS reactie\n" #: cstp.c:355 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "VPN-service niet beschikbaar, reden:%s\n" #: cstp.c:360 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Onjuiste HTTP CONNECT reactie: %s\n" #: cstp.c:367 #, c-format msgid "Got CONNECT response: %s\n" msgstr "CONNECT reactie: %s\n" #: cstp.c:396 cstp.c:404 msgid "No memory for options\n" msgstr "Geen geheugen voor opties\n" #: cstp.c:413 http.c:444 msgid "" msgstr "" #: cstp.c:433 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Session-ID niet 64 tekens; is: \"%s\"\n" #: cstp.c:450 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "X-DTLS-Session-ID is ongeldig; is: '%s'\n" #: cstp.c:468 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "Onbekende DTLS-Content-codering %s\n" #: cstp.c:510 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Onbekende CSTP-Content-Encoding %s\n" #: cstp.c:585 msgid "No MTU received. Aborting\n" msgstr "Geen MTU ontvangen. Afbreken\n" #: cstp.c:593 gpst.c:641 msgid "No IP address received. Aborting\n" msgstr "Geen IP-adres ontvangen. Afbreken\n" #: cstp.c:599 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "IPv6-configuratie ontvangen maar MTU %d is te klein.\n" #: cstp.c:605 gpst.c:648 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Herverbinden gaf verschillende Legacy IP-adressen (%s != %s)\n" #: cstp.c:614 gpst.c:657 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "Herverbinden gaf verschillende Legacy IP-netmasks (%s != %s)\n" #: cstp.c:622 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Herverbinden gaf verschillende IP-adressen (%s != %s)\n" #: cstp.c:630 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Herverbinden gaf verschillende IPv6-netmasks (%s != %s)\n" #: cstp.c:638 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP aangesloten. DPD %d, Keepalive %d\n" #: cstp.c:640 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "CSTP-ciphersuite: %s\n" #: cstp.c:702 msgid "Compression setup failed\n" msgstr "Compressie setup is mislukt\n" #: cstp.c:719 msgid "Allocation of deflate buffer failed\n" msgstr "Toewijzing van leegloop buffer is mislukt\n" #: cstp.c:781 msgid "inflate failed\n" msgstr "decomprimeren mislukt\n" #: cstp.c:804 #, c-format msgid "LZS decompression failed: %s\n" msgstr "LZS-decompressie mislukt: %s\n" #: cstp.c:817 msgid "LZ4 decompression failed\n" msgstr "LZ4-decompressie mislukt\n" #: cstp.c:824 #, c-format msgid "Unknown compression type %d\n" msgstr "Onbekend compressietype %d\n" #: cstp.c:829 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "%s gecomprimeerd datapakket ontvangen van %d bytes (was %d)\n" #: cstp.c:849 #, c-format msgid "deflate failed %d\n" msgstr "compressie mislukt %d\n" #: cstp.c:922 dtls.c:281 dtls.c:740 esp.c:129 gpst.c:1042 mainloop.c:69 #: oncp.c:914 msgid "Allocation failed\n" msgstr "Toewijzing mislukt\n" #: cstp.c:933 gpst.c:1055 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "Kort pakket ontvangen (%d bytes)\n" #: cstp.c:946 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Onverwachte pakket lengte. SSL_read meldde %d, maar pakket is\n" #: cstp.c:960 msgid "Got CSTP DPD request\n" msgstr "Ontvangen CSTP DPD aanvraag\n" #: cstp.c:966 msgid "Got CSTP DPD response\n" msgstr "Ontvangen CSTP DPD reactie\n" #: cstp.c:971 msgid "Got CSTP Keepalive\n" msgstr "Ontvangen CSTP Keepalive\n" #: cstp.c:976 oncp.c:1003 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Ontvangen datapakket ongecomprimeerd %d bytes\n" #: cstp.c:993 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Ontvangen servermelding ontkoppeling: %02x '%s'\n" #: cstp.c:996 msgid "Received server disconnect\n" msgstr "Verbindingsverbreking van server ontvangen\n" #: cstp.c:1004 msgid "Compressed packet received in !deflate mode\n" msgstr "Gecomprimeerd pakket ontvangen in !deflate mode\n" #: cstp.c:1013 msgid "received server terminate packet\n" msgstr "ontvangen server beëindigingspakket\n" #: cstp.c:1020 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Onbekend packet %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1063 gpst.c:1142 oncp.c:1121 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL schreef te weinig bytes! Gevraagd om %d, verstuurde %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1091 oncp.c:1155 msgid "CSTP rekey due\n" msgstr "CSTP rekey verwacht\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1098 oncp.c:1162 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Rehandshake mislukt; new-tunnel proberen\n" #: cstp.c:1109 oncp.c:1173 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "CSTP Dead Peer Detection ontdekte dode host!\n" #: cstp.c:1113 gpst.c:1166 oncp.c:1091 oncp.c:1177 msgid "Reconnect failed\n" msgstr "Herverbinden mislukte\n" #: cstp.c:1129 oncp.c:1193 msgid "Send CSTP DPD\n" msgstr "Stuur CSTP DPD\n" #: cstp.c:1141 oncp.c:1204 msgid "Send CSTP Keepalive\n" msgstr "Stuur CSTP Keepalive\n" #: cstp.c:1166 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "Gecomprimeerd datapakket van %d bytes (was %d) verzenden\n" #: cstp.c:1177 oncp.c:1238 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Verzenden van gedecomprimeerd datapakket van %d bytes\n" #: cstp.c:1216 #, c-format msgid "Send BYE packet: %s\n" msgstr "Stuur BYE pakket: %s\n" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "Digest-aanmeldingscontrole bij proxy proberen\n" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "Digest-aanmeldingscontrole bij server '%s' proberen\n" #: dtls.c:113 msgid "DTLS connection attempted with an existing fd\n" msgstr "DTLS-verbinding geprobeerd met bestaande fd\n" #: dtls.c:119 msgid "No DTLS address\n" msgstr "Geen DTLS adres\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:126 msgid "Server offered no DTLS cipher option\n" msgstr "Server bood geen DTLS cipher optie aan\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:133 msgid "No DTLS when connected via proxy\n" msgstr "Geen DTLS wanneer deze is aangesloten via een proxy\n" #: dtls.c:200 #, c-format msgid "DTLS option %s : %s\n" msgstr "DTLS optie %s:%s\n" #: dtls.c:239 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS geïnitialiseerd. DPD %d, Keepalive %d\n" #: dtls.c:265 msgid "Attempt new DTLS connection\n" msgstr "Probeer nieuwe DTLS verbinding\n" #: dtls.c:292 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Ontvangen DTLS pakket 0x%02x van %d bytes\n" #: dtls.c:306 msgid "Got DTLS DPD request\n" msgstr "Ontving DTLS DPD aanvraag\n" #: dtls.c:312 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Mislukt om DPD reactie te versturen. Verwacht ontkoppeling\n" #: dtls.c:316 msgid "Got DTLS DPD response\n" msgstr "Ontving DTLS DPD reactie\n" #: dtls.c:320 msgid "Got DTLS Keepalive\n" msgstr "Ontving DTLS Keepalive\n" #: dtls.c:326 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" "Gecomprimeerd DTLS-pakket ontvangen, maar compressie niet ingeschakeld\n" #: dtls.c:334 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Onbekend DTLS pakkettype %02x, len %d\n" #: dtls.c:356 msgid "DTLS rekey due\n" msgstr "DTLS rekey verwacht\n" #: dtls.c:363 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "DTLS-rehandshake mislukt; opnieuw verbinden.\n" #: dtls.c:372 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "DTLS Dead Peer Detection ontdekte dode host!\n" #: dtls.c:378 msgid "Send DTLS DPD\n" msgstr "Stuur DTLS DPD\n" #: dtls.c:383 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Niet geslaagd in verzenden DPD aanvraag. Verbinding wordt verbroken\n" #: dtls.c:396 msgid "Send DTLS Keepalive\n" msgstr "Stuur DTLS Keepalive\n" #: dtls.c:401 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Verzenden van keepalive-verzoek mislukt. Verbinding wordt verbroken\n" #: dtls.c:432 tun.c:541 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Onbekend pakket (len %d) ontvangen: %02x %02x %02x %02x...\n" #: dtls.c:439 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "TOS dit: %d, TOS laatst: %d\n" #: dtls.c:443 msgid "UDP setsockopt" msgstr "UDP-setsockopt" #: dtls.c:474 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "DTLS kreeg schrijffout %d. Terugvallen naar SSL\n" #: dtls.c:488 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "DTLS kleerg schrijffout: %s. Terugvallen naar SSL\n" #: dtls.c:503 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "Verstuurd DTLS packet van %d bytes; DTLS verzending retourneerde %d\n" #: dtls.c:531 #, c-format msgid "Initiating IPv4 MTU detection (min=%d, max=%d)\n" msgstr "IPv4-MTU-detectie starten (min=%d, max=%d)\n" #: dtls.c:551 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "Te lange tijd in MTU-detectielus; onderhandelde MTU veronderstellen.\n" #: dtls.c:555 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "Te lange tijd in MTU-detectiemodus; MTU ingesteld op %d.\n" #: dtls.c:564 #, c-format msgid "Sending MTU DPD probe (%u bytes, min=%u, max=%u)\n" msgstr "MTU DPD-sonde verzenden (%u bytes, min=%u, max=%u)\n" #: dtls.c:568 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "Verzenden van DPD-verzoek mislukt (%d %d)\n" #: dtls.c:582 dtls.c:690 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "Onverwacht pakket (%.2x) ontvangen in MTU-detectie; overslaan.\n" #: dtls.c:594 #, c-format msgid "Timeout while waiting for DPD response; trying %d\n" msgstr "Time-out bij wachten op DPD-reactie; %d proberen\n" #: dtls.c:601 dtls.c:682 msgid "Timeout while waiting for DPD response; resending probe.\n" msgstr "Time-out bij wachten op DPD-reactie; sonde wordt opnieuw verzonden.\n" #: dtls.c:608 dtls.c:709 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "Ontvangen van DPD-verzoek mislukt (%d)\n" #: dtls.c:613 #, c-format msgid "Received MTU DPD probe (%u bytes of %u)\n" msgstr "MTU DPD-sonde ontvangen (%u van %u bytes)\n" #: dtls.c:651 msgid "Initiating IPv6 MTU detection\n" msgstr "IPv6-MTU-detectie initialiseren\n" #: dtls.c:666 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "MTU DPD-sonde verzenden (%u bytes)\n" #: dtls.c:670 #, c-format msgid "Failed to send DPD request (%d)\n" msgstr "Verzenden van DPD-verzoek mislukt (%d)\n" #: dtls.c:695 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "MTU DPD-sonde ontvangen (%u bytes)\n" #: dtls.c:759 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "MTU van %d bytes gedetecteerd (was %d)\n" #: dtls.c:762 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "Geen wijziging in MTU na detectie (was %d)\n" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "Verwacht ESP-pakket aanvaarden met seq %u\n" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" "Later-dan-verwacht ESP-pakket aanvaarden met seq %u (% verwacht)\n" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "Stokoud ESP-pakket verwerpen met seq %u (% verwacht)\n" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "Stokoud ESP-pakket verdragen met seq %u (% verwacht)\n" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "Herspeeld ESP-pakket verwerpen met seq %u\n" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "Herspeeld ESP-pakket verdragen met seq %u\n" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" "Buiten-volgorde ESP-pakket aanvaarden met seq %u (% verwacht)\n" #: esp.c:63 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "Parameters voor %s ESP: SPI 0x%08x\n" #: esp.c:66 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "ESP-versleutelingstype %s sleutel 0x%s\n" #: esp.c:69 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "ESP-authenticatietype %s sleutel 0x%s\n" #: esp.c:87 msgid "incoming" msgstr "inkomend" #: esp.c:88 msgid "outgoing" msgstr "uitgaand" #: esp.c:90 esp.c:113 msgid "Send ESP probes\n" msgstr "ESP-probes verzenden\n" #: esp.c:138 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "ESP-pakket van %d bytes ontvangen\n" #: esp.c:155 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "ESP-pakket ontvangen van oude SPI 0x%x, seq %u\n" #: esp.c:161 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "ESP-pakket met ongeldige SPI 0x%08x ontvangen\n" #: esp.c:174 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "ESP-pakket met niet-herkend payloadtype %02x ontvangen\n" #: esp.c:181 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "Ongeldige opvullingslengte %02x in ESP\n" #: esp.c:193 msgid "Invalid padding bytes in ESP\n" msgstr "Ongeldige opvullingsbytes in ESP\n" #: esp.c:202 msgid "ESP session established with server\n" msgstr "ESP-sessie met server tot stand gebracht\n" #: esp.c:213 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "Toewijzen van geheugen voor ontsleutelen van ESP-pakket mislukt\n" #: esp.c:219 msgid "LZO decompression of ESP packet failed\n" msgstr "LZO-decompressie van ESP-pakket mislukt\n" #: esp.c:225 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "LZO heeft %d bytes gedecomprimeerd in %d\n" #: esp.c:239 msgid "Rekey not implemented for ESP\n" msgstr "Rekey niet geïmplementeerd voor ESP\n" #: esp.c:243 msgid "ESP detected dead peer\n" msgstr "ESP bespeurde een dode peer\n" #: esp.c:251 msgid "Send ESP probes for DPD\n" msgstr "ESP-sondes voor DPD verzenden\n" #: esp.c:258 msgid "Keepalive not implemented for ESP\n" msgstr "Keepalive niet geïmplementeerd voor ESP\n" #: esp.c:278 #, c-format msgid "Failed to encrypt ESP packet: %d\n" msgstr "" #: esp.c:294 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:301 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "Verzenden van ESP-pakket mislukt: %s\n" #: esp.c:307 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "ESP-pakket van %d bytes verzonden\n" #: gnutls-dtls.c:190 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "DTLS-hervatting uitstellen totdat CSTP een PSK genereert\n" #: gnutls-dtls.c:198 msgid "Failed to generate DTLS priority string\n" msgstr "Genereren van DTLS-prioriteitstekenreeks mislukt\n" #: gnutls-dtls.c:207 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "Initialiseren van DTLS mislukt: %s\n" #: gnutls-dtls.c:216 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "Instellen van DTLS-prioriteit '%s' mislukt: %s\n" #: gnutls-dtls.c:240 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "Toewijzen van gebruikersreferenties mislukt: %s\n" #: gnutls-dtls.c:253 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "Genereren van DTLS-sleutel mislukt: %s\n" #: gnutls-dtls.c:267 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "Instellen van DTLS-sleutel mislukt: %s\n" #: gnutls-dtls.c:275 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "Instellen van DTLS-PSK-gebruikersreferenties mislukt: %s\n" #: gnutls-dtls.c:309 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Onbekende DTLS parameters voor aangevraagde CipherSuite '%s'\n" #: gnutls-dtls.c:324 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "Niet geslaagd in instellen DTLS prioriteit: %s\n" #: gnutls-dtls.c:345 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Niet geslaagd in instellen DTLS sessie parameters: %s\n" #: gnutls-dtls.c:373 openssl-dtls.c:534 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "Peer-MTU %d te klein om DTLS toe te staan\n" #: gnutls-dtls.c:382 openssl-dtls.c:545 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "DTLS MTU beperkt tot %d\n" #: gnutls-dtls.c:392 openssl-dtls.c:554 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" "Hervatten van DTLS-sessie mislukt; mogelijke MITM-aanval. DTLS wordt " "uitgeschakeld.\n" #: gnutls-dtls.c:405 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Instellen DTLS MTU mislukt: %s\n" #: gnutls-dtls.c:416 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "DTLS-verbinding gemaakt (met GnuTLS). Ciphersuite %s.\n" #: gnutls-dtls.c:422 openssl-dtls.c:572 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "DTLS-verbindingscompressie met %s.\n" #: gnutls-dtls.c:437 openssl-dtls.c:653 openssl-dtls.c:657 msgid "DTLS handshake timed out\n" msgstr "DTLS handshake time-out\n" #: gnutls-dtls.c:440 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "DTLS handshake mislukt: %s\n" #: gnutls-dtls.c:444 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(Probeert een firewall u te verhinderen UDP-pakketten te verzenden?)\n" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "Initialiseren van ESP-cipher mislukt: %s\n" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "Initialiseren van ESP-HMAC mislukt: %s\n" #: gnutls-esp.c:121 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "Genereren van willekeurige sleutels voor ESP mislukt: %s\n" #: gnutls-esp.c:132 msgid "Failed to generate ESP IV\n" msgstr "" #: gnutls-esp.c:161 gnutls-esp.c:217 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "Berekenen van HMAC voor ESP-pakket mislukt: %s\n" #: gnutls-esp.c:168 openssl-esp.c:192 msgid "Received ESP packet with invalid HMAC\n" msgstr "ESP-pakket met ongeldige HMAC ontvangen\n" #: gnutls-esp.c:180 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "Ontsleutelen van ESP-pakket mislukt: %s\n" #: gnutls-esp.c:209 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "Versleutelen van ESP-pakket mislukt: %s\n" #: gnutls.c:95 openssl.c:154 msgid "SSL write cancelled\n" msgstr "Schrijven SSL geannuleerd\n" #: gnutls.c:99 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "Schrijven naar SSL socket mislukt: %s\n" #: gnutls.c:145 gnutls.c:237 openssl.c:204 openssl.c:271 msgid "SSL read cancelled\n" msgstr "SSL lezen geannuleerd\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:158 msgid "SSL socket closed uncleanly\n" msgstr "SSL-socket onjuist afgesloten\n" #: gnutls.c:168 gnutls.c:246 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "Lezen van SSL socket mislukt: %s\n" #: gnutls.c:266 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "SSL leesfout: %s; herverbinden.\n" #: gnutls.c:302 #, c-format msgid "SSL send failed: %s\n" msgstr "SSL versturen mislukt: %s\n" #: gnutls.c:315 msgid "Could not extract expiration time of certificate\n" msgstr "Kon de vervaldatum niet afleiden uit het certificaat\n" #: gnutls.c:320 openssl.c:1592 msgid "Client certificate has expired at" msgstr "Client certificaat is verlopen op" #: gnutls.c:322 openssl.c:1597 msgid "Client certificate expires soon at" msgstr "Client certificaat vervalt al snel op" #: gnutls.c:371 openssl.c:771 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Load van item '%s' uit sleutelopslag mislukt: %s\n" #: gnutls.c:384 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Openen sleutel/certificaat bestand %s: %s mislukt\n" #: gnutls.c:391 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Status van sleutel-/certificaatsbestand %s verkrijgen mislukt: %s\n" #: gnutls.c:400 msgid "Failed to allocate certificate buffer\n" msgstr "Toewijzen certificaat bufferruimte mislukt\n" #: gnutls.c:408 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "In geheugen inlezen van certificaat info mislukt: %s\n" #: gnutls.c:439 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Instellen van PKCS#12 gegevensstructuur mislukt: %s\n" #: gnutls.c:462 openssl.c:534 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Ontcijferen PKCS#12 certificaatbestand mislukt\n" #: gnutls.c:466 openssl.c:537 msgid "Enter PKCS#12 pass phrase:" msgstr "Invoeren PKCS#12 wachtwoord:" #: gnutls.c:489 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Verwerken PKCS#12 bestand mislukt: %s\n" #: gnutls.c:501 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Laden PKCS#12 certificaat mislukt: %s\n" #: gnutls.c:584 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Importeren X509 certificaat mislukte: %s\n" #: gnutls.c:594 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Instellen PKCS#11 certificaat mislukte: %s\n" #: gnutls.c:628 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Kon de MD5 hash niet initialiseren: %s\n" #: gnutls.c:638 #, c-format msgid "MD5 hash error: %s\n" msgstr "MD5 hash error: %s\n" #: gnutls.c:696 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "DEK-Info ontbreeks: header uit OpenSSL-versleutelde sleutel\n" #: gnutls.c:703 msgid "Cannot determine PEM encryption type\n" msgstr "Kan PEM versleutelingstype niet achterhalen\n" #: gnutls.c:716 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Niet-ondersteunde PEM versleutelingstype: %s\n" #: gnutls.c:741 gnutls.c:754 msgid "Invalid salt in encrypted PEM file\n" msgstr "Ongeldige salt in versleuteld PEM bestand\n" #: gnutls.c:778 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Fout base64-decoderen versleutelde PEM bestand: %s\n" #: gnutls.c:786 msgid "Encrypted PEM file too short\n" msgstr "versleutelde PEM bestand te kort\n" #: gnutls.c:814 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" "Initialiseren van cipher voor ontsleutelen van PEM-bestand mislukt: %s\n" #: gnutls.c:825 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Niet gelukt om PEM key %s te ontcijferen\n" #: gnutls.c:877 msgid "Decrypting PEM key failed\n" msgstr "Ontcijferen PEM sleutel mislukt\n" #: gnutls.c:881 gnutls.c:1405 openssl.c:458 msgid "Enter PEM pass phrase:" msgstr "Invoeren PEM wachtwoord:" #: gnutls.c:942 msgid "This binary built without system key support\n" msgstr "" "Dit binair bestand is gecompileerd zonder systeemsleutelondersteuning\n" #: gnutls.c:949 msgid "This binary built without PKCS#11 support\n" msgstr "Deze binary is gecompileerd zonder PKCS#11 ondersteuning\n" #: gnutls.c:993 openssl-pkcs11.c:407 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Gebruikmaken van PKCS#11 certificaat %s\n" #: gnutls.c:994 #, c-format msgid "Using system certificate %s\n" msgstr "Gebruiken van systeemcertificaat %s\n" #: gnutls.c:1012 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Fout bij het laden van het certificaat van PKCS#11: %s\n" #: gnutls.c:1013 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Fout bij laden van systeemcertificaat: %s\n" #: gnutls.c:1024 openssl.c:827 #, c-format msgid "Using certificate file %s\n" msgstr "Gebruiken van certificatenbestand %s\n" #: gnutls.c:1052 msgid "PKCS#11 file contained no certificate\n" msgstr "PKCS#11 bestand bevat geen certificaat\n" #: gnutls.c:1078 msgid "No certificate found in file" msgstr "Geen certificaat gevonden in bestand" #: gnutls.c:1083 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Laden van het certificaat mislukt: %s\n" #: gnutls.c:1098 #, c-format msgid "Using system key %s\n" msgstr "Gebruiken van systeemsleutel %s\n" #: gnutls.c:1103 gnutls.c:1271 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Fout bij initialiseren privésleutel structuur: %s\n" #: gnutls.c:1114 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Fout bij importeren van systeemsleutel %s: %s\n" #: gnutls.c:1125 gnutls.c:1219 gnutls.c:1247 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "PKCS#11-sleutel-URL %s proberen\n" #: gnutls.c:1130 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Fout bij initialiseren PKCS#11 sleutel structuur: %s\n" #: gnutls.c:1259 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Fout bij importeren PKCS#11 URL %s: %s\n" #: gnutls.c:1266 openssl-pkcs11.c:644 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "gebruikt PKCS#11 sleutel %s\n" #: gnutls.c:1281 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "Fout bij importeren PKCS#11 sleutel in privésleutel structuur: %s\n" #: gnutls.c:1299 #, c-format msgid "Using private key file %s\n" msgstr "Gebruik geheime sleutel bestand %s\n" #: gnutls.c:1310 openssl.c:651 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Deze versie van OpenConnect werd gebouwd zonder TPM ondersteuning\n" #: gnutls.c:1326 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" "Deze versie van OpenConnect is gecompileerd zonder TPM2-ondersteuning\n" #: gnutls.c:1347 msgid "Failed to interpret PEM file\n" msgstr "Interpreteren PEM bestand mislukt\n" #: gnutls.c:1366 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Laden PKCS#1 privésleutel mislukt: %s\n" #: gnutls.c:1379 gnutls.c:1393 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Laden van privésleutel als PKCS#8 mislukt: %s\n" #: gnutls.c:1401 gnutls.c:1434 openssl.c:1002 openssl.c:1012 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Ontcijferen PKCS#8 certificaatbestand mislukt\n" #: gnutls.c:1426 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Type privésleutel %s bepalen mislukt\n" #: gnutls.c:1438 openssl.c:1008 msgid "Enter PKCS#8 pass phrase:" msgstr "Invoeren PKCS#8 wachtwoord:" #: gnutls.c:1454 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Niet gelukt in ophalen sleutel ID: %s\n" #: gnutls.c:1499 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Fout bij ondertekenen test data met geheime sleutel: %s\n" #: gnutls.c:1514 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Fout bij valideren handtekening tegen certificaat: %s\n" #: gnutls.c:1539 msgid "No SSL certificate found to match private key\n" msgstr "Geen SSL certificaat gevonden dat past bij de private key\n" #: gnutls.c:1551 openssl.c:560 openssl.c:709 #, c-format msgid "Using client certificate '%s'\n" msgstr "Gebruiken client certificaat '%s'\n" #: gnutls.c:1558 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "Instellen van de certificate revocation list mislukte: %s\n" #: gnutls.c:1579 gnutls.c:1589 msgid "Failed to allocate memory for certificate\n" msgstr "Toewijzen van geheugen voor certificaat mislukt\n" #: gnutls.c:1625 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" "WAARSCHUWING: GnuTLS retourneerde onjuiste uitgever certs; authenticatie kan " "mislukken!\n" #: gnutls.c:1648 msgid "Got no issuer from PKCS#11\n" msgstr "Geen uitgever verkregen van PKCS#11\n" #: gnutls.c:1653 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "Volgende CA '%s' verkregen van PKCS11\n" #: gnutls.c:1679 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Toewijzen van geheugen voor ondersteunen certificaatfuncties mislukt\n" #: gnutls.c:1702 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Toevogen ondersteunde CA '%s'\n" #: gnutls.c:1724 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" "Privésleutel lijkt geen ondersteuning te bieden voor RSA-PSS. TLSv1.3 wordt " "uitgeschakeld\n" #: gnutls.c:1748 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Instellen certificaat mislukt: %s\n" #: gnutls.c:1941 msgid "Server presented no certificate\n" msgstr "Server presenteerde geen certificaat\n" #: gnutls.c:1949 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "Fout bij vergelijken van servercertificaat bij rehandshake: %s\n" #: gnutls.c:1954 openssl.c:1515 msgid "Server presented different cert on rehandshake\n" msgstr "Server bood verschillend certificaat aan bij rehandshake\n" #: gnutls.c:1959 openssl.c:1518 msgid "Server presented identical cert on rehandshake\n" msgstr "Server bood identiek certificaat aan bij rehandshake\n" #: gnutls.c:1965 msgid "Error initialising X509 cert structure\n" msgstr "Fout bij initialiseren X509 cert structuur\n" #: gnutls.c:1971 msgid "Error importing server's cert\n" msgstr "Fout bij importeren server cert\n" #: gnutls.c:1980 main.c:1794 msgid "Could not calculate hash of server's certificate\n" msgstr "Kon hash van servercertificaat niet berekenen\n" #: gnutls.c:1985 msgid "Error checking server cert status\n" msgstr "Fout bij controleren cert status\n" #: gnutls.c:1990 msgid "certificate revoked" msgstr "certificaat ingetrokken" #: gnutls.c:1992 msgid "signer not found" msgstr "ondertekenaar niet gevonden" #: gnutls.c:1994 msgid "signer not a CA certificate" msgstr "ondertekenaar geen CA certificaat" #: gnutls.c:1996 msgid "insecure algorithm" msgstr "onveilig algorithme" #: gnutls.c:1998 msgid "certificate not yet activated" msgstr "certificaat nog niet geactiveerd" #: gnutls.c:2000 msgid "certificate expired" msgstr "certificaat verlopen" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2005 msgid "signature verification failed" msgstr "handtekeningverificatie mislukt" #: gnutls.c:2054 openssl.c:1399 openssl.c:1551 msgid "certificate does not match hostname" msgstr "certificaat komt niet overeen met hostnaam" #: gnutls.c:2059 openssl.c:1398 openssl.c:1557 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Servercertificaat verificatie mislukt: %s\n" #: gnutls.c:2126 msgid "Failed to allocate memory for cafile certs\n" msgstr "Toewijzen van geheugen voor cafile-certificaten mislukt\n" #: gnutls.c:2147 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Niet geslaag in lezen certs van cafile: %s\n" #: gnutls.c:2163 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Open CA bestand '%s' mislukt: %s\n" #: gnutls.c:2176 openssl.c:1679 msgid "Loading certificate failed. Aborting.\n" msgstr "Laden van certificaat is mislukt. Afbreken.\n" #: gnutls.c:2237 #, c-format msgid "Failed to set TLS priority string (\"%s\"): %s\n" msgstr "Instellen van TLS-prioriteitstekenreeks ('%s') mislukt: %s\n" #: gnutls.c:2249 openssl.c:1796 #, c-format msgid "SSL negotiation with %s\n" msgstr "SSL afstemmen met %s\n" #: gnutls.c:2296 openssl.c:1822 msgid "SSL connection cancelled\n" msgstr "SSL verbinding geannuleerd\n" #: gnutls.c:2303 #, c-format msgid "SSL connection failure: %s\n" msgstr "SSL verbindingsfout: %s\n" #: gnutls.c:2312 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "GnuTLS niet-fatale return tijdens handshake: %s\n" #: gnutls.c:2318 openssl.c:1839 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "Verbonden met HTTPS op %s\n" #: gnutls.c:2321 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "SSL heronderhandeld op %s\n" #: gnutls.c:2483 openssl-pkcs11.c:199 #, c-format msgid "PIN required for %s" msgstr "PIN nodig voor %s" #: gnutls.c:2487 openssl-pkcs11.c:202 msgid "Wrong PIN" msgstr "Verkeerde PIN" #: gnutls.c:2490 msgid "This is the final try before locking!" msgstr "Dit is de laatste poging voor blokkeren!" #: gnutls.c:2492 msgid "Only a few tries left before locking!" msgstr "Nog maar een paar pogingen voor blokkeren!" #: gnutls.c:2497 openssl-pkcs11.c:206 msgid "Enter PIN:" msgstr "Invoeren PIN:" #: gnutls.c:2583 openssl.c:1967 msgid "Unsupported OATH HMAC algorithm\n" msgstr "Niet-ondersteund OATH-HMAC-algoritme\n" #: gnutls.c:2592 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "Berekenen van OATH HMAC mislukt: %s\n" #: gnutls_tpm.c:54 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "TPM-ondertekeningsfunctie vroeg %d bytes.\n" #: gnutls_tpm.c:61 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Aanmaken van TPM-hashobject mislukt: %s\n" #: gnutls_tpm.c:68 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Instellen van waarde in TPM-hashobject mislukt: %s\n" #: gnutls_tpm.c:78 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "TPM hash handtekening mislukt: %s\n" #: gnutls_tpm.c:100 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Fout bij decoderen TSS sleutel blob: %s\n" #: gnutls_tpm.c:108 gnutls_tpm.c:119 gnutls_tpm.c:132 msgid "Error in TSS key blob\n" msgstr "Faout in TSS sleutel blob\n" #: gnutls_tpm.c:139 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Creëren TPM context mislukt: %s\n" #: gnutls_tpm.c:146 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "verbinden met TPM context mislukt: %s\n" #: gnutls_tpm.c:154 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Laden TPM SRK sleutel mislukt: %s\n" #: gnutls_tpm.c:161 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Laden TPM SRK policy object mislukt: %s\n" #: gnutls_tpm.c:182 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Instellen TPM PIN miuslukt: %s\n" #: gnutls_tpm.c:198 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Laden TPM sleutel blob mislukt: %s\n" #: gnutls_tpm.c:205 msgid "Enter TPM SRK PIN:" msgstr "Invoeren TPM SRK PIN:" #: gnutls_tpm.c:226 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Aanmaken sleutelbeleid object mislukt: %s\n" #: gnutls_tpm.c:234 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Toewijzen policy aan sleutel mislukt: %s\n" #: gnutls_tpm.c:240 msgid "Enter TPM key PIN:" msgstr "InvoerenTPM sleutel PIN:" #: gnutls_tpm.c:251 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Instellen sleutel PIN mislukt: %s\n" #: gnutls_tpm2.c:92 gnutls_tpm2_esys.c:474 gnutls_tpm2_ibm.c:419 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "Onbekende TPM2-EC-digestgrootte %d\n" #: gnutls_tpm2.c:198 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "Fout bij decoderen van TSS2-sleutelblob: %s\n" #: gnutls_tpm2.c:208 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "Aanmaken van ASN.1-type voor TPM2 mislukt: %s\n" #: gnutls_tpm2.c:217 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "Decoderen van TPM2-sleutel ASN.1 mislukt: %s\n" #: gnutls_tpm2.c:225 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "Ontleden van TPM2-sleuteltype-OID mislukt: %s\n" #: gnutls_tpm2.c:231 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "TPM2-sleutel heeft onbekend type OID %s, niet %s\n" #: gnutls_tpm2.c:249 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "Ontleden van TPM2-sleutelouder mislukt: %s\n" #: gnutls_tpm2.c:270 msgid "Failed to parse TPM2 pubkey element\n" msgstr "Ontleden van TPM2-pubkey-element mislukt\n" #: gnutls_tpm2.c:275 msgid "Failed to parse TPM2 privkey element\n" msgstr "Ontleden van TPM2-privkey-element mislukt\n" #: gnutls_tpm2.c:280 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "Ontlede TPM2-sleutel met ouder %x, emptyauth %d\n" #: gnutls_tpm2.c:384 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "TPM2-digest te groot: %d > %d\n" #: gnutls_tpm2_esys.c:173 msgid "TPM2 password too long; truncating\n" msgstr "TPM2-wachtwoord te lang; wordt ingekort\n" #: gnutls_tpm2_esys.c:189 msgid "owner" msgstr "eigenaar" #: gnutls_tpm2_esys.c:190 msgid "null" msgstr "null" #: gnutls_tpm2_esys.c:191 msgid "endorsement" msgstr "goedkeuring" #: gnutls_tpm2_esys.c:192 msgid "platform" msgstr "platform" #: gnutls_tpm2_esys.c:196 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "Aanmaken van primaire sleutel onder %s-hiërarchie.\n" #: gnutls_tpm2_esys.c:201 gnutls_tpm2_ibm.c:262 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "Voer TPM2-%s-hiërarchiewachtwoord in:" #: gnutls_tpm2_esys.c:209 gnutls_tpm2_esys.c:303 gnutls_tpm2_esys.c:374 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "TPM2 Esys_TR_SetAuth mislukt: 0x%x\n" #: gnutls_tpm2_esys.c:221 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "TPM2 Esys_CreatePrimary-gebruikersauth mislukt\n" #: gnutls_tpm2_esys.c:226 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "TPM2 Esys_CreatePrimary mislukt: 0x%x\n" #: gnutls_tpm2_esys.c:245 msgid "Establishing connection with TPM.\n" msgstr "Verbinding met TPM wordt tot stand gebracht.\n" #: gnutls_tpm2_esys.c:250 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "TPM2 Esys_Initialize mislukt: 0x%x\n" #: gnutls_tpm2_esys.c:258 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" "TPM2 is al gestart, vandaar de foutpositieve mislukking in het tpm2tss-" "logboek. \n" #: gnutls_tpm2_esys.c:261 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "TPM2 Esys_Startup mislukt: 0x%x\n" #: gnutls_tpm2_esys.c:274 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "Esys_TR_FromTPMPublic mislukt voor handle 0x%x: 0x%x\n" #: gnutls_tpm2_esys.c:295 gnutls_tpm2_ibm.c:278 msgid "Enter TPM2 parent key password:" msgstr "Voer TPM2-oudersleutelwachtwoord in:" #: gnutls_tpm2_esys.c:309 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "Laden van TPM2-sleutelblob, ouder %x.\n" #: gnutls_tpm2_esys.c:317 msgid "TPM2 Esys_Load auth failed\n" msgstr "TPM2-Esys_Load-authenticatie mislukt\n" #: gnutls_tpm2_esys.c:323 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "TPM2 Esys_Load mislukt: 0x%x\n" # Primary = primaire sleutel? #: gnutls_tpm2_esys.c:333 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" "TPM2 Esys_FlushContext voor gegenereerde primaire sleutel mislukt: 0x%x\n" #: gnutls_tpm2_esys.c:363 gnutls_tpm2_ibm.c:363 gnutls_tpm2_ibm.c:450 msgid "Enter TPM2 key password:" msgstr "Voer TPM2-sleutelwachtwoord in:" #: gnutls_tpm2_esys.c:395 #, c-format msgid "TPM2 RSA sign function called for %d bytes.\n" msgstr "TPM2 RSA-ondertekeningsfunctie gevraagd voor %d bytes.\n" #: gnutls_tpm2_esys.c:414 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "TPM2 Esys_RSA_Decrypt-auth mislukt\n" #: gnutls_tpm2_esys.c:420 gnutls_tpm2_esys.c:500 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "TPM2 kon RSA-handtekening niet genereren: 0x%x\n" #: gnutls_tpm2_esys.c:464 gnutls_tpm2_ibm.c:405 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "TPM2 EC-ondertekeningsfunctie gevraagd voor %d bytes.\n" #: gnutls_tpm2_esys.c:494 msgid "TPM2 Esys_Sign auth failed\n" msgstr "TPM2 Esys_Sign-auth mislukt\n" #: gnutls_tpm2_esys.c:532 gnutls_tpm2_ibm.c:485 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "Ongeldige TPM2-parent-handle 0x%08x\n" #: gnutls_tpm2_esys.c:546 gnutls_tpm2_ibm.c:502 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "Importeren van TPM2-privésleutelgegevens mislukt: 0x%x\n" #: gnutls_tpm2_esys.c:555 gnutls_tpm2_ibm.c:512 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "Importeren van TPM2-publiekesleutelgegevens mislukt: 0x%x\n" #: gnutls_tpm2_esys.c:569 gnutls_tpm2_ibm.c:523 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "Niet-ondersteund TPM2-sleuteltype %d\n" #: gnutls_tpm2_ibm.c:54 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "TPM2-handeling %s mislukt (%d): %s%s%s\n" #: gpst.c:226 #, c-format msgid "%s\n" msgstr "%s\n" #: gpst.c:229 #, c-format msgid "Challenge: %s\n" msgstr "Uitdaging: %s\n" #: gpst.c:417 #, c-format msgid "Unknown ESP %s algorithm: %s" msgstr "Onbekend ESP %s-algoritme: %s" #: gpst.c:477 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "Inactiviteitstime-out is %d minuten.\n" #: gpst.c:483 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "Niet-standaard SSL-tunnelpad: %s\n" #: gpst.c:487 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "Tunneltime-out (rekey-interval) is %d minuten.\n" #: gpst.c:498 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" "Gatewayadres in configuratie-XML (%s) verschilt van extern gatewayadres " "(%s).\n" #: gpst.c:551 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" "GlobalProtect-configuratie stuurde ipsec-modus=%s (esp-tunnel verwacht)\n" #: gpst.c:560 oncp.c:835 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" "ESP-sleutels worden genegeerd, want ESP-ondersteuning is niet beschikbaar in " "deze versie\n" #: gpst.c:627 msgid "ESP disabled" msgstr "ESP uitgeschakeld" #: gpst.c:629 msgid "No ESP keys received" msgstr "Geen ESP-sleutels ontvangen" #: gpst.c:631 msgid "ESP support not available in this build" msgstr "ESP-ondersteuning niet beschikbaar in deze versie" #: gpst.c:635 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "Geen MTU ontvangen. %d berekend voor %s%s\n" #: gpst.c:680 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "Verbinding maken met HTTPS-tunneleindpunt…\n" #: gpst.c:702 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "Fout bij ophalen van GET-tunnel-HTTPS-reactie.\n" #: gpst.c:711 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "Gateway verbrak verbinding onmiddellijk na GET-tunnel-verzoek.\n" #: gpst.c:719 #, c-format msgid "Got inappropriate HTTP GET-tunnel response: %.*s\n" msgstr "Verkeerde HTTP-GET-tunnelreactie gekregen: %.*s\n" #: gpst.c:861 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" "VPN connectivity may be disabled or limited without HIP report submission.\n" "You need to provide a --csd-wrapper argument with the HIP report submission " "script.\n" msgstr "" "LET OP: server vroeg ons een HIP-rapportage met md5sum %s in te dienen.\n" "VPN-connectiviteit kan uitgeschakeld of beperkt zijn zonder HIP-rapportage " "in te dienen.\n" "U dient een parameter --csd-wrapper op te geven met het HIP-" "rapportageindienscript.\n" #: gpst.c:871 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" "Four: uitvoeren van ‘HIP-rapportage’-script is op dit platform nog niet " "geïmplementeerd.\n" #: gpst.c:900 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "HIP-script '%s' sloot onjuist af\n" #: gpst.c:905 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "HIP-script '%s' gaf niet-nul-status weer: %d\n" #: gpst.c:911 msgid "HIP report submission failed.\n" msgstr "Indienen van HIP-rapportage mislukt.\n" #: gpst.c:913 msgid "HIP report submitted successfully.\n" msgstr "HIP-rapportage ingediend.\n" #: gpst.c:942 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "Uitvoeren van HIP-script %s mislukt\n" #: gpst.c:966 msgid "Gateway says HIP report submission is needed.\n" msgstr "Gateway zegt dat indienen van HIP-rapportage vereist is.\n" #: gpst.c:972 msgid "Gateway says no HIP report submission is needed.\n" msgstr "Gateway zegt dat indienen van HIP-rapportage niet vereist is.\n" #: gpst.c:999 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "ESP-tunnel verbonden; HTTPS-mainloop wordt afgesloten.\n" #: gpst.c:1015 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "Verbinden met ESP-tunnel mislukt; HTTPS wordt gebruikt.\n" #: gpst.c:1051 #, c-format msgid "Packet receive error: %s\n" msgstr "Fout bij ontvangen van pakket: %s\n" #: gpst.c:1072 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" "Onverwachte pakketlengte. SSL_read gaf %d weer (inclusief 16 headerbytes), " "maar payload_len van header is %d\n" #: gpst.c:1082 msgid "Got GPST DPD/keepalive response\n" msgstr "GPST DPD-/keepalive-reactie gekregen\n" #: gpst.c:1086 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" "0000000000000000 verwacht als laatste 8 bytes van DPD-/keepalive-" "pakketheader, maar we kregen:\n" #: gpst.c:1092 #, c-format msgid "Received data packet of %d bytes\n" msgstr "Datapakket van %d bytes ontvangen\n" #: gpst.c:1101 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" "0100000000000000 verwacht als laatste 8 bytes van datapakketheader, maar we " "kregen:\n" #: gpst.c:1109 msgid "Unknown packet. Header dump follows:\n" msgstr "Onbekend pakket. Headerdump volgt:\n" #: gpst.c:1157 msgid "GlobalProtect rekey due\n" msgstr "GlobalProtect-rekey verwacht\n" #: gpst.c:1162 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "GPST Dead Peer Detection ontdekte dode peer!\n" #: gpst.c:1182 msgid "Send GPST DPD/keepalive request\n" msgstr "GPST DPD-/keepalive-verzoek verzenden\n" #: gpst.c:1202 #, c-format msgid "Sending data packet of %d bytes\n" msgstr "Datapakket van %d bytes verzenden\n" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Fout bij importeren van GSSAPI-naam voor aanmeldingscontrole:\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "Fout bij genereren van GSSAPI-reactie:\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "GSSAPI-aanmeldingscontrole bij proxy proberen\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "GSSAPI-aanmeldingscontrole bij server '%s' proberen\n" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "GSSAPI-aanmeldingscontrole voltooid\n" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "GSSAPI-token te groot (%zd bytes)\n" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "GSSAPI-token van %zu bytes verzenden\n" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "Verzenden van GSSAPI-aanmeldingstoken naar proxy mislukt: %s\n" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "Ontvangen van GSSAPI-aanmeldingstoken van proxy mislukt: %s\n" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "SOCKS-server meldde GSSAPI-contextfout\n" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "Onbekende GSSAPI-statusreactie (0x%02x) van SOCKS-server\n" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "GSSAPI-token van %zu bytes verkregen %02x %02x %02x %02x\n" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "GSSAPI-beschermingsonderhandeling van %zu bytes verzenden\n" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "Verzenden van GSSAPI-beschermingsreactie naar proxy mislukt: %s\n" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "Ontvangen van GSSAPI-beschermingsreactie van proxy mislukt: %s\n" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" "GSSAPI-beschermingsreactie van %zu bytes ontvangen: %02x %02x %02x %02x\n" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "Ongeldige GSSAPI-beschermingsreactie ontvangen van proxy (%zu bytes)\n" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "SOCKS-proxy vereist berichtintegriteit, wat niet wordt ondersteund\n" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "SOCKS-proxy vereist berichtgeheimhouding, wat niet wordt ondersteund\n" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "SOCKS-proxy vereist bescherming van onbekend type 0x%02x\n" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "HTTP-basic-aanmeldingscontrole bij proxy proberen\n" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "HTTP-basic-aanmeldingscontrole bij server '%s' proberen\n" #: http-auth.c:200 http.c:1165 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" "Deze versie van OpenConnect is gecompileerd zonder GSSAPI-ondersteuning\n" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" "Proxy vroeg om Basic-aanmeldingscontrole, wat standaard is uitgeschakeld\n" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" "Server '%s' vroeg om Basic-aanmeldingscontrole, wat standaard is " "uitgeschakeld\n" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "Geen aanmeldingscontrolemethode meer\n" #: http.c:319 msgid "No memory for allocating cookies\n" msgstr "Geen geheugen voor de toewijzing van cookies\n" #: http.c:394 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Mislukte poging HTTP reactie '%s' te ontleden\n" #: http.c:400 #, c-format msgid "Got HTTP response: %s\n" msgstr "Ontving HTTP reactie: %s\n" #: http.c:408 msgid "Error processing HTTP response\n" msgstr "Fout bij de verwerking van HTTP-reactie\n" #: http.c:415 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Onbekende HTTP response lijn '%s' genegeerd\n" #: http.c:435 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Ongeldige koekje aangeboden: %s\n" #: http.c:454 msgid "SSL certificate authentication failed\n" msgstr "SSL certificaat authenticatie mislukt\n" #: http.c:485 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Reactie heeft negatieve grootte (%d)\n" #: http.c:496 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Onbekend Transfer-Encoding: %s\n" #. Now the body, if there is one #: http.c:515 #, c-format msgid "HTTP body %s (%d)\n" msgstr "HTTP body %s (%d)\n" #: http.c:529 http.c:556 msgid "Error reading HTTP response body\n" msgstr "Fout bij het lezen van HTTP reactie\n" #: http.c:542 msgid "Error fetching chunk header\n" msgstr "Fout bij het ophalen brok header\n" #: http.c:566 msgid "Error fetching HTTP response body\n" msgstr "Fout bij het ophalen HTTP reactietekst\n" #: http.c:569 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "Fout in chunked decodering. Verwacht '', ontving: '%s'" #: http.c:581 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "" "Kan HTTP 1.0 content niet ontvangen zonder het sluiten van de verbinding\n" #: http.c:708 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Niet geslaagd om doorgestuurd URL '%s' te vertalen: %s\n" #: http.c:732 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Kan niet doorverwijzen naar non-https URL '%s'\n" #: http.c:760 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Toewijzing van nieuwe pad voor de relatieve redirect is mislukt: %s\n" #: http.c:973 oncp.c:591 #, c-format msgid "Unexpected %d result from server\n" msgstr "Onverwacht %d resultaat van de server\n" #: http.c:1021 msgid "request granted" msgstr "verzoek ingewilligd" #: http.c:1022 msgid "general failure" msgstr "algemene storing" #: http.c:1023 msgid "connection not allowed by ruleset" msgstr "verbinding niet toegestaan ​​door regelset" #: http.c:1024 msgid "network unreachable" msgstr "netwerk onbereikbaar" #: http.c:1025 msgid "host unreachable" msgstr "host onbereikbaar" #: http.c:1026 msgid "connection refused by destination host" msgstr "verbinding geweigerd door doelhost" #: http.c:1027 msgid "TTL expired" msgstr "TTL verlopen" #: http.c:1028 msgid "command not supported / protocol error" msgstr "commando niet ondersteund / protocol fout" #: http.c:1029 msgid "address type not supported" msgstr "adres type niet ondersteund" #: http.c:1039 msgid "SOCKS server requested username/password but we have none\n" msgstr "" "SOCKS-server vroeg om gebruikersnaam/wachtwoord, maar we hebben er geen\n" #: http.c:1047 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" "Gebruikersnaam en wachtwoord voor SOCKS-aanmeldingscontrole moeten kleiner " "zijn dan 255 bytes\n" #: http.c:1062 http.c:1118 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Fout bij het schrijven auth verzoek aan SOCKS proxy: %s\n" #: http.c:1070 http.c:1125 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Fout bij het lezen van auth reactie van SOCKS proxy: %s\n" #: http.c:1077 http.c:1131 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Onverwachte auth reactie van SOCKS proxy: %02x %02x\n" #: http.c:1083 msgid "Authenticated to SOCKS server using password\n" msgstr "Aangemeld bij SOCKS-server met wachtwoord\n" #: http.c:1087 msgid "Password authentication to SOCKS server failed\n" msgstr "Wachtwoordaanmelding bij SOCKS-server mislukt\n" #: http.c:1143 http.c:1150 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "SOCKS-server vroeg om GSSAPI-aanmeldingscontrole\n" #: http.c:1156 msgid "SOCKS server requested password authentication\n" msgstr "SOCKS-server vroeg om wachtwoordaanmeldingscontrole\n" #: http.c:1163 msgid "SOCKS server requires authentication\n" msgstr "SOCKS-server vereist aanmeldingscontrole\n" #: http.c:1170 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "SOCKS-server vroeg om onbekend type aanmeldingscontrole %02x\n" #: http.c:1176 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Het aanvragen van SOCKS proxy verbinding met %s:%d\n" #: http.c:1191 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Fout bij het schrijven verbindingsverzoek aan SOCKS proxy: %s\n" #: http.c:1199 http.c:1241 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Fout bij het lezen van verbindingsreactie van SOCKS proxy: %s\n" #: http.c:1205 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Onverwachte verbindingsreactie van SOCKS proxy: %02x %02x...\n" #: http.c:1213 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "SOCKS proxy fout %02x: %s\n" #: http.c:1217 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "SOCKS proxy fout %02x\n" #: http.c:1234 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Onverwacht adres type %02x in SOCKS aansluitreactie\n" #: http.c:1257 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Aanvragen van HTTP-proxy verbinding met %s:%d\n" #: http.c:1292 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Het verzenden van het proxy verzoek is mislukt: %s\n" #: http.c:1315 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "Proxy-CONNECT-verzoek mislukt: %d\n" #: http.c:1334 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Onbekend proxy-type '%s'\n" #: http.c:1383 msgid "Only http or socks(5) proxies supported\n" msgstr "Alleen http of socks(5) proxies ondersteund\n" #: library.c:112 msgid "Cisco AnyConnect or openconnect" msgstr "Cisco AnyConnect of openconnect" #: library.c:113 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "Compatibel met Cisco AnyConnect SSL VPN en ocserv" #: library.c:129 msgid "Juniper Network Connect" msgstr "Juniper Network Connect" #: library.c:130 msgid "Compatible with Juniper Network Connect / Pulse Secure SSL VPN" msgstr "Compatibel met Juniper Network Connect / Pulse Secure SSL VPN" #: library.c:148 msgid "Palo Alto Networks GlobalProtect" msgstr "Palo Alto Networks GlobalProtect" #: library.c:149 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "Compatibel met Palo Alto Networks (PAN) GlobalProtect SSL VPN" #: library.c:211 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "Onbekend VPN-protocol '%s'\n" #: library.c:233 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Gecompileerd met een SSL library zonder Cisco DTLS ondersteuning\n" #: library.c:656 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Fout bij ontleden server-URL '%s'\n" #: library.c:662 msgid "Only https:// permitted for server URL\n" msgstr "Alleen https:// toegestaan ​​voor server-URL\n" #: library.c:1056 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "Onbekende certificaathash: %s.\n" #: library.c:1085 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" "De grootte van de gegeven vingerafdruk is kleiner dan het vereiste minimum " "(%u).\n" #: library.c:1146 msgid "No form handler; cannot authenticate.\n" msgstr "Geen formulier afhandelaar; kon niet authenticeren.\n" #: main.c:340 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "CommandLineToArgvW() mislukt: %s\n" #: main.c:353 #, c-format msgid "Fatal error in command line handling\n" msgstr "Fatale fout in verwerking van opdrachtregel\n" #: main.c:388 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "ReadConsole() mislukt: %s\n" #: main.c:401 #, c-format msgid "fgetws() failed: %s\n" msgstr "fgetws() mislukt: %s\n" #: main.c:416 main.c:429 #, c-format msgid "Error converting console input: %s\n" msgstr "Fout bij converteren van consoleinvoer: %s\n" #: main.c:423 main.c:689 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Mislukte toewijzing voor string vanaf stdin\n" #: main.c:584 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" "Voor hulp bij OpenConnect, bezoek de website op/n\n" " http://www.infradead.org/openconnect/mail.html/n\n" #: main.c:593 #, c-format msgid "Using OpenSSL. Features present:" msgstr "Gebruik OpenSSL. Functionaliteiten:" #: main.c:595 #, c-format msgid "Using GnuTLS. Features present:" msgstr "Gebruiken GnuTLS. Functionatiteiten:" #: main.c:608 msgid "OpenSSL ENGINE not present" msgstr "OpenSSL ENGINE niet aanwezig" #: main.c:647 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" "LET OP: dit binair bestand bevat DTLS- noch ESP-ondersteuning. Prestaties " "worden beïnvloed.\n" #: main.c:657 #, c-format msgid "Supported protocols:" msgstr "Ondersteunde protocollen:" #: main.c:659 main.c:675 msgid " (default)" msgstr "(standaard)" #: main.c:672 msgid "Set VPN protocol" msgstr "VPN-protocol instellen" #: main.c:713 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:754 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Kan pad van dit uitvoerbaar bestand niet verwerken '%s'" #: main.c:760 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "Toewijzing voor vpnc-scriptpad mislukt\n" #: main.c:780 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "Hostnaam '%s' overschrijven naar '%s'\n" #: main.c:793 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Gebruik: openconnect [opties] \n" #: main.c:794 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" "Open cliënt voor meerdere VPN-protocollen, versie %s\n" "\n" #: main.c:796 msgid "Read options from config file" msgstr "Haal opties uit configuratiebestand" #: main.c:797 msgid "Report version number" msgstr "Rapporteer versienummer" #: main.c:798 msgid "Display help text" msgstr "Weergeven helptekst" #: main.c:802 msgid "Authentication" msgstr "Aanmeldingscontrole" #: main.c:803 msgid "Set login username" msgstr "Instellen login gebruikersnaam" #: main.c:804 msgid "Disable password/SecurID authentication" msgstr "Deactiveren wachtwoord / SecurID-authenticatie" #: main.c:805 msgid "Do not expect user input; exit if it is required" msgstr "Verwacht geen invoer van de gebruiker, exit als het nodig is" #: main.c:806 msgid "Read password from standard input" msgstr "Lees wachtwoord van standaardinvoer" #: main.c:807 msgid "Choose authentication login selection" msgstr "Kies authenticatie login selectie" #: main.c:808 msgid "Provide authentication form responses" msgstr "Aanmeldingsformulierreacties aanbieden" #: main.c:809 msgid "Use SSL client certificate CERT" msgstr "Gebruik SSL-client-certificaat CERT" #: main.c:810 msgid "Use SSL private key file KEY" msgstr "Gebruik SSL private key bestand KEY" #: main.c:811 msgid "Warn when certificate lifetime < DAYS" msgstr "Waarschuwen wanneer certificaat levensduur < DAGEN" #: main.c:812 msgid "Set login usergroup" msgstr "Instellen login gebruikersgroep" #: main.c:813 msgid "Set key passphrase or TPM SRK PIN" msgstr "Instellen wachtwoord van TPM SRK PIN" #: main.c:814 msgid "Key passphrase is fsid of file system" msgstr "Sleutelwoord is fsid van het bestandssysteem" #: main.c:815 msgid "Software token type: rsa, totp or hotp" msgstr "Softwaretokentype: rsa, totp of hotp" #: main.c:816 msgid "Software token secret" msgstr "Softwaretokengeheim" #: main.c:818 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "(LET OP: libstoken (RSA SecurID) uitgeschakeld in deze versie)" #: main.c:821 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(LET OP: Yubikey-OATH uitgeschakeld in deze versie)" #: main.c:824 msgid "Server validation" msgstr "Servervalidatie" #: main.c:825 msgid "Server's certificate SHA1 fingerprint" msgstr "SHA1 vingerafdruk servercertificaat" #: main.c:826 msgid "Do not require server SSL cert to be valid" msgstr "Geen geldig server SSL cert vereist" #: main.c:827 msgid "Disable default system certificate authorities" msgstr "Standaardsysteemcertificaatautoriteiten uitschakelen" #: main.c:828 msgid "Cert file for server verification" msgstr "Cert file voor serververificatie" #: main.c:830 msgid "Internet connectivity" msgstr "Internetconnectiviteit" #: main.c:831 msgid "Set proxy server" msgstr "Instellen proxyserver" #: main.c:832 msgid "Set proxy authentication methods" msgstr "Stel proxyaanmeldingsmethodes in" #: main.c:833 msgid "Disable proxy" msgstr "Deactiveren proxy" #: main.c:834 msgid "Use libproxy to automatically configure proxy" msgstr "Gebruik libproxy om de proxy automatisch te configureren" #: main.c:836 msgid "(NOTE: libproxy disabled in this build)" msgstr "(NB: libproxy uitgeschakeld in deze build)" #: main.c:838 msgid "Connection retry timeout in seconds" msgstr "Opnieuw proberen verbindingstime-out in seconden" #: main.c:839 msgid "Use IP when connecting to HOST" msgstr "IP gebruiken bij verbinden met HOST" #: main.c:840 msgid "copy TOS / TCLASS when using DTLS" msgstr "TOS / TCLASS kopiëren bij gebruik van DTLS" #: main.c:841 msgid "Set local port for DTLS and ESP datagrams" msgstr "Lokale poort voor DTLS- en ESP-datagrammen instellen" #: main.c:843 msgid "Authentication (two-phase)" msgstr "Aanmeldingscontrole (tweestaps)" #: main.c:844 msgid "Use authentication cookie COOKIE" msgstr "Aanmeldingscontrolecookie COOKIE gebruiken" #: main.c:845 msgid "Read cookie from standard input" msgstr "Lees de cookie van de standaard invoer" #: main.c:846 msgid "Authenticate only and print login info" msgstr "Alleen authenticeren en tonen inloginformatie" #: main.c:847 msgid "Fetch and print cookie only; don't connect" msgstr "Enkel cookie ophalen en afdrukken; niet verbinden" #: main.c:848 msgid "Print cookie before connecting" msgstr "Cookie afdrukken vóór verbindne" #: main.c:851 msgid "Process control" msgstr "Procescontrole" #: main.c:852 msgid "Continue in background after startup" msgstr "Ga na het opstarten verder op de achtergrond" #: main.c:853 msgid "Write the daemon's PID to this file" msgstr "Schrijf de daemons pid naar dit bestand" #: main.c:854 msgid "Drop privileges after connecting" msgstr "Laat privileges vallen na verbinden" #: main.c:857 msgid "Logging (two-phase)" msgstr "Loggen (tweestaps)" #: main.c:859 msgid "Use syslog for progress messages" msgstr "Gebruik syslog voor voorgangsberichten" #: main.c:861 msgid "More output" msgstr "Meer output" #: main.c:862 msgid "Less output" msgstr "Minder output" #: main.c:863 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "" #: main.c:864 msgid "Prepend timestamp to progress messages" msgstr "Tijdstempel voorvoegen aan voortgangsberichten" #: main.c:866 msgid "VPN configuration script" msgstr "VPN-configuratiescript" #: main.c:867 msgid "Use IFNAME for tunnel interface" msgstr "Gebruik ifname voor tunnel-interface" #: main.c:868 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" "Shell command oregel voor het gebruik van een vpnc-compatibele config script" #: main.c:869 msgid "default" msgstr "standaard" #: main.c:871 msgid "Pass traffic to 'script' program, not tun" msgstr "Leidt het verkeer naar 'script' programma, niet tun" #: main.c:874 msgid "Tunnel control" msgstr "Tunnelcontrole" #: main.c:875 msgid "Do not ask for IPv6 connectivity" msgstr "Vraag niet om IPv6-connectiviteit" #: main.c:876 msgid "XML config file" msgstr "XML-configuratiebestand" #: main.c:877 msgid "Request MTU from server (legacy servers only)" msgstr "MTU vereisen van server (enkel voor verouderde servers)" #: main.c:878 msgid "Indicate path MTU to/from server" msgstr "Aangeven pad MTU van/naar server" #: main.c:879 msgid "Enable stateful compression (default is stateless only)" msgstr "Staatvolle compressie inschakelen (standaard is enkel staatloos)" #: main.c:880 msgid "Disable all compression" msgstr "Alle compressie uitschakelen" #: main.c:881 msgid "Set minimum Dead Peer Detection interval" msgstr "Instellen minimale Dead Peer Detection interval" #: main.c:882 msgid "Require perfect forward secrecy" msgstr "Perfect forward secrecy vereisen" #: main.c:883 msgid "Disable DTLS and ESP" msgstr "DTLS en ESP uitschakelen" #: main.c:884 msgid "OpenSSL ciphers to support for DTLS" msgstr "OpenSSL sleutels voor ondersteuning van DTLS" #: main.c:885 msgid "Set packet queue limit to LEN pkts" msgstr "Instellen maximale packet lengte tot LEN pkts" #: main.c:887 msgid "Local system information" msgstr "Lokale systeeminformatie" #: main.c:888 msgid "HTTP header User-Agent: field" msgstr "HTTP header User-agent: veld" #: main.c:889 msgid "Local hostname to advertise to server" msgstr "Lokale hostnaam die aan server wordt getoond" #: main.c:890 msgid "OS type (linux,linux-64,win,...) to report" msgstr "Te rapporteren besturingssysteemtype (linux, linux-64, win, …)" #: main.c:891 msgid "reported version string during authentication" msgstr "gemelde versietekenreeks bij aanmelding" #: main.c:892 msgid "default:" msgstr "standaard:" #: main.c:895 msgid "Trojan binary (CSD) execution" msgstr "Uitvoeren van Trojaans-paard-binair bestand (CSD)" #: main.c:896 msgid "Drop privileges during trojan execution" msgstr "Privileges laten vallen tijdens uitvoeren van Trojaans paard" #: main.c:897 msgid "Run SCRIPT instead of trojan binary" msgstr "SCRIPT uitvoeren in plaats van Trojaans paard-binair bestand" #: main.c:900 msgid "Server bugs" msgstr "Serverbugs" #: main.c:901 msgid "Disable HTTP connection re-use" msgstr "Deactiveer hergebruiken HTTP-verbinding" #: main.c:902 msgid "Do not attempt XML POST authentication" msgstr "XML-POST-aanmeldingscontrole niet proberen" #: main.c:924 #, c-format msgid "Failed to allocate string\n" msgstr "Toewijzen van tekenreeks mislukt\n" #: main.c:997 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Mislukt om regel %s uit het configuratiebestand te halen\n" #: main.c:1037 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Niet herkende optie in regel %d: '%s'\n" #: main.c:1047 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Optie '%s' heeft geen argument in regel %d\n" #: main.c:1051 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Optie '%s' heeft een argument nodig in regel %d\n" #: main.c:1076 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "Ongeldige gebruiker '%s': %s\n" #: main.c:1086 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "Ongeldige gebruikers-ID '%d': %s\n" #: main.c:1130 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "WAARSCHUWING: kan locale niet instellen: %s\n" #: main.c:1140 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "WAARSCHUWING: deze versie van openconnect is gecompileerd zonder " "ondersteuning\n" " voor iconv, maar u blijkt de verouderde tekenset '%s'\n" " te gebruiken. Verwacht vreemde dingen.\n" #: main.c:1147 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "Waarschuwing: De versie van openconnect is %s maar de\n" " versie van de libopenconnect library is %s\n" #: main.c:1157 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Niet gelukt vpninfo structuur toe te wijzen\n" #: main.c:1215 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Kan de 'config' optie in het configuratiebestand niet gebruiken\n" #: main.c:1223 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Kan niet openen configuratiebestand '%s': %s\n" #: main.c:1239 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "Ongeldige compressiemodus '%s'\n" #: main.c:1260 #, c-format msgid "Missing colon in resolve option\n" msgstr "Ontbrekende dubbelpunt in resolve-optie\n" #: main.c:1265 #, c-format msgid "Failed to allocate memory\n" msgstr "Toewijzen van geheugen mislukt\n" #: main.c:1349 main.c:1358 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d te klein\n" #: main.c:1388 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Deactiveren hergebruiken alle HTTP-verbindingen als gevolg van - no-http-" "keepalive optie.\n" "Als dit helpt, meldt u zich bij .\n" #: main.c:1394 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" "De optie --no-cert-check was onveilig en is daarom verwijderd.\n" "Herstel het certificaat van uw server of gebruik --servercert om het te " "vertrouwen.\n" #: main.c:1411 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "0-lengte van de wachtrij niet toegestaan, gebruik 1\n" #: main.c:1425 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect versie %s\n" #: main.c:1463 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Ongeldige softwaretokenmodus '%s'\n" #: main.c:1473 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "Ongeldige OS identiteit \"%s\"\n" #: main.c:1506 #, c-format msgid "Too many arguments on command line\n" msgstr "Te veel argumenten in de commandoregel\n" #: main.c:1509 #, c-format msgid "No server specified\n" msgstr "Geen server opgegeven\n" #: main.c:1525 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" "Deze versie van openconnect werd gebouwd zonder libproxy ondersteuning\n" #: main.c:1555 #, c-format msgid "Error opening cmd pipe\n" msgstr "Fout bij openen van cmd-pipe\n" #: main.c:1588 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "Niet gelukt WebVPN cookie te verkrijgen\n" #: main.c:1609 #, c-format msgid "Creating SSL connection failed\n" msgstr "Het maken van SSL-verbinding is mislukt\n" #: main.c:1625 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "Instellen van UDP mislukt; gebruik SSL in plaats daarvan\n" #: main.c:1633 #, c-format msgid "Connected as %s%s%s, using SSL%s%s, with %s%s%s %s\n" msgstr "Verbonden als %s%s%s, met SSL%s%s, met %s%s%s %s\n" #: main.c:1639 msgid "disabled" msgstr "uitgeschakeld" #: main.c:1639 msgid "in progress" msgstr "bezig" #: main.c:1643 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "No --script argument meegegeven; DNS en routering zijn niet geconfigureerd\n" #: main.c:1645 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Bekijk http://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:1658 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Niet gelukt '%s' te openen voor schrijven: %s\n" #: main.c:1670 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Voortgezet in achtergrond; pid %d\n" #: main.c:1687 msgid "User requested reconnect\n" msgstr "Gebruiker vroeg om herverbinding\n" #: main.c:1695 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "Cookie geweigerd bij herverbinding; wordt afgesloten.\n" #: main.c:1699 msgid "Session terminated by server; exiting.\n" msgstr "Sessie beëindigd door server; wordt afgesloten.\n" #: main.c:1703 msgid "User cancelled (SIGINT/SIGTERM); exiting.\n" msgstr "Gebruiker heeft geannuleerd (SIGINT/SIGTERM); wordt afgesloten.\n" #: main.c:1707 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "Gebruiker losgekoppeld van sessie (SIGHUP); wordt afgesloten.\n" #: main.c:1711 msgid "Unknown error; exiting.\n" msgstr "Onbekende fout; wordt afgesloten.\n" #: main.c:1730 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Niet gelukt %s te openen voor schrijven: %s\n" #: main.c:1738 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Niet gelukt config te schrijven naar %s: %s\n" #: main.c:1797 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "Server SSL certificaat komt niet overeen: %s\n" #: main.c:1816 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Certificaat van VPN-server \"%s\" verificatie mislukt.\n" "Reden: %s\n" #: main.c:1819 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" "Om deze server in de toekomst te vertrouwen, kunt u dit toevoegen aan uw " "opdrachtregel:\n" #: main.c:1820 #, c-format msgid " --servercert %s\n" msgstr " --servercert %s\n" #: main.c:1825 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Invoeren '%s' om te accepteren, '%s' om af te breken; iets anders om te " "bekijken: " #: main.c:1826 main.c:1844 msgid "no" msgstr "nee" #: main.c:1826 main.c:1832 msgid "yes" msgstr "ja" #: main.c:1853 #, c-format msgid "Server key hash: %s\n" msgstr "Serversleutelhash: %s\n" #: main.c:1887 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Auth-keuze '%s' komt overeen met meerdere opties\n" #: main.c:1890 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Auth keuze \"%s\" niet beschikbaar\n" #: main.c:1911 msgid "User input required in non-interactive mode\n" msgstr "Gebruikersinvoer vereist in niet-interactieve modus\n" #: main.c:2149 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Openen van tokenbestand voor schrijven mislukt: %s\n" #: main.c:2157 #, c-format msgid "Failed to write token: %s\n" msgstr "Schrijven van token mislukt: %s\n" #: main.c:2203 main.c:2224 #, c-format msgid "Soft token string is invalid\n" msgstr "Soft token string is ongeldig\n" #: main.c:2206 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "" "Kan ~/.stokenrc bestand niet openen\n" "\n" #: main.c:2209 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "OpenConnect is niet gecompileerd met libstoken-ondersteuning\n" #: main.c:2212 #, c-format msgid "General failure in libstoken\n" msgstr "Algemene fout in libstoken\n" #: main.c:2227 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "OpenConnect is niet gecompileerd met liboath-ondersteuning\n" #: main.c:2230 #, c-format msgid "General failure in liboath\n" msgstr "Algemene fout in liboath\n" #: main.c:2241 #, c-format msgid "Yubikey token not found\n" msgstr "Yubikey-token niet gevonden\n" #: main.c:2244 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "OpenConnect niet gecompileerd met Yubikey-ondersteuning\n" #: main.c:2247 #, c-format msgid "General Yubikey failure: %s\n" msgstr "Algemene Yubikey-fout: %s\n" #: mainloop.c:127 #, c-format msgid "Set up tun script failed\n" msgstr "Instellen van tun-script mislukt\n" #: mainloop.c:134 #, c-format msgid "Set up tun device failed\n" msgstr "Instellen tun apparaat is mislukt\n" #: mainloop.c:265 msgid "Caller paused the connection\n" msgstr "Beller heeft verbinding gepauzeerd\n" #: mainloop.c:273 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Niets te doen, slapen %d ms...\n" #: mainloop.c:294 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "WaitForMultipleObjects mislukt: %s\n" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "InitializeSecurityContext() mislukt: %lx\n" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "AcquireCredentialsHandle() mislukt: %lx\n" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "Fout bij communiceren met ntlm_auth-helper\n" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "HTTP NTLM-aanmeldingscontrole bij proxy proberen (single-sign-on)\n" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" "HTTP NTLM-aanmeldingscontrole bij server '%s' proberen (single-sign-on)\n" #: ntlm.c:978 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "HTTP NTLMv%d-aanmeldingscontrole bij proxy proberen\n" #: ntlm.c:982 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "HTTP NTLMv%d-aanmeldingscontrole bij server '%s' proberen\n" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "Ongeldige base32-token-tekenreeks\n" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "Toewijzen van geheugen voor decoderen van OATH-geheim mislukt\n" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" "Deze versie van OpenConnect is gecompileerd zonder PSKC-ondersteuning\n" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "OK om INITIËLE tokencode te genereren\n" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "OK om VOLGENDE tokencode te genereren\n" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "Server weigert soft token; omschakelen naar handmatige invoer\n" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "Genereren van OATH-TOTP-tokencode\n" #: oath.c:565 msgid "Generating OATH HOTP token code\n" msgstr "Genereren van OATH-HOTP-tokencode\n" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "Ongeldige cookie '%s'\n" #: oncp.c:160 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "Onverwachte lengte %d voor TLV %d/%d\n" #: oncp.c:166 #, c-format msgid "Received MTU %d from server\n" msgstr "MTU %d ontvangen van server\n" #: oncp.c:175 #, c-format msgid "Received DNS server %s\n" msgstr "DNS-server %s ontvangen\n" #: oncp.c:186 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "DNS-zoekdomein %.*s ontvangen\n" #: oncp.c:201 #, c-format msgid "Received internal IP address %s\n" msgstr "Intern IP-adres %s ontvangen\n" #: oncp.c:210 #, c-format msgid "Received netmask %s\n" msgstr "Netmask %s ontvangen\n" #: oncp.c:219 #, c-format msgid "Received internal gateway address %s\n" msgstr "Intern gatewayadres %s ontvangen\n" #: oncp.c:232 #, c-format msgid "Received split include route %s\n" msgstr "Split-include-route %s ontvangen\n" #: oncp.c:254 #, c-format msgid "Received split exclude route %s\n" msgstr "Split-exclude-route %s ontvangen\n" #: oncp.c:274 #, c-format msgid "Received WINS server %s\n" msgstr "WINS-server %s ontvangen\n" #: oncp.c:297 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "ESP-versleuteling: 0x%02x (%s)\n" #: oncp.c:316 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "ESP HMAC: 0x%02x (%s)\n" #: oncp.c:327 #, c-format msgid "ESP compression: %d\n" msgstr "ESP-compressie: %d\n" #: oncp.c:335 #, c-format msgid "ESP port: %d\n" msgstr "ESP-poort: %d\n" #: oncp.c:342 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "ESP-sleutellevensduur: %u bytes\n" #: oncp.c:350 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "ESP-sleutellevensduur: %u seconden\n" #: oncp.c:358 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "ESP-naar-SSL-fallback: %u seconden\n" #: oncp.c:366 #, c-format msgid "ESP replay protection: %d\n" msgstr "ESP-replaybescherming: %d\n" #: oncp.c:374 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "ESP SPI (uitgaand): %x\n" #: oncp.c:383 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "%d bytes aan ESP-geheimen\n" #: oncp.c:395 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "Onbekende TLV-groep %d attr %d len %d:%s\n" #: oncp.c:473 msgid "Failed to parse KMP header\n" msgstr "Ontleden van KMP-header mislukt\n" #: oncp.c:490 msgid "Failed to parse KMP message\n" msgstr "Ontleden van KMP-bericht mislukt\n" #: oncp.c:496 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "KMP-bericht %d met grootte %d ontvangen\n" #: oncp.c:512 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "Niet-ESP-TLV's ontvangen (groep %d) in ESP-onderhandelings-KMP\n" #: oncp.c:577 oncp.c:609 oncp.c:747 msgid "Error creating oNCP negotiation request\n" msgstr "Fout bij aanmaken van oNCP-onderhandelingsverzoek\n" # ?????? - Nathan #: oncp.c:618 oncp.c:783 msgid "Short write in oNCP negotiation\n" msgstr "Kort schrijven in oNCP-onderhandeling\n" #: oncp.c:631 oncp.c:666 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "%d bytes gelezen uit SSL-record\n" #: oncp.c:636 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "Onverwacht antwoord van grootte %d na hostnaampakket\n" #: oncp.c:643 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "Antwoord van server op hostnaampakket is fout 0x%02x\n" #: oncp.c:670 msgid "Invalid packet waiting for KMP 301\n" msgstr "Ongeldig pakket in wacht voor KMP 301\n" #: oncp.c:683 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "KMP-bericht 301 verwacht van server, maar %d ontvangen\n" #: oncp.c:692 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "KMP-bericht 301 van server te groot (%d bytes)\n" #: oncp.c:698 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "KMP-bericht 301 van lengte %d ontvangen\n" #: oncp.c:705 msgid "Failed to read continuation record length\n" msgstr "Lezen van voortzettings-record-lengte mislukt\n" #: oncp.c:711 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "Record van %d extra bytes te groot; zou %d zijn\n" #: oncp.c:720 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "Lezen van voortzettings-record met lengte %d mislukt\n" #: oncp.c:726 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "%d extra bytes van KMP-301-bericht lezen\n" #: oncp.c:767 msgid "Error negotiating ESP keys\n" msgstr "Fout bij onderhandelen over ESP-sleutels\n" #: oncp.c:776 msgid "oNCP negotiation request outgoing:\n" msgstr "Uitgaand oNCP-onderhandelingsverzoek:\n" #: oncp.c:829 msgid "new incoming" msgstr "nieuw inkomend" #: oncp.c:830 msgid "new outgoing" msgstr "nieuw uitgaand" #: oncp.c:855 msgid "Read only 1 byte of oNCP length field\n" msgstr "Slechts 1 byte van oNCP-lengte-veld lezen\n" #: oncp.c:864 msgid "Server terminated connection (session expired)\n" msgstr "Verbinding beëindigd door server (sessie verlopen)\n" #: oncp.c:868 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "Verbinding beëindigd door server (reden: %d)\n" #: oncp.c:874 msgid "Server sent zero-length oNCP record\n" msgstr "Server stuurde oNCP-record met nul-lengte\n" #: oncp.c:969 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "Inkomend KMP-bericht %d met grootte %d (%d ontvangen)\n" #: oncp.c:972 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" "Verdergaan met verwerken van KMP-bericht %d, nu met grootte %d (%d " "gekregen)\n" #: oncp.c:991 msgid "Unrecognised data packet\n" msgstr "Niet-herkend datapakket\n" #: oncp.c:1053 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "Onbekend KMP-bericht %d met grootte %d:\n" #: oncp.c:1058 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr ".... + nog %d bytes niet ontvangen\n" #: oncp.c:1073 msgid "Packet outgoing:\n" msgstr "Pakket uitgaand:\n" #: oncp.c:1134 msgid "Sent ESP enable control packet\n" msgstr "ESP-pakket voor inschakelen controle verzonden\n" #: oncp.c:1268 msgid "Logout successful.\n" msgstr "Afgemeld.\n" #: openconnect-internal.h:1119 openconnect-internal.h:1127 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "FOUT: %s() gevraagd met ongeldige UTF-8 voor parameter '%s'\n" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "Kan DTLS-overhead niet berekenen voor %s\n" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "Genereren van willekeurige sleutel mislukt\n" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "Aanmaken van SSL_SESSION ASN.1 voor OpenSSL mislukt: %s\n" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "OpenSSL kon SSL_SESSION ASN.1 niet ontleden\n" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "Initialiseren DTLSv1 sessie is mislukt\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "Toepassings-ID-grootte te groot\n" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "PSK-callback\n" #: openssl-dtls.c:365 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Initialiseren DTLSv1 CTX is mislukt\n" #: openssl-dtls.c:378 msgid "Set DTLS CTX version failed\n" msgstr "Instellen van DTLS CTX-versie mislukt\n" #: openssl-dtls.c:395 msgid "Failed to generate DTLS key\n" msgstr "Genereren van DTLS-sleutel mislukt\n" #: openssl-dtls.c:413 msgid "Set DTLS cipher list failed\n" msgstr "Instellen DTLS cipher lijst is mislukt\n" #: openssl-dtls.c:439 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "DTLS-cipher '%s' niet gevonden\n" #: openssl-dtls.c:460 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "SSL_set_session () is mislukt met oude protocol versie 0x%x\n" "Gebruikt u een versie van OpenSSL ouder dan 0.9.8m?\n" "Zie http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Gebruik de - no-dtls commandoregel optie om dit bericht te voorkomoen\n" #: openssl-dtls.c:493 msgid "SSL_set_session() failed\n" msgstr "SSL_set_session() mislukt\n" #: openssl-dtls.c:566 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "DTLS-verbinding gemaakt (met OpenSSL). Ciphersuite %s.\n" #: openssl-dtls.c:603 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" "Uw OpenSSL is ouder dan de versie die voor uw build nodig is, dus DTLS kan " "mislukken!" #: openssl-dtls.c:654 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Uw OpenSSL-installatie is waarschijnlijk beschadigd\n" "Bekijk http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: openssl-dtls.c:661 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "DTLS handshake mislukt: %d\n" #: openssl-esp.c:87 msgid "Failed to initialise ESP cipher:\n" msgstr "Initialiseren van ESP-cipher mislukt:\n" #: openssl-esp.c:101 msgid "Failed to initialize ESP HMAC\n" msgstr "Initialiseren van ESP-HMAC mislukt\n" #: openssl-esp.c:157 msgid "Failed to generate random keys for ESP:\n" msgstr "Genereren van willekeurige sleutels voor ESP mislukt:\n" #: openssl-esp.c:202 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "Instellen van ontsleutelingscontext voor ESP-pakket mislukt:\n" #: openssl-esp.c:210 msgid "Failed to decrypt ESP packet:\n" msgstr "Ontsleutelen van ESP-pakket mislukt:\n" #: openssl-esp.c:241 msgid "Failed to encrypt ESP packet:\n" msgstr "Versleutelen van ESP-pakket mislukt:\n" #: openssl-pkcs11.c:43 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "Opzetten van libp11-PKCS#11-context mislukt:\n" #: openssl-pkcs11.c:49 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "Laden van PKCS#11-providermodule mislukt (%s):\n" #: openssl-pkcs11.c:269 msgid "PIN locked\n" msgstr "Pincode vergrendeld\n" #: openssl-pkcs11.c:272 msgid "PIN expired\n" msgstr "Pincode verlopen\n" #: openssl-pkcs11.c:275 msgid "Another user already logged in\n" msgstr "Er is al een andere gebruiker aangemeld\n" #: openssl-pkcs11.c:279 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "Onbekende fout bij aanmelden met PKCS#11-token\n" #: openssl-pkcs11.c:286 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "Aangemeld bij PKCS#11-slot ‘%s’\n" #: openssl-pkcs11.c:300 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "Oplijsten van certificaten in PKCS#11-slot ‘%s’ mislukt\n" #: openssl-pkcs11.c:306 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "%d certificaten gevonden in slot ‘%s’\n" #: openssl-pkcs11.c:342 openssl-pkcs11.c:565 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "Ontleden van PKCS#11-URI ‘%s’ mislukt\n" #: openssl-pkcs11.c:349 openssl-pkcs11.c:575 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "Oplijsten van PKCS#11-slots mislukt\n" #: openssl-pkcs11.c:383 openssl-pkcs11.c:617 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "Aanmelden bij PKCS#11-slot ‘%s’\n" #: openssl-pkcs11.c:393 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "Vinden van PKCS#11-certificaat '%s' mislukt\n" #: openssl-pkcs11.c:401 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "X.509-certificaatsinhoud niet verkregen van libp11\n" #: openssl-pkcs11.c:412 openssl.c:713 msgid "Failed to install certificate in OpenSSL context\n" msgstr "Installeren van certificaat in OpenSSL-context mislukt\n" #: openssl-pkcs11.c:458 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "Oplijsten van sleutels in PKCS#11-slot '%s' mislukt\n" #: openssl-pkcs11.c:464 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "%d sleutels gevonden in slot '%s'\n" #: openssl-pkcs11.c:497 msgid "Certificate has no public key\n" msgstr "Certificaat heeft geen publieke sleutel\n" #: openssl-pkcs11.c:503 openssl-pkcs11.c:526 msgid "Certificate does not match private key\n" msgstr "Certificaat komt niet overeen met privésleutel\n" #: openssl-pkcs11.c:506 msgid "Checking EC key matches cert\n" msgstr "Bezig met controleren of EC-sleutel overeenkomt met certificaat\n" #: openssl-pkcs11.c:510 msgid "Failed to allocate signature buffer\n" msgstr "Toewijzen van handtekeningsbuffer mislukt\n" #: openssl-pkcs11.c:520 msgid "Failed to sign dummy data to validate EC key\n" msgstr "Ondertekenen van dummygegevens voor valideren van EC-sleutel mislukt\n" #: openssl-pkcs11.c:638 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "Vinden van PKCS#11-sleutel '%s' mislukt\n" #: openssl-pkcs11.c:649 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "Instellen van privésleutel van PKCS#11 mislukt\n" #: openssl-pkcs11.c:678 msgid "Add key from PKCS#11 failed\n" msgstr "Toevoegen van sleutel uit PKCS#11 mislukt\n" #: openssl-pkcs11.c:710 openssl-pkcs11.c:716 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" "Deze versie van OpenConnect werd gecompileerd zonder PKCS#11-ondersteuning\n" #: openssl.c:147 msgid "Failed to write to SSL socket\n" msgstr "Schrijven naar SSL socket mislukt\n" #: openssl.c:197 openssl.c:263 msgid "Failed to read from SSL socket\n" msgstr "Kon niet lezen van de SSL socket\n" #: openssl.c:292 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" "SSL lezen fout %d (serververbinding waarschijnlijk gesloten); opnieuw " "aansluiten.\n" #: openssl.c:317 #, c-format msgid "SSL_write failed: %d\n" msgstr "SSL_write is mislukt: %d\n" #: openssl.c:389 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "Onverwerkt SSL-UI-verzoekstype %d\n" #: openssl.c:465 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "PEM wachtwoord te lang (%d >= %d)\n" #: openssl.c:498 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Extra cert van %s: '%s'\n" #: openssl.c:548 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Ontleden PKCS # 12 mislukt (zie bovenstaande fouten)\n" #: openssl.c:563 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS # 12 bevatte geen certificaat!\n" #: openssl.c:572 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS # 12 bevatte geen privé-sleutel!\n" #: openssl.c:577 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:600 msgid "Can't load TPM engine.\n" msgstr "Kan TPM engine niet laden.\n" #: openssl.c:606 msgid "Failed to init TPM engine\n" msgstr "Niet geslaagd om TPM engine te initiëren\n" #: openssl.c:616 msgid "Failed to set TPM SRK password\n" msgstr "Niet geslaagd om TPM SRK wachtwoord in te stellen\n" #: openssl.c:630 msgid "Failed to load TPM private key\n" msgstr "Niet geslaagd om TPM private sleutel te laden\n" #: openssl.c:636 msgid "Add key from TPM failed\n" msgstr "Toevoegen sleutel van TPM is mislukt\n" #: openssl.c:687 openssl.c:835 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Niet geslaagd om certificatenbestand %s te openen: %s\n" #: openssl.c:697 msgid "Loading certificate failed\n" msgstr "Laden van certificaat is mislukt\n" #: openssl.c:735 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" "Verwerken van alle ondersteunende certificaten mislukt. Toch proberen…\n" #: openssl.c:748 msgid "PEM file" msgstr "PEM-bestand" #: openssl.c:777 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Aanmaken van BIO voor sleutelopslagitem ‘%s’ mislukt\n" #: openssl.c:802 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Het laden van private sleutel is mislukt (verkeerde wachtwoord?)\n" #: openssl.c:808 msgid "Loading private key failed (see above errors)\n" msgstr "Het laden van private sleutel is mislukt (zie bovenstaande fouten)\n" #: openssl.c:858 msgid "Failed to load X509 certificate from keystore\n" msgstr "Laden X509 certificaat uit keystore mislukt\n" #: openssl.c:864 msgid "Failed to use X509 certificate from keystore\n" msgstr "Gebruik van X509 certificaat uit keystore mislukt\n" #: openssl.c:896 msgid "Failed to use private key from keystore\n" msgstr "Gebruik van privésleutel uit keystore mislukt\n" #: openssl.c:912 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Niet geslaagd in het openen van private key bestand %s: %s\n" #: openssl.c:936 openssl.c:951 openssl.c:972 openssl.c:1038 msgid "Loading private key failed\n" msgstr "Laden van privésleutel mislukt\n" #: openssl.c:1032 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "Omzetten van PKCS#8 naar OpenSSL EVP_PKEY mislukt\n" #: openssl.c:1049 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Niet geslaag in vaststellen private sleutel type in '%s'\n" #: openssl.c:1203 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Overeenkomstige DNS altname '%s'\n" #: openssl.c:1210 #, c-format msgid "No match for altname '%s'\n" msgstr "Geen overeenkomstige altname '%s'\n" #: openssl.c:1224 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "Certificaat heeft GEN_IPADD altname met pseudo-lengte %d\n" #: openssl.c:1235 openssl.c:1381 #, c-format msgid "Matched %s address '%s'\n" msgstr "Overeenkomstig %s adres '%s'\n" #: openssl.c:1242 #, c-format msgid "No match for %s address '%s'\n" msgstr "Geen overeenkomstig %s adres %s\n" #: openssl.c:1284 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "URI '%s' heeft geen leeg pad; negeren\n" #: openssl.c:1289 #, c-format msgid "Matched URI '%s'\n" msgstr "Overeenkomstige URI '%s'\n" #: openssl.c:1300 #, c-format msgid "No match for URI '%s'\n" msgstr "Geen overeenkomst met URI '%s'\n" #: openssl.c:1315 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "Geen altname in peer-cert overeenkomstig met '%s'\n" #: openssl.c:1323 msgid "No subject name in peer cert!\n" msgstr "Geen onderwerp naam in peer-cert!\n" #: openssl.c:1343 msgid "Failed to parse subject name in peer cert\n" msgstr "Niet gelukt om onderwerpnaam in peer-cert te ontleden\n" #: openssl.c:1350 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Peer cert onderwerp mismatch ('%s'! = '%s')\n" #: openssl.c:1355 openssl.c:1389 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Overeenkomstig peer-certificaat onderwerpnaam '%s'\n" #: openssl.c:1451 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Extra cert van CAFile: '%s'\n" #: openssl.c:1589 msgid "Error in client cert notAfter field\n" msgstr "Fout in client cert notAfter veld\n" #: openssl.c:1602 msgid "" msgstr "" #: openssl.c:1655 msgid "Create TLSv1 CTX failed\n" msgstr "Aanmaken van TLSv1-CTX mislukt\n" #: openssl.c:1674 msgid "SSL certificate and key do not match\n" msgstr "SSL-certificaat en sleutel komen niet overeen\n" #: openssl.c:1719 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Inlezen van certs van CA bestand mislukt '%s'\n" #: openssl.c:1752 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Niet gelukt om CA bestand '%s' te openen\n" #: openssl.c:1812 msgid "SSL connection failure\n" msgstr "SSL-verbinding niet geslaagd\n" #: openssl.c:1973 msgid "Failed to calculate OATH HMAC\n" msgstr "Berekenen van OATH-HMAC mislukt\n" #: script.c:130 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Negeren slechte split waaronder: ​​\"%s\"\n" #: script.c:134 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Negeren slechte split zonder: \"%s\"\n" #: script.c:507 script.c:555 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Niet gelukt om script '%s' te starten voor %s: %s\n" #: script.c:562 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "Script '%s' eindigde abnormaal (%x)\n" #: script.c:570 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Script '%s' retourneerde fout %d\n" #: ssl.c:108 msgid "Socket connect cancelled\n" msgstr "Socket verbinding geannuleerd\n" #: ssl.c:217 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "Opnieuw verbinden met proxy %s mislukt: %s\n" #: ssl.c:221 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "Opnieuw verbinden met host %s mislukt: %s\n" #: ssl.c:289 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Proxy van libproxy: %s://%s:%d/\n" #: ssl.c:317 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "getaddrinfo mislukt voor '%s' host: %s\n" #: ssl.c:326 ssl.c:451 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" "Opnieuw verbinden met DynDNS-server met IP-adressen uit cachegeheugen\n" #: ssl.c:341 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Poging om te verbinden met proxy %s%s%s:%s\n" #: ssl.c:342 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Poging te verbinden met server %s%s%s:%s\n" #: ssl.c:362 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "Verbonden met %s%s%s:%s\n" #: ssl.c:374 msgid "Failed to allocate sockaddr storage\n" msgstr "Niet gelukt om sockaddr opslag toe te wijzen\n" #: ssl.c:416 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "Verbinding maken met %s%s%s:%s mislukt: %s\n" #: ssl.c:434 msgid "Forgetting non-functional previous peer address\n" msgstr "Niet-functionele vorige peeradressen vergeten\n" #: ssl.c:446 #, c-format msgid "Failed to connect to host %s\n" msgstr "Niet geslaagd in maken verbinding met host %s\n" #: ssl.c:465 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "Herverbinden met proxy %s\n" #: ssl.c:536 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:564 msgid "Could not obtain file system ID for passphrase\n" msgstr "Kon bestandssysteem-ID niet verkrijgen voor wachtwoord\n" #: ssl.c:575 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "Openen van privésleutelbestand '%s' mislukt: %s\n" #: ssl.c:603 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:694 msgid "No error" msgstr "Geen fout" #: ssl.c:695 msgid "Keystore locked" msgstr "Sleutelbestand afgesloten" #: ssl.c:696 msgid "Keystore uninitialized" msgstr "Sleutelbestand geïnitialiseerd" #: ssl.c:697 msgid "System error" msgstr "Systeemfout" #: ssl.c:698 msgid "Protocol error" msgstr "Protocolfout" #: ssl.c:699 msgid "Permission denied" msgstr "Toegang verboden" #: ssl.c:700 msgid "Key not found" msgstr "Sleutel niet gevonden" #: ssl.c:701 msgid "Value corrupted" msgstr "Waarde corrupt" #: ssl.c:702 msgid "Undefined action" msgstr "Ongedefinieerde actie" #: ssl.c:706 msgid "Wrong password" msgstr "Onjuist wachtwoord" #: ssl.c:707 msgid "Unknown error" msgstr "Onbekende fout" #: ssl.c:896 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "openconnect_fopen_utf8() gebruikt met niet-ondersteunde modus '%s'\n" #: ssl.c:931 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "Onbekende protocolfamilie %d. Kan UDP-serveradres niet aanmaken\n" #: ssl.c:950 msgid "Open UDP socket" msgstr "UDP-socket openen" #: ssl.c:981 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "Onbekende protocolfamilie %d. Kan UDP-transport niet gebruiken\n" #: ssl.c:989 msgid "Bind UDP socket" msgstr "UDP-socket binden" #: ssl.c:996 msgid "Connect UDP socket\n" msgstr "UDP-socket verbinden\n" #: ssl.c:1034 msgid "Cookie is no longer valid, ending session\n" msgstr "Cookie is niet meer geldig, sessie wordt beëindigd\n" #: ssl.c:1038 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "slaap %ds, resterende time-out %ds\n" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "SSPI-token te groot (%ld bytes)\n" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "SSPI-token van %lu bytes verzenden\n" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "Verzenden van SSPI-aanmeldingstoken naar proxy mislukt: %s\n" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "Ontvangen van SSPI-aanmeldingstoken van proxy mislukt: %s\n" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "SOCKS-server meldde SSPI-contextfout\n" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "Onbekende SSPI-statusreactie (0x%02x) van SOCKS-server\n" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "SSPI-token van %lu bytes verkregen: %02x %02x %02x %02x\n" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "QueryContextAttributes() mislukt: %lx\n" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "EncryptMessage() mislukt: %lx\n" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "EncryptMessage()-resultaat te groot (%lu + %lu + %lu)\n" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "SSPI-beschermingsonderhandeling van %u bytes verzenden\n" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "Verzenden van SSPI-beschermingsreactie naar proxy mislukt: %s\n" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "Ontvangen van SSPI-beschermingsreactie van proxy mislukt: %s\n" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "SSPI-beschermingsreactie van %d bytes ontvangen: %02x %02x %02x %02x\n" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "DecryptMessage mislukt: %lx\n" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "Ongeldige SSPI-beschermingsreactie ontvangen van proxy (%lu bytes)\n" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "Invoeren inloggegevens om software token te ontsluiten." #: stoken.c:82 msgid "Device ID:" msgstr "Apparaat ID:" #: stoken.c:89 msgid "Password:" msgstr "Wachtwoord:" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "Gebruiker ging voorbij aan soft token.\n" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "Alle velden zijn verplicht; probeer het opnieuw.\n" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "Algemene fout in libstoken.\n" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "Onjuist apparaat ID of wachtwoord; probeer het nogmaals.\n" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "Soft token init was succesvol.\n" #: stoken.c:185 msgid "Enter software token PIN." msgstr "Voer softwaretokenpincode in." #: stoken.c:189 msgid "PIN:" msgstr "PIN:" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "Ongeldig PIN formaat; probeer het nogmaals.\n" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "Genereren van RSA-tokencode\n" #: tun-win32.c:76 msgid "Error accessing registry key for network adapters\n" msgstr "Fout bij benaderen van registersleutel voor netwerkadapters\n" #: tun-win32.c:139 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "Niet-overeenkomstige TAP-interface '%s' wordt genegeerd\n" #: tun-win32.c:154 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "Geen Windows-TAP-adapters gevonden. Is de driver geïnstalleerd?\n" #: tun-win32.c:186 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" "GetAdapterIndex() mislukt: %s\n" "Terugvallen op GetAdaptersInfo()\n" #: tun-win32.c:200 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "GetAdaptersInfo() mislukt: %s\n" #: tun-win32.c:231 #, c-format msgid "Failed to open %s\n" msgstr "Openen van %s mislukt\n" #: tun-win32.c:236 #, c-format msgid "Opened tun device %s\n" msgstr "Tun-apparaat %s geopend\n" #: tun-win32.c:244 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Verkrijgen van TAP-driverversie mislukt: %s\n" #: tun-win32.c:250 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Fout: TAP-Windows-driver v9.9 of hoger is vereist (v%ld.%ld gevonden)\n" #: tun-win32.c:271 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Instellen van TAP-IP-adressen mislukt: %s\n" #: tun-win32.c:283 tun-win32.c:406 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Instellen van TAP-mediastatus mislukt: %s\n" #: tun-win32.c:316 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "TAP-apparaat verbrak connectiviteit. Verbinding wordt verbroken.\n" #: tun-win32.c:321 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Lezen van TAP-apparaat mislukt: %s\n" #: tun-win32.c:335 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Voltooien van lezen van TAP-apparaat mislukt: %s\n" #: tun-win32.c:358 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "%ld bytes geschreven naar tun\n" #: tun-win32.c:368 msgid "Waiting for tun write...\n" msgstr "Wachten op tun-schrijven…\n" #: tun-win32.c:371 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "%ld bytes geschreven naar tun na wachten\n" #: tun-win32.c:378 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Schrijven naar TAP-apparaat mislukt: %s\n" #: tun-win32.c:423 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "Starten van tunnelscripts wordt nog niet ondersteund op Windows\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Kon /dev/tun for plumbing niet openen" #: tun.c:92 msgid "Can't push IP" msgstr "Kan IP niet doorzetten" #: tun.c:102 msgid "Can't set ifname" msgstr "Kan ifname niet instellen" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "Kan niet openen %s: %s" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Kon %s niet gebruiken voor overloop voor IPv%d: %s/n\n" #: tun.c:139 msgid "open /dev/tun" msgstr "open /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Geen nieuwe tun maken" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "Kon tun bestandsbeschrijving niet in message-discard mode plaatsen" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "tun-apparaat is niet ondersteund op dit platform\n" #: tun.c:205 msgid "open net" msgstr "Open Net" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Niet gelukt om tun apparaat te openen: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "Binden van lokaal tun-apparaat mislukt (TUNSETIFF): %s\n" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" "Om lokale netwerken te configureren, moet openconnect worden uitgevoerd als " "root\n" "Bekijk http://www.infradead.org/openconnect/nonroot.html voor meer " "informatie\n" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" "Ongeldige interfacenaam '%s'; moet overeenkomen met 'utun%%d' of 'tun%%d'\n" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "Openen van SYSPROTO_CONTROL-socket mislukt: %s\n" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "Opvragen van utun-controle-ID mislukt: %s\n" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "Toewijzen van utun-apparaatsnaam mislukt\n" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "Verbinding met utun-eenheid mislukt: %s\n" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Ongeldige interface naam '%s'; moet overeenkomen met 'tun%%d'\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Kan niet openen '%s': %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:479 #, c-format msgid "socketpair failed: %s\n" msgstr "socketpair mislukt: %s\n" #: tun.c:484 #, c-format msgid "fork failed: %s\n" msgstr "fork mislukt: %s\n" #: tun.c:488 msgid "setpgid" msgstr "setpgid" #: tun.c:493 msgid "execl" msgstr "execl" #: tun.c:498 msgid "(script)" msgstr "(script)" #: tun.c:566 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Niet geslaag in wegschrijven inkomend pakket: %s/n\n" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "Openen van %s mislukt: %s\n" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "fstat() %s mislukt: %s\n" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Toewijzen van %d bytes voor %s mislukt\n" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "Lezen van %s mislukt: %s\n" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Behandelen host \"%s\" als kale hostnaam\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Aanmaken SHA1 hash voor huidige bestand mislukt\n" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "XML-configuratiebestand SHA1: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Niet gelukt XML-configuratiebestand %s te ontleden\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Host \"%s\" heeft adres \"%s\"\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Host \"%s\" heeft gebruikersgroep \"%s\"\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "Host \"%s\" is niet vermeld in de configuratie, behandeling als kale " "hostname\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "Verzenden van '%s' naar ykneo-oath-applet mislukt: %s\n" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "Ongeldige korte reactie aan '%s' van ykneo-oath-applet\n" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "Verkeerde reactie aan '%s': %04x\n" #: yubikey.c:174 msgid "select applet command" msgstr "applet-opdracht selecteren" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "Reactie van ykneo-oath-applet niet herkend\n" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "ykneo-oath-applet v%d.%d.%d gevonden.\n" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "Pincode vereist voor Yubikey-OATH-applet" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "Yubikey-pincode:" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "Berekenen van Yubikey-ontgrendelingsreactie mislukt\n" #: yubikey.c:274 msgid "unlock command" msgstr "opdracht voor ontgrendelen" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "Ingekorteteken-PBKBF2-variant van Yubikey-pincode proberen\n" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "Opstellen van PC/SC-context mislukt: %s\n" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "PS/SC-context opgesteld\n" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "Opvragen van lezerlijst mislukt: %s\n" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "Verbinden met PC/SC-lezer '%s' mislukt: %s\n" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "PC/SC-lezer '%s' verbonden\n" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "Verkrijgen van exclusieve toegang tot lezer '%s' mislukt: %s\n" #: yubikey.c:412 msgid "list keys command" msgstr "opdracht voor oplijsten van sleutels" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "%s/%s sleutel ‘%s’ op ‘%s’ gevonden\n" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" "Token '%s' niet gevonden op Yubikey '%s'. Zoeken naar andere Yubikey...\n" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "Server weigert Yubikey-token; omschakelen naar handmatige invoer\n" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "Bezig met genereren van Yubikey-tokencode\n" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "Verkrijgen van exclusieve toegang tot Yubikey mislukt: %s\n" #: yubikey.c:619 msgid "calculate command" msgstr "opdracht voor berekenen" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "Niet-herkende reactie van Yubikey bij genereren van tokencode\n" openconnect-8.05/po/cs.po0000664000076400007640000042215113536301641017127 0ustar00dwoodhoudwoodhou00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: # fri , 2011,2013 # fri , 2011 # fri , 2013 # fri , 2011-2013 msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2019-09-11 14:49+0100\n" "PO-Revision-Date: 2014-02-21 01:11+0000\n" "Last-Translator: David Woodhouse \n" "Language-Team: Czech (http://www.transifex.com/projects/p/meego/language/" "cs/)\n" "Language: cs\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=3; plural=(n==1) ? 0 : (n>=2 && n<=4) ? 1 : 2;\n" #: auth-globalprotect.c:124 #, c-format msgid "" "SAML login is required via %s to this URL:\n" "\t%s" msgstr "" "K tomuto URL je požadováno přihlášení SAML%s :\n" "\t%s" #: auth-globalprotect.c:126 msgid "Please enter your username and password" msgstr "Zadejte prosím uživatelské jméno a heslo" #: auth-globalprotect.c:135 msgid "Username" msgstr "Uživatelské jméno" #: auth-globalprotect.c:150 msgid "Password" msgstr "Heslo" #: auth-globalprotect.c:197 msgid "Challenge: " msgstr "Výzva:" #: auth-globalprotect.c:276 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "Přihlášení GlobalProtect vrátilo %s=%s (očekáváné %s)\n" #: auth-globalprotect.c:282 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "Přihlášení GlobalProtect vrátil prázdné nebo chybějící %s\n" #: auth-globalprotect.c:288 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "Přihlášení GlobalProtect vrátilo %s=%s\n" #: auth-globalprotect.c:331 msgid "Please select GlobalProtect gateway." msgstr "Vyberte prosím bránu GlobalProtect" #: auth-globalprotect.c:341 msgid "GATEWAY:" msgstr "BRÁNA:" #. each entry looks like Label #: auth-globalprotect.c:395 #, c-format msgid "%d gateway servers available:\n" msgstr "K dispozici je %d serverů s bránami:\n" #: auth-globalprotect.c:416 #, c-format msgid " %s (%s)\n" msgstr " %s (%s)\n" #: auth-globalprotect.c:492 auth-juniper.c:730 auth.c:669 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "Selhalo generování kódu OTP tokenu, deaktivuje se token\n" #: auth-globalprotect.c:588 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "Server není ani brána, ani portál GlobalProtect.\n" #: auth-globalprotect.c:640 oncp.c:1267 msgid "Logout failed.\n" msgstr "Odhlášení se nezdařilo\n" #: auth-globalprotect.c:642 msgid "Logout successful\n" msgstr "Úspěšně odhášeno\n" #: auth-juniper.c:142 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "Ignoruje se neznámý prvek odeslání formuláře '%s'\n" #: auth-juniper.c:153 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "Ignoruje se neznámý typ vstupu „%s“ ve formuláři\n" #: auth-juniper.c:163 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "Ignoruje se zdvojená volba: „%s“\n" #: auth-juniper.c:236 auth.c:408 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Nepodařilo se zvládnout formulář metoda='%s', činnost='%s'\n" #: auth-juniper.c:267 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "Neznámé textové pole: „%s“\n" #: auth-juniper.c:337 msgid "TNCC support not implemented yet on Windows\n" msgstr "Podpora TNCC není zatím ve Windows implementována\n" #: auth-juniper.c:359 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "Žádná DSPREAUTH cookie, TNCC se nebude zkoušet\n" #: auth-juniper.c:397 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "Nepodařilo se spustit skript TNCC %s: %s\n" #: auth-juniper.c:411 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "Selhala alokace paměti pro komunikaci s TNCC\n" #: auth-juniper.c:418 msgid "Failed to send start command to TNCC\n" msgstr "Nepodařilo se odeslat startovací příkaz TNCC\n" #: auth-juniper.c:425 msgid "Sent start; waiting for response from TNCC\n" msgstr "Odeslán start, čeká se na odpověď od TNCC\n" #: auth-juniper.c:432 msgid "Failed to read response from TNCC\n" msgstr "Selhalo čtení odpovědi od TNCC\n" #: auth-juniper.c:439 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "Přijata neúspěšná odpověď %s od TNCC\n" #: auth-juniper.c:445 msgid "TNCC response 200 OK\n" msgstr "Odpověď TNCC 200 OK\n" #: auth-juniper.c:452 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "Druhá řádka odpovědi TNCC: '%s'\n" #: auth-juniper.c:461 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "Získána nová DSPREAUTH cookie od TNCC: %s\n" #: auth-juniper.c:474 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "Neočekávaná řádka od TNCC po DSPREAUTH cookie: '%s'\n" #: auth-juniper.c:481 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:650 msgid "Failed to parse HTML document\n" msgstr "Selhala analýza dokumentu HTML\n" #: auth-juniper.c:667 msgid "Failed to find or parse web form in login page\n" msgstr "" "Selhalo vyhledání nebo zpracování webového formuláře na přihlašovací " "stránce\n" #: auth-juniper.c:675 msgid "Encountered form with no ID\n" msgstr "Nalezen formulář bez ID\n" #: auth-juniper.c:713 #, c-format msgid "Unknown form ID '%s'\n" msgstr "Neznámé ID formuláře „%s“\n" #: auth-juniper.c:716 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "Vypisuje se neznámý formulář HTML:\n" #: auth.c:96 msgid "Form choice has no name\n" msgstr "Výběr formuláře nemá žádný název\n" #: auth.c:181 #, c-format msgid "name %s not input\n" msgstr "název %s ne vstup\n" #: auth.c:188 msgid "No input type in form\n" msgstr "Žádný typ vstupu ve formuláři\n" #: auth.c:200 msgid "No input name in form\n" msgstr "Žádný název vstupu ve formuláři\n" #: auth.c:230 #, c-format msgid "Unknown input type %s in form\n" msgstr "Neznámý typ vstupu %s ve formuláři\n" #: auth.c:540 gpst.c:214 msgid "Empty response from server\n" msgstr "Prázdná odpověď od serveru\n" #: auth.c:551 gpst.c:289 msgid "Failed to parse server response\n" msgstr "Nepodařilo se zpracovat odpověď serveru\n" #: auth.c:553 gpst.c:291 #, c-format msgid "Response was:%s\n" msgstr "Odpověď byla:%s\n" #: auth.c:575 msgid "Received when not expected.\n" msgstr "Obdrženo přestože nebylo požadováno.\n" #: auth.c:603 msgid "XML response has no \"auth\" node\n" msgstr "Odpověď XML nemá žádný uzel \"auth\" \n" #: auth.c:636 msgid "Asked for password but '--no-passwd' set\n" msgstr "Žádáno heslo ale nastaveno '--no-passwd'\n" #: auth.c:925 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "Profil XML se nenahrává, protože SHA1 již souhlasí\n" #: auth.c:931 cstp.c:335 http.c:944 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Nepodařilo se otevřít spojení HTTPS s %s\n" #: auth.c:952 msgid "Failed to send GET request for new config\n" msgstr "Selhalo odeslání požadavku GET pro novou konfiguraci\n" #: auth.c:976 msgid "Downloaded config file did not match intended SHA1\n" msgstr "Stažený soubor s nastavením neodpovídá zamýšlenému SHA1\n" #: auth.c:981 msgid "Downloaded new XML profile\n" msgstr "Nahrán nový profil XML\n" #: auth.c:992 auth.c:1044 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" "Chyba: Spuštění „Cisco Secure Desktop“ na této platformě ještě není " "implementováno.\n" #: auth.c:1003 mainloop.c:144 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "Selhalo nastavení gid %ld: %s\n" #: auth.c:1010 mainloop.c:151 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "Selhalo nastavení skupiny na %ld: %s\n" #: auth.c:1017 mainloop.c:158 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "Selhalo nastavení uid %ld: %s\n" #: auth.c:1024 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "Neplatný uživatel uid=%ld: %s\n" #: auth.c:1031 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Nepodařilo se provést změnu na domovský adresář CSD '%s': %s\n" #: auth.c:1053 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Chyba: Server žádá o spuštění CSD hostscan.\n" "Musíte poskytnout odpovídající argument --csd-wrapper.\n" #: auth.c:1060 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Chyba: Server nás požádal o stažení a spuštění trojana 'Cisco Secure " "Desktop'.\n" "tato dovednost je zakázána ve výchozím nastavení z důvodů bezpečnosti, takže " "ji možná budete chtít povolit.\n" #: auth.c:1067 msgid "Trying to run Linux CSD trojan script.\n" msgstr "Pokus o spuštění trojského skriptu CSD pro Linux.\n" #: auth.c:1094 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "Do dočasné složky „%s“ nelze zapsat: %s\n" #: auth.c:1102 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Nepodařilo se otevřít dočasný soubor se skriptem CSD: %s\n" #: auth.c:1111 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Nepodařilo se zapsat dočasný soubor se skriptem CSD: %s\n" #: auth.c:1141 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Varování: spouštíte nezabezpečený kód CSD s oprávněním správce systému\n" "\t Použít volbu pro příkazový řádek \"--csd-user\"\n" #: auth.c:1189 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Nepodařilo se spustit skript CSD %s\n" #: auth.c:1221 msgid "Unknown response from server\n" msgstr "Neznámá odpověď od serveru\n" #: auth.c:1342 msgid "Server requested SSL client certificate after one was provided\n" msgstr "Server požadoval certifikát SSL klienta poté co byl předložen\n" #: auth.c:1346 msgid "Server requested SSL client certificate; none was configured\n" msgstr "Server požadoval certifikát SSL klienta, žádný nebyl nastaven\n" #: auth.c:1362 msgid "XML POST enabled\n" msgstr "XML POST povolen\n" #: auth.c:1405 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Obnova %s po 1 sekundě...\n" #: compat.c:207 #, c-format msgid "(error 0x%lx)" msgstr "(chyba 0x%lx)" #: compat.c:210 msgid "(Error while describing error!)" msgstr "(Chyba při popisování chyby)" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "CHYBA: Nelze inicializovat sokety\n" #: cstp.c:112 gpst.c:341 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:134 gpst.c:360 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:281 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" "KRITICKÁ CHYBA: Hlavní klíč DTLSDTLS je neinicializovaný. Nahlaste to " "prosím.\n" #: cstp.c:312 msgid "Error creating HTTPS CONNECT request\n" msgstr "Chyba při vytváření požadavku HTTPS CONNECT\n" #: cstp.c:328 http.c:386 msgid "Error fetching HTTPS response\n" msgstr "Chyba při natahování odpovědi HTTPS\n" #: cstp.c:355 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "Služba VPN nedostupná, důvod: %s\n" #: cstp.c:360 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Obdržena nevhodná odpověď SPOJENÍ HTTP: %s\n" #: cstp.c:367 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Obdržena odpověď SPOJENÍ : %s\n" #: cstp.c:396 cstp.c:404 msgid "No memory for options\n" msgstr "Žádná paměť pro volby\n" #: cstp.c:413 http.c:447 msgid "" msgstr "" #: cstp.c:433 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Sezení-ID ne 64 znaků; je: \"%s\"\n" #: cstp.c:450 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "X-DTLS-Session-ID je neplatné; je: „%s“\n" #: cstp.c:468 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "Neznámé kódování obsahu DTLS %s\n" #: cstp.c:510 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Neznámé kódování-obsahu-CSTP %s\n" #: cstp.c:586 msgid "No MTU received. Aborting\n" msgstr "Nepřijato žádné MTU. Ruší se\n" #: cstp.c:594 gpst.c:670 msgid "No IP address received. Aborting\n" msgstr "Nepřijata žádná adresa IP. Ruší se\n" #: cstp.c:600 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "Konfigurace IPv6 byla získána, ale MTU %d je příliš malé.\n" #: cstp.c:606 gpst.c:677 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Znovuzapojení dalo jinou adresu Legacy IP (%s != %s)\n" #: cstp.c:615 gpst.c:686 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "Znovuzapojení dalo jinou síťovou masku Legacy IP (%s != %s)\n" #: cstp.c:623 gpst.c:695 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Znovuzapojení dalo jinou adresu IPv6 (%s != %s)\n" #: cstp.c:631 gpst.c:703 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Znovuzapojení dalo jinou síťovou masku IPv6 (%s != %s)\n" #: cstp.c:639 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP spojeno. DPD %d, (udržet naživu) Keepalive %d\n" #: cstp.c:641 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "Šifrování CSTP: %s\n" #: cstp.c:703 msgid "Compression setup failed\n" msgstr "Nastavení zabalení se nezdařilo\n" #: cstp.c:720 msgid "Allocation of deflate buffer failed\n" msgstr "Přidělení deflate vyrovnávací paměti se nezdařilo\n" #: cstp.c:782 msgid "inflate failed\n" msgstr "nafouknutí se nepodařilo\n" #: cstp.c:805 #, c-format msgid "LZS decompression failed: %s\n" msgstr "Dekomprimace LZS selhala: %s\n" #: cstp.c:818 msgid "LZ4 decompression failed\n" msgstr "Selhala dekomprimace LZ4\n" #: cstp.c:825 #, c-format msgid "Unknown compression type %d\n" msgstr "Neznámý typ komprimace %d\n" #: cstp.c:830 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "Přijat komprimovaný paket dat %s, %d bajtů (bylo %d)\n" #: cstp.c:850 #, c-format msgid "deflate failed %d\n" msgstr "deflate se nezdařilo %d\n" #: cstp.c:923 dtls.c:281 dtls.c:690 esp.c:163 gpst.c:1096 mainloop.c:69 #: oncp.c:914 pulse.c:2297 msgid "Allocation failed\n" msgstr "Přidělení paměti selhalo\n" #: cstp.c:934 gpst.c:1109 pulse.c:2309 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "Přijat krátký paket (%d bajtů)\n" #: cstp.c:947 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Neočekávaná délka paketu. SSL_čtení vrátilo %d ale paket je\n" #: cstp.c:961 msgid "Got CSTP DPD request\n" msgstr "Obdržen požadavek CSTP DPD\n" #: cstp.c:967 msgid "Got CSTP DPD response\n" msgstr "Obdržena odpověď CSTP DPD\n" #: cstp.c:972 msgid "Got CSTP Keepalive\n" msgstr "Obdrženo CSTP Keepalive\n" #: cstp.c:977 oncp.c:1003 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Přijat nezabalený paket dat %d bytů\n" #: cstp.c:994 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Přijato odpojení serveru: %02x '%s'\n" #: cstp.c:997 msgid "Received server disconnect\n" msgstr "Přijato odpojení serveru\n" #: cstp.c:1005 msgid "Compressed packet received in !deflate mode\n" msgstr "Přijat zabalený paket v režimu !deflate\n" #: cstp.c:1014 msgid "received server terminate packet\n" msgstr "Přijat paket pro ukončení serveru\n" #: cstp.c:1021 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Neznámý paket %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1064 gpst.c:1197 oncp.c:1121 pulse.c:2452 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL napsalo příliš mnoho bytů! Požádáno o %d, posláno %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1092 oncp.c:1156 pulse.c:2479 msgid "CSTP rekey due\n" msgstr "Naplánování znovuzanesení CSTP\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1099 oncp.c:1163 pulse.c:2486 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Opětovné navázání selhalo, pokus o new-tunnel\n" #: cstp.c:1110 oncp.c:1174 pulse.c:2497 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "CSTP odhalování mrtvého protějšku zjistilo mrtvý protějšek!\n" #: cstp.c:1114 gpst.c:1221 oncp.c:1091 oncp.c:1178 pulse.c:2422 pulse.c:2502 msgid "Reconnect failed\n" msgstr "Znovupřipojení se nezdařilo\n" #: cstp.c:1130 oncp.c:1194 pulse.c:2518 msgid "Send CSTP DPD\n" msgstr "Poslat CSTP DPD\n" #: cstp.c:1142 oncp.c:1205 pulse.c:2530 msgid "Send CSTP Keepalive\n" msgstr "Poslat CSTP Keepalive\n" #: cstp.c:1167 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "Posílá se paket dat o velikosti %d bajtů (bylo %d)\n" #: cstp.c:1178 oncp.c:1239 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Posílá se nezabalený paket dat %d bytů\n" #: cstp.c:1217 #, c-format msgid "Send BYE packet: %s\n" msgstr "Poslat BYE paket: %s\n" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "Pokus o ověření k proxy metodou Digest\n" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "Zkouší se ověření Digest vůči serveru „%s“\n" #: dtls.c:113 msgid "DTLS connection attempted with an existing fd\n" msgstr "Pokus o DTLS připojení s existujícím fd\n" #: dtls.c:119 msgid "No DTLS address\n" msgstr "Žádná adresa DTLS\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:126 msgid "Server offered no DTLS cipher option\n" msgstr "Server nenabídl žádnou volbu pro zašifrování DTLS\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:133 msgid "No DTLS when connected via proxy\n" msgstr "Žádné DTLS, když spojeno přes proxy\n" #: dtls.c:200 #, c-format msgid "DTLS option %s : %s\n" msgstr "Volba DTLS %s : %s\n" #: dtls.c:239 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS inicializováno. DPD %d, Keepalive %d\n" #: dtls.c:265 msgid "Attempt new DTLS connection\n" msgstr "Pokus o nové spojení DTLS\n" #: dtls.c:292 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Přijat DTLS paket 0x%02x %dd bytů\n" #: dtls.c:306 msgid "Got DTLS DPD request\n" msgstr "Obdržen požadavek DTLS DPD\n" #: dtls.c:312 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Nepodařilo se poslat odpověď DPD. Očekává se odpojení\n" #: dtls.c:316 msgid "Got DTLS DPD response\n" msgstr "Obdržena odpověď DTLS DPD\n" #: dtls.c:320 msgid "Got DTLS Keepalive\n" msgstr "Obdrženo DTLS Keepalive\n" #: dtls.c:326 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "Přijat komprimovaný DTLS paket, přičemž komprese nebyla povolena\n" #: dtls.c:334 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Neznámý typ paketu DTLS %02x, len %d\n" #: dtls.c:356 msgid "DTLS rekey due\n" msgstr "Naplánování znovuzanesení CSTP\n" #: dtls.c:363 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "Opětovné navázání DTLS selhalo, připojuje se znovu.\n" #: dtls.c:372 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "DTLS odhalování mrtvého protějšku zjistilo mrtvý protějšek!\n" #: dtls.c:378 msgid "Send DTLS DPD\n" msgstr "Poslat DTLS DPD\n" #: dtls.c:383 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Nepodařilo se poslat požadavek DPD. Očekává se odpojení\n" #: dtls.c:396 msgid "Send DTLS Keepalive\n" msgstr "Poslat DTLS Keepalive\n" #: dtls.c:401 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" "Nepodařilo se poslat požadavek na zachování spojení. Očekává se odpojení\n" #: dtls.c:432 tun.c:541 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Přijat neznámý paket (len %d): %02x %02x %02x %02x...\n" #: dtls.c:439 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "Toto TOS: %d, předchozí TOS: %d\n" #: dtls.c:443 msgid "UDP setsockopt" msgstr "Volba pro soket UDP" #: dtls.c:474 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "DTLS dostalo chybu v zápisu %d. Ustupuje se k SSL\n" #: dtls.c:488 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "DTLS obdrželo chybu v zápisu: %s. Vrací se k SSL\n" #: dtls.c:503 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "Odesláno %d bytů v paketu DTLS ; odeslání DTLS vrátilo %d\n" #: dtls.c:551 #, c-format msgid "Initiating MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:585 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "Odesílá se sonda MTU DPD (%u bajtů)\n" #: dtls.c:589 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "Nepodařilo se poslat požadavek DPD (%d %d)\n" #: dtls.c:612 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "Příliš dlouhé trvání detekční smyčky MTU, převezme se vyjednané MTU.\n" #: dtls.c:616 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "Příliš dlouhé trvání detekční smyčky MTU. MTU nastaveno na %d.\n" #: dtls.c:633 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "Při detekci MTU byl přijat neočekávaný paket (%.2x), přeskakuje se.\n" #: dtls.c:640 #, c-format msgid "No response to size %u after %d tries; declare MTU is %u\n" msgstr "" #: dtls.c:647 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "Nepodařilo se přijmout požadavek DPD (%d)\n" #: dtls.c:651 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "Sonda MTU DPD byla přijata (%u bajtů)\n" #: dtls.c:701 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "Detekována MTU %d bajtů (bylo %d)\n" #: dtls.c:704 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "Nedetekována žádná změna MTU (bylo %d)\n" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "Přijímá se očekávaný ESP paket se sekv. č. %u\n" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" "Přijímá se novější než očekávaný ESP paket se sekv. č. %u (očekáváno " "%)\n" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "Zahazuje se starý ESP paket se sekv. č. %u (očekáváno %)\n" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" "Toleruje se starý paket ESP s pořadovým číslem %u (očekáváno %)\n" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "Zahazuje se opakovaný ESP paket se sekv. č. %u\n" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "Toleruje se opakovaný paket ESP s pořadovým číslem %u\n" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" "Přijímá se ESP paket mimo pořadí se sekv. č. %u (očekáváno %)\n" #: esp.c:66 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "Parametry pro %s ESP: SPI 0x%08x\n" #: esp.c:69 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "Typ šifrování ESP %s klíč 0x%s\n" #: esp.c:72 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "Typ ověření ESP %s klíč 0x%s\n" #: esp.c:90 msgid "incoming" msgstr "příchozí" #: esp.c:91 msgid "outgoing" msgstr "odchozí" #: esp.c:93 esp.c:147 msgid "Send ESP probes\n" msgstr "Odeslány sondy ESP\n" #: esp.c:172 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "Přijat paket ESP o velikosti %d bajtů\n" #: esp.c:189 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "Přijat ESP paket s neplatným SPI 0x%x, pořadové čislo %u\n" #: esp.c:195 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "Přijat paket ESP s neplatným SPI 0x%08x\n" #: esp.c:208 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "Přijat ESP paket s nerozpoznaným typem obsahu %02x\n" #: esp.c:215 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "Neplatná délka výplně %02x v ESP\n" #: esp.c:227 msgid "Invalid padding bytes in ESP\n" msgstr "Neplatné bajty výplně v ESP\n" #: esp.c:236 msgid "ESP session established with server\n" msgstr "Spojení ESP se serverem bylo ustaveno\n" #: esp.c:247 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "Selhala alokace paměti pro dešifrování paketu ESP\n" #: esp.c:253 msgid "LZO decompression of ESP packet failed\n" msgstr "Selhala dekomprimace LZO paketu ESP\n" #: esp.c:259 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "Dekomprimováno LZO o velikosti %d bajtů do %d\n" #: esp.c:273 msgid "Rekey not implemented for ESP\n" msgstr "Výměna klíčů není pro ESP implementována\n" #: esp.c:277 msgid "ESP detected dead peer\n" msgstr "ESP detekovalo mrtvý protějšek\n" #: esp.c:285 msgid "Send ESP probes for DPD\n" msgstr "Odeslat sondy ESP pro DPD\n" #: esp.c:292 msgid "Keepalive not implemented for ESP\n" msgstr "Pro ESP není funkce keepalive implementována\n" #: esp.c:346 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:353 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "Selhalo odeslání paketu ESP: %s\n" #: esp.c:359 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "Odesláno %d bajtů v paketu ESP\n" #: esp.c:430 msgid "Failed to generate random keys for ESP\n" msgstr "" #: esp.c:437 msgid "Failed to generate initial IV for ESP\n" msgstr "" #: gnutls-dtls.c:190 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "Odkládá se obnovení DTLS, dokud CSTP nevygeneruje PSK\n" #: gnutls-dtls.c:198 msgid "Failed to generate DTLS priority string\n" msgstr "Selhalo generování řetězce DTLS priority\n" #: gnutls-dtls.c:207 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "Selhala inicializace DTLS: %s\n" #: gnutls-dtls.c:216 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "Nezdařilo se nastavit DTLS prioritu: „%s“: %s\n" #: gnutls-dtls.c:240 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "Selhala alokace přihlašovacích údajů: %s\n" #: gnutls-dtls.c:253 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "Selhalo generování klíče DTLS: %s\n" #: gnutls-dtls.c:267 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "Nezdařilo se nastavit klíč DTLS: %s\n" #: gnutls-dtls.c:275 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "Selhalo nastavení přihlašovacích údajů DTLS PSK: %s\n" #: gnutls-dtls.c:309 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Neznámé parametry DTLS pro požadované CipherSuite „%s“\n" #: gnutls-dtls.c:324 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "Nezdařilo se nastavit DTLS prioritu: %s\n" #: gnutls-dtls.c:345 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Nezdařilo se nastavení parametrů DTLS relace: %s\n" #: gnutls-dtls.c:373 openssl-dtls.c:574 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "MTU protějšku %d je příliš malé pro povolení DTLS\n" #: gnutls-dtls.c:382 openssl-dtls.c:585 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "DTLS MTU snížena na %d\n" #: gnutls-dtls.c:392 openssl-dtls.c:594 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" "Obnovení relace DTLS selhalo. Podezření na útok typu MITM. DTLS bude " "zakázáno.\n" #: gnutls-dtls.c:405 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Nezdařilo se nastavit DTLS MTU: %s\n" #: gnutls-dtls.c:416 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "DTLS spojení sestaveno (použito GnuTLS). Šifrování: %s\n" #: gnutls-dtls.c:422 openssl-dtls.c:612 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "Použitá komprimace připojení DTLS: %s.\n" #: gnutls-dtls.c:437 openssl-dtls.c:693 openssl-dtls.c:697 msgid "DTLS handshake timed out\n" msgstr "Podání ruky DTLS překročilo čas\n" #: gnutls-dtls.c:440 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "Navázání DTLS se nezdařilo: %s\n" #: gnutls-dtls.c:444 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(Firewall vám nedovoluje odesílání paketů UDP?)\n" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "Selhala inicializace algoritmu ESP: %s\n" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "Selhala inicializace ESP HMAC: %s\n" #: gnutls-esp.c:128 gnutls-esp.c:171 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "Selhal výpočet HMAC pro paket ESP: %s\n" #: gnutls-esp.c:135 openssl-esp.c:166 msgid "Received ESP packet with invalid HMAC\n" msgstr "Přijat paket s neplatným HMAC\n" #: gnutls-esp.c:147 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "Selhalo dešifrování paketu ESP: %s\n" #: gnutls-esp.c:163 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "Selhalo šifrování paketu ESP: %s\n" #: gnutls.c:95 openssl.c:154 msgid "SSL write cancelled\n" msgstr "Zápis SSL zrušen\n" #: gnutls.c:99 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "Nepodařilo se zapsat do soketu SSL: %s\n" #: gnutls.c:145 gnutls.c:237 openssl.c:204 openssl.c:271 msgid "SSL read cancelled\n" msgstr "Čtení SSL zrušeno\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:158 msgid "SSL socket closed uncleanly\n" msgstr "Soket SSL nebyl čistě uzavřen\n" #: gnutls.c:168 gnutls.c:246 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "Nepodařilo se číst ze soketu SSL: %s\n" #: gnutls.c:266 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "Chyba čtení přes SSL: %s; znovu se připojuje.\n" #: gnutls.c:302 #, c-format msgid "SSL send failed: %s\n" msgstr "Chyba odesílání přes SSL: %s\n" #: gnutls.c:315 msgid "Could not extract expiration time of certificate\n" msgstr "Nelze získat dobu vypršení certifikátu\n" #: gnutls.c:320 openssl.c:1592 msgid "Client certificate has expired at" msgstr "Osvědčení klienta vypršelo v" #: gnutls.c:322 openssl.c:1597 msgid "Client certificate expires soon at" msgstr "Osvědčení klienta brzy vyprší v" #: gnutls.c:371 openssl.c:771 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Selhalo načtení položky „%s“ z úložiště klíčů: %s\n" #: gnutls.c:384 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Nepodařilo se otevřít soubor klíče/certifikátu %s: %s\n" #: gnutls.c:391 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" "Nepodařilo se zjistit informace o souboru s klíčem/certifikátem %s: %s\n" #: gnutls.c:400 msgid "Failed to allocate certificate buffer\n" msgstr "Nepodařilo se alokovat paměť pro certifikát\n" #: gnutls.c:408 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Selhalo načtení certifikátu do paměti: %s\n" #: gnutls.c:439 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Selhalo nastavení datové struktury PKCS#12: %s\n" #: gnutls.c:462 openssl.c:534 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Selhalo dešifrování PKCS#12 souboru certifikátu\n" #: gnutls.c:466 openssl.c:537 msgid "Enter PKCS#12 pass phrase:" msgstr "Vložte heslo k PKCS#12:" #: gnutls.c:489 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Selhalo zpracování PKCS#12 souboru: %s\n" #: gnutls.c:501 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Selhalo nahrání PKCS#12 certifikátu : %s\n" #: gnutls.c:584 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Selhal import X509 certifikátu: %s\n" #: gnutls.c:594 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Nastavení PKCS#11 certifikátu selhalo: %s\n" #: gnutls.c:628 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Nelze inicializovat haš MD5: %s\n" #: gnutls.c:638 #, c-format msgid "MD5 hash error: %s\n" msgstr "Chyba haše MD5: %s\n" #: gnutls.c:696 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "Chybějící DEK-Info: hlavička zašifrovaného klíče OpenSSL\n" #: gnutls.c:703 msgid "Cannot determine PEM encryption type\n" msgstr "Nelze určit způsob šifrování PEM\n" #: gnutls.c:716 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Nepovolený způsob šifrování PEM: %s\n" #: gnutls.c:741 gnutls.c:754 msgid "Invalid salt in encrypted PEM file\n" msgstr "Neplatná sůl v šifrovaném souboru PEM\n" #: gnutls.c:778 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Chyba base64 dekódování šifrovaného PEM souboru: %s\n" #: gnutls.c:786 msgid "Encrypted PEM file too short\n" msgstr "Šifrovaný PEM soubor je příliš krátký\n" #: gnutls.c:814 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "Selhala inicializace šifry pro dešifrování souboru PEM: %s\n" #: gnutls.c:825 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Selhalo dešifrování PEM klíče: %s\n" #: gnutls.c:877 msgid "Decrypting PEM key failed\n" msgstr "Selhalo dešifrování PEM klíče\n" #: gnutls.c:881 gnutls.c:1406 openssl.c:458 msgid "Enter PEM pass phrase:" msgstr "Vložte heslo k PEM:" #: gnutls.c:942 msgid "This binary built without system key support\n" msgstr "Program byl sestaven bez podpory systémového klíče\n" #: gnutls.c:949 msgid "This binary built without PKCS#11 support\n" msgstr "Program byl sestaven bez podpory PKCS#11\n" #: gnutls.c:993 openssl-pkcs11.c:407 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Používá se PKCS#11 certifikát %s\n" #: gnutls.c:994 #, c-format msgid "Using system certificate %s\n" msgstr "Používá se systémový certifikát %s\n" #: gnutls.c:1012 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Chyba nahrání certifikátu z PKCS#11: %s\n" #: gnutls.c:1013 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Chyba nahrání systémového certifikátu: %s\n" #: gnutls.c:1024 openssl.c:827 #, c-format msgid "Using certificate file %s\n" msgstr "Používá se soubor s osvědčením %s\n" #: gnutls.c:1052 msgid "PKCS#11 file contained no certificate\n" msgstr "Soubor PKCS#11 neobsahoval certifikát\n" #: gnutls.c:1078 msgid "No certificate found in file" msgstr "V souboru nebyl nalezen žádný certifikát" #: gnutls.c:1083 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Nahrání certifikátu selhalo: %s\n" #: gnutls.c:1099 #, c-format msgid "Using system key %s\n" msgstr "Používá se systémový klíč %s\n" #: gnutls.c:1104 gnutls.c:1272 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Chyba inicializace struktury soukromého klíče: %s\n" #: gnutls.c:1115 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Chyba importu systémového klíče %s: %s\n" #: gnutls.c:1126 gnutls.c:1220 gnutls.c:1248 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "Zkouší se adresa URL klíče PKCS#11 %s\n" #: gnutls.c:1131 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Chyba inicializace PKCS#11 struktury klíče: %s\n" #: gnutls.c:1260 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Chyba importu PKCS#11 URL %s: %s\n" #: gnutls.c:1267 openssl-pkcs11.c:644 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Používá se PKCS#11 klíč %s\n" #: gnutls.c:1282 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "Chyba importu PKCS#11 klíče do struktury soukromého klíče: %s\n" #: gnutls.c:1300 #, c-format msgid "Using private key file %s\n" msgstr "Používá se soubor soukromý klíč %s\n" #: gnutls.c:1311 openssl.c:651 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Tato verze OpenConnect byla sestavena bez podpory pro TPM\n" #: gnutls.c:1327 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "Tato verze OpenConnect byla sestavena bez podpory pro TPM2\n" #: gnutls.c:1348 msgid "Failed to interpret PEM file\n" msgstr "Selhala interpretace PEM souboru\n" #: gnutls.c:1367 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Selhalo nahrání PKCS#1 soukromého klíče: %s\n" #: gnutls.c:1380 gnutls.c:1394 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Selhalo nahrání soukromého klíče jako PKCS#8: %s\n" #: gnutls.c:1402 gnutls.c:1435 openssl.c:1002 openssl.c:1012 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Selhalo dešifrování PKCS#8 souboru certifikátu\n" #: gnutls.c:1427 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Selhalo zjištění typu soukromého klíče %s\n" #: gnutls.c:1439 openssl.c:1008 msgid "Enter PKCS#8 pass phrase:" msgstr "Vložte heslo k PKCS#8:" #: gnutls.c:1455 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Nezdařilo se získání ID klíče: %s\n" #: gnutls.c:1500 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Chyba podpisu testovacích dat soukromým klíčem: %s\n" #: gnutls.c:1515 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Chyba ověření podpisu proti certifikátu: %s\n" #: gnutls.c:1540 msgid "No SSL certificate found to match private key\n" msgstr "Nebyl nalezen žádný SSL certifikát odpovídající soukromému klíči\n" #: gnutls.c:1552 openssl.c:560 openssl.c:709 #, c-format msgid "Using client certificate '%s'\n" msgstr "Používá se certifikát klienta „%s“\n" #: gnutls.c:1559 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "Nastavení seznamu odvolaných certifikátů selhalo: %s\n" #: gnutls.c:1580 gnutls.c:1590 msgid "Failed to allocate memory for certificate\n" msgstr "Nepodařilo se přidělit paměť pro certifikát\n" #: gnutls.c:1626 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" "POZOR: GnuTLS vrátilo nekorektní ceritifkáty vydavatele; autentizace může " "selhat!\n" #: gnutls.c:1649 msgid "Got no issuer from PKCS#11\n" msgstr "Z PKCS#11 nebyl získán žádný vydavatel\n" #: gnutls.c:1654 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "Získána další CA „%s“ z PKCS11\n" #: gnutls.c:1680 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Selhala alokace paměti pro podpůrné certifikáty\n" #: gnutls.c:1703 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Přidává se podpůrná CA „%s“\n" #: gnutls.c:1725 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "Soukromý klíč nejspíš nepodporuje RSA-PSS. Vypíná se TLSv1.3\n" #: gnutls.c:1749 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Nastavení certifikátu selhalo: %s\n" #: gnutls.c:1942 msgid "Server presented no certificate\n" msgstr "Server nepředložil žádný certifikát\n" #: gnutls.c:1950 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" "Chyba při porovnání certifikátu serveru v rámci opětovného navázání spojení: " "%s\n" #: gnutls.c:1955 openssl.c:1515 msgid "Server presented different cert on rehandshake\n" msgstr "Server při opětovném navazování spojení předložil jiný certifikát\n" #: gnutls.c:1960 openssl.c:1518 msgid "Server presented identical cert on rehandshake\n" msgstr "Server při opětovném navazování spojení předložil stejný certifikát\n" #: gnutls.c:1966 msgid "Error initialising X509 cert structure\n" msgstr "Chyba inicializace X509 struktury certifikátu\n" #: gnutls.c:1972 msgid "Error importing server's cert\n" msgstr "Chyba při importu certifikátu serveru\n" #: gnutls.c:1981 main.c:1794 msgid "Could not calculate hash of server's certificate\n" msgstr "Nelze vypočítat haš certifikátu serveru\n" #: gnutls.c:1986 msgid "Error checking server cert status\n" msgstr "Chyba kontroly stavu certifikátu serveru\n" #: gnutls.c:1991 msgid "certificate revoked" msgstr "odvolaný certifikát" #: gnutls.c:1993 msgid "signer not found" msgstr "podepisující nenalezen" #: gnutls.c:1995 msgid "signer not a CA certificate" msgstr "podepisující není certifikát CA" #: gnutls.c:1997 msgid "insecure algorithm" msgstr "ned;věryhodný algoritmus" #: gnutls.c:1999 msgid "certificate not yet activated" msgstr "certifikát ještě nebyl aktivován" #: gnutls.c:2001 msgid "certificate expired" msgstr "platnost certifikátu vypršela" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2006 msgid "signature verification failed" msgstr "selhalo ověření podpisu" #: gnutls.c:2055 openssl.c:1399 openssl.c:1551 msgid "certificate does not match hostname" msgstr "Osvědčení neodpovídá názvu hostitele" #: gnutls.c:2060 openssl.c:1398 openssl.c:1557 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "" "Ověření osvědčení serveru se nezdařilo: %s\n" "\n" #: gnutls.c:2127 msgid "Failed to allocate memory for cafile certs\n" msgstr "Selhala alokace paměti pro cafile certifikáty\n" #: gnutls.c:2148 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Selhalo čtení certifikátů ze souboru ca: %s\n" #: gnutls.c:2164 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Nepodařilo se otevřít soubor CA '%s': %s\n" #: gnutls.c:2177 openssl.c:1679 msgid "Loading certificate failed. Aborting.\n" msgstr "Nahrání osvědčení se nezdařilo. Ruší se.\n" #: gnutls.c:2238 #, c-format msgid "Failed to set TLS priority string (\"%s\"): %s\n" msgstr "Selhalo nastavení řetězce priority TLS („%s“): %s\n" #: gnutls.c:2250 openssl.c:1796 #, c-format msgid "SSL negotiation with %s\n" msgstr "Jednání SSL s %s\n" #: gnutls.c:2297 openssl.c:1822 msgid "SSL connection cancelled\n" msgstr "Spojení SSL bylo zrušeno\n" #: gnutls.c:2304 #, c-format msgid "SSL connection failure: %s\n" msgstr "Selhání spojení SSL: %s\n" #: gnutls.c:2313 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "GnuTLS skončilo nekritickou chybou při navazování spojení: %s\n" #: gnutls.c:2319 openssl.c:1839 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "Spojeno s HTTPS na %s\n" #: gnutls.c:2322 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "Opětovné navázání SSL na %s\n" #: gnutls.c:2484 openssl-pkcs11.c:199 #, c-format msgid "PIN required for %s" msgstr "Požadován PIN pro %s" #: gnutls.c:2488 openssl-pkcs11.c:202 msgid "Wrong PIN" msgstr "Nesprávný PIN" #: gnutls.c:2491 msgid "This is the final try before locking!" msgstr "Toto je poslední pokus před uzamčením!" #: gnutls.c:2493 msgid "Only a few tries left before locking!" msgstr "Do uzamčení zbývá pouze několik pokusů!" #: gnutls.c:2498 openssl-pkcs11.c:206 msgid "Enter PIN:" msgstr "Zadat PIN:" #: gnutls.c:2584 openssl.c:1969 msgid "Unsupported OATH HMAC algorithm\n" msgstr "Nepodporovaný algoritmus OATH HMAC\n" #: gnutls.c:2593 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "Nepodařilo se vypočítat OATH HMAC: %s\n" #: gnutls.c:2607 #, c-format msgid "ttls_pull_timeout_func %dms\n" msgstr "" #: gnutls.c:2650 openssl.c:2084 msgid "Established EAP-TTLS session\n" msgstr "" #: gnutls_tpm.c:54 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "Podpisová funkce TPM požadovala %d bajtů.\n" #: gnutls_tpm.c:61 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Selhalo vytvoření objektu haše TMP: %s\n" #: gnutls_tpm.c:68 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Selhalo nastavení hodnoty v objektu haše TMP: %s\n" #: gnutls_tpm.c:78 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "Podpisový haš TPM selhal: %s\n" #: gnutls_tpm.c:100 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Chyba při dekódování binárních data klíče TSS: %s\n" #: gnutls_tpm.c:108 gnutls_tpm.c:119 gnutls_tpm.c:132 msgid "Error in TSS key blob\n" msgstr "Chyba v binárních datech klíče TSS\n" #: gnutls_tpm.c:139 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Vytvoření kontextu TPM selhalo: %s\n" #: gnutls_tpm.c:146 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Připojení kontextu TPM selhalo: %s\n" #: gnutls_tpm.c:154 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Nahrání TPM SRK klíče selhalo:%s\n" #: gnutls_tpm.c:161 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Selhalo nahrání objektu politiky TPM SRK: %s\n" #: gnutls_tpm.c:182 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Nastavení TPM PIN kódu selhalo: %s\n" #: gnutls_tpm.c:198 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Selhalo načtení binárních dat klíče TPM: %s\n" #: gnutls_tpm.c:205 msgid "Enter TPM SRK PIN:" msgstr "Zadejte TPM SRK PIN:" #: gnutls_tpm.c:226 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Selhalo vytvoření objektu se zásadami pro klíč: %s\n" #: gnutls_tpm.c:234 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Selhalo přiřazení politiky klíči: %s\n" #: gnutls_tpm.c:240 msgid "Enter TPM key PIN:" msgstr "Zadat PIN TPM klíče: " #: gnutls_tpm.c:251 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Nastavení PIN klíče selhalo: %s\n" #: gnutls_tpm2.c:92 gnutls_tpm2_esys.c:474 gnutls_tpm2_ibm.c:419 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "Neznámá velikost TPM2 EC digest %d\n" #: gnutls_tpm2.c:198 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "Chyba při dekódování binárních dat klíče TSS2: %s\n" #: gnutls_tpm2.c:208 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "Selhalo vytvoření typu ASN.1 pro TPM2: %s\n" #: gnutls_tpm2.c:217 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "Selhalo dekódování ASN.1 klíče TPM2: %s\n" #: gnutls_tpm2.c:225 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" "Selhala analýza OID typu TPM2 klíče: %s\n" "\n" #: gnutls_tpm2.c:231 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "Klíč TPM2 je neznámého OID typu %s namísto %s\n" #: gnutls_tpm2.c:249 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "Selhalo zpracování rodiče klíče TPM2: %s\n" #: gnutls_tpm2.c:270 msgid "Failed to parse TPM2 pubkey element\n" msgstr "Selhalo zpracování prvku veřejného klíče TPM2\n" #: gnutls_tpm2.c:275 msgid "Failed to parse TPM2 privkey element\n" msgstr "Selhalo zpracování prvku soukromého klíče TPM2\n" #: gnutls_tpm2.c:280 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "Zpracován klíč TPM2 s rodičem %x, prázdné ověření %d\n" #: gnutls_tpm2.c:384 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "TPM2 digest je příliš velký: %d > %d\n" #: gnutls_tpm2_esys.c:173 msgid "TPM2 password too long; truncating\n" msgstr "Heslo TPM2 je příliš dlouhé, bude oříznuto\n" #: gnutls_tpm2_esys.c:189 msgid "owner" msgstr "vlastník" #: gnutls_tpm2_esys.c:190 msgid "null" msgstr "null" #: gnutls_tpm2_esys.c:191 msgid "endorsement" msgstr "schválení" #: gnutls_tpm2_esys.c:192 msgid "platform" msgstr "platforma" #: gnutls_tpm2_esys.c:196 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "Vytváří se primární klíč pod hierarchií %s.\n" #: gnutls_tpm2_esys.c:201 gnutls_tpm2_ibm.c:262 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "Zadejte heslo TPM2 %s hierarchie:" #: gnutls_tpm2_esys.c:209 gnutls_tpm2_esys.c:303 gnutls_tpm2_esys.c:374 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "Selhalo volání funkce Esys_TR_SetAuth z TPM2: 0x%x\n" #: gnutls_tpm2_esys.c:221 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "Selhalo ověření vlastníka při volání Esys_CreatePrimary z TPM2\n" #: gnutls_tpm2_esys.c:226 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "Selhalo volání funkce Esys_CreatePrimary z TPM2: 0x%x\n" #: gnutls_tpm2_esys.c:245 msgid "Establishing connection with TPM.\n" msgstr "Ustavuje se spojení s TPM.\n" #: gnutls_tpm2_esys.c:250 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "Selhalo volání funkce Esys_Initialize z TPM2: 0x%x\n" #: gnutls_tpm2_esys.c:258 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" "TPM2 už bylo spuštěno, proto se v tmp2tss.log objevuje falešné selhání.\n" #: gnutls_tpm2_esys.c:261 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "Selhalo volání funkce Esys_Startup z TPM2: 0x%x\n" #: gnutls_tpm2_esys.c:274 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" "Selhalo volání funkce Esys_TR_FromTPMPublic pro obsluhu 0x%x: 0x%x\n" "\n" #: gnutls_tpm2_esys.c:295 gnutls_tpm2_ibm.c:278 msgid "Enter TPM2 parent key password:" msgstr "Zadejte heslo rodičovského klíče TPM2:" #: gnutls_tpm2_esys.c:309 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "Načítají se binární data klíče TPM2, rodič %x.\n" #: gnutls_tpm2_esys.c:317 msgid "TPM2 Esys_Load auth failed\n" msgstr "Selhalo ověření při volání Esys_Load z TPM2\n" #: gnutls_tpm2_esys.c:323 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "Selhalo volání funkce Esys_Load z TPM2: 0x%x\n" #: gnutls_tpm2_esys.c:333 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" "Selhalo volání Esys_FlushContext z TPM2 pro vygenerování primárního klíče: 0x" "%x\n" #: gnutls_tpm2_esys.c:363 gnutls_tpm2_ibm.c:363 gnutls_tpm2_ibm.c:450 msgid "Enter TPM2 key password:" msgstr "Zadejte heslo klíče TPM2:" #: gnutls_tpm2_esys.c:395 #, c-format msgid "TPM2 RSA sign function called for %d bytes.\n" msgstr "Podpisová funkce TPM2 RSA požadovala %d bajtů.\n" #: gnutls_tpm2_esys.c:414 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "Selhalo ověření při volání Esys_RSA_Decrypt z TPM2\n" #: gnutls_tpm2_esys.c:420 gnutls_tpm2_esys.c:500 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "TPM2 selhalo při generování podpisu RSA: 0x%x\n" #: gnutls_tpm2_esys.c:464 gnutls_tpm2_ibm.c:405 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "Podpisová funkce TPM2 EC požadovala %d bajtů.\n" #: gnutls_tpm2_esys.c:494 msgid "TPM2 Esys_Sign auth failed\n" msgstr "Selhalo ověření pří volání Esys_Sign z TPM2\n" #: gnutls_tpm2_esys.c:532 gnutls_tpm2_ibm.c:485 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:546 gnutls_tpm2_ibm.c:502 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "Selhal import dat soukromého klíče TPM2: 0x%x\n" #: gnutls_tpm2_esys.c:555 gnutls_tpm2_ibm.c:512 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "Selhal import dat veřejného klíče TPM2: 0x%x\n" #: gnutls_tpm2_esys.c:569 gnutls_tpm2_ibm.c:523 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "Nepodporování typ %d klíče TPM2\n" #: gnutls_tpm2_ibm.c:54 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "Operace %s TPM2 selhala (%d): %s%s%s\n" #: gpst.c:226 #, c-format msgid "%s\n" msgstr "%s\n" #: gpst.c:229 #, c-format msgid "Challenge: %s\n" msgstr "Výzva: %s\n" #: gpst.c:412 #, c-format msgid "Unknown ESP MAC algorithm: %s" msgstr "" #: gpst.c:420 #, c-format msgid "Unknown ESP encryption algorithm: %s" msgstr "" #: gpst.c:486 #, c-format msgid "Session will expire after %d minutes.\n" msgstr "" #: gpst.c:489 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "Časový limit nečinnosti je %d minut.\n" #: gpst.c:495 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "Nestandartní cesta tunelu SSL: %s\n" #: gpst.c:499 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "Časový limit tunelu (interval obnovy klíče) je %d minut.\n" #: gpst.c:510 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" "Adresa brány v nastavení XML (%s) se liší od adresy externí brány (%s).\n" #: gpst.c:564 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "Nastavení GlobalProtect poslalo ipsec-mode=%s (očekáváno esp-tunnel)\n" #: gpst.c:573 oncp.c:835 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" "Klíče ESP jsou ignorovány, protože v tomto sestavení chybí podpora ESP\n" #: gpst.c:591 #, c-format msgid "" "Potential IPv6-related GlobalProtect config tag <%s>: %s\n" "This build does not support GlobalProtect IPv6 due to a lack of\n" "of information on how it is configured. Please report this\n" "to .\n" msgstr "" #: gpst.c:596 #, c-format msgid "Unknown GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:655 msgid "ESP disabled" msgstr "ESP zakázáno" #: gpst.c:657 msgid "No ESP keys received" msgstr "Nebyl přijat žádný klíč ESP" #: gpst.c:659 msgid "ESP support not available in this build" msgstr "Podpora ESP není v tomto sestavení k dispozici" #: gpst.c:663 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "Nebylo přijato žádné MTU. Vypočítáno %d pro %s%s\n" #: gpst.c:725 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "Připojuje se koncový bod tunelu HTTPS…\n" #: gpst.c:747 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "Chyba při získávání odpovědi HTTPS GET-tunnel.\n" #: gpst.c:756 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "Brána se odpojila ihned po požadavku GET-tunnel.\n" #: gpst.c:764 #, c-format msgid "Got inappropriate HTTP GET-tunnel response: %.*s\n" msgstr "Obdržena nevhodná odpověď HTTP GET-tunnel: %.*s\n" #: gpst.c:909 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" "VPN connectivity may be disabled or limited without HIP report submission.\n" "You need to provide a --csd-wrapper argument with the HIP report submission " "script.\n" msgstr "" "VAROVÁNÍ: Server si požádal o zaslání hlášení HIP s md5sum %s.\n" "Bez jeho zaslání může připojení VPN zůstat vypnuté nebo fungovat jen " "omezeně.\n" "Je potřeba zadat argument --csd-wrapper s odesílacím skriptem hlášení HIP.\n" #: gpst.c:919 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" "Chyba: Spuštění skriptu „HIP Report“ není na této platformě zatím " "implementováno.\n" #: gpst.c:948 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "Skript HIP „%s“ skončil neobvykle\n" #: gpst.c:953 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "Skript HIP „%s“ vrátil nenulový stav: %d\n" #: gpst.c:959 msgid "HIP report submission failed.\n" msgstr "Odeslání hlášení HIP selhalo.\n" #: gpst.c:961 msgid "HIP report submitted successfully.\n" msgstr "Hlášení HIP bylo úspěšně odesláno.\n" #: gpst.c:996 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "Selhalo spuštění skriptu HIP %s\n" #: gpst.c:1020 msgid "Gateway says HIP report submission is needed.\n" msgstr "Brána říká, že je zapotřebí odeslat hlášení HIP.\n" #: gpst.c:1026 msgid "Gateway says no HIP report submission is needed.\n" msgstr "Brána říká, že není zapotřebí odeslat hlášení HIP.\n" #: gpst.c:1053 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "Tunel ESP byl připojen, opouští se hlavní smyčka HTTPS.\n" #: gpst.c:1069 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "Selhalo připojení tunelu ESP, místo něj se použije HTTPS.\n" #: gpst.c:1105 #, c-format msgid "Packet receive error: %s\n" msgstr "Chyba při příjmu paketu: %s\n" #: gpst.c:1126 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" "Neočekávaná délka paketu. Funkce SSL_read vrátila %d (včetně 16 bajtů " "hlavičky), ale payload_len v hlavičce je %d\n" #: gpst.c:1136 msgid "Got GPST DPD/keepalive response\n" msgstr "Obdržena odpověď GPST DPD/keepalive\n" #: gpst.c:1140 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" "Bylo očekáváno 0000000000000000 jako posledních 8 bajtů v hlavičce paketu " "DPD/keepalive, ale obdrženo bylo:\n" #: gpst.c:1147 #, c-format msgid "Received IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1156 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" "Bylo očekáváno 0100000000000000 jako posledních 8 bajtů v hlavičce paketu, " "ale obdrženo bylo:\n" #: gpst.c:1164 msgid "Unknown packet. Header dump follows:\n" msgstr "Neznámý paket. Zde je výpis hlavičky:\n" #: gpst.c:1212 msgid "GlobalProtect rekey due\n" msgstr "Důvod obnovy klíče GLobalProtect\n" #: gpst.c:1217 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "Odhalování GPST mrtvého protějšku odhalilo mrtvý protějšek!\n" #: gpst.c:1237 msgid "Send GPST DPD/keepalive request\n" msgstr "Poslat požadavek GPST DPD/keepalive\n" #: gpst.c:1260 #, c-format msgid "Sending IPv%d data packet of %d bytes\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Chyba importu jména GSSAPI pro ověření:\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "Chyba generování odpovědi GSSAPI:\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "Pokus o ověření k proxy metodou GSSAPI\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "Pokus o ověření k serveru metodou GSSAPI '%s'\n" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "Ověření GSSAPI dokončeno\n" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "Příliš dlouhý token GSSAPI (%zd bajtů)\n" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "Odesílá se %zu bajtů tokenu GSSAPI\n" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "Selhalo odeslání autentizačního tokenu GSSAPI na proxy: %s\n" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "Selhalo získání autentizačního tokenu GSSAPI z proxy: %s\n" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "Server SOCKS ohlásil selhání kontextu GSSAPI\n" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "Neznámý stavový kód GSSAPI odpovědi (0x%02x) od serveru SOCKS\n" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "Získán token GSSAPI, %zu bajtů: %02x %02x %02x %02x\n" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "Posílá se vyjednání ochrany GSSAPI %zu bajtů\n" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "Selhalo poslání odpovědi na ochranu GSSAPI k proxy: %s\n" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "Selhalo získání odpovědi GSSAPI ochrany z proxy: %s\n" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "Získána odpověd GSSAPI ochrany %zu bajtů: %02x %02x %02x %02x\n" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "Neplatná odpověď GSSAPI ochrany z proxy (%zu bajtů)\n" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "Prosy SOCKS požaduje integritu zprávy, která není podporována\n" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "Proxy SOCKS požaduje důvěrnost zprávy, která není podporována\n" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "Proxy SOCKS požaduje neznámý typ ochrany 0x%02x\n" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "Pokus o ověření k proxy metodou HTTP Basic\n" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "Zkouší se ověření vůči serveru „%s“ metodou HTTP Basic\n" #: http-auth.c:200 http.c:1201 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "Tato verze OpenConnect byla sestavena bez podpory GSSAPI\n" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" "Proxy vyžaduje ověření Basic, které je ale ve výchozím nastavení zakázáno\n" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" "Server „%s“ požadoval ověření Basic, které je ale ve výchozím nastavení " "zakázáno\n" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "Žádná další ověřovací metoda k vyzkoušení\n" #: http.c:321 msgid "No memory for allocating cookies\n" msgstr "Žádná paměť pro přidělení sušenek\n" #: http.c:396 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Nepodařilo se zpracovat odpověď HTTP '%s'\n" #: http.c:402 #, c-format msgid "Got HTTP response: %s\n" msgstr "Obdržena odpověď HTTP: %s\n" #: http.c:410 msgid "Error processing HTTP response\n" msgstr "Chyba při zpracovávaní odpovědi HTTP\n" #: http.c:417 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Přehlíží se odpověď neznámého HTTP, řádek '%s'\n" #: http.c:437 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Nabídnuta neplatná sušenka: %s\n" #: http.c:457 msgid "SSL certificate authentication failed\n" msgstr "Ověření osvědčení SSL se nezdařilo\n" #: http.c:492 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Tělo odpovědi má zápornou velikost (%d)\n" #: http.c:503 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Neznámé kódování-přenosu: %s\n" #. Now the body, if there is one #: http.c:522 #, c-format msgid "HTTP body %s (%d)\n" msgstr "Tělo HTTP %s (%d)\n" #: http.c:538 http.c:568 msgid "Error reading HTTP response body\n" msgstr "Chyba při čtení těla odpovědi HTTP\n" #: http.c:551 msgid "Error fetching chunk header\n" msgstr "Chyba při natahování hlavičky kusu\n" #: http.c:579 msgid "Error fetching HTTP response body\n" msgstr "Chyba při natahování těla odpovědi HTTP\n" #: http.c:582 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "Chyba rozkouskovaném dekódování. Očekáváno '', obdrženo: '%s'" #: http.c:595 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Tělo HTTP 1.0 nelze přijmout bez zavření spojení\n" #: http.c:724 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Nepodařilo se zpracovat přesměrovanou adresu (URL) '%s': %s\n" #: http.c:748 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Nelze následovat přesměrování na non-https URL '%s'\n" #: http.c:776 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Přidělení nové cesty pro relativní přesměrování se nezdařilo: %s\n" #: http.c:1001 oncp.c:591 pulse.c:1292 #, c-format msgid "Unexpected %d result from server\n" msgstr "Neočekávaný výsledek %d od serveru\n" #: http.c:1049 msgid "request granted" msgstr "Požadavek schválen" #: http.c:1050 msgid "general failure" msgstr "Obecné selhání" #: http.c:1051 msgid "connection not allowed by ruleset" msgstr "Spojení podle souboru pravidel nepovoleno" #: http.c:1052 msgid "network unreachable" msgstr "Síť nedosažitelná" #: http.c:1053 msgid "host unreachable" msgstr "Hostitel nedosažitelný" #: http.c:1054 msgid "connection refused by destination host" msgstr "Spojení cílovým hostitelem odmítnuto" #: http.c:1055 msgid "TTL expired" msgstr "TTL vypršel" #: http.c:1056 msgid "command not supported / protocol error" msgstr "Příkaz nepodporován/chyba protokolu" #: http.c:1057 msgid "address type not supported" msgstr "Typ adresy nepodporován" #: http.c:1067 msgid "SOCKS server requested username/password but we have none\n" msgstr "" "Server SOCKS požadoval uživatelské jméno/heslo, ale žádné není k dispozici\n" #: http.c:1075 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "Uživatelské jméno/heslo pro ověření SOCKS musí být < 255 bajtů\n" #: http.c:1090 http.c:1153 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Chyba při zápisu požadavku na ověření do proxy SOCKS: %s\n" #: http.c:1098 http.c:1160 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Chyba při čtení odpovědi týkající se ověřen z proxy SOCKS: %s\n" #: http.c:1105 http.c:1166 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Neočekávaná odpověď týkající se ověřen z proxy SOCKS: %02x %02x\n" #: http.c:1111 msgid "Authenticated to SOCKS server using password\n" msgstr "Ověřeno vůči serveru SOCKS s použitím hesla\n" #: http.c:1115 msgid "Password authentication to SOCKS server failed\n" msgstr "Ověření vůči serveru SOCKS pomocí hesla selhalo\n" #: http.c:1178 http.c:1185 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "Server SOCSKS požadoval ověření GSSAPI\n" #: http.c:1191 msgid "SOCKS server requested password authentication\n" msgstr "Server SOCKS požadoval ověření heslem\n" #: http.c:1198 msgid "SOCKS server requires authentication\n" msgstr "Server SOCKS požaduje ověření\n" #: http.c:1207 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "Server SOCKS požadoval neznámý typ ověření %02x\n" #: http.c:1213 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Požadavek na spojení proxy SOCKS do %s:%d\n" #: http.c:1228 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Chyba při zápisu odpovědi spojení do proxy SOCKS: %s\n" #: http.c:1236 http.c:1278 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Chyba při čtení odpovědi spojení z proxy SOCKS: %s\n" #: http.c:1242 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Neočekávaná odpověď spojení z proxy SOCKS: %02x %02x...\n" #: http.c:1250 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "Chyba proxy SOCKS %02x: %s\n" #: http.c:1254 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "Chyba proxy SOCKS %02x\n" #: http.c:1271 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Neočekávaný typ adresy %02x v odpovědi spojení SOCKS\n" #: http.c:1294 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Požadavek na spojení proxy HTTP do %s:%d\n" #: http.c:1329 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Poslání požadavku na proxy se nezdařilo: %s\n" #: http.c:1352 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "Požadavek na SPOJENÍ proxy se nezdařil: %d\n" #: http.c:1371 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Neznámý typ proxy '%s'\n" #: http.c:1397 #, c-format msgid "Failed to parse proxy '%s'\n" msgstr "" #: http.c:1421 msgid "Only http or socks(5) proxies supported\n" msgstr "Podporovány pouze proxy HTTP nebo socks(5)\n" #: library.c:116 msgid "Cisco AnyConnect or openconnect" msgstr "Cisco AnyConnect nebo openconnect" #: library.c:117 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "Kompatibilní s Cisco AnyConnect SSL VPN a také s ocserv." #: library.c:133 msgid "Juniper Network Connect" msgstr "Juniper Network Connect" #: library.c:134 msgid "Compatible with Juniper Network Connect" msgstr "" #: library.c:152 msgid "Palo Alto Networks GlobalProtect" msgstr "Palo Alto Networks GlobalProtect" #: library.c:153 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "Kompatibilní s Palo Alto Networks (PAN) GlobalProtect SSL VPN" #: library.c:171 msgid "Pulse Connect Secure" msgstr "" #: library.c:172 msgid "Compatible with Pulse Connect Secure SSL VPN" msgstr "" #: library.c:234 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "Neznámý protokol VPN „%s“\n" #: library.c:256 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Přeloženo s knihovnou SSL bez podpory Cisco DTLS\n" #: library.c:683 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Nepodařilo se zpracovat URL serveru '%s'\n" #: library.c:689 msgid "Only https:// permitted for server URL\n" msgstr "Pro URL serveru je povoleno pouze https://\n" #: library.c:1084 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "Neznámý haš certifikátu: %s.\n" #: library.c:1113 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "Délka poskytnutého otisku je menší než požadovaná (%u).\n" #: library.c:1174 msgid "No form handler; cannot authenticate.\n" msgstr "Není čím zpracovat formulář; nelze autentizovat.\n" #: main.c:340 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "Volání CommandLineToArgvW() selhalo: %s\n" #: main.c:353 #, c-format msgid "Fatal error in command line handling\n" msgstr "Kritická chyba při zpracování příkazové řádky\n" #: main.c:388 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "Selhala funkce ReadConsole(): %s\n" #: main.c:401 #, c-format msgid "fgetws() failed: %s\n" msgstr "Selhala funkce fgetws(): %s\n" #: main.c:416 main.c:429 #, c-format msgid "Error converting console input: %s\n" msgstr "Chyba konverze vstupu konzole: %s\n" #: main.c:423 main.c:689 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Nezdařila se alokace řetězce ze standardního vstupu\n" #: main.c:584 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" "Pro pomoc s OpenConnect se prosím obraťte na webové stránky\n" " http://www.infradead.org/openconnect/mail.html\n" #: main.c:593 #, c-format msgid "Using OpenSSL. Features present:" msgstr "Používá se OpenSSSL. Dostupné vlastnosti:" #: main.c:595 #, c-format msgid "Using GnuTLS. Features present:" msgstr "Používá se GnuTLS. Dostupné vlastnosti:" #: main.c:608 msgid "OpenSSL ENGINE not present" msgstr "OpenSSL není k dispozici" #: main.c:647 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" "POZOR: program neobsahuje podporu DTLS a/nebo ESP. Projeví se to nižším " "výkonem.\n" #: main.c:657 #, c-format msgid "Supported protocols:" msgstr "Podporované protokoly:" #: main.c:659 main.c:675 msgid " (default)" msgstr "(výchozí)" #: main.c:672 msgid "Set VPN protocol" msgstr "Nastavit protokol VPN" #: main.c:713 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:754 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Nelze zpracovat tuto cestu „%s“ ke spustitelným souborům" #: main.c:760 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "Alokace cesty pro vpnc-script selhala\n" #: main.c:780 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "Přepsat název stroje „%s“ na „%s“\n" #: main.c:793 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Použití: openconnect [volby] \n" #: main.c:794 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" "Otevřený klient pro více protokolů VPN, verze %s\n" "\n" #: main.c:796 msgid "Read options from config file" msgstr "Načíst volby z konfiguračního souboru" #: main.c:797 msgid "Report version number" msgstr "Nahlásit číslo verze" #: main.c:798 msgid "Display help text" msgstr "Zobrazit text s nápovědou" #: main.c:802 msgid "Authentication" msgstr "Ověření" #: main.c:803 msgid "Set login username" msgstr "Nastavit přihlašovací uživatelské jméno" #: main.c:804 msgid "Disable password/SecurID authentication" msgstr "Zakázat ověření heslem/SecurID" #: main.c:805 msgid "Do not expect user input; exit if it is required" msgstr "Nečekat uživatelský vstup, ukončit pokud je požadováno" #: main.c:806 msgid "Read password from standard input" msgstr "Číst heslo ze standardního vstupu" #: main.c:807 msgid "Choose authentication login selection" msgstr "Vybrat autentizační skupinu" #: main.c:808 msgid "Provide authentication form responses" msgstr "Poskytnout odpovědi ověřovacího formuláře" #: main.c:809 msgid "Use SSL client certificate CERT" msgstr "Použít certifikát klienta SSL CERT" #: main.c:810 msgid "Use SSL private key file KEY" msgstr "Použít soubor KEY se soukromým klíčem SSL" #: main.c:811 msgid "Warn when certificate lifetime < DAYS" msgstr "Varovat, když je život certifikátu < DNY" #: main.c:812 msgid "Set login usergroup" msgstr "Nastavit uživatelskou skupinu přihlášení" #: main.c:813 msgid "Set key passphrase or TPM SRK PIN" msgstr "Nastavit heslovou frázi pro klíč nebo PIN pro TPM SRK" #: main.c:814 msgid "Key passphrase is fsid of file system" msgstr "Heslovou frází klíče je FSID souborového systému" #: main.c:815 msgid "Software token type: rsa, totp or hotp" msgstr "Typ softwarového tokenu: rsa, totp nebo hotp" #: main.c:816 msgid "Software token secret" msgstr "Heslo softwarového tokenu" #: main.c:818 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" "(POZNÁMKA: knihovna libstoken (RSA SecurID) je v tomto sestavení vypnuta)" #: main.c:821 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(POZNÁMKA: podpora Yubikey OATH je pro toto sestavení vypnuta)" #: main.c:824 msgid "Server validation" msgstr "Ověření serveru" #: main.c:825 msgid "Server's certificate SHA1 fingerprint" msgstr "SHA1 miniatura certifikátu serveru" #: main.c:826 msgid "Do not require server SSL cert to be valid" msgstr "Nepožadovat, aby byl certifikát SSL serveru platný" #: main.c:827 msgid "Disable default system certificate authorities" msgstr "Zakázat výchozí systémové certifikační autority" #: main.c:828 msgid "Cert file for server verification" msgstr "Soubor s certifikátem pro ověření serveru" #: main.c:830 msgid "Internet connectivity" msgstr "Připojení k Internetu" #: main.c:831 msgid "Set proxy server" msgstr "Nastavit proxy server" #: main.c:832 msgid "Set proxy authentication methods" msgstr "Nastavit ověřovací metodu proxy" #: main.c:833 msgid "Disable proxy" msgstr "Zakázat proxy" #: main.c:834 msgid "Use libproxy to automatically configure proxy" msgstr "Použít libproxy pro automatickou konfiguraci proxy" #: main.c:836 msgid "(NOTE: libproxy disabled in this build)" msgstr "POZNÁMKA: libproxy je v tomto sestavení zakázáno)" #: main.c:838 msgid "Connection retry timeout in seconds" msgstr "Časový limit v sekundách pro opakování připojení" #: main.c:839 msgid "Use IP when connecting to HOST" msgstr "Pro připojení k HOST použít IP" #: main.c:840 msgid "copy TOS / TCLASS when using DTLS" msgstr "Při použití DTLS zkopírovat TOS/TCLASS" #: main.c:841 msgid "Set local port for DTLS and ESP datagrams" msgstr "Nastavit místní port pro datagramy DTLS a ESP" #: main.c:843 msgid "Authentication (two-phase)" msgstr "Ověření (dvoufázové)" #: main.c:844 msgid "Use authentication cookie COOKIE" msgstr "Použít ověřovací cookie COOKIE" #: main.c:845 msgid "Read cookie from standard input" msgstr "Číst cookie ze standardního vstupu" #: main.c:846 msgid "Authenticate only and print login info" msgstr "Pouze autentizovat a vypsat informace o přihlášení" #: main.c:847 msgid "Fetch and print cookie only; don't connect" msgstr "Pouze získat a vypsat cookie: nepřipojovat se" #: main.c:848 msgid "Print cookie before connecting" msgstr "Před připojením vypsat cookie" #: main.c:851 msgid "Process control" msgstr "Správa procesu" #: main.c:852 msgid "Continue in background after startup" msgstr "Pokračovat po spuštění na pozadí" #: main.c:853 msgid "Write the daemon's PID to this file" msgstr "Zapsat PID služby do tohoto souboru" #: main.c:854 msgid "Drop privileges after connecting" msgstr "Po připojení zahodit oprávnění" #: main.c:857 msgid "Logging (two-phase)" msgstr "Ověření (dvoufázové)" #: main.c:859 msgid "Use syslog for progress messages" msgstr "Použít syslog pro záznam zpráv o průběhu" #: main.c:861 msgid "More output" msgstr "Podrobnější výstup" #: main.c:862 msgid "Less output" msgstr "Stručnější výstup" #: main.c:863 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "Uložit autentizační provoz HTTP (vyplývá z --verbose)" #: main.c:864 msgid "Prepend timestamp to progress messages" msgstr "Předřadit časové razítko ke zprávě o průběhu" #: main.c:866 msgid "VPN configuration script" msgstr "Skript pro nastavení VPN" #: main.c:867 msgid "Use IFNAME for tunnel interface" msgstr "Použít IFNAME jako rozhraní tunelu" #: main.c:868 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" "Příkazová řádka pro použití konfiguračního skriptu kompatibilního s vpnc" #: main.c:869 msgid "default" msgstr "výchozí" #: main.c:871 msgid "Pass traffic to 'script' program, not tun" msgstr "Posílat provoz do 'skriptu', ne rozhraní tun" #: main.c:874 msgid "Tunnel control" msgstr "Správa tunelu" #: main.c:875 msgid "Do not ask for IPv6 connectivity" msgstr "Nedotazovat se na IPv6 konektivitu" #: main.c:876 msgid "XML config file" msgstr "Soubor nastavení XML" #: main.c:877 msgid "Request MTU from server (legacy servers only)" msgstr "Vyžádat MTU od serveru (jen pro zastarelé servery)" #: main.c:878 msgid "Indicate path MTU to/from server" msgstr "Zjistit MTU cesty na/z serveru" #: main.c:879 msgid "Enable stateful compression (default is stateless only)" msgstr "Povolit stavovou komprimaci (výchozí je jen bezstavová)" #: main.c:880 msgid "Disable all compression" msgstr "Zakázat veškerou komprimaci" #: main.c:881 msgid "Set minimum Dead Peer Detection interval" msgstr "Nastavit nejmenší interval Dead Peer Detection" #: main.c:882 msgid "Require perfect forward secrecy" msgstr "Vyžaduje se perfect forward secrecy" #: main.c:883 msgid "Disable DTLS and ESP" msgstr "Zakázat DTLS a ESP" #: main.c:884 msgid "OpenSSL ciphers to support for DTLS" msgstr "Algoritmy OpenSSL podporované pro DTLS" #: main.c:885 msgid "Set packet queue limit to LEN pkts" msgstr "Nastavit limit fronty paketů na LEN paketů" #: main.c:887 msgid "Local system information" msgstr "Informace o místním systému" #: main.c:888 msgid "HTTP header User-Agent: field" msgstr "Pole User-Agent: HTTP hlavičky" #: main.c:889 msgid "Local hostname to advertise to server" msgstr "Místní název stroje, který bude oznámen serveru" #: main.c:890 msgid "OS type (linux,linux-64,win,...) to report" msgstr "Typ OS (linux, linux-64, mac, win, …) k nahlášení" #: main.c:891 msgid "reported version string during authentication" msgstr "řetězec verze oznámený během ověřování" #: main.c:892 msgid "default:" msgstr "výchozí:" #: main.c:895 msgid "Trojan binary (CSD) execution" msgstr "Binární (CSD) spuštění trojského koně" #: main.c:896 msgid "Drop privileges during trojan execution" msgstr "Zahodit oprávnění při spuštění trojana" #: main.c:897 msgid "Run SCRIPT instead of trojan binary" msgstr "Spusit SCRIPT místo programu trojan" #: main.c:900 msgid "Server bugs" msgstr "Chyby serveru" #: main.c:901 msgid "Disable HTTP connection re-use" msgstr "Vypnout přepoužití HTTP spojení" #: main.c:902 msgid "Do not attempt XML POST authentication" msgstr "Nepokoušet se o autentizaci XML POST" #: main.c:924 #, c-format msgid "Failed to allocate string\n" msgstr "Nepodařilo se alokovat řetězec\n" #: main.c:997 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Selhalo čtení řádky z konfiguračního souboru: %s\n" #: main.c:1037 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Nerozpoznaná volba na řádku %d: „%s“\n" #: main.c:1047 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Volba „%s“ nemůže mít argument na řádku %d\n" #: main.c:1051 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Volba '%s' vyžaduje argument na řádce %d\n" #: main.c:1076 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "Neplatný uživatel „%s“: %s\n" #: main.c:1086 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "Neplatné ID uživatele „%d“: %s\n" #: main.c:1130 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "POZOR: nelze nastavit národní prostředí: %s\n" #: main.c:1140 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "POZOR: Tato verze openconnect byla sestavena bez podpory\n" " iconv. Vypadá to, že používáte zastaralou znakovou sadu\n" " „%s“. Je třeba očekávat neobvyklé chování.\n" #: main.c:1147 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "POZOR: openconnect je ve verzi %s,\n" "ale verze knihovny libopenconnect je %s\n" #: main.c:1157 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Nepodařilo se alokovat strukturu vpninfo\n" #: main.c:1215 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "V konfiguračním souboru nelze použít volbu 'config'\n" #: main.c:1223 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Nelze otevřít konfigurační soubor '%s': %s\n" #: main.c:1239 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "Neplatný režim komprimace „%s“\n" #: main.c:1260 #, c-format msgid "Missing colon in resolve option\n" msgstr "Chybí dvojtečka ve volbě převodu\n" #: main.c:1265 #, c-format msgid "Failed to allocate memory\n" msgstr "Selhala alokace paměti\n" #: main.c:1349 main.c:1358 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d je příliš malé\n" #: main.c:1388 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Vypíná se přepoužití všech HTTP spojení kvůli předvolbě --no-http-" "keepalive.\n" "Pokud to pomůže, pošlete hlášení na adresu .\n" #: main.c:1394 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" "Volba --no-cert-check nebyla bezpečná a proto byla odstraněna.\n" "Opravte svůj serverový certifikát nebo mu důvěřujte pomocí --servercert.\n" #: main.c:1411 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Nulová délka fronty není povolena; použije se 1\n" #: main.c:1425 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect verze%s\n" #: main.c:1463 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Neplatný režim softwarového tokenu „%s“\n" #: main.c:1473 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "Neplatná identita OS \"%s\"\n" #: main.c:1506 #, c-format msgid "Too many arguments on command line\n" msgstr "Příliš mnoho argumentů v příkazové řádce\n" #: main.c:1509 #, c-format msgid "No server specified\n" msgstr "Nebyl zadán žádný server\n" #: main.c:1525 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "Tato verze openconnect byla sestavena bez podpory pro libproxy\n" #: main.c:1555 #, c-format msgid "Error opening cmd pipe\n" msgstr "Chyba otevření příkazové roury\n" #: main.c:1588 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "Nezdařilo se získat cookie WebVPN\n" #: main.c:1609 #, c-format msgid "Creating SSL connection failed\n" msgstr "Nepodařilo se vytvořit spojení SSL\n" #: main.c:1625 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "Nastavení UDP selhalo; bude použito SSL\n" #: main.c:1633 #, c-format msgid "Connected as %s%s%s, using SSL%s%s, with %s%s%s %s\n" msgstr "Spojeno jako %s%s%s, pomocí SSL%s%s, s %s%s%s %s\n" #: main.c:1639 msgid "disabled" msgstr "zakázáno" #: main.c:1639 msgid "in progress" msgstr "probíhá" #: main.c:1643 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "Neposkytnut žádný argument --script; DNS a nasměrování nenastaveno\n" #: main.c:1645 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Více na http://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:1658 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Nepodařilo se otevřít '%s' pro zápis: %s\n" #: main.c:1670 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Pokračuje se na pozadí; PID %d\n" #: main.c:1687 msgid "User requested reconnect\n" msgstr "Uživatel požadoval opětovné připojení\n" #: main.c:1695 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "Cookie byla odmítnuta při opětovném připojení, končí se.\n" #: main.c:1699 msgid "Session terminated by server; exiting.\n" msgstr "Sezení bylo uzavřeno serverem; končí se.\n" #: main.c:1703 msgid "User cancelled (SIGINT/SIGTERM); exiting.\n" msgstr "Přerušeno uživatelem (SIGINT/SIGTERM); končí se.\n" #: main.c:1707 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "Uživatel se odpojil od sezení (SIGHUP); končí se.\n" #: main.c:1711 msgid "Unknown error; exiting.\n" msgstr "Neznámá chyba; končí se.\n" #: main.c:1730 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Nepodařilo se otevřít %s pro zápis: %s\n" #: main.c:1738 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Nepodařilo se zapsat nastavení do %s: %s\n" #: main.c:1797 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "Osvědčení SSL serveru neodpovídá: %s\n" #: main.c:1816 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Pro osvědčení od serveru VPN \"%s\" se nepodařilo provést ověření.\n" "Důvod: %s\n" #: main.c:1819 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" "Jestli chcete tomuto serveru důvěřovat i do budoucna, zkuste přidat do " "příkazového řádku následující:\n" #: main.c:1820 #, c-format msgid " --servercert %s\n" msgstr " --servercert %s\n" #: main.c:1825 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Zadejte „%s“ pro přijetí, „%s“ pro zrušení; cokoliv jiného k zobrazení:" #: main.c:1826 main.c:1844 msgid "no" msgstr "Ne" #: main.c:1826 main.c:1832 msgid "yes" msgstr "Ano" #: main.c:1853 #, c-format msgid "Server key hash: %s\n" msgstr "Haš serverového klíče: %s\n" #: main.c:1887 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Výběr ověření „%s“ odpovídá více volbám\n" #: main.c:1890 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Výběr ověření \"%s\" nedostupný\n" #: main.c:1911 msgid "User input required in non-interactive mode\n" msgstr "Vyžadován uživatelský vstup v neinteraktivním režimu\n" #: main.c:2149 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Selhalo otevření souboru tokenu pro zápis: %s\n" #: main.c:2157 #, c-format msgid "Failed to write token: %s\n" msgstr "Selhal zápis tokenu: %s\n" #: main.c:2203 main.c:2224 #, c-format msgid "Soft token string is invalid\n" msgstr "Řetězec softwarového tokenu není platný\n" #: main.c:2206 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Nelze otevřít soubor ~/.stokenrc\n" #: main.c:2209 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "OpenConnect nebyl sestaven s podporou libstoken\n" #: main.c:2212 #, c-format msgid "General failure in libstoken\n" msgstr "Obecné selhání v knihovně libstoken\n" #: main.c:2227 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "OpenConnect nebyl sestaven s podporou liboath\n" #: main.c:2230 #, c-format msgid "General failure in liboath\n" msgstr "Obecné selhání v knihovně liboath\n" #: main.c:2241 #, c-format msgid "Yubikey token not found\n" msgstr "Token Yubikey nebyl nalezen\n" #: main.c:2244 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "OpenConnect nebyl sestaven s podporou Yubikey\n" #: main.c:2247 #, c-format msgid "General Yubikey failure: %s\n" msgstr "Obecné selhání Yubikey: %s\n" #: mainloop.c:127 #, c-format msgid "Set up tun script failed\n" msgstr "Selhalo nastavení skriptu tun\n" #: mainloop.c:134 #, c-format msgid "Set up tun device failed\n" msgstr "Selhalo nastavení zařízení tun\n" #: mainloop.c:265 msgid "Caller paused the connection\n" msgstr "Protistrana pozastavila připojení\n" #: mainloop.c:273 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Žádná práce k udělání; spánek po %d ms...\n" #: mainloop.c:294 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "Funkce WaitForMultipleObjects selhala: %s\n" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "Volání InitializeSecurityContext() selhalo: %lx\n" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "Volání AcquireCredentialsHandle() selhalo: %lx\n" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "Chyba při komunikaci s pomocným modulem ntlm_auth\n" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "Probíhá pokus o ověření HTTP NTLM k proxy (single-sign-on)\n" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "Zkouší se ověření HTTP NTLM k serveru „%s“ (single-sign-on)\n" #: ntlm.c:978 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "Probíhá pokus o ověření HTTP NTLMv%d k proxy\n" #: ntlm.c:982 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "Zkouší se ověření HTTP NTLMv%d k serveru „%s“\n" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "Neplatný řetězec base32 tokenu\n" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "Selhala alokace paměti pro dekódování tajemství OATH\n" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "Tato verze OpenConnect byla sestavena bez podpory PSKC\n" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "Kód tokenu INITAL v pořádku vygenerován\n" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "Kód tokenu NEXT v pořádku vygenerován\n" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "Server odmítá softwarový token; přepíná se na ruční vstup\n" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "Generuje se kód tokenu OATH TOTP\n" #: oath.c:565 msgid "Generating OATH HOTP token code\n" msgstr "Generuje se kód tokenu OATH HOTP\n" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "Neplatná cookie „%s“\n" #: oncp.c:160 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "Neočekávaná délka %d pro TLV %d/%d\n" #: oncp.c:166 pulse.c:402 #, c-format msgid "Received MTU %d from server\n" msgstr "Přijato MTU %d od serveru\n" #: oncp.c:175 pulse.c:285 pulse.c:343 #, c-format msgid "Received DNS server %s\n" msgstr "Přijat server DNS %s\n" #: oncp.c:186 pulse.c:411 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "Přijata doména DNS pro vyhledávání %.*s\n" #: oncp.c:201 #, c-format msgid "Received internal IP address %s\n" msgstr "Přijata interní adresa IP %s\n" #: oncp.c:210 pulse.c:276 #, c-format msgid "Received netmask %s\n" msgstr "Přijata síťová maska %s\n" #: oncp.c:219 pulse.c:426 #, c-format msgid "Received internal gateway address %s\n" msgstr "Přijata adresa interní brány %s\n" #: oncp.c:232 pulse.c:2001 #, c-format msgid "Received split include route %s\n" msgstr "Přijato rozdělení zahrnuté cesty %s\n" #: oncp.c:254 pulse.c:2014 #, c-format msgid "Received split exclude route %s\n" msgstr "Přijato rozdělení vyloučené cesty %s\n" #: oncp.c:274 pulse.c:300 #, c-format msgid "Received WINS server %s\n" msgstr "Přijt server WINS %s\n" #: oncp.c:297 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "Šifrování ESP: 0x%02x (%s)\n" #: oncp.c:316 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "ESP HMAC: 0x%02x (%s)\n" #: oncp.c:327 #, c-format msgid "ESP compression: %d\n" msgstr "Komprimace ESP: %d\n" #: oncp.c:335 pulse.c:506 #, c-format msgid "ESP port: %d\n" msgstr "Port ESP: %d\n" #: oncp.c:342 pulse.c:489 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "Životnost klíče ESP: %u bajtů\n" #: oncp.c:350 pulse.c:481 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "Životnost klíče ESP: %u vteřin\n" #: oncp.c:358 pulse.c:513 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "Návrat od ESP k SSL: %u sekund\n" #: oncp.c:366 pulse.c:497 #, c-format msgid "ESP replay protection: %d\n" msgstr "Ochrana opakování ESP: %d\n" #: oncp.c:374 pulse.c:529 pulse.c:2115 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "ESP SPI (odchozí): %x\n" #: oncp.c:383 pulse.c:538 pulse.c:2103 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "%d bajtů tajemství ESP\n" #: oncp.c:395 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "Neznámá skupina TLV %d atrib %d délka %d:%s\n" #: oncp.c:473 msgid "Failed to parse KMP header\n" msgstr "Selhala analýza hlavičky KMP\n" #: oncp.c:490 msgid "Failed to parse KMP message\n" msgstr "Selhala analýza zprávy KMP\n" #: oncp.c:496 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "Získána zpráva KMP %d délky %d\n" #: oncp.c:512 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "Přijato non-ESP TLV (skupina %d) v ESP KMP vyjednávání\n" #: oncp.c:577 oncp.c:609 oncp.c:747 msgid "Error creating oNCP negotiation request\n" msgstr "Chyba při vytváření požadavku vyjednávání oNCP\n" #: oncp.c:618 oncp.c:783 msgid "Short write in oNCP negotiation\n" msgstr "Krátký zápis v oNCP vyjednávání\n" #: oncp.c:631 oncp.c:666 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "Přečteno %d bajtů záznamu SSL\n" #: oncp.c:636 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "Neočekáváná odpověď délky %d po hostname paketu\n" #: oncp.c:643 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "Odpovědí serveru na paket hostname je chyba 0x%02x\n" #: oncp.c:670 msgid "Invalid packet waiting for KMP 301\n" msgstr "Neplatný paket čekající na KMP 301\n" #: oncp.c:683 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "Byla očekávána zpráva KMP 301 od serveru, ale získána %d\n" #: oncp.c:692 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "Zpráva KMP 301 od serveru je příliš dlouhá (%d bajtů)\n" #: oncp.c:698 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "Získána zpráva KMP 301 délky %d\n" #: oncp.c:705 msgid "Failed to read continuation record length\n" msgstr "Nepodařilo se přečíst délku pokračování záznamu\n" #: oncp.c:711 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "Záznam dalších %d bajtů je příliš dlouhý; očekáváno %d\n" #: oncp.c:720 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "Nepodařilo se přečíst pokračování záznamu délky %d\n" #: oncp.c:726 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "Načteno dalších %d bajtů KMP 301 zprávy\n" #: oncp.c:767 msgid "Error negotiating ESP keys\n" msgstr "Chyba vyjednávání klíčů ESP\n" #: oncp.c:776 msgid "oNCP negotiation request outgoing:\n" msgstr "Probíhá žádost o vyjednávání oNCP:\n" #: oncp.c:829 pulse.c:2372 msgid "new incoming" msgstr "nový příchozí" #: oncp.c:830 pulse.c:2373 msgid "new outgoing" msgstr "nový odchozí" #: oncp.c:855 msgid "Read only 1 byte of oNCP length field\n" msgstr "Byl přečten pouze 1 bajt oNCP pole délky\n" #: oncp.c:864 msgid "Server terminated connection (session expired)\n" msgstr "Server ukončil spojení (platnost spojení vypršela)\n" #: oncp.c:868 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "Server ukončil spojení (důvod: %d)\n" #: oncp.c:874 msgid "Server sent zero-length oNCP record\n" msgstr "Server odeslal prázdný oNCP záznam\n" #: oncp.c:969 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "Příchozí zpráva KMP %d délky %d (získáno %d)\n" #: oncp.c:972 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "Pokračuje zpracování KMP zprávy %d, aktuální délka %d ( získáno %d)\n" #: oncp.c:991 msgid "Unrecognised data packet\n" msgstr "Nerozpoznaný datový paket\n" #: oncp.c:1053 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "Neznámá zpráva KMP %d délky %d:\n" #: oncp.c:1058 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "… + dalších %d nepřijatých batjů\n" #: oncp.c:1073 pulse.c:2404 msgid "Packet outgoing:\n" msgstr "Paket odchozí:\n" #: oncp.c:1135 msgid "Sent ESP enable control packet\n" msgstr "Odeslán paket povolení kontroly ESP\n" #: oncp.c:1269 msgid "Logout successful.\n" msgstr "Úspěšně odhášeno.\n" #: openconnect-internal.h:1164 openconnect-internal.h:1172 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "CHYBA:%s() voláno s neplatným UTF-8 u argumentu „%s“\n" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "Nelze vypočítat režii DTLS pro %s\n" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "Selhalo generování náhodných klíčů\n" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "Selhalo vytvoření SSL_SESSION ASN.1 pro OpenSSL: %s\n" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "OpenSSL selhalo při analýze SSL_SESSION ASN.1\n" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "Inicializace DTLSv1 sezení se nepodařila\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "Příliš velká velikost ID aplikace\n" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "Zpětné volání PSK\n" #: openssl-dtls.c:366 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Inicializace DTLSv1 CTX se nepodařila\n" #: openssl-dtls.c:376 msgid "Set DTLS CTX version failed\n" msgstr "Nastavení verze DTLS CTX se nezdařilo\n" #: openssl-dtls.c:398 msgid "Failed to generate DTLS key\n" msgstr "Selhalo generování klíče DTLS\n" #: openssl-dtls.c:453 msgid "Set DTLS cipher list failed\n" msgstr "Nastavení seznamu šifrování DTLS se nezdařilo\n" #: openssl-dtls.c:479 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "Šifra DTLS '%s' nebyla nalezena\n" #: openssl-dtls.c:500 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "SSL_set_session() selhalo se starou verzí protokolu 0x%x\n" "Používáte verzi OpenSSL starší než 0.9.8m?\n" "Podívejte se na http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Použijte volbu pro příkazový řádek --no-dtls pro vyhnutí se této zprávě\n" #: openssl-dtls.c:533 msgid "SSL_set_session() failed\n" msgstr "Selhalo volání SSL_set_session()\n" #: openssl-dtls.c:606 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "DTLS spojení sestaveno (použito OpenSSL). Šifrování: %s\n" #: openssl-dtls.c:643 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" "Vaše OpenSSL je starší než to, které jste sestavil, takže DTLS může selhat!" #: openssl-dtls.c:694 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Důvodem je pravděpodobně počkození vašeho OpenSSL\n" "Viz http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: openssl-dtls.c:701 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "Podání ruky DTLS se nezdařilo: %d\n" #: openssl-esp.c:86 msgid "Failed to initialise ESP cipher:\n" msgstr "Selhala inicializace algoritmu ESP:\n" #: openssl-esp.c:100 msgid "Failed to initialize ESP HMAC\n" msgstr "Selhala inicializace ESP HMAC\n" #: openssl-esp.c:176 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "Selhalo nastavení dešifrovacího kontextu pro paket ESP: \n" #: openssl-esp.c:184 msgid "Failed to decrypt ESP packet:\n" msgstr "Selhalo dešifrování paketu ESP:\n" #: openssl-esp.c:200 msgid "Failed to encrypt ESP packet:\n" msgstr "Selhalo šifrování paketu ESP:\n" #: openssl-pkcs11.c:43 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "Vytvoření kontextu libp11 PKCS#11 selhalo:\n" #: openssl-pkcs11.c:49 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "Selhalo načtení modulu PKCS#11 poskytovatele (%s):\n" #: openssl-pkcs11.c:269 msgid "PIN locked\n" msgstr "PIN uzamčen\n" #: openssl-pkcs11.c:272 msgid "PIN expired\n" msgstr "PIN vypršel\n" #: openssl-pkcs11.c:275 msgid "Another user already logged in\n" msgstr "Už je přihlášen jiný uživatel\n" #: openssl-pkcs11.c:279 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "Neznámá chyba při přihlašování k tokenu PKCS#11\n" #: openssl-pkcs11.c:286 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "Přihlášen ke slotu PKCS#11 „%s“\n" #: openssl-pkcs11.c:300 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "Selhal výčet certifikátů ve slotu PKCS#11 „%s“\n" #: openssl-pkcs11.c:306 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "Nalezeno %d certifikátů ve slotu „%s“\n" #: openssl-pkcs11.c:342 openssl-pkcs11.c:565 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "Nepodařilo se analyzovat adresu URI PKCS#11 „%s“\n" #: openssl-pkcs11.c:349 openssl-pkcs11.c:575 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "Selhal výčet slotů PKCS#11\n" #: openssl-pkcs11.c:383 openssl-pkcs11.c:617 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "Přihlašuje se ke slotu PKCS#11 „%s“\n" #: openssl-pkcs11.c:393 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "Nezdařilo se vyhledání certifikátu PKCS#11 „%s“\n" #: openssl-pkcs11.c:401 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "Obsah X.509 certifikátu nebyl knihovnou libp11 získán\n" #: openssl-pkcs11.c:412 openssl.c:713 msgid "Failed to install certificate in OpenSSL context\n" msgstr "Selhala instalace certifikátu v kontextu OpenSSL\n" #: openssl-pkcs11.c:458 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "Selhal výčet klíčů ve slotu PKCS#11 „%s“\n" #: openssl-pkcs11.c:464 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "Nalezeno %d klíčů ve slotu „%s“\n" #: openssl-pkcs11.c:497 msgid "Certificate has no public key\n" msgstr "Certifikát klienta nemá žádý veřejný klíč\n" #: openssl-pkcs11.c:503 openssl-pkcs11.c:526 msgid "Certificate does not match private key\n" msgstr "Certifikát nevyhovuje žádnému soukromému klíči\n" #: openssl-pkcs11.c:506 msgid "Checking EC key matches cert\n" msgstr "Kontroluje se shoda klíče EC s certifikátem\n" #: openssl-pkcs11.c:510 msgid "Failed to allocate signature buffer\n" msgstr "Nepodařilo se alokovat vyrovnávací paměť pro podpis\n" #: openssl-pkcs11.c:520 msgid "Failed to sign dummy data to validate EC key\n" msgstr "Nezdařilo se podepsat fiktivní data kvůli ověření klíče EC\n" #: openssl-pkcs11.c:638 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "Nepodařilo se vyhledat klíč PKCS#11 „%s“\n" #: openssl-pkcs11.c:649 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "Selhalo vytvoření instance soukromého klíče z PKCS#11\n" #: openssl-pkcs11.c:678 msgid "Add key from PKCS#11 failed\n" msgstr "Přidání klíče z PKCS#11 se nepodařilo\n" #: openssl-pkcs11.c:710 openssl-pkcs11.c:716 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "Tato verze OpenConnect byla sestavena bez podpory PKCS#11\n" #: openssl.c:147 msgid "Failed to write to SSL socket\n" msgstr "Selhal zápis do soketu SSL\n" #: openssl.c:197 openssl.c:263 msgid "Failed to read from SSL socket\n" msgstr "Selhalo čtení ze soketu SSL\n" #: openssl.c:292 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" "Chyba při čtení SSL %d (server pravděpodobně zavřel spojení); Obnovuje se " "spojení.\n" #: openssl.c:317 #, c-format msgid "SSL_write failed: %d\n" msgstr "SSL_zápis se nezdařil: %d\n" #: openssl.c:389 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "Neobsloužený požadavek SSL UI typu %d\n" #: openssl.c:465 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "Heslo PEM je příliš dlouhé (%d >= %d)\n" #: openssl.c:498 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Zvláštní osvědčení od %s: '%s'\n" #: openssl.c:548 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Zpracování PKCS#12 se nezdařilo (podívejte se na chyby výše)\n" #: openssl.c:563 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS#12 neobsahoval žádné osvědčení!\n" #: openssl.c:572 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS#12 neobsahoval žádný soukromý klíč!\n" #: openssl.c:577 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:600 msgid "Can't load TPM engine.\n" msgstr "Nelze nahrát stroj TPM.\n" #: openssl.c:606 msgid "Failed to init TPM engine\n" msgstr "Nepodařilo se zapnout stroj TPM\n" #: openssl.c:616 msgid "Failed to set TPM SRK password\n" msgstr "Nepodařilo se nastavit heslo TPM SRK \n" #: openssl.c:630 msgid "Failed to load TPM private key\n" msgstr "Nepodařilo se nahrát soukromý klíč TPM\n" #: openssl.c:636 msgid "Add key from TPM failed\n" msgstr "Přidání klíče z TPM se nepodařilo\n" #: openssl.c:687 openssl.c:835 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Nepodařilo se otevřít soubor s osvědčením %s: %s\n" #: openssl.c:697 msgid "Loading certificate failed\n" msgstr "Nahrání osvědčení se nezdařilo\n" #: openssl.c:735 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" "Selhalo zpracování všech podpůrných certifikátů. Přesto se pokračuje…\n" #: openssl.c:748 msgid "PEM file" msgstr "Soubor PEM" #: openssl.c:777 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Selhlalo vytvoření BIO pro položku „%s“ v úložišti klíčů\n" #: openssl.c:802 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Nahrání soukromého klíče se nezdařilo (chybné heslo?)\n" #: openssl.c:808 msgid "Loading private key failed (see above errors)\n" msgstr "Nahrání soukromého klíče se nezdařilo (podívejte se na chyby výše)\n" #: openssl.c:858 msgid "Failed to load X509 certificate from keystore\n" msgstr "Selhalo nahrání X509 certifikátu z úložiště klíčů\n" #: openssl.c:864 msgid "Failed to use X509 certificate from keystore\n" msgstr "Selhalo použití X509 certifikátu z úložiště klíčů\n" #: openssl.c:896 msgid "Failed to use private key from keystore\n" msgstr "Selhalo použití soukromého klíče z úložiště klíčů\n" #: openssl.c:912 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Nepodařilo se otevřít soubor soukromý klíč %s: %s\n" #: openssl.c:936 openssl.c:951 openssl.c:972 openssl.c:1038 msgid "Loading private key failed\n" msgstr "Nahrávání soukromého klíče selhalo\n" #: openssl.c:1032 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "Nezdařil se převod PKCS#8 na OpenSSL EVP_PKEY\n" #: openssl.c:1049 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Nepodařilo se rozpoznat typ soukromého klíče v '%s'\n" #: openssl.c:1203 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Shodující se DNS alternativní název '%s'\n" #: openssl.c:1210 #, c-format msgid "No match for altname '%s'\n" msgstr "Žádná shoda pro alternativní název '%s'\n" #: openssl.c:1224 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "Osvědčení má GEN_IPADD alternativní název se špatnou délkou %d\n" #: openssl.c:1235 openssl.c:1381 #, c-format msgid "Matched %s address '%s'\n" msgstr "Shodující se adresa %s '%s'\n" #: openssl.c:1242 #, c-format msgid "No match for %s address '%s'\n" msgstr "Žádná shoda pro adresu %s '%s'\n" #: openssl.c:1284 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "URI '%s' má neprázdnou cestu; přehlíží se\n" #: openssl.c:1289 #, c-format msgid "Matched URI '%s'\n" msgstr "Shodující se URI '%s'\n" #: openssl.c:1300 #, c-format msgid "No match for URI '%s'\n" msgstr "Žádná shoda pro URI '%s'\n" #: openssl.c:1315 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "Žádný odpovídající alternativní název v osvědčení protějšku '%s'\n" #: openssl.c:1323 msgid "No subject name in peer cert!\n" msgstr "Žádný název předmětu v osvědčení protějšku!\n" #: openssl.c:1343 msgid "Failed to parse subject name in peer cert\n" msgstr "Nepodařilo se zpracovat název předmětu v osvědčení protějšku\n" #: openssl.c:1350 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Neshoda v předmětu osvědčení protějšku ('%s' != '%s')\n" #: openssl.c:1355 openssl.c:1389 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Odpovídající název předmětu osvědčení protějšku '%s'\n" #: openssl.c:1451 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Zvláštní osvědčení od cafile: '%s'\n" #: openssl.c:1589 msgid "Error in client cert notAfter field\n" msgstr "Chyba v poli notAfter osvědčení klienta\n" #: openssl.c:1602 msgid "" msgstr "" #: openssl.c:1655 msgid "Create TLSv1 CTX failed\n" msgstr "Vytvoření TLSv1 CTX se nezdařilo\n" #: openssl.c:1674 msgid "SSL certificate and key do not match\n" msgstr "Certifikát SSL a klíč k sobě napsují\n" #: openssl.c:1719 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Selhalo čtení certifikátů z CA souboru „%s“\n" #: openssl.c:1752 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Nepodařilo se otevřít soubor CA '%s'\n" #: openssl.c:1812 msgid "SSL connection failure\n" msgstr "Selhání spojení SSL\n" #: openssl.c:1975 msgid "Failed to calculate OATH HMAC\n" msgstr "Selhal výpočet OATH HMAC\n" #: openssl.c:2078 #, c-format msgid "EAP-TTLS negotiation with %s\n" msgstr "" #: openssl.c:2089 #, c-format msgid "EAP-TTLS connection failure %d\n" msgstr "" #: pulse.c:267 #, c-format msgid "Received internal Legacy IP address %s\n" msgstr "" #: pulse.c:315 pulse.c:332 pulse.c:351 pulse.c:374 msgid "Failed to handle IPv6 address\n" msgstr "" #: pulse.c:324 #, c-format msgid "Received internal IPv6 address %s\n" msgstr "" #: pulse.c:366 #, c-format msgid "Received IPv6 split include %s\n" msgstr "" #: pulse.c:389 #, c-format msgid "Received IPv6 split exclude %s\n" msgstr "" #: pulse.c:396 #, c-format msgid "Unexpected length %d for attr 0x%x\n" msgstr "" #: pulse.c:447 #, c-format msgid "ESP encryption: 0x%04x (%s)\n" msgstr "" #: pulse.c:471 #, c-format msgid "ESP HMAC: 0x%04x (%s)\n" msgstr "" #. Amusingly, this isn't enforced. It's client-only #: pulse.c:521 #, c-format msgid "ESP only: %d\n" msgstr "" #: pulse.c:563 #, c-format msgid "Unknown attr 0x%x len %d:%s\n" msgstr "" #: pulse.c:574 #, c-format msgid "Read %d bytes of IF-T/TLS record\n" msgstr "" #: pulse.c:591 msgid "Short write to IF-T/TLS\n" msgstr "" #: pulse.c:604 msgid "Error creating IF-T packet\n" msgstr "" #: pulse.c:624 msgid "Error creating EAP packet\n" msgstr "" #: pulse.c:659 pulse.c:1358 pulse.c:1421 msgid "Unexpected IF-T/TLS authentication challenge:\n" msgstr "" #: pulse.c:677 msgid "Unexpected EAP-TTLS payload:\n" msgstr "" #: pulse.c:710 #, c-format msgid "AVP 0x%x/0x%x:%s\n" msgstr "" #: pulse.c:712 #, c-format msgid "AVP %d:%s\n" msgstr "" #: pulse.c:779 msgid "Enter Pulse user realm:" msgstr "" #: pulse.c:784 pulse.c:827 msgid "Realm:" msgstr "" #: pulse.c:822 msgid "Choose Pulse user realm:" msgstr "" #: pulse.c:838 pulse.c:1487 pulse.c:1556 msgid "Failed to parse AVP\n" msgstr "" #: pulse.c:905 msgid "Session limit reached. Choose session to kill:\n" msgstr "" #: pulse.c:910 msgid "Session:" msgstr "" #: pulse.c:926 msgid "Failed to parse session list\n" msgstr "" #: pulse.c:1012 msgid "Enter secondary credentials:" msgstr "" #. Point to password prompt in case that's all we use #: pulse.c:1012 msgid "Enter user credentials:" msgstr "" #: pulse.c:1022 pulse.c:1115 msgid "Secondary username:" msgstr "" #: pulse.c:1022 pulse.c:1115 msgid "Username:" msgstr "" #: pulse.c:1032 stoken.c:89 msgid "Password:" msgstr "Heslo:" #: pulse.c:1032 msgid "Secondary password:" msgstr "" #: pulse.c:1105 msgid "Token code request:" msgstr "" #: pulse.c:1129 msgid "Please enter response:" msgstr "" #: pulse.c:1133 msgid "Please enter your passcode:" msgstr "" #: pulse.c:1135 msgid "Please enter your secondary token information:" msgstr "" #: pulse.c:1275 msgid "Error creating Pulse connection request\n" msgstr "" #: pulse.c:1318 msgid "Unexpected response to IF-T/TLS version negotiation:\n" msgstr "" #: pulse.c:1323 #, c-format msgid "IF-T/TLS version from server: %d\n" msgstr "" #: pulse.c:1449 msgid "Failed to establish EAP-TTLS session\n" msgstr "" #: pulse.c:1568 msgid "Server certificate mismatch. Aborting due to suspected MITM attack\n" msgstr "" #: pulse.c:1583 msgid "Authentication failure: Account locked out\n" msgstr "" #: pulse.c:1586 #, c-format msgid "Authentication failure: Code 0x%02x\n" msgstr "" #: pulse.c:1668 msgid "Unhandled Pulse authentication packet, or authentication failure\n" msgstr "" #: pulse.c:1684 msgid "Pulse authentication cookie not accepted\n" msgstr "" #: pulse.c:1690 msgid "Pulse realm entry\n" msgstr "" #: pulse.c:1696 msgid "Pulse realm choice\n" msgstr "" #: pulse.c:1703 #, c-format msgid "Pulse password auth request, code 0x%02x\n" msgstr "" #: pulse.c:1714 msgid "Pulse password general token code request\n" msgstr "" #: pulse.c:1725 #, c-format msgid "Pulse session limit, %d sessions\n" msgstr "" #: pulse.c:1734 msgid "Unhandled Pulse auth request\n" msgstr "" #: pulse.c:1771 msgid "Unexpected response instead of IF-T/TLS auth success:\n" msgstr "" #: pulse.c:1844 #, c-format msgid "Read %d bytes of IF-T/TLS EAP-TTLS record\n" msgstr "" #: pulse.c:1855 msgid "Bad EAP-TTLS packet\n" msgstr "" #: pulse.c:1968 msgid "Unexpected Pulse config packet:\n" msgstr "" #: pulse.c:2025 #, c-format msgid "Receive route of unknown type 0x%08x\n" msgstr "" #: pulse.c:2096 msgid "Invalid ESP config packet:\n" msgstr "" #: pulse.c:2108 msgid "Invalid ESP setup\n" msgstr "" #: pulse.c:2183 msgid "Bad IF-T/TLS packet when expecting configuration:\n" msgstr "" #: pulse.c:2191 msgid "Unexpected IF-T/TLS packet when expecting configuration.\n" msgstr "" #: pulse.c:2342 #, c-format msgid "Received data packet of %d bytes\n" msgstr "Přijat datový paket o velikosti %d bajtů\n" #: pulse.c:2364 msgid "ESP rekey failed\n" msgstr "" #: pulse.c:2388 msgid "Unknown Pulse packet\n" msgstr "" #: pulse.c:2566 #, c-format msgid "Sending IF-T/TLS data packet of %d bytes\n" msgstr "" #: script.c:130 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Zahodit špatné zahrnutí rozdělení: \"%s\"\n" #: script.c:134 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Zahodit špatné vyloučení rozdělení: \"%s\"\n" #: script.c:507 script.c:555 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Selhalo vytvoření skriptu „%s“ pro %s: %s\n" #: script.c:562 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "Skript „%s“ skončil neúspěšně (%x)\n" #: script.c:570 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Skript „%s“ vrátil chybu %d\n" #: ssl.c:108 msgid "Socket connect cancelled\n" msgstr "Připojení zásuvky bylo zrušeno\n" #: ssl.c:217 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "Nepodařilo se znovu spojit s proxy %s: %s\n" #: ssl.c:221 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "Nepodařilo se znovu spojit s hostitelem %s: %s\n" #: ssl.c:289 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Proxy z libproxy: %s://%s:%d/\n" #: ssl.c:317 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "getaddrinfo selhalo pro hostitele '%s': %s\n" #: ssl.c:326 ssl.c:451 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" "Opětovné připojení k DynDNS serveru s použitím IP adresy z mezipaměti\n" #: ssl.c:341 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Pokus o připojení k proxy %s%s%s:%s\n" #: ssl.c:342 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Pokus o připojení k serveru %s%s%s:%s\n" #: ssl.c:362 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "Připojen k %s%s%s:%s\n" #: ssl.c:374 msgid "Failed to allocate sockaddr storage\n" msgstr "Nepodařilo se přidělit skladiště sockaddr\n" #: ssl.c:416 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "Selhalo připojení k %s%s%s:%s: %s\n" #: ssl.c:434 msgid "Forgetting non-functional previous peer address\n" msgstr "Zapomíná se nefunkční adresa předchozího protějšku\n" #: ssl.c:446 #, c-format msgid "Failed to connect to host %s\n" msgstr "Nepodařilo se spojit se s hostitelem %s\n" #: ssl.c:465 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "Opětovné připojení k proxy %s\n" #: ssl.c:536 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:564 msgid "Could not obtain file system ID for passphrase\n" msgstr "K heslu nebylo možné získat ID souborového systému\n" #: ssl.c:575 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "Selhalo otevření souboru se soukromým klíčem „%s“: %s\n" #: ssl.c:603 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:694 msgid "No error" msgstr "Žádná chyba" #: ssl.c:695 msgid "Keystore locked" msgstr "Úložiště klíčů uzamčeno" #: ssl.c:696 msgid "Keystore uninitialized" msgstr "Neinicializované úložiště klíčů" #: ssl.c:697 msgid "System error" msgstr "Systémová chyba" #: ssl.c:698 msgid "Protocol error" msgstr "Chyba protokolu" #: ssl.c:699 msgid "Permission denied" msgstr "Přístup odepřen" #: ssl.c:700 msgid "Key not found" msgstr "Klíč nebyl nalezen" #: ssl.c:701 msgid "Value corrupted" msgstr "Porušená hodnota" #: ssl.c:702 msgid "Undefined action" msgstr "Nedefinovaná akce" #: ssl.c:706 msgid "Wrong password" msgstr "Chybné heslo" #: ssl.c:707 msgid "Unknown error" msgstr "Neznámá chyba" #: ssl.c:896 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "openconnect_fopen_utf8() použit s nepodporovaným režimem „%s“\n" #: ssl.c:931 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "Neznámá rodina protokolu %d. Nelze vytvořit adresu serveru UDP\n" #: ssl.c:950 msgid "Open UDP socket" msgstr "Otevřít zásuvku UDP" #: ssl.c:981 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "Neznámá rodina protokolu %d. Nelze použít přenos UDP\n" #: ssl.c:989 msgid "Bind UDP socket" msgstr "Otevřít soket UDP" #: ssl.c:996 msgid "Connect UDP socket\n" msgstr "Připojit soket UDP\n" #: ssl.c:1034 msgid "Cookie is no longer valid, ending session\n" msgstr "Doba platnosti cookie vypršela, sezení se ukončuje\n" #: ssl.c:1038 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "spánek %ds, zbývající oddechový čas %ds\n" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "Token SSPI je příliš dlouhý (%ld bajtů)\n" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "Odesílá se token SSPI délky %lu bajtů\n" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "Selhalo odeslání ověřovacího tokenu SSPI na proxy: %s\n" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "Selhalo získání ověřovacího tokenu SSPI od proxy: %s\n" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "Server SOCKS ohlásil selhání kontextu SSPI\n" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "Neznámý stavový kód odpovědi SSPI (0x%02x) od serveru SOCKS\n" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "Získán token SSPI délky %lu bajtů: %02x %02x %02x %02x\n" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "Volání QueryContextAttributes() selhalo: %lx\n" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "Volání EncryptMessage() selhalo: %lx\n" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "Výsledek volání EncryptMessage() je příliš dlouhý (%lu + %lu + %lu)\n" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "Posílá se vyjednání ochrany SSPI v délce %u bajtů\n" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "Selhalo odeslání odpovědi ochrany SSPI na proxy: %s\n" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "Selhalo získání odpovědi ochrany SSPI z proxy: %s\n" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "Získána odpověď ochrany SSPI v délce %d bajtů: %02x %02x %02x %02x\n" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "Volání DecryptMessage() selhalo: %lx\n" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "Neplatná odpověď ochrany SSPI od proxy (%lu bajtů)\n" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "Zadejte přihlašovací údaje pro odemčení softwarového tokenu." #: stoken.c:82 msgid "Device ID:" msgstr "ID zařízení:" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "Uživatel obešel softwarový token.\n" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "Všechna pole jsou povinná, zkusit znovu.\n" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "Obecné selhání v knihovně libstoken.\n" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "Chybné ID zařízení nebo heslo, zkustit znovu.\n" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "Inicializace softwarového tokenu byla úspěšná.\n" #: stoken.c:185 msgid "Enter software token PIN." msgstr "Zadejte PIN softwarového tokenu." #: stoken.c:189 msgid "PIN:" msgstr "PIN:" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "Neplatný formát PIN kódu, zkuste to znovu.\n" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "Generuje se kód tokenu RSA\n" #: tun-win32.c:76 msgid "Error accessing registry key for network adapters\n" msgstr "Chyba přístupu ke klíči registru pro síťové adaptéry\n" #: tun-win32.c:139 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "Neodpovídající rozhraní TAP „%s“ je ignorováno\n" #: tun-win32.c:154 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "Žádné adaptéry Windows-TAP nebyly nalezeny. Je nainstalován ovladač?\n" #: tun-win32.c:186 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" "GetAdapterIndex() selhala: %s\n" "Použije se znovu GetAdaptersInfo()\n" #: tun-win32.c:200 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "Selhala funkce GetAdaptersInfo(): %s\n" #: tun-win32.c:231 #, c-format msgid "Failed to open %s\n" msgstr "Nepodařilo se otevřít %s\n" #: tun-win32.c:236 #, c-format msgid "Opened tun device %s\n" msgstr "Otevřeno zařízení tun %s\n" #: tun-win32.c:244 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Nepodařilo se získat verzi ovladače TAP: %s\n" #: tun-win32.c:250 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Error: je požadován ovladač TAP-Windows ve verzi 9.9 nebo vyšší (nalezen %ld." "%ld)\n" #: tun-win32.c:271 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Selhalo nastavení IP adresy TAP: %s\n" #: tun-win32.c:283 tun-win32.c:406 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Selhalo nastavení stavu média TAP: %s\n" #: tun-win32.c:316 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "Zařízení TAP přerušilo spojení. Odpojuje se.\n" #: tun-win32.c:321 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Nepodařilo se číst ze zařízení TAP: %s\n" #: tun-win32.c:335 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Úplně selhalo čtení z TAP zařízení: %s\n" #: tun-win32.c:358 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "Do tun zapsáno %ld bytů\n" #: tun-win32.c:368 msgid "Waiting for tun write...\n" msgstr "Čeká se na zápis do tun…\n" #: tun-win32.c:371 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "Po čekání zapsáno %ld bytů do tun\n" #: tun-win32.c:378 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Nepodařilo se zapsat do zařízení TAP: %s\n" #: tun-win32.c:423 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "Spouštění tunelovacích skriptů není na Windows zatím podporováno\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Nelze otevřít /dev/tun pro tunelování" #: tun.c:92 msgid "Can't push IP" msgstr "Nelze protlačit IP" #: tun.c:102 msgid "Can't set ifname" msgstr "Nelze nastavit název rozhraní" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "Nelze otevřít %s: %s" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Nelze propojit %s pro IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "Otevřít /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Nepodařilo se vytvořit nové tun" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "Selhalo přepnutí popisovače souboru pro tun do režimu message-discard" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "Zařízení tun není na této platformě podporováno\n" #: tun.c:205 msgid "open net" msgstr "Otevřít síť" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Nepodařilo se otevřít zařízení tun: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "Nepodařilo se otevřít zařízení tun (TUNSETIFF): %s\n" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" "Pro konfiguraci prostředků místních sítí musí být openconnect spuštěn s " "právy uživatele root\n" "Více informací viz http://www.infradead.org/openconnect/nonroot.html for " "more information\n" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" "Nepatný název rozhraní „%s“; musí být ve tvaru „utun%%d“ nebo „tun%%d“\n" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "Selhalo otevření soketu SYSPROTO_CONTROL: %s\n" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "Selhal dotaz na utun control_id: %s\n" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "Nepodařilo se alokovat název zařízení utun\n" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "Selhalo připojení jednotky utun: %s\n" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Nepatný název rozhraní '%s'; musí odpovídat tun%%d'\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Nemohu otevřít %s: %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:479 #, c-format msgid "socketpair failed: %s\n" msgstr "spárování soketů selhal: %s\n" #: tun.c:484 #, c-format msgid "fork failed: %s\n" msgstr "rozvětvení selhalo: %s\n" #: tun.c:488 msgid "setpgid" msgstr "setpgid" #: tun.c:493 msgid "execl" msgstr "execl" #: tun.c:498 msgid "(script)" msgstr "(skript)" #: tun.c:566 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Selhal zápis příchozího paketu: %s\n" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "Selhalo otevření %s: %s\n" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "Selhalo volání fstat() %s: %s\n" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Selhala alokace %d bajtů pro %s\n" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "Selhalo čtení %s: %s\n" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Brát \"%s\" jako surové jméno hosta\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Selhal výpočet SHA1 stávajícího souboru\n" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "Soubor s nastavením XML SHA1: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Selhalo zpracování konfiguračního souboru %s ve formátu XML\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Počítač \"%s\" má adresu \"%s\"\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Počítač \"%s\" má UserGroup \"%s\"\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "Host \"%s\" není uveden v konfiguraci, brát jako surové jméno hosta\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "Nepodařilo se odeslat „%s“ do apletu ykneo-oath: %s\n" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "Neplatná krátká odpověď na „%s“ od apletu ykneo-oath\n" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "Selhala odpověď „%s“: %04x\n" #: yubikey.c:174 msgid "select applet command" msgstr "příkaz volby apletu" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "Nerozpoznaná odpověď od apletu ykneo-oath\n" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "Nalezen aplet ykneo-oath v%d.%d.%d.\n" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "Aplet Yubikey OATH vyžaduje PIN" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "Yubikey PIN:" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "Nepodařilo se vypočítat odemykací odpověď Yubikey\n" #: yubikey.c:274 msgid "unlock command" msgstr "příkaz odemčení" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "Zkouší se truncated-char PBKBF2 varianta Yubikey PINu\n" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "Vytvoření kontextu PC/SC selhalo: %s\n" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "Vytvořen kontext PCS/SC\n" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "Selhal dotaz do seznamu čteček: %s\n" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "Selhalo připojení k čtečce PC/SC „%s“: %s\n" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "Připojena čtečka PC/SC „%s“\n" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "Selhal pokus o získání výhradního přístupu ke čtečce „%s“: %s\n" #: yubikey.c:412 msgid "list keys command" msgstr "příkaz seznamu klíčů" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "Nalezeno %s/%s klíčů „%s“ v „%s“\n" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "Token „%s“ nebyl na Yubikey „%s“ nalezen. Hledá se jiný Yubikey…\n" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "Server odmítá token Yubikey; přepíná se na ruční vstup\n" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "Generuje se kód tokenu Yubikey\n" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "Selhal pokus o získání výhradního přístupu k Yubikey: %s\n" #: yubikey.c:619 msgid "calculate command" msgstr "příkaz výpočtu" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "Nerozpoznaná odpověď od Yubikey při generování kódu tokenu\n" #~ msgid "Failed to generate random keys for ESP:\n" #~ msgstr "Selhalo generování náhodných klíčů pro ESP:\n" #~ msgid "Compatible with Juniper Network Connect / Pulse Secure SSL VPN" #~ msgstr "Kompatibilní s Juniper Network Connect / Pulse Secure SSL VPN" #~ msgid "Sending data packet of %d bytes\n" #~ msgstr "Posílá se datový paket délky %d B\n" #~ msgid "Unknown ESP %s algorithm: %s" #~ msgstr "Neznámý algoritmu %s pro ESP: %s" #~ msgid "Failed to generate random keys for ESP: %s\n" #~ msgstr "Selhalo generování náhodných klíčů pro ESP: %s\n" #~ msgid "Failed to send DPD request (%d)\n" #~ msgstr "Nepodařilo se poslat požadavek DPD (%d)\n" #~ msgid "Initiating IPv6 MTU detection\n" #~ msgstr "Zahajuje se detekce IPv6 MTU\n" #~ msgid "Received MTU DPD probe (%u bytes of %u)\n" #~ msgstr "Sonda MTU DPD byla přijata (%u bajtů z %u)\n" #~ msgid "Timeout while waiting for DPD response; resending probe.\n" #~ msgstr "Vypršel časový limit čekání na DPD odpověď, posílá se nová sonda.\n" #~ msgid "Timeout while waiting for DPD response; trying %d\n" #~ msgstr "Vypršel časový limit čekání na DPD odpověď, zkouší se %d\n" #~ msgid "Sending MTU DPD probe (%u bytes, min=%u, max=%u)\n" #~ msgstr "Posílá se MTU DPD sonda (%u bajtů, min=%u, max=%u)\n" #~ msgid "Initiating IPv4 MTU detection (min=%d, max=%d)\n" #~ msgstr "Zahajuje se detekce IPv4 MTU (min=%d, max=%d)\n" openconnect-8.05/po/ar.po0000664000076400007640000025316713470043037017134 0ustar00dwoodhoudwoodhou00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: # osama7 , 2013 # osama7 , 2013 msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2019-05-18 10:44-0700\n" "PO-Revision-Date: 2014-02-19 09:05+0000\n" "Last-Translator: David Woodhouse \n" "Language-Team: Arabic (http://www.transifex.com/projects/p/meego/language/" "ar/)\n" "Language: ar\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=6; plural=n==0 ? 0 : n==1 ? 1 : n==2 ? 2 : n%100>=3 " "&& n%100<=10 ? 3 : n%100>=11 && n%100<=99 ? 4 : 5;\n" #: auth-globalprotect.c:108 #, c-format msgid "" "SAML login is required via %s to this URL:\n" "\t%s" msgstr "" #: auth-globalprotect.c:110 msgid "Please enter your username and password" msgstr "" #: auth-globalprotect.c:119 msgid "Username" msgstr "" #: auth-globalprotect.c:134 msgid "Password" msgstr "" #: auth-globalprotect.c:181 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:260 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:266 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:272 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:315 msgid "Please select GlobalProtect gateway." msgstr "" #: auth-globalprotect.c:325 msgid "GATEWAY:" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:379 #, c-format msgid "%d gateway servers available:\n" msgstr "" #: auth-globalprotect.c:400 #, c-format msgid " %s (%s)\n" msgstr "" #: auth-globalprotect.c:484 auth-juniper.c:730 auth.c:669 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth-globalprotect.c:584 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" #: auth-globalprotect.c:636 oncp.c:1266 msgid "Logout failed.\n" msgstr "" #: auth-globalprotect.c:638 msgid "Logout successful\n" msgstr "" #: auth-juniper.c:142 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:153 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:163 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:236 auth.c:408 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "لا يمكن التعامل بهذه الطريقة ='%s' العمل ='%s'\n" #: auth-juniper.c:267 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "" #: auth-juniper.c:337 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:359 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:397 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:411 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:418 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:425 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:432 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:439 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:445 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:452 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:481 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:650 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:667 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:675 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:713 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:716 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth.c:96 msgid "Form choice has no name\n" msgstr "النموذج ليس له أسم\n" #: auth.c:181 #, c-format msgid "name %s not input\n" msgstr "الأسم%s غير مدخل\n" #: auth.c:188 msgid "No input type in form\n" msgstr "لايوجد مدخلات في النموذج\n" #: auth.c:200 msgid "No input name in form\n" msgstr "لايوجد اسم مدخل في النموذج\n" #: auth.c:230 #, c-format msgid "Unknown input type %s in form\n" msgstr "شكل غير معروف مدخل %s في النموذج\n" #: auth.c:540 gpst.c:214 msgid "Empty response from server\n" msgstr "" #: auth.c:551 gpst.c:289 msgid "Failed to parse server response\n" msgstr "فشل في تحليل استجابة الملقم\n" #: auth.c:553 gpst.c:291 #, c-format msgid "Response was:%s\n" msgstr "الرد هو:%s\n" #: auth.c:575 msgid "Received when not expected.\n" msgstr "" #: auth.c:603 msgid "XML response has no \"auth\" node\n" msgstr "" #: auth.c:636 msgid "Asked for password but '--no-passwd' set\n" msgstr "طلب لكلمة المرور ولكن '- لايوجد كلمة مرور' معينة\n" #: auth.c:925 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:931 cstp.c:335 http.c:916 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "" #: auth.c:952 msgid "Failed to send GET request for new config\n" msgstr "" #: auth.c:976 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" #: auth.c:981 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:992 auth.c:1044 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" #: auth.c:1003 mainloop.c:144 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "" #: auth.c:1010 mainloop.c:151 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "" #: auth.c:1017 mainloop.c:158 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "" #: auth.c:1024 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "" #: auth.c:1031 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "" #: auth.c:1053 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:1060 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" #: auth.c:1067 msgid "Trying to run Linux CSD trojan script.\n" msgstr "" #: auth.c:1094 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1102 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "" #: auth.c:1111 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "" #: auth.c:1141 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" #: auth.c:1189 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "" #: auth.c:1221 msgid "Unknown response from server\n" msgstr "" #: auth.c:1342 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1346 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" #: auth.c:1362 msgid "XML POST enabled\n" msgstr "" #: auth.c:1405 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "" #: compat.c:207 #, c-format msgid "(error 0x%lx)" msgstr "" #: compat.c:210 msgid "(Error while describing error!)" msgstr "" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:112 gpst.c:341 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "" #: cstp.c:134 gpst.c:360 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "" #: cstp.c:281 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:312 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:328 http.c:384 msgid "Error fetching HTTPS response\n" msgstr "" #: cstp.c:355 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "" #: cstp.c:360 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "" #: cstp.c:367 #, c-format msgid "Got CONNECT response: %s\n" msgstr "" #: cstp.c:396 cstp.c:404 msgid "No memory for options\n" msgstr "" #: cstp.c:413 http.c:444 msgid "" msgstr "" #: cstp.c:433 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "" #: cstp.c:450 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "" #: cstp.c:468 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:510 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "" #: cstp.c:585 msgid "No MTU received. Aborting\n" msgstr "" #: cstp.c:593 gpst.c:641 msgid "No IP address received. Aborting\n" msgstr "" #: cstp.c:599 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: cstp.c:605 gpst.c:648 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "" #: cstp.c:614 gpst.c:657 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" #: cstp.c:622 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "" #: cstp.c:630 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "" #: cstp.c:638 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "" #: cstp.c:640 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "" #: cstp.c:702 msgid "Compression setup failed\n" msgstr "" #: cstp.c:719 msgid "Allocation of deflate buffer failed\n" msgstr "" #: cstp.c:781 msgid "inflate failed\n" msgstr "" #: cstp.c:804 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:817 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:824 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:829 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:849 #, c-format msgid "deflate failed %d\n" msgstr "" #: cstp.c:922 dtls.c:281 dtls.c:740 esp.c:129 gpst.c:1042 mainloop.c:69 #: oncp.c:914 msgid "Allocation failed\n" msgstr "" #: cstp.c:933 gpst.c:1055 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: cstp.c:946 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" #: cstp.c:960 msgid "Got CSTP DPD request\n" msgstr "" #: cstp.c:966 msgid "Got CSTP DPD response\n" msgstr "" #: cstp.c:971 msgid "Got CSTP Keepalive\n" msgstr "" #: cstp.c:976 oncp.c:1003 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:993 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "" #: cstp.c:996 msgid "Received server disconnect\n" msgstr "" #: cstp.c:1004 msgid "Compressed packet received in !deflate mode\n" msgstr "" #: cstp.c:1013 msgid "received server terminate packet\n" msgstr "" #: cstp.c:1020 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "" #: cstp.c:1063 gpst.c:1142 oncp.c:1121 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1091 oncp.c:1155 msgid "CSTP rekey due\n" msgstr "" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1098 oncp.c:1162 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: cstp.c:1109 oncp.c:1173 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "" #: cstp.c:1113 gpst.c:1166 oncp.c:1091 oncp.c:1177 msgid "Reconnect failed\n" msgstr "" #: cstp.c:1129 oncp.c:1193 msgid "Send CSTP DPD\n" msgstr "" #: cstp.c:1141 oncp.c:1204 msgid "Send CSTP Keepalive\n" msgstr "" #: cstp.c:1166 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1177 oncp.c:1238 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:1216 #, c-format msgid "Send BYE packet: %s\n" msgstr "" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:113 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:119 msgid "No DTLS address\n" msgstr "" #. We probably didn't offer it any ciphers it liked #: dtls.c:126 msgid "Server offered no DTLS cipher option\n" msgstr "" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:133 msgid "No DTLS when connected via proxy\n" msgstr "" #: dtls.c:200 #, c-format msgid "DTLS option %s : %s\n" msgstr "" #: dtls.c:239 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:265 msgid "Attempt new DTLS connection\n" msgstr "" #: dtls.c:292 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "" #: dtls.c:306 msgid "Got DTLS DPD request\n" msgstr "" #: dtls.c:312 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "" #: dtls.c:316 msgid "Got DTLS DPD response\n" msgstr "" #: dtls.c:320 msgid "Got DTLS Keepalive\n" msgstr "" #: dtls.c:326 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:334 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "" #: dtls.c:356 msgid "DTLS rekey due\n" msgstr "" #: dtls.c:363 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: dtls.c:372 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "" #: dtls.c:378 msgid "Send DTLS DPD\n" msgstr "" #: dtls.c:383 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "" #: dtls.c:396 msgid "Send DTLS Keepalive\n" msgstr "" #: dtls.c:401 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" #: dtls.c:432 tun.c:541 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "" #: dtls.c:439 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "" #: dtls.c:443 msgid "UDP setsockopt" msgstr "" #: dtls.c:474 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "" #: dtls.c:488 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "" #: dtls.c:503 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "" #: dtls.c:531 #, c-format msgid "Initiating IPv4 MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:551 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" #: dtls.c:555 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" #: dtls.c:564 #, c-format msgid "Sending MTU DPD probe (%u bytes, min=%u, max=%u)\n" msgstr "" #: dtls.c:568 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "" #: dtls.c:582 dtls.c:690 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" #: dtls.c:594 #, c-format msgid "Timeout while waiting for DPD response; trying %d\n" msgstr "" #: dtls.c:601 dtls.c:682 msgid "Timeout while waiting for DPD response; resending probe.\n" msgstr "" #: dtls.c:608 dtls.c:709 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "" #: dtls.c:613 #, c-format msgid "Received MTU DPD probe (%u bytes of %u)\n" msgstr "" #: dtls.c:651 msgid "Initiating IPv6 MTU detection\n" msgstr "" #: dtls.c:666 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:670 #, c-format msgid "Failed to send DPD request (%d)\n" msgstr "" #: dtls.c:695 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:759 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "" #: dtls.c:762 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" #: esp.c:63 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:66 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:69 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:87 msgid "incoming" msgstr "" #: esp.c:88 msgid "outgoing" msgstr "" #: esp.c:90 esp.c:113 msgid "Send ESP probes\n" msgstr "" #: esp.c:138 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:155 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:161 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:174 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:181 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:193 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:202 msgid "ESP session established with server\n" msgstr "" #: esp.c:213 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:219 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:225 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:239 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:243 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:251 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:258 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:278 #, c-format msgid "Failed to encrypt ESP packet: %d\n" msgstr "" #: esp.c:294 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:301 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:307 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-dtls.c:190 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "" #: gnutls-dtls.c:198 msgid "Failed to generate DTLS priority string\n" msgstr "" #: gnutls-dtls.c:207 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "" #: gnutls-dtls.c:216 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "" #: gnutls-dtls.c:240 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "" #: gnutls-dtls.c:253 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:267 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:275 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "" #: gnutls-dtls.c:309 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "" #: gnutls-dtls.c:324 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "" #: gnutls-dtls.c:345 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "" #: gnutls-dtls.c:373 openssl-dtls.c:534 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "" #: gnutls-dtls.c:382 openssl-dtls.c:545 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "" #: gnutls-dtls.c:392 openssl-dtls.c:554 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" #: gnutls-dtls.c:405 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "" #: gnutls-dtls.c:416 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: gnutls-dtls.c:422 openssl-dtls.c:572 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "" #: gnutls-dtls.c:437 openssl-dtls.c:653 openssl-dtls.c:657 msgid "DTLS handshake timed out\n" msgstr "" #: gnutls-dtls.c:440 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "" #: gnutls-dtls.c:444 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:121 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:132 msgid "Failed to generate ESP IV\n" msgstr "" #: gnutls-esp.c:161 gnutls-esp.c:217 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:168 openssl-esp.c:192 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:180 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:209 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:95 openssl.c:154 msgid "SSL write cancelled\n" msgstr "" #: gnutls.c:99 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "" #: gnutls.c:145 gnutls.c:237 openssl.c:204 openssl.c:271 msgid "SSL read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:158 msgid "SSL socket closed uncleanly\n" msgstr "" #: gnutls.c:168 gnutls.c:246 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "" #: gnutls.c:266 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "" #: gnutls.c:302 #, c-format msgid "SSL send failed: %s\n" msgstr "" #: gnutls.c:315 msgid "Could not extract expiration time of certificate\n" msgstr "" #: gnutls.c:320 openssl.c:1592 msgid "Client certificate has expired at" msgstr "" #: gnutls.c:322 openssl.c:1597 msgid "Client certificate expires soon at" msgstr "" #: gnutls.c:371 openssl.c:771 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" #: gnutls.c:384 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "" #: gnutls.c:391 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" #: gnutls.c:400 msgid "Failed to allocate certificate buffer\n" msgstr "" #: gnutls.c:408 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "" #: gnutls.c:439 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "" #: gnutls.c:462 openssl.c:534 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "" #: gnutls.c:466 openssl.c:537 msgid "Enter PKCS#12 pass phrase:" msgstr "" #: gnutls.c:489 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "" #: gnutls.c:501 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:584 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "" #: gnutls.c:594 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "" #: gnutls.c:628 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "" #: gnutls.c:638 #, c-format msgid "MD5 hash error: %s\n" msgstr "" #: gnutls.c:696 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" #: gnutls.c:703 msgid "Cannot determine PEM encryption type\n" msgstr "" #: gnutls.c:716 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "" #: gnutls.c:741 gnutls.c:754 msgid "Invalid salt in encrypted PEM file\n" msgstr "" #: gnutls.c:778 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "" #: gnutls.c:786 msgid "Encrypted PEM file too short\n" msgstr "" #: gnutls.c:814 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" #: gnutls.c:825 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "" #: gnutls.c:877 msgid "Decrypting PEM key failed\n" msgstr "" #: gnutls.c:881 gnutls.c:1405 openssl.c:458 msgid "Enter PEM pass phrase:" msgstr "" #: gnutls.c:942 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:949 msgid "This binary built without PKCS#11 support\n" msgstr "" #: gnutls.c:993 openssl-pkcs11.c:407 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "" #: gnutls.c:994 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1012 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "" #: gnutls.c:1013 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1024 openssl.c:827 #, c-format msgid "Using certificate file %s\n" msgstr "" #: gnutls.c:1052 msgid "PKCS#11 file contained no certificate\n" msgstr "" #: gnutls.c:1078 msgid "No certificate found in file" msgstr "" #: gnutls.c:1083 #, c-format msgid "Loading certificate failed: %s\n" msgstr "" #: gnutls.c:1098 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1103 gnutls.c:1271 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "" #: gnutls.c:1114 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1125 gnutls.c:1219 gnutls.c:1247 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1130 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "" #: gnutls.c:1259 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "" #: gnutls.c:1266 openssl-pkcs11.c:644 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "" #: gnutls.c:1281 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" #: gnutls.c:1299 #, c-format msgid "Using private key file %s\n" msgstr "" #: gnutls.c:1310 openssl.c:651 msgid "This version of OpenConnect was built without TPM support\n" msgstr "" #: gnutls.c:1326 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1347 msgid "Failed to interpret PEM file\n" msgstr "" #: gnutls.c:1366 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "" #: gnutls.c:1379 gnutls.c:1393 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "" #: gnutls.c:1401 gnutls.c:1434 openssl.c:1002 openssl.c:1012 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "" #: gnutls.c:1426 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "" #: gnutls.c:1438 openssl.c:1008 msgid "Enter PKCS#8 pass phrase:" msgstr "" #: gnutls.c:1454 #, c-format msgid "Failed to get key ID: %s\n" msgstr "" #: gnutls.c:1499 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "" #: gnutls.c:1514 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "" #: gnutls.c:1539 msgid "No SSL certificate found to match private key\n" msgstr "" #: gnutls.c:1551 openssl.c:560 openssl.c:709 #, c-format msgid "Using client certificate '%s'\n" msgstr "" #: gnutls.c:1558 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "" #: gnutls.c:1579 gnutls.c:1589 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1625 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" #: gnutls.c:1648 msgid "Got no issuer from PKCS#11\n" msgstr "" #: gnutls.c:1653 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "" #: gnutls.c:1679 msgid "Failed to allocate memory for supporting certificates\n" msgstr "" #: gnutls.c:1702 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "" #: gnutls.c:1724 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1748 #, c-format msgid "Setting certificate failed: %s\n" msgstr "" #: gnutls.c:1941 msgid "Server presented no certificate\n" msgstr "" #: gnutls.c:1949 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" #: gnutls.c:1954 openssl.c:1515 msgid "Server presented different cert on rehandshake\n" msgstr "" #: gnutls.c:1959 openssl.c:1518 msgid "Server presented identical cert on rehandshake\n" msgstr "" #: gnutls.c:1965 msgid "Error initialising X509 cert structure\n" msgstr "" #: gnutls.c:1971 msgid "Error importing server's cert\n" msgstr "" #: gnutls.c:1980 main.c:1794 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:1985 msgid "Error checking server cert status\n" msgstr "" #: gnutls.c:1990 msgid "certificate revoked" msgstr "" #: gnutls.c:1992 msgid "signer not found" msgstr "" #: gnutls.c:1994 msgid "signer not a CA certificate" msgstr "" #: gnutls.c:1996 msgid "insecure algorithm" msgstr "" #: gnutls.c:1998 msgid "certificate not yet activated" msgstr "" #: gnutls.c:2000 msgid "certificate expired" msgstr "" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2005 msgid "signature verification failed" msgstr "" #: gnutls.c:2054 openssl.c:1399 openssl.c:1551 msgid "certificate does not match hostname" msgstr "" #: gnutls.c:2059 openssl.c:1398 openssl.c:1557 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "" #: gnutls.c:2126 msgid "Failed to allocate memory for cafile certs\n" msgstr "" #: gnutls.c:2147 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "" #: gnutls.c:2163 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "" #: gnutls.c:2176 openssl.c:1679 msgid "Loading certificate failed. Aborting.\n" msgstr "" #: gnutls.c:2237 #, c-format msgid "Failed to set TLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2249 openssl.c:1796 #, c-format msgid "SSL negotiation with %s\n" msgstr "" #: gnutls.c:2296 openssl.c:1822 msgid "SSL connection cancelled\n" msgstr "" #: gnutls.c:2303 #, c-format msgid "SSL connection failure: %s\n" msgstr "" #: gnutls.c:2312 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "" #: gnutls.c:2318 openssl.c:1839 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "" #: gnutls.c:2321 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "" #: gnutls.c:2483 openssl-pkcs11.c:199 #, c-format msgid "PIN required for %s" msgstr "" #: gnutls.c:2487 openssl-pkcs11.c:202 msgid "Wrong PIN" msgstr "" #: gnutls.c:2490 msgid "This is the final try before locking!" msgstr "" #: gnutls.c:2492 msgid "Only a few tries left before locking!" msgstr "" #: gnutls.c:2497 openssl-pkcs11.c:206 msgid "Enter PIN:" msgstr "" #: gnutls.c:2583 openssl.c:1967 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2592 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:54 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm.c:61 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:68 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:78 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "" #: gnutls_tpm.c:100 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "" #: gnutls_tpm.c:108 gnutls_tpm.c:119 gnutls_tpm.c:132 msgid "Error in TSS key blob\n" msgstr "" #: gnutls_tpm.c:139 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "" #: gnutls_tpm.c:146 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "" #: gnutls_tpm.c:154 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "" #: gnutls_tpm.c:161 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "" #: gnutls_tpm.c:182 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "" #: gnutls_tpm.c:198 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "" #: gnutls_tpm.c:205 msgid "Enter TPM SRK PIN:" msgstr "" #: gnutls_tpm.c:226 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "" #: gnutls_tpm.c:234 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "" #: gnutls_tpm.c:240 msgid "Enter TPM key PIN:" msgstr "" #: gnutls_tpm.c:251 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "" #: gnutls_tpm2.c:92 gnutls_tpm2_esys.c:474 gnutls_tpm2_ibm.c:419 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:198 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:208 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:217 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:225 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:231 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:249 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:270 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:275 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:384 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2_esys.c:173 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:189 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:190 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:191 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:192 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:196 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:201 gnutls_tpm2_ibm.c:262 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:209 gnutls_tpm2_esys.c:303 gnutls_tpm2_esys.c:374 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:221 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:226 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:245 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:250 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:258 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:261 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:274 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:295 gnutls_tpm2_ibm.c:278 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:309 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:317 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:323 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:333 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:363 gnutls_tpm2_ibm.c:363 gnutls_tpm2_ibm.c:450 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:395 #, c-format msgid "TPM2 RSA sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:414 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:420 gnutls_tpm2_esys.c:500 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:464 gnutls_tpm2_ibm.c:405 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:494 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:532 gnutls_tpm2_ibm.c:485 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:546 gnutls_tpm2_ibm.c:502 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:555 gnutls_tpm2_ibm.c:512 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:569 gnutls_tpm2_ibm.c:523 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:54 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:226 #, c-format msgid "%s\n" msgstr "" #: gpst.c:229 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:417 #, c-format msgid "Unknown ESP %s algorithm: %s" msgstr "" #: gpst.c:477 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: gpst.c:483 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:487 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:498 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:551 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:560 oncp.c:835 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: gpst.c:627 msgid "ESP disabled" msgstr "" #: gpst.c:629 msgid "No ESP keys received" msgstr "" #: gpst.c:631 msgid "ESP support not available in this build" msgstr "" #: gpst.c:635 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:680 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:702 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:711 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:719 #, c-format msgid "Got inappropriate HTTP GET-tunnel response: %.*s\n" msgstr "" #: gpst.c:861 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" "VPN connectivity may be disabled or limited without HIP report submission.\n" "You need to provide a --csd-wrapper argument with the HIP report submission " "script.\n" msgstr "" #: gpst.c:871 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:900 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:905 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:911 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:913 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:942 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:966 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:972 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:999 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1015 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1051 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1072 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1082 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1086 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1092 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: gpst.c:1101 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1109 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1157 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1162 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1182 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1202 #, c-format msgid "Sending data packet of %d bytes\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1165 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "" #: http.c:319 msgid "No memory for allocating cookies\n" msgstr "" #: http.c:394 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "" #: http.c:400 #, c-format msgid "Got HTTP response: %s\n" msgstr "" #: http.c:408 msgid "Error processing HTTP response\n" msgstr "" #: http.c:415 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "" #: http.c:435 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "" #: http.c:454 msgid "SSL certificate authentication failed\n" msgstr "" #: http.c:485 #, c-format msgid "Response body has negative size (%d)\n" msgstr "" #: http.c:496 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "" #. Now the body, if there is one #: http.c:515 #, c-format msgid "HTTP body %s (%d)\n" msgstr "" #: http.c:529 http.c:556 msgid "Error reading HTTP response body\n" msgstr "" #: http.c:542 msgid "Error fetching chunk header\n" msgstr "" #: http.c:566 msgid "Error fetching HTTP response body\n" msgstr "" #: http.c:569 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "" #: http.c:581 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "" #: http.c:708 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "" #: http.c:732 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "" #: http.c:760 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "" #: http.c:973 oncp.c:591 #, c-format msgid "Unexpected %d result from server\n" msgstr "" #: http.c:1021 msgid "request granted" msgstr "" #: http.c:1022 msgid "general failure" msgstr "" #: http.c:1023 msgid "connection not allowed by ruleset" msgstr "" #: http.c:1024 msgid "network unreachable" msgstr "" #: http.c:1025 msgid "host unreachable" msgstr "" #: http.c:1026 msgid "connection refused by destination host" msgstr "" #: http.c:1027 msgid "TTL expired" msgstr "" #: http.c:1028 msgid "command not supported / protocol error" msgstr "" #: http.c:1029 msgid "address type not supported" msgstr "" #: http.c:1039 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1047 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1062 http.c:1118 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" #: http.c:1070 http.c:1125 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" #: http.c:1077 http.c:1131 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" #: http.c:1083 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1087 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1143 http.c:1150 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1156 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1163 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1170 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1176 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "" #: http.c:1191 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" #: http.c:1199 http.c:1241 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "" #: http.c:1205 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "" #: http.c:1213 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "" #: http.c:1217 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "" #: http.c:1234 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "" #: http.c:1257 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "" #: http.c:1292 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "" #: http.c:1315 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1334 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "" #: http.c:1383 msgid "Only http or socks(5) proxies supported\n" msgstr "" #: library.c:112 msgid "Cisco AnyConnect or openconnect" msgstr "" #: library.c:113 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "" #: library.c:129 msgid "Juniper Network Connect" msgstr "" #: library.c:130 msgid "Compatible with Juniper Network Connect / Pulse Secure SSL VPN" msgstr "" #: library.c:148 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:149 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:211 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:233 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "" #: library.c:656 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "" #: library.c:662 msgid "Only https:// permitted for server URL\n" msgstr "" #: library.c:1056 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "" #: library.c:1085 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" #: library.c:1146 msgid "No form handler; cannot authenticate.\n" msgstr "" #: main.c:340 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:353 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:388 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:401 #, c-format msgid "fgetws() failed: %s\n" msgstr "" #: main.c:416 main.c:429 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:423 main.c:689 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "" #: main.c:584 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:593 #, c-format msgid "Using OpenSSL. Features present:" msgstr "" #: main.c:595 #, c-format msgid "Using GnuTLS. Features present:" msgstr "" #: main.c:608 msgid "OpenSSL ENGINE not present" msgstr "" #: main.c:647 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" #: main.c:657 #, c-format msgid "Supported protocols:" msgstr "" #: main.c:659 main.c:675 msgid " (default)" msgstr "" #: main.c:672 msgid "Set VPN protocol" msgstr "" #: main.c:713 msgid "fgets (stdin)" msgstr "" #: main.c:754 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:760 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:780 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "" #: main.c:793 #, c-format msgid "Usage: openconnect [options] \n" msgstr "" #: main.c:794 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" #: main.c:796 msgid "Read options from config file" msgstr "" #: main.c:797 msgid "Report version number" msgstr "" #: main.c:798 msgid "Display help text" msgstr "" #: main.c:802 msgid "Authentication" msgstr "" #: main.c:803 msgid "Set login username" msgstr "" #: main.c:804 msgid "Disable password/SecurID authentication" msgstr "" #: main.c:805 msgid "Do not expect user input; exit if it is required" msgstr "" #: main.c:806 msgid "Read password from standard input" msgstr "" #: main.c:807 msgid "Choose authentication login selection" msgstr "" #: main.c:808 msgid "Provide authentication form responses" msgstr "" #: main.c:809 msgid "Use SSL client certificate CERT" msgstr "" #: main.c:810 msgid "Use SSL private key file KEY" msgstr "" #: main.c:811 msgid "Warn when certificate lifetime < DAYS" msgstr "" #: main.c:812 msgid "Set login usergroup" msgstr "" #: main.c:813 msgid "Set key passphrase or TPM SRK PIN" msgstr "" #: main.c:814 msgid "Key passphrase is fsid of file system" msgstr "" #: main.c:815 msgid "Software token type: rsa, totp or hotp" msgstr "" #: main.c:816 msgid "Software token secret" msgstr "" #: main.c:818 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" #: main.c:821 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:824 msgid "Server validation" msgstr "" #: main.c:825 msgid "Server's certificate SHA1 fingerprint" msgstr "" #: main.c:826 msgid "Do not require server SSL cert to be valid" msgstr "" #: main.c:827 msgid "Disable default system certificate authorities" msgstr "" #: main.c:828 msgid "Cert file for server verification" msgstr "" #: main.c:830 msgid "Internet connectivity" msgstr "" #: main.c:831 msgid "Set proxy server" msgstr "" #: main.c:832 msgid "Set proxy authentication methods" msgstr "" #: main.c:833 msgid "Disable proxy" msgstr "" #: main.c:834 msgid "Use libproxy to automatically configure proxy" msgstr "" #: main.c:836 msgid "(NOTE: libproxy disabled in this build)" msgstr "" #: main.c:838 msgid "Connection retry timeout in seconds" msgstr "" #: main.c:839 msgid "Use IP when connecting to HOST" msgstr "" #: main.c:840 msgid "copy TOS / TCLASS when using DTLS" msgstr "" #: main.c:841 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:843 msgid "Authentication (two-phase)" msgstr "" #: main.c:844 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:845 msgid "Read cookie from standard input" msgstr "" #: main.c:846 msgid "Authenticate only and print login info" msgstr "" #: main.c:847 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:848 msgid "Print cookie before connecting" msgstr "" #: main.c:851 msgid "Process control" msgstr "" #: main.c:852 msgid "Continue in background after startup" msgstr "" #: main.c:853 msgid "Write the daemon's PID to this file" msgstr "" #: main.c:854 msgid "Drop privileges after connecting" msgstr "" #: main.c:857 msgid "Logging (two-phase)" msgstr "" #: main.c:859 msgid "Use syslog for progress messages" msgstr "" #: main.c:861 msgid "More output" msgstr "" #: main.c:862 msgid "Less output" msgstr "" #: main.c:863 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "" #: main.c:864 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:866 msgid "VPN configuration script" msgstr "" #: main.c:867 msgid "Use IFNAME for tunnel interface" msgstr "" #: main.c:868 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" #: main.c:869 msgid "default" msgstr "" #: main.c:871 msgid "Pass traffic to 'script' program, not tun" msgstr "" #: main.c:874 msgid "Tunnel control" msgstr "" #: main.c:875 msgid "Do not ask for IPv6 connectivity" msgstr "" #: main.c:876 msgid "XML config file" msgstr "" #: main.c:877 msgid "Request MTU from server (legacy servers only)" msgstr "" #: main.c:878 msgid "Indicate path MTU to/from server" msgstr "" #: main.c:879 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:880 msgid "Disable all compression" msgstr "" #: main.c:881 msgid "Set minimum Dead Peer Detection interval" msgstr "" #: main.c:882 msgid "Require perfect forward secrecy" msgstr "" #: main.c:883 msgid "Disable DTLS and ESP" msgstr "" #: main.c:884 msgid "OpenSSL ciphers to support for DTLS" msgstr "" #: main.c:885 msgid "Set packet queue limit to LEN pkts" msgstr "" #: main.c:887 msgid "Local system information" msgstr "" #: main.c:888 msgid "HTTP header User-Agent: field" msgstr "" #: main.c:889 msgid "Local hostname to advertise to server" msgstr "" #: main.c:890 msgid "OS type (linux,linux-64,win,...) to report" msgstr "" #: main.c:891 msgid "reported version string during authentication" msgstr "" #: main.c:892 msgid "default:" msgstr "" #: main.c:895 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:896 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:897 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:900 msgid "Server bugs" msgstr "" #: main.c:901 msgid "Disable HTTP connection re-use" msgstr "" #: main.c:902 msgid "Do not attempt XML POST authentication" msgstr "" #: main.c:924 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:997 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "" #: main.c:1037 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "" #: main.c:1047 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "" #: main.c:1051 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "" #: main.c:1076 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "" #: main.c:1086 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "" #: main.c:1130 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "" #: main.c:1140 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:1147 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:1157 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "" #: main.c:1215 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" #: main.c:1223 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "" #: main.c:1239 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1260 #, c-format msgid "Missing colon in resolve option\n" msgstr "" #: main.c:1265 #, c-format msgid "Failed to allocate memory\n" msgstr "" #: main.c:1349 main.c:1358 #, c-format msgid "MTU %d too small\n" msgstr "" #: main.c:1388 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" #: main.c:1394 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" #: main.c:1411 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "" #: main.c:1425 #, c-format msgid "OpenConnect version %s\n" msgstr "" #: main.c:1463 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "" #: main.c:1473 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "" #: main.c:1506 #, c-format msgid "Too many arguments on command line\n" msgstr "" #: main.c:1509 #, c-format msgid "No server specified\n" msgstr "" #: main.c:1525 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" #: main.c:1555 #, c-format msgid "Error opening cmd pipe\n" msgstr "" #: main.c:1588 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "" #: main.c:1609 #, c-format msgid "Creating SSL connection failed\n" msgstr "" #: main.c:1625 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:1633 #, c-format msgid "Connected as %s%s%s, using SSL%s%s, with %s%s%s %s\n" msgstr "" #: main.c:1639 msgid "disabled" msgstr "" #: main.c:1639 msgid "in progress" msgstr "" #: main.c:1643 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" #: main.c:1645 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "" #: main.c:1658 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "" #: main.c:1670 #, c-format msgid "Continuing in background; pid %d\n" msgstr "" #: main.c:1687 msgid "User requested reconnect\n" msgstr "" #: main.c:1695 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "" #: main.c:1699 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:1703 msgid "User cancelled (SIGINT/SIGTERM); exiting.\n" msgstr "" #: main.c:1707 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "" #: main.c:1711 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:1730 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "" #: main.c:1738 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "" #: main.c:1797 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "" #: main.c:1816 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" #: main.c:1819 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" #: main.c:1820 #, c-format msgid " --servercert %s\n" msgstr "" #: main.c:1825 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" #: main.c:1826 main.c:1844 msgid "no" msgstr "" #: main.c:1826 main.c:1832 msgid "yes" msgstr "" #: main.c:1853 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:1887 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:1890 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "خيار المصادقة \"%s\" غير متاح\n" #: main.c:1911 msgid "User input required in non-interactive mode\n" msgstr "" #: main.c:2149 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:2157 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:2203 main.c:2224 #, c-format msgid "Soft token string is invalid\n" msgstr "" #: main.c:2206 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "" #: main.c:2209 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "" #: main.c:2212 #, c-format msgid "General failure in libstoken\n" msgstr "" #: main.c:2227 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "" #: main.c:2230 #, c-format msgid "General failure in liboath\n" msgstr "" #: main.c:2241 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2244 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2247 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: mainloop.c:127 #, c-format msgid "Set up tun script failed\n" msgstr "" #: mainloop.c:134 #, c-format msgid "Set up tun device failed\n" msgstr "" #: mainloop.c:265 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:273 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "" #: mainloop.c:294 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:978 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:982 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:565 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:160 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:166 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:175 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:186 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:201 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:210 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:219 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:232 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:254 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:274 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:297 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:316 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:327 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:335 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:342 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:350 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:358 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:366 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:374 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:383 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:395 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:473 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:490 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:496 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:512 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:577 oncp.c:609 oncp.c:747 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:618 oncp.c:783 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:631 oncp.c:666 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:636 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:643 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:670 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:683 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:692 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "" #: oncp.c:698 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "" #: oncp.c:705 msgid "Failed to read continuation record length\n" msgstr "" #: oncp.c:711 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "" #: oncp.c:720 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "" #: oncp.c:726 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "" #: oncp.c:767 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:776 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:829 msgid "new incoming" msgstr "" #: oncp.c:830 msgid "new outgoing" msgstr "" #: oncp.c:855 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:864 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:868 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:874 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:969 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:972 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:991 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1053 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1058 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1073 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1134 msgid "Sent ESP enable control packet\n" msgstr "" #: oncp.c:1268 msgid "Logout successful.\n" msgstr "" #: openconnect-internal.h:1119 openconnect-internal.h:1127 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "" #: openssl-dtls.c:365 msgid "Initialise DTLSv1 CTX failed\n" msgstr "" #: openssl-dtls.c:378 msgid "Set DTLS CTX version failed\n" msgstr "" #: openssl-dtls.c:395 msgid "Failed to generate DTLS key\n" msgstr "" #: openssl-dtls.c:413 msgid "Set DTLS cipher list failed\n" msgstr "" #: openssl-dtls.c:439 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:460 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: openssl-dtls.c:493 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:566 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "" #: openssl-dtls.c:603 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" #: openssl-dtls.c:654 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" #: openssl-dtls.c:661 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "" #: openssl-esp.c:87 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:101 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:157 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:202 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:210 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:241 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:43 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:49 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "" #: openssl-pkcs11.c:269 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:272 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:275 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:279 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:286 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:300 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:306 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:342 openssl-pkcs11.c:565 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:349 openssl-pkcs11.c:575 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:383 openssl-pkcs11.c:617 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:393 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "" #: openssl-pkcs11.c:401 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:412 openssl.c:713 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl-pkcs11.c:458 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:464 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:497 msgid "Certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:503 openssl-pkcs11.c:526 msgid "Certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:506 msgid "Checking EC key matches cert\n" msgstr "" #: openssl-pkcs11.c:510 msgid "Failed to allocate signature buffer\n" msgstr "" #: openssl-pkcs11.c:520 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" #: openssl-pkcs11.c:638 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "" #: openssl-pkcs11.c:649 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:678 msgid "Add key from PKCS#11 failed\n" msgstr "" #: openssl-pkcs11.c:710 openssl-pkcs11.c:716 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:147 msgid "Failed to write to SSL socket\n" msgstr "" #: openssl.c:197 openssl.c:263 msgid "Failed to read from SSL socket\n" msgstr "" #: openssl.c:292 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" #: openssl.c:317 #, c-format msgid "SSL_write failed: %d\n" msgstr "" #: openssl.c:389 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:465 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "" #: openssl.c:498 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "" #: openssl.c:548 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:563 msgid "PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:572 msgid "PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:577 msgid "PKCS#12" msgstr "" #: openssl.c:600 msgid "Can't load TPM engine.\n" msgstr "" #: openssl.c:606 msgid "Failed to init TPM engine\n" msgstr "" #: openssl.c:616 msgid "Failed to set TPM SRK password\n" msgstr "" #: openssl.c:630 msgid "Failed to load TPM private key\n" msgstr "" #: openssl.c:636 msgid "Add key from TPM failed\n" msgstr "" #: openssl.c:687 openssl.c:835 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "" #: openssl.c:697 msgid "Loading certificate failed\n" msgstr "" #: openssl.c:735 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:748 msgid "PEM file" msgstr "" #: openssl.c:777 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "" #: openssl.c:802 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:808 msgid "Loading private key failed (see above errors)\n" msgstr "" #: openssl.c:858 msgid "Failed to load X509 certificate from keystore\n" msgstr "" #: openssl.c:864 msgid "Failed to use X509 certificate from keystore\n" msgstr "" #: openssl.c:896 msgid "Failed to use private key from keystore\n" msgstr "" #: openssl.c:912 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "" #: openssl.c:936 openssl.c:951 openssl.c:972 openssl.c:1038 msgid "Loading private key failed\n" msgstr "" #: openssl.c:1032 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1049 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "" #: openssl.c:1203 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "" #: openssl.c:1210 #, c-format msgid "No match for altname '%s'\n" msgstr "" #: openssl.c:1224 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" #: openssl.c:1235 openssl.c:1381 #, c-format msgid "Matched %s address '%s'\n" msgstr "" #: openssl.c:1242 #, c-format msgid "No match for %s address '%s'\n" msgstr "" #: openssl.c:1284 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "" #: openssl.c:1289 #, c-format msgid "Matched URI '%s'\n" msgstr "" #: openssl.c:1300 #, c-format msgid "No match for URI '%s'\n" msgstr "" #: openssl.c:1315 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" #: openssl.c:1323 msgid "No subject name in peer cert!\n" msgstr "" #: openssl.c:1343 msgid "Failed to parse subject name in peer cert\n" msgstr "" #: openssl.c:1350 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "" #: openssl.c:1355 openssl.c:1389 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "" #: openssl.c:1451 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "" #: openssl.c:1589 msgid "Error in client cert notAfter field\n" msgstr "" #: openssl.c:1602 msgid "" msgstr "" #: openssl.c:1655 msgid "Create TLSv1 CTX failed\n" msgstr "" #: openssl.c:1674 msgid "SSL certificate and key do not match\n" msgstr "" #: openssl.c:1719 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "" #: openssl.c:1752 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "" #: openssl.c:1812 msgid "SSL connection failure\n" msgstr "" #: openssl.c:1973 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:130 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "" #: script.c:134 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "" #: script.c:507 script.c:555 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "" #: script.c:562 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "" #: script.c:570 #, c-format msgid "Script '%s' returned error %d\n" msgstr "" #: ssl.c:108 msgid "Socket connect cancelled\n" msgstr "" #: ssl.c:217 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "" #: ssl.c:221 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "" #: ssl.c:289 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "" #: ssl.c:317 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "" #: ssl.c:326 ssl.c:451 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:341 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "" #: ssl.c:342 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "" #: ssl.c:362 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "" #: ssl.c:374 msgid "Failed to allocate sockaddr storage\n" msgstr "" #: ssl.c:416 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "" #: ssl.c:434 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:446 #, c-format msgid "Failed to connect to host %s\n" msgstr "" #: ssl.c:465 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:536 #, c-format msgid "statvfs: %s\n" msgstr "" #: ssl.c:564 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:575 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:603 #, c-format msgid "statfs: %s\n" msgstr "" #: ssl.c:694 msgid "No error" msgstr "" #: ssl.c:695 msgid "Keystore locked" msgstr "" #: ssl.c:696 msgid "Keystore uninitialized" msgstr "" #: ssl.c:697 msgid "System error" msgstr "" #: ssl.c:698 msgid "Protocol error" msgstr "" #: ssl.c:699 msgid "Permission denied" msgstr "" #: ssl.c:700 msgid "Key not found" msgstr "" #: ssl.c:701 msgid "Value corrupted" msgstr "" #: ssl.c:702 msgid "Undefined action" msgstr "" #: ssl.c:706 msgid "Wrong password" msgstr "" #: ssl.c:707 msgid "Unknown error" msgstr "" #: ssl.c:896 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:931 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:950 msgid "Open UDP socket" msgstr "" #: ssl.c:981 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:989 msgid "Bind UDP socket" msgstr "" #: ssl.c:996 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:1034 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:1038 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "" #: stoken.c:82 msgid "Device ID:" msgstr "" #: stoken.c:89 msgid "Password:" msgstr "" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "" #: stoken.c:185 msgid "Enter software token PIN." msgstr "" #: stoken.c:189 msgid "PIN:" msgstr "" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "" #: tun-win32.c:76 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:139 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "" #: tun-win32.c:154 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" #: tun-win32.c:186 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" #: tun-win32.c:200 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "" #: tun-win32.c:231 #, c-format msgid "Failed to open %s\n" msgstr "" #: tun-win32.c:236 #, c-format msgid "Opened tun device %s\n" msgstr "" #: tun-win32.c:244 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:250 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:271 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:283 tun-win32.c:406 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:316 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:321 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:335 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:358 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:368 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:371 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:423 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "" #: tun.c:92 msgid "Can't push IP" msgstr "" #: tun.c:102 msgid "Can't set ifname" msgstr "" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "" #: tun.c:139 msgid "open /dev/tun" msgstr "" #: tun.c:145 msgid "Failed to create new tun" msgstr "" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "" #: tun.c:205 msgid "open net" msgstr "" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "" #: tun.c:479 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:484 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:488 msgid "setpgid" msgstr "" #: tun.c:493 msgid "execl" msgstr "" #: tun.c:498 msgid "(script)" msgstr "" #: tun.c:566 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:174 msgid "select applet command" msgstr "" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:274 msgid "unlock command" msgstr "" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:412 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:619 msgid "calculate command" msgstr "" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-8.05/po/it.po0000664000076400007640000025445413470043037017146 0ustar00dwoodhoudwoodhou00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2019-05-18 10:44-0700\n" "PO-Revision-Date: 2011-09-22 22:31+0000\n" "Last-Translator: FULL NAME \n" "Language-Team: Italian (http://www.transifex.net/projects/p/meego/team/it/)\n" "Language: it\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1)\n" #: auth-globalprotect.c:108 #, c-format msgid "" "SAML login is required via %s to this URL:\n" "\t%s" msgstr "" #: auth-globalprotect.c:110 msgid "Please enter your username and password" msgstr "" #: auth-globalprotect.c:119 msgid "Username" msgstr "" #: auth-globalprotect.c:134 msgid "Password" msgstr "" #: auth-globalprotect.c:181 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:260 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:266 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:272 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:315 msgid "Please select GlobalProtect gateway." msgstr "" #: auth-globalprotect.c:325 msgid "GATEWAY:" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:379 #, c-format msgid "%d gateway servers available:\n" msgstr "" #: auth-globalprotect.c:400 #, c-format msgid " %s (%s)\n" msgstr "" #: auth-globalprotect.c:484 auth-juniper.c:730 auth.c:669 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth-globalprotect.c:584 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" #: auth-globalprotect.c:636 oncp.c:1266 msgid "Logout failed.\n" msgstr "" #: auth-globalprotect.c:638 msgid "Logout successful\n" msgstr "" #: auth-juniper.c:142 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:153 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:163 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:236 auth.c:408 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "" #: auth-juniper.c:267 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "" #: auth-juniper.c:337 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:359 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:397 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:411 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:418 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:425 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:432 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:439 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:445 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:452 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:481 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:650 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:667 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:675 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:713 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:716 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth.c:96 msgid "Form choice has no name\n" msgstr "" #: auth.c:181 #, c-format msgid "name %s not input\n" msgstr "" #: auth.c:188 msgid "No input type in form\n" msgstr "" #: auth.c:200 msgid "No input name in form\n" msgstr "" #: auth.c:230 #, c-format msgid "Unknown input type %s in form\n" msgstr "" #: auth.c:540 gpst.c:214 msgid "Empty response from server\n" msgstr "" #: auth.c:551 gpst.c:289 msgid "Failed to parse server response\n" msgstr "" #: auth.c:553 gpst.c:291 #, c-format msgid "Response was:%s\n" msgstr "" #: auth.c:575 msgid "Received when not expected.\n" msgstr "" #: auth.c:603 msgid "XML response has no \"auth\" node\n" msgstr "La risposta XML non ha un nodo «auth»\n" #: auth.c:636 msgid "Asked for password but '--no-passwd' set\n" msgstr "" #: auth.c:925 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:931 cstp.c:335 http.c:916 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "" #: auth.c:952 msgid "Failed to send GET request for new config\n" msgstr "" #: auth.c:976 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" #: auth.c:981 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:992 auth.c:1044 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" #: auth.c:1003 mainloop.c:144 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "" #: auth.c:1010 mainloop.c:151 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "" #: auth.c:1017 mainloop.c:158 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "" #: auth.c:1024 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "" #: auth.c:1031 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "" #: auth.c:1053 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:1060 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" #: auth.c:1067 msgid "Trying to run Linux CSD trojan script.\n" msgstr "" #: auth.c:1094 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1102 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "" #: auth.c:1111 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "" #: auth.c:1141 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" #: auth.c:1189 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "" #: auth.c:1221 msgid "Unknown response from server\n" msgstr "Risposta server sconosciuta\n" #: auth.c:1342 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1346 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" #: auth.c:1362 msgid "XML POST enabled\n" msgstr "POST XML abilitato\n" #: auth.c:1405 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "" #: compat.c:207 #, c-format msgid "(error 0x%lx)" msgstr "" #: compat.c:210 msgid "(Error while describing error!)" msgstr "" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:112 gpst.c:341 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "" #: cstp.c:134 gpst.c:360 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:281 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:312 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:328 http.c:384 msgid "Error fetching HTTPS response\n" msgstr "" #: cstp.c:355 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "Servizio VPN non disponibile; motivo: %s\n" #: cstp.c:360 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "" #: cstp.c:367 #, c-format msgid "Got CONNECT response: %s\n" msgstr "" #: cstp.c:396 cstp.c:404 msgid "No memory for options\n" msgstr "" #: cstp.c:413 http.c:444 msgid "" msgstr "" #: cstp.c:433 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "" #: cstp.c:450 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "" #: cstp.c:468 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:510 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "" #: cstp.c:585 msgid "No MTU received. Aborting\n" msgstr "" #: cstp.c:593 gpst.c:641 msgid "No IP address received. Aborting\n" msgstr "" #: cstp.c:599 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: cstp.c:605 gpst.c:648 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "" #: cstp.c:614 gpst.c:657 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" #: cstp.c:622 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "" #: cstp.c:630 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "" #: cstp.c:638 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "" #: cstp.c:640 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "" #: cstp.c:702 msgid "Compression setup failed\n" msgstr "" #: cstp.c:719 msgid "Allocation of deflate buffer failed\n" msgstr "" #: cstp.c:781 msgid "inflate failed\n" msgstr "" #: cstp.c:804 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:817 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:824 #, c-format msgid "Unknown compression type %d\n" msgstr "Tipo di compressione %d sconosciuto\n" #: cstp.c:829 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:849 #, c-format msgid "deflate failed %d\n" msgstr "" #: cstp.c:922 dtls.c:281 dtls.c:740 esp.c:129 gpst.c:1042 mainloop.c:69 #: oncp.c:914 msgid "Allocation failed\n" msgstr "Allocazione non riuscita\n" #: cstp.c:933 gpst.c:1055 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: cstp.c:946 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" #: cstp.c:960 msgid "Got CSTP DPD request\n" msgstr "" #: cstp.c:966 msgid "Got CSTP DPD response\n" msgstr "" #: cstp.c:971 msgid "Got CSTP Keepalive\n" msgstr "" #: cstp.c:976 oncp.c:1003 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:993 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "" #: cstp.c:996 msgid "Received server disconnect\n" msgstr "" #: cstp.c:1004 msgid "Compressed packet received in !deflate mode\n" msgstr "" #: cstp.c:1013 msgid "received server terminate packet\n" msgstr "" #: cstp.c:1020 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "" #: cstp.c:1063 gpst.c:1142 oncp.c:1121 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1091 oncp.c:1155 msgid "CSTP rekey due\n" msgstr "" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1098 oncp.c:1162 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: cstp.c:1109 oncp.c:1173 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "" #: cstp.c:1113 gpst.c:1166 oncp.c:1091 oncp.c:1177 msgid "Reconnect failed\n" msgstr "" #: cstp.c:1129 oncp.c:1193 msgid "Send CSTP DPD\n" msgstr "" #: cstp.c:1141 oncp.c:1204 msgid "Send CSTP Keepalive\n" msgstr "" #: cstp.c:1166 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1177 oncp.c:1238 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:1216 #, c-format msgid "Send BYE packet: %s\n" msgstr "" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:113 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:119 msgid "No DTLS address\n" msgstr "" #. We probably didn't offer it any ciphers it liked #: dtls.c:126 msgid "Server offered no DTLS cipher option\n" msgstr "" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:133 msgid "No DTLS when connected via proxy\n" msgstr "" #: dtls.c:200 #, c-format msgid "DTLS option %s : %s\n" msgstr "" #: dtls.c:239 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:265 msgid "Attempt new DTLS connection\n" msgstr "" #: dtls.c:292 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "" #: dtls.c:306 msgid "Got DTLS DPD request\n" msgstr "" #: dtls.c:312 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "" #: dtls.c:316 msgid "Got DTLS DPD response\n" msgstr "" #: dtls.c:320 msgid "Got DTLS Keepalive\n" msgstr "" #: dtls.c:326 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:334 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "" #: dtls.c:356 msgid "DTLS rekey due\n" msgstr "" #: dtls.c:363 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: dtls.c:372 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "" #: dtls.c:378 msgid "Send DTLS DPD\n" msgstr "" #: dtls.c:383 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "" #: dtls.c:396 msgid "Send DTLS Keepalive\n" msgstr "" #: dtls.c:401 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" #: dtls.c:432 tun.c:541 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "" #: dtls.c:439 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "" #: dtls.c:443 msgid "UDP setsockopt" msgstr "" #: dtls.c:474 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "" #: dtls.c:488 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "" #: dtls.c:503 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "" #: dtls.c:531 #, c-format msgid "Initiating IPv4 MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:551 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" #: dtls.c:555 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" #: dtls.c:564 #, c-format msgid "Sending MTU DPD probe (%u bytes, min=%u, max=%u)\n" msgstr "" #: dtls.c:568 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "" #: dtls.c:582 dtls.c:690 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" #: dtls.c:594 #, c-format msgid "Timeout while waiting for DPD response; trying %d\n" msgstr "" #: dtls.c:601 dtls.c:682 msgid "Timeout while waiting for DPD response; resending probe.\n" msgstr "" #: dtls.c:608 dtls.c:709 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "" #: dtls.c:613 #, c-format msgid "Received MTU DPD probe (%u bytes of %u)\n" msgstr "" #: dtls.c:651 msgid "Initiating IPv6 MTU detection\n" msgstr "" #: dtls.c:666 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:670 #, c-format msgid "Failed to send DPD request (%d)\n" msgstr "" #: dtls.c:695 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:759 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "" #: dtls.c:762 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" #: esp.c:63 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:66 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:69 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:87 msgid "incoming" msgstr "" #: esp.c:88 msgid "outgoing" msgstr "" #: esp.c:90 esp.c:113 msgid "Send ESP probes\n" msgstr "" #: esp.c:138 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:155 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:161 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:174 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:181 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:193 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:202 msgid "ESP session established with server\n" msgstr "" #: esp.c:213 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:219 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:225 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:239 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:243 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:251 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:258 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:278 #, c-format msgid "Failed to encrypt ESP packet: %d\n" msgstr "" #: esp.c:294 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:301 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:307 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-dtls.c:190 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "" #: gnutls-dtls.c:198 msgid "Failed to generate DTLS priority string\n" msgstr "" #: gnutls-dtls.c:207 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "" #: gnutls-dtls.c:216 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "" #: gnutls-dtls.c:240 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "" #: gnutls-dtls.c:253 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:267 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:275 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "" #: gnutls-dtls.c:309 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "" #: gnutls-dtls.c:324 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "" #: gnutls-dtls.c:345 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "" #: gnutls-dtls.c:373 openssl-dtls.c:534 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "" #: gnutls-dtls.c:382 openssl-dtls.c:545 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "" #: gnutls-dtls.c:392 openssl-dtls.c:554 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" #: gnutls-dtls.c:405 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "" #: gnutls-dtls.c:416 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: gnutls-dtls.c:422 openssl-dtls.c:572 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "" #: gnutls-dtls.c:437 openssl-dtls.c:653 openssl-dtls.c:657 msgid "DTLS handshake timed out\n" msgstr "" #: gnutls-dtls.c:440 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "" #: gnutls-dtls.c:444 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:121 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:132 msgid "Failed to generate ESP IV\n" msgstr "" #: gnutls-esp.c:161 gnutls-esp.c:217 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:168 openssl-esp.c:192 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:180 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:209 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:95 openssl.c:154 msgid "SSL write cancelled\n" msgstr "" #: gnutls.c:99 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "" #: gnutls.c:145 gnutls.c:237 openssl.c:204 openssl.c:271 msgid "SSL read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:158 msgid "SSL socket closed uncleanly\n" msgstr "" #: gnutls.c:168 gnutls.c:246 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "" #: gnutls.c:266 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "" #: gnutls.c:302 #, c-format msgid "SSL send failed: %s\n" msgstr "" #: gnutls.c:315 msgid "Could not extract expiration time of certificate\n" msgstr "" #: gnutls.c:320 openssl.c:1592 msgid "Client certificate has expired at" msgstr "" #: gnutls.c:322 openssl.c:1597 msgid "Client certificate expires soon at" msgstr "" #: gnutls.c:371 openssl.c:771 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" #: gnutls.c:384 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "" #: gnutls.c:391 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" #: gnutls.c:400 msgid "Failed to allocate certificate buffer\n" msgstr "" #: gnutls.c:408 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "" #: gnutls.c:439 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "" #: gnutls.c:462 openssl.c:534 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "" #: gnutls.c:466 openssl.c:537 msgid "Enter PKCS#12 pass phrase:" msgstr "" #: gnutls.c:489 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "" #: gnutls.c:501 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:584 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "" #: gnutls.c:594 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "" #: gnutls.c:628 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "" #: gnutls.c:638 #, c-format msgid "MD5 hash error: %s\n" msgstr "" #: gnutls.c:696 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" #: gnutls.c:703 msgid "Cannot determine PEM encryption type\n" msgstr "Impossibile determinare il tipo di cifratura PEM\n" #: gnutls.c:716 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "" #: gnutls.c:741 gnutls.c:754 msgid "Invalid salt in encrypted PEM file\n" msgstr "" #: gnutls.c:778 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "" #: gnutls.c:786 msgid "Encrypted PEM file too short\n" msgstr "" #: gnutls.c:814 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" #: gnutls.c:825 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "" #: gnutls.c:877 msgid "Decrypting PEM key failed\n" msgstr "" #: gnutls.c:881 gnutls.c:1405 openssl.c:458 msgid "Enter PEM pass phrase:" msgstr "" #: gnutls.c:942 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:949 msgid "This binary built without PKCS#11 support\n" msgstr "" #: gnutls.c:993 openssl-pkcs11.c:407 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "In uso certificato PKCS#11 %s\n" #: gnutls.c:994 #, c-format msgid "Using system certificate %s\n" msgstr "In uso certificato di sistema %s\n" #: gnutls.c:1012 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "" #: gnutls.c:1013 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1024 openssl.c:827 #, c-format msgid "Using certificate file %s\n" msgstr "" #: gnutls.c:1052 msgid "PKCS#11 file contained no certificate\n" msgstr "" #: gnutls.c:1078 msgid "No certificate found in file" msgstr "" #: gnutls.c:1083 #, c-format msgid "Loading certificate failed: %s\n" msgstr "" #: gnutls.c:1098 #, c-format msgid "Using system key %s\n" msgstr "In uso chiave di sistema %s\n" #: gnutls.c:1103 gnutls.c:1271 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "" #: gnutls.c:1114 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1125 gnutls.c:1219 gnutls.c:1247 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1130 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "" #: gnutls.c:1259 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "" #: gnutls.c:1266 openssl-pkcs11.c:644 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "In uso chiave PKCS#11 %s\n" #: gnutls.c:1281 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" #: gnutls.c:1299 #, c-format msgid "Using private key file %s\n" msgstr "In uso file chiave privata %s\n" #: gnutls.c:1310 openssl.c:651 msgid "This version of OpenConnect was built without TPM support\n" msgstr "" #: gnutls.c:1326 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1347 msgid "Failed to interpret PEM file\n" msgstr "" #: gnutls.c:1366 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "" #: gnutls.c:1379 gnutls.c:1393 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "" #: gnutls.c:1401 gnutls.c:1434 openssl.c:1002 openssl.c:1012 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "" #: gnutls.c:1426 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "" #: gnutls.c:1438 openssl.c:1008 msgid "Enter PKCS#8 pass phrase:" msgstr "" #: gnutls.c:1454 #, c-format msgid "Failed to get key ID: %s\n" msgstr "" #: gnutls.c:1499 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "" #: gnutls.c:1514 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "" #: gnutls.c:1539 msgid "No SSL certificate found to match private key\n" msgstr "" #: gnutls.c:1551 openssl.c:560 openssl.c:709 #, c-format msgid "Using client certificate '%s'\n" msgstr "" #: gnutls.c:1558 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "" #: gnutls.c:1579 gnutls.c:1589 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1625 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" #: gnutls.c:1648 msgid "Got no issuer from PKCS#11\n" msgstr "" #: gnutls.c:1653 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "" #: gnutls.c:1679 msgid "Failed to allocate memory for supporting certificates\n" msgstr "" #: gnutls.c:1702 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "" #: gnutls.c:1724 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1748 #, c-format msgid "Setting certificate failed: %s\n" msgstr "" #: gnutls.c:1941 msgid "Server presented no certificate\n" msgstr "" #: gnutls.c:1949 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" #: gnutls.c:1954 openssl.c:1515 msgid "Server presented different cert on rehandshake\n" msgstr "" #: gnutls.c:1959 openssl.c:1518 msgid "Server presented identical cert on rehandshake\n" msgstr "" #: gnutls.c:1965 msgid "Error initialising X509 cert structure\n" msgstr "" #: gnutls.c:1971 msgid "Error importing server's cert\n" msgstr "" #: gnutls.c:1980 main.c:1794 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:1985 msgid "Error checking server cert status\n" msgstr "" #: gnutls.c:1990 msgid "certificate revoked" msgstr "" #: gnutls.c:1992 msgid "signer not found" msgstr "" #: gnutls.c:1994 msgid "signer not a CA certificate" msgstr "" #: gnutls.c:1996 msgid "insecure algorithm" msgstr "" #: gnutls.c:1998 msgid "certificate not yet activated" msgstr "" #: gnutls.c:2000 msgid "certificate expired" msgstr "certificato scaduto" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2005 msgid "signature verification failed" msgstr "" #: gnutls.c:2054 openssl.c:1399 openssl.c:1551 msgid "certificate does not match hostname" msgstr "" #: gnutls.c:2059 openssl.c:1398 openssl.c:1557 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "" #: gnutls.c:2126 msgid "Failed to allocate memory for cafile certs\n" msgstr "" #: gnutls.c:2147 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "" #: gnutls.c:2163 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "" #: gnutls.c:2176 openssl.c:1679 msgid "Loading certificate failed. Aborting.\n" msgstr "" #: gnutls.c:2237 #, c-format msgid "Failed to set TLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2249 openssl.c:1796 #, c-format msgid "SSL negotiation with %s\n" msgstr "" #: gnutls.c:2296 openssl.c:1822 msgid "SSL connection cancelled\n" msgstr "" #: gnutls.c:2303 #, c-format msgid "SSL connection failure: %s\n" msgstr "" #: gnutls.c:2312 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "" #: gnutls.c:2318 openssl.c:1839 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "" #: gnutls.c:2321 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "" #: gnutls.c:2483 openssl-pkcs11.c:199 #, c-format msgid "PIN required for %s" msgstr "" #: gnutls.c:2487 openssl-pkcs11.c:202 msgid "Wrong PIN" msgstr "Codice PIN errato" #: gnutls.c:2490 msgid "This is the final try before locking!" msgstr "Ultimo tentativo prima del blocco" #: gnutls.c:2492 msgid "Only a few tries left before locking!" msgstr "" #: gnutls.c:2497 openssl-pkcs11.c:206 msgid "Enter PIN:" msgstr "" #: gnutls.c:2583 openssl.c:1967 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2592 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:54 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm.c:61 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:68 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:78 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "" #: gnutls_tpm.c:100 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "" #: gnutls_tpm.c:108 gnutls_tpm.c:119 gnutls_tpm.c:132 msgid "Error in TSS key blob\n" msgstr "" #: gnutls_tpm.c:139 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "" #: gnutls_tpm.c:146 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "" #: gnutls_tpm.c:154 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "" #: gnutls_tpm.c:161 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "" #: gnutls_tpm.c:182 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "" #: gnutls_tpm.c:198 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "" #: gnutls_tpm.c:205 msgid "Enter TPM SRK PIN:" msgstr "" #: gnutls_tpm.c:226 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "" #: gnutls_tpm.c:234 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "" #: gnutls_tpm.c:240 msgid "Enter TPM key PIN:" msgstr "" #: gnutls_tpm.c:251 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "" #: gnutls_tpm2.c:92 gnutls_tpm2_esys.c:474 gnutls_tpm2_ibm.c:419 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:198 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:208 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:217 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:225 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:231 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:249 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:270 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:275 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:384 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2_esys.c:173 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:189 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:190 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:191 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:192 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:196 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:201 gnutls_tpm2_ibm.c:262 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:209 gnutls_tpm2_esys.c:303 gnutls_tpm2_esys.c:374 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:221 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:226 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:245 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:250 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:258 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:261 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:274 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:295 gnutls_tpm2_ibm.c:278 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:309 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:317 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:323 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:333 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:363 gnutls_tpm2_ibm.c:363 gnutls_tpm2_ibm.c:450 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:395 #, c-format msgid "TPM2 RSA sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:414 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:420 gnutls_tpm2_esys.c:500 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:464 gnutls_tpm2_ibm.c:405 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:494 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:532 gnutls_tpm2_ibm.c:485 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:546 gnutls_tpm2_ibm.c:502 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:555 gnutls_tpm2_ibm.c:512 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:569 gnutls_tpm2_ibm.c:523 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:54 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:226 #, c-format msgid "%s\n" msgstr "" #: gpst.c:229 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:417 #, c-format msgid "Unknown ESP %s algorithm: %s" msgstr "" #: gpst.c:477 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: gpst.c:483 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:487 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:498 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:551 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:560 oncp.c:835 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: gpst.c:627 msgid "ESP disabled" msgstr "" #: gpst.c:629 msgid "No ESP keys received" msgstr "" #: gpst.c:631 msgid "ESP support not available in this build" msgstr "" #: gpst.c:635 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:680 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:702 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:711 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:719 #, c-format msgid "Got inappropriate HTTP GET-tunnel response: %.*s\n" msgstr "" #: gpst.c:861 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" "VPN connectivity may be disabled or limited without HIP report submission.\n" "You need to provide a --csd-wrapper argument with the HIP report submission " "script.\n" msgstr "" #: gpst.c:871 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:900 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:905 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:911 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:913 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:942 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:966 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:972 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:999 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1015 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1051 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1072 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1082 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1086 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1092 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: gpst.c:1101 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1109 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1157 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1162 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1182 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1202 #, c-format msgid "Sending data packet of %d bytes\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1165 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "" #: http.c:319 msgid "No memory for allocating cookies\n" msgstr "" #: http.c:394 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "" #: http.c:400 #, c-format msgid "Got HTTP response: %s\n" msgstr "" #: http.c:408 msgid "Error processing HTTP response\n" msgstr "" #: http.c:415 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "" #: http.c:435 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "" #: http.c:454 msgid "SSL certificate authentication failed\n" msgstr "" #: http.c:485 #, c-format msgid "Response body has negative size (%d)\n" msgstr "" #: http.c:496 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "" #. Now the body, if there is one #: http.c:515 #, c-format msgid "HTTP body %s (%d)\n" msgstr "" #: http.c:529 http.c:556 msgid "Error reading HTTP response body\n" msgstr "" #: http.c:542 msgid "Error fetching chunk header\n" msgstr "" #: http.c:566 msgid "Error fetching HTTP response body\n" msgstr "" #: http.c:569 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "" #: http.c:581 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "" #: http.c:708 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "" #: http.c:732 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "" #: http.c:760 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "" #: http.c:973 oncp.c:591 #, c-format msgid "Unexpected %d result from server\n" msgstr "" #: http.c:1021 msgid "request granted" msgstr "" #: http.c:1022 msgid "general failure" msgstr "" #: http.c:1023 msgid "connection not allowed by ruleset" msgstr "" #: http.c:1024 msgid "network unreachable" msgstr "" #: http.c:1025 msgid "host unreachable" msgstr "" #: http.c:1026 msgid "connection refused by destination host" msgstr "" #: http.c:1027 msgid "TTL expired" msgstr "TTL scaduto" #: http.c:1028 msgid "command not supported / protocol error" msgstr "" #: http.c:1029 msgid "address type not supported" msgstr "tipo di indirizzo non supportato" #: http.c:1039 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1047 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1062 http.c:1118 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" #: http.c:1070 http.c:1125 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" #: http.c:1077 http.c:1131 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" #: http.c:1083 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1087 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1143 http.c:1150 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1156 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1163 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1170 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1176 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "" #: http.c:1191 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" #: http.c:1199 http.c:1241 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "" #: http.c:1205 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "" #: http.c:1213 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "" #: http.c:1217 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "" #: http.c:1234 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "" #: http.c:1257 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "" #: http.c:1292 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "" #: http.c:1315 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1334 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Tipo di proxy «%s» non valido\n" #: http.c:1383 msgid "Only http or socks(5) proxies supported\n" msgstr "" #: library.c:112 msgid "Cisco AnyConnect or openconnect" msgstr "" #: library.c:113 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "" #: library.c:129 msgid "Juniper Network Connect" msgstr "" #: library.c:130 msgid "Compatible with Juniper Network Connect / Pulse Secure SSL VPN" msgstr "" #: library.c:148 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:149 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:211 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:233 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "" #: library.c:656 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "" #: library.c:662 msgid "Only https:// permitted for server URL\n" msgstr "" #: library.c:1056 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "" #: library.c:1085 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" #: library.c:1146 msgid "No form handler; cannot authenticate.\n" msgstr "" #: main.c:340 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:353 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:388 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:401 #, c-format msgid "fgetws() failed: %s\n" msgstr "" #: main.c:416 main.c:429 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:423 main.c:689 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "" #: main.c:584 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:593 #, c-format msgid "Using OpenSSL. Features present:" msgstr "In uso OpenSSL. Funzionalità disponibili:" #: main.c:595 #, c-format msgid "Using GnuTLS. Features present:" msgstr "In uso GnuTLS. Funzionalità disponibili:" #: main.c:608 msgid "OpenSSL ENGINE not present" msgstr "" #: main.c:647 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" #: main.c:657 #, c-format msgid "Supported protocols:" msgstr "" #: main.c:659 main.c:675 msgid " (default)" msgstr "" #: main.c:672 msgid "Set VPN protocol" msgstr "" #: main.c:713 msgid "fgets (stdin)" msgstr "" #: main.c:754 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:760 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:780 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "" #: main.c:793 #, c-format msgid "Usage: openconnect [options] \n" msgstr "" #: main.c:794 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" #: main.c:796 msgid "Read options from config file" msgstr "" #: main.c:797 msgid "Report version number" msgstr "" #: main.c:798 msgid "Display help text" msgstr "" #: main.c:802 msgid "Authentication" msgstr "" #: main.c:803 msgid "Set login username" msgstr "" #: main.c:804 msgid "Disable password/SecurID authentication" msgstr "" #: main.c:805 msgid "Do not expect user input; exit if it is required" msgstr "" #: main.c:806 msgid "Read password from standard input" msgstr "" #: main.c:807 msgid "Choose authentication login selection" msgstr "" #: main.c:808 msgid "Provide authentication form responses" msgstr "" #: main.c:809 msgid "Use SSL client certificate CERT" msgstr "" #: main.c:810 msgid "Use SSL private key file KEY" msgstr "" #: main.c:811 msgid "Warn when certificate lifetime < DAYS" msgstr "" #: main.c:812 msgid "Set login usergroup" msgstr "" #: main.c:813 msgid "Set key passphrase or TPM SRK PIN" msgstr "" #: main.c:814 msgid "Key passphrase is fsid of file system" msgstr "" #: main.c:815 msgid "Software token type: rsa, totp or hotp" msgstr "" #: main.c:816 msgid "Software token secret" msgstr "" #: main.c:818 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" #: main.c:821 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:824 msgid "Server validation" msgstr "" #: main.c:825 msgid "Server's certificate SHA1 fingerprint" msgstr "" #: main.c:826 msgid "Do not require server SSL cert to be valid" msgstr "" #: main.c:827 msgid "Disable default system certificate authorities" msgstr "" #: main.c:828 msgid "Cert file for server verification" msgstr "Certificato per la verifica server" #: main.c:830 msgid "Internet connectivity" msgstr "" #: main.c:831 msgid "Set proxy server" msgstr "" #: main.c:832 msgid "Set proxy authentication methods" msgstr "" #: main.c:833 msgid "Disable proxy" msgstr "" #: main.c:834 msgid "Use libproxy to automatically configure proxy" msgstr "" #: main.c:836 msgid "(NOTE: libproxy disabled in this build)" msgstr "" #: main.c:838 msgid "Connection retry timeout in seconds" msgstr "" #: main.c:839 msgid "Use IP when connecting to HOST" msgstr "" #: main.c:840 msgid "copy TOS / TCLASS when using DTLS" msgstr "" #: main.c:841 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:843 msgid "Authentication (two-phase)" msgstr "" #: main.c:844 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:845 msgid "Read cookie from standard input" msgstr "" #: main.c:846 msgid "Authenticate only and print login info" msgstr "" #: main.c:847 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:848 msgid "Print cookie before connecting" msgstr "" #: main.c:851 msgid "Process control" msgstr "" #: main.c:852 msgid "Continue in background after startup" msgstr "" #: main.c:853 msgid "Write the daemon's PID to this file" msgstr "" #: main.c:854 msgid "Drop privileges after connecting" msgstr "" #: main.c:857 msgid "Logging (two-phase)" msgstr "" #: main.c:859 msgid "Use syslog for progress messages" msgstr "" #: main.c:861 msgid "More output" msgstr "" #: main.c:862 msgid "Less output" msgstr "" #: main.c:863 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "" #: main.c:864 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:866 msgid "VPN configuration script" msgstr "" #: main.c:867 msgid "Use IFNAME for tunnel interface" msgstr "" #: main.c:868 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" #: main.c:869 msgid "default" msgstr "" #: main.c:871 msgid "Pass traffic to 'script' program, not tun" msgstr "" #: main.c:874 msgid "Tunnel control" msgstr "" #: main.c:875 msgid "Do not ask for IPv6 connectivity" msgstr "" #: main.c:876 msgid "XML config file" msgstr "File di configurazione XML" #: main.c:877 msgid "Request MTU from server (legacy servers only)" msgstr "" #: main.c:878 msgid "Indicate path MTU to/from server" msgstr "" #: main.c:879 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:880 msgid "Disable all compression" msgstr "" #: main.c:881 msgid "Set minimum Dead Peer Detection interval" msgstr "" #: main.c:882 msgid "Require perfect forward secrecy" msgstr "" #: main.c:883 msgid "Disable DTLS and ESP" msgstr "" #: main.c:884 msgid "OpenSSL ciphers to support for DTLS" msgstr "" #: main.c:885 msgid "Set packet queue limit to LEN pkts" msgstr "" #: main.c:887 msgid "Local system information" msgstr "" #: main.c:888 msgid "HTTP header User-Agent: field" msgstr "" #: main.c:889 msgid "Local hostname to advertise to server" msgstr "" #: main.c:890 msgid "OS type (linux,linux-64,win,...) to report" msgstr "" #: main.c:891 msgid "reported version string during authentication" msgstr "" #: main.c:892 msgid "default:" msgstr "" #: main.c:895 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:896 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:897 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:900 msgid "Server bugs" msgstr "" #: main.c:901 msgid "Disable HTTP connection re-use" msgstr "" #: main.c:902 msgid "Do not attempt XML POST authentication" msgstr "" #: main.c:924 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:997 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "" #: main.c:1037 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "" #: main.c:1047 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "" #: main.c:1051 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "" #: main.c:1076 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "" #: main.c:1086 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "" #: main.c:1130 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "" #: main.c:1140 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:1147 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:1157 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "" #: main.c:1215 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" #: main.c:1223 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Impossibile aprire il file di configurazione \"%s\": %s\n" #: main.c:1239 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1260 #, c-format msgid "Missing colon in resolve option\n" msgstr "" #: main.c:1265 #, c-format msgid "Failed to allocate memory\n" msgstr "" #: main.c:1349 main.c:1358 #, c-format msgid "MTU %d too small\n" msgstr "" #: main.c:1388 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" #: main.c:1394 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" #: main.c:1411 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "" #: main.c:1425 #, c-format msgid "OpenConnect version %s\n" msgstr "" #: main.c:1463 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "" #: main.c:1473 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "" #: main.c:1506 #, c-format msgid "Too many arguments on command line\n" msgstr "" #: main.c:1509 #, c-format msgid "No server specified\n" msgstr "" #: main.c:1525 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" #: main.c:1555 #, c-format msgid "Error opening cmd pipe\n" msgstr "" #: main.c:1588 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "" #: main.c:1609 #, c-format msgid "Creating SSL connection failed\n" msgstr "" #: main.c:1625 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:1633 #, c-format msgid "Connected as %s%s%s, using SSL%s%s, with %s%s%s %s\n" msgstr "" #: main.c:1639 msgid "disabled" msgstr "" #: main.c:1639 msgid "in progress" msgstr "" #: main.c:1643 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" #: main.c:1645 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "" #: main.c:1658 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "" #: main.c:1670 #, c-format msgid "Continuing in background; pid %d\n" msgstr "" #: main.c:1687 msgid "User requested reconnect\n" msgstr "" #: main.c:1695 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "" #: main.c:1699 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:1703 msgid "User cancelled (SIGINT/SIGTERM); exiting.\n" msgstr "" #: main.c:1707 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "" #: main.c:1711 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:1730 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "" #: main.c:1738 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "" #: main.c:1797 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "" #: main.c:1816 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" #: main.c:1819 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" #: main.c:1820 #, c-format msgid " --servercert %s\n" msgstr "" #: main.c:1825 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" #: main.c:1826 main.c:1844 msgid "no" msgstr "" #: main.c:1826 main.c:1832 msgid "yes" msgstr "sì" #: main.c:1853 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:1887 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:1890 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "" #: main.c:1911 msgid "User input required in non-interactive mode\n" msgstr "" #: main.c:2149 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:2157 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:2203 main.c:2224 #, c-format msgid "Soft token string is invalid\n" msgstr "" #: main.c:2206 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Impossibile aprire il file ~/.stokenrc\n" #: main.c:2209 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "" #: main.c:2212 #, c-format msgid "General failure in libstoken\n" msgstr "" #: main.c:2227 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "" #: main.c:2230 #, c-format msgid "General failure in liboath\n" msgstr "" #: main.c:2241 #, c-format msgid "Yubikey token not found\n" msgstr "Token Yubikey non trovato\n" #: main.c:2244 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2247 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: mainloop.c:127 #, c-format msgid "Set up tun script failed\n" msgstr "" #: mainloop.c:134 #, c-format msgid "Set up tun device failed\n" msgstr "" #: mainloop.c:265 msgid "Caller paused the connection\n" msgstr "Il chiamante ha messo in pausa la connessione\n" #: mainloop.c:273 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "" #: mainloop.c:294 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:978 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:982 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:565 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:160 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:166 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:175 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:186 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:201 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:210 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:219 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:232 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:254 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:274 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:297 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:316 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:327 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:335 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:342 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:350 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:358 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:366 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:374 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:383 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:395 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:473 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:490 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:496 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:512 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:577 oncp.c:609 oncp.c:747 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:618 oncp.c:783 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:631 oncp.c:666 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:636 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:643 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:670 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:683 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:692 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "" #: oncp.c:698 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "" #: oncp.c:705 msgid "Failed to read continuation record length\n" msgstr "" #: oncp.c:711 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "" #: oncp.c:720 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "" #: oncp.c:726 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "" #: oncp.c:767 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:776 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:829 msgid "new incoming" msgstr "" #: oncp.c:830 msgid "new outgoing" msgstr "" #: oncp.c:855 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:864 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:868 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:874 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:969 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:972 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:991 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1053 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1058 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1073 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1134 msgid "Sent ESP enable control packet\n" msgstr "" #: oncp.c:1268 msgid "Logout successful.\n" msgstr "" #: openconnect-internal.h:1119 openconnect-internal.h:1127 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "" #: openssl-dtls.c:365 msgid "Initialise DTLSv1 CTX failed\n" msgstr "" #: openssl-dtls.c:378 msgid "Set DTLS CTX version failed\n" msgstr "" #: openssl-dtls.c:395 msgid "Failed to generate DTLS key\n" msgstr "" #: openssl-dtls.c:413 msgid "Set DTLS cipher list failed\n" msgstr "" #: openssl-dtls.c:439 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:460 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: openssl-dtls.c:493 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:566 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "" #: openssl-dtls.c:603 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" "La versione di OpenSSL disponibile è più vecchia di quella usata durante la " "compilazione: DTLS potrebbe non funzionare." #: openssl-dtls.c:654 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" #: openssl-dtls.c:661 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "" #: openssl-esp.c:87 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:101 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:157 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:202 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:210 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:241 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:43 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:49 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "" #: openssl-pkcs11.c:269 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:272 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:275 msgid "Another user already logged in\n" msgstr "Un altro utente è già collegato\n" #: openssl-pkcs11.c:279 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:286 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:300 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:306 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:342 openssl-pkcs11.c:565 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:349 openssl-pkcs11.c:575 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:383 openssl-pkcs11.c:617 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:393 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "" #: openssl-pkcs11.c:401 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:412 openssl.c:713 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl-pkcs11.c:458 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:464 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:497 msgid "Certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:503 openssl-pkcs11.c:526 msgid "Certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:506 msgid "Checking EC key matches cert\n" msgstr "" #: openssl-pkcs11.c:510 msgid "Failed to allocate signature buffer\n" msgstr "" #: openssl-pkcs11.c:520 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" #: openssl-pkcs11.c:638 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "" #: openssl-pkcs11.c:649 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:678 msgid "Add key from PKCS#11 failed\n" msgstr "" #: openssl-pkcs11.c:710 openssl-pkcs11.c:716 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:147 msgid "Failed to write to SSL socket\n" msgstr "" #: openssl.c:197 openssl.c:263 msgid "Failed to read from SSL socket\n" msgstr "" #: openssl.c:292 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" #: openssl.c:317 #, c-format msgid "SSL_write failed: %d\n" msgstr "" #: openssl.c:389 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:465 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "" #: openssl.c:498 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "" #: openssl.c:548 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:563 msgid "PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:572 msgid "PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:577 msgid "PKCS#12" msgstr "" #: openssl.c:600 msgid "Can't load TPM engine.\n" msgstr "Impossibile caricare il motore TPM.\n" #: openssl.c:606 msgid "Failed to init TPM engine\n" msgstr "" #: openssl.c:616 msgid "Failed to set TPM SRK password\n" msgstr "" #: openssl.c:630 msgid "Failed to load TPM private key\n" msgstr "" #: openssl.c:636 msgid "Add key from TPM failed\n" msgstr "" #: openssl.c:687 openssl.c:835 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "" #: openssl.c:697 msgid "Loading certificate failed\n" msgstr "" #: openssl.c:735 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:748 msgid "PEM file" msgstr "" #: openssl.c:777 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "" #: openssl.c:802 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:808 msgid "Loading private key failed (see above errors)\n" msgstr "" #: openssl.c:858 msgid "Failed to load X509 certificate from keystore\n" msgstr "" #: openssl.c:864 msgid "Failed to use X509 certificate from keystore\n" msgstr "" #: openssl.c:896 msgid "Failed to use private key from keystore\n" msgstr "" #: openssl.c:912 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "" #: openssl.c:936 openssl.c:951 openssl.c:972 openssl.c:1038 msgid "Loading private key failed\n" msgstr "" #: openssl.c:1032 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1049 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "" #: openssl.c:1203 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "" #: openssl.c:1210 #, c-format msgid "No match for altname '%s'\n" msgstr "" #: openssl.c:1224 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" #: openssl.c:1235 openssl.c:1381 #, c-format msgid "Matched %s address '%s'\n" msgstr "" #: openssl.c:1242 #, c-format msgid "No match for %s address '%s'\n" msgstr "" #: openssl.c:1284 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "" #: openssl.c:1289 #, c-format msgid "Matched URI '%s'\n" msgstr "" #: openssl.c:1300 #, c-format msgid "No match for URI '%s'\n" msgstr "" #: openssl.c:1315 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" #: openssl.c:1323 msgid "No subject name in peer cert!\n" msgstr "" #: openssl.c:1343 msgid "Failed to parse subject name in peer cert\n" msgstr "" #: openssl.c:1350 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "" #: openssl.c:1355 openssl.c:1389 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "" #: openssl.c:1451 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "" #: openssl.c:1589 msgid "Error in client cert notAfter field\n" msgstr "" #: openssl.c:1602 msgid "" msgstr "" #: openssl.c:1655 msgid "Create TLSv1 CTX failed\n" msgstr "" #: openssl.c:1674 msgid "SSL certificate and key do not match\n" msgstr "" #: openssl.c:1719 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "" #: openssl.c:1752 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "" #: openssl.c:1812 msgid "SSL connection failure\n" msgstr "" #: openssl.c:1973 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:130 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "" #: script.c:134 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "" #: script.c:507 script.c:555 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "" #: script.c:562 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "" #: script.c:570 #, c-format msgid "Script '%s' returned error %d\n" msgstr "" #: ssl.c:108 msgid "Socket connect cancelled\n" msgstr "" #: ssl.c:217 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "" #: ssl.c:221 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "" #: ssl.c:289 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "" #: ssl.c:317 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "" #: ssl.c:326 ssl.c:451 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:341 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "" #: ssl.c:342 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "" #: ssl.c:362 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "" #: ssl.c:374 msgid "Failed to allocate sockaddr storage\n" msgstr "" #: ssl.c:416 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "" #: ssl.c:434 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:446 #, c-format msgid "Failed to connect to host %s\n" msgstr "" #: ssl.c:465 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:536 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:564 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:575 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:603 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:694 msgid "No error" msgstr "" #: ssl.c:695 msgid "Keystore locked" msgstr "" #: ssl.c:696 msgid "Keystore uninitialized" msgstr "" #: ssl.c:697 msgid "System error" msgstr "Errore di sistema" #: ssl.c:698 msgid "Protocol error" msgstr "" #: ssl.c:699 msgid "Permission denied" msgstr "" #: ssl.c:700 msgid "Key not found" msgstr "" #: ssl.c:701 msgid "Value corrupted" msgstr "Valore non valido" #: ssl.c:702 msgid "Undefined action" msgstr "Azione non definita" #: ssl.c:706 msgid "Wrong password" msgstr "Password non corretta" #: ssl.c:707 msgid "Unknown error" msgstr "Errore sconosciuto" #: ssl.c:896 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:931 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:950 msgid "Open UDP socket" msgstr "" #: ssl.c:981 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:989 msgid "Bind UDP socket" msgstr "" #: ssl.c:996 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:1034 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:1038 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "" #: stoken.c:82 msgid "Device ID:" msgstr "" #: stoken.c:89 msgid "Password:" msgstr "" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "Tutti i campi sono richiesti, riprovare.\n" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "" #: stoken.c:185 msgid "Enter software token PIN." msgstr "" #: stoken.c:189 msgid "PIN:" msgstr "" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "" #: tun-win32.c:76 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:139 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "" #: tun-win32.c:154 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" #: tun-win32.c:186 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" #: tun-win32.c:200 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "" #: tun-win32.c:231 #, c-format msgid "Failed to open %s\n" msgstr "" #: tun-win32.c:236 #, c-format msgid "Opened tun device %s\n" msgstr "" #: tun-win32.c:244 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:250 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:271 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:283 tun-win32.c:406 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:316 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:321 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:335 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:358 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:368 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:371 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:423 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "" #: tun.c:92 msgid "Can't push IP" msgstr "" #: tun.c:102 msgid "Can't set ifname" msgstr "" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "impossibile aprire %s: %s" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "" #: tun.c:139 msgid "open /dev/tun" msgstr "" #: tun.c:145 msgid "Failed to create new tun" msgstr "" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "" #: tun.c:205 msgid "open net" msgstr "" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Impossibile aprire \"%s\": %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:479 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:484 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:488 msgid "setpgid" msgstr "" #: tun.c:493 msgid "execl" msgstr "" #: tun.c:498 msgid "(script)" msgstr "(script)" #: tun.c:566 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "SHA1 del file XML di configurazione: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:174 msgid "select applet command" msgstr "" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "PIN Yubikey:" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:274 msgid "unlock command" msgstr "" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:412 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:619 msgid "calculate command" msgstr "calcolo commando" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-8.05/po/es.po0000664000076400007640000043505713536301641017142 0ustar00dwoodhoudwoodhou00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2019-09-11 14:49+0100\n" "Last-Translator: David Woodhouse \n" "Language-Team: Spanish (Castilian) (http://www.transifex.net/projects/p/" "meego/language/es/)\n" "Language: es\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1)\n" #: auth-globalprotect.c:124 #, c-format msgid "" "SAML login is required via %s to this URL:\n" "\t%s" msgstr "" "Se requiere inicio de sesión SAML mediante %s en este URL:\n" "\t%s" #: auth-globalprotect.c:126 msgid "Please enter your username and password" msgstr "Introduzca su usuario y contraseña" #: auth-globalprotect.c:135 msgid "Username" msgstr "Usuario" #: auth-globalprotect.c:150 msgid "Password" msgstr "Contraseña" #: auth-globalprotect.c:197 msgid "Challenge: " msgstr "Desafío: " #: auth-globalprotect.c:276 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "El inicio de sesión de GlobalProtect devolvió %s=%s (se espera %s)\n" #: auth-globalprotect.c:282 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" "El inicio de sesión de GlobalProtect devolvió que %s está vacío o ausente\n" #: auth-globalprotect.c:288 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "El inicio de sesión de GlobalProtect devolvió %s=%s\n" #: auth-globalprotect.c:331 msgid "Please select GlobalProtect gateway." msgstr "Seleccione una puerta de enlace GlobalProtect." #: auth-globalprotect.c:341 msgid "GATEWAY:" msgstr "PUERTA DE ENLACE:" #. each entry looks like Label #: auth-globalprotect.c:395 #, c-format msgid "%d gateway servers available:\n" msgstr "%d servidores de puerta de enlace disponibles:\n" #: auth-globalprotect.c:416 #, c-format msgid " %s (%s)\n" msgstr " %s (%s)\n" #: auth-globalprotect.c:492 auth-juniper.c:730 auth.c:669 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "Falló al generar el código de testigo OTP; desactivando testigo\n" #: auth-globalprotect.c:588 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" "El servidor no es ni un portal GlobalProtect ni una puerta de enlace.\n" #: auth-globalprotect.c:640 oncp.c:1267 msgid "Logout failed.\n" msgstr "Falló al cerrar sesión.\n" #: auth-globalprotect.c:642 msgid "Logout successful\n" msgstr "Sesión cerrada con éxito\n" #: auth-juniper.c:142 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "Ignorando formulario de envío desconocido del elemento «%s»\n" #: auth-juniper.c:153 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "Ignorando formulario de entrada desconocido del tipo «%s»\n" #: auth-juniper.c:163 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "Descartando opcion duplicada «%s»\n" #: auth-juniper.c:236 auth.c:408 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "No se puede gestionar el método='%s' del formulario, acción='%s'\n" #: auth-juniper.c:267 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "Campo de área de texto desconocido: '%s'\n" #: auth-juniper.c:337 msgid "TNCC support not implemented yet on Windows\n" msgstr "Soporte TNCC aún no implementado en Windows\n" #: auth-juniper.c:359 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "Ninguna cookie DSPREAUTH; no intentar TNCC\n" #: auth-juniper.c:397 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "Falló al ejecutar el script TNCC %s: %s\n" #: auth-juniper.c:411 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "Falló al asignar memoria para la comunicación con TNCC\n" #: auth-juniper.c:418 msgid "Failed to send start command to TNCC\n" msgstr "Falló al enviar el comando de inicio a TNCC\n" #: auth-juniper.c:425 msgid "Sent start; waiting for response from TNCC\n" msgstr "Envío iniciado; esperando respuesta por parte de TNCC\n" #: auth-juniper.c:432 msgid "Failed to read response from TNCC\n" msgstr "Falló al leer la respuesta de TNCC\n" #: auth-juniper.c:439 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "Se recibió respuesta fallida %s de TNCC\n" #: auth-juniper.c:445 msgid "TNCC response 200 OK\n" msgstr "Respuesta TNCC 200 OK\n" #: auth-juniper.c:452 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "Segunda línea de la respuesta TNCC: «%s»\n" #: auth-juniper.c:461 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "Se ha obtenido una nueva cookie DSPREAUTH de TNCC: %s\n" #: auth-juniper.c:474 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" "Línea no vacía inesperada de TNCC después de la cookie DSPREAUTH: «%s»\n" #: auth-juniper.c:481 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "Demasiadas líneas no vacías de TNCC después de la cookie DSPREAUTH\n" #: auth-juniper.c:650 msgid "Failed to parse HTML document\n" msgstr "Falló al analizar el documento HTML\n" #: auth-juniper.c:667 msgid "Failed to find or parse web form in login page\n" msgstr "" "Falló al encontrar o analizar el formulario web en la página de inicio de " "sesión\n" #: auth-juniper.c:675 msgid "Encountered form with no ID\n" msgstr "Encontrado formulario sin ID\n" #: auth-juniper.c:713 #, c-format msgid "Unknown form ID '%s'\n" msgstr "ID de formulario desconocido «%s»\n" #: auth-juniper.c:716 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "Volcando formulario HTML desconocido:\n" #: auth.c:96 msgid "Form choice has no name\n" msgstr "El formulario elegido no tiene nombre\n" #: auth.c:181 #, c-format msgid "name %s not input\n" msgstr "el nombre %s no es una entrada\n" #: auth.c:188 msgid "No input type in form\n" msgstr "No hay tipo de entrada en el formulario\n" #: auth.c:200 msgid "No input name in form\n" msgstr "No hay nombre de entrada en el formulario\n" #: auth.c:230 #, c-format msgid "Unknown input type %s in form\n" msgstr "Tipo de entrada %s desconocido en el formulario\n" #: auth.c:540 gpst.c:214 msgid "Empty response from server\n" msgstr "Respuesta desde el servidor vacía\n" #: auth.c:551 gpst.c:289 msgid "Failed to parse server response\n" msgstr "Falló al analizar la respuesta del servidor\n" #: auth.c:553 gpst.c:291 #, c-format msgid "Response was:%s\n" msgstr "La respuesta fue:%s\n" #: auth.c:575 msgid "Received when not expected.\n" msgstr "Se recibió un no esperado.\n" #: auth.c:603 msgid "XML response has no \"auth\" node\n" msgstr "La respuesta XML no tiene nodo «auth»\n" #: auth.c:636 msgid "Asked for password but '--no-passwd' set\n" msgstr "Se pidió la contraseña, pero se estableció '--no-passwd'\n" #: auth.c:925 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "No se descarga el perfil XML porque ya SHA1 ya coincide\n" #: auth.c:931 cstp.c:335 http.c:944 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Falló al abrir una conexión HTTPS con %s\n" #: auth.c:952 msgid "Failed to send GET request for new config\n" msgstr "Falló al enviar la petición GET para la nueva configuración\n" #: auth.c:976 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" "El archivo de configuración descargado no coincide con el SHA1 esperado\n" #: auth.c:981 msgid "Downloaded new XML profile\n" msgstr "Perfil XML nuevo descargado\n" #: auth.c:992 auth.c:1044 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" "Error: La ejecución del «Cisco Secure Desktop» para troyano en esta " "plataforma no se ha implementado.\n" #: auth.c:1003 mainloop.c:144 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "Falló al establecer gid %ld: %s\n" #: auth.c:1010 mainloop.c:151 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "Falló al establecer grupos de %ld: %s\n" #: auth.c:1017 mainloop.c:158 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "Falló al establecer uid %ld: %s\n" #: auth.c:1024 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "uid=%ld del usuario no válido: %s\n" #: auth.c:1031 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Falló al cambiar a la carpeta local «%s» de CSD: %s\n" #: auth.c:1053 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Error: el servidor ha pedido ejecutar CSD hotscan.\n" "Necesita proporcionar un argumento --csd-wrapper adecuado.\n" #: auth.c:1060 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Error: el servidor solicitó descargar y ejecutar un troyano «Cisco Secure " "Desktop».\n" "Esta facilidad está desactivada de manera predeterminada por razones de " "seguridad, por lo que podría querer activarla.\n" #: auth.c:1067 msgid "Trying to run Linux CSD trojan script.\n" msgstr "Intentando ejecutar el script troyano CSD de Linux.\n" #: auth.c:1094 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "No se puede escribir en la carpeta temporal «%s»: %s\n" #: auth.c:1102 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Falló al abrir el archivo temporal del script CSD: %s\n" #: auth.c:1111 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Falló al escribir el archivo temporal del script CSD: %s\n" #: auth.c:1141 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Advertencia: está ejecutando código CSD inseguro con privilegios de " "administrador\n" "\tUse la opción de línea de comandos «--csd-user»\n" #: auth.c:1189 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Falló al ejecutar el script CSD %s\n" #: auth.c:1221 msgid "Unknown response from server\n" msgstr "Respuesta desconocida del servidor\n" #: auth.c:1342 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" "El servidor solicitó el certificado SSL del cliente tras proporcionarle uno\n" #: auth.c:1346 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" "El servidor solicitó el certificado SSL del cliente; no se ha configurado " "ninguno\n" #: auth.c:1362 msgid "XML POST enabled\n" msgstr "POST XML activado\n" #: auth.c:1405 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Actualizando %s tras 1 segundo…\n" #: compat.c:207 #, c-format msgid "(error 0x%lx)" msgstr "(error 0x%lx)" #: compat.c:210 msgid "(Error while describing error!)" msgstr "(¡Error al describir el error!)" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "Error: no se pueden inicializar los sockets\n" #: cstp.c:112 gpst.c:341 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:134 gpst.c:360 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:281 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" "Error crítico: el secreto DTLS maestro no está inicializado. Informe de " "esto.\n" #: cstp.c:312 msgid "Error creating HTTPS CONNECT request\n" msgstr "Error al crear la solicitud HTTPS CONNECT\n" #: cstp.c:328 http.c:386 msgid "Error fetching HTTPS response\n" msgstr "Error al obtener respuesta HTTPS\n" #: cstp.c:355 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "Servicio VPN no disponible; razón: %s\n" #: cstp.c:360 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Se obtuvo una respuesta HTTP CONNECT inadecuada: %s\n" #: cstp.c:367 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Se obtuvo la respuesta CONNECT: %s\n" #: cstp.c:396 cstp.c:404 msgid "No memory for options\n" msgstr "No hay memoria para opciones\n" #: cstp.c:413 http.c:447 msgid "" msgstr "" #: cstp.c:433 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Session no es de 64 caracteres; es: «%s»\n" #: cstp.c:450 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "X-DTLS-Session-ID no es válido; es: «%s»\n" #: cstp.c:468 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "DTLS-Content-Encoding %s desconocido\n" #: cstp.c:510 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "CSTP-Content-Encoding %s desconocido\n" #: cstp.c:586 msgid "No MTU received. Aborting\n" msgstr "No se recibió MTU. Abortando\n" #: cstp.c:594 gpst.c:670 msgid "No IP address received. Aborting\n" msgstr "No se recibió dirección IP. Abortando\n" #: cstp.c:600 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "Configuración de IPv6 recibida pero la MTU %d es demasiado pequeña.\n" #: cstp.c:606 gpst.c:677 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "La reconexión dio una dirección IP heredada distinta (%s != %s)\n" #: cstp.c:615 gpst.c:686 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "La reconexión dio una máscara de red heredada distinta (%s != %s)\n" #: cstp.c:623 gpst.c:695 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "La reconexión dio una dirección IPv6 heredada distinta (%s != %s)\n" #: cstp.c:631 gpst.c:703 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "" "La reconexión dio una máscara de red IPv6 heredada distinta (%s != %s)\n" #: cstp.c:639 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP conectado. DPD %d, Keepalive %d\n" #: cstp.c:641 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "Conjunto de cifrado CSTP: %s\n" #: cstp.c:703 msgid "Compression setup failed\n" msgstr "Falló la configuración de compresión\n" #: cstp.c:720 msgid "Allocation of deflate buffer failed\n" msgstr "Falló la localización del buffer vacío\n" #: cstp.c:782 msgid "inflate failed\n" msgstr "falló el llenado\n" #: cstp.c:805 #, c-format msgid "LZS decompression failed: %s\n" msgstr "Fallo de la descompresión LZS: %s\n" #: cstp.c:818 msgid "LZ4 decompression failed\n" msgstr "Falló la descompresión LZ4\n" #: cstp.c:825 #, c-format msgid "Unknown compression type %d\n" msgstr "Tipo de compresión %d desconocido\n" #: cstp.c:830 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "Paquete de datos comprimidos %s de %d bytes recibido (eran %d)\n" #: cstp.c:850 #, c-format msgid "deflate failed %d\n" msgstr "falló el vaciado %d\n" #: cstp.c:923 dtls.c:281 dtls.c:690 esp.c:163 gpst.c:1096 mainloop.c:69 #: oncp.c:914 pulse.c:2297 msgid "Allocation failed\n" msgstr "Falló la reserva\n" #: cstp.c:934 gpst.c:1109 pulse.c:2309 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "Paquete corto recibido (%d bytes)\n" #: cstp.c:947 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" "Longitud de paquete inesperada. SSL_read devolvió %d pero el paquete es\n" #: cstp.c:961 msgid "Got CSTP DPD request\n" msgstr "Se obtuvo la petición CSTP DPD\n" #: cstp.c:967 msgid "Got CSTP DPD response\n" msgstr "Se obtuvo la respuesta CSTP DPD\n" #: cstp.c:972 msgid "Got CSTP Keepalive\n" msgstr "Se obtuvo Keppalive CSTP\n" #: cstp.c:977 oncp.c:1003 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Se recibió el paquete de datos sin comprimir de %d bytes\n" #: cstp.c:994 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Se recibió el una desconexión del servidor: %02x '%s'\n" #: cstp.c:997 msgid "Received server disconnect\n" msgstr "Recibida una desconexión del servidor\n" #: cstp.c:1005 msgid "Compressed packet received in !deflate mode\n" msgstr "Se recibió el paquete comprimido en modo !vacío\n" #: cstp.c:1014 msgid "received server terminate packet\n" msgstr "se recibió el paquete de fin del servidor\n" #: cstp.c:1021 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Paquete desconocido %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1064 gpst.c:1197 oncp.c:1121 pulse.c:2452 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL escribió demasiados pocos bytes. Se pidieron %d, se enviaron %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1092 oncp.c:1156 pulse.c:2479 msgid "CSTP rekey due\n" msgstr "Renegociación de clave CSTP pendiente\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1099 oncp.c:1163 pulse.c:2486 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Renegociación fallida; intentando un túnel nuevo\n" #: cstp.c:1110 oncp.c:1174 pulse.c:2497 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "La detección de muerte del par CSTP detectó la muerte del par\n" #: cstp.c:1114 gpst.c:1221 oncp.c:1091 oncp.c:1178 pulse.c:2422 pulse.c:2502 msgid "Reconnect failed\n" msgstr "Falló al reconectar\n" #: cstp.c:1130 oncp.c:1194 pulse.c:2518 msgid "Send CSTP DPD\n" msgstr "Enviar CSTP DPD\n" #: cstp.c:1142 oncp.c:1205 pulse.c:2530 msgid "Send CSTP Keepalive\n" msgstr "Enviar CSTP Keepalive\n" #: cstp.c:1167 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "Enviando paquete de datos comprimidos de %d bytes (eran %d)\n" #: cstp.c:1178 oncp.c:1239 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Enviando paquete de datos sin comprimir de %d bytes\n" #: cstp.c:1217 #, c-format msgid "Send BYE packet: %s\n" msgstr "Enviar paquete BYE: %s\n" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "Intentando la autenticación Digest en el proxy\n" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "Intentando la autenticación Digest al servidor «%s»\n" #: dtls.c:113 msgid "DTLS connection attempted with an existing fd\n" msgstr "Intento de conexión DTLS con un «fd» existente\n" #: dtls.c:119 msgid "No DTLS address\n" msgstr "Sin dirección DTLS\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:126 msgid "Server offered no DTLS cipher option\n" msgstr "El servidor no ofreció opción de cifrado DTLS\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:133 msgid "No DTLS when connected via proxy\n" msgstr "Sin DTLS cuando se conecta vía proxy\n" #: dtls.c:200 #, c-format msgid "DTLS option %s : %s\n" msgstr "Opción DTLS %s: %s\n" #: dtls.c:239 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS inicializado. DPD %d, Keepalive %d\n" #: dtls.c:265 msgid "Attempt new DTLS connection\n" msgstr "Intentar nueva conexión DTLS\n" #: dtls.c:292 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Recibió el paquete DTLS 0x%02x de %d bytes\n" #: dtls.c:306 msgid "Got DTLS DPD request\n" msgstr "Solicitud DTLS DPD obtenida\n" #: dtls.c:312 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Falló al enviar respuesta DPD. Espere desconectar\n" #: dtls.c:316 msgid "Got DTLS DPD response\n" msgstr "Respuesta DTLS DPD obtenida\n" #: dtls.c:320 msgid "Got DTLS Keepalive\n" msgstr "Obtenido Keepalive DTLS\n" #: dtls.c:326 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" "Paquete DTLS comprimido recibido cuando la compresión no estaba activada\n" #: dtls.c:334 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Paquete DTLS tipo %02x desconocido, longitud %d\n" #: dtls.c:356 msgid "DTLS rekey due\n" msgstr "Renegociación de clave DTLS pendiente\n" #: dtls.c:363 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "Falló la renegociación DTLS; reconectando\n" #: dtls.c:372 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "¡La detección de muerte del par DTLS detectó la muerte del par!\n" #: dtls.c:378 msgid "Send DTLS DPD\n" msgstr "Enviar DTLS DPD\n" #: dtls.c:383 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Falló al enviar petición DPD. Espere para desconectar\n" #: dtls.c:396 msgid "Send DTLS Keepalive\n" msgstr "Enviar Keepalive DTLS\n" #: dtls.c:401 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Falló al enviar petición de keepalive. Espere para desconectar\n" #: dtls.c:432 tun.c:541 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Se recibió un paquete desconocido (len %d): %02x %02x %02x %02x…\n" # TOS = Type of service #: dtls.c:439 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "TOS este: %d, TOS último: %d\n" # setsockopt - set the socket options # Es una función y por tanto la dejo sin traducir #: dtls.c:443 msgid "UDP setsockopt" msgstr "UDP setsockopt" #: dtls.c:474 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "DTLS obtuvo el error de escritura %d. Volviendo a SSL\n" #: dtls.c:488 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "DTLS obtuvo el error de escritura: %s. Volviendo a SSL\n" #: dtls.c:503 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "Envió paquete DTLS de %d bytes; el envío DTLS devolvió %d\n" #: dtls.c:551 #, c-format msgid "Initiating MTU detection (min=%d, max=%d)\n" msgstr "Iniciando la detección de MTU (min=%d, max=%d)\n" #: dtls.c:585 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "Enviando sonda DPD MTU (%u bytes)\n" #: dtls.c:589 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "Falló al enviar la solicitud DPD (%d %d)\n" # Unidad máxima de transferencia (Maximum Transmission Unit - MTU) #: dtls.c:612 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" "Demasiado tiempo en el bucle de detección de la MTU; suponiendo la MTU " "acordada.\n" #: dtls.c:616 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "Demasiado tiempo en detectar el bucle MTU; MTU establecido a %d.\n" #: dtls.c:633 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" "Paquete inesperado recibido (%.2x) en la detección de MTU; omitiendo.\n" #: dtls.c:640 #, c-format msgid "No response to size %u after %d tries; declare MTU is %u\n" msgstr "" "No hay respuesta al tamaño %u después de %d intentos. Se declara que MTU es " "%u\n" #: dtls.c:647 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "Falló al recibir la solicitud DPD (%d)\n" #: dtls.c:651 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "Sonda DPD MTU recibida (%u bytes)\n" #: dtls.c:701 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "Detectado MTU de %d bytes (eran %d)\n" #: dtls.c:704 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "No hay cambios en MTU después de la detección (fue %d)\n" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "Aceptando paquete ESP esperado con la secuencia %u\n" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" "Aceptando paquete ESP después de lo esperado con la secuencia %u (se " "esperaba %)\n" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" "Descartando paquete ESP antiguo con la secuencia %u (se esperaba %)\n" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" "Permitiendo paquete ESP antiguo con la secuencia %u (se esperaba %)\n" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "Descartando paquete ESP repetido con la secuencia %u\n" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "Permitiendo paquete ESP repetido con la secuencia %u\n" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" "Aceptando paquete ESP fuera de orden con la secuencia %u (se esperaba " "%)\n" #: esp.c:66 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "Parametros para %s ESP: SPI 0x%08x\n" #: esp.c:69 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "Tipo de cifrado ESP %s clave 0x%s\n" #: esp.c:72 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "Tipo de autenticación ESP %s clave 0x%s\n" #: esp.c:90 msgid "incoming" msgstr "entrante" #: esp.c:91 msgid "outgoing" msgstr "saliente" #: esp.c:93 esp.c:147 msgid "Send ESP probes\n" msgstr "Enviar pruebas ESP\n" #: esp.c:172 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "Paquete ESP recibido de %d bytes\n" #: esp.c:189 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "Paquete ESP recibido desde el SPI antiguo 0x%x, secuencia %u\n" #: esp.c:195 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "Paquete ESP recibido con SPI no válido 0x%08x\n" #: esp.c:208 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "Paquete ESP recibido con la carga útil de tipo desconocido %02x\n" #: esp.c:215 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "Longitud de relleno %02x no válida en ESP\n" #: esp.c:227 msgid "Invalid padding bytes in ESP\n" msgstr "Bytes de relleno no válidos en ESP\n" #: esp.c:236 msgid "ESP session established with server\n" msgstr "Sesión ESP establecida con el servidor\n" #: esp.c:247 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "Falló al asignar memoria para descifrar el paquete ESP\n" #: esp.c:253 msgid "LZO decompression of ESP packet failed\n" msgstr "Falló la descompresión LZO del paquete ESP\n" #: esp.c:259 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "LZO descomprime %d bytes en %d\n" #: esp.c:273 msgid "Rekey not implemented for ESP\n" msgstr "Renegociación de la clave no implementada para ESP\n" #: esp.c:277 msgid "ESP detected dead peer\n" msgstr "ESP detectó la muerte del par\n" #: esp.c:285 msgid "Send ESP probes for DPD\n" msgstr "Enviar pruebas ESP para DPD\n" #: esp.c:292 msgid "Keepalive not implemented for ESP\n" msgstr "Keepalive no está implementado para ESP\n" #: esp.c:346 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "Volver a poner en cola falló al enviar ESP: %s\n" #: esp.c:353 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "Falló al enviar el paquete ESP: %s\n" #: esp.c:359 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "Enviando paquete ESP de %d bytes\n" #: esp.c:430 msgid "Failed to generate random keys for ESP\n" msgstr "Falló al generar claves aleatorias para ESP\n" #: esp.c:437 msgid "Failed to generate initial IV for ESP\n" msgstr "Falló al generar el IV inicial para ESP\n" # Defer = posponer, aplazar, diferir #: gnutls-dtls.c:190 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "Aplazando la reanudación de DTLS hasta que CSTP genere un PSK\n" #: gnutls-dtls.c:198 msgid "Failed to generate DTLS priority string\n" msgstr "Falló al establecer la cadena de prioridad DTLS\n" #: gnutls-dtls.c:207 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "Falló al inicializar DTLS: %s\n" #: gnutls-dtls.c:216 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "Falló al establecer la prioridad DTLS: «%s»: %s\n" #: gnutls-dtls.c:240 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "Falló al asignar las credenciales: %s\n" #: gnutls-dtls.c:253 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "Falló al generar la clave DTLS: %s\n" #: gnutls-dtls.c:267 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "Falló al establecer la clave DTLS %s\n" #: gnutls-dtls.c:275 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "Falló al establecer las credenciales DTLS PSK: %s\n" #: gnutls-dtls.c:309 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "" "Parámetros DTLS desconocidos para la petición del conjunto de cifrado «%s»\n" #: gnutls-dtls.c:324 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "Falló al establecer la prioridad DTLS: %s\n" #: gnutls-dtls.c:345 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Falló al establecer los parámetros de sesión: %s\n" #: gnutls-dtls.c:373 openssl-dtls.c:574 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "El par MTU %d es demasiado pequeño para permitir DTLS\n" #: gnutls-dtls.c:382 openssl-dtls.c:585 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "DTLS MTU reducido a %d\n" #: gnutls-dtls.c:392 openssl-dtls.c:594 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" "No se ha podido reanudar la sesión DTLS; posible ataque MITM. Desactivando " "DTLS.\n" #: gnutls-dtls.c:405 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Falló al establecer la MTU de DTLS %s\n" #: gnutls-dtls.c:416 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "Conexión DTLS establecida (usando GnuTLS). Ciphersuite %s.\n" #: gnutls-dtls.c:422 openssl-dtls.c:612 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "Compresión de la conexión DTLS utilizando %s.\n" #: gnutls-dtls.c:437 openssl-dtls.c:693 openssl-dtls.c:697 msgid "DTLS handshake timed out\n" msgstr "Expiró tiempo de la negociación DTLS\n" #: gnutls-dtls.c:440 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "Falló la negociación DTLS: %s\n" #: gnutls-dtls.c:444 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(¿Es un cortafuegos lo que impide el envío de paquetes UDP?)\n" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "Falló al inicializar el cifrado ESP: %s\n" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "Falló al inicializar ESP HMAC: %s\n" #: gnutls-esp.c:128 gnutls-esp.c:171 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "Falló al calcular HMAC para el paquete ESP: %s\n" #: gnutls-esp.c:135 openssl-esp.c:166 msgid "Received ESP packet with invalid HMAC\n" msgstr "Paquete ESP recibido con HMAC no válida\n" #: gnutls-esp.c:147 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "Falló al descifrar el paquete ESP: %s\n" #: gnutls-esp.c:163 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "Falló al cifrar el paquete ESP: %s\n" #: gnutls.c:95 openssl.c:154 msgid "SSL write cancelled\n" msgstr "Escritura SSL cancelada\n" #: gnutls.c:99 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "Falló al escribir en el socket SSL: %s\n" #: gnutls.c:145 gnutls.c:237 openssl.c:204 openssl.c:271 msgid "SSL read cancelled\n" msgstr "Lectura SSL cancelada\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:158 msgid "SSL socket closed uncleanly\n" msgstr "Socket SSL cerrado no limpiamente\n" #: gnutls.c:168 gnutls.c:246 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "Falló al leer del socket SSL: %s\n" #: gnutls.c:266 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "Error de lectura SSL: %s; reconectando.\n" #: gnutls.c:302 #, c-format msgid "SSL send failed: %s\n" msgstr "Falló el envío SSL: %s\n" #: gnutls.c:315 msgid "Could not extract expiration time of certificate\n" msgstr "No se pudo extraer la fecha de caducidad del certificado\n" #: gnutls.c:320 openssl.c:1592 msgid "Client certificate has expired at" msgstr "El certificado del cliente ha caducado el" #: gnutls.c:322 openssl.c:1597 msgid "Client certificate expires soon at" msgstr "El certificado del cliente caduca pronto el" #: gnutls.c:371 openssl.c:771 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Falló al cargar el elemento «%s» del almacén de claves: %s\n" #: gnutls.c:384 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Falló al abrir el archivo de clave/certificado %s: %s\n" #: gnutls.c:391 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Falló al obtener el estado del archivo de clave/certificado %s: %s\n" #: gnutls.c:400 msgid "Failed to allocate certificate buffer\n" msgstr "Falló al asignar el búfer del certificado\n" #: gnutls.c:408 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Falló al leer el certificado en memoria: %s\n" #: gnutls.c:439 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Falló al configurar la estructura de datos PKCS#12: %s\n" #: gnutls.c:462 openssl.c:534 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Falló al descifrar el archivo del certificado PKCS#12\n" #: gnutls.c:466 openssl.c:537 msgid "Enter PKCS#12 pass phrase:" msgstr "Introduzca contraseña PKCS#12:" #: gnutls.c:489 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Falló al procesar el archivo PKCS#12: %s\n" #: gnutls.c:501 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Falló al cargar el certificado PKCS#12: %s\n" #: gnutls.c:584 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Falló la importación del certificado X509: %s\n" #: gnutls.c:594 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Falló la configuración del certificado PKCS#11: %s\n" #: gnutls.c:628 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "No se pudo inicializar el hash MD5: %s\n" #: gnutls.c:638 #, c-format msgid "MD5 hash error: %s\n" msgstr "Error del hash MD5: %s\n" #: gnutls.c:696 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "DEK-Info perdido: cabecera desde clave OpenSSL cifrada\n" #: gnutls.c:703 msgid "Cannot determine PEM encryption type\n" msgstr "No se puede determinar el tipo de cifrado PEM\n" #: gnutls.c:716 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Tipo de cifrado PEM no soportado: %s\n" #: gnutls.c:741 gnutls.c:754 msgid "Invalid salt in encrypted PEM file\n" msgstr "Semilla no válida en el archivo PEM cifrado\n" #: gnutls.c:778 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Error base64-decoding del archivo PEM cifrado: %s\n" #: gnutls.c:786 msgid "Encrypted PEM file too short\n" msgstr "Archivo cifrado PEM demasiado corto\n" #: gnutls.c:814 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" "Falló al inicializar el cifrado para el archivo PEM de descifrado: %s\n" #: gnutls.c:825 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Falló al descrifrar la clave PEM: %s\n" #: gnutls.c:877 msgid "Decrypting PEM key failed\n" msgstr "Falló al descifrar la clave PEM\n" #: gnutls.c:881 gnutls.c:1406 openssl.c:458 msgid "Enter PEM pass phrase:" msgstr "Introduzca contraseña PEM:" #: gnutls.c:942 msgid "This binary built without system key support\n" msgstr "Este binario se compiló sin soporte para sistema de claves\n" #: gnutls.c:949 msgid "This binary built without PKCS#11 support\n" msgstr "Este binario se compiló sin soporte PKCS#11\n" #: gnutls.c:993 openssl-pkcs11.c:407 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Usando certificado PKCS#11 %s\n" #: gnutls.c:994 #, c-format msgid "Using system certificate %s\n" msgstr "Usando el certificado del sistema %s\n" #: gnutls.c:1012 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Error al cargar el certificado desde PKCS#11: %s\n" #: gnutls.c:1013 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Error al cargar el certificado del sistema: %s\n" #: gnutls.c:1024 openssl.c:827 #, c-format msgid "Using certificate file %s\n" msgstr "Usando archivo de certificado %s\n" #: gnutls.c:1052 msgid "PKCS#11 file contained no certificate\n" msgstr "El archivo PKCS#11 no contiene ningún certificado\n" #: gnutls.c:1078 msgid "No certificate found in file" msgstr "Certificado no encontrado en el archivo" #: gnutls.c:1083 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Falló al cargar certificado: %s\n" #: gnutls.c:1099 #, c-format msgid "Using system key %s\n" msgstr "Usando la clave del sistema %s\n" #: gnutls.c:1104 gnutls.c:1272 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Error al inicializar la estructura de clave privada: %s\n" #: gnutls.c:1115 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Error al importar la clave del sistema %s: %s\n" #: gnutls.c:1126 gnutls.c:1220 gnutls.c:1248 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "Probando URL de clave PKCS#11 %s\n" #: gnutls.c:1131 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Error al inicializar la estructura de clave PKCS#11: %s\n" #: gnutls.c:1260 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Error al importar el URL PKCS#11 %s: %s\n" #: gnutls.c:1267 openssl-pkcs11.c:644 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Usando clave PKCS#11 %s\n" #: gnutls.c:1282 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" "Error al importar la clave PKCS#11 a la estructura de clave privada: %s\n" #: gnutls.c:1300 #, c-format msgid "Using private key file %s\n" msgstr "Usando archivo de clave privada: %s\n" #: gnutls.c:1311 openssl.c:651 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Esta versión de OpenConnect se compiló sin soporte TPM\n" #: gnutls.c:1327 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "Esta versión de OpenConnect se compiló sin soporte TPM2\n" #: gnutls.c:1348 msgid "Failed to interpret PEM file\n" msgstr "Falló al traducir el archivo PEM\n" #: gnutls.c:1367 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Falló al cargar la clave privada PKCS#1: %s\n" #: gnutls.c:1380 gnutls.c:1394 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Falló al cargar la clave privada como PKCS#8: %s\n" #: gnutls.c:1402 gnutls.c:1435 openssl.c:1002 openssl.c:1012 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Falló al descifrar el archivo del certificado PKCS#8\n" #: gnutls.c:1427 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Falló al determinar el tipo de clave privada %s\n" #: gnutls.c:1439 openssl.c:1008 msgid "Enter PKCS#8 pass phrase:" msgstr "Introduzca contraseña PKCS#8:" #: gnutls.c:1455 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Falló al obtener el ID de la clave: %s\n" #: gnutls.c:1500 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Error al firmar el test de datos con la clave privada: %s\n" #: gnutls.c:1515 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Error al validar la firma con el certificado: %s\n" #: gnutls.c:1540 msgid "No SSL certificate found to match private key\n" msgstr "" "No se encontró ningún certificado SSL que coincida con la clave privada\n" #: gnutls.c:1552 openssl.c:560 openssl.c:709 #, c-format msgid "Using client certificate '%s'\n" msgstr "Usando el certificado del cliente '%s'\n" #: gnutls.c:1559 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "Configuración de lista de revocación del certificado fallida: %s\n" #: gnutls.c:1580 gnutls.c:1590 msgid "Failed to allocate memory for certificate\n" msgstr "Falló al asignar memoria para el certificado\n" #: gnutls.c:1626 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" "AVISO: GnuTLS devolvió un distribuidor de certificados incorrecto; puede que " "falle la autenticación\n" #: gnutls.c:1649 msgid "Got no issuer from PKCS#11\n" msgstr "No se obtuvo distribuidor de PKCS#11\n" #: gnutls.c:1654 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "Se obtuvo el siguiente CA «%s» de PKCS11\n" #: gnutls.c:1680 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Falló al asignar memoria para soportar certificados\n" #: gnutls.c:1703 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Añadiendo soporte CA '%s'\n" #: gnutls.c:1725 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" "La clave privada parece no ser compatible con RSA-PSS. Desactivando TLSv1.3\n" #: gnutls.c:1749 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Falló al configurar el certificado: %s\n" #: gnutls.c:1942 msgid "Server presented no certificate\n" msgstr "El servidor no presentó ningún certificado\n" #: gnutls.c:1950 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" "Error al comparar el certificado del servidor en la renegociación: %s\n" "\n" #: gnutls.c:1955 openssl.c:1515 msgid "Server presented different cert on rehandshake\n" msgstr "" "El servidor ha presentado un certificado diferente en la renegociación\n" #: gnutls.c:1960 openssl.c:1518 msgid "Server presented identical cert on rehandshake\n" msgstr "" "El servidor ha presentado un certificado idéntico en la renegociación\n" #: gnutls.c:1966 msgid "Error initialising X509 cert structure\n" msgstr "Error al inicializar la estructura de certificado X509\n" #: gnutls.c:1972 msgid "Error importing server's cert\n" msgstr "Error al importar el certificado del servidor\n" #: gnutls.c:1981 main.c:1794 msgid "Could not calculate hash of server's certificate\n" msgstr "No se pudo calcular hash del certificado del servidor\n" #: gnutls.c:1986 msgid "Error checking server cert status\n" msgstr "Error al comprobar el estado del certificado del servidor\n" #: gnutls.c:1991 msgid "certificate revoked" msgstr "certificado revocado" #: gnutls.c:1993 msgid "signer not found" msgstr "firmante no encontrado" #: gnutls.c:1995 msgid "signer not a CA certificate" msgstr "el firmante no es un certificado CA" #: gnutls.c:1997 msgid "insecure algorithm" msgstr "algoritmo inseguro" #: gnutls.c:1999 msgid "certificate not yet activated" msgstr "certificado no activado todavía" #: gnutls.c:2001 msgid "certificate expired" msgstr "certificado caducado" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2006 msgid "signature verification failed" msgstr "verificación de la firma fallida" #: gnutls.c:2055 openssl.c:1399 openssl.c:1551 msgid "certificate does not match hostname" msgstr "el certificado no coincide con el nombre del servidor" #: gnutls.c:2060 openssl.c:1398 openssl.c:1557 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "La verificación del certificado del servidor falló: %s\n" #: gnutls.c:2127 msgid "Failed to allocate memory for cafile certs\n" msgstr "Falló al asignar memoria para certificados cafile\n" #: gnutls.c:2148 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Falló al leer certificados desde cafile: %s\n" #: gnutls.c:2164 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Falló al abrir el archivo CA '%s': %s\n" #: gnutls.c:2177 openssl.c:1679 msgid "Loading certificate failed. Aborting.\n" msgstr "Carga de certificado fallida. Abortando.\n" #: gnutls.c:2238 #, c-format msgid "Failed to set TLS priority string (\"%s\"): %s\n" msgstr "Falló al establecer la cadena de prioridad TLS («%s»): %s\n" #: gnutls.c:2250 openssl.c:1796 #, c-format msgid "SSL negotiation with %s\n" msgstr "Negociación SSL con «%s»\n" #: gnutls.c:2297 openssl.c:1822 msgid "SSL connection cancelled\n" msgstr "Conexión SSL cancelada\n" #: gnutls.c:2304 #, c-format msgid "SSL connection failure: %s\n" msgstr "Fallo de la conexión TLS: %s\n" #: gnutls.c:2313 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "Retorno no fatal de GnuTLS durante la negociación: %s\n" #: gnutls.c:2319 openssl.c:1839 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "Conectó a HTTPS en %s\n" #: gnutls.c:2322 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "Renegociar SSL en %s\n" #: gnutls.c:2484 openssl-pkcs11.c:199 #, c-format msgid "PIN required for %s" msgstr "PIN requerido por %s" #: gnutls.c:2488 openssl-pkcs11.c:202 msgid "Wrong PIN" msgstr "PIN incorrecto" #: gnutls.c:2491 msgid "This is the final try before locking!" msgstr "¡Éste es el último intento antes de bloquear!" #: gnutls.c:2493 msgid "Only a few tries left before locking!" msgstr "¡Sólo quedan unos pocos intentos antes de bloquear!" #: gnutls.c:2498 openssl-pkcs11.c:206 msgid "Enter PIN:" msgstr "Introducir PIN:" #: gnutls.c:2584 openssl.c:1969 msgid "Unsupported OATH HMAC algorithm\n" msgstr "Algoritmo OATH HMAC no soportado\n" #: gnutls.c:2593 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "Falló al calcular OATH HMAC: %s\n" #: gnutls.c:2607 #, c-format msgid "ttls_pull_timeout_func %dms\n" msgstr "ttls_pull_timeout_func %dms\n" #: gnutls.c:2650 openssl.c:2084 msgid "Established EAP-TTLS session\n" msgstr "Sesión EAP-TTLS establecida\n" #: gnutls_tpm.c:54 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "Función de firma TPM llamada para %d bytes.\n" #: gnutls_tpm.c:61 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Falló al crear el objeto hash TPM: %s\n" #: gnutls_tpm.c:68 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Falló al establecer el valor en el objeto hash TPM: %s\n" #: gnutls_tpm.c:78 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "Falló la firma hash TPM: %s\n" #: gnutls_tpm.c:100 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Error al decodificar la clave TSS blob: %s\n" #: gnutls_tpm.c:108 gnutls_tpm.c:119 gnutls_tpm.c:132 msgid "Error in TSS key blob\n" msgstr "Error en clave TSS blob\n" #: gnutls_tpm.c:139 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Falló al crear el contexto TPM: %s\n" #: gnutls_tpm.c:146 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Falló al conectar al contexto TPM: %s\n" #: gnutls_tpm.c:154 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Falló al cargar la clave TPM SRK: %s\n" #: gnutls_tpm.c:161 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Falló al cargar el objeto de política TPM SRK: %s\n" #: gnutls_tpm.c:182 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Falló al establecer el PIN TPM %s\n" #: gnutls_tpm.c:198 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Falló al cargar la clave blob TPM: %s\n" #: gnutls_tpm.c:205 msgid "Enter TPM SRK PIN:" msgstr "Introduzca PIN TPM SRK:" #: gnutls_tpm.c:226 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Falló al crear el objeto de política de clave: %s\n" #: gnutls_tpm.c:234 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Falló al asignar la política a la clave: %s\n" #: gnutls_tpm.c:240 msgid "Enter TPM key PIN:" msgstr "Introduzca el PIN de la clave TPM:" #: gnutls_tpm.c:251 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Falló al establecer el PIN de la clave: %s\n" #: gnutls_tpm2.c:92 gnutls_tpm2_esys.c:474 gnutls_tpm2_ibm.c:419 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "Resumen EC TPM2 desconocido de tamaño %d\n" #: gnutls_tpm2.c:198 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "Error al decodificar la clave TSS2 blob: %s\n" #: gnutls_tpm2.c:208 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "Falló al crear el tipo ASN.1 para TPM2: %s\n" #: gnutls_tpm2.c:217 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "Falló al decodificar la clave TPM2 ASN.1: %s\n" # A public key OID is an object identifier (OID) identifying the algorithm of the public-private key pair associated with the certificate. #: gnutls_tpm2.c:225 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "Falló al analizar el tipo de OID de la clave TPM2: %s\n" #: gnutls_tpm2.c:231 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "La clave TPM2 tiene un OID de tipo desconocido %s no %s\n" #: gnutls_tpm2.c:249 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "Falló al analizar el padre de la clave TPM2: %s\n" #: gnutls_tpm2.c:270 msgid "Failed to parse TPM2 pubkey element\n" msgstr "Falló al analizar el elemento clave pública de TPM2\n" #: gnutls_tpm2.c:275 msgid "Failed to parse TPM2 privkey element\n" msgstr "Falló al analizar el elemento clave privada de TPM2\n" #: gnutls_tpm2.c:280 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "Clave TPM2 analizada con padre %x, autenticación vacía %d\n" #: gnutls_tpm2.c:384 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "Resumen TPM2 demasiado grande: %d > %d\n" #: gnutls_tpm2_esys.c:173 msgid "TPM2 password too long; truncating\n" msgstr "Contraseña TPM2 demasiado grande; truncando\n" #: gnutls_tpm2_esys.c:189 msgid "owner" msgstr "propietario" #: gnutls_tpm2_esys.c:190 msgid "null" msgstr "nulo" # apoyo, promoción de un producto #: gnutls_tpm2_esys.c:191 msgid "endorsement" msgstr "respaldo" #: gnutls_tpm2_esys.c:192 msgid "platform" msgstr "plataforma" #: gnutls_tpm2_esys.c:196 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "Creando clave primaria bajo jerarquía %s.\n" #: gnutls_tpm2_esys.c:201 gnutls_tpm2_ibm.c:262 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "Introduzca la contraseña TPM2 bajo jerarquía %s:" #: gnutls_tpm2_esys.c:209 gnutls_tpm2_esys.c:303 gnutls_tpm2_esys.c:374 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "TPM2 Esys_TR_SetAuth falló: 0x%x\n" #: gnutls_tpm2_esys.c:221 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "la autenticación del propietario de TPM2 Esys_CreatePrimary falló\n" #: gnutls_tpm2_esys.c:226 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "TPM2 Esys_CreatePrimary falló: 0x%x\n" #: gnutls_tpm2_esys.c:245 msgid "Establishing connection with TPM.\n" msgstr "Estableciendo conexión con TPM.\n" #: gnutls_tpm2_esys.c:250 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "TPM2 Esys_Initialize falló: 0x%x\n" #: gnutls_tpm2_esys.c:258 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" "TPM2 ya se había iniciado dando un falso positivo de fallo en el registro de " "tpm2tts.\n" #: gnutls_tpm2_esys.c:261 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "TPM2 Esys_Startup falló: 0x%x\n" #: gnutls_tpm2_esys.c:274 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "Esys_TR_FromTPMPublic falló para el gestor 0x%x: 0x%x\n" #: gnutls_tpm2_esys.c:295 gnutls_tpm2_ibm.c:278 msgid "Enter TPM2 parent key password:" msgstr "Introduzca la contraseña de la clave TPM del padre:" #: gnutls_tpm2_esys.c:309 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "Cargando el blob de la clave TPM2, padre %x.\n" #: gnutls_tpm2_esys.c:317 msgid "TPM2 Esys_Load auth failed\n" msgstr "Falló la autenticación de TPM2 Esys_Load\n" #: gnutls_tpm2_esys.c:323 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "TPM2 Esys_Load falló: 0x%x\n" #: gnutls_tpm2_esys.c:333 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "TPM2 Esys_FlushContext para el primario generado falló: 0x%x\n" #: gnutls_tpm2_esys.c:363 gnutls_tpm2_ibm.c:363 gnutls_tpm2_ibm.c:450 msgid "Enter TPM2 key password:" msgstr "Introduzca la contraseña de la clave TPM2:" #: gnutls_tpm2_esys.c:395 #, c-format msgid "TPM2 RSA sign function called for %d bytes.\n" msgstr "Función de firma TPM2 RSA llamada para %d bytes.\n" #: gnutls_tpm2_esys.c:414 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "La autenticación de TPM2 Esys_RSA_Decrypt falló\n" #: gnutls_tpm2_esys.c:420 gnutls_tpm2_esys.c:500 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "TPM2 falló al generar la firma RSA: 0x%x\n" #: gnutls_tpm2_esys.c:464 gnutls_tpm2_ibm.c:405 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "Función de firma TPM2 EC llamada para %d bytes.\n" #: gnutls_tpm2_esys.c:494 msgid "TPM2 Esys_Sign auth failed\n" msgstr "Falló la autenticación de TPM2 Esys_Sign\n" #: gnutls_tpm2_esys.c:532 gnutls_tpm2_ibm.c:485 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "Gestor padre de TPM2 no válido 0x%08x\n" #: gnutls_tpm2_esys.c:546 gnutls_tpm2_ibm.c:502 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "Falló al importar los datos de la clave privada TPM2: 0x%x\n" #: gnutls_tpm2_esys.c:555 gnutls_tpm2_ibm.c:512 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "Falló al importar los datos de la clave pública TPM2: 0x%x\n" #: gnutls_tpm2_esys.c:569 gnutls_tpm2_ibm.c:523 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "Tipo de clave TPM2 no soportado %d\n" #: gnutls_tpm2_ibm.c:54 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "La operación de TPM2 %s falló (%d): %s%s%s\n" #: gpst.c:226 #, c-format msgid "%s\n" msgstr "%s\n" #: gpst.c:229 #, c-format msgid "Challenge: %s\n" msgstr "Desafío: %s\n" #: gpst.c:412 #, c-format msgid "Unknown ESP MAC algorithm: %s" msgstr "Algoritmo ESP MAC desconocido: %s" #: gpst.c:420 #, c-format msgid "Unknown ESP encryption algorithm: %s" msgstr "Algoritmo de cifrado ESP desconocido: %s" #: gpst.c:486 #, c-format msgid "Session will expire after %d minutes.\n" msgstr "La sesión expirará después de %d minutos.\n" #: gpst.c:489 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "El tiempo de espera de inactividad es de %d minutos.\n" #: gpst.c:495 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "Ruta de túnel SSL no estándar: %s\n" #: gpst.c:499 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "El tiempo de espera del túnel (intervalo rekey) es de %d minutos.\n" #: gpst.c:510 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" "La dirección de la puerta de enlace en el XML de configuración (%s) difiere " "de la dirección externa de la puerta de enlace (%s).\n" #: gpst.c:564 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" "La configuración de GlobalProtect envió ipsec-mode=%s (se esperaba esp-" "tunnel)\n" #: gpst.c:573 oncp.c:835 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" "Ignorando las claves ESP ya que el soporte ESP no está disponible en esta " "versión\n" #: gpst.c:591 #, c-format msgid "" "Potential IPv6-related GlobalProtect config tag <%s>: %s\n" "This build does not support GlobalProtect IPv6 due to a lack of\n" "of information on how it is configured. Please report this\n" "to .\n" msgstr "" "Etiqueta de configuración potentialmente relacionada con GlobalProtect IPv6 <" "%s>: %s\n" "Esta versión no sorporta GlobalProtect IPv6 debido a la falta de\n" "información sobre cómo está configurado. Informe de esto en\n" ".\n" #: gpst.c:596 #, c-format msgid "Unknown GlobalProtect config tag <%s>: %s\n" msgstr "Etiqueta de configuración de GlobalProtect desconocida <%s>: %s\n" #: gpst.c:655 msgid "ESP disabled" msgstr "ESP desactivado" #: gpst.c:657 msgid "No ESP keys received" msgstr "No se recibieron claves ESP" #: gpst.c:659 msgid "ESP support not available in this build" msgstr "El soporte de ESP no está disponible en esta versión" #: gpst.c:663 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "No se recibió MTU. Se calculó %d para %s%s\n" #: gpst.c:725 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "Conectando al extremo del túnel HTTPS ...\n" #: gpst.c:747 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "Error al obtener respuesta HTTPS del GET-tunnel.\n" #: gpst.c:756 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" "La puerta de enlace se desconectó inmediatamente después de la solicitud GET-" "tunnel.\n" #: gpst.c:764 #, c-format msgid "Got inappropriate HTTP GET-tunnel response: %.*s\n" msgstr "Se obtuvo una respuesta HTTP GET-tunnel inadecuada: %.*s\n" #: gpst.c:909 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" "VPN connectivity may be disabled or limited without HIP report submission.\n" "You need to provide a --csd-wrapper argument with the HIP report submission " "script.\n" msgstr "" "ADVERTENCIA: El servidor nos pidió enviar un informe HIP con md5sum %s.\n" "La conectividad VPN podría desactivarse o verse limitada sin el envío del " "informe HIP.\n" "Necesita proporcionar un argumento --csd-wrapper con el script de envío del " "informe HIP.\n" #: gpst.c:919 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" "Error: La ejecución del script de «Informe HIP» no se ha implementado en " "esta plataforma.\n" #: gpst.c:948 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "El script HIP «%s» salió anormalmente\n" #: gpst.c:953 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "El script HIP «%s» devolvió un estado distinto de cero: %d\n" #: gpst.c:959 msgid "HIP report submission failed.\n" msgstr "Falló el envío del informe HIP.\n" #: gpst.c:961 msgid "HIP report submitted successfully.\n" msgstr "El informe HIP se envió correctamente.\n" #: gpst.c:996 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "Falló al ejecutar el script HIP %s\n" #: gpst.c:1020 msgid "Gateway says HIP report submission is needed.\n" msgstr "La puerta de enlace dice que se necesita el envío del informe HIP.\n" #: gpst.c:1026 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" "La puerta de enlace dice que no se necesita el envío del informe HIP.\n" #: gpst.c:1053 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "Túnel ESP conectado; saliendo del bucle principal HTTPS.\n" #: gpst.c:1069 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "Falló al conectar al túnel ESP; se usa HTTPS en su lugar.\n" #: gpst.c:1105 #, c-format msgid "Packet receive error: %s\n" msgstr "Error al recibir el paquete: %s\n" #: gpst.c:1126 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" "Longitud de paquete inesperada. SSL_read devolvió %d (incluye 16 bytes de " "cabecera) pero la cabecera payload_len es %d\n" #: gpst.c:1136 msgid "Got GPST DPD/keepalive response\n" msgstr "Se obtuvo la respuesta GPST DPD/keepalive\n" #: gpst.c:1140 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" "Se esperaba 0000000000000000 como últimos 8 bytes del encabezado de paquete " "DPD/keepalive, pero se obtuvo:\n" #: gpst.c:1147 #, c-format msgid "Received IPv%d data packet of %d bytes\n" msgstr "Se ha recibido un paquete de datos IPv%d de %d bytes\n" #: gpst.c:1156 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" "Se esperaba 0100000000000000 como últimos 8 bytes del encabezado del paquete " "de datos, pero se obtuvo:\n" #: gpst.c:1164 msgid "Unknown packet. Header dump follows:\n" msgstr "Paquete desconocido. El volcado de la cabecera es el siguiente:\n" #: gpst.c:1212 msgid "GlobalProtect rekey due\n" msgstr "La rekey de GlobalProtect está pendiente\n" #: gpst.c:1217 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "La detección de muerte del par GPST detectó la muerte del par\n" #: gpst.c:1237 msgid "Send GPST DPD/keepalive request\n" msgstr "Enviar solicitud GPST DPD/keepalive\n" #: gpst.c:1260 #, c-format msgid "Sending IPv%d data packet of %d bytes\n" msgstr "Enviando paquete de datos IPv%d de %d bytes\n" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Error al importar el nombre GSSAPI para la autenticación:\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "Error al generar la respuesta GSSAPI\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "Intentando la autenticación GSSAPI en el proxy\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "Intentando la autenticación GSSAPI en el servidor «%s»\n" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "Autenticación GSSAPI completada\n" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "Testigo GSSAPI demasiado largo (%zd bytes)\n" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "Enviando testigo GSSAPI de %zu bytes\n" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "Falló al enviar el testigo de autenticación GSSAPI al proxy: %s\n" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "Falló al recibir el testigo de autenticación GSSAPI del proxy: %s\n" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "El servidor SOCKS ha informado de un fallo de contexto de GSSAPI\n" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "Respuesta de estado GSSAPI desconocida (0x%02x) del servidor SOCKS\n" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "Obtenido el testigo GSSAPI de %zu bytes: %02x %02x %02x %02x\n" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "Enviando negociación de protección GSSAPI de %zu bytes\n" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "Falló al enviar la respuesta de protección GSSAPI al proxy %s\n" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "Falló al recibir la respuesta de protección GSSAPI al proxy %s\n" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" "Obtenida la espuesta de protección GSSAPI de %zu bytes: %02x %02x %02x %02x\n" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "Respuesta de protección GSSAPI no válida del proxy (%zu bytes)\n" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" "El proxy SOCKS solicita integridad del mensaje, que no está soportada\n" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" "El proxy SOCKS solicita confidencialidad del mensaje, que no está soportada\n" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "El servidor SOCKS solicita un tipo de protección 0x%02x desconocido\n" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "Intentando la autenticación HTTP Bacis en el proxy\n" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "Intentando la autenticación HTTP básica en el servidor «%s»\n" #: http-auth.c:200 http.c:1201 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "Esta versión de OpenConnect se compiló sin soporte GSSAPI\n" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" "El proxy ha solicitado autenticación básica, que está desactivada de manera " "predeterminada\n" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" "El servidor «%s» ha solicitado autenticación básica, que está desactivada de " "manera predeterminada\n" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "No hay más métodos de autenticación que usar\n" #: http.c:321 msgid "No memory for allocating cookies\n" msgstr "Sin memoria para asignar cookies\n" #: http.c:396 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Falló al analizar la respuesta HTTP '%s'\n" #: http.c:402 #, c-format msgid "Got HTTP response: %s\n" msgstr "Se obtuvo la respuesta HTTP: %s\n" #: http.c:410 msgid "Error processing HTTP response\n" msgstr "Error al procesar la respuesta HTTP\n" #: http.c:417 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Ignorando línea no reconocida de la respuesta HTTP '%s'\n" #: http.c:437 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Cookie ofrecida no válida: %s\n" #: http.c:457 msgid "SSL certificate authentication failed\n" msgstr "Falló la autenticación del certificado SSL\n" #: http.c:492 #, c-format msgid "Response body has negative size (%d)\n" msgstr "El cuerpo de la respuesta tiene un tamaño negativo (%d)\n" #: http.c:503 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Codificación de transferencia desconocida: %s\n" #. Now the body, if there is one #: http.c:522 #, c-format msgid "HTTP body %s (%d)\n" msgstr "Cuerpo HTTP %s (%d)\n" #: http.c:538 http.c:568 msgid "Error reading HTTP response body\n" msgstr "Error leyendo el cuerpo de la respuesta HTTP\n" #: http.c:551 msgid "Error fetching chunk header\n" msgstr "Error recuperando el fragmento de la cabecera\n" #: http.c:579 msgid "Error fetching HTTP response body\n" msgstr "Error recuperando el cuerpo de la respuesta HTTP\n" #: http.c:582 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "" "Error en el fragmentado de la decodificación. Se esperaba '', se obtuvo: '%s'" #: http.c:595 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "No se pudo recibir el cuerpo HTTP 1.0 sin cerrar la conexión\n" #: http.c:724 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Falló al analizar el URL redirigido '%s': %s\n" #: http.c:748 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "No se pudo seguir el redireccionamiento al URL no https '%s'\n" #: http.c:776 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "" "Asignando una nueva ruta para el redireccionamiento relativo fallido: %s\n" #: http.c:1001 oncp.c:591 pulse.c:1292 #, c-format msgid "Unexpected %d result from server\n" msgstr "Resultado %d del servidor inesperado\n" #: http.c:1049 msgid "request granted" msgstr "petición concedida" #: http.c:1050 msgid "general failure" msgstr "fallo general" #: http.c:1051 msgid "connection not allowed by ruleset" msgstr "conexión no permitida por el conjunto de reglas" #: http.c:1052 msgid "network unreachable" msgstr "red inaccesible" #: http.c:1053 msgid "host unreachable" msgstr "servidor inaccesible" #: http.c:1054 msgid "connection refused by destination host" msgstr "conexión rechazada por el servidor de destino" #: http.c:1055 msgid "TTL expired" msgstr "TTL caducado" #: http.c:1056 msgid "command not supported / protocol error" msgstr "comando no soportado / error de protocolo" #: http.c:1057 msgid "address type not supported" msgstr "tipo de dirección no soportada" #: http.c:1067 msgid "SOCKS server requested username/password but we have none\n" msgstr "" "El servidor SOCKS requiere un nombre de usuario y una contraseña, pero no " "hay ninguno\n" #: http.c:1075 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" "El nombre de usuario y la contraseña para la autenticación SOCKS deben ser < " "255 bytes\n" #: http.c:1090 http.c:1153 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Error al escribir petición auth al proxy SOCKS: %s\n" #: http.c:1098 http.c:1160 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Error al leer respuesta auth desde el proxy SOCKS: %s\n" #: http.c:1105 http.c:1166 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Respuesta auth inesperada desde el proxy SOCKS: %02x %02x\n" #: http.c:1111 msgid "Authenticated to SOCKS server using password\n" msgstr "Autenticado en el servidor SOCKS usando una contraseña\n" #: http.c:1115 msgid "Password authentication to SOCKS server failed\n" msgstr "Falló la autenticación con contraseña en el servidor SOCKS\n" #: http.c:1178 http.c:1185 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "El servidor SOCKS ha solicitado autenticación GSSAPI\n" #: http.c:1191 msgid "SOCKS server requested password authentication\n" msgstr "El servidor SOCKS solicita autenticación por contraseña\n" #: http.c:1198 msgid "SOCKS server requires authentication\n" msgstr "El servidor SOCKS requiere autenticación\n" #: http.c:1207 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" "El servidor SOCKS ha solicitado una autenticación de tipo %02x desconocida\n" #: http.c:1213 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Solicitando conexión al proxy SOCKS a %s:%d\n" #: http.c:1228 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Error al escribir la petición de conectar al proxy SOCKS: %s\n" #: http.c:1236 http.c:1278 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Error al leer la respuesta de conexión desde el proxy SOCKS: %s\n" #: http.c:1242 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Respuesta de conexión inesperada desde el proxy SOCKS: %02x %02x…\n" #: http.c:1250 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "Error del proxy SOCKS %02x: %s\n" #: http.c:1254 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "Error del proxy SOCKS %02x\n" #: http.c:1271 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Tipo de dirección inesperado %02x en la respuesta de conexión SOCKS\n" #: http.c:1294 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Solicitando conexión HTTP proxy a %s:%d\n" #: http.c:1329 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Falló al enviar petición de proxy: %s\n" #: http.c:1352 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "Falló la petición CONNECT del proxy: %d\n" #: http.c:1371 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Tipo de proxy desconocido '%s'\n" #: http.c:1397 #, c-format msgid "Failed to parse proxy '%s'\n" msgstr "" #: http.c:1421 msgid "Only http or socks(5) proxies supported\n" msgstr "Sólo se soportan proxies HTTP o socks(5)\n" #: library.c:116 msgid "Cisco AnyConnect or openconnect" msgstr "Cisco AnyConnect o openconnect" #: library.c:117 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "Compatible con VPN Cisco AnyConnect SSL y también con ocserv" #: library.c:133 msgid "Juniper Network Connect" msgstr "Juniper Network Connect" #: library.c:134 msgid "Compatible with Juniper Network Connect" msgstr "Compatible con Juniper Network Connect" #: library.c:152 msgid "Palo Alto Networks GlobalProtect" msgstr "Palo Alto Networks GlobalProtect" #: library.c:153 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "Compatible con VPN Palo Alto Networks (PAN) GlobalProtect SSL" #: library.c:171 msgid "Pulse Connect Secure" msgstr "Pulse Connect Secure" #: library.c:172 msgid "Compatible with Pulse Connect Secure SSL VPN" msgstr "Compatible con la VPN Pulse Connect Secure SSL" #: library.c:234 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "Protocolo VPN '%s' desconocido\n" #: library.c:256 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Compilado con la biblioteca SSL sin soporte para Cisco DTLS\n" #: library.c:683 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Falló al analizar el URL del servidor '%s'\n" #: library.c:689 msgid "Only https:// permitted for server URL\n" msgstr "Sólo se permite https:// para el URL del servidor\n" #: library.c:1084 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "El hash del certificado es desconocido: %s.\n" #: library.c:1113 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" "El tamaño de la huella proporcionada es menor que el mínimo requerido (%u).\n" #: library.c:1174 msgid "No form handler; cannot authenticate.\n" msgstr "No hay gestor de formulario; no se puede autenticar.\n" #: main.c:340 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "Falló CommandLineToArgvW(): %s\n" #: main.c:353 #, c-format msgid "Fatal error in command line handling\n" msgstr "Error fatal al gestionar la línea de comandos\n" #: main.c:388 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "ReadConsole() ha fallado: %s\n" #: main.c:401 #, c-format msgid "fgetws() failed: %s\n" msgstr "Falló fgetws(): %s\n" #: main.c:416 main.c:429 #, c-format msgid "Error converting console input: %s\n" msgstr "Error al convertir la entrada de la consola: %s\n" #: main.c:423 main.c:689 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Falló la ubicación para la cadena desde stdin\n" #: main.c:584 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" "Para obtener ayuda de OpenConnect, consulte la página web\n" " http://www.infradead.org/openconnect/mail.html\n" #: main.c:593 #, c-format msgid "Using OpenSSL. Features present:" msgstr "Usando OpenSSL. Características disponibles:" #: main.c:595 #, c-format msgid "Using GnuTLS. Features present:" msgstr "Usando GnuTLS. Características disponibles:" #: main.c:608 msgid "OpenSSL ENGINE not present" msgstr "Motor OpenSSL no disponible" #: main.c:647 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" "Advertencia: este binario carece de soporte para DTLS y/o ESP. El " "rendimiento se verá afectado.\n" #: main.c:657 #, c-format msgid "Supported protocols:" msgstr "Protocolos admitidos:" #: main.c:659 main.c:675 msgid " (default)" msgstr " (predeterminado)" #: main.c:672 msgid "Set VPN protocol" msgstr "Establecer el protocolo VPN" #: main.c:713 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:754 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "No se puede procesar esta ruta ejecutable «%s»" #: main.c:760 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "Falló la ubicación de la ruta de vpnc-script\n" #: main.c:780 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "Cambiar nombre de servidor «%s» a «%s»\n" #: main.c:793 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Uso: openconnect [opciones] \n" #: main.c:794 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" "Cliente abierto para múltiples protocolos VPN, versión %s\n" "\n" #: main.c:796 msgid "Read options from config file" msgstr "Leer opciones del archivo de configuración" #: main.c:797 msgid "Report version number" msgstr "Informe del número de versión" #: main.c:798 msgid "Display help text" msgstr "Mostrar el texto de ayuda" #: main.c:802 msgid "Authentication" msgstr "Autenticación" #: main.c:803 msgid "Set login username" msgstr "Establecer nombre de usuario de inicio de sesión" #: main.c:804 msgid "Disable password/SecurID authentication" msgstr "Desactivar autenticación por contraseña/SecurID" #: main.c:805 msgid "Do not expect user input; exit if it is required" msgstr "No se espera entrada del usuario; sale si lo requiere" #: main.c:806 msgid "Read password from standard input" msgstr "Leer contraseña de la entrada estándar" #: main.c:807 msgid "Choose authentication login selection" msgstr "Elegir autenticación de selección de inicio de sesión" #: main.c:808 msgid "Provide authentication form responses" msgstr "Proporcionar autenticación a partir de las respuestas" #: main.c:809 msgid "Use SSL client certificate CERT" msgstr "Usar certificado CERT del cliente SSL" #: main.c:810 msgid "Use SSL private key file KEY" msgstr "Usar archivo KEY de clave SSL privada" #: main.c:811 msgid "Warn when certificate lifetime < DAYS" msgstr "Avisar cuando el tiempo de vida del certificado sea menor que DAYS" #: main.c:812 msgid "Set login usergroup" msgstr "Establecer grupo de usuario de login" #: main.c:813 msgid "Set key passphrase or TPM SRK PIN" msgstr "Establecer clave de frase de paso o pin TPM SRK" #: main.c:814 msgid "Key passphrase is fsid of file system" msgstr "La clave de frase de paso es un fsid de un sistema de archivos" #: main.c:815 msgid "Software token type: rsa, totp or hotp" msgstr "Tipo de testigo software: RSA, TOTP o HOTP" #: main.c:816 msgid "Software token secret" msgstr "Testigo software secreto" #: main.c:818 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "(Nota: libstoken (RSA SecurID) está desactivado en esta versión)" #: main.c:821 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(NOTA: Yubikey está desactivado en esta versión)" #: main.c:824 msgid "Server validation" msgstr "Validación del servidor" #: main.c:825 msgid "Server's certificate SHA1 fingerprint" msgstr "SHA1 de la huella del servidor de certificados" #: main.c:826 msgid "Do not require server SSL cert to be valid" msgstr "No se requiere certificado SSL del servidor para ser válido" #: main.c:827 msgid "Disable default system certificate authorities" msgstr "" "Desactivar de manera predeterminada las autoridades de certificación del " "sistema" #: main.c:828 msgid "Cert file for server verification" msgstr "Archivo del certificado para la verificación del servidor" #: main.c:830 msgid "Internet connectivity" msgstr "Conectividad de Internet" #: main.c:831 msgid "Set proxy server" msgstr "Establecer servidor proxy" #: main.c:832 msgid "Set proxy authentication methods" msgstr "Establecer los métodos de autenticación del proxy" #: main.c:833 msgid "Disable proxy" msgstr "Desactivar proxy" #: main.c:834 msgid "Use libproxy to automatically configure proxy" msgstr "Usar libproxy para configurar automáticamente el proxy" #: main.c:836 msgid "(NOTE: libproxy disabled in this build)" msgstr "(NOTA: libproxy está desactivado en esta versión)" #: main.c:838 msgid "Connection retry timeout in seconds" msgstr "Tiempo en segundos para reintento de conexión" #: main.c:839 msgid "Use IP when connecting to HOST" msgstr "Usar IP cuando al conectar a HOST" #: main.c:840 msgid "copy TOS / TCLASS when using DTLS" msgstr "copiar TOS / TCLASS al usar DTLS" #: main.c:841 msgid "Set local port for DTLS and ESP datagrams" msgstr "Establecer puerto local para datagramas DTLS y ESP" #: main.c:843 msgid "Authentication (two-phase)" msgstr "Autenticación (dos fases)" #: main.c:844 msgid "Use authentication cookie COOKIE" msgstr "Usar autenticación cookie COOKIE" #: main.c:845 msgid "Read cookie from standard input" msgstr "Leer cookie de la entrada estándar" #: main.c:846 msgid "Authenticate only and print login info" msgstr "Sólo autenticar y mostrar información del inicio de sesión" #: main.c:847 msgid "Fetch and print cookie only; don't connect" msgstr "Sólo obtener y mostrar la cookie; no conectar" #: main.c:848 msgid "Print cookie before connecting" msgstr "Mostrar la cookie antes de conectar" #: main.c:851 msgid "Process control" msgstr "Control de proceso" #: main.c:852 msgid "Continue in background after startup" msgstr "Continuar en segundo plano tras el arranque" #: main.c:853 msgid "Write the daemon's PID to this file" msgstr "Escribir los PID de los demonios en este archivo" #: main.c:854 msgid "Drop privileges after connecting" msgstr "Revocar privilegios después de conectar" #: main.c:857 msgid "Logging (two-phase)" msgstr "Inicio de sesión (dos fases)" #: main.c:859 msgid "Use syslog for progress messages" msgstr "Usar registros de sucesos del sistema para mensajes de progreso" #: main.c:861 msgid "More output" msgstr "Más salida" #: main.c:862 msgid "Less output" msgstr "Menos salida" #: main.c:863 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "Volcado del tráfico de autenticación HTTP (implica --verbose)" #: main.c:864 msgid "Prepend timestamp to progress messages" msgstr "Añadir marca de tiempo a los mensajes de progreso" #: main.c:866 msgid "VPN configuration script" msgstr "Script de configuración de VPN" #: main.c:867 msgid "Use IFNAME for tunnel interface" msgstr "Usar IFNAME para la interfaz del túnel" #: main.c:868 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" "Terminal de línea de comandos para usar un script de configuración " "compatible con vpnc" #: main.c:869 msgid "default" msgstr "predeterminado" #: main.c:871 msgid "Pass traffic to 'script' program, not tun" msgstr "Pasar el tráfico al «script», no al dispositivo TUN" #: main.c:874 msgid "Tunnel control" msgstr "Control de túnel" #: main.c:875 msgid "Do not ask for IPv6 connectivity" msgstr "No pedir conectividad IPv6" #: main.c:876 msgid "XML config file" msgstr "Archivo XML de configuración" #: main.c:877 msgid "Request MTU from server (legacy servers only)" msgstr "Solicitar MTU al servidor (sólo servidores heredados)" #: main.c:878 msgid "Indicate path MTU to/from server" msgstr "Indicar ruta MTU al/desde el servidor" #: main.c:879 msgid "Enable stateful compression (default is stateless only)" msgstr "Activar compresión con estado (predeterminado es solo sin estado)" #: main.c:880 msgid "Disable all compression" msgstr "Desactivar toda la compresión" #: main.c:881 msgid "Set minimum Dead Peer Detection interval" msgstr "Establecer el intervalo mínimo de detección de par muerto" #: main.c:882 msgid "Require perfect forward secrecy" msgstr "Solicitar la perfecta confidencialidad del envío" #: main.c:883 msgid "Disable DTLS and ESP" msgstr "Desactivar DTLS y ESP" #: main.c:884 msgid "OpenSSL ciphers to support for DTLS" msgstr "Claves OpenSSL que soportar por DTLS" #: main.c:885 msgid "Set packet queue limit to LEN pkts" msgstr "Establecer límite de cola de paquete a LEN pqts" #: main.c:887 msgid "Local system information" msgstr "Información del sistema local" #: main.c:888 msgid "HTTP header User-Agent: field" msgstr "Cabecera HTTP User_Agent: campo" #: main.c:889 msgid "Local hostname to advertise to server" msgstr "Nombre del servidor local para anunciar al servidor" #: main.c:890 msgid "OS type (linux,linux-64,win,...) to report" msgstr "Tipo de SO (linux, linux-64, win...) que informar" #: main.c:891 msgid "reported version string during authentication" msgstr "cadena de versión informada durante la autenticación" #: main.c:892 msgid "default:" msgstr "predeterminado:" #: main.c:895 msgid "Trojan binary (CSD) execution" msgstr "Ejecución de binario troyano (CSD)" #: main.c:896 msgid "Drop privileges during trojan execution" msgstr "Revocar privilegios durante la ejecución del troyano" #: main.c:897 msgid "Run SCRIPT instead of trojan binary" msgstr "Ejecutar SCRIPT en lugar del binario troyano" #: main.c:900 msgid "Server bugs" msgstr "Errores del servidor" #: main.c:901 msgid "Disable HTTP connection re-use" msgstr "Desactivar reutilización de conexión HTTP" #: main.c:902 msgid "Do not attempt XML POST authentication" msgstr "No intentar autenticación XML POST" #: main.c:924 #, c-format msgid "Failed to allocate string\n" msgstr "Falló al asignar la cadena\n" #: main.c:997 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Falló al obtener la línea del archivo de configuración: %s\n" #: main.c:1037 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Opción no reconocida en la línea %d: «%s»\n" #: main.c:1047 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "La opción «%s» no coge un argumento en la línea %d\n" #: main.c:1051 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "La opción «%s» requiere un argumento en la línea %d\n" #: main.c:1076 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "Usuario «%s» no válido: %s\n" #: main.c:1086 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "ID «%d» de usuario no válido: %s\n" #: main.c:1130 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "Advertencia: no se puede establecer el lugar: %s\n" #: main.c:1140 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "Advertencia: esta versión de OpenConnect se ha construido sin soporte\n" " para iconv, pero parece que está usando un conjunto de\n" " caracteres «%s» heredado. Puede darse un comportamiento " "extraño\n" #: main.c:1147 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "ADVERTENCIA: esta versión de openconnect es %s pero\n" " la biblioteca libopenconnect es %s\n" #: main.c:1157 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Falló al ubicar la estructura vpninfo\n" #: main.c:1215 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" "No se puede usar la opción «config» dentro del archivo de configuración\n" #: main.c:1223 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "No se puede abrir el archivo de configuración «%s»: %s\n" #: main.c:1239 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "Modo de compresión «%s» no válido\n" #: main.c:1260 #, c-format msgid "Missing colon in resolve option\n" msgstr "Faltan los dos puntos en la opción de resolución\n" #: main.c:1265 #, c-format msgid "Failed to allocate memory\n" msgstr "Falló al reservar memoria\n" #: main.c:1349 main.c:1358 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d demasiado pequeña\n" #: main.c:1388 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Desactivando todas las reutilizaciones de conexiones HTTP debido a la opción " "--no-http-keepalive.\n" "Si esto ayuda, por favor informe en .\n" #: main.c:1394 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" "La opción --no-cert-check era insegura y se ha quitado.\n" "Repare su certificado del servidor o use --servercert para confiarlo.\n" #: main.c:1411 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "No se permite la longitud de cola cero; usando 1\n" #: main.c:1425 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect versión %s\n" #: main.c:1463 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Modo de testigo software no válido: «%s»\n" #: main.c:1473 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "Credencial de SO «%s» no válida\n" #: main.c:1506 #, c-format msgid "Too many arguments on command line\n" msgstr "Demasiados argumentos en la línea de comandos\n" #: main.c:1509 #, c-format msgid "No server specified\n" msgstr "No se ha especificado ningún servidor\n" #: main.c:1525 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "Esta versión de openconnect se compiló sin soporte para libproxy\n" #: main.c:1555 #, c-format msgid "Error opening cmd pipe\n" msgstr "Error al abrir la tubería cmd\n" #: main.c:1588 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "Falló al obtener la cookie WebVPN\n" #: main.c:1609 #, c-format msgid "Creating SSL connection failed\n" msgstr "Falló al crear la conexión SSL\n" #: main.c:1625 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "Falló al configurar UDP; se usa SSL en su lugar\n" #: main.c:1633 #, c-format msgid "Connected as %s%s%s, using SSL%s%s, with %s%s%s %s\n" msgstr "Conectado como %s%s%s, usando SSL%s%s, con %s%s%s %s\n" #: main.c:1639 msgid "disabled" msgstr "desactivado" #: main.c:1639 msgid "in progress" msgstr "en progreso" #: main.c:1643 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "No se proporcionó el argumento --script; No están configurados los DNS ni " "las rutas\n" #: main.c:1645 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Consulte http://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:1658 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Falló al abrir «%s» para escritura: %s\n" #: main.c:1670 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Se continúa en segundo plano; PID %d\n" #: main.c:1687 msgid "User requested reconnect\n" msgstr "El usuario ha solicitado la reconexión\n" #: main.c:1695 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "Se ha rechazado la cookie al volver a conectar; saliendo.\n" #: main.c:1699 msgid "Session terminated by server; exiting.\n" msgstr "Sesión terminada por el servidor; saliendo.\n" #: main.c:1703 msgid "User cancelled (SIGINT/SIGTERM); exiting.\n" msgstr "Cancelado por el usuario (SIGINT/SIGTERM); saliendo.\n" #: main.c:1707 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "El usuario se ha desacoplado de la sesión (SIGHUP); saliendo.\n" #: main.c:1711 msgid "Unknown error; exiting.\n" msgstr "Error desconocido; saliendo.\n" #: main.c:1730 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Falló al abrir %s para escritura: %s\n" #: main.c:1738 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Falló al guardar configuración en %s: %s\n" #: main.c:1797 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "El certificado del servidor SSL no coincide: %s\n" #: main.c:1816 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Falló la verificación del certificado del servidor VPN «%s».\n" "Razón: %s\n" #: main.c:1819 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" "Para confiar en este servidor en el futuro, quizás añada esto a su línea de " "comandos:\n" #: main.c:1820 #, c-format msgid " --servercert %s\n" msgstr " --servercert %s\n" #: main.c:1825 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Introduzca «%s» para aceptar, «%s» para cancelar; cualquier otra cosa para " "ver:" #: main.c:1826 main.c:1844 msgid "no" msgstr "no" #: main.c:1826 main.c:1832 msgid "yes" msgstr "sí" #: main.c:1853 #, c-format msgid "Server key hash: %s\n" msgstr "Servidor de clave hash: %s\n" #: main.c:1887 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "La elección de autenticación «%s» coincide con varias opciones\n" #: main.c:1890 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Elección de autenticación «%s» no disponible\n" #: main.c:1911 msgid "User input required in non-interactive mode\n" msgstr "Entrada del usuario requerida en modo no-interactivo\n" #: main.c:2149 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Falló al abrir el archivo del testigo para escritura: %s\n" #: main.c:2157 #, c-format msgid "Failed to write token: %s\n" msgstr "Falló al escribir el testigo: %s\n" #: main.c:2203 main.c:2224 #, c-format msgid "Soft token string is invalid\n" msgstr "La cadena de testigo débil no es válida\n" #: main.c:2206 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "No se puede abrir el archivo ~/.stokenrc\n" #: main.c:2209 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "OpenConnect no se compiló con soporte para libstoken\n" #: main.c:2212 #, c-format msgid "General failure in libstoken\n" msgstr "Fallo general en libstoken\n" #: main.c:2227 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "OpenConnect no se compiló con soporte para liboath\n" #: main.c:2230 #, c-format msgid "General failure in liboath\n" msgstr "Fallo general en liboath\n" #: main.c:2241 #, c-format msgid "Yubikey token not found\n" msgstr "Testigo Yubkey no encontrado\n" #: main.c:2244 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "OpenConnect no se compiló con soporte para Yubikey\n" #: main.c:2247 #, c-format msgid "General Yubikey failure: %s\n" msgstr "Fallo general de Yubikey: %s\n" #: mainloop.c:127 #, c-format msgid "Set up tun script failed\n" msgstr "Falló al configurar el script TUN\n" #: mainloop.c:134 #, c-format msgid "Set up tun device failed\n" msgstr "Falló al configurar el dispositivo TUN\n" #: mainloop.c:265 msgid "Caller paused the connection\n" msgstr "El origen ha pausado la conexión\n" #: mainloop.c:273 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Sin trabajo que hacer; durmiendo durante %d ms…\n" #: mainloop.c:294 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "Falló WaitForMultipleObjects: %s\n" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "Falló InitializeSecurityContext(): %lx\n" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "Falló AcquireCredentialsHandle(): %lx\n" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "Error al comunicar con el ayudante ntlm_auth\n" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" "Intentando la autenticación HTTP NTLM en el proxy (inicio de sesión único)\n" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" "Intentando la autenticación HTTP NTLM en el servidor «%s» (inicio de sesión " "único)\n" #: ntlm.c:978 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "Intentando la autenticación HTTP NTLM %d en el proxy\n" #: ntlm.c:982 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "Intentando la autenticación HTTP NTLM v%d en el servidor «%s»\n" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "Cadena de testigo base32 no válida\n" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "Falló al asignar memoria para decodificar el secreto OATH\n" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "Esta versión de OpenConnect se compiló sin soporte PSKC\n" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "OK al generar el código de token INITIAL\n" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "OK al generar el código de token NEXT\n" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" "El servidor está rechazando el token blando; cambiando a acceso manual\n" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "Generando código de testigo OATH TOTP\n" #: oath.c:565 msgid "Generating OATH HOTP token code\n" msgstr "Generando código de testigo OATH HOTP\n" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "Cookie «%s» no válida\n" #: oncp.c:160 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "Longitud %d inesperada para TLV %d/%d\n" #: oncp.c:166 pulse.c:402 #, c-format msgid "Received MTU %d from server\n" msgstr "Recibida MTU %d desde el servidor\n" #: oncp.c:175 pulse.c:285 pulse.c:343 #, c-format msgid "Received DNS server %s\n" msgstr "Recibido servidor DNS %s\n" #: oncp.c:186 pulse.c:411 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "Dominio de búsqueda DNS recibido %.*s\n" #: oncp.c:201 #, c-format msgid "Received internal IP address %s\n" msgstr "Recibida dirección IP interna %s\n" #: oncp.c:210 pulse.c:276 #, c-format msgid "Received netmask %s\n" msgstr "Máscara de red recibida %s\n" #: oncp.c:219 pulse.c:426 #, c-format msgid "Received internal gateway address %s\n" msgstr "Dirección de puerta de enlace interna recibida %s\n" #: oncp.c:232 pulse.c:2001 #, c-format msgid "Received split include route %s\n" msgstr "Recibida ruta incluida dividida %s\n" #: oncp.c:254 pulse.c:2014 #, c-format msgid "Received split exclude route %s\n" msgstr "Recibida ruta excluida dividida %s\n" #: oncp.c:274 pulse.c:300 #, c-format msgid "Received WINS server %s\n" msgstr "Recibido servidor WINS %s\n" #: oncp.c:297 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "Cifrado ESP: 0x%02x (%s)\n" #: oncp.c:316 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "ESP HMAC: 0x%02x (%s)\n" #: oncp.c:327 #, c-format msgid "ESP compression: %d\n" msgstr "Compresión ESP: %d\n" #: oncp.c:335 pulse.c:506 #, c-format msgid "ESP port: %d\n" msgstr "Puerto ESP: %d\n" #: oncp.c:342 pulse.c:489 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "Tiempo de vida de la clave ESP: %u bytes\n" #: oncp.c:350 pulse.c:481 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "Tiempo de vida de la clave ESP: %u segundos\n" #: oncp.c:358 pulse.c:513 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "Alternativa ESP a SSL: %u segundos\n" #: oncp.c:366 pulse.c:497 #, c-format msgid "ESP replay protection: %d\n" msgstr "Protección de repetición ESP: %d\n" #: oncp.c:374 pulse.c:529 pulse.c:2115 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "ESP SPI (salientes): %x\n" #: oncp.c:383 pulse.c:538 pulse.c:2103 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "%d bytes de ESP secretos\n" #: oncp.c:395 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "Grupo TLV %d desconocido atrib %d longitud %d:%s\n" #: oncp.c:473 msgid "Failed to parse KMP header\n" msgstr "Falló al analizar la cabecera KMP\n" #: oncp.c:490 msgid "Failed to parse KMP message\n" msgstr "Falló al analizar el mensaje KMP\n" #: oncp.c:496 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "Mensaje KMP %d conseguido de tamaño %d\n" #: oncp.c:512 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "TLV no ESP recibidos (grupo %d) en la negociación ESP KMP\n" #: oncp.c:577 oncp.c:609 oncp.c:747 msgid "Error creating oNCP negotiation request\n" msgstr "Error al crear la solicitud de negociación oNCP\n" #: oncp.c:618 oncp.c:783 msgid "Short write in oNCP negotiation\n" msgstr "Escritura corta en la negociación oNCP\n" #: oncp.c:631 oncp.c:666 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "Leer %d bytes del registro SSL\n" #: oncp.c:636 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" "Respuesta inesperada de tamaño %d después del paquete de nombre de host\n" #: oncp.c:643 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" "La respuesta del servidor al paquete de nombre de host es el error 0x%02x\n" #: oncp.c:670 msgid "Invalid packet waiting for KMP 301\n" msgstr "Paquete no válido a la espera de KMP 301\n" #: oncp.c:683 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "Se esperaba mensaje KMP 301 del servidor pero se obtuvo %d\n" #: oncp.c:692 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "Mensaje 301 de KMP del servidor demasiado largo (%d bytes)\n" #: oncp.c:698 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "Se obtuvo un mensaje KMP 301 de longitud %d\n" #: oncp.c:705 msgid "Failed to read continuation record length\n" msgstr "Falló al leer la longitud de la continuación del registro\n" #: oncp.c:711 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "El registro de %d bytes adicionales es demasiado grande; harían %d\n" #: oncp.c:720 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "Falló al leer la longitud %d de la continuación del registro\n" #: oncp.c:726 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "Leídos %d bytes adicionales del mensaje KMP 301\n" #: oncp.c:767 msgid "Error negotiating ESP keys\n" msgstr "Error al negociar las claves ESP\n" #: oncp.c:776 msgid "oNCP negotiation request outgoing:\n" msgstr "Solicitud de negociación oNCP saliente:\n" #: oncp.c:829 pulse.c:2372 msgid "new incoming" msgstr "nueva entrada" #: oncp.c:830 pulse.c:2373 msgid "new outgoing" msgstr "nueva salida" #: oncp.c:855 msgid "Read only 1 byte of oNCP length field\n" msgstr "Sólo lectura de 1 byte del campo de longitud oNCP\n" #: oncp.c:864 msgid "Server terminated connection (session expired)\n" msgstr "El servidor terminó la conexión (la sesión ha finalizado)\n" #: oncp.c:868 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "El servidor terminó la conexión (razón: %d)\n" #: oncp.c:874 msgid "Server sent zero-length oNCP record\n" msgstr "El servidor envió longitud cero al registro oNCP\n" #: oncp.c:969 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "Mensaje KMP entrante %d de tamaño %d (tiene %d)\n" #: oncp.c:972 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" "Continuar para procesar el mensaje KMP %d ahora el tamaño es %d (tiene %d)\n" #: oncp.c:991 msgid "Unrecognised data packet\n" msgstr "Paquete de datos no reconocido\n" #: oncp.c:1053 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "Mensaje KMP desconocido %d de tamaño %d:\n" #: oncp.c:1058 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr ".... + %d bytes más sin recibir\n" #: oncp.c:1073 pulse.c:2404 msgid "Packet outgoing:\n" msgstr "Paquete saliente:\n" #: oncp.c:1135 msgid "Sent ESP enable control packet\n" msgstr "Enviado paquete de control de activación\n" #: oncp.c:1269 msgid "Logout successful.\n" msgstr "Sesión cerrada con éxito.\n" #: openconnect-internal.h:1164 openconnect-internal.h:1172 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "Error: llamada a %s() con UTF-8 no válido para el argumento «%s»\n" # Overhead = exceso de bits, bits por encima de lo que hubiera sido sin DTLS # # DTLS = un protocolo que proporciona privacidad en las comunicaciones para protocolos de datagramas #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "No se puede calcular el exceso para %s\n" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "Falló al generar la clave aleatoria\n" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "Falló al crear SSL_SESSION ASN.1 para OpenSSL: %s\n" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "OpenSSL falló al analizar SSL_SESSION ASN.1\n" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "Falló al inicializar la sesión DTLSv1\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "Tamaño de ID de aplicación demasiado grande\n" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "Retrollamada PSK\n" #: openssl-dtls.c:366 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Falló al inicializar DTLSv1 CTX\n" #: openssl-dtls.c:376 msgid "Set DTLS CTX version failed\n" msgstr "Falló al establecer la versión de CTX de DTLS\n" #: openssl-dtls.c:398 msgid "Failed to generate DTLS key\n" msgstr "Falló al generar la clave DTLS\n" #: openssl-dtls.c:453 msgid "Set DTLS cipher list failed\n" msgstr "Falló al establecer la lista de cifrado DTLS\n" #: openssl-dtls.c:479 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "Cifrado DTLS «%s» no encontrado\n" #: openssl-dtls.c:500 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "SSL_set_session() falló con el protocolo antiguo 0x%x\n" "¿Está usando una versión de OpenSSL más antigua que la 0.9.8m?\n" "Consulte http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use la opción de la línea de comandos --no-dtls para evitar este mensaje\n" #: openssl-dtls.c:533 msgid "SSL_set_session() failed\n" msgstr "SSL_set_session() falló\n" #: openssl-dtls.c:606 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "Establecida la conexíon DTLS (usando OpenSSL). Ciphersuite %s.\n" #: openssl-dtls.c:643 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" "Su versión de OpenSSL es anterior a la que usó para compilar, por lo que " "DTLS podría fallar." #: openssl-dtls.c:694 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Esto es probablemente debido a que su OpenSSL está roto\n" "Consulte http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: openssl-dtls.c:701 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "Falló la negociación DTLS: %d\n" #: openssl-esp.c:86 msgid "Failed to initialise ESP cipher:\n" msgstr "Falló al inicializar el cifrado ESP\n" #: openssl-esp.c:100 msgid "Failed to initialize ESP HMAC\n" msgstr "Falló al inicializar ESP HMAC\n" #: openssl-esp.c:176 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" "Falló al establecer el contexto para el descifrado de el paquete ESP:\n" #: openssl-esp.c:184 msgid "Failed to decrypt ESP packet:\n" msgstr "Falló al descifrar el paquete ESP:\n" #: openssl-esp.c:200 msgid "Failed to encrypt ESP packet:\n" msgstr "Falló al cifrar el paquete ESP:\n" #: openssl-pkcs11.c:43 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "Falló al establecer el contexto PKCS#11 de libp11:\n" #: openssl-pkcs11.c:49 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "Falló al cargar el módulo del proveedor PKCS#11 (%s):\n" #: openssl-pkcs11.c:269 msgid "PIN locked\n" msgstr "PIN bloqueado\n" #: openssl-pkcs11.c:272 msgid "PIN expired\n" msgstr "PIN caducado\n" #: openssl-pkcs11.c:275 msgid "Another user already logged in\n" msgstr "Otro usuario ya ha iniciado sesión\n" #: openssl-pkcs11.c:279 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "Error desconocido al iniciar sesión en el testigo PKCS#11\n" #: openssl-pkcs11.c:286 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "Sesión iniciada en el slot PKCS#11 «%s»\n" #: openssl-pkcs11.c:300 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "Falló al enumerar los certificados en la ranura PKCS#11 «%s»\n" #: openssl-pkcs11.c:306 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "Encontrados %d certificados en la ranura «%s»\n" #: openssl-pkcs11.c:342 openssl-pkcs11.c:565 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "Falló al analizar el URI PKCS#11 '%s'\n" #: openssl-pkcs11.c:349 openssl-pkcs11.c:575 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "Falló al enumerar las ranuras PKCS#11\n" #: openssl-pkcs11.c:383 openssl-pkcs11.c:617 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "Sesión iniciada en la ranura PKCS#11 «%s»\n" #: openssl-pkcs11.c:393 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "No se pudo encontrar el certificado PKCS#11 «%s»\n" #: openssl-pkcs11.c:401 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "libp11 no pudo obtener el contenido del certificado X.509\n" #: openssl-pkcs11.c:412 openssl.c:713 msgid "Failed to install certificate in OpenSSL context\n" msgstr "Falló al instalar el certificado en el contexto de OpenSSL\n" #: openssl-pkcs11.c:458 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "Falló al enumerar las claves en la ranura PKCS#11 «%s»\n" #: openssl-pkcs11.c:464 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "Encontradas %d claves en la ranura «%s»\n" #: openssl-pkcs11.c:497 msgid "Certificate has no public key\n" msgstr "El certificado no tiene clave pública\n" #: openssl-pkcs11.c:503 openssl-pkcs11.c:526 msgid "Certificate does not match private key\n" msgstr "El certificado no coincide con la clave privada\n" #: openssl-pkcs11.c:506 msgid "Checking EC key matches cert\n" msgstr "Comprobando que la clave EC coincide con el certificado\n" #: openssl-pkcs11.c:510 msgid "Failed to allocate signature buffer\n" msgstr "Falló al asignar el búfer de firma\n" #: openssl-pkcs11.c:520 msgid "Failed to sign dummy data to validate EC key\n" msgstr "Falló al firmar los datos de prueba para validar la clave EC\n" #: openssl-pkcs11.c:638 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "No se pudo encontrar la clave PKCS#11 «%s»\n" #: openssl-pkcs11.c:649 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "Falló al instancia la clave privada desde PKCS#11\n" #: openssl-pkcs11.c:678 msgid "Add key from PKCS#11 failed\n" msgstr "Falló al añadir clave desde PKCS#11\n" #: openssl-pkcs11.c:710 openssl-pkcs11.c:716 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "Esta versión de OpenConnect se compiló sin soporte de PKCS#11\n" #: openssl.c:147 msgid "Failed to write to SSL socket\n" msgstr "Falló al escribir en el socket SSL\n" #: openssl.c:197 openssl.c:263 msgid "Failed to read from SSL socket\n" msgstr "Falló al leer del socket SSL\n" #: openssl.c:292 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" "Error de lectura SSL %d (probablemente el servidor cerró la conexión); " "reconectando.\n" #: openssl.c:317 #, c-format msgid "SSL_write failed: %d\n" msgstr "Falló el SSL_write: %d\n" #: openssl.c:389 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "Tipo %d de solicitud SSL UI no gestionado\n" #: openssl.c:465 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "Contraseña PEM demasiado larga (%d >= %d)\n" #: openssl.c:498 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Certificado extra desde %s: «%s»\n" #: openssl.c:548 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Falló el análisis PKCS#12 (vea los errores anteriores)\n" #: openssl.c:563 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS#12 no contiene certificado\n" #: openssl.c:572 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS#12 no contiene clave privada\n" #: openssl.c:577 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:600 msgid "Can't load TPM engine.\n" msgstr "No se puede cargar el motor TPM.\n" #: openssl.c:606 msgid "Failed to init TPM engine\n" msgstr "Falló al iniciar el motor TPM\n" #: openssl.c:616 msgid "Failed to set TPM SRK password\n" msgstr "Falló al establecer la contraseña TPM SRK\n" #: openssl.c:630 msgid "Failed to load TPM private key\n" msgstr "Falló al cargar la clave privada TPM\n" #: openssl.c:636 msgid "Add key from TPM failed\n" msgstr "Falló al añadir clave desde TPM\n" #: openssl.c:687 openssl.c:835 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Falló al abrir el archivo de certificado %s: %s\n" #: openssl.c:697 msgid "Loading certificate failed\n" msgstr "Falló la carga del certificado\n" #: openssl.c:735 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" "Falló al procesar todos los certificados soportados. Intentándolo de todas " "formas...\n" #: openssl.c:748 msgid "PEM file" msgstr "Archivo PEM" #: openssl.c:777 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Falló al crear BIO para el elemento «%s» del almacén de claves\n" #: openssl.c:802 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Carga de la clave privada fallida (¿contraseña incorrecta?)\n" #: openssl.c:808 msgid "Loading private key failed (see above errors)\n" msgstr "Falló al cargar la clave privada (vea los errores de arriba)\n" #: openssl.c:858 msgid "Failed to load X509 certificate from keystore\n" msgstr "Falló al cargar el certificado X509 del almacén de claves\n" #: openssl.c:864 msgid "Failed to use X509 certificate from keystore\n" msgstr "Falló al usar el certificado X509 del almacén de claves\n" #: openssl.c:896 msgid "Failed to use private key from keystore\n" msgstr "Falló al usar la clave privada del almacén de claves\n" #: openssl.c:912 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Falló al abrir el archivo de clave privada %s: %s\n" #: openssl.c:936 openssl.c:951 openssl.c:972 openssl.c:1038 msgid "Loading private key failed\n" msgstr "Falló al cargar la clave privada\n" #: openssl.c:1032 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "Falló al convertir PKCS#8 a OpenSSL EVP_PKEY\n" #: openssl.c:1049 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Falló al identificar el tipo de clave privada en «%s»\n" #: openssl.c:1203 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Coincidencia en el altname DNS «%s»\n" #: openssl.c:1210 #, c-format msgid "No match for altname '%s'\n" msgstr "Sin coincidencias para el altname «%s»\n" #: openssl.c:1224 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "El certificado tiene el altname GEN_IPADD con longitud errónea %d\n" #: openssl.c:1235 openssl.c:1381 #, c-format msgid "Matched %s address '%s'\n" msgstr "Coincidencia %s en la dirección «%s»\n" #: openssl.c:1242 #, c-format msgid "No match for %s address '%s'\n" msgstr "Sin coincidencias para %s dirección «%s»\n" #: openssl.c:1284 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "El URI «%s» no tiene una ruta vacía; se ignora\n" #: openssl.c:1289 #, c-format msgid "Matched URI '%s'\n" msgstr "Coincidió el URI «%s»\n" #: openssl.c:1300 #, c-format msgid "No match for URI '%s'\n" msgstr "Sin resultado para el URI «%s»\n" #: openssl.c:1315 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "Ningún altname en el certificado del par coincidió con «%s»\n" #: openssl.c:1323 msgid "No subject name in peer cert!\n" msgstr "¡Sin nombre del sujeto en el certificado del par!\n" #: openssl.c:1343 msgid "Failed to parse subject name in peer cert\n" msgstr "Falló al analizar el nombre del sujeto en el certificado del par\n" #: openssl.c:1350 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "El sujeto del certificado del par no coincide («%s» != «%s»)\n" #: openssl.c:1355 openssl.c:1389 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Coincidió el nombre del sujeto del certificado del par «%s»\n" #: openssl.c:1451 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Certificado extra desde cafile: «%s»\n" #: openssl.c:1589 msgid "Error in client cert notAfter field\n" msgstr "Error en el campo notAfter del certificado del cliente\n" #: openssl.c:1602 msgid "" msgstr "" #: openssl.c:1655 msgid "Create TLSv1 CTX failed\n" msgstr "Falló al crear el CTX TLSv1\n" #: openssl.c:1674 msgid "SSL certificate and key do not match\n" msgstr "El certificado SSL y la clave no coinciden\n" #: openssl.c:1719 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Falló al leer certificados desde el archivo CA «%s»\n" #: openssl.c:1752 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Falló al abrir el archivo CA «%s»\n" #: openssl.c:1812 msgid "SSL connection failure\n" msgstr "Fallo en conexión SSL\n" #: openssl.c:1975 msgid "Failed to calculate OATH HMAC\n" msgstr "Falló al calcular OATH HMAC\n" #: openssl.c:2078 #, c-format msgid "EAP-TTLS negotiation with %s\n" msgstr "Negociación EAP-TTLS con %s\n" #: openssl.c:2089 #, c-format msgid "EAP-TTLS connection failure %d\n" msgstr "Fallo de conexión EAP-TTLS: %d\n" #: pulse.c:267 #, c-format msgid "Received internal Legacy IP address %s\n" msgstr "Dirección IP heredada interna %s recibida\n" #: pulse.c:315 pulse.c:332 pulse.c:351 pulse.c:374 msgid "Failed to handle IPv6 address\n" msgstr "Falló al gestionar direcciones IPv6\n" #: pulse.c:324 #, c-format msgid "Received internal IPv6 address %s\n" msgstr "Dirección IPv6 interna %s recibida\n" #: pulse.c:366 #, c-format msgid "Received IPv6 split include %s\n" msgstr "Recibida división de IPv6 incluida %s\n" #: pulse.c:389 #, c-format msgid "Received IPv6 split exclude %s\n" msgstr "Recibida división de IPv6 excluida %s\n" #: pulse.c:396 #, c-format msgid "Unexpected length %d for attr 0x%x\n" msgstr "Longitud %d inesperada para el atributo 0x%x\n" #: pulse.c:447 #, c-format msgid "ESP encryption: 0x%04x (%s)\n" msgstr "Cifrado ESP: 0x%04x (%s)\n" #: pulse.c:471 #, c-format msgid "ESP HMAC: 0x%04x (%s)\n" msgstr "ESP HMAC: 0x%04x (%s)\n" #. Amusingly, this isn't enforced. It's client-only #: pulse.c:521 #, c-format msgid "ESP only: %d\n" msgstr "Solo ESP: %d\n" #: pulse.c:563 #, c-format msgid "Unknown attr 0x%x len %d:%s\n" msgstr "Atributo desconocido 0x%x de longitud %d:%s\n" #: pulse.c:574 #, c-format msgid "Read %d bytes of IF-T/TLS record\n" msgstr "Leídos %d bytes del registro IF-T/TLS\n" #: pulse.c:591 msgid "Short write to IF-T/TLS\n" msgstr "Escritura corta en IF-T/TLS\n" #: pulse.c:604 msgid "Error creating IF-T packet\n" msgstr "Error al crear el paquete IF-T\n" #: pulse.c:624 msgid "Error creating EAP packet\n" msgstr "Error al crear el paquete EAP\n" #: pulse.c:659 pulse.c:1358 pulse.c:1421 msgid "Unexpected IF-T/TLS authentication challenge:\n" msgstr "Desafío de autenticación IF-T/TLS no esperado:\n" #: pulse.c:677 msgid "Unexpected EAP-TTLS payload:\n" msgstr "Carga de EAP-TTLS no esperada:\n" #: pulse.c:710 #, c-format msgid "AVP 0x%x/0x%x:%s\n" msgstr "AVP 0x%x/0x%x:%s\n" #: pulse.c:712 #, c-format msgid "AVP %d:%s\n" msgstr "AVP %d:%s\n" #: pulse.c:779 msgid "Enter Pulse user realm:" msgstr "Introduzca el reino de usuario de Pulse:" #: pulse.c:784 pulse.c:827 msgid "Realm:" msgstr "Reino:" #: pulse.c:822 msgid "Choose Pulse user realm:" msgstr "Elija el reino de usuario de Pulse:" #: pulse.c:838 pulse.c:1487 pulse.c:1556 msgid "Failed to parse AVP\n" msgstr "Falló al analizar AVP\n" #: pulse.c:905 msgid "Session limit reached. Choose session to kill:\n" msgstr "" "Se ha alcanzado el límite de sesiones. Elija una sesión que terminar:\n" #: pulse.c:910 msgid "Session:" msgstr "Sesión:" #: pulse.c:926 msgid "Failed to parse session list\n" msgstr "Falló al analizar la lista de sesión\n" #: pulse.c:1012 msgid "Enter secondary credentials:" msgstr "Introduzca las credenciales secundarias:" #. Point to password prompt in case that's all we use #: pulse.c:1012 msgid "Enter user credentials:" msgstr "Introduzca las credenciales de usuario:" #: pulse.c:1022 pulse.c:1115 msgid "Secondary username:" msgstr "Nombre de usuario secundario:" #: pulse.c:1022 pulse.c:1115 msgid "Username:" msgstr "Nombre de usuario:" #: pulse.c:1032 stoken.c:89 msgid "Password:" msgstr "Contraseña:" #: pulse.c:1032 msgid "Secondary password:" msgstr "Contraseña secundaria:" #: pulse.c:1105 msgid "Token code request:" msgstr "Petición de código del testigo:" #: pulse.c:1129 msgid "Please enter response:" msgstr "Introduzca la respuesta:" #: pulse.c:1133 msgid "Please enter your passcode:" msgstr "Introduzca su contraseña:" #: pulse.c:1135 msgid "Please enter your secondary token information:" msgstr "Introduzca su información de testigo secundaria:" #: pulse.c:1275 msgid "Error creating Pulse connection request\n" msgstr "Error al crear la solicitud de conexión de Pulse\n" #: pulse.c:1318 msgid "Unexpected response to IF-T/TLS version negotiation:\n" msgstr "Respuesta no esperada a la negociación de la versión de IF-T/TLS:\n" #: pulse.c:1323 #, c-format msgid "IF-T/TLS version from server: %d\n" msgstr "Versión de IF-T/TLS del servidor: %d\n" #: pulse.c:1449 msgid "Failed to establish EAP-TTLS session\n" msgstr "Falló al establecer la sesión EAP-TTLS\n" #: pulse.c:1568 msgid "Server certificate mismatch. Aborting due to suspected MITM attack\n" msgstr "" "El certificado del servidor no coincide. Cancelando debido a la sospecha de " "un ataque MITM\n" #: pulse.c:1583 msgid "Authentication failure: Account locked out\n" msgstr "Fallo de autenticación: cuenta bloqueada\n" #: pulse.c:1586 #, c-format msgid "Authentication failure: Code 0x%02x\n" msgstr "Fallo de autenticación: código 0x%02x\n" #: pulse.c:1668 msgid "Unhandled Pulse authentication packet, or authentication failure\n" msgstr "" "Paquete de autenticación Pulse no gestionado o fallo de autenticación\n" #: pulse.c:1684 msgid "Pulse authentication cookie not accepted\n" msgstr "Cookie de autenticación de Pulse no aceptada\n" #: pulse.c:1690 msgid "Pulse realm entry\n" msgstr "Entrada del reino Pulse\n" #: pulse.c:1696 msgid "Pulse realm choice\n" msgstr "Elección del reino Pulse\n" #: pulse.c:1703 #, c-format msgid "Pulse password auth request, code 0x%02x\n" msgstr "Solicitud de autenticación de contraseña, código 0x%02x\n" #: pulse.c:1714 msgid "Pulse password general token code request\n" msgstr "Solicitud de código de testigo para contraseña general Pulse\n" #: pulse.c:1725 #, c-format msgid "Pulse session limit, %d sessions\n" msgstr "Límite de la sesión pulse, %d sesiones\n" #: pulse.c:1734 msgid "Unhandled Pulse auth request\n" msgstr "Petición de autenticación Pulse no gestionada\n" #: pulse.c:1771 msgid "Unexpected response instead of IF-T/TLS auth success:\n" msgstr "Respuesta no esperada en lugar de autenticación IF-T/TLS correcta:\n" #: pulse.c:1844 #, c-format msgid "Read %d bytes of IF-T/TLS EAP-TTLS record\n" msgstr "Leer %d bytes del registro IF-T/TLS EAP-TTLS\n" #: pulse.c:1855 msgid "Bad EAP-TTLS packet\n" msgstr "Paquete EAP-TTLS incorrecto\n" #: pulse.c:1968 msgid "Unexpected Pulse config packet:\n" msgstr "Paquete de configuración Pulse no esperado:\n" #: pulse.c:2025 #, c-format msgid "Receive route of unknown type 0x%08x\n" msgstr "recibida ruta de tipo 0x%08x desconocido\n" #: pulse.c:2096 msgid "Invalid ESP config packet:\n" msgstr "Paquete de configuración de ESP no válido:\n" #: pulse.c:2108 msgid "Invalid ESP setup\n" msgstr "Configuración de ESP no válida\n" #: pulse.c:2183 msgid "Bad IF-T/TLS packet when expecting configuration:\n" msgstr "Paquete IF-T/TLS incorrecto al solicitar la configuración:\n" #: pulse.c:2191 msgid "Unexpected IF-T/TLS packet when expecting configuration.\n" msgstr "Paquete IF-T/TLS no esperado al solicitar la configuración.\n" #: pulse.c:2342 #, c-format msgid "Received data packet of %d bytes\n" msgstr "Paquete de datos recibido de %d bytes\n" #: pulse.c:2364 msgid "ESP rekey failed\n" msgstr "Falló la renegociación de clave ESP\n" #: pulse.c:2388 msgid "Unknown Pulse packet\n" msgstr "Paquete Pulse desconocido\n" #: pulse.c:2566 #, c-format msgid "Sending IF-T/TLS data packet of %d bytes\n" msgstr "Enviando paquete de datos IF-T/TLS de %d bytes\n" #: script.c:130 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Descartar mala división que incluir: «%s»\n" #: script.c:134 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Descartar mala división que excluir: «%s»\n" #: script.c:507 script.c:555 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Falló al generar el script '%s' para %s: %s\n" #: script.c:562 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "El script '%s' terminó anormalmente (%x)\n" #: script.c:570 #, c-format msgid "Script '%s' returned error %d\n" msgstr "El script '%s' devolvió el error %d\n" #: ssl.c:108 msgid "Socket connect cancelled\n" msgstr "Socket de conexión cancelado\n" #: ssl.c:217 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "Falló al reconectar al proxy %s: %s\n" #: ssl.c:221 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "Falló al reconectar al servidor %s: %s\n" #: ssl.c:289 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Proxy de libproxy: %s://%s:%d/\n" #: ssl.c:317 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "getaddrinfo falló para el servidor '%s':%s\n" #: ssl.c:326 ssl.c:451 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" "Reconectando al servidor DynDNS usado la dirección IP previamente en caché\n" #: ssl.c:341 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Intentando conectar al proxy %s%s%s:%s\n" #: ssl.c:342 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Intentando conectar al servidor %s%s%s:%s\n" #: ssl.c:362 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "Conectado a %s%s%s:%s\n" #: ssl.c:374 msgid "Failed to allocate sockaddr storage\n" msgstr "Falló al asignar la dirección del socket del almacenamiento\n" #: ssl.c:416 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "Falló al conectar a %s%s%s:%s: %s\n" #: ssl.c:434 msgid "Forgetting non-functional previous peer address\n" msgstr "Olvidando la dirección anterior no funcional del par\n" #: ssl.c:446 #, c-format msgid "Failed to connect to host %s\n" msgstr "Falló al conectar al servidor %s\n" #: ssl.c:465 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "Reconectando al proxy %s\n" #: ssl.c:536 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:564 msgid "Could not obtain file system ID for passphrase\n" msgstr "" "No se pudo obtener el ID del sistema de archivos para la frase de paso\n" #: ssl.c:575 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "Falló al abrir el archivo de clave privada «%s»: %s\n" #: ssl.c:603 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:694 msgid "No error" msgstr "Sin errores" #: ssl.c:695 msgid "Keystore locked" msgstr "Almacén de claves bloqueado" #: ssl.c:696 msgid "Keystore uninitialized" msgstr "Almacén de claves no inicializado" #: ssl.c:697 msgid "System error" msgstr "Error del sistema" #: ssl.c:698 msgid "Protocol error" msgstr "Error de protocolo" #: ssl.c:699 msgid "Permission denied" msgstr "Permiso denegado" #: ssl.c:700 msgid "Key not found" msgstr "Clave no encontrada" #: ssl.c:701 msgid "Value corrupted" msgstr "Valor corrupto" #: ssl.c:702 msgid "Undefined action" msgstr "Acción no definida" #: ssl.c:706 msgid "Wrong password" msgstr "Contraseña errónea" #: ssl.c:707 msgid "Unknown error" msgstr "Error desconocido" #: ssl.c:896 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "Usado openconnect_fopen_utf8() con el modo «%s» no soportado'\n" #: ssl.c:931 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" "Familia de protocolo %d desconocida. No se puede crear la dirección del " "servidor UDP\n" #: ssl.c:950 msgid "Open UDP socket" msgstr "Abrir socket UDP" #: ssl.c:981 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" "Familia de protocolo %d desconocida. No se puede usar el protocolo UDP\n" #: ssl.c:989 msgid "Bind UDP socket" msgstr "Vincular socket UDP" #: ssl.c:996 msgid "Connect UDP socket\n" msgstr "Conectar al socket UDP\n" #: ssl.c:1034 msgid "Cookie is no longer valid, ending session\n" msgstr "La cookie ya no es válida, cerrando la sesión\n" #: ssl.c:1038 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "dormir %ds, timeout restante %ds\n" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "Testigo SSPI demasiado largo (%ld bytes)\n" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "Enviando testigo SSPI de %lu bytes\n" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "Falló al enviar el testigo de autenticación SSPI al proxy: %s\n" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "Falló al recibir el testigo de autenticación SSPI del proxy: %s\n" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "El servidor SOCKS ha informado de un fallo de contexto de SSPI\n" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "Respuesta de estado SSPI desconocida (0x%02x) del servidor SOCKS\n" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "Obtenido el testigo SSPI de %lu bytes: %02x %02x %02x %02x\n" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "Falló QueryContextAttributes(): %lx\n" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "Falló EncryptMessage(): %lx\n" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "Resultado de EncryptMessage() demasiado largo (%lu + %lu + %lu)\n" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "Enviando negociación de protección SSPI de %u bytes\n" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "Falló al enviar la respuesta de protección SSPI al proxy %s\n" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "Falló al recibir la respuesta de protección SSPI al proxy %s\n" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" "Obtenida la respuesta de protección SSPI de %d bytes: %02x %02x %02x %02x\n" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "Falló DecryptMessage: %lx\n" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "Respuesta de protección SSPI no válida del proxy (%lu bytes)\n" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "Introduzca credenciales para desbloquear el testigo software." #: stoken.c:82 msgid "Device ID:" msgstr "ID del dispositivo:" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "El usuario saltó el token blando.\n" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "Todos los campos son obligatorios; inténtelo de nuevo.\n" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "Fallo general en libstoken.\n" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "ID del dispositivo o contraseña incorrectos; inténtelo de nuevo.\n" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "La inicialización del token blando tuvo éxito.\n" #: stoken.c:185 msgid "Enter software token PIN." msgstr "Introduzca el PIN del testigo software." #: stoken.c:189 msgid "PIN:" msgstr "PIN:" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "Formato de pin no válido; inténtelo de nuevo.\n" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "Generando código de testigo RSA\n" #: tun-win32.c:76 msgid "Error accessing registry key for network adapters\n" msgstr "Error al acceder a la clave del registro para adaptadores de red\n" #: tun-win32.c:139 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "Ignorando la interfaz TAP que no coincide «%s»\n" #: tun-win32.c:154 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" "No se han encontrado adaptadores TAP de Windows. ¿Está instalado el " "controlador?\n" #: tun-win32.c:186 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" "GetAdapterIndex() ha fallado: %s\n" "Volviendo a GetAdaptersInfo()\n" #: tun-win32.c:200 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "GetAdaptersInfo() ha fallado: %s\n" #: tun-win32.c:231 #, c-format msgid "Failed to open %s\n" msgstr "Falló al abrir: %s\n" #: tun-win32.c:236 #, c-format msgid "Opened tun device %s\n" msgstr "Dispositivo TUN %s abierto\n" #: tun-win32.c:244 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Falló al obtener la versión del driver TAP: %s\n" #: tun-win32.c:250 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Error: se necesita la versión 9.9 o superior del controlador TAP de Windows " "(encontrada la %ld.%ld)\n" #: tun-win32.c:271 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Falló al establecer las direcciones IP TAP: %s\n" #: tun-win32.c:283 tun-win32.c:406 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Falló al establecer el estado del medio TAP: %s\n" #: tun-win32.c:316 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "El dispositivo TAP ha abortado la conectividad. Desconectando.\n" #: tun-win32.c:321 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Falló al leer del dispositivo TAP: %s\n" #: tun-win32.c:335 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Falló al completar la lectura del dispositivo TAP: %s\n" #: tun-win32.c:358 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "Escritos %ld bytes en tun\n" #: tun-win32.c:368 msgid "Waiting for tun write...\n" msgstr "Esperando la escritura de TUN...\n" #: tun-win32.c:371 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "Escritos %ld bytes en TUN después de esperar\n" #: tun-win32.c:378 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Falló al escribir en el dispositivo TAP: %s\n" #: tun-win32.c:423 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "Windows todavía no soporta la generación de scripts del túnel\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "No se pudo abrir /dev/tun para sondear" #: tun.c:92 msgid "Can't push IP" msgstr "No se puede alcanzar la IP" #: tun.c:102 msgid "Can't set ifname" msgstr "No se puede establecer el ifname" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "No se puede abrir %s: %s" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "No se puede sondear %s por IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "abrir /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Falló al crear un nuevo dispositivo TUN" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" "Falló al poner el archivo descriptor del dispositivo TUN en modo «descartar " "mensaje»" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "dispositivo tun no soportado en esta plataforma\n" #: tun.c:205 msgid "open net" msgstr "abrir red" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Falló al abrir el dispositivo TUN: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "Falló al vincular el dispositivo tun local (TUNSETIFF): %s\n" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" "Para configurar la red local openconnect debe ejecutarse como root\n" "Consulte http://www.infradead.org/openconnect/nonroot.html para obtener más " "información\n" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" "Nombre de interfaz '%s' no válido; debe coincidir con «utun%%d» o con «tun" "%%d»\n" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "Falló al abrir el socket SYSPROTO_CONTROL: %s\n" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "Falló al consultar el ID de control utun: %s\n" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "Falló al reservar el nombre del dispositivo utun\n" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "Falló al conectar a la unidad utun: %s\n" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Nombre de interfaz '%s' no válido; debe coincidir con «tun%%d»\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "No se pudo abrir «%s»: %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:479 #, c-format msgid "socketpair failed: %s\n" msgstr "Falló «socketpair»: %s\n" #: tun.c:484 #, c-format msgid "fork failed: %s\n" msgstr "Falló «fork»: %s\n" #: tun.c:488 msgid "setpgid" msgstr "setpgid" #: tun.c:493 msgid "execl" msgstr "execl" #: tun.c:498 msgid "(script)" msgstr "(script)" #: tun.c:566 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Falló al escribir el paquete entrante: %s\n" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "Falló al abrir %s: %s\n" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "Falló al hacer fstat() %s: %s\n" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Falló al reservar %d bytes para %s\n" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "Falló al leer %s: %s\n" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Se trata el servidor «%s» como un nombre de servidor crudo\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Falló el SHA1 del archivo existente\n" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "Archivo XML de configuración SHA1: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Falló al analizar la el archivo XML de configuración %s\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "El servidor «%s» tiene la dirección «%s»\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "El servidor «%s» tiene el grupo de usuario «%s»\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "Servidor «%s» no listado en la configuración; se trata como nombre de " "servidor crudo\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "Falló al enviar «%s» a la miniaplicación ykneo-oath: %s\n" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "Respuesta corta a «%s» no válida de la miniaplicación ykneo-oath\n" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "Falló la respuesta a «%s»: %04x\n" #: yubikey.c:174 msgid "select applet command" msgstr "seleccionar comando de la miniaplicación" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "Respuesta de la miniaplicación ykneo-oath no reconocida\n" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "Encontrada miniaplicación ykneo-oath v%d.%d.%d.\n" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "PIN requerido por la miniaplicación Yubikey OATH" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "PIN Yubkey:" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "Falló al calcular la respuesta de desbloqueo de Yubikey\n" #: yubikey.c:274 msgid "unlock command" msgstr "desbloquear comando" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "Probando variante PBKBF2 de carácter truncado del PIN Yubikey\n" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "Falló al crear el contexto PC/SC: %s\n" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "Contexto PS/SC establecido\n" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "Falló al consultar la lista de lectores: %s\n" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "Falló al conectar al lector PC/SC «%s»: %s\n" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "Lector PC/SC conectado «%s»\n" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "Falló al obtener el acceso exclusivo al lector «%s»: %s\n" #: yubikey.c:412 msgid "list keys command" msgstr "comando de listar claves" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "Encontrada %s/%s clave «%s» en «%s»\n" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "Testigo «%s» no encontrado en Yubikey «%s». Buscando otra Yubikey…\n" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" "El servidor está rechazando el testigo de Yubikey; cambiando a entrada " "manual\n" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "Generando código de testigo Yubikey\n" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "Falló al obtener el acceso exclusivo a Yubikey: %s\n" #: yubikey.c:619 msgid "calculate command" msgstr "calcular comando" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "Respuesta de Yubikey desconocida al generar el código del testigo\n" #~ msgid "Initiating IPv4 MTU detection (min=%d, max=%d)\n" #~ msgstr "Iniciando la detección de IPv4 MTU (min=%d, max=%d)\n" #~ msgid "Sending MTU DPD probe (%u bytes, min=%u, max=%u)\n" #~ msgstr "Enviando sonda DPD MTU (%u bytes, min=%u, max=%u)\n" #~ msgid "Timeout while waiting for DPD response; trying %d\n" #~ msgstr "" #~ "Se agotó el tiempo al esperar una respuesta del DPD; intentando %d\n" #~ msgid "Timeout while waiting for DPD response; resending probe.\n" #~ msgstr "" #~ "Se agotó el tiempo al esperar una respuesta del DPD; reenviando la " #~ "sonda.\n" #~ msgid "Received MTU DPD probe (%u bytes of %u)\n" #~ msgstr "Sonda DPD MTU recibida (%u bytes de %u)\n" #~ msgid "Initiating IPv6 MTU detection\n" #~ msgstr "Iniciando detección de MTU IPv6\n" #~ msgid "Failed to send DPD request (%d)\n" #~ msgstr "Falló al enviar la solicitud DPD (%d)\n" #~ msgid "Failed to generate random keys for ESP: %s\n" #~ msgstr "Falló al generar las claves aleatorias para ESP: %s\n" #~ msgid "Unknown ESP %s algorithm: %s" #~ msgstr "Algoritmo ESP %s desconocido: %s" #~ msgid "Sending data packet of %d bytes\n" #~ msgstr "Enviando paquete de datos de %d bytes\n" #~ msgid "Compatible with Juniper Network Connect / Pulse Secure SSL VPN" #~ msgstr "Compatible con Juniper Network Connect / Pulse Secure SSL VPN" #~ msgid "Failed to generate random keys for ESP:\n" #~ msgstr "Falló al generar las claves aleatorias para ESP:\n" openconnect-8.05/po/sr.po0000664000076400007640000045574413470043037017163 0ustar00dwoodhoudwoodhou00000000000000# Language network-manager-openconnect-master translations for F package. # Copyright (C) 2011 THE F'S COPYRIGHT HOLDER # This file is distributed under the same license as the F package. # Мирослав Николић , 2011. msgid "" msgstr "" "Project-Id-Version: F 677-CF0E\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2019-05-18 10:44-0700\n" "PO-Revision-Date: 2011-05-15 20:01+0200\n" "Last-Translator: Мирослав Николић \n" "Language-Team: Serbian \n" "Language: Serbian (sr)\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "X-Generator: Virtaal 0.5.2\n" #: auth-globalprotect.c:108 #, c-format msgid "" "SAML login is required via %s to this URL:\n" "\t%s" msgstr "" #: auth-globalprotect.c:110 msgid "Please enter your username and password" msgstr "" #: auth-globalprotect.c:119 msgid "Username" msgstr "" #: auth-globalprotect.c:134 msgid "Password" msgstr "" #: auth-globalprotect.c:181 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:260 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:266 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:272 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:315 msgid "Please select GlobalProtect gateway." msgstr "" #: auth-globalprotect.c:325 msgid "GATEWAY:" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:379 #, c-format msgid "%d gateway servers available:\n" msgstr "" #: auth-globalprotect.c:400 #, c-format msgid " %s (%s)\n" msgstr "" #: auth-globalprotect.c:484 auth-juniper.c:730 auth.c:669 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "Нисам успео да створим ОТП код модула; искључујем модул\n" #: auth-globalprotect.c:584 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" #: auth-globalprotect.c:636 oncp.c:1266 msgid "Logout failed.\n" msgstr "Одјављивање није успело\n" #: auth-globalprotect.c:638 msgid "Logout successful\n" msgstr "" #: auth-juniper.c:142 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "Занемарујем ставку предаје непознатог облика „%s“\n" #: auth-juniper.c:153 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "Занемарујем врсту уноса непознатог облика „%s“\n" #: auth-juniper.c:163 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "Одбацујем удвостручене опције „%s“\n" #: auth-juniper.c:236 auth.c:408 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Не могу да радим са начином=„%s“ обрасца, радња=„%s“\n" #: auth-juniper.c:267 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "Непознато поље текстуалне области: „%s“\n" #: auth-juniper.c:337 msgid "TNCC support not implemented yet on Windows\n" msgstr "ТНЦЦ подршка још није примењена на Виндоузу\n" #: auth-juniper.c:359 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "Нема „DSPREAUTH“ колачића; не покушавам ТНЦЦ\n" #: auth-juniper.c:397 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "Нисам успео да извршим ТНЦЦ скрипту „%s“: %s\n" #: auth-juniper.c:411 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "Нисам успео да доделим меморију за комуникацију са ТНЦЦ-ом\n" #: auth-juniper.c:418 msgid "Failed to send start command to TNCC\n" msgstr "Нисам успео да пошаљем наредбу ТНЦЦ-у\n" #: auth-juniper.c:425 msgid "Sent start; waiting for response from TNCC\n" msgstr "Послах почетак; чекам на одговор од ТНЦЦ-а\n" #: auth-juniper.c:432 msgid "Failed to read response from TNCC\n" msgstr "Нисам успео да прочитам одговор од ТНЦЦ-а\n" #: auth-juniper.c:439 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "Примих безуспешан %s одговор од ТНЦЦ-а\n" #: auth-juniper.c:445 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:452 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "Добих нови „DSPREAUTH“ колачић од ТНЦЦ-а: %s\n" #: auth-juniper.c:474 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:481 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:650 msgid "Failed to parse HTML document\n" msgstr "Нисам успео да обрадим ХТМЛ документ\n" #: auth-juniper.c:667 msgid "Failed to find or parse web form in login page\n" msgstr "" "Нисам успео да нађем или да обрадим образац веба на страници пријављивања\n" #: auth-juniper.c:675 msgid "Encountered form with no ID\n" msgstr "Наиђох на образац без ИБ-а\n" #: auth-juniper.c:713 #, c-format msgid "Unknown form ID '%s'\n" msgstr "Непознати ИБ обрасца „%s“\n" #: auth-juniper.c:716 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "Избацујем непознати ХТМЛ образац:\n" #: auth.c:96 msgid "Form choice has no name\n" msgstr "Избор обрасца нема назив\n" #: auth.c:181 #, c-format msgid "name %s not input\n" msgstr "назив „%s“ није улаз\n" #: auth.c:188 msgid "No input type in form\n" msgstr "Нема врсте улаза за образац\n" #: auth.c:200 msgid "No input name in form\n" msgstr "Нема назива улаза у обрасцу\n" #: auth.c:230 #, c-format msgid "Unknown input type %s in form\n" msgstr "Непозната врста улаза „%s“ у обрасцу\n" #: auth.c:540 gpst.c:214 msgid "Empty response from server\n" msgstr "Празан одговор са сервера\n" #: auth.c:551 gpst.c:289 msgid "Failed to parse server response\n" msgstr "Нисам успео да обрадим одговор сервера\n" #: auth.c:553 gpst.c:291 #, c-format msgid "Response was:%s\n" msgstr "Одговор је био:%s\n" #: auth.c:575 msgid "Received when not expected.\n" msgstr "Примих <захтев-уверења-клијента> када није очекиван.\n" #: auth.c:603 msgid "XML response has no \"auth\" node\n" msgstr "ИксМЛ одговор нема чвор „auth“\n" #: auth.c:636 msgid "Asked for password but '--no-passwd' set\n" msgstr "Затражена ми је лозинка али је постављено „--no-passwd“\n" #: auth.c:925 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "Не преузимам ИксМЛ профил јер СХА1 већ одговара\n" #: auth.c:931 cstp.c:335 http.c:916 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Нисам успео да отворим ХТТПС везу са „%s“\n" #: auth.c:952 msgid "Failed to send GET request for new config\n" msgstr "Нисам успео да пошаљем „GET“ захтев за ново подешавање\n" #: auth.c:976 msgid "Downloaded config file did not match intended SHA1\n" msgstr "Преузета датотека подешавања не одговара жељеном СХА1\n" #: auth.c:981 msgid "Downloaded new XML profile\n" msgstr "Преузет је нови ИкМЛ профил\n" #: auth.c:992 auth.c:1044 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" "Грешка: Покретање тројанца „Циско безбедне радне површи“ на овој платформи " "још није примењено.\n" #: auth.c:1003 mainloop.c:144 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "Нисам успео да подесим гиб %ld: %s\n" #: auth.c:1010 mainloop.c:151 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "Нисам успео да подесим групу на %ld: %s\n" #: auth.c:1017 mainloop.c:158 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "Нисам успео да подесим јиб %ld: %s\n" #: auth.c:1024 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "Неисправан кориснички јиб=%ld: %s\n" #: auth.c:1031 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Нисам успео да пређем у лични ЦСД директоријум „%s“: %s\n" #: auth.c:1053 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Грешка: Сервер је затражио да покренемо ЦСД преглед домаћина.\n" "Морате да обезбедите одговарајући „--csd-wrapper“ аргумент.\n" #: auth.c:1060 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Грешка: Сервер је затражио да преузмемо и покренемо тројанца „Циско безбедне " "радне површи“.\n" "Ова околност је искључена по основи из безбедносних разлога, тако да бисте " "можда желели да је укључите.\n" #: auth.c:1067 msgid "Trying to run Linux CSD trojan script.\n" msgstr "Покушавам да покренем скрипту Линуксовог ЦСД тројанца.\n" #: auth.c:1094 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "Привремени директоријум „%s“ није уписив: %s\n" #: auth.c:1102 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Нисам успео да отворим привремену датотеку ЦСД скрипте: %s\n" #: auth.c:1111 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Нисам успео да запишем привремену датотеку ЦСД скрипте: %s\n" #: auth.c:1141 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Упозорење: покренули сте небезбедни ЦСД код са администраторским " "овлашћењима\n" "\t Користите опцију „--csd-user“\n" #: auth.c:1189 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Нисам успео да извршим ЦСД скрипту „%s“\n" #: auth.c:1221 msgid "Unknown response from server\n" msgstr "Непознат одговор са сервера\n" #: auth.c:1342 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" "Сервер је затражио уверење ССЛ клијента након што је достављено једно\n" #: auth.c:1346 msgid "Server requested SSL client certificate; none was configured\n" msgstr "Сервер је затражио уверење ССЛ клијента; ниједно није подешено\n" #: auth.c:1362 msgid "XML POST enabled\n" msgstr "ИксМЛ ПОСТ је укључен\n" #: auth.c:1405 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Освежавам „%s“ након 1 секунде...\n" #: compat.c:207 #, c-format msgid "(error 0x%lx)" msgstr "(грешка 0х%lx)" #: compat.c:210 msgid "(Error while describing error!)" msgstr "(Грешка приликом описивања грешке!)" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "ГРЕШКА: Не могу да покренем прикључнице\n" #: cstp.c:112 gpst.c:341 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "ТЦП_ИНФО прим пор %d, посл пор %d, пор огл %d, пмту %d\n" #: cstp.c:134 gpst.c:360 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "ТЦП_МАХСЕГ %d\n" #: cstp.c:281 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" "КРИТИЧНА ГРЕШКА: Главна тајна ДТЛС-а није покренута. Известите о овоме.\n" #: cstp.c:312 msgid "Error creating HTTPS CONNECT request\n" msgstr "Грешка стварања захтева за ХТТПС ПОВЕЗИВАЊЕ\n" #: cstp.c:328 http.c:384 msgid "Error fetching HTTPS response\n" msgstr "Грешка довлачења ХТТПС одговора\n" #: cstp.c:355 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "ВПН услуга није доступна; разлог: %s\n" #: cstp.c:360 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Добих неодговарајући одговор ХТТП ПОВЕЗИВАЊА: %s\n" #: cstp.c:367 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Добих одговор ПОВЕЗИВАЊА: %s\n" #: cstp.c:396 cstp.c:404 msgid "No memory for options\n" msgstr "Нема меморије за опције\n" #: cstp.c:413 http.c:444 msgid "" msgstr "" #: cstp.c:433 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "ИБ сесије Х-ДТЛС-а није 64 знака; већ: „%s“\n" #: cstp.c:450 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "ИБ сесије Х-ДТЛС-а није исправан; већ је: „%s“\n" #: cstp.c:468 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "Непознато кодирање ДТЛС садржаја %s\n" #: cstp.c:510 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Непознато кодирање ЦСТП садржаја %s\n" #: cstp.c:585 msgid "No MTU received. Aborting\n" msgstr "МТУ није примљен. Прекидам\n" #: cstp.c:593 gpst.c:641 msgid "No IP address received. Aborting\n" msgstr "Није примљена ИП адреса. Прекидам\n" #: cstp.c:599 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "Примљено је ИПв6 подешавање али МТУ %d је премали.\n" #: cstp.c:605 gpst.c:648 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Поновно повезивање је дало другачију Стару ИП адресу (%s != %s)\n" #: cstp.c:614 gpst.c:657 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" "Поновно повезивање је дало другачију Стару ИП мрежну маску (%s != %s)\n" #: cstp.c:622 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Поновно повезивање је дало другачију ИПв6 адресу (%s != %s)\n" #: cstp.c:630 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Поновно повезивање је дало другачију ИПв6 мрежну маску (%s != %s)\n" #: cstp.c:638 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "ЦСТП је повезан. ДПД %d, Одржи живим %d\n" #: cstp.c:640 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "ЦСТП комплет шифрера: %s\n" #: cstp.c:702 msgid "Compression setup failed\n" msgstr "Подешавање паковања није успело\n" #: cstp.c:719 msgid "Allocation of deflate buffer failed\n" msgstr "Додела међумеморије издувавања није успела\n" #: cstp.c:781 msgid "inflate failed\n" msgstr "надувавање није успело\n" #: cstp.c:804 #, c-format msgid "LZS decompression failed: %s\n" msgstr "Није успело ЛЗС распакивање: %s\n" #: cstp.c:817 msgid "LZ4 decompression failed\n" msgstr "Није успело ЛЗ4 распакивање\n" #: cstp.c:824 #, c-format msgid "Unknown compression type %d\n" msgstr "Непозната врста паковања „%d“\n" #: cstp.c:829 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "Примих %s запаковани пакет података од %d бајта (беше %d)\n" #: cstp.c:849 #, c-format msgid "deflate failed %d\n" msgstr "издувавање није успело %d\n" #: cstp.c:922 dtls.c:281 dtls.c:740 esp.c:129 gpst.c:1042 mainloop.c:69 #: oncp.c:914 msgid "Allocation failed\n" msgstr "Није успела расподела\n" #: cstp.c:933 gpst.c:1055 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "Примљен је кратак пакет (%d бајта)\n" #: cstp.c:946 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Неочекивана дужина пакета. ССЛ_читање је дало %d али пакет је\n" #: cstp.c:960 msgid "Got CSTP DPD request\n" msgstr "Добих ЦСТП ДПД захтев\n" #: cstp.c:966 msgid "Got CSTP DPD response\n" msgstr "Добих ЦСТП ДПД одговор\n" #: cstp.c:971 msgid "Got CSTP Keepalive\n" msgstr "Добих ЦСТП Одржи живим\n" #: cstp.c:976 oncp.c:1003 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Примих пакет незапакованих података од %d бајта\n" #: cstp.c:993 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Примих прекид везе са сервера: %02x „%s“\n" #: cstp.c:996 msgid "Received server disconnect\n" msgstr "Примих прекид везе са сервера\n" #: cstp.c:1004 msgid "Compressed packet received in !deflate mode\n" msgstr "Сажети пакет је примљен у „!deflate“ режиму\n" #: cstp.c:1013 msgid "received server terminate packet\n" msgstr "примљен је серверов пакет окончавања\n" #: cstp.c:1020 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Непознат пакет %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1063 gpst.c:1142 oncp.c:1121 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "ССЛ је записао премало бајтова! Тражио је %d, послао је %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1091 oncp.c:1155 msgid "CSTP rekey due\n" msgstr "Истек промене кључа ЦСТП-а\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1098 oncp.c:1162 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Поновно руковање није успело; покушавам нови тунел\n" #: cstp.c:1109 oncp.c:1173 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "Откривање мртвог парњака ЦСТП-а је открило мртвог парњака!\n" #: cstp.c:1113 gpst.c:1166 oncp.c:1091 oncp.c:1177 msgid "Reconnect failed\n" msgstr "Поновно повезивање није успело\n" #: cstp.c:1129 oncp.c:1193 msgid "Send CSTP DPD\n" msgstr "Послах ЦСТП ДПД\n" #: cstp.c:1141 oncp.c:1204 msgid "Send CSTP Keepalive\n" msgstr "Послах ЦСТП Одржи живим\n" #: cstp.c:1166 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "Шаљем пакет запакованих података од %d бајта (беше %d)\n" #: cstp.c:1177 oncp.c:1238 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Шаљем пакет незапакованих података од %d бајта\n" #: cstp.c:1216 #, c-format msgid "Send BYE packet: %s\n" msgstr "Послах пакет ОДЛСКА: %s\n" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "Покушавам сваривање потврђивања идентитета са посредником\n" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "Покушавам прихватање потврђивања идентитета на серверу „%s“\n" #: dtls.c:113 msgid "DTLS connection attempted with an existing fd\n" msgstr "ДТЛС веза је покушана са постојећим фд-ом\n" #: dtls.c:119 msgid "No DTLS address\n" msgstr "Нема ДТЛС адресе\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:126 msgid "Server offered no DTLS cipher option\n" msgstr "Сервер је није понудио опцију ДТЛС шифрера\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:133 msgid "No DTLS when connected via proxy\n" msgstr "Нема ДТЛС-а када сте повезани путем посредника\n" #: dtls.c:200 #, c-format msgid "DTLS option %s : %s\n" msgstr "Опција ДТЛС-а „%s“: %s\n" #: dtls.c:239 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "ДТЛС је покренут. ДПД %d, Одржи живим %d\n" #: dtls.c:265 msgid "Attempt new DTLS connection\n" msgstr "Покушај нову ДТЛС везу\n" #: dtls.c:292 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Примљен је ДТЛС пакет 0x%02x од %d бајта\n" #: dtls.c:306 msgid "Got DTLS DPD request\n" msgstr "Добих ДТЛС ДПД захтев\n" #: dtls.c:312 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Нисам успео да пошаљем ДПД одговор. Очекујте прекид везе\n" #: dtls.c:316 msgid "Got DTLS DPD response\n" msgstr "Добих ДТЛС ДПД одговор\n" #: dtls.c:320 msgid "Got DTLS Keepalive\n" msgstr "Добих ДТЛС Одржи живим\n" #: dtls.c:326 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "Запаковани ДТЛС пакет је примљен када запакивање није укључено\n" #: dtls.c:334 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Непозната врста ДТЛС пакета %02x, дужина %d\n" #: dtls.c:356 msgid "DTLS rekey due\n" msgstr "Истек промене кључа ДТЛС-а\n" #: dtls.c:363 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "Није успело поновно ДТЛС руковање; пново се повезујем.\n" #: dtls.c:372 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "Откривање мртвог парњака ДТЛС-а је открило мртвог парњака!\n" #: dtls.c:378 msgid "Send DTLS DPD\n" msgstr "Послах ДТЛС ДПД\n" #: dtls.c:383 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Нисам успео да пошаљем ДПД захтев. Очекујте прекид везе\n" #: dtls.c:396 msgid "Send DTLS Keepalive\n" msgstr "Послах ДТЛС Одржи живим\n" #: dtls.c:401 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Нисам успео да пошаљем захтев одржи живим. Очекујте прекид везе\n" #: dtls.c:432 tun.c:541 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Примљен је непознат пакет (дужине %d): %02x %02x %02x %02x...\n" #: dtls.c:439 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "ТОС ово: %d, ТОС последње: %d\n" #: dtls.c:443 msgid "UDP setsockopt" msgstr "Подешава опције прикључнице УДП" #: dtls.c:474 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "ДТЛС је добио грешку писања %d. Пребацујем се на ССЛ\n" #: dtls.c:488 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "ДТЛС је добио грешку писања: %s. Пребацујем се на ССЛ\n" #: dtls.c:503 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "Послао сам ДТЛС пакет од %d бајта; ДТЛС-ово слање је дало %d\n" #: dtls.c:531 #, c-format msgid "Initiating IPv4 MTU detection (min=%d, max=%d)\n" msgstr "Покрећем ИПв4 МТУ откривање (најм.=%d, најв.=%d)\n" #: dtls.c:551 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "Предуго време у петљи МТУ откривања; подразумевам преговорени МТУ.\n" #: dtls.c:555 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "Предуго време у петљи МТУ откривања; МТУ је постављен на %d.\n" #: dtls.c:564 #, c-format msgid "Sending MTU DPD probe (%u bytes, min=%u, max=%u)\n" msgstr "Шаљем МТУ ДПД пробу (%u бајта, min=%u, max=%u)\n" #: dtls.c:568 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "Нисам успео да пошаљем ДПД захтев (%d %d)\n" #: dtls.c:582 dtls.c:690 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "Примих неочекивани пакет (%.2x) у МТУ откривању; прескачем.\n" #: dtls.c:594 #, c-format msgid "Timeout while waiting for DPD response; trying %d\n" msgstr "Истекло је време чекајући на ДПД одговор; покушавам %d\n" #: dtls.c:601 dtls.c:682 msgid "Timeout while waiting for DPD response; resending probe.\n" msgstr "Истекло је време чекајући на ДПД одговор; поново шаљем пробу.\n" #: dtls.c:608 dtls.c:709 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "Нисам успео да примим ДПД захтев (%d)\n" #: dtls.c:613 #, c-format msgid "Received MTU DPD probe (%u bytes of %u)\n" msgstr "Примих МТУ ДПД пробу (%u бајта од %u)\n" #: dtls.c:651 msgid "Initiating IPv6 MTU detection\n" msgstr "Покрећем ИПв4 МТУ откривање\n" #: dtls.c:666 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "Шаљем МТУ ДПД пробу (%u бајта)\n" #: dtls.c:670 #, c-format msgid "Failed to send DPD request (%d)\n" msgstr "Нисам успео да пошаљем ДПД захтев (%d)\n" #: dtls.c:695 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "Примих МТУ ДПД пробу (%u бајта)\n" #: dtls.c:759 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "Отрио сам МТУ од %d бајта (беше %d)\n" #: dtls.c:762 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "Нема промене у МТУ након откривања (беше %d)\n" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "Прихватам очекивани ЕСП пакет са низом %u\n" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" "Прихватам ЕСП пакет касније-него-очекивано са низом %u (очекивах %)\n" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "Одбацујем стари ЕСП пакет са низом %u (очекивах %)\n" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "Одбацујем одговорени ЕСП пакет са низом %u\n" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "Прихватам ЕСП пакет без најаве са низом %u (очекивах %)\n" #: esp.c:63 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "Параметри за %s ЕСП: СПИ 0x%08x\n" #: esp.c:66 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "Врста „%s“ ЕСП шифровања кључ 0x%s\n" #: esp.c:69 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "Врста „%s“ ЕСП пријављивања кључ 0x%s\n" #: esp.c:87 msgid "incoming" msgstr "долазно" #: esp.c:88 msgid "outgoing" msgstr "одлазно" #: esp.c:90 esp.c:113 msgid "Send ESP probes\n" msgstr "Послах ЕСП пробе\n" #: esp.c:138 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "Примих ЕСП пакет од %d бајта\n" #: esp.c:155 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:161 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "Примих ЕСП пакет са неисправним СПИ-ем 0x%08x\n" #: esp.c:174 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "Примих ЕСП пакет са непознатом врстом утовара %02x\n" #: esp.c:181 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "Неисправна дужина попуне %02x У ЕСП-у\n" #: esp.c:193 msgid "Invalid padding bytes in ESP\n" msgstr "Неисправни битови попуне У ЕСП-у\n" #: esp.c:202 msgid "ESP session established with server\n" msgstr "ЕСП сесија је успостављена са сервером\n" #: esp.c:213 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "Нисам успео да доделим меморију за дешифровање ЕСП пакета\n" #: esp.c:219 msgid "LZO decompression of ESP packet failed\n" msgstr "ЛЗО распакивање ЕСП пакета није успело\n" #: esp.c:225 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "ЛЗО је распаковао %d бајта у %d\n" #: esp.c:239 msgid "Rekey not implemented for ESP\n" msgstr "Поновно стварање кључа није примењено за ЕСП\n" #: esp.c:243 msgid "ESP detected dead peer\n" msgstr "ЕСП је открио мртвог парњака\n" #: esp.c:251 msgid "Send ESP probes for DPD\n" msgstr "Послах ЕСП пробе за ДПД\n" #: esp.c:258 msgid "Keepalive not implemented for ESP\n" msgstr "Одржи живим није примењено за ЕСП\n" #: esp.c:278 #, c-format msgid "Failed to encrypt ESP packet: %d\n" msgstr "" #: esp.c:294 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:301 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "Нисам успео да пошаљем ЕСП пакет: %s\n" #: esp.c:307 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "Послах ЕСП пакет од %d бајта\n" #: gnutls-dtls.c:190 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "" #: gnutls-dtls.c:198 msgid "Failed to generate DTLS priority string\n" msgstr "Нисам успео да створим ниску хитности ДТЛС-а\n" #: gnutls-dtls.c:207 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "Нисам успео да покренем ДТЛС: %s\n" #: gnutls-dtls.c:216 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "Нисам успео да поставим хитност ДТЛС-а: „%s“: %s\n" #: gnutls-dtls.c:240 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "Нисам успео да доделим акредитиве: %s\n" #: gnutls-dtls.c:253 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "Нисам успео да створим ДТЛС кључ: %s\n" #: gnutls-dtls.c:267 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "Нисам успео да поставим ДТЛС кључ: %s\n" #: gnutls-dtls.c:275 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "Нисам успео да поставим акредитиве ДТЛС ПСК-а: %s\n" #: gnutls-dtls.c:309 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Непознати ДТЛС параметри за затражени Комплет шифрера „%s“\n" #: gnutls-dtls.c:324 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "Нисам успео да поставим хитност ДТЛС-а: %s\n" #: gnutls-dtls.c:345 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Нисам успео да поставим параметре ДТЛС сесије: %s\n" #: gnutls-dtls.c:373 openssl-dtls.c:534 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "МТУ %d парњака је премало да дозволи ДТЛС\n" #: gnutls-dtls.c:382 openssl-dtls.c:545 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "ДТЛС МТУ је смањено на %d\n" #: gnutls-dtls.c:392 openssl-dtls.c:554 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "Повраћај ДТЛС сесије није успео; могућ МИТМ напад. Искључујем ДТЛС.\n" #: gnutls-dtls.c:405 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Нисам успео да поставим ДТЛС МТУ: %s\n" #: gnutls-dtls.c:416 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "Успостављена је ДТЛС веза (користим ГнуТЛС). Комплет шифрера %s.\n" #: gnutls-dtls.c:422 openssl-dtls.c:572 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "Запакивање ДТЛС везе са „%s“.\n" #: gnutls-dtls.c:437 openssl-dtls.c:653 openssl-dtls.c:657 msgid "DTLS handshake timed out\n" msgstr "Истекло је време ДТЛС руковања\n" #: gnutls-dtls.c:440 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "Није успело ДТЛС руковање: %s\n" #: gnutls-dtls.c:444 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(Да ли вас мрежна баријера спречава да пошаљете УДП пакете?)\n" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "Нисам успео да покренем ЕСП шифрера: %s\n" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "Нисам успео да покренем ЕСП ХМАЦ: %s\n" #: gnutls-esp.c:121 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "Нисам успео да створим насумичне кључеве за ЕСП: %s\n" #: gnutls-esp.c:132 msgid "Failed to generate ESP IV\n" msgstr "" #: gnutls-esp.c:161 gnutls-esp.c:217 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "Нисам успео да израчунам ХМАЦ за ЕСП пакет: %s\n" #: gnutls-esp.c:168 openssl-esp.c:192 msgid "Received ESP packet with invalid HMAC\n" msgstr "Примих ЕСП пакет са неисправним ХМАЦ-ом\n" #: gnutls-esp.c:180 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "Није успело дешифровање ЕСП пакета: %s\n" #: gnutls-esp.c:209 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "Нисам успео да шифрујем ЕСП пакет: %s\n" #: gnutls.c:95 openssl.c:154 msgid "SSL write cancelled\n" msgstr "Отказано је ССЛ писање\n" #: gnutls.c:99 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "Нисам успео да пишем на ССЛ прикључницу: %s\n" #: gnutls.c:145 gnutls.c:237 openssl.c:204 openssl.c:271 msgid "SSL read cancelled\n" msgstr "Отказано је ССЛ читање\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:158 msgid "SSL socket closed uncleanly\n" msgstr "ССЛ прикључница није лепо затворена\n" #: gnutls.c:168 gnutls.c:246 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "Нисам успео да читам са ССЛ прикључнице: %s\n" #: gnutls.c:266 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "Грешка ССЛ читањ: %s; поново се повезујем.\n" #: gnutls.c:302 #, c-format msgid "SSL send failed: %s\n" msgstr "Није успело ССЛ слање: %s\n" #: gnutls.c:315 msgid "Could not extract expiration time of certificate\n" msgstr "Не могу да извучем време истека уверења\n" #: gnutls.c:320 openssl.c:1592 msgid "Client certificate has expired at" msgstr "Уверење клијента је истекло у" #: gnutls.c:322 openssl.c:1597 msgid "Client certificate expires soon at" msgstr "Уверење клијента ускоро истиче" #: gnutls.c:371 openssl.c:771 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Нисам успео да учитам „%s“ из смештаја кључа: %s\n" #: gnutls.c:384 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Нисам успео да отворим датотеку кључа/уверења „%s“: %s\n" #: gnutls.c:391 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Нисам успео да добавим податке датотеке кључа/уверења „%s“: %s\n" #: gnutls.c:400 msgid "Failed to allocate certificate buffer\n" msgstr "Нисам успео да доделим међумеморију уверења\n" #: gnutls.c:408 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Нисам успео да учитам уверење у меморију: %s\n" #: gnutls.c:439 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Нисам успео да поставим структуру ПКЦС#12 података: %s\n" #: gnutls.c:462 openssl.c:534 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Нисам успео да дешифрујем датотеку ПКЦС#12 уверења\n" #: gnutls.c:466 openssl.c:537 msgid "Enter PKCS#12 pass phrase:" msgstr "Унесите ПКЦС#12 лозинку:" #: gnutls.c:489 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Нисам успео да обрадим ПКЦС#12 датотеку: %s\n" #: gnutls.c:501 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Нисам успео да учитам ПКЦС#12 уверење: %s\n" #: gnutls.c:584 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Нисам успео да увезем Х509 уверење: %s\n" #: gnutls.c:594 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Нисам успео да поставим ПКЦС#11 уверење: %s\n" #: gnutls.c:628 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Не могу да покренем МД5 хеш: %s\n" #: gnutls.c:638 #, c-format msgid "MD5 hash error: %s\n" msgstr "Грешка МД5 хеша: %s\n" #: gnutls.c:696 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "Недостаје заглавље „DEK-Info:“ из кључа шифрованог Отвореним ССл-ом\n" #: gnutls.c:703 msgid "Cannot determine PEM encryption type\n" msgstr "Не могу да одредим врсту ПЕМ шифровања\n" #: gnutls.c:716 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Неподржана врста ПЕМ шифровања: %s\n" #: gnutls.c:741 gnutls.c:754 msgid "Invalid salt in encrypted PEM file\n" msgstr "Неисправан присолак у шифрованој ПЕМ датотеци\n" #: gnutls.c:778 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Грешка шифроване ПЕМ датотеке основе64-декодирања: %s\n" #: gnutls.c:786 msgid "Encrypted PEM file too short\n" msgstr "Шифрована ПЕМ датотека је прекратка\n" #: gnutls.c:814 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "Нисам успео да покренем шифрера за дешифровање ПЕМ датотеке: %s\n" #: gnutls.c:825 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Нисам успео да дешифрујем ПЕМ кључ: %s\n" #: gnutls.c:877 msgid "Decrypting PEM key failed\n" msgstr "Није успело дешифровање ПЕМ кључа\n" #: gnutls.c:881 gnutls.c:1405 openssl.c:458 msgid "Enter PEM pass phrase:" msgstr "Унесите ПЕМ лозинку:" #: gnutls.c:942 msgid "This binary built without system key support\n" msgstr "Ова извршна је изграђена без подршке кључа система\n" #: gnutls.c:949 msgid "This binary built without PKCS#11 support\n" msgstr "Ова извршна је изграђена без подршке ПКЦС#11\n" #: gnutls.c:993 openssl-pkcs11.c:407 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Користим ПКЦС#11 уверење „%s“\n" #: gnutls.c:994 #, c-format msgid "Using system certificate %s\n" msgstr "Користим системско уверење „%s“\n" #: gnutls.c:1012 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Грешка учитавања уверења из ПКЦС#11: %s\n" #: gnutls.c:1013 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Грешка учитавања системског уверења: %s\n" #: gnutls.c:1024 openssl.c:827 #, c-format msgid "Using certificate file %s\n" msgstr "Користим датотеку уверења „%s“\n" #: gnutls.c:1052 msgid "PKCS#11 file contained no certificate\n" msgstr "ПКЦС#11 датотека не садржи уверење\n" #: gnutls.c:1078 msgid "No certificate found in file" msgstr "Нисам пронашао уверење у датотеци" #: gnutls.c:1083 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Нисам успео да увезем уверење: %s\n" #: gnutls.c:1098 #, c-format msgid "Using system key %s\n" msgstr "Користим системски кључ „%s“\n" #: gnutls.c:1103 gnutls.c:1271 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Грешка покретања структуре личног кључа: %s\n" #: gnutls.c:1114 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Грешка увоза системског кључа „%s“: %s\n" #: gnutls.c:1125 gnutls.c:1219 gnutls.c:1247 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "Покушавам адресу ПКЦС#11 кључа „%s“\n" #: gnutls.c:1130 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Грешка покретања структуре ПКЦС#11 кључа: %s\n" #: gnutls.c:1259 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Грешка увоза ПКЦС#11 адресе „%s“: %s\n" #: gnutls.c:1266 openssl-pkcs11.c:644 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Користим ПКЦС#11 кључ „%s“\n" #: gnutls.c:1281 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "Грешка увоза ПКЦС#11 кључа у структуру личног кључа: %s\n" #: gnutls.c:1299 #, c-format msgid "Using private key file %s\n" msgstr "Користим датотеку личног кључа „%s“\n" #: gnutls.c:1310 openssl.c:651 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Ово издање Отвореног повезивања је изграђено без ТПМ подршке\n" #: gnutls.c:1326 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1347 msgid "Failed to interpret PEM file\n" msgstr "Нисам успео да протумачим ПЕМ датотеку\n" #: gnutls.c:1366 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Нисам успео да учитам ПКЦС#1 лични кључ: %s\n" #: gnutls.c:1379 gnutls.c:1393 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Нисам успео да учитам лични кључ као ПКЦС#8: %s\n" #: gnutls.c:1401 gnutls.c:1434 openssl.c:1002 openssl.c:1012 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Нисам успео да дешифрујем датотеку ПКЦС#8 уверења\n" #: gnutls.c:1426 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Нисам успео да одредим врсту личног кључа „%s“\n" #: gnutls.c:1438 openssl.c:1008 msgid "Enter PKCS#8 pass phrase:" msgstr "Унесите ПКЦС#8 лозинку:" #: gnutls.c:1454 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Нисам успео да добавим ИБ кључа: %s\n" #: gnutls.c:1499 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Грешка потписивања пробних података личним кључем: %s\n" #: gnutls.c:1514 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Грешка потврђивања потписа наспрам уверења: %s\n" #: gnutls.c:1539 msgid "No SSL certificate found to match private key\n" msgstr "Нисам нашао ССЛ уверење које одговара личном кључу\n" #: gnutls.c:1551 openssl.c:560 openssl.c:709 #, c-format msgid "Using client certificate '%s'\n" msgstr "Користим уверење клијента „%s“\n" #: gnutls.c:1558 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "Подешавање списка опоравка уверења није успело: %s\n" #: gnutls.c:1579 gnutls.c:1589 msgid "Failed to allocate memory for certificate\n" msgstr "Нисам успео да доделим меморију за уверење\n" #: gnutls.c:1625 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" "УПОЗОРЕЊЕ: ГнуТЛС је вратио нетачно уверење издавача; потврђивање идентитета " "можда неће успети!\n" #: gnutls.c:1648 msgid "Got no issuer from PKCS#11\n" msgstr "Нисам добио издавача из ПКЦС#11\n" #: gnutls.c:1653 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "Добих следећег издавача уверења „%s“ из ПКЦС11\n" #: gnutls.c:1679 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Нисам успео да доделим меморију за подржавање уверења\n" #: gnutls.c:1702 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Додајем подржавајуће „%s“ издавача уверења\n" #: gnutls.c:1724 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1748 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Нисам успео да подесим уверење: %s\n" #: gnutls.c:1941 msgid "Server presented no certificate\n" msgstr "Сервер није представио ниједно уверење\n" #: gnutls.c:1949 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "Грешка упоређивања уверења сервера при поновном руковању: %s\n" #: gnutls.c:1954 openssl.c:1515 msgid "Server presented different cert on rehandshake\n" msgstr "Сервер је представио другачије уверење при поновном руковању\n" #: gnutls.c:1959 openssl.c:1518 msgid "Server presented identical cert on rehandshake\n" msgstr "Сервер је представио исто уверење при поновном руковању\n" #: gnutls.c:1965 msgid "Error initialising X509 cert structure\n" msgstr "Грешка покретања структуре X509 уверења\n" #: gnutls.c:1971 msgid "Error importing server's cert\n" msgstr "Грешка увоза серверског уверења\n" #: gnutls.c:1980 main.c:1794 msgid "Could not calculate hash of server's certificate\n" msgstr "Не могу да израчунам хеш серверског уверења\n" #: gnutls.c:1985 msgid "Error checking server cert status\n" msgstr "Грешка провере стања уверења сервера\n" #: gnutls.c:1990 msgid "certificate revoked" msgstr "уверење је опозвано" #: gnutls.c:1992 msgid "signer not found" msgstr "потписник није пронађен" #: gnutls.c:1994 msgid "signer not a CA certificate" msgstr "потписник није уверење издавача уверења" #: gnutls.c:1996 msgid "insecure algorithm" msgstr "небезбедни алгоритам" #: gnutls.c:1998 msgid "certificate not yet activated" msgstr "уверење још није активирано" #: gnutls.c:2000 msgid "certificate expired" msgstr "уверење је истекло" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2005 msgid "signature verification failed" msgstr "провера потписа није успела" #: gnutls.c:2054 openssl.c:1399 openssl.c:1551 msgid "certificate does not match hostname" msgstr "уверење не одговара називу домаћина" #: gnutls.c:2059 openssl.c:1398 openssl.c:1557 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Није успела провера уверења сервера: %s\n" #: gnutls.c:2126 msgid "Failed to allocate memory for cafile certs\n" msgstr "Нисам успео да доделим меморију за уверења датотеке издавача уверења\n" #: gnutls.c:2147 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Нисам успео да прочитам уверења из датотеке издавача уверења: %s\n" #: gnutls.c:2163 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Нисам успео да отворим датотеку издавача уверења „%s“: %s\n" #: gnutls.c:2176 openssl.c:1679 msgid "Loading certificate failed. Aborting.\n" msgstr "Нисам успео да учитам уверење. Прекидам.\n" #: gnutls.c:2237 #, c-format msgid "Failed to set TLS priority string (\"%s\"): %s\n" msgstr "Нисам успео да поставим ниску хитности ТЛС-а (%s): %s\n" #: gnutls.c:2249 openssl.c:1796 #, c-format msgid "SSL negotiation with %s\n" msgstr "ССЛ преговарање са „%s“\n" #: gnutls.c:2296 openssl.c:1822 msgid "SSL connection cancelled\n" msgstr "ССЛ веза је отказана\n" #: gnutls.c:2303 #, c-format msgid "SSL connection failure: %s\n" msgstr "Неуспех ССЛ везе: %s\n" #: gnutls.c:2312 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "Не-кобни резултат ГнуТЛС-а за време руковања: %s\n" #: gnutls.c:2318 openssl.c:1839 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "Повезани сте на ХТТПС са „%s“\n" #: gnutls.c:2321 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "Поново је договорен ССЛ на „%s“\n" #: gnutls.c:2483 openssl-pkcs11.c:199 #, c-format msgid "PIN required for %s" msgstr "Потребан је ПИН за %s“" #: gnutls.c:2487 openssl-pkcs11.c:202 msgid "Wrong PIN" msgstr "Погрешан ПИН" #: gnutls.c:2490 msgid "This is the final try before locking!" msgstr "Ово је последњи покушај пре закључавања!" #: gnutls.c:2492 msgid "Only a few tries left before locking!" msgstr "Остало је само неколико покушаја пре закључавања!" #: gnutls.c:2497 openssl-pkcs11.c:206 msgid "Enter PIN:" msgstr "Унесите ПИН:" #: gnutls.c:2583 openssl.c:1967 msgid "Unsupported OATH HMAC algorithm\n" msgstr "Неподржани ОАТХ ХМАЦ алгоритам\n" #: gnutls.c:2592 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "Нисам успео да израчунам ОАТХ ХМАЦ: %s\n" #: gnutls_tpm.c:54 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "Функција ТПМ знака је позвана за %d бајта.\n" #: gnutls_tpm.c:61 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Нисам успео да направим ТПМ хеш објекат: %s\n" #: gnutls_tpm.c:68 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Нисам успео да подесим ТПМ хеш објекат: %s\n" #: gnutls_tpm.c:78 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "Није успео ТПМ хеш потпис: %s\n" #: gnutls_tpm.c:100 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Грешка декодирања блоба ТСС кључа: %s\n" #: gnutls_tpm.c:108 gnutls_tpm.c:119 gnutls_tpm.c:132 msgid "Error in TSS key blob\n" msgstr "Грешка у блобу ТСС кључа\n" #: gnutls_tpm.c:139 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Нисам успео да направим ТПМ контекст: %s\n" #: gnutls_tpm.c:146 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Нисам успео да повежем ТПМ контекст: %s\n" #: gnutls_tpm.c:154 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Нисам успео да учитам ТПМ СРК кључ: %s\n" #: gnutls_tpm.c:161 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Нисам успео да учитам објект ТПМ СРК политике: %s\n" #: gnutls_tpm.c:182 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Нисам успео да подесим ТПМ ПИН: %s\n" #: gnutls_tpm.c:198 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Нисам успео да учитам блоб ТПМ кључа: %s\n" #: gnutls_tpm.c:205 msgid "Enter TPM SRK PIN:" msgstr "Унесите ТПМ СРК ПИН:" #: gnutls_tpm.c:226 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Нисам успео да направим објекат политике кључа: %s\n" #: gnutls_tpm.c:234 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Нисам успео да доделим политику кључу: %s\n" #: gnutls_tpm.c:240 msgid "Enter TPM key PIN:" msgstr "Унесите ПИН ТПМ кључа:" #: gnutls_tpm.c:251 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Нисам успео да подесим ПИН кључа: %s\n" #: gnutls_tpm2.c:92 gnutls_tpm2_esys.c:474 gnutls_tpm2_ibm.c:419 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:198 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:208 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:217 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:225 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:231 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:249 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:270 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:275 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:384 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2_esys.c:173 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:189 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:190 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:191 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:192 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:196 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:201 gnutls_tpm2_ibm.c:262 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:209 gnutls_tpm2_esys.c:303 gnutls_tpm2_esys.c:374 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:221 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:226 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:245 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:250 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:258 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:261 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:274 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:295 gnutls_tpm2_ibm.c:278 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:309 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:317 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:323 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:333 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:363 gnutls_tpm2_ibm.c:363 gnutls_tpm2_ibm.c:450 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:395 #, c-format msgid "TPM2 RSA sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:414 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:420 gnutls_tpm2_esys.c:500 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:464 gnutls_tpm2_ibm.c:405 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:494 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:532 gnutls_tpm2_ibm.c:485 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:546 gnutls_tpm2_ibm.c:502 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:555 gnutls_tpm2_ibm.c:512 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:569 gnutls_tpm2_ibm.c:523 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:54 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:226 #, c-format msgid "%s\n" msgstr "" #: gpst.c:229 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:417 #, c-format msgid "Unknown ESP %s algorithm: %s" msgstr "" #: gpst.c:477 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: gpst.c:483 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:487 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:498 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:551 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:560 oncp.c:835 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" "Занемарујем ЕСП кључеве пошто ЕСП подршка није доступна у овом издању\n" #: gpst.c:627 msgid "ESP disabled" msgstr "" #: gpst.c:629 msgid "No ESP keys received" msgstr "" #: gpst.c:631 msgid "ESP support not available in this build" msgstr "" #: gpst.c:635 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:680 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:702 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:711 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:719 #, c-format msgid "Got inappropriate HTTP GET-tunnel response: %.*s\n" msgstr "" #: gpst.c:861 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" "VPN connectivity may be disabled or limited without HIP report submission.\n" "You need to provide a --csd-wrapper argument with the HIP report submission " "script.\n" msgstr "" #: gpst.c:871 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:900 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:905 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:911 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:913 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:942 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:966 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:972 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:999 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1015 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1051 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1072 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1082 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1086 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1092 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: gpst.c:1101 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1109 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1157 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1162 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1182 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1202 #, c-format msgid "Sending data packet of %d bytes\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Грешка увоза ГССАПИ назива за потврђивање идентитета:\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "Грешка стварања ГССАПИ одговора:\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "Покушавам ГССАПИ потврђивање идентитета са посредником\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "Покушавам ГССАПИ потврђивање идентитета са сервером „%s“\n" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "ГССАПИ потврђивање идентитета је обављено\n" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "ГССАПИ модул је превелик (%zd бајта)\n" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "Шаљем ГССАПИ модул од %zu бајта\n" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" "Нисам успео да пошаљем ГССАПИ модул потврђивања идентитета посреднику: %s\n" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" "Нисам успео да примим ГССАПИ модул потврђивања идентитета од посредника: %s\n" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "СОЦКС сервер је известио о неуспеху ГССАПИ контекста\n" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "Непознат одговор ГССАПИ стања (0х%02x) са СОЦКС сервера\n" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "Добих ГССАПИ модул од %zu бајта: %02x %02x %02x %02x\n" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "Шаљем преговор ГССАПИ заштите од %zu бајта\n" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "Нисам успео да пошаљем одговор ГССАПИ заштите посреднику: %s\n" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "Нисам успео да примим одговор ГССАПИ заштите од посредника: %s\n" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "Добих одговор ГССАПИ заштите од %zu бајта: %02x %02x %02x %02x\n" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "Неисправан одговор ГССАПИ заштите са посредника (%zu бајта)\n" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "СОЦКС посредник тражи целовитост поруке, што није подржано\n" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "СОЦКС посредник тражи поверљивост поруке, што није подржано\n" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "СОЦКС посредник тражи непознату врсту заштите 0х%02x\n" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "Покушавам ХТТП Основно потврђивање идентитета са посредником\n" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "Покушавам ХТТП Основно потврђивање идентитета са сервером „%s“\n" #: http-auth.c:200 http.c:1165 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "Ово издање Отвореног повезивања је изграђено без ГССАПИ подршке\n" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" "Посредник захтева Основно потврђивање идентитета које је по основи " "искључено\n" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" "Сервер „%s“ захтева Основно потврђивање идентитета које је по основи " "искључено\n" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "Нема више начина потврђивања идентитета\n" #: http.c:319 msgid "No memory for allocating cookies\n" msgstr "Нема меморије за доделу колачића\n" #: http.c:394 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Нисам успео да обрадим ХТТП одговор „%s“\n" #: http.c:400 #, c-format msgid "Got HTTP response: %s\n" msgstr "Добих ХТТП одговор: %s\n" #: http.c:408 msgid "Error processing HTTP response\n" msgstr "Грешка обраде ХТТП одговора\n" #: http.c:415 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Занемарујем непознати ред ХТТП одговора „%s“\n" #: http.c:435 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Понуђен је неисправан колачић: %s\n" #: http.c:454 msgid "SSL certificate authentication failed\n" msgstr "Није успело потврђивање идентитета ССЛ уверења\n" #: http.c:485 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Тело одговора има негативну величину (%d)\n" #: http.c:496 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Непознато преносно-кодирање: %s\n" #. Now the body, if there is one #: http.c:515 #, c-format msgid "HTTP body %s (%d)\n" msgstr "ХТТП тело %s (%d)\n" #: http.c:529 http.c:556 msgid "Error reading HTTP response body\n" msgstr "Грешка читања тела ХТТП одговора\n" #: http.c:542 msgid "Error fetching chunk header\n" msgstr "Грешка довлачења заглавља делића\n" #: http.c:566 msgid "Error fetching HTTP response body\n" msgstr "Грешка довлачења тела ХТТП одговора\n" #: http.c:569 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "Грешка у искомаданом декодирању. Очекивах „“, добих: „%s“" #: http.c:581 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Не могу да примим ХТТП 1.0 тело без затварања везе\n" #: http.c:708 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Нисам успео да обрадим преусмерену адресу „%s“: %s\n" #: http.c:732 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Не могу да пратим преусмерење на не-хттпс адресе „%s“\n" #: http.c:760 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Није успело додељивање нове путање за релативно преусмерење: %s\n" #: http.c:973 oncp.c:591 #, c-format msgid "Unexpected %d result from server\n" msgstr "Неочекиван %d резултат са сервера\n" #: http.c:1021 msgid "request granted" msgstr "захтев је одобрен" #: http.c:1022 msgid "general failure" msgstr "општи неуспех" #: http.c:1023 msgid "connection not allowed by ruleset" msgstr "веза није дозвољена скупом правила" #: http.c:1024 msgid "network unreachable" msgstr "мрежа је недостижна" #: http.c:1025 msgid "host unreachable" msgstr "домаћин је недостижан" #: http.c:1026 msgid "connection refused by destination host" msgstr "везу је одбио одредишни домаћин" #: http.c:1027 msgid "TTL expired" msgstr "ТТЛ је истекло" #: http.c:1028 msgid "command not supported / protocol error" msgstr "наредба није подржана / грешка протокола" #: http.c:1029 msgid "address type not supported" msgstr "врста адресе није подржана" #: http.c:1039 msgid "SOCKS server requested username/password but we have none\n" msgstr "" "СОЦКС сервер је затражио корисничко име/лозинку али ми немамо ниједно\n" #: http.c:1047 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" "Корисничко име и лозинка за СОЦКС потврђивање идентитета морају бити < 255 " "бајта\n" #: http.c:1062 http.c:1118 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Грешка писања захтева потврђивања идентитета на СОЦКС посреднику: %s\n" #: http.c:1070 http.c:1125 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Грешка читања захтева потврђивања идентитета са СОЦКС посредника: %s\n" #: http.c:1077 http.c:1131 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" "Неочекиван одговор потврђивања идентитета са СОЦКС посредника: %02x %02x\n" #: http.c:1083 msgid "Authenticated to SOCKS server using password\n" msgstr "Потврдили сте идентитет на СОЦКС посреднику користећи лозинку\n" #: http.c:1087 msgid "Password authentication to SOCKS server failed\n" msgstr "Није успело потврђивање идентитета лозинком на СОЦКС серверу\n" #: http.c:1143 http.c:1150 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "СОЦКС сервер захтева ГССАПИ потврђивање идентитета\n" #: http.c:1156 msgid "SOCKS server requested password authentication\n" msgstr "СОЦКС сервер захтева потврђивање идентитета лозинком\n" #: http.c:1163 msgid "SOCKS server requires authentication\n" msgstr "СОЦКС сервер захтева потврђивање идентитета\n" #: http.c:1170 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "СОЦКС сервер захтева непознату врсту потврђивања идентитета %02x\n" #: http.c:1176 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Захтевам везу СОЦКС посредника са %s:%d\n" #: http.c:1191 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Грешка писања захтева повезивања са СОЦКС посредником: %s\n" #: http.c:1199 http.c:1241 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Грешка читања одговора везе са СОЦКС посредника: %s\n" #: http.c:1205 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Неочекиван одговор везе са СОЦКС посредника: %02x %02x...\n" #: http.c:1213 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "Грешка СОЦКС посредника %02x: %s\n" #: http.c:1217 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "Грешка СОЦКС посредника %02x\n" #: http.c:1234 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Неочекивана врста адресе %02x у одговору СОЦКС везе\n" #: http.c:1257 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Захтевам везу ХТТП посредника са %s:%d\n" #: http.c:1292 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Нисам успео да пошаљем захтев посредника: %s\n" #: http.c:1315 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "Захтев ПОВЕЗИВАЊА посредника није успео: %d\n" #: http.c:1334 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Непозната врста посредника „%s“\n" #: http.c:1383 msgid "Only http or socks(5) proxies supported\n" msgstr "Подржани су само хттп или соцкс(5) посредници\n" #: library.c:112 msgid "Cisco AnyConnect or openconnect" msgstr "Циско Ени Конект или опенконект" #: library.c:113 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "Сагласно са ССЛ ВПН-ом Циско Ени Конекта, као и са „ocserv“-ом" #: library.c:129 msgid "Juniper Network Connect" msgstr "Повезивање Џанипер мреже" #: library.c:130 msgid "Compatible with Juniper Network Connect / Pulse Secure SSL VPN" msgstr "Сагласно са повезивањем Џанипер мреже / Пулс безбедни ССЛ ВПН" #: library.c:148 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:149 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:211 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "Непознати ВПН протокол „%s“\n" #: library.c:233 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Изграђено је ССЛ библиотеком без Циско ДТЛС подршке\n" #: library.c:656 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Нисам успео да обрадим адресу сервера „%s“\n" #: library.c:662 msgid "Only https:// permitted for server URL\n" msgstr "Дозвољено је само „https://“ за адресу сервера\n" #: library.c:1056 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "Непознат хеш уверења: %s.\n" #: library.c:1085 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "Величина достављеног отиска је мања од потребног минимума (%u).\n" #: library.c:1146 msgid "No form handler; cannot authenticate.\n" msgstr "Нема руковаоца обрасцем; не могу да потврдим идентитет.\n" #: main.c:340 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "Није успела функција линије наредби у аргумент: %s\n" #: main.c:353 #, c-format msgid "Fatal error in command line handling\n" msgstr "Кобна грешка у раду са линијом наредби\n" #: main.c:388 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "Није успела функција читања конзоле: %s\n" #: main.c:401 #, c-format msgid "fgetws() failed: %s\n" msgstr "" #: main.c:416 main.c:429 #, c-format msgid "Error converting console input: %s\n" msgstr "Грешка претварања улаза конзоле: %s\n" #: main.c:423 main.c:689 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Неуспех додељвања за ниску са стандардног улаза\n" #: main.c:584 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" "За испомоћ са Отвореним повезивањем, погледајте веб страницу на\n" " „http://www.infradead.org/openconnect/mail.html“\n" #: main.c:593 #, c-format msgid "Using OpenSSL. Features present:" msgstr "Користим ОпенССЛ. Присутне функције:" #: main.c:595 #, c-format msgid "Using GnuTLS. Features present:" msgstr "Користим ГнуТЛС. Присутне функције:" #: main.c:608 msgid "OpenSSL ENGINE not present" msgstr "Није присутан ПОГОН ОтвореногССЛ-а" #: main.c:647 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" "УПОЗОРЕЊЕ: Нема ДТЛС и/или ЕСП подршке у овој извршној. Делотворност ће бити " "умањена.\n" #: main.c:657 #, c-format msgid "Supported protocols:" msgstr "Подржани протоколи:" #: main.c:659 main.c:675 msgid " (default)" msgstr " (основно)" #: main.c:672 msgid "Set VPN protocol" msgstr "" #: main.c:713 msgid "fgets (stdin)" msgstr "fgets (стдул)" #: main.c:754 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Не могу да обрадим путању ове извршне „%s“" #: main.c:760 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "Додела за путању впнц-скрипте није успела\n" #: main.c:780 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "Преписује назив домаћина „%s“ са „%s“\n" #: main.c:793 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Употреба: openconnect [опције] <сервер>\n" #: main.c:794 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" "Отворени клијент за више ВПН протокола, издање %s\n" "\n" #: main.c:796 msgid "Read options from config file" msgstr "Чита опције из датотеке подешавања" #: main.c:797 msgid "Report version number" msgstr "Извештава о броју издања" #: main.c:798 msgid "Display help text" msgstr "Приказује текст помоћи" #: main.c:802 msgid "Authentication" msgstr "" #: main.c:803 msgid "Set login username" msgstr "Подешава корисничко име пријављивања" #: main.c:804 msgid "Disable password/SecurID authentication" msgstr "Искључује потврђивање идентитета лозинком/Безбедним ИБ-ом" #: main.c:805 msgid "Do not expect user input; exit if it is required" msgstr "Не очекује кориснички унос; излази ако је затражен" #: main.c:806 msgid "Read password from standard input" msgstr "Чита лозинку са стандардног улаза" #: main.c:807 msgid "Choose authentication login selection" msgstr "Бира избор пријаве потврђивања идентитета" #: main.c:808 msgid "Provide authentication form responses" msgstr "" #: main.c:809 msgid "Use SSL client certificate CERT" msgstr "Користи уверење УВЕР ССЛ клијента" #: main.c:810 msgid "Use SSL private key file KEY" msgstr "Користи КЉУЧ датотеке личног кључа ССЛ-а" #: main.c:811 msgid "Warn when certificate lifetime < DAYS" msgstr "Упозорава када је животни век уверења < ДАНА" #: main.c:812 msgid "Set login usergroup" msgstr "Подешава корисничку групу пријављивања" #: main.c:813 msgid "Set key passphrase or TPM SRK PIN" msgstr "Подешава лозинку кључа или ТПМ СРК ПИН" #: main.c:814 msgid "Key passphrase is fsid of file system" msgstr "Лозинка кључа је иб система датотека или систем датотека" #: main.c:815 msgid "Software token type: rsa, totp or hotp" msgstr "Врста софтверског модула: „rsa“, „totp“ или „hotp“" #: main.c:816 msgid "Software token secret" msgstr "Тајна софтверског модула" #: main.c:818 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "(НАПОМЕНА: „libstoken“ (РСА Безбедни ИБ) је искључена у овој изградњи)" #: main.c:821 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(НАПОМЕНА: „Yubikey“ ОАТХ је искључен у овој изградњи)" #: main.c:824 msgid "Server validation" msgstr "" #: main.c:825 msgid "Server's certificate SHA1 fingerprint" msgstr "СХА1 отисак серверског уверења" #: main.c:826 msgid "Do not require server SSL cert to be valid" msgstr "Не захтева да ССЛ уверење сервера буде исправно" #: main.c:827 msgid "Disable default system certificate authorities" msgstr "Искључује основне системске издаваче уверења" #: main.c:828 msgid "Cert file for server verification" msgstr "Датотека уверења за проверу сервера" #: main.c:830 msgid "Internet connectivity" msgstr "" #: main.c:831 msgid "Set proxy server" msgstr "Подешава посреднички сервер" #: main.c:832 msgid "Set proxy authentication methods" msgstr "Подешава начине потврђивања идентитета посредника" #: main.c:833 msgid "Disable proxy" msgstr "Искључује посредника" #: main.c:834 msgid "Use libproxy to automatically configure proxy" msgstr "Користи „libproxy“ да самостално подеси посредника" #: main.c:836 msgid "(NOTE: libproxy disabled in this build)" msgstr "(НАПОМЕНА: „libproxy“ је искључена у овој изградњи)" #: main.c:838 msgid "Connection retry timeout in seconds" msgstr "Временски рок поновног повезивања у секундама" #: main.c:839 msgid "Use IP when connecting to HOST" msgstr "Користи ИП приликом повезивања са ДОМАЋИНОМ" #: main.c:840 msgid "copy TOS / TCLASS when using DTLS" msgstr "Умножава ТОС / ТКЛАСУ када користи ДТЛС" #: main.c:841 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:843 msgid "Authentication (two-phase)" msgstr "" #: main.c:844 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:845 msgid "Read cookie from standard input" msgstr "Чита колачић са стандардног улаза" #: main.c:846 msgid "Authenticate only and print login info" msgstr "Само потврђује идентитет и исписује податке о пријави" #: main.c:847 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:848 msgid "Print cookie before connecting" msgstr "" #: main.c:851 msgid "Process control" msgstr "" #: main.c:852 msgid "Continue in background after startup" msgstr "Наставља у позадини након покретања" #: main.c:853 msgid "Write the daemon's PID to this file" msgstr "Пише ПИБ позадинца у ову датотеку" #: main.c:854 msgid "Drop privileges after connecting" msgstr "Одбацује овлашћења након повезивања" #: main.c:857 msgid "Logging (two-phase)" msgstr "" #: main.c:859 msgid "Use syslog for progress messages" msgstr "Користи системски дневник за поруке напредовања" #: main.c:861 msgid "More output" msgstr "Више излаза" #: main.c:862 msgid "Less output" msgstr "Мање излаза" #: main.c:863 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "" "Исписује саобраћај ХТТП потврђивања идентитета (подразумева „--verbose“)" #: main.c:864 msgid "Prepend timestamp to progress messages" msgstr "Додаје датум и време порукама напредовања" #: main.c:866 msgid "VPN configuration script" msgstr "" #: main.c:867 msgid "Use IFNAME for tunnel interface" msgstr "Користи АКОНАЗИВ за уређај тунела" #: main.c:868 msgid "Shell command line for using a vpnc-compatible config script" msgstr "Линија наредбе шкољке за коришћење впнц-сагласне скрипте подешавања" #: main.c:869 msgid "default" msgstr "основно" #: main.c:871 msgid "Pass traffic to 'script' program, not tun" msgstr "Прослеђујем саобраћај програму „script“, а не туну" #: main.c:874 msgid "Tunnel control" msgstr "" #: main.c:875 msgid "Do not ask for IPv6 connectivity" msgstr "Не тражи ИПв6 повезивост" #: main.c:876 msgid "XML config file" msgstr "ИксМЛ датотека подешавања" #: main.c:877 msgid "Request MTU from server (legacy servers only)" msgstr "Захтева МТУ са сервера (само стари сервери)" #: main.c:878 msgid "Indicate path MTU to/from server" msgstr "Указује на МТУ путању до/од сервера" #: main.c:879 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:880 msgid "Disable all compression" msgstr "" #: main.c:881 msgid "Set minimum Dead Peer Detection interval" msgstr "Подешава најмањи период откривања неактивних парњака" #: main.c:882 msgid "Require perfect forward secrecy" msgstr "Захтева савршену тајност прослеђивања" #: main.c:883 msgid "Disable DTLS and ESP" msgstr "" #: main.c:884 msgid "OpenSSL ciphers to support for DTLS" msgstr "Шифрери ОтвореногССЛ-а за подршку ДТЛС-а" #: main.c:885 msgid "Set packet queue limit to LEN pkts" msgstr "Подешава ограничење реда пакета на ДУЖИНУ пакета" #: main.c:887 msgid "Local system information" msgstr "" #: main.c:888 msgid "HTTP header User-Agent: field" msgstr "Корисник-Агент ХТТП заглавља: није успело" #: main.c:889 msgid "Local hostname to advertise to server" msgstr "Назив домаћина за обавештавање сервера" #: main.c:890 msgid "OS type (linux,linux-64,win,...) to report" msgstr "Врста оперативног система (linux,linux-64,win,...) за извештавање" #: main.c:891 msgid "reported version string during authentication" msgstr "" #: main.c:892 msgid "default:" msgstr "" #: main.c:895 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:896 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:897 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:900 msgid "Server bugs" msgstr "" #: main.c:901 msgid "Disable HTTP connection re-use" msgstr "Искључује поновно коришћење ХТТП везе" #: main.c:902 msgid "Do not attempt XML POST authentication" msgstr "Не покушава ИксМЛ ПОСТ потврђивање идентитета" #: main.c:924 #, c-format msgid "Failed to allocate string\n" msgstr "Нисам успео да доделим ниску\n" #: main.c:997 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Нисам успео да добавим ред из датотеке подешавања: %s\n" #: main.c:1037 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Непозната опција у %d. реду: „%s“\n" #: main.c:1047 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Опција „%s“ не узима аргумент у %d. реду\n" #: main.c:1051 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Опција „%s“ захтева аргумент у %d. реду\n" #: main.c:1076 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "Неисправан корисник „%s“: %s\n" #: main.c:1086 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "Неисправан ИБ корисника „%d“: %s\n" #: main.c:1130 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "" #: main.c:1140 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "УПОЗОРЕЊЕ: Ово издање отвореног повезивања је изграђено без иконв\n" " подршке али изгледа да користите наслеђени знак\n" " подесите „%s“. Очекујте неочекивано.\n" #: main.c:1147 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "УПОЗОРЕЊЕ: Ово издање „openconnect“-а је %s али\n" " библиотека „libopenconnect“ је %s\n" #: main.c:1157 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Нисам успео да доделим структуру впнподатака\n" #: main.c:1215 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Не можете користити опцију „config“ унутар датотеке подешавања\n" #: main.c:1223 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Не могу да отворим датотеку подешавања „%s“: %s\n" #: main.c:1239 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "Неисправан режим запакивања „%s“\n" #: main.c:1260 #, c-format msgid "Missing colon in resolve option\n" msgstr "Недостаје двотачка у опцији решавања\n" #: main.c:1265 #, c-format msgid "Failed to allocate memory\n" msgstr "Нисам успео да доделим меморију\n" #: main.c:1349 main.c:1358 #, c-format msgid "MTU %d too small\n" msgstr "МТУ %d је премало\n" #: main.c:1388 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Искључујем поновно коришћење свих ХТТП веза због опције „--no-http-" "keepalive“.\n" "Ако ово помогне, известите о томе на „“.\n" #: main.c:1394 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" "Опција „--no-cert-check“ није била безбедна и уклоњена је.\n" "Исправите ваше уверење сервера или користите „--servercert“ да му верујете.\n" #: main.c:1411 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Нулта дужина реда није дозвољена; користим 1\n" #: main.c:1425 #, c-format msgid "OpenConnect version %s\n" msgstr "Отворено повезивање издање %s\n" #: main.c:1463 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Неисправан режим софтверског модула „%s“\n" #: main.c:1473 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "Неисправан одредник ОС-а „%s“\n" #: main.c:1506 #, c-format msgid "Too many arguments on command line\n" msgstr "Превише аргумената на линији наредби\n" #: main.c:1509 #, c-format msgid "No server specified\n" msgstr "Није наведен сервер\n" #: main.c:1525 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" "Ово издање отвореног повезивања је изграђено без подршке библиотеке " "посредника\n" #: main.c:1555 #, c-format msgid "Error opening cmd pipe\n" msgstr "Грешка отварања спојке наредбе\n" #: main.c:1588 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "Нисам успео да добијем ВебВПН колачић\n" #: main.c:1609 #, c-format msgid "Creating SSL connection failed\n" msgstr "Није успело стварање ССЛ везе\n" #: main.c:1625 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:1633 #, c-format msgid "Connected as %s%s%s, using SSL%s%s, with %s%s%s %s\n" msgstr "" #: main.c:1639 msgid "disabled" msgstr "" #: main.c:1639 msgid "in progress" msgstr "" #: main.c:1643 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "Није достављен аргумент „--script“; ДНС и упућивање нису подешени\n" #: main.c:1645 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Погледајте „http://www.infradead.org/openconnect/vpnc-script.html“\n" #: main.c:1658 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Нисам успео да отворим „%s“ ради уписа: %s\n" #: main.c:1670 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Настављам рад у позадини, пиб %d\n" #: main.c:1687 msgid "User requested reconnect\n" msgstr "Корисник је затражио поновно повезивање\n" #: main.c:1695 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "Колачић је одбачен при поновном повезивању; излазим.\n" #: main.c:1699 msgid "Session terminated by server; exiting.\n" msgstr "Сервер је окончао сесију; излазим.\n" #: main.c:1703 msgid "User cancelled (SIGINT/SIGTERM); exiting.\n" msgstr "" #: main.c:1707 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "Корисник се откачио са сесије (SIGHUP); излазим.\n" #: main.c:1711 msgid "Unknown error; exiting.\n" msgstr "Непозната грешка; излазим.\n" #: main.c:1730 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Нисам успео да отворим „%s“ ради уписа: %s\n" #: main.c:1738 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Нисам успео да упишем подешавања у „%s“: %s\n" #: main.c:1797 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "Серверско ССЛ уверење не одговара: %s\n" #: main.c:1816 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Није успело потврђивање уверења са ВПН сервера „%s“.\n" "Разлог: %s\n" #: main.c:1819 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "Да и даље верујете овом серверу, додајте ово на линију наредби:\n" #: main.c:1820 #, c-format msgid " --servercert %s\n" msgstr " --servercert %s\n" #: main.c:1825 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Унесите „%s“ да прихватите, „%s“ да прекинете; било шта друго да прегледате: " #: main.c:1826 main.c:1844 msgid "no" msgstr "не" #: main.c:1826 main.c:1832 msgid "yes" msgstr "да" #: main.c:1853 #, c-format msgid "Server key hash: %s\n" msgstr "Хеш серверског кључа: %s\n" #: main.c:1887 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Избор потврђивања идентитета „%s“ се поклапа са више опција\n" #: main.c:1890 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Избор потврђивања „%s“ није доступан\n" #: main.c:1911 msgid "User input required in non-interactive mode\n" msgstr "Кориснички улаз је затражен у немеђудејственом режиму\n" #: main.c:2149 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Нисам успео да отворим датотеку модула ради уписа: %s\n" #: main.c:2157 #, c-format msgid "Failed to write token: %s\n" msgstr "Нисам успео да запишем модул: %s\n" #: main.c:2203 main.c:2224 #, c-format msgid "Soft token string is invalid\n" msgstr "Ниска софтверског модула је неисправна\n" #: main.c:2206 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Не могу да отворим датотеку „~/.stokenrc“\n" #: main.c:2209 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "Отворено повезивање није изграђено са подршком „libstoken“-а\n" #: main.c:2212 #, c-format msgid "General failure in libstoken\n" msgstr "Општи неуспех у „libstoken“-у\n" #: main.c:2227 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "Отворено повезивање није изграђено са подршком „liboath“-а\n" #: main.c:2230 #, c-format msgid "General failure in liboath\n" msgstr "Општи неуспех у „liboath“-у\n" #: main.c:2241 #, c-format msgid "Yubikey token not found\n" msgstr "Нисам нашао модул Јуби кључа\n" #: main.c:2244 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "Отворено повезивање није изграђено са подршком Јуби кључа\n" #: main.c:2247 #, c-format msgid "General Yubikey failure: %s\n" msgstr "Општи неуспех Јуби кључа: %s\n" #: mainloop.c:127 #, c-format msgid "Set up tun script failed\n" msgstr "Подешавање тун скрипте није успело\n" #: mainloop.c:134 #, c-format msgid "Set up tun device failed\n" msgstr "Подешавање тун уређаја није успело\n" #: mainloop.c:265 msgid "Caller paused the connection\n" msgstr "Позивник је паузирао везу\n" #: mainloop.c:273 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Беспослен сам; одспаваћу %d ms...\n" #: mainloop.c:294 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "Чекање на више објеката није успело: %s\n" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "Покретање контекста безбедности није успело: %lx\n" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "Руковање набавком уверења није успело: %lx\n" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "Грешка у разговору са „ntlm_auth“ помоћником\n" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" "Покушавам ХТТП НТМЛ потврђивање идентитета са посредником (једна-пријава)\n" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" "Покушавам ХТТП НТМЛ потврђивање идентитета са сервером „%s“ (једна-пријава)\n" #: ntlm.c:978 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "Покушавам ХТТП НТЛМв%d потврђивање идентитета са посредником\n" #: ntlm.c:982 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "Покушавам ХТТП НТЛМв%d потврђивање идентитета са сервером „%s“\n" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "Неисправна ниска модула основе32\n" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "Нисам успео да доделим меморију за декодирање ОАТХ тајне\n" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "Ово издање Отвореног повезивања је изграђено без ПСКЦ подршке\n" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "Могуће је стварање ПОЧЕТНОГ кода модула\n" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "Могуће је стварање СЛЕДЕЋЕГ кода модула\n" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "Сервер одбија софтверски модул; прелазим на ручни унос\n" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "Стварам код ОАТХ ТОТП модула\n" #: oath.c:565 msgid "Generating OATH HOTP token code\n" msgstr "Стварам код ОАТХ ХОТП модула\n" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "Неисправан колачић „%s“\n" #: oncp.c:160 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "Неочекивана дужина %d за ТЛВ %d/%d\n" #: oncp.c:166 #, c-format msgid "Received MTU %d from server\n" msgstr "Примих МТУ %d са сервера\n" #: oncp.c:175 #, c-format msgid "Received DNS server %s\n" msgstr "Примих ДНС сервер „%s“\n" #: oncp.c:186 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "Примих ДНС домен претраге %.*s\n" #: oncp.c:201 #, c-format msgid "Received internal IP address %s\n" msgstr "Примих унутрашњу ИП адресу %s\n" #: oncp.c:210 #, c-format msgid "Received netmask %s\n" msgstr "Примих мрежну маску %s\n" #: oncp.c:219 #, c-format msgid "Received internal gateway address %s\n" msgstr "Примих унутрашњу адресу мрежног пролаза %s\n" #: oncp.c:232 #, c-format msgid "Received split include route %s\n" msgstr "Примих поделу обухватања руте %s\n" #: oncp.c:254 #, c-format msgid "Received split exclude route %s\n" msgstr "Примих поделу одбацивања руте %s\n" #: oncp.c:274 #, c-format msgid "Received WINS server %s\n" msgstr "Примих ВИНС сервер „%s“\n" #: oncp.c:297 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "ЕСП шифровање: 0x%02x (%s)\n" #: oncp.c:316 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "ЕСП ХМАЦ: 0x%02x (%s)\n" #: oncp.c:327 #, c-format msgid "ESP compression: %d\n" msgstr "ЕСП запакивање: %d\n" #: oncp.c:335 #, c-format msgid "ESP port: %d\n" msgstr "ЕСП прикључник: %d\n" #: oncp.c:342 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "Време живота ЕСП кључа: %u бајта\n" #: oncp.c:350 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "Време живота ЕСП кључа: %u секунде\n" #: oncp.c:358 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "Враћање са ЕСП-а на ССЛ: %u секунде\n" #: oncp.c:366 #, c-format msgid "ESP replay protection: %d\n" msgstr "Заштита ЕСП одговора: %d\n" #: oncp.c:374 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "ЕСП СПИ (одлазеће): %x\n" #: oncp.c:383 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "%d бајта ЕСП тајни\n" #: oncp.c:395 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "Непозната ТЛВ група %d атр. %d дуж. %d:%s\n" #: oncp.c:473 msgid "Failed to parse KMP header\n" msgstr "Нисам успео да обрадим КМП заглавље\n" #: oncp.c:490 msgid "Failed to parse KMP message\n" msgstr "Нисам успео да обрадим КМП поруку\n" #: oncp.c:496 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "Добих КМП поруку %d величине %d\n" #: oncp.c:512 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "Примих не-ЕСП ТЛВ-а (група %d) у ЕСП преговора КМП\n" #: oncp.c:577 oncp.c:609 oncp.c:747 msgid "Error creating oNCP negotiation request\n" msgstr "Грешка стварања захтева оНЦП преговарања\n" #: oncp.c:618 oncp.c:783 msgid "Short write in oNCP negotiation\n" msgstr "Кратко писање у оНЦП преговарању\n" #: oncp.c:631 oncp.c:666 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "Читам %d бајта ССЛ записа\n" #: oncp.c:636 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "Неочекивани одговор величине %d након пакета назива домаћина\n" #: oncp.c:643 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "Одговор сервера пакету назива домаћина је грешка 0x%02x\n" #: oncp.c:670 msgid "Invalid packet waiting for KMP 301\n" msgstr "Неисправан пакет чека на КМП 301\n" #: oncp.c:683 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "Очекивах КМП поруку 301 са сервера али добих %d\n" #: oncp.c:692 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "КМП порука 301 са сервера је превелика (%d бајта)\n" #: oncp.c:698 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "Добих КМП поруку 301 величине %d\n" #: oncp.c:705 msgid "Failed to read continuation record length\n" msgstr "Нисам успео да прочитам дужину записа наставка\n" #: oncp.c:711 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "Запис додатна %d бајта је превелик; направићу %d\n" #: oncp.c:720 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "Нисам успео да прочитам запис наставка дужине %d\n" #: oncp.c:726 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "Читам додатна %d бајта КМП 301 поруке\n" #: oncp.c:767 msgid "Error negotiating ESP keys\n" msgstr "Грешка преговарања ЕСП кључа\n" #: oncp.c:776 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:829 msgid "new incoming" msgstr "ново долазно" #: oncp.c:830 msgid "new outgoing" msgstr "ново одлазно" #: oncp.c:855 msgid "Read only 1 byte of oNCP length field\n" msgstr "Читам само 1 бајт оНЦП дужине поља\n" #: oncp.c:864 msgid "Server terminated connection (session expired)\n" msgstr "Сервер је окончао везу (сесија је истекла)\n" #: oncp.c:868 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "Сервер је окончао везу (разлог: %d)\n" #: oncp.c:874 msgid "Server sent zero-length oNCP record\n" msgstr "Сервер је послао оНЦП запис нулте дужине\n" #: oncp.c:969 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "Долазна КМП порука %d величине %d (добих %d)\n" #: oncp.c:972 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "Настављам да обрађујем КМП поруку %d сада величине %d (добих %d)\n" #: oncp.c:991 msgid "Unrecognised data packet\n" msgstr "Непознати пакет података\n" #: oncp.c:1053 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "Непозната КМП порука %d величине %d:\n" #: oncp.c:1058 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr ".... + %d бајтова непримљених\n" #: oncp.c:1073 msgid "Packet outgoing:\n" msgstr "Одлазни пакет:\n" #: oncp.c:1134 msgid "Sent ESP enable control packet\n" msgstr "Послах контролни пакет ЕСП укључивања\n" #: oncp.c:1268 msgid "Logout successful.\n" msgstr "Одјављивање је успело.\n" #: openconnect-internal.h:1119 openconnect-internal.h:1127 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "ГРЕШКА: „%s()“ је позвано са неисправним УТФ-8 за аргумент „%s“\n" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "Не могу да израчунам ДТЛС прекорачење за „%s“\n" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "Нисам успео да направим „SSL_SESSION ASN.1“ за ОпенССЛ: %s\n" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "Опен ССЛ није успео да обради „SSL_SESSION ASN.1“\n" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "Није успело покретање ДТЛСв1 сесије\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "ПСК повратни позив\n" #: openssl-dtls.c:365 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Није успело покретање ДТЛСв1 ЦТХ-а\n" #: openssl-dtls.c:378 msgid "Set DTLS CTX version failed\n" msgstr "Подешавање ДТЛС ЦТИкс издања није успело\n" #: openssl-dtls.c:395 msgid "Failed to generate DTLS key\n" msgstr "Нисам успео да створим ДТЛС кључ\n" #: openssl-dtls.c:413 msgid "Set DTLS cipher list failed\n" msgstr "Није успело постављање списка ДТЛС шифрера\n" #: openssl-dtls.c:439 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:460 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "Функција „SSL_set_session()“ није успела са старим издањем протокола 0x%x\n" "Да ли користите издање ОпенССЛ-а старије од 0.9.8m?\n" "Видите “http://rt.openssl.org/Ticket/Display.html?id=1751“\n" "Користите опцију „--no-dtls“ да избегнете ову поруку\n" #: openssl-dtls.c:493 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:566 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "" "Успостављена је ДТЛС веза (користим Отворени ССЛ). Комплет шифрера %s.\n" #: openssl-dtls.c:603 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" "Ваш Отворени ССЛ је старији од оног који сте изградили с њим, тако да ДТЛС " "можда неће успети!" #: openssl-dtls.c:654 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Вероватно зато што је оштећен ваш Отворени ССЛ\n" "Видите „http://rt.openssl.org/Ticket/Display.html?id=2984“\n" #: openssl-dtls.c:661 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "Није успело ДТЛС руковање: %d\n" #: openssl-esp.c:87 msgid "Failed to initialise ESP cipher:\n" msgstr "Нисам успео да покренем ЕСП шифрера:\n" #: openssl-esp.c:101 msgid "Failed to initialize ESP HMAC\n" msgstr "Нисам успео да покренем ЕСП ХМАЦ\n" #: openssl-esp.c:157 msgid "Failed to generate random keys for ESP:\n" msgstr "Нисам успео да створим насумичне кључеве за ЕСП:\n" #: openssl-esp.c:202 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "Нисам успео да подесим контекст дешифровања за ЕСП пакет:\n" #: openssl-esp.c:210 msgid "Failed to decrypt ESP packet:\n" msgstr "Нисам успео да дешифрујем ЕСП пакет:\n" #: openssl-esp.c:241 msgid "Failed to encrypt ESP packet:\n" msgstr "Нисам успео да шифрујем ЕСП пакет:\n" #: openssl-pkcs11.c:43 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "Нисам успео да успоставим либп11 ПКЦС#11 контекст:\n" #: openssl-pkcs11.c:49 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "Нисам успео да учитам модул ПКЦС#11 достављача (%s):\n" #: openssl-pkcs11.c:269 msgid "PIN locked\n" msgstr "ПИН је закључан\n" #: openssl-pkcs11.c:272 msgid "PIN expired\n" msgstr "ПИН је истекао\n" #: openssl-pkcs11.c:275 msgid "Another user already logged in\n" msgstr "Други корисник је већ пријављен\n" #: openssl-pkcs11.c:279 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "Непозната грешка пријављивања на ПКЦС#11 модул\n" #: openssl-pkcs11.c:286 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "Пријављен сам на ПКЦС#11 прикључак „%s“\n" #: openssl-pkcs11.c:300 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "Нисам успео да набројим уверења у ПКЦС#11 прикључку „%s“\n" #: openssl-pkcs11.c:306 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "Нађох %d уверења у прикључку „%s“\n" #: openssl-pkcs11.c:342 openssl-pkcs11.c:565 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "Нисам успео да обрадим ПКЦС#11 путању „%s“\n" #: openssl-pkcs11.c:349 openssl-pkcs11.c:575 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "Нисам успео да набројим ПКЦС#11 прикључке\n" #: openssl-pkcs11.c:383 openssl-pkcs11.c:617 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "Пријављујем се на ПКЦС#11 прикључак „%s“\n" #: openssl-pkcs11.c:393 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "Нисам успео да нађем ПКЦС#11 уверење „%s“\n" #: openssl-pkcs11.c:401 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "либп11 није довукла садржај Х.509 уверења\n" #: openssl-pkcs11.c:412 openssl.c:713 msgid "Failed to install certificate in OpenSSL context\n" msgstr "Нисам успео да инсталирам уверење у ОпенССЛ контекст\n" #: openssl-pkcs11.c:458 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "Нисам успео да набројим кључеве у ПКЦС#11 прикључку „%s“\n" #: openssl-pkcs11.c:464 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "Нађох %d кључа у прикључку „%s“\n" #: openssl-pkcs11.c:497 msgid "Certificate has no public key\n" msgstr "Уверење нема јавни кључ\n" #: openssl-pkcs11.c:503 openssl-pkcs11.c:526 msgid "Certificate does not match private key\n" msgstr "Уверење не одговара личном кључу\n" #: openssl-pkcs11.c:506 msgid "Checking EC key matches cert\n" msgstr "Провера ЕЦ кључа одговара уверењу\n" #: openssl-pkcs11.c:510 msgid "Failed to allocate signature buffer\n" msgstr "Нисам успео да доделим међумеморију потписа\n" #: openssl-pkcs11.c:520 msgid "Failed to sign dummy data to validate EC key\n" msgstr "Нисам успео да потпишем лажне податке да бих потврдио ЕЦ кључ\n" #: openssl-pkcs11.c:638 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "Нисам успео да нађем ПКЦС#11 кључ „%s“\n" #: openssl-pkcs11.c:649 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "Нисам успео да направим примерак личног кључа из ПКЦС#11\n" #: openssl-pkcs11.c:678 msgid "Add key from PKCS#11 failed\n" msgstr "Додавање кључа из ПКЦС#11 није успело\n" #: openssl-pkcs11.c:710 openssl-pkcs11.c:716 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "Ово издање Отвореног повезивања је изграђено без ПКЦС#11 подршке\n" #: openssl.c:147 msgid "Failed to write to SSL socket\n" msgstr "Нисам успео да пишем на ССЛ прикључницу\n" #: openssl.c:197 openssl.c:263 msgid "Failed to read from SSL socket\n" msgstr "Нисам успео да читам са ССЛ прикључнице\n" #: openssl.c:292 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" "Грешка ССЛ читања %d (сервер је вероватно затворио везу); поново се " "повезујем.\n" #: openssl.c:317 #, c-format msgid "SSL_write failed: %d\n" msgstr "Није успело ССЛ_писање: %d\n" #: openssl.c:389 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "Непозната врста захтева КС ССЛ-а %d\n" #: openssl.c:465 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "ПЕМ лозинка је предуга (%d >= %d)\n" #: openssl.c:498 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Додатно уверење из „%s“: %s\n" #: openssl.c:548 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Није успела обрада ПКЦС#12 (видите грешке изнад)\n" #: openssl.c:563 msgid "PKCS#12 contained no certificate!\n" msgstr "ПКЦС#12 не садржи уверење!\n" #: openssl.c:572 msgid "PKCS#12 contained no private key!\n" msgstr "ПКЦС#12 не садржи лични кључ!\n" #: openssl.c:577 msgid "PKCS#12" msgstr "ПКЦС#12" #: openssl.c:600 msgid "Can't load TPM engine.\n" msgstr "Не могу да учитам ТПМ погон.\n" #: openssl.c:606 msgid "Failed to init TPM engine\n" msgstr "Нисам успео да покренем ТПМ погон\n" #: openssl.c:616 msgid "Failed to set TPM SRK password\n" msgstr "Нисам успео да подесим ТПМ СРК лозинку\n" #: openssl.c:630 msgid "Failed to load TPM private key\n" msgstr "Нисам успео да учитам ТПМ лични кључ\n" #: openssl.c:636 msgid "Add key from TPM failed\n" msgstr "Додавање кључа из ТПМ-а није успело\n" #: openssl.c:687 openssl.c:835 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Нисам успео да отворим датотеку уверења „%s“: %s\n" #: openssl.c:697 msgid "Loading certificate failed\n" msgstr "Нисам успео да учитам уверење\n" #: openssl.c:735 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "Нисам успео да обрадим сва подржавајућа уверења. Ипак покушавам...\n" #: openssl.c:748 msgid "PEM file" msgstr "ПЕМ датотека" #: openssl.c:777 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Нисам успео да направим БИО за ставку смештаја кључева „%s“\n" #: openssl.c:802 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Учитавање личног кључа није успело (погрешна лозинка?)\n" #: openssl.c:808 msgid "Loading private key failed (see above errors)\n" msgstr "Учитавање личног кључа није успело (видите грешке изнад)\n" #: openssl.c:858 msgid "Failed to load X509 certificate from keystore\n" msgstr "Нисам успео да учитам Х509 уверење из смештаја кључа\n" #: openssl.c:864 msgid "Failed to use X509 certificate from keystore\n" msgstr "Нисам успео да користим Х509 уверење из смештаја кључа\n" #: openssl.c:896 msgid "Failed to use private key from keystore\n" msgstr "Нисам успео да користим лични кључ из смештаја кључа\n" #: openssl.c:912 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Нисам успео да отворим датотеку личног кључа „%s“: %s\n" #: openssl.c:936 openssl.c:951 openssl.c:972 openssl.c:1038 msgid "Loading private key failed\n" msgstr "Учитавање личног кључа није успело\n" #: openssl.c:1032 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "Нисам успео да претворим ПКЦС#8 у ОпенССЛ ЕВП_ПКЉУЧ\n" #: openssl.c:1049 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Нисам успео да одредим врсту личног кључа у „%s“\n" #: openssl.c:1203 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Поклопих ДНС заменски назив „%s“\n" #: openssl.c:1210 #, c-format msgid "No match for altname '%s'\n" msgstr "Нема поклапања за заменски назив „%s“\n" #: openssl.c:1224 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "Уверење има заменски назив „GEN_IPADD“ са привидном дужином %d\n" #: openssl.c:1235 openssl.c:1381 #, c-format msgid "Matched %s address '%s'\n" msgstr "Поклопљена је %s адреса „%s“\n" #: openssl.c:1242 #, c-format msgid "No match for %s address '%s'\n" msgstr "Нема поклапања за %s адресу „%s“\n" #: openssl.c:1284 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "Путања „%s“ има не-празну путању; занемарујем\n" #: openssl.c:1289 #, c-format msgid "Matched URI '%s'\n" msgstr "Одговарајућа путања „%s“\n" #: openssl.c:1300 #, c-format msgid "No match for URI '%s'\n" msgstr "Нема поклапања за путању „%s“\n" #: openssl.c:1315 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "Нема одговарајућег заменског назива у уверењу парњака „%s“\n" #: openssl.c:1323 msgid "No subject name in peer cert!\n" msgstr "Нема назива теме у уверењу парњака!\n" #: openssl.c:1343 msgid "Failed to parse subject name in peer cert\n" msgstr "Нисам успео да обрадим назив теме у уверењу парњака\n" #: openssl.c:1350 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Тема уверења парњака не одговара ('%s' != '%s')\n" #: openssl.c:1355 openssl.c:1389 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Одговарајући назив теме уверења парњака „%s“\n" #: openssl.c:1451 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Додатно уверење из датотеке издавача уверења: %s\n" #: openssl.c:1589 msgid "Error in client cert notAfter field\n" msgstr "Грешка у пољу није_након у уверењу клијента\n" #: openssl.c:1602 msgid "" msgstr "<грешка>" #: openssl.c:1655 msgid "Create TLSv1 CTX failed\n" msgstr "Стварање ТЛСв1 ЦТИкс-а није успело\n" #: openssl.c:1674 msgid "SSL certificate and key do not match\n" msgstr "ССЛ уверење и кључ се не подударају\n" #: openssl.c:1719 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Нисам успео да прочитам уверења из датотеке издавача уверења „%s“\n" #: openssl.c:1752 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Нисам успео да отворим датотеку издавача уверења „%s“\n" #: openssl.c:1812 msgid "SSL connection failure\n" msgstr "Неуспех ССЛ везе\n" #: openssl.c:1973 msgid "Failed to calculate OATH HMAC\n" msgstr "Нисам успео да израчунам ОАТХ ХМАЦ\n" #: script.c:130 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Одбацујем укључивања лоше поделе: „%s“\n" #: script.c:134 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Одбацујем искључивања лоше поделе: „%s“\n" #: script.c:507 script.c:555 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Нисам успео да изродим скрипту „%s“ за %s: %s\n" #: script.c:562 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "Скрипта „%s“ је изашла неисправно (%x)\n" #: script.c:570 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Скрипта „%s“ је дала грешку %d\n" #: ssl.c:108 msgid "Socket connect cancelled\n" msgstr "Повезивање прикључнице је отказано\n" #: ssl.c:217 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "Нисам успео поново да се повежем са посредником „%s“: %s\n" #: ssl.c:221 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "Нисам успео поново да се повежем са домаћином „%s“: %s\n" #: ssl.c:289 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Посредник из библиотеке посредника: %s://%s:%d/\n" #: ssl.c:317 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "Добављање података адресе није успело за домаћина „%s“: %s\n" #: ssl.c:326 ssl.c:451 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" "Поново се повезујем на ДинДНС сервер користећи претходно причувану ИП " "адресу\n" #: ssl.c:341 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Покушавам да се повежем са посредником %s%s%s:%s\n" #: ssl.c:342 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Покушавам да се повежем са сервером %s%s%s:%s\n" #: ssl.c:362 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "Повезан сам са %s%s%s:%s\n" #: ssl.c:374 msgid "Failed to allocate sockaddr storage\n" msgstr "Нисам успео да доделим смештај адресе прикључнице\n" #: ssl.c:416 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "Нисам успео да се повежем на %s%s%s:%s: %s\n" #: ssl.c:434 msgid "Forgetting non-functional previous peer address\n" msgstr "Заборављам не-делотворну адресу преходног парњака\n" #: ssl.c:446 #, c-format msgid "Failed to connect to host %s\n" msgstr "Нисам успео да се повежем са домаћином „%s“\n" #: ssl.c:465 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "Поново се повезујем са посредником „%s“\n" #: ssl.c:536 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:564 msgid "Could not obtain file system ID for passphrase\n" msgstr "Не могу да добијем ИБ система датотека за лозинку\n" #: ssl.c:575 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "Нисам успео да отворим датотеку личног кључа „%s“: %s\n" #: ssl.c:603 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:694 msgid "No error" msgstr "Нема грешке" #: ssl.c:695 msgid "Keystore locked" msgstr "Смештај кључа је закључан" #: ssl.c:696 msgid "Keystore uninitialized" msgstr "Смештај кључа није покренут" #: ssl.c:697 msgid "System error" msgstr "Грешка система" #: ssl.c:698 msgid "Protocol error" msgstr "Грешка протокола" #: ssl.c:699 msgid "Permission denied" msgstr "Приступ је одбијен" #: ssl.c:700 msgid "Key not found" msgstr "Нисам нашао кључ" #: ssl.c:701 msgid "Value corrupted" msgstr "Вредност је оштећена" #: ssl.c:702 msgid "Undefined action" msgstr "Неодређена радња" #: ssl.c:706 msgid "Wrong password" msgstr "Погрешна лозинка" #: ssl.c:707 msgid "Unknown error" msgstr "Непозната грешка" #: ssl.c:896 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "„openconnect_fopen_utf8()“ је коришћено са неподржаним режимом „%s“\n" #: ssl.c:931 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" "Непозната породица протокола %d. Не могу да направим адресу УДП сервера\n" #: ssl.c:950 msgid "Open UDP socket" msgstr "Отварам УДП прикључницу" #: ssl.c:981 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "Непозната породица протокола %d. Не могу да користим УДП пренос\n" #: ssl.c:989 msgid "Bind UDP socket" msgstr "Свезујем УДП прикључницу" #: ssl.c:996 msgid "Connect UDP socket\n" msgstr "Повезујем УДП прикључницу\n" #: ssl.c:1034 msgid "Cookie is no longer valid, ending session\n" msgstr "Колачић није више исправан, завршавам сесију\n" #: ssl.c:1038 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "спавам %d сек., преостало време истека %d сек.\n" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "ССПИ модул је превелик (%ld бајта)\n" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "Шаљем ССПИ модул од %lu бајта\n" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" "Нисам успео да пошаљем ССПИ модул потврђивања идентитета посреднику: %s\n" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" "Нисам успео да примим ССПИ модул потврђивања идентитета од посредника: %s\n" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "СОЦКС сервер је известио о неуспеху ССПИ контекста\n" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "Непознат одговор ССПИ стања (0х%02x) са СОЦКС сервера\n" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "Добих ССПИ модул од %lu бајта: %02x %02x %02x %02x\n" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "Пропитивање контекстних атрибута није успело: %lx\n" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "Шифровање поруке није успело: %lx\n" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "Резултат шифроване поруке је превелик (%lu + %lu + %lu)\n" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "Шаљем преговор ССПИ заштите од %u бајта\n" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "Нисам успео да пошаљем одговор ССПИ заштите посреднику: %s\n" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "Нисам успео да примим одговор ССПИ заштите од посредника: %s\n" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "Добих одговор ССПИ заштите од %d бајта: %02x %02x %02x %02x\n" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "Дешифровање поруке није успело: %lx\n" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "Неисправан одговор ССПИ заштите са посредника (%lu бајта)\n" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "Унесите уверења за откључавање софтверског модула." #: stoken.c:82 msgid "Device ID:" msgstr "ИБ уређаја:" #: stoken.c:89 msgid "Password:" msgstr "Лозинка:" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "Корисник је заобишао софтверски модул.\n" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "Сва поља су обавезна; покушајте опет.\n" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "Општи неуспех у „libstoken“-у.\n" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "Неисправан ИБ уређаја или лозинка; покушајте поново.\n" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "Покретање софтверског модула је успело.\n" #: stoken.c:185 msgid "Enter software token PIN." msgstr "Унесите ПИН софтверског модула." #: stoken.c:189 msgid "PIN:" msgstr "ПИН:" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "Неисправан запис ПИН-а; покушајте поново.\n" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "Стварам код РСА модула\n" #: tun-win32.c:76 msgid "Error accessing registry key for network adapters\n" msgstr "Грешка приступа кључу регистра за мрежним прилагођивачима\n" #: tun-win32.c:139 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "Занемарујем не-подударајући ТАП уређај „%s“\n" #: tun-win32.c:154 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" "Нисам нашао Виндоуз-ТАП прилагођиваче. Да ли је инсталиран управљачки " "програм?\n" #: tun-win32.c:186 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" "Није успело „GetAdapterIndex()“: %s\n" "Пребацујем се на „GetAdaptersInfo()“\n" #: tun-win32.c:200 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "Није успело „GetAdaptersInfo()“: %s\n" #: tun-win32.c:231 #, c-format msgid "Failed to open %s\n" msgstr "Нисам успео да отворим „%s“\n" #: tun-win32.c:236 #, c-format msgid "Opened tun device %s\n" msgstr "Отворио сам тун уређај „%s“\n" #: tun-win32.c:244 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Нисам успео да добијем издање ТАП управљачког програма: %s\n" #: tun-win32.c:250 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Грешка: Потребан је управљачки програм ТАП-Виндоуза v9.9 или већи (нађох %ld." "%ld)\n" #: tun-win32.c:271 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Нисам успео да подесим ТАП ИП адресе: %s\n" #: tun-win32.c:283 tun-win32.c:406 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Нисам успео да подесим стање ТАП медија: %s\n" #: tun-win32.c:316 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "ТАП уређај је прекинуо повезивост. Прекидам везу.\n" #: tun-win32.c:321 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Нисам успео да читам са ТАП уређаја: %s\n" #: tun-win32.c:335 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Нисам успео да довршим читање са ТАП уређаја: %s\n" #: tun-win32.c:358 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "Записах %ld бајта на туну\n" #: tun-win32.c:368 msgid "Waiting for tun write...\n" msgstr "Чекам на записивање туна...\n" #: tun-win32.c:371 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "Записах %ld бајта на туну након чекања\n" #: tun-win32.c:378 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Нисам успео да пишем на ТАП уређај: %s\n" #: tun-win32.c:423 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "Израђање тунелских скрипти још није подржано на Виндоузу\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Не могу да отворим „/dev/tun“ за омрежење" #: tun.c:92 msgid "Can't push IP" msgstr "Не могу да погурам ИП" #: tun.c:102 msgid "Can't set ifname" msgstr "Не могу да подесим „ifname“" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "Не могу да отворим „%s“: %s" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Не могу да омрежим „%s“ за ИПв%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "отварам „/dev/tun“" #: tun.c:145 msgid "Failed to create new tun" msgstr "Нисам успео да направим нови тун" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "Нисам успео да ставим описник тун датотеке у режим одбацивања поруке" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "тун уређај није подржан на овој платформи\n" #: tun.c:205 msgid "open net" msgstr "отварам мрежу" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Не могу да отворим тун уређај: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "Нисам успео да свежем месни тун уређај (TUNSETIFF): %s\n" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" "За подешавање месног умрежавања, опенконект мора бити покренут као " "администратор\n" "Видите „http://www.infradead.org/openconnect/nonroot.html“ за више података\n" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "Неисправан назив уређаја „%s“; мора да буде „utun%%d“ или „tun%%d“\n" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "Нисам успео да отворим „SYSPROTO_CONTROL“ прикључницу: %s\n" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "Нисам успео да пропитам иб контроле утуна: %s\n" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "Нисам успео да доделим назив утун уређаја\n" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "Нисам успео да повежем утун јединицу: %s\n" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Неисправан назив уређаја „%s“; мора да буде „tun%%d“\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Не могу да отворим „%s“: %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:479 #, c-format msgid "socketpair failed: %s\n" msgstr "Није успело упаривање утичнице: %s\n" #: tun.c:484 #, c-format msgid "fork failed: %s\n" msgstr "исцепљивање није успело: %s\n" #: tun.c:488 msgid "setpgid" msgstr "setpgid" #: tun.c:493 msgid "execl" msgstr "execl" #: tun.c:498 msgid "(script)" msgstr "(скрипта)" #: tun.c:566 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Нисам успео да запишем пристигли пакет: %s\n" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "Нисам успео да отворим „%s“: %s\n" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "Не могу да добијем податке о „%s“: %s\n" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Нисам успео да доделим %d бајта за „%s“\n" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "Нисам успео да прочитам „%s“: %s\n" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Сматрам домаћина „%s“ за сирови назив домаћина\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Нисам успео да СХА1 постојећу датотеку\n" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "СХА1 датотеке ИксМЛ подешавања: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Нисам успео да обрадим датотеку ИксМЛ подешавања „%s“\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Домаћин „%s“ има адресу „%s“\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Домаћин „%s“ има корисничку групу „%s“\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "Домаћин „%s“ није наведен у подешавањима; сматрам га сировим називом " "домаћина\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "Нисам успео да пошаљем „%s“ до програмчета „ykneo-oath“: %s\n" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "Неисправан кратак одговор за „%s“ од програмчета „ykneo-oath“\n" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "Неуспели одговор за „%s“: %04x\n" #: yubikey.c:174 msgid "select applet command" msgstr "изабери наредбу програмчета" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "Непознат одговор од програмчета „ykneo-oath“\n" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "Нашао сам програмче „ykneo-oath“ и%d.%d.%d.\n" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "Потребан је ПИН за ОАТХ програмче Јуби кључа" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "ПИН Јуби кључа:" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "Нисам успео да израчунам одговор откључавања Јуби кључа\n" #: yubikey.c:274 msgid "unlock command" msgstr "наредба откључавања" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "Покушавам ПБКБФ2 варијанту скраћеног-знака Јубики ПИН-а\n" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "Нисам успео да успоставим ПЦ/СЦ контекст: %s\n" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "ПЦ/СЦ контекст је упсостављен\n" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "Нисам успео да пропитам списак читача: %s\n" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "Нисам успео да се повежем са ПЦ/СЦ читачем „%s“: %s\n" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "Повезан је ПЦ/СЦ читач „%s“\n" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "Нисам успео да добијем искључиви приступ читачу „%s“: %s\n" #: yubikey.c:412 msgid "list keys command" msgstr "наредба списка кључева" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "Нађох %s/%s кљзч „%s“ на „%s“\n" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "Нисам нашао модул „%s“ на Јуби кључу „%s“. Тражим други Јуби кључ...\n" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "Сервер одбија модул Јуби кључа; прелазим на ручни унос\n" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "Стварам код модула Јуби кључа\n" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "Нисам успео да добијем искључиви приступ Јуби кључу: %s\n" #: yubikey.c:619 msgid "calculate command" msgstr "наредба израчунавања" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "Непознат одговор са Јуби кључа приликом стварања кода модула\n" openconnect-8.05/po/el.po0000664000076400007640000036341513470043037017130 0ustar00dwoodhoudwoodhou00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2019-05-18 10:44-0700\n" "PO-Revision-Date: 2011-09-22 22:31+0000\n" "Last-Translator: FULL NAME \n" "Language-Team: Greek (http://www.transifex.net/projects/p/meego/team/el/)\n" "Language: el\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1)\n" #: auth-globalprotect.c:108 #, c-format msgid "" "SAML login is required via %s to this URL:\n" "\t%s" msgstr "" #: auth-globalprotect.c:110 msgid "Please enter your username and password" msgstr "" #: auth-globalprotect.c:119 msgid "Username" msgstr "" #: auth-globalprotect.c:134 msgid "Password" msgstr "" #: auth-globalprotect.c:181 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:260 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:266 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:272 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:315 msgid "Please select GlobalProtect gateway." msgstr "" #: auth-globalprotect.c:325 msgid "GATEWAY:" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:379 #, c-format msgid "%d gateway servers available:\n" msgstr "" #: auth-globalprotect.c:400 #, c-format msgid " %s (%s)\n" msgstr "" #: auth-globalprotect.c:484 auth-juniper.c:730 auth.c:669 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth-globalprotect.c:584 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" #: auth-globalprotect.c:636 oncp.c:1266 msgid "Logout failed.\n" msgstr "" #: auth-globalprotect.c:638 msgid "Logout successful\n" msgstr "" #: auth-juniper.c:142 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:153 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:163 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:236 auth.c:408 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Αδύνατος ο χειρισμός μεθόδου μορφής='%s', ενέργεια='%s'\n" #: auth-juniper.c:267 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "" #: auth-juniper.c:337 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:359 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:397 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:411 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:418 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:425 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:432 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:439 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:445 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:452 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:481 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:650 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:667 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:675 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:713 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:716 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth.c:96 msgid "Form choice has no name\n" msgstr "Η επιλογή μορφής δεν έχει κανένα όνομα\n" #: auth.c:181 #, c-format msgid "name %s not input\n" msgstr "Χωρίς όνομα %s στην είσοδο\n" #: auth.c:188 msgid "No input type in form\n" msgstr "Χωρίς τύπο εισόδου στη μορφή\n" #: auth.c:200 msgid "No input name in form\n" msgstr "Χωρίς όνομα εισόδου στη μορφή\n" #: auth.c:230 #, c-format msgid "Unknown input type %s in form\n" msgstr "Άγνωστος τύπος εισόδου %s στη μορφή\n" #: auth.c:540 gpst.c:214 msgid "Empty response from server\n" msgstr "Κενή απάντηση από διακομιστή\n" #: auth.c:551 gpst.c:289 msgid "Failed to parse server response\n" msgstr "Αποτυχία ανάλυσης απάντησης διακομιστή.\n" #: auth.c:553 gpst.c:291 #, c-format msgid "Response was:%s\n" msgstr "Η απάντηση ήταν:%s\n" #: auth.c:575 msgid "Received when not expected.\n" msgstr "Λήψη , ενώ δεν αναμενόταν.\n" #: auth.c:603 msgid "XML response has no \"auth\" node\n" msgstr "Η απάντηση XML δεν έχει κανένα κόμβο \"πιστοποίησης\"\n" #: auth.c:636 msgid "Asked for password but '--no-passwd' set\n" msgstr "Ζητήθηκε κωδικός πρόσβασης, αλλά έχει οριστεί '--no-passwd'\n" #: auth.c:925 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:931 cstp.c:335 http.c:916 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Αποτυχία ανοίγματος σύνδεσης HTTPS σε %s\n" #: auth.c:952 msgid "Failed to send GET request for new config\n" msgstr "Αποτυχία αποστολής αιτήματος GET για νέα διαμόρφωση\n" #: auth.c:976 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" "Το μεταφορτωμένο αρχείο ρυθμίσεων δεν ταιριάζει με το προοριζόμενο SHA1\n" #: auth.c:981 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:992 auth.c:1044 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" #: auth.c:1003 mainloop.c:144 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "" #: auth.c:1010 mainloop.c:151 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "" #: auth.c:1017 mainloop.c:158 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "" #: auth.c:1024 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "" #: auth.c:1031 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Αποτυχία αλλαγής σε προσωπικό κατάλογο CSD '%s': %s\n" #: auth.c:1053 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Σφάλμα: Ο διακομιστής ζήτησε την εκτέλεση της σάρωσης οικοδεσπότη CSD.\n" "Χρειάζεται να δώσετε ένα κατάλληλο όρισμα --csd-wrapper.\n" #: auth.c:1060 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Σφάλμα: Ο διακομιστής ζήτησε τη μεταφόρτωση και εκτέλεση ενός δούρειου ίππου " "'ασφαλούς επιφάνειας εργασίας Cisco'.\n" "Αυτή η διευκόλυνση είναι ανενεργή από προεπιλογή για λόγους ασφάλειας, έτσι " "μπορεί να θέλετε να την ενεργοποιήσετε.\n" #: auth.c:1067 msgid "Trying to run Linux CSD trojan script.\n" msgstr "Προσπάθεια εκτέλεσης σεναρίου δούρειου ίππου CSD Λίνουξ.\n" #: auth.c:1094 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1102 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Αποτυχία ανοίγματος προσωρινού αρχείου σεναρίου CSD: %s\n" #: auth.c:1111 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Αποτυχία εγγραφής προσωρινού αρχείου σεναρίου CSD: %s\n" #: auth.c:1141 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Προειδοποίηση: εκτελείτε επισφαλή κώδικα CSD με δικαιώματα υπερχρήστη\n" " Χρησιμοποιήστε την επιλογή γραμμής εντολών \"--csd-user\"\n" #: auth.c:1189 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Αποτυχία εκτέλεσης σεναρίου CSD %s\n" #: auth.c:1221 msgid "Unknown response from server\n" msgstr "Άγνωστη απάντηση από διακομιστή\n" #: auth.c:1342 msgid "Server requested SSL client certificate after one was provided\n" msgstr "Ο διακομιστής ζήτησε πιστοποιητικό πελάτη SSL μετά την παροχή ενός\n" #: auth.c:1346 msgid "Server requested SSL client certificate; none was configured\n" msgstr "Ο διακομιστής ζήτησε πιστοποιητικό πελάτη SSL· κανένα δεν ρυθμίστηκε\n" #: auth.c:1362 msgid "XML POST enabled\n" msgstr "Ενεργοποίηση POST XML\n" #: auth.c:1405 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Ανανέωση του %s μετά από 1 δευτερόλεπτο...\n" #: compat.c:207 #, c-format msgid "(error 0x%lx)" msgstr "" #: compat.c:210 msgid "(Error while describing error!)" msgstr "" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "ΣΦΑΛΜΑ: Αδύνατη η αρχικοποίηση υποδοχών\n" #: cstp.c:112 gpst.c:341 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:134 gpst.c:360 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:281 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:312 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:328 http.c:384 msgid "Error fetching HTTPS response\n" msgstr "Σφάλμα κατά την προσκόμιση απάντησης HTTPS\n" #: cstp.c:355 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "Η υπηρεσία VPN δεν είναι διαθέσιμη· αιτία: %s\n" #: cstp.c:360 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Λήψη ακατάλληλης απάντησης HTTP CONNECT: %s\n" #: cstp.c:367 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Λήψη απάντησης CONNECT: %s\n" #: cstp.c:396 cstp.c:404 msgid "No memory for options\n" msgstr "Χωρίς μνήμη για επιλογές\n" #: cstp.c:413 http.c:444 msgid "" msgstr "<παραλειπόμενο>" #: cstp.c:433 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "" "Το αναγνωριστικό συνεδρίας X-DTLS δεν είναι 64 χαρακτήρες· είναι: \"%s\"\n" #: cstp.c:450 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "" #: cstp.c:468 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:510 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Άγνωστη κωδικοποίηση περιεχομένου CSTP %s\n" #: cstp.c:585 msgid "No MTU received. Aborting\n" msgstr "Δεν ελήφθη MTU. Ματαίωση\n" #: cstp.c:593 gpst.c:641 msgid "No IP address received. Aborting\n" msgstr "Δεν ελήφθη διεύθυνση IP. Ματαίωση\n" #: cstp.c:599 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: cstp.c:605 gpst.c:648 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "" "Η επανασύνδεση έδωσε διαφορετική κληρονομημένη διεύθυνση IP (%s != %s)\n" #: cstp.c:614 gpst.c:657 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" "Η επανασύνδεση έδωσε διαφορετική κληρονομημένη μάσκα δικτύου IP (%s != %s)\n" #: cstp.c:622 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Η επανασύνδεση έδωσε διαφορετική διεύθυνση IPv6 (%s != %s)\n" #: cstp.c:630 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Η επανασύνδεση έδωσε διαφορετική μάσκα δικτύου IPv6 (%s != %s)\n" #: cstp.c:638 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "Συνδέθηκε το CSTP. DPD %d, διατήρηση σύνδεσης %d\n" #: cstp.c:640 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "" #: cstp.c:702 msgid "Compression setup failed\n" msgstr "Αποτυχία ρύθμισης συμπίεσης\n" #: cstp.c:719 msgid "Allocation of deflate buffer failed\n" msgstr "Αποτυχία κατανομής ενδιάμεσης μνήμης συμπίεσης\n" #: cstp.c:781 msgid "inflate failed\n" msgstr "Αποτυχία αποσυμπίεσης\n" #: cstp.c:804 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:817 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:824 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:829 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:849 #, c-format msgid "deflate failed %d\n" msgstr "Αποτυχία συμπίεσης %d\n" #: cstp.c:922 dtls.c:281 dtls.c:740 esp.c:129 gpst.c:1042 mainloop.c:69 #: oncp.c:914 msgid "Allocation failed\n" msgstr "" #: cstp.c:933 gpst.c:1055 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: cstp.c:946 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" "Αναπάντεχο μήκος πακέτου. Η ανάγνωση_SSL επέστρεψε %d αλλά το πακέτο είναι\n" #: cstp.c:960 msgid "Got CSTP DPD request\n" msgstr "Λήψη αιτήματος DPD CSTP\n" #: cstp.c:966 msgid "Got CSTP DPD response\n" msgstr "Λήψη απάντησης DPD CSTP\n" #: cstp.c:971 msgid "Got CSTP Keepalive\n" msgstr "Λήψη διατήρησης σύνδεσης του CSTP\n" #: cstp.c:976 oncp.c:1003 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Λήψη πακέτου ασυμπίεστων δεδομένων από %d οκτάδες\n" #: cstp.c:993 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Λήψη αποσύνδεσης διακομιστή: %02x '%s'\n" #: cstp.c:996 msgid "Received server disconnect\n" msgstr "" #: cstp.c:1004 msgid "Compressed packet received in !deflate mode\n" msgstr "Λήψη συμπιεσμένου πακέτου! κατάσταση συμπίεσης\n" #: cstp.c:1013 msgid "received server terminate packet\n" msgstr "Λήψη πακέτου τερματισμού διακομιστή\n" #: cstp.c:1020 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Άγνωστο πακέτο %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1063 gpst.c:1142 oncp.c:1121 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "Το SSL έγραψε υπερβολικά λίγες οκτάδες! Ζητήθηκαν %d, στάλθηκαν %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1091 oncp.c:1155 msgid "CSTP rekey due\n" msgstr "Αναμενόμενη αλλαγή κλειδιού CSTP\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1098 oncp.c:1162 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: cstp.c:1109 oncp.c:1173 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "Η αναγνώριση νεκρού ομότιμου CSTP ανίχνευσε νεκρό ομότιμο!\n" #: cstp.c:1113 gpst.c:1166 oncp.c:1091 oncp.c:1177 msgid "Reconnect failed\n" msgstr "Αποτυχία επανασύνδεσης\n" #: cstp.c:1129 oncp.c:1193 msgid "Send CSTP DPD\n" msgstr "Αποστολή DPD CSTP\n" #: cstp.c:1141 oncp.c:1204 msgid "Send CSTP Keepalive\n" msgstr "Αποστολή διατήρησης σύνδεσης CSTP\n" #: cstp.c:1166 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1177 oncp.c:1238 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Αποστολή πακέτου ασυμπίεστων δεδομένων από %d οκτάδες\n" #: cstp.c:1216 #, c-format msgid "Send BYE packet: %s\n" msgstr "Αποστολή πακέτου BYE: %s\n" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:113 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:119 msgid "No DTLS address\n" msgstr "Χωρίς διεύθυνση DTLS\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:126 msgid "Server offered no DTLS cipher option\n" msgstr "Ο διακομιστής δεν προσέφερε επιλογή κρυπτογράφησης DTLS\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:133 msgid "No DTLS when connected via proxy\n" msgstr "Χωρίς DTLS κατά τη σύνδεση μέσα από μεσολαβητή\n" #: dtls.c:200 #, c-format msgid "DTLS option %s : %s\n" msgstr "Επιλογή DTLS %s : %s\n" #: dtls.c:239 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "Αρχικοποίηση DTLS. DPD %d, διατήρηση σύνδεσης %d\n" #: dtls.c:265 msgid "Attempt new DTLS connection\n" msgstr "Προσπάθεια νέας σύνδεσης DTLS\n" #: dtls.c:292 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Ελήφθη πακέτο DTLS 0x%02x από %d οκτάδες\n" #: dtls.c:306 msgid "Got DTLS DPD request\n" msgstr "Λήψη αιτήματος DPD DTLS\n" #: dtls.c:312 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Αποτυχία αποστολής απάντησης DPD. Αναμένεται αποσύνδεση\n" #: dtls.c:316 msgid "Got DTLS DPD response\n" msgstr "Λήψη απάντησης DPD DTLS\n" #: dtls.c:320 msgid "Got DTLS Keepalive\n" msgstr "Λήψη διατήρησης σύνδεσης του DTLS\n" #: dtls.c:326 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:334 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Άγνωστος τύπος πακέτου DTLS %02x, μήκος %d\n" #: dtls.c:356 msgid "DTLS rekey due\n" msgstr "Αναμενόμενη αλλαγή κλειδιού DTLS\n" #: dtls.c:363 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: dtls.c:372 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "Η αναγνώριση νεκρού ομότιμου DTLS ανίχνευσε νεκρό ομότιμο!\n" #: dtls.c:378 msgid "Send DTLS DPD\n" msgstr "Αποστολή DPD DTLS\n" #: dtls.c:383 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Αποτυχία αποστολής αιτήματος DPD. Αναμένεται αποσύνδεση\n" #: dtls.c:396 msgid "Send DTLS Keepalive\n" msgstr "Αποστολή διατήρησης σύνδεσης DTLS\n" #: dtls.c:401 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" "Αποτυχία αποστολής αιτήματος διατήρησης σύνδεσης. Αναμένεται αποσύνδεση\n" #: dtls.c:432 tun.c:541 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Λήψη άγνωστου πακέτου (μήκους %d): %02x %02x %02x %02x...\n" #: dtls.c:439 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "" #: dtls.c:443 msgid "UDP setsockopt" msgstr "" #: dtls.c:474 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "Το DTLS έλαβε σφάλμα εγγραφής %d. Υποχώρηση σε SSL\n" #: dtls.c:488 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "Το DTLS έλαβε σφάλμα εγγραφής %s. Υποχώρηση σε SSL\n" #: dtls.c:503 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "Αποστολή πακέτου DTLS από %d οκτάδες· η αποστολή DTLS επέστρεψε %d\n" #: dtls.c:531 #, c-format msgid "Initiating IPv4 MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:551 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" #: dtls.c:555 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" #: dtls.c:564 #, c-format msgid "Sending MTU DPD probe (%u bytes, min=%u, max=%u)\n" msgstr "" #: dtls.c:568 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "" #: dtls.c:582 dtls.c:690 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" #: dtls.c:594 #, c-format msgid "Timeout while waiting for DPD response; trying %d\n" msgstr "" #: dtls.c:601 dtls.c:682 msgid "Timeout while waiting for DPD response; resending probe.\n" msgstr "" #: dtls.c:608 dtls.c:709 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "" #: dtls.c:613 #, c-format msgid "Received MTU DPD probe (%u bytes of %u)\n" msgstr "" #: dtls.c:651 msgid "Initiating IPv6 MTU detection\n" msgstr "" #: dtls.c:666 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:670 #, c-format msgid "Failed to send DPD request (%d)\n" msgstr "" #: dtls.c:695 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:759 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "" #: dtls.c:762 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" #: esp.c:63 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:66 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:69 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:87 msgid "incoming" msgstr "" #: esp.c:88 msgid "outgoing" msgstr "" #: esp.c:90 esp.c:113 msgid "Send ESP probes\n" msgstr "" #: esp.c:138 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:155 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:161 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:174 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:181 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:193 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:202 msgid "ESP session established with server\n" msgstr "" #: esp.c:213 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:219 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:225 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:239 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:243 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:251 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:258 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:278 #, c-format msgid "Failed to encrypt ESP packet: %d\n" msgstr "" #: esp.c:294 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:301 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:307 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-dtls.c:190 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "" #: gnutls-dtls.c:198 msgid "Failed to generate DTLS priority string\n" msgstr "" #: gnutls-dtls.c:207 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "" #: gnutls-dtls.c:216 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "" #: gnutls-dtls.c:240 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "" #: gnutls-dtls.c:253 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:267 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:275 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "" #: gnutls-dtls.c:309 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Άγνωστες παράμετροι DTLS για το ζητούμενο CipherSuite '%s'\n" #: gnutls-dtls.c:324 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "Αποτυχία ορισμού προτεραιότητας DTLS: %s\n" #: gnutls-dtls.c:345 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Αποτυχία ορισμού παραμέτρων συνεδρίας DTLS: %s\n" #: gnutls-dtls.c:373 openssl-dtls.c:534 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "" #: gnutls-dtls.c:382 openssl-dtls.c:545 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "" #: gnutls-dtls.c:392 openssl-dtls.c:554 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" #: gnutls-dtls.c:405 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Αποτυχία ορισμού DTLS MTU: %s\n" #: gnutls-dtls.c:416 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "Επίτευξη σύνδεσης DTLS (με χρήση του GnuTLS). Ciphersuite %s.\n" #: gnutls-dtls.c:422 openssl-dtls.c:572 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "" #: gnutls-dtls.c:437 openssl-dtls.c:653 openssl-dtls.c:657 msgid "DTLS handshake timed out\n" msgstr "Λήξη χρόνου χειραψίας DTLS\n" #: gnutls-dtls.c:440 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "Αποτυχία χειραψίας DTLS: %s\n" #: gnutls-dtls.c:444 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:121 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:132 msgid "Failed to generate ESP IV\n" msgstr "" #: gnutls-esp.c:161 gnutls-esp.c:217 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:168 openssl-esp.c:192 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:180 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:209 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:95 openssl.c:154 msgid "SSL write cancelled\n" msgstr "Ακύρωση εγγραφής SSL\n" #: gnutls.c:99 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "Αποτυχία εγγραφής στην υποδοχή SSL: %s\n" #: gnutls.c:145 gnutls.c:237 openssl.c:204 openssl.c:271 msgid "SSL read cancelled\n" msgstr "Ακύρωση ανάγνωσης SSL\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:158 msgid "SSL socket closed uncleanly\n" msgstr "" #: gnutls.c:168 gnutls.c:246 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "Αποτυχία ανάγνωσης από την υποδοχή SSL: %s\n" #: gnutls.c:266 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "Σφάλμα ανάγνωσης SSL: %s· επανασυνδέεται.\n" #: gnutls.c:302 #, c-format msgid "SSL send failed: %s\n" msgstr "Αποτυχία αποστολής SSL: %s\n" #: gnutls.c:315 msgid "Could not extract expiration time of certificate\n" msgstr "Αδύνατη η εξαγωγή χρόνου λήξης του πιστοποιητικού\n" #: gnutls.c:320 openssl.c:1592 msgid "Client certificate has expired at" msgstr "Το πιστοποιητικό πελάτη έχει λήξει στις" #: gnutls.c:322 openssl.c:1597 msgid "Client certificate expires soon at" msgstr "Το πιστοποιητικό πελάτη λήγει σύντομα στις" #: gnutls.c:371 openssl.c:771 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Αποτυχία φόρτωσης στοιχείου '%s' από την αποθήκη κλειδιών: %s\n" #: gnutls.c:384 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Αποτυχία ανοίγματος αρχείου κλειδιού/πιστοποιητικού %s: %s\n" #: gnutls.c:391 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Αποτυχία stat αρχείου κλειδιού/πιστοποιητικού %s: %s\n" #: gnutls.c:400 msgid "Failed to allocate certificate buffer\n" msgstr "Αποτυχία κατανομής ενδιάμεσης μνήμης πιστοποιητικού\n" #: gnutls.c:408 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Αποτυχία ανάγνωσης πιστοποιητικού στη μνήμη: %s\n" #: gnutls.c:439 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Αποτυχία ρύθμισης δομής δεδομένων PKCS#12: %s\n" #: gnutls.c:462 openssl.c:534 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Αποτυχία αποκρυπτογράφησης αρχείου πιστοποιητικού PKCS#12\n" #: gnutls.c:466 openssl.c:537 msgid "Enter PKCS#12 pass phrase:" msgstr "Εισαγωγή συνθηματικού PKCS#12:" #: gnutls.c:489 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Αποτυχία επεξεργασίας αρχείου PKCS#12: %s\n" #: gnutls.c:501 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Αποτυχία φόρτωσης πιστοποιητικού PKCS#12: %s\n" #: gnutls.c:584 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Αποτυχία εισαγωγής πιστοποιητικού X509: %s\n" #: gnutls.c:594 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Αποτυχία ρύθμισης πιστοποιητικού PKCS#11: %s\n" #: gnutls.c:628 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Αδύνατη η αρχικοποίηση του κατακερματισμού MD5: %s\n" #: gnutls.c:638 #, c-format msgid "MD5 hash error: %s\n" msgstr "Σφάλμα κατακερματισμού MD5: %s\n" #: gnutls.c:696 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" "Λείπουν πληροφορίες DEK: η κεφαλίδα από το κρυπτογραφημένο κλειδί OpenSSL\n" #: gnutls.c:703 msgid "Cannot determine PEM encryption type\n" msgstr "Αδύνατος ο προσδιορισμός τύπου κρυπτογράφησης PEM\n" #: gnutls.c:716 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Μη υποστηριζόμενος τύπος κρυπτογράφησης PEM: %s\n" #: gnutls.c:741 gnutls.c:754 msgid "Invalid salt in encrypted PEM file\n" msgstr "Άκυρο αλάτι σε κρυπτογραφημένο αρχείο PEM\n" #: gnutls.c:778 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Σφάλμα κρυπτογραφημένου αρχείου PEM με αποκωδικοποίηση βάση64: %s\n" #: gnutls.c:786 msgid "Encrypted PEM file too short\n" msgstr "Το κρυπτογραφημένο αρχείο PEM είναι υπερβολικά σύντομο\n" #: gnutls.c:814 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" "Αποτυχία αρχικοποίησης κρυπτογράφησης για αποκρυπτογράφηση αρχείου PEM: %s\n" #: gnutls.c:825 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Αποτυχία αποκρυπτογράφησης κλειδιού PEM: %s\n" #: gnutls.c:877 msgid "Decrypting PEM key failed\n" msgstr "Αποτυχία αποκρυπτογράφησης κλειδιού PEM\n" #: gnutls.c:881 gnutls.c:1405 openssl.c:458 msgid "Enter PEM pass phrase:" msgstr "Εισαγωγή συνθηματικού PEM:" #: gnutls.c:942 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:949 msgid "This binary built without PKCS#11 support\n" msgstr "Αυτό το δυαδικό δημιουργήθηκε χωρίς υποστήριξη PKCS#11\n" #: gnutls.c:993 openssl-pkcs11.c:407 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Χρήση πιστοποιητικού PKCS#11 %s\n" #: gnutls.c:994 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1012 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Σφάλμα κατά τη φόρτωση πιστοποιητικού από PKCS#11: %s\n" #: gnutls.c:1013 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1024 openssl.c:827 #, c-format msgid "Using certificate file %s\n" msgstr "Χρήση αρχείου πιστοποιητικού %s\n" #: gnutls.c:1052 msgid "PKCS#11 file contained no certificate\n" msgstr "Το αρχείο PKCS#11 δεν περιείχε κανένα πιστοποιητικό\n" #: gnutls.c:1078 msgid "No certificate found in file" msgstr "Δεν βρέθηκε κανένα πιστοποιητικό στο αρχείο" #: gnutls.c:1083 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Αποτυχία φόρτωσης πιστοποιητικού: %s\n" #: gnutls.c:1098 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1103 gnutls.c:1271 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Σφάλμα κατά την αρχικοποίηση δομής ιδιωτικού κλειδιού: %s\n" #: gnutls.c:1114 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1125 gnutls.c:1219 gnutls.c:1247 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1130 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Σφάλμα κατά την αρχικοποίηση δομής κλειδιού PKCS#11: %s\n" #: gnutls.c:1259 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Σφάλμα κατά την εισαγωγή URL PKCS#11 %s: %s\n" #: gnutls.c:1266 openssl-pkcs11.c:644 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Χρήση κλειδιού %s PKCS#11\n" #: gnutls.c:1281 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" "Σφάλμα εισαγωγής του κλειδιού PKCS#11 στην δομή ιδιωτικού κλειδιού: %s\n" #: gnutls.c:1299 #, c-format msgid "Using private key file %s\n" msgstr "Χρήση αρχείου ιδιωτικού κλειδιού %s\n" #: gnutls.c:1310 openssl.c:651 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Αυτή η έκδοση του openconnect δομήθηκε χωρίς υποστήριξη TPM\n" #: gnutls.c:1326 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1347 msgid "Failed to interpret PEM file\n" msgstr "Αποτυχία ερμηνείας του αρχείου PEM\n" #: gnutls.c:1366 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Αποτυχία φόρτωσης ιδιωτικού κλειδιού PKCS#1: %s\n" #: gnutls.c:1379 gnutls.c:1393 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Αποτυχία φόρτωσης ιδιωτικού κλειδιού ως PKCS#8: %s\n" #: gnutls.c:1401 gnutls.c:1434 openssl.c:1002 openssl.c:1012 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Αποτυχία αποκρυπτογράφησης αρχείου πιστοποιητικού PKCS#8\n" #: gnutls.c:1426 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Αποτυχία προσδιορισμού τύπου ιδιωτικού κλειδιού %s\n" #: gnutls.c:1438 openssl.c:1008 msgid "Enter PKCS#8 pass phrase:" msgstr "Εισαγωγή συνθηματικού PKCS#8:" #: gnutls.c:1454 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Αποτυχία λήψης αναγνωριστικού κλειδιού: %s\n" #: gnutls.c:1499 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Σφάλμα υπογραφής δεδομένων ελέγχου με ιδιωτικό κλειδί: %s\n" #: gnutls.c:1514 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Σφάλμα εγκυρότητας υπογραφής στο πιστοποιητικό: %s\n" #: gnutls.c:1539 msgid "No SSL certificate found to match private key\n" msgstr "" "Δεν βρέθηκε κανένα πιστοποιητικό SSL που να ταιριάζει με το ιδιωτικό κλειδί\n" #: gnutls.c:1551 openssl.c:560 openssl.c:709 #, c-format msgid "Using client certificate '%s'\n" msgstr "Χρήση πιστοποιητικού πελάτη '%s'\n" #: gnutls.c:1558 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "Αποτυχία ορισμού λίστας ανάκλησης πιστοποιητικού: %s\n" #: gnutls.c:1579 gnutls.c:1589 msgid "Failed to allocate memory for certificate\n" msgstr "Αποτυχία κατανομής μνήμης για πιστοποιητικό\n" #: gnutls.c:1625 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" "ΠΡΟΕΙΔΟΠΟΙΗΣΗ: Το GnuTLS επέστρεψε εσφαλμένα πιστοποιητικά εκδότη· η " "επικύρωση μπορεί να αποτύχει!\n" #: gnutls.c:1648 msgid "Got no issuer from PKCS#11\n" msgstr "" #: gnutls.c:1653 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "Ελήφθη επόμενο CA '%s' από το PKCS11\n" #: gnutls.c:1679 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Αποτυχία κατανομής μνήμης για υποστήριξη πιστοποιητικών\n" #: gnutls.c:1702 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Προσθήκη υποστήριξης CA '%s'\n" #: gnutls.c:1724 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1748 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Αποτυχία ορισμού πιστοποιητικού: %s\n" #: gnutls.c:1941 msgid "Server presented no certificate\n" msgstr "Ο διακομιστής δεν παρουσίασε κανένα πιστοποιητικό\n" #: gnutls.c:1949 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" #: gnutls.c:1954 openssl.c:1515 msgid "Server presented different cert on rehandshake\n" msgstr "" #: gnutls.c:1959 openssl.c:1518 msgid "Server presented identical cert on rehandshake\n" msgstr "" #: gnutls.c:1965 msgid "Error initialising X509 cert structure\n" msgstr "Σφάλμα αρχικοποίησης δομής πιστοποιητικού X509\n" #: gnutls.c:1971 msgid "Error importing server's cert\n" msgstr "Σφάλμα εισαγωγής πιστοποιητικού διακομιστή\n" #: gnutls.c:1980 main.c:1794 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:1985 msgid "Error checking server cert status\n" msgstr "Σφάλμα ελέγχου κατάστασης πιστοποιητικού διακομιστή\n" #: gnutls.c:1990 msgid "certificate revoked" msgstr "Το πιστοποιητικό ανακλήθηκε" #: gnutls.c:1992 msgid "signer not found" msgstr "Ο υπογράφων δεν βρέθηκε" #: gnutls.c:1994 msgid "signer not a CA certificate" msgstr "Ο υπογράφων δεν έχει πιστοποιητικό CA" #: gnutls.c:1996 msgid "insecure algorithm" msgstr "Επισφαλής αλγόριθμος" #: gnutls.c:1998 msgid "certificate not yet activated" msgstr "Το πιστοποιητικό δεν έχει ακόμη ενεργοποιηθεί" #: gnutls.c:2000 msgid "certificate expired" msgstr "Το πιστοποιητικό έληξε" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2005 msgid "signature verification failed" msgstr "Αποτυχία επιβεβαίωσης υπογραφής" #: gnutls.c:2054 openssl.c:1399 openssl.c:1551 msgid "certificate does not match hostname" msgstr "Το πιστοποιητικό δεν ταιριάζει με το όνομα του οικοδεσπότη." #: gnutls.c:2059 openssl.c:1398 openssl.c:1557 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Αποτυχία επιβεβαίωσης πιστοποιητικού διακομιστή: %s\n" #: gnutls.c:2126 msgid "Failed to allocate memory for cafile certs\n" msgstr "Αποτυχία κατανομής μνήμης για πιστοποιητικά αρχείου ca\n" #: gnutls.c:2147 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Αποτυχία ανάγνωσης πιστοποιητικών από αρχείο ca: %s\n" #: gnutls.c:2163 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Αποτυχία ανοίγματος αρχείου CA '%s': %s\n" #: gnutls.c:2176 openssl.c:1679 msgid "Loading certificate failed. Aborting.\n" msgstr "Αποτυχία φόρτωσης πιστοποιητικού. Ματαίωση.\n" #: gnutls.c:2237 #, c-format msgid "Failed to set TLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2249 openssl.c:1796 #, c-format msgid "SSL negotiation with %s\n" msgstr "Διαπραγμάτευση SSL με %s\n" #: gnutls.c:2296 openssl.c:1822 msgid "SSL connection cancelled\n" msgstr "Ακύρωση σύνδεσης SSL\n" #: gnutls.c:2303 #, c-format msgid "SSL connection failure: %s\n" msgstr "Αποτυχία σύνδεσης SSL: %s\n" #: gnutls.c:2312 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "GnuTLS μη μοιραία επιστροφή κατά τη διάρκεια χειραψίας: %s\n" #: gnutls.c:2318 openssl.c:1839 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "Σύνδεση με HTTPS στο %s\n" #: gnutls.c:2321 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "Διαπραγμάτευση SSL με %s\n" #: gnutls.c:2483 openssl-pkcs11.c:199 #, c-format msgid "PIN required for %s" msgstr "Απαιτείται PIN για το %s" #: gnutls.c:2487 openssl-pkcs11.c:202 msgid "Wrong PIN" msgstr "Εσφαλμένο PIN" #: gnutls.c:2490 msgid "This is the final try before locking!" msgstr "Αυτή είναι η τελική προσπάθεια πριν το κλείδωμα!" #: gnutls.c:2492 msgid "Only a few tries left before locking!" msgstr "Μόνο λίγες προσπάθειες έμειναν πριν το κλείδωμα!" #: gnutls.c:2497 openssl-pkcs11.c:206 msgid "Enter PIN:" msgstr "Εισαγωγή PIN:" #: gnutls.c:2583 openssl.c:1967 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2592 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:54 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "Η συνάρτηση υπογραφής κάλεσε %d οκτάδες.\n" #: gnutls_tpm.c:61 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Αποτυχία δημιουργίας αντικειμένου κατακερματισμού TPM: %s\n" #: gnutls_tpm.c:68 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Αποτυχία ορισμού τιμής σε αντικείμενο κατακερματισμού TPM: %s\n" #: gnutls_tpm.c:78 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "Αποτυχία υπογραφής κατακερματισμού TPM: %s\n" #: gnutls_tpm.c:100 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "" "Σφάλμα αποκωδικοποίησης κλειδιού TSS μεγάλου δυαδικού αντικειμένου: %s\n" #: gnutls_tpm.c:108 gnutls_tpm.c:119 gnutls_tpm.c:132 msgid "Error in TSS key blob\n" msgstr "Σφάλμα στο κλειδί TSS μεγάλου δυαδικού αντικειμένου\n" #: gnutls_tpm.c:139 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Αποτυχία δημιουργίας περιεχομένου TPM: %s\n" #: gnutls_tpm.c:146 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Αποτυχία σύνδεσης περιεχομένου TPM: %s\n" #: gnutls_tpm.c:154 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Αποτυχία φόρτωσης κλειδιού SRK TPM: %s\n" #: gnutls_tpm.c:161 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Αποτυχία φόρτωσης αντικειμένου πολιτικής SRK TPM: %s\n" #: gnutls_tpm.c:182 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Αποτυχία ορισμού PIN TPM: %s\n" #: gnutls_tpm.c:198 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Αποτυχία φόρτωσης κλειδιού TPM μεγάλου δυαδικού αντικειμένου: %s\n" #: gnutls_tpm.c:205 msgid "Enter TPM SRK PIN:" msgstr "Εισαγωγή PIN SRK TPM:" #: gnutls_tpm.c:226 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Αποτυχία δημιουργίας αντικειμένου πολιτικής κλειδιού: %s\n" #: gnutls_tpm.c:234 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Αποτυχία απόδοσης πολιτικής στο κλειδί: %s\n" #: gnutls_tpm.c:240 msgid "Enter TPM key PIN:" msgstr "Εισαγωγή PIN κλειδιού TPM:" #: gnutls_tpm.c:251 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Αποτυχία ορισμού PIN κλειδιού: %s\n" #: gnutls_tpm2.c:92 gnutls_tpm2_esys.c:474 gnutls_tpm2_ibm.c:419 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:198 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:208 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:217 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:225 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:231 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:249 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:270 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:275 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:384 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2_esys.c:173 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:189 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:190 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:191 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:192 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:196 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:201 gnutls_tpm2_ibm.c:262 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:209 gnutls_tpm2_esys.c:303 gnutls_tpm2_esys.c:374 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:221 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:226 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:245 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:250 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:258 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:261 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:274 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:295 gnutls_tpm2_ibm.c:278 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:309 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:317 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:323 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:333 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:363 gnutls_tpm2_ibm.c:363 gnutls_tpm2_ibm.c:450 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:395 #, c-format msgid "TPM2 RSA sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:414 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:420 gnutls_tpm2_esys.c:500 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:464 gnutls_tpm2_ibm.c:405 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:494 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:532 gnutls_tpm2_ibm.c:485 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:546 gnutls_tpm2_ibm.c:502 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:555 gnutls_tpm2_ibm.c:512 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:569 gnutls_tpm2_ibm.c:523 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:54 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:226 #, c-format msgid "%s\n" msgstr "" #: gpst.c:229 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:417 #, c-format msgid "Unknown ESP %s algorithm: %s" msgstr "" #: gpst.c:477 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: gpst.c:483 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:487 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:498 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:551 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:560 oncp.c:835 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: gpst.c:627 msgid "ESP disabled" msgstr "" #: gpst.c:629 msgid "No ESP keys received" msgstr "" #: gpst.c:631 msgid "ESP support not available in this build" msgstr "" #: gpst.c:635 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:680 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:702 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:711 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:719 #, c-format msgid "Got inappropriate HTTP GET-tunnel response: %.*s\n" msgstr "" #: gpst.c:861 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" "VPN connectivity may be disabled or limited without HIP report submission.\n" "You need to provide a --csd-wrapper argument with the HIP report submission " "script.\n" msgstr "" #: gpst.c:871 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:900 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:905 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:911 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:913 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:942 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:966 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:972 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:999 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1015 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1051 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1072 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1082 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1086 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1092 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: gpst.c:1101 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1109 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1157 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1162 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1182 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1202 #, c-format msgid "Sending data packet of %d bytes\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1165 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "" #: http.c:319 msgid "No memory for allocating cookies\n" msgstr "Χωρίς μνήμη για κατανομή μπισκότων\n" #: http.c:394 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Αποτυχία ανάλυσης απάντησης HTTP '%s'\n" #: http.c:400 #, c-format msgid "Got HTTP response: %s\n" msgstr "Λήψη απάντησης HTTP: %s\n" #: http.c:408 msgid "Error processing HTTP response\n" msgstr "Σφάλμα επεξεργασίας απόκρισης HTTP\n" #: http.c:415 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Παράβλεψη άγνωστης γραμμής απάντησης HTTP '%s'\n" #: http.c:435 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Προσφορά άκυρου μπισκότου: %s\n" #: http.c:454 msgid "SSL certificate authentication failed\n" msgstr "Αποτυχία επικύρωσης πιστοποιητικού SSL\n" #: http.c:485 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Το σώμα της απόκρισης έχει αρνητικό μέγεθος (%d)\n" #: http.c:496 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Άγνωστη κωδικοποίηση μεταφοράς: %s\n" #. Now the body, if there is one #: http.c:515 #, c-format msgid "HTTP body %s (%d)\n" msgstr "Σώμα HTTP %s (%d)\n" #: http.c:529 http.c:556 msgid "Error reading HTTP response body\n" msgstr "Σφάλμα κατά την ανάγνωση σώματος απάντησης HTTP\n" #: http.c:542 msgid "Error fetching chunk header\n" msgstr "Σφάλμα κατά την προσκόμιση κεφαλίδας τμήματος\n" #: http.c:566 msgid "Error fetching HTTP response body\n" msgstr "Σφάλμα κατά την προσκόμιση σώματος απάντησης HTTP\n" #: http.c:569 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "Σφάλμα στην τμηματική αποκωδικοποίηση. Αναμενόταν '', ελήφθη '%s'" #: http.c:581 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Αδύνατη η λήψη σώματος HTTP 1.0 χωρίς κλείσιμο της σύνδεσης\n" #: http.c:708 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Αποτυχία ανάλυσης ανακατεύθυνσης URL '%s': %s\n" #: http.c:732 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Αδύνατη η παρακολούθηση ανακατεύθυνσης σε μη https URL '%s'\n" #: http.c:760 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Αποτυχία κατανομής νέας διαδρομής για σχετική ανακατεύθυνση: %s\n" #: http.c:973 oncp.c:591 #, c-format msgid "Unexpected %d result from server\n" msgstr "Αναπάντεχο αποτέλεσμα %d από διακομιστή\n" #: http.c:1021 msgid "request granted" msgstr "Δόθηκε αίτημα" #: http.c:1022 msgid "general failure" msgstr "Γενική αποτυχία" #: http.c:1023 msgid "connection not allowed by ruleset" msgstr "Η σύνδεση δεν επιτρέπεται από το σύνολο των κανόνων." #: http.c:1024 msgid "network unreachable" msgstr "Απροσπέλαστο δίκτυο" #: http.c:1025 msgid "host unreachable" msgstr "Απροσπέλαστος οικοδεσπότης" #: http.c:1026 msgid "connection refused by destination host" msgstr "Άρνηση σύνδεσης από τον οικοδεσπότη προορισμού" #: http.c:1027 msgid "TTL expired" msgstr "Έληξε το TTL" #: http.c:1028 msgid "command not supported / protocol error" msgstr "Εντολή που δεν υποστηρίζεται / σφάλμα πρωτοκόλλου" #: http.c:1029 msgid "address type not supported" msgstr "Δεν υποστηρίζεται αυτός ο τύπος διεύθυνσης" #: http.c:1039 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1047 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1062 http.c:1118 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" "Σφάλμα κατά την εγγραφή αιτήματος πιστοποίησης σε μεσολαβητή SOCKS: %s\n" #: http.c:1070 http.c:1125 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" "Σφάλμα κατά την ανάγνωση απάντησης πιστοποίησης από τον μεσολαβητή SOCKS: " "%s\n" #: http.c:1077 http.c:1131 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Αναπάντεχη απάντηση πιστοποίησης από τον μεσολαβητή SOCKS: %02x %02x\n" #: http.c:1083 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1087 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1143 http.c:1150 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1156 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1163 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1170 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1176 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Αίτημα σύνδεσης μεσολαβητή SOCKS στο %s:%d\n" #: http.c:1191 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Σφάλμα κατά την εγγραφή αιτήματος σύνδεσης σε μεσολαβητή SOCKS: %s\n" #: http.c:1199 http.c:1241 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "" "Σφάλμα κατά την ανάγνωση απάντησης σύνδεσης από τον μεσολαβητή SOCKS: %s\n" #: http.c:1205 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Αναπάντεχη απάντηση σύνδεσης από τον μεσολαβητή SOCKS: %02x %02x...\n" #: http.c:1213 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "Σφάλμα μεσολαβητή SOCKS %02x: %s\n" #: http.c:1217 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "Σφάλμα μεσολαβητή SOCKS %02x\n" #: http.c:1234 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Αναπάντεχος τύπος διεύθυνσης %02x σε απάντηση σύνδεσης SOCKS\n" #: http.c:1257 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Αίτημα σύνδεσης μεσολαβητή HTTP στο %s:%d\n" #: http.c:1292 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Αποτυχία αιτήματος αποστολής μεσολαβητή: %s\n" #: http.c:1315 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1334 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Άγνωστος τύπος μεσολαβητή '%s'\n" #: http.c:1383 msgid "Only http or socks(5) proxies supported\n" msgstr "Υποστηρίζονται μόνο μεσολαβητές http ή socks(5)\n" #: library.c:112 msgid "Cisco AnyConnect or openconnect" msgstr "" #: library.c:113 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "" #: library.c:129 msgid "Juniper Network Connect" msgstr "" #: library.c:130 msgid "Compatible with Juniper Network Connect / Pulse Secure SSL VPN" msgstr "" #: library.c:148 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:149 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:211 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:233 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Δόμηση στη βιβλιοθήκη SSL χωρίς υποστήριξη DTLS Cisco\n" #: library.c:656 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Αποτυχία ανάλυσης διακομιστή URL '%s'.\n" #: library.c:662 msgid "Only https:// permitted for server URL\n" msgstr "Μόνο https:// επιτρέπονται για διακομιστή URL\n" #: library.c:1056 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "" #: library.c:1085 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" #: library.c:1146 msgid "No form handler; cannot authenticate.\n" msgstr "Χωρίς χειριστή μορφής· αδύνατη η πιστοποίηση.\n" #: main.c:340 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:353 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:388 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:401 #, c-format msgid "fgetws() failed: %s\n" msgstr "" #: main.c:416 main.c:429 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:423 main.c:689 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Αποτυχία κατανομής για συμβολοσειρά από την τυπική είσοδο\n" #: main.c:584 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:593 #, c-format msgid "Using OpenSSL. Features present:" msgstr "Χρήση του OpenSSL. Τα γνωρίσματα παρουσιάζουν:" #: main.c:595 #, c-format msgid "Using GnuTLS. Features present:" msgstr "Χρήση του GnuTLS. Τα γνωρίσματα παρουσιάζουν:" #: main.c:608 msgid "OpenSSL ENGINE not present" msgstr "Το OpenSSL ENGINE δεν είναι παρόν" #: main.c:647 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" #: main.c:657 #, c-format msgid "Supported protocols:" msgstr "" #: main.c:659 main.c:675 msgid " (default)" msgstr "" #: main.c:672 msgid "Set VPN protocol" msgstr "" #: main.c:713 msgid "fgets (stdin)" msgstr "fgets (τυπική είσοδος)" #: main.c:754 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:760 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:780 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "" #: main.c:793 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Χρήση: openconnect [επιλογές] \n" #: main.c:794 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" #: main.c:796 msgid "Read options from config file" msgstr "Ανάγνωση επιλογών από το αρχείο ρυθμίσεων" #: main.c:797 msgid "Report version number" msgstr "Αναφορά αριθμού έκδοσης" #: main.c:798 msgid "Display help text" msgstr "Εμφάνιση κειμένου βοήθειας" #: main.c:802 msgid "Authentication" msgstr "" #: main.c:803 msgid "Set login username" msgstr "Ορισμός ονόματος χρήστη της σύνδεσης" #: main.c:804 msgid "Disable password/SecurID authentication" msgstr "Απενεργοποίηση επικύρωσης κωδικού πρόσβασης/SecurID" #: main.c:805 msgid "Do not expect user input; exit if it is required" msgstr "Να μην αναμένεται είσοδος χρήστη· έξοδος αν απαιτείται" #: main.c:806 msgid "Read password from standard input" msgstr "Ανάγνωση κωδικού πρόσβασης από την τυπική είσοδο" #: main.c:807 msgid "Choose authentication login selection" msgstr "Επιλέξτε επικύρωση επιλογής σύνδεσης" #: main.c:808 msgid "Provide authentication form responses" msgstr "" #: main.c:809 msgid "Use SSL client certificate CERT" msgstr "Χρήση του πιστοποιητικού πελάτη SSL CERT" #: main.c:810 msgid "Use SSL private key file KEY" msgstr "Χρήση αρχείου ιδιωτικού κλειδιού SSL KEY" #: main.c:811 msgid "Warn when certificate lifetime < DAYS" msgstr "Προειδοποίηση όταν ο χρόνος ζωής του πιστοποιητικού < ΗΜΕΡΕΣ" #: main.c:812 msgid "Set login usergroup" msgstr "Ορισμός σύνδεσης ομάδας χρηστών" #: main.c:813 msgid "Set key passphrase or TPM SRK PIN" msgstr "Ορισμός συνθηματικού κλειδιού ή TPM SRK PIN" #: main.c:814 msgid "Key passphrase is fsid of file system" msgstr "Το συνθηματικό του κλειδιού είναι fsid του συστήματος αρχείων" #: main.c:815 msgid "Software token type: rsa, totp or hotp" msgstr "Τύποι διακριτικού λογισμικού: rsa, totp ή hotp" #: main.c:816 msgid "Software token secret" msgstr "Μυστικό διακριτικό λογισμικού" #: main.c:818 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" "(ΣΗΜΕΙΩΣΗ: απενεργοποίηση του libstoken (RSA SecurID) σε αυτή τη δόμηση)" #: main.c:821 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:824 msgid "Server validation" msgstr "" #: main.c:825 msgid "Server's certificate SHA1 fingerprint" msgstr "Δακτυλικό αποτύπωμα πιστοποιητικού SHA1 του διακομιστή" #: main.c:826 msgid "Do not require server SSL cert to be valid" msgstr "Να μην απαιτείται πιστοποιητικό SSL διακομιστή για να είναι έγκυρο" #: main.c:827 msgid "Disable default system certificate authorities" msgstr "" #: main.c:828 msgid "Cert file for server verification" msgstr "Αρχείο πιστοποίησης για επιβεβαίωση διακομιστή" #: main.c:830 msgid "Internet connectivity" msgstr "" #: main.c:831 msgid "Set proxy server" msgstr "Ορισμός διακομιστή μεσολάβησης" #: main.c:832 msgid "Set proxy authentication methods" msgstr "" #: main.c:833 msgid "Disable proxy" msgstr "Απενεργοποίηση μεσολαβητή" #: main.c:834 msgid "Use libproxy to automatically configure proxy" msgstr "Χρήση του libproxy για αυτόματη ρύθμιση του μεσολαβητή" #: main.c:836 msgid "(NOTE: libproxy disabled in this build)" msgstr "(ΣΗΜΕΙΩΣΗ: απενεργοποιήθηκε το libproxy σε αυτή τη δόμηση)" #: main.c:838 msgid "Connection retry timeout in seconds" msgstr "Όριο χρόνου επαναπροσπάθειας σύνδεσης σε δευτερόλεπτα" #: main.c:839 msgid "Use IP when connecting to HOST" msgstr "" #: main.c:840 msgid "copy TOS / TCLASS when using DTLS" msgstr "" #: main.c:841 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:843 msgid "Authentication (two-phase)" msgstr "" #: main.c:844 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:845 msgid "Read cookie from standard input" msgstr "Ανάγνωση μπισκότου από την τυπική είσοδο" #: main.c:846 msgid "Authenticate only and print login info" msgstr "Πιστοποίηση μόνο και εκτύπωση πληροφοριών σύνδεσης" #: main.c:847 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:848 msgid "Print cookie before connecting" msgstr "" #: main.c:851 msgid "Process control" msgstr "" #: main.c:852 msgid "Continue in background after startup" msgstr "Συνέχιση στο παρασκήνιο μετά την έναρξη" #: main.c:853 msgid "Write the daemon's PID to this file" msgstr "Εγγραφή του PID του δαίμονα σε αυτό το αρχείο" #: main.c:854 msgid "Drop privileges after connecting" msgstr "Απόρριψη προνομίων μετά τη σύνδεση" #: main.c:857 msgid "Logging (two-phase)" msgstr "" #: main.c:859 msgid "Use syslog for progress messages" msgstr "Χρήση του syslog για μηνύματα προόδου" #: main.c:861 msgid "More output" msgstr "Περισσότερη έξοδος" #: main.c:862 msgid "Less output" msgstr "Λιγότερη έξοδος" #: main.c:863 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "Αποτύπωση κυκλοφορίας πιστοποίησης HTTP (υπονοεί --verbose)" #: main.c:864 msgid "Prepend timestamp to progress messages" msgstr "Πρόταξη χρονικής σήμανσης σε μηνύματα προόδου" #: main.c:866 msgid "VPN configuration script" msgstr "" #: main.c:867 msgid "Use IFNAME for tunnel interface" msgstr "Χρήση IFNAME για διεπαφή δρομολόγησης" #: main.c:868 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" "Γραμμή εντολών κελύφους για χρήση ενός συμβατού με vpnc σεναρίου ρυθμίσεων" #: main.c:869 msgid "default" msgstr "προεπιλογή" #: main.c:871 msgid "Pass traffic to 'script' program, not tun" msgstr "Πέρασμα κυκλοφορίας σε πρόγραμμα 'σεναρίου', όχι tun" #: main.c:874 msgid "Tunnel control" msgstr "" #: main.c:875 msgid "Do not ask for IPv6 connectivity" msgstr "Μην ζητάτε συνδεσιμότητα IPv6" #: main.c:876 msgid "XML config file" msgstr "Αρχείο ρυθμίσεων XML" #: main.c:877 msgid "Request MTU from server (legacy servers only)" msgstr "" #: main.c:878 msgid "Indicate path MTU to/from server" msgstr "Υπόδειξη διαδρομής MTU προς/από διακομιστή" #: main.c:879 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:880 msgid "Disable all compression" msgstr "" #: main.c:881 msgid "Set minimum Dead Peer Detection interval" msgstr "Ορισμός ελάχιστου διαστήματος αναγνώρισης νεκρού ομότιμου" #: main.c:882 msgid "Require perfect forward secrecy" msgstr "Απαιτείται τέλεια προώθηση μυστικότητας" #: main.c:883 msgid "Disable DTLS and ESP" msgstr "" #: main.c:884 msgid "OpenSSL ciphers to support for DTLS" msgstr "Το OpenSSL κρυπτογραφεί για υποστήριξη του DTLS" #: main.c:885 msgid "Set packet queue limit to LEN pkts" msgstr "Ορισμός ορίου ουράς πακέτου σε LEN πακέτα" #: main.c:887 msgid "Local system information" msgstr "" #: main.c:888 msgid "HTTP header User-Agent: field" msgstr "Κεφαλίδα HTTP μεσολαβητή χρήστη: πεδίο" #: main.c:889 msgid "Local hostname to advertise to server" msgstr "" #: main.c:890 msgid "OS type (linux,linux-64,win,...) to report" msgstr "Τύπος λειτουργικού (Λίνουξ, λίνουξ-64, win,...) για αναφορά" #: main.c:891 msgid "reported version string during authentication" msgstr "" #: main.c:892 msgid "default:" msgstr "" #: main.c:895 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:896 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:897 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:900 msgid "Server bugs" msgstr "" #: main.c:901 msgid "Disable HTTP connection re-use" msgstr "Απενεργοποίηση επαναχρησιμοποίησης σύνδεσης HTTP" #: main.c:902 msgid "Do not attempt XML POST authentication" msgstr "Να μην προσπαθείτε πιστοποίηση XML POST" #: main.c:924 #, c-format msgid "Failed to allocate string\n" msgstr "Αποτυχία κατανομής συμβολοσειράς\n" #: main.c:997 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Αποτυχία λήψης γραμμής από το αρχείο ρυθμίσεων: %s\n" #: main.c:1037 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Άγνωστη επιλογή στη γραμμή %d: '%s'\n" #: main.c:1047 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Η επιλογή '%s' δεν παίρνει όρισμα στη γραμμή %d\n" #: main.c:1051 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Η επιλογή '%s' απαιτεί όρισμα στη γραμμή %d\n" #: main.c:1076 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "" #: main.c:1086 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "" #: main.c:1130 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "" #: main.c:1140 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:1147 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:1157 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Αποτυχία κατανομής δομής vpninfo\n" #: main.c:1215 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Αδύνατη η χρήση της επιλογής 'config' μέσα στο αρχείο ρυθμίσεων\n" #: main.c:1223 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Αδύνατο το άνοιγμα του αρχείου ρυθμίσεων '%s': %s\n" #: main.c:1239 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1260 #, c-format msgid "Missing colon in resolve option\n" msgstr "" #: main.c:1265 #, c-format msgid "Failed to allocate memory\n" msgstr "" #: main.c:1349 main.c:1358 #, c-format msgid "MTU %d too small\n" msgstr "Το %d MTU είναι υπερβολικά μικρό\n" #: main.c:1388 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Απενεργοποίηση όλων των επαναχρησιμοποιήσεων σύνδεσης HTTP λόγω της επιλογής " "--no-http-keepalive.\n" "Αν αυτό βοηθά, παρακαλούμε αναφερθείτε στο .\n" #: main.c:1394 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" #: main.c:1411 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Δεν επιτρέπεται μήκος ουράς μηδέν· χρησιμοποιείται 1\n" #: main.c:1425 #, c-format msgid "OpenConnect version %s\n" msgstr "Έκδοση OpenConnect %s\n" #: main.c:1463 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Άκυρη κατάσταση διακριτικού λογισμικού \"%s\"\n" #: main.c:1473 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "Άκυρη ταυτότητα λειτουργικού \"%s\"\n" #: main.c:1506 #, c-format msgid "Too many arguments on command line\n" msgstr "Υπερβολικά ορίσματα στη γραμμή εντολών\n" #: main.c:1509 #, c-format msgid "No server specified\n" msgstr "Δεν ορίστηκε διακομιστής\n" #: main.c:1525 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "Αυτή η έκδοση του openconnect δομήθηκε χωρίς υποστήριξη libproxy\n" #: main.c:1555 #, c-format msgid "Error opening cmd pipe\n" msgstr "Σφάλμα κατά το άνοιγμα διοχέτευσης cmd\n" #: main.c:1588 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "Αποτυχία λήψης μπισκότου WebVPN\n" #: main.c:1609 #, c-format msgid "Creating SSL connection failed\n" msgstr "Αποτυχία δημιουργίας σύνδεσης SSL\n" #: main.c:1625 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:1633 #, c-format msgid "Connected as %s%s%s, using SSL%s%s, with %s%s%s %s\n" msgstr "" #: main.c:1639 msgid "disabled" msgstr "" #: main.c:1639 msgid "in progress" msgstr "" #: main.c:1643 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "Δεν παρέχεται όρισμα --script· το DNS και η δρομολόγηση δεν είναι " "ρυθμισμένα\n" #: main.c:1645 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Δείτε http://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:1658 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Αποτυχία ανοίγματος του '%s' για εγγραφή: %s\n" #: main.c:1670 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Συνέχιση στο παρασκήνιο, ταυτότητα διεργασίας (pid) %d.\n" #: main.c:1687 msgid "User requested reconnect\n" msgstr "" #: main.c:1695 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "" #: main.c:1699 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:1703 msgid "User cancelled (SIGINT/SIGTERM); exiting.\n" msgstr "" #: main.c:1707 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "" #: main.c:1711 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:1730 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Αποτυχία ανοίγματος του %s για εγγραφή: %s\n" #: main.c:1738 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Αποτυχία εγγραφής ρύθμισης στο %s: %s\n" #: main.c:1797 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "Το πιστοποιητικό SSL του διακομιστή δεν συμφωνεί: %s\n" #: main.c:1816 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Αποτυχία επιβεβαίωσης πιστοποιητικού από τον διακομιστή VPN \"%s\".\n" "Αιτία: %s\n" #: main.c:1819 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" #: main.c:1820 #, c-format msgid " --servercert %s\n" msgstr "" #: main.c:1825 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Εισαγωγή '%s' για αποδοχή, '%s' για ματαίωση, ο,τιδήποτε άλλο για προβολή: " #: main.c:1826 main.c:1844 msgid "no" msgstr "όχι" #: main.c:1826 main.c:1832 msgid "yes" msgstr "ναι" #: main.c:1853 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:1887 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Η επιλογή πιστοποίησης \"%s\" ταιριάζει με πολλαπλές επιλογές\n" #: main.c:1890 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Η επιλογή πιστοποίησης \"%s\" δεν είναι διαθέσιμη\n" #: main.c:1911 msgid "User input required in non-interactive mode\n" msgstr "Η απαιτούμενη είσοδος χρήστη είναι σε μη διαδραστική κατάσταση\n" #: main.c:2149 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:2157 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:2203 main.c:2224 #, c-format msgid "Soft token string is invalid\n" msgstr "Η συμβολοσειρά χαλαρού διακριτικού είναι άκυρη\n" #: main.c:2206 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Αδύνατο το άνοιγμα του αρχείου ~/.stokenrc\n" #: main.c:2209 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "Το OpenConnect δεν δομήθηκε με υποστήριξη libstoken\n" #: main.c:2212 #, c-format msgid "General failure in libstoken\n" msgstr "Γενική αποτυχία στο libstoken\n" #: main.c:2227 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "Το OpenConnect δεν δομήθηκε με υποστήριξη liboath\n" #: main.c:2230 #, c-format msgid "General failure in liboath\n" msgstr "Γενική αποτυχία στο libstoken\n" #: main.c:2241 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2244 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2247 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: mainloop.c:127 #, c-format msgid "Set up tun script failed\n" msgstr "Αποτυχία ρύθμισης δέσμης ενεργειών tun\n" #: mainloop.c:134 #, c-format msgid "Set up tun device failed\n" msgstr "Αποτυχία εγκατάστασης συσκευής tun\n" #: mainloop.c:265 msgid "Caller paused the connection\n" msgstr "Ο καλών διέκοψε τη σύνδεση\n" #: mainloop.c:273 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Χωρίς εργασία· ύπνος για %d ms...\n" #: mainloop.c:294 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:978 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:982 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "Εντάξει για τη δημιουργία ΑΡΧΙΚΟΥ κώδικα διακριτικού\n" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "Εντάξει για τη δημιουργία ΕΠΟΜΕΝΟΥ κώδικα διακριτικού\n" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" "Ο διακομιστής απορρίπτει το χαλαρό διακριτικό· αλλαγή στη χειροκίνητη " "καταχώριση\n" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "Δημιουργείται κώδικας διακριτικού TOTP OATH\n" #: oath.c:565 msgid "Generating OATH HOTP token code\n" msgstr "Δημιουργείται κώδικας διακριτικού OATH HOTP\n" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:160 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:166 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:175 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:186 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:201 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:210 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:219 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:232 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:254 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:274 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:297 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:316 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:327 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:335 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:342 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:350 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:358 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:366 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:374 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:383 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:395 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:473 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:490 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:496 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:512 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:577 oncp.c:609 oncp.c:747 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:618 oncp.c:783 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:631 oncp.c:666 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:636 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:643 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:670 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:683 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:692 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "" #: oncp.c:698 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "" #: oncp.c:705 msgid "Failed to read continuation record length\n" msgstr "" #: oncp.c:711 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "" #: oncp.c:720 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "" #: oncp.c:726 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "" #: oncp.c:767 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:776 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:829 msgid "new incoming" msgstr "" #: oncp.c:830 msgid "new outgoing" msgstr "" #: oncp.c:855 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:864 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:868 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:874 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:969 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:972 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:991 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1053 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1058 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1073 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1134 msgid "Sent ESP enable control packet\n" msgstr "" #: oncp.c:1268 msgid "Logout successful.\n" msgstr "" #: openconnect-internal.h:1119 openconnect-internal.h:1127 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "Αποτυχία αρχικοποίησης της συνεδρίας DTLSv1\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "" #: openssl-dtls.c:365 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Αποτυχία αρχικοποίησης του DTLSv1 CTX\n" #: openssl-dtls.c:378 msgid "Set DTLS CTX version failed\n" msgstr "" #: openssl-dtls.c:395 msgid "Failed to generate DTLS key\n" msgstr "" #: openssl-dtls.c:413 msgid "Set DTLS cipher list failed\n" msgstr "Αποτυχία ορισμού λίστας κρυπτογράφησης DTLS\n" #: openssl-dtls.c:439 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:460 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "Αποτυχία του SSL_set_session() με την παλιά έκδοση πρωτοκόλλου 0x%x\n" "Χρησιμοποιείτε έκδοση του OpenSSL παλιότερη από 0.9.8m;\n" "Δείτε http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Χρησιμοποιήστε την επιλογή γραμμής εντολών --no-dtls για την αποφυγή αυτού " "του μηνύματος\n" #: openssl-dtls.c:493 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:566 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "Επίτευξη σύνδεσης DTLS (με χρήση του OpenSSL). Ciphersuite %s.\n" #: openssl-dtls.c:603 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" "Το OpenSSL σας είναι παλιότερο από αυτό στο οποίο δομείτε, έτσι το DTLS " "μπορεί να αποτύχει!" #: openssl-dtls.c:654 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Αυτό συμβαίνει προφανώς επειδή το OpenSSL σας έχει αλλοιωθεί\n" "Δείτε http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: openssl-dtls.c:661 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "Αποτυχία χειραψίας DTLS: %d\n" #: openssl-esp.c:87 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:101 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:157 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:202 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:210 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:241 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:43 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:49 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "" #: openssl-pkcs11.c:269 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:272 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:275 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:279 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:286 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:300 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:306 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:342 openssl-pkcs11.c:565 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:349 openssl-pkcs11.c:575 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:383 openssl-pkcs11.c:617 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:393 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "" #: openssl-pkcs11.c:401 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:412 openssl.c:713 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl-pkcs11.c:458 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:464 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:497 msgid "Certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:503 openssl-pkcs11.c:526 msgid "Certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:506 msgid "Checking EC key matches cert\n" msgstr "" #: openssl-pkcs11.c:510 msgid "Failed to allocate signature buffer\n" msgstr "" #: openssl-pkcs11.c:520 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" #: openssl-pkcs11.c:638 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "" #: openssl-pkcs11.c:649 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:678 msgid "Add key from PKCS#11 failed\n" msgstr "" #: openssl-pkcs11.c:710 openssl-pkcs11.c:716 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:147 msgid "Failed to write to SSL socket\n" msgstr "Αποτυχία εγγραφής στην υποδοχή SSL\n" #: openssl.c:197 openssl.c:263 msgid "Failed to read from SSL socket\n" msgstr "Αποτυχία ανάγνωσης από την υποδοχή SSL\n" #: openssl.c:292 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" "Σφάλμα ανάγνωσης SSL %d (ο διακομιστής προφανώς έκλεισε τη σύνδεση)· " "επανασυνδέεται.\n" #: openssl.c:317 #, c-format msgid "SSL_write failed: %d\n" msgstr "Αποτυχία εγγραφής_SSL: %d\n" #: openssl.c:389 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:465 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "Ο κωδικός πρόσβασης PEM είναι υπερβολικά μεγάλος (%d >= %d)\n" #: openssl.c:498 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Πρόσθετο πιστοποιητικό από το %s: '%s'\n" #: openssl.c:548 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Αποτυχία ανάλυσης PKCS#12 (δείτε παραπάνω σφάλματα)\n" #: openssl.c:563 msgid "PKCS#12 contained no certificate!\n" msgstr "Το PKCS#12 δεν περιείχε κανένα πιστοποιητικό!\n" #: openssl.c:572 msgid "PKCS#12 contained no private key!\n" msgstr "Το PKCS#12 δεν περιείχε κανένα ιδιωτικό κλειδί!\n" #: openssl.c:577 msgid "PKCS#12" msgstr "" #: openssl.c:600 msgid "Can't load TPM engine.\n" msgstr "Αδύνατη η φόρτωση μηχανής TPM.\n" #: openssl.c:606 msgid "Failed to init TPM engine\n" msgstr "Αποτυχία αρχικοποίησης μηχανής TPM\n" #: openssl.c:616 msgid "Failed to set TPM SRK password\n" msgstr "Αποτυχία ορισμού κωδικού πρόσβασης TPM SRK\n" #: openssl.c:630 msgid "Failed to load TPM private key\n" msgstr "Αποτυχία φόρτωσης ιδιωτικού κλειδιού TPM\n" #: openssl.c:636 msgid "Add key from TPM failed\n" msgstr "Αποτυχία προσθήκης κλειδιού από το TPM\n" #: openssl.c:687 openssl.c:835 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Αποτυχία ανοίγματος αρχείου πιστοποιητικού %s: %s\n" #: openssl.c:697 msgid "Loading certificate failed\n" msgstr "Αποτυχία φόρτωσης πιστοποιητικού\n" #: openssl.c:735 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:748 msgid "PEM file" msgstr "" #: openssl.c:777 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Αποτυχία δημιουργίας BIO για το στοιχείο αποθήκης κλειδιών '%s'\n" #: openssl.c:802 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Η φόρτωση ιδιωτικού κλειδιού απέτυχε (εσφαλμένο συνθηματικό;)\n" #: openssl.c:808 msgid "Loading private key failed (see above errors)\n" msgstr "Αποτυχία φόρτωσης ιδιωτικού κλειδιού (δείτε τα παραπάνω σφάλματα)\n" #: openssl.c:858 msgid "Failed to load X509 certificate from keystore\n" msgstr "Αποτυχία φόρτωσης πιστοποιητικού X509 από την αποθήκη κλειδιών\n" #: openssl.c:864 msgid "Failed to use X509 certificate from keystore\n" msgstr "Αποτυχία χρησιμοποίησης πιστοποιητικού X509 από την αποθήκη κλειδιών\n" #: openssl.c:896 msgid "Failed to use private key from keystore\n" msgstr "Αποτυχία χρήσης ιδιωτικού κλειδιού από την αποθήκη κλειδιών\n" #: openssl.c:912 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Αποτυχία ανοίγματος αρχείου ιδιωτικού κλειδιού %s: %s\n" #: openssl.c:936 openssl.c:951 openssl.c:972 openssl.c:1038 msgid "Loading private key failed\n" msgstr "" #: openssl.c:1032 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1049 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Αποτυχία ταυτοποίησης τύπου ιδιωτικού κλειδιού στο '%s'\n" #: openssl.c:1203 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Το εναλλακτικό όνομα του DNS '%s' συμφώνησε\n" #: openssl.c:1210 #, c-format msgid "No match for altname '%s'\n" msgstr "Χωρίς συμφωνία για το εναλλακτικό όνομα '%s'\n" #: openssl.c:1224 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "Το πιστοποιητικό έχει εναλλακτικό όνομα GEN_IPADD με πλαστό μήκος %d\n" #: openssl.c:1235 openssl.c:1381 #, c-format msgid "Matched %s address '%s'\n" msgstr "Συμφωνία με %s διεύθυνση '%s'\n" #: openssl.c:1242 #, c-format msgid "No match for %s address '%s'\n" msgstr "Χωρίς συμφωνία για τη διεύθυνση %s '%s'\n" #: openssl.c:1284 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "Το URI '%s' έχει μη κενή διαδρομή· παράβλεψη\n" #: openssl.c:1289 #, c-format msgid "Matched URI '%s'\n" msgstr "Συμφωνία με URI '%s'\n" #: openssl.c:1300 #, c-format msgid "No match for URI '%s'\n" msgstr "Χωρίς συμφωνία για το URI '%s'\n" #: openssl.c:1315 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" "Κανένα εναλλακτικό όνομα στο πιστοποιητικό ομότιμου δεν ταίριαξε με το '%s'\n" #: openssl.c:1323 msgid "No subject name in peer cert!\n" msgstr "Χωρίς όνομα θέματος στο πιστοποιητικό ομότιμου!\n" #: openssl.c:1343 msgid "Failed to parse subject name in peer cert\n" msgstr "Αποτυχία ανάλυσης ονόματος θέματος στο πιστοποιητικό ομότιμου\n" #: openssl.c:1350 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Ασυμφωνία θέματος πιστοποιητικού ομότιμου ('%s' != '%s')\n" #: openssl.c:1355 openssl.c:1389 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Συμφωνία ονόματος θέματος πιστοποιητικού ομότιμου '%s'\n" #: openssl.c:1451 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Πρόσθετο πιστοποιητικό από το cafile: '%s'\n" #: openssl.c:1589 msgid "Error in client cert notAfter field\n" msgstr "Σφάλμα στο πεδίο πιστοποιητικού πελάτη notAfter\n" #: openssl.c:1602 msgid "" msgstr "<σφάλμα>" #: openssl.c:1655 msgid "Create TLSv1 CTX failed\n" msgstr "" #: openssl.c:1674 msgid "SSL certificate and key do not match\n" msgstr "" #: openssl.c:1719 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Αποτυχία ανάγνωσης πιστοποιητικών από το αρχείο CA '%s'\n" #: openssl.c:1752 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Αποτυχία ανοίγματος αρχείου CA '%s'\n" #: openssl.c:1812 msgid "SSL connection failure\n" msgstr "Αποτυχία σύνδεσης SSL\n" #: openssl.c:1973 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:130 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Απόρριψη εσφαλμένης διαίρεσης περιλαμβανομένου του: \"%s\"\n" #: script.c:134 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Απόρριψη εσφαλμένης διαίρεσης αποκλειομένου του: \"%s\"\n" #: script.c:507 script.c:555 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Αποτυχία παραγωγής σεναρίου '%s' για το %s: %s\n" #: script.c:562 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "Το σενάριο '%s' εξήλθε ανώμαλα (%x)\n" #: script.c:570 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Το σενάριο '%s' επέστρεψε σφάλμα %d\n" #: ssl.c:108 msgid "Socket connect cancelled\n" msgstr "Ακύρωση σύνδεσης υποδοχής\n" #: ssl.c:217 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "" #: ssl.c:221 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "" #: ssl.c:289 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Μεσολαβητής από libproxy: %s://%s:%d/\n" #: ssl.c:317 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "Αποτυχία getaddrinfo για οικοδεσπότη '%s': %s\n" #: ssl.c:326 ssl.c:451 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:341 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Προσπάθεια σύνδεσης στον μεσολαβητή %s%s%s:%s\n" #: ssl.c:342 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Προσπάθεια σύνδεσης στον μεσολαβητή %s%s%s:%s\n" #: ssl.c:362 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "" #: ssl.c:374 msgid "Failed to allocate sockaddr storage\n" msgstr "Αποτυχία κατανομής αποθήκευσης sockaddr\n" #: ssl.c:416 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "" #: ssl.c:434 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:446 #, c-format msgid "Failed to connect to host %s\n" msgstr "Αποτυχία σύνδεσης με τον οικοδεσπότη %s\n" #: ssl.c:465 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:536 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:564 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:575 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:603 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:694 msgid "No error" msgstr "Χωρίς σφάλμα" #: ssl.c:695 msgid "Keystore locked" msgstr "Η αποθήκη κλειδιών κλειδώθηκε" #: ssl.c:696 msgid "Keystore uninitialized" msgstr "Η αποθήκη κλειδιών δεν αρχικοποιήθηκε" #: ssl.c:697 msgid "System error" msgstr "Σφάλμα συστήματος" #: ssl.c:698 msgid "Protocol error" msgstr "Σφάλμα πρωτοκόλλου" #: ssl.c:699 msgid "Permission denied" msgstr "Άρνηση πρόσβασης" #: ssl.c:700 msgid "Key not found" msgstr "Δεν βρέθηκε κλειδί" #: ssl.c:701 msgid "Value corrupted" msgstr "Αλλοιωμένη τιμή" #: ssl.c:702 msgid "Undefined action" msgstr "Αόριστη ενέργεια" #: ssl.c:706 msgid "Wrong password" msgstr "Εσφαλμένος κωδικός πρόσβασης" #: ssl.c:707 msgid "Unknown error" msgstr "Άγνωστο σφάλμα" #: ssl.c:896 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:931 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:950 msgid "Open UDP socket" msgstr "" #: ssl.c:981 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:989 msgid "Bind UDP socket" msgstr "" #: ssl.c:996 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:1034 msgid "Cookie is no longer valid, ending session\n" msgstr "Το μπισκότο δεν είναι πια έγκυρο, τερματισμός συνεδρίας\n" #: ssl.c:1038 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "ύπνος %ds, όριο χρόνου που απομένει %ds\n" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "Εισαγωγή διαπιστευτηρίων για ξεκλείδωμα διακριτικού λογισμικού." #: stoken.c:82 msgid "Device ID:" msgstr "Αναγνωριστικό συσκευής:" #: stoken.c:89 msgid "Password:" msgstr "Κωδικός πρόσβασης:" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "Ο χρήστης παρέκαμψε το χαλαρό διακριτικό.\n" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "Απαιτούνται όλα τα πεδία· δοκιμάστε ξανά.\n" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "Γενική αποτυχία στο libstoken.\n" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "" "Εσφαλμένο αναγνωριστικό συσκευής ή κωδικός πρόσβασης· δοκιμάστε ξανά.\n" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "Η αρχικοποίηση του χαλαρού διακριτικού ήταν πετυχημένη.\n" #: stoken.c:185 msgid "Enter software token PIN." msgstr "" #: stoken.c:189 msgid "PIN:" msgstr "PIN:" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "Άκυρη μορφή PIN· δοκιμάστε ξανά.\n" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "Δημιουργείται κώδικας διακριτικού RSA\n" #: tun-win32.c:76 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:139 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "" #: tun-win32.c:154 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "Δεν βρέθηκαν υποδοχείς Windows-TAP. Είναι εγκατεστημένος ο οδηγός;\n" #: tun-win32.c:186 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" #: tun-win32.c:200 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "" #: tun-win32.c:231 #, c-format msgid "Failed to open %s\n" msgstr "Αποτυχία ανοίγματος του %s\n" #: tun-win32.c:236 #, c-format msgid "Opened tun device %s\n" msgstr "" #: tun-win32.c:244 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:250 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Σφάλμα: Απαιτείται ο οδηγός TAP για Windows με έκδοση v9.9 ή μεγαλύτερη " "(βρέθηκε %ld.%ld)\n" #: tun-win32.c:271 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Αποτυχία ορισμού διεύθυνσης IP για το TAP : %s\n" #: tun-win32.c:283 tun-win32.c:406 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:316 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:321 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Αποτυχία ανάγνωσης από την συσκευή TAP: %s\n" #: tun-win32.c:335 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Αποτυχία ολοκλήρωσης της ανάγνωσης από την συσκευή TAP: %s\n" #: tun-win32.c:358 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "Γράφτηκαν %ld bytes στο tun\n" #: tun-win32.c:368 msgid "Waiting for tun write...\n" msgstr "Αναμονή για εγγραφή στο tun...\n" #: tun-win32.c:371 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "Γράφτηκαν %ld bytes στο tun μετά την αναμονή\n" #: tun-win32.c:378 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Αποτυχία εγγραφής στην συσκευή TAP: %s\n" #: tun-win32.c:423 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Αδύνατο το άνοιγμα /dev/tun για σωλήνωση" #: tun.c:92 msgid "Can't push IP" msgstr "Αδύνατη η προώθηση IP" #: tun.c:102 msgid "Can't set ifname" msgstr "Αδύνατος ο ορισμός του ifname" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "Αδύνατο το άνοιγμα του %s: %s" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Αδύνατη η σωλήνωση του %s για IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "άνοιγμα /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Αποτυχία δημιουργίας νέου tun" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" "Αποτυχία τοποθέτησης του περιγραφέα αρχείου tun σε μήνυμα κατάστασης " "απόρριψης" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "" #: tun.c:205 msgid "open net" msgstr "άνοιγμα δικτύου" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Αποτυχία ανοίγματος συσκευής tun: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Άκυρο όνομα διεπαφής '%s'· πρέπει να ταιριάζει με 'tun%%d'\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Αδύνατο το άνοιγμα του '%s': %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:479 #, c-format msgid "socketpair failed: %s\n" msgstr "Αποτυχία του socketpair: %s\n" #: tun.c:484 #, c-format msgid "fork failed: %s\n" msgstr "Αποτυχία διακλάδωσης: %s\n" #: tun.c:488 msgid "setpgid" msgstr "setpgid" #: tun.c:493 msgid "execl" msgstr "execl" #: tun.c:498 msgid "(script)" msgstr "(σενάριο)" #: tun.c:566 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Αποτυχία εγγραφής εισερχόμενου πακέτου: %s\n" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "" "Αντιμετώπιση του οικοδεσπότη \"%s\" ως ακατέργαστου ονόματος οικοδεσπότη\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Το υπάρχον αρχείο απέτυχε στο SHA1\n" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "Το αρχείο ρυθμίσεων του XML στο SHA1: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Αποτυχία ανάλυσης του αρχείου ρυθμίσεων XML %s\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Ο οικοδεσπότης \"%s\" έχει διεύθυνση \"%s\"\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Ο οικοδεσπότης \"%s\" έχει UserGroup \"%s\"\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "Ο οικοδεσπότης \"%s\" δεν αναφέρεται στις ρυθμίσεις· αντιμετωπίζεται ως " "ακατέργαστο όνομα οικοδεσπότη\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:174 msgid "select applet command" msgstr "" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:274 msgid "unlock command" msgstr "" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:412 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:619 msgid "calculate command" msgstr "" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-8.05/po/LINGUAS0000664000076400007640000000017313360376477017221 0ustar00dwoodhoudwoodhou00000000000000ar bs ca cs da de el en_GB en_US es eu fi fr gl hu id it lt nl pa pl pt_BR pt sk sl sr@latin sr sv tg tr ug uk zh_CN zh_TW openconnect-8.05/po/de.po0000664000076400007640000040647013470043037017117 0ustar00dwoodhoudwoodhou00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2019-05-18 10:44-0700\n" "PO-Revision-Date: 2012-11-15 08:31+0000\n" "Last-Translator: David Woodhouse \n" "Language-Team: German \n" "Language: de\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: auth-globalprotect.c:108 #, c-format msgid "" "SAML login is required via %s to this URL:\n" "\t%s" msgstr "" #: auth-globalprotect.c:110 msgid "Please enter your username and password" msgstr "Bitte geben Sie Ihren Benutzernamen und Ihr Passwort ein" #: auth-globalprotect.c:119 msgid "Username" msgstr "" #: auth-globalprotect.c:134 msgid "Password" msgstr "Passwort" #: auth-globalprotect.c:181 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:260 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "GlobalProtect-Anmeldung gab %s=%s zurück (%s wurde erwartet)\n" #: auth-globalprotect.c:266 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "GlobalProtect-Anmeldung gab leeres oder fehlendes %s zurück\n" #: auth-globalprotect.c:272 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "GlobalProtect-Anmeldung gab %s=%s zurück\n" #: auth-globalprotect.c:315 msgid "Please select GlobalProtect gateway." msgstr "Bitte wählen Sie das GlobalProtect-Gateway." #: auth-globalprotect.c:325 msgid "GATEWAY:" msgstr "GATEWAY:" #. each entry looks like Label #: auth-globalprotect.c:379 #, c-format msgid "%d gateway servers available:\n" msgstr "%d Gateway-Server verfügbar:\n" #: auth-globalprotect.c:400 #, c-format msgid " %s (%s)\n" msgstr " %s (%s)\n" #: auth-globalprotect.c:484 auth-juniper.c:730 auth.c:669 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "OTP Token-Code kann nicht erzeugt werden. Token wird abgeschaltet\n" #: auth-globalprotect.c:584 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "Der Server ist weder ein GlobalProtect-Portal noch ein Gateway.\n" #: auth-globalprotect.c:636 oncp.c:1266 msgid "Logout failed.\n" msgstr "Abmelden ist fehlgeschlagen.\n" #: auth-globalprotect.c:638 msgid "Logout successful\n" msgstr "Abmelden war erfolgreich\n" #: auth-juniper.c:142 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "Unbekannte Formular-Übertragungs-Eintrag »%s« wird ignoriert\n" #: auth-juniper.c:153 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "Unbekannte Formular-Eingabetyp »%s« wird ignoriert\n" #: auth-juniper.c:163 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "Doppelte Option »%s« wird verworfen\n" #: auth-juniper.c:236 auth.c:408 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Eingabefeld-Methode=»%s« kann nicht verarbeitet werden, Aktion=»%s«\n" #: auth-juniper.c:267 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "Unbekanntes Textbereich-Feld: »%s«\n" #: auth-juniper.c:337 msgid "TNCC support not implemented yet on Windows\n" msgstr "TNCC-Unterstützung ist unter Windows noch nicht implementiert\n" #: auth-juniper.c:359 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "Kein DSPREAUTH-Cookie; TNCC wird nicht versucht\n" #: auth-juniper.c:397 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "TNCC-Skript %s konnte nicht ausgeführt werden: %s\n" #: auth-juniper.c:411 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" "Speicher für die Kommunikation mit TNCC konnte nicht reserviert werden\n" #: auth-juniper.c:418 msgid "Failed to send start command to TNCC\n" msgstr "Startbefehl konnte nicht an TNCC gesendet werden\n" #: auth-juniper.c:425 msgid "Sent start; waiting for response from TNCC\n" msgstr "Startbefehl gesendet, auf Antwort von TNCC wird gewartet\n" #: auth-juniper.c:432 msgid "Failed to read response from TNCC\n" msgstr "Lesen der TNCC-Antwort ist gescheitert\n" #: auth-juniper.c:439 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "Erfolglose Antwort %s von TNCC erhalten\n" #: auth-juniper.c:445 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:452 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "Neues DSPREAUTH-Cookie von TNCC erhalten: %s\n" #: auth-juniper.c:474 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:481 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:650 msgid "Failed to parse HTML document\n" msgstr "HTML-Dokument konnte nicht ausgewertet werden\n" #: auth-juniper.c:667 msgid "Failed to find or parse web form in login page\n" msgstr "Web-Formular in Anmeldeseite konnte nicht ausgewertet werden\n" #: auth-juniper.c:675 msgid "Encountered form with no ID\n" msgstr "Formular ohne ID erkannt\n" #: auth-juniper.c:713 #, c-format msgid "Unknown form ID '%s'\n" msgstr "Unbekanntes Formular »%s«\n" #: auth-juniper.c:716 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "Unbekanntes HTML-Formular wird gespeichert:\n" #: auth.c:96 msgid "Form choice has no name\n" msgstr "Formularauswahl hat keinen Namen\n" #: auth.c:181 #, c-format msgid "name %s not input\n" msgstr "Name %s nicht in Eingabe\n" #: auth.c:188 msgid "No input type in form\n" msgstr "Kein Eingabetyp im Formular\n" #: auth.c:200 msgid "No input name in form\n" msgstr "Kein Eingabename im Formular\n" #: auth.c:230 #, c-format msgid "Unknown input type %s in form\n" msgstr "Unbekannter Eingabetyp %s im Formular\n" #: auth.c:540 gpst.c:214 msgid "Empty response from server\n" msgstr "Leere Antwort vom Server\n" #: auth.c:551 gpst.c:289 msgid "Failed to parse server response\n" msgstr "Verarbeitung der Serverantwort ist gescheitert\n" #: auth.c:553 gpst.c:291 #, c-format msgid "Response was:%s\n" msgstr "Antwort lautete: »%s«\n" #: auth.c:575 msgid "Received when not expected.\n" msgstr " wurde empfangen als es nicht erwartet wurde.\n" #: auth.c:603 msgid "XML response has no \"auth\" node\n" msgstr "XML-Antwort hat keinen »auth«-Knoten\n" #: auth.c:636 msgid "Asked for password but '--no-passwd' set\n" msgstr "Passwortanfrage, aber »--no-passwd« ist gesetzt\n" #: auth.c:925 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" "XML-Profile wird nicht herunter geladen, weil SHA1 bereits übereinstimmt\n" #: auth.c:931 cstp.c:335 http.c:916 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Öffnen der HTTPS-Verbindung nach %s schlug fehl\n" #: auth.c:952 msgid "Failed to send GET request for new config\n" msgstr "" "GET-Anfrage für neue Konfigurationsdatei konnte nicht gesendet werden\n" #: auth.c:976 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" "Heruntergeladene Konfigurationsdatei entspricht nicht der erwarteten SHA1\n" #: auth.c:981 msgid "Downloaded new XML profile\n" msgstr "Neues XML-Profil heruntergeladen\n" #: auth.c:992 auth.c:1044 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" "Fehler: Ausführen des »Cisco Secure Desktop«-Trojaners auf dieser Plattform " "ist noch nicht implementiert.\n" #: auth.c:1003 mainloop.c:144 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "Festlegen der Gruppenkennung %ld schlug fehl: %s\n" #: auth.c:1010 mainloop.c:151 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "Gruppenkennung konnte nicht auf %ld gesetzt werden: %s\n" #: auth.c:1017 mainloop.c:158 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "Festlegen der Benutzerkennung %ld schlug fehl: %s\n" #: auth.c:1024 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "Ungültige Benutzerkennung = %ld: %s\n" #: auth.c:1031 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Wechseln in den Ordner »%s« der CSD-Datei schlug fehl: %s\n" #: auth.c:1053 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Fehler: Der Server bat einen CSD-Rechnerscan auszuführen.\n" "Die müssen ein passendes Argument für »--csd-wrapper« angeben.\n" #: auth.c:1060 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Fehler: Server bat um das Herunterladen und Ausführen eines »Cisco Secure " "Desktop«-Trojaners.\n" "Dieses Merkmal ist aus Sicherheitsgründen deaktiviert. Möglicherweise wollen " "Sie es aber nun aktivieren.\n" #: auth.c:1067 msgid "Trying to run Linux CSD trojan script.\n" msgstr "Versuch, das Linux CSD Trojaner-Skript auszuführen.\n" #: auth.c:1094 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "In temporären Ordner »%s« konnte nicht geschrieben werden: %s\n" #: auth.c:1102 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Öffnen der temporären CSD-Skriptdatei schlug fehl: %s\n" #: auth.c:1111 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Schreiben der temporären CSD-Skriptdatei schlug fehl: %s\n" #: auth.c:1141 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Warnung: Sie führen unsicheren CSD-Code mit Systemadministrator-Rechen aus\n" "\t Verwenden Sie die Befehlszeilenoption »--csd-user«\n" #: auth.c:1189 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "CSD-Skript %s konnte nicht ausgeführt werden\n" #: auth.c:1221 msgid "Unknown response from server\n" msgstr "Unbekannte Antwort vom Server\n" #: auth.c:1342 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" "Der Server forderte ein SSL Client-Zertifikat an, nachdem eines übergeben " "wurde\n" #: auth.c:1346 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" "Server forderte ein SSL Client-Zertifikat an. Es ist keines eingerichtet\n" #: auth.c:1362 msgid "XML POST enabled\n" msgstr "XML POST aktiviert\n" #: auth.c:1405 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "%s wird ach einer Sekunde aktualisiert …\n" #: compat.c:207 #, c-format msgid "(error 0x%lx)" msgstr "(Fehler 0x%lx)" #: compat.c:210 msgid "(Error while describing error!)" msgstr "(Fehler beim Beschreiben des Fehlers!)" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "FEHLER: Sockets konnten nicht initialisiert werden\n" #: cstp.c:112 gpst.c:341 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:134 gpst.c:360 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:281 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" "KRITISCHER FEHLER: DTLS-Hauptschlüssel ist nicht initialisiert. Bitte " "melden Sie dies.\n" #: cstp.c:312 msgid "Error creating HTTPS CONNECT request\n" msgstr "Fehler bei der Erstellung der HTTPS CONNECT-Anfrage\n" #: cstp.c:328 http.c:384 msgid "Error fetching HTTPS response\n" msgstr "Fehler beim Holen der HTTP-Antwort\n" #: cstp.c:355 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "VPN-Dienst ist nicht verfügbar, Grund: %s\n" #: cstp.c:360 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Unpassende HTTP CONNECT-Antwort erhalten: %s\n" #: cstp.c:367 #, c-format msgid "Got CONNECT response: %s\n" msgstr "CONNECT-Antwort erhalten: %s\n" #: cstp.c:396 cstp.c:404 msgid "No memory for options\n" msgstr "Kein Speicher für Optionen\n" #: cstp.c:413 http.c:444 msgid "" msgstr "<übergangen>" #: cstp.c:433 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Sitzungskennung hat keine 64 Zeichen; ist: »%s«\n" #: cstp.c:450 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "X-DTLS-Sitzungskennung ist ungültig; ist: »%s«\n" #: cstp.c:468 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "Unbekannte DTLS-Inhaltskodierung %s\n" #: cstp.c:510 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Unbekannte CSTP-Inhaltskodierung %s\n" #: cstp.c:585 msgid "No MTU received. Aborting\n" msgstr "Kein MTU empfangen. Abbruch\n" #: cstp.c:593 gpst.c:641 msgid "No IP address received. Aborting\n" msgstr "Keine IP-Adresse empfangen. Abbruch\n" #: cstp.c:599 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "IPv6-Konfiguration erhalten, aber die MTU %d ist zu klein.\n" #: cstp.c:605 gpst.c:648 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Neuverbinden ergab eine andere herkömmliche IP-Adresse (%s != %s)\n" #: cstp.c:614 gpst.c:657 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "Neuverbinden ergab eine andere herkömmliche IP-Netzmaske (%s != %s)\n" #: cstp.c:622 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Neuverbinden ergab eine andere herkömmliche IPv6-Adresse (%s != %s)\n" #: cstp.c:630 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "" "Neuverbinden ergab eine andere herkömmliche IPv6-Netzmaske (%s != %s)\n" #: cstp.c:638 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP verbunden. DPD %d, Keepalive %d\n" #: cstp.c:640 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "CSTP-Inhaltskodierung %s\n" #: cstp.c:702 msgid "Compression setup failed\n" msgstr "Einrichten der Kompression schlug fehl\n" #: cstp.c:719 msgid "Allocation of deflate buffer failed\n" msgstr "Anfordern des deflate-Pufferspeichers schlug fehl\n" #: cstp.c:781 msgid "inflate failed\n" msgstr "»inflate« fehlgeschlagen\n" #: cstp.c:804 #, c-format msgid "LZS decompression failed: %s\n" msgstr "LZS-Dekomprimierung fehlgeschlagen: %s\n" #: cstp.c:817 msgid "LZ4 decompression failed\n" msgstr "LZ4-Dekomprimierung fehlgeschlagen\n" #: cstp.c:824 #, c-format msgid "Unknown compression type %d\n" msgstr "Unbekannter Kompressionstyp »%d«\n" #: cstp.c:829 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "%s-Komprimiertes Datenpaket mit %d Byte erhalten (war %d)\n" #: cstp.c:849 #, c-format msgid "deflate failed %d\n" msgstr "»deflate« fehlgeschlagen %d\n" #: cstp.c:922 dtls.c:281 dtls.c:740 esp.c:129 gpst.c:1042 mainloop.c:69 #: oncp.c:914 msgid "Allocation failed\n" msgstr "Zuweisung fehlgeschlagen\n" #: cstp.c:933 gpst.c:1055 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "Kurzes Paket empfangen (%d Bytes)\n" #: cstp.c:946 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Unerwartete Paketlänge. SSL_read gab %d zurück, aber Paket hat\n" #: cstp.c:960 msgid "Got CSTP DPD request\n" msgstr "CSTP DPD-Anfrage erhalten\n" #: cstp.c:966 msgid "Got CSTP DPD response\n" msgstr "CSTP DPD-Antwort erhalten\n" #: cstp.c:971 msgid "Got CSTP Keepalive\n" msgstr "CSTP-Keepalive empfangen\n" #: cstp.c:976 oncp.c:1003 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Unkomprimiertes Datenpaket mit %d Byte erhalten\n" #: cstp.c:993 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Abbruch der Serververbindung empfangen: %02x »%s«\n" #: cstp.c:996 msgid "Received server disconnect\n" msgstr "Abbruch der Serververbindung empfangen\n" #: cstp.c:1004 msgid "Compressed packet received in !deflate mode\n" msgstr "Komprimiertes Paket im !deflate-Modus erhalten\n" #: cstp.c:1013 msgid "received server terminate packet\n" msgstr "Server-Beenden-Paket empfangen\n" #: cstp.c:1020 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Unbekanntes Paket %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1063 gpst.c:1142 oncp.c:1121 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL schrieb zu wenige Bytes! Angefragt wurden %d, gesendet %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1091 oncp.c:1155 msgid "CSTP rekey due\n" msgstr "Erneuter CSTP-Schlüsselaustausch fällig\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1098 oncp.c:1162 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Rehandshake fehlgeschlagen; neuer Tunnel wird versucht\n" #: cstp.c:1109 oncp.c:1173 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "CSTP Dead Peer Detection erkannte nicht reagierende Gegenstelle!\n" #: cstp.c:1113 gpst.c:1166 oncp.c:1091 oncp.c:1177 msgid "Reconnect failed\n" msgstr "Neuverbinden fehlgeschlagen\n" #: cstp.c:1129 oncp.c:1193 msgid "Send CSTP DPD\n" msgstr "CSTP DPD senden\n" #: cstp.c:1141 oncp.c:1204 msgid "Send CSTP Keepalive\n" msgstr "CSTP-Keepalive senden\n" #: cstp.c:1166 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "Komprimiertes Datenpaket mit %d Byte wird gesendet (war %d)\n" #: cstp.c:1177 oncp.c:1238 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Unkomprimiertes Datenpaket mit %d Byte wird gesendet\n" #: cstp.c:1216 #, c-format msgid "Send BYE packet: %s\n" msgstr "BYE-Paket senden: %s\n" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "Versuch einer Prüfsummen-Legitimierung zum Proxy\n" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "Versuch einer Prüfsummen-Legitimierung zum Server »%s«\n" #: dtls.c:113 msgid "DTLS connection attempted with an existing fd\n" msgstr "Versuch einer DTLS-Verbindung mit bestehendem Dateideskriptor\n" #: dtls.c:119 msgid "No DTLS address\n" msgstr "Keine DTLS-Adresse\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:126 msgid "Server offered no DTLS cipher option\n" msgstr "Server bot keine DTLS-Chiffrieroption an\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:133 msgid "No DTLS when connected via proxy\n" msgstr "Kein DTLS bei Verbindung über Proxy\n" #: dtls.c:200 #, c-format msgid "DTLS option %s : %s\n" msgstr "DTLS-Option %s : %s\n" #: dtls.c:239 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS initialisiert. DPD %d, Keepalive %d\n" #: dtls.c:265 msgid "Attempt new DTLS connection\n" msgstr "Versuch einer neuen DTLS-Verbindung\n" #: dtls.c:292 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "DTLS-Paket 0x%02x mit %d Byte empfangen\n" #: dtls.c:306 msgid "Got DTLS DPD request\n" msgstr "DTLS-DPD-Anfrage erhalten\n" #: dtls.c:312 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "" "DPD-Antwort konnte nicht gesendet werden. Verbindungsabbruch wird erwartet\n" #: dtls.c:316 msgid "Got DTLS DPD response\n" msgstr "DTLS-DPD-Antwort erhalten\n" #: dtls.c:320 msgid "Got DTLS Keepalive\n" msgstr "DTLS-Keepalive erhalten\n" #: dtls.c:326 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "Komprimiertes DTLS-Paket ohne aktivierte Kompression empfangen\n" #: dtls.c:334 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Unbekannter DTLS-Pakettyp %02x, Länge %d\n" #: dtls.c:356 msgid "DTLS rekey due\n" msgstr "Erneuter DTLS-Schlüsselaustausch fällig\n" #: dtls.c:363 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" "Erneuerung des DTLS-Handshakes schlug fehl; Verbindung wird erneut " "aufgebaut.\n" #: dtls.c:372 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "DTLS Dead Peer Detection erkannte nicht reagierende Gegenstelle!\n" #: dtls.c:378 msgid "Send DTLS DPD\n" msgstr "DTLS DPD senden\n" #: dtls.c:383 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "" "DPD-Anfrage konnte nicht gesendet werden. Verbindungsabbruch wird erwartet\n" #: dtls.c:396 msgid "Send DTLS Keepalive\n" msgstr "DTLS Keepalive senden\n" #: dtls.c:401 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" "keepalive-Anfrage konnte nicht gesendet werden. Verbindungsabbruch wird " "erwartet\n" #: dtls.c:432 tun.c:541 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Unbekanntes Paket empfangen (Länge %d) : %02x %02x %02x %02x...\n" #: dtls.c:439 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "Dieser TOS: %d, letzter TOS: %d\n" #: dtls.c:443 msgid "UDP setsockopt" msgstr "UDP-setsockopt" #: dtls.c:474 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "DTLS-Schreibfehler %d. SSL wird ersatzweise verwendet\n" #: dtls.c:488 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "DTLS-Schreibfehler: %s. SSL wird ersatzweise verwendet\n" #: dtls.c:503 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "DTLS-Paket mit %d Byte gesendet; DTLS send gab %d zurück\n" #: dtls.c:531 #, c-format msgid "Initiating IPv4 MTU detection (min=%d, max=%d)\n" msgstr "IPv4-MTU-Erkennung wird initialisiert (min=%d, max=%d)\n" # https://de.wikipedia.org/wiki/Maximum_Transmission_Unit #: dtls.c:551 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" "Zu lange Zeit in MTU-Erkennungsschleife; bereits ausgehandelte MTU wird " "angenommen.\n" #: dtls.c:555 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "Zu lange Zeit in MTU-Erkennungsschleife; MTU wird auf %d gesetzt.\n" #: dtls.c:564 #, c-format msgid "Sending MTU DPD probe (%u bytes, min=%u, max=%u)\n" msgstr "MTU-DPD-Test wird gesendet (%u Bytes, min=%u, max=%u)\n" #: dtls.c:568 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "DPD-Anfrage konnte nicht gesendet werden (%d %d)\n" #: dtls.c:582 dtls.c:690 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" "Unerwartetes Paket (%.2x) in MTU-Erkennung entdeckt; wird übersprungen.\n" #: dtls.c:594 #, c-format msgid "Timeout while waiting for DPD response; trying %d\n" msgstr "Zeitüberschreitung beim Warten auf die DPD-Antwort; %d wird versucht\n" #: dtls.c:601 dtls.c:682 msgid "Timeout while waiting for DPD response; resending probe.\n" msgstr "" "Zeitüberschreitung beim Warten auf die DPD-Antwort; Test wird erneut " "gesendet.\n" #: dtls.c:608 dtls.c:709 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "DPD-Anfrage konnte nicht empfangen werden (%d)\n" #: dtls.c:613 #, c-format msgid "Received MTU DPD probe (%u bytes of %u)\n" msgstr "MTU-DPD-Test wurde empfangen (%u Bytes von %u)\n" #: dtls.c:651 msgid "Initiating IPv6 MTU detection\n" msgstr "IPv6-MTU-Erkennung wird initialisiert\n" #: dtls.c:666 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "MTU-DPD-Test wird gesendet (%u Bytes)\n" #: dtls.c:670 #, c-format msgid "Failed to send DPD request (%d)\n" msgstr "DPD-Anfrage konnte nicht gesendet werden (%d)\n" #: dtls.c:695 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "MTU-DPD-Test wurde empfangen (%u Bytes)\n" #: dtls.c:759 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "MTU von %d Byte wurde erkannt (war %d)\n" #: dtls.c:762 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "Keine Änderung in MTU nach Erkennung (war %d)\n" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "Erwartetes ESP-Paket mit Sequenz %u wird akzeptiert\n" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" "Verspätetes ESP-Paket mit Sequenz %u wird akzeptiert (% erwartet)\n" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" "Veraltetes ESP-Paket mit Sequenz %u wird akzeptiert (% erwartet)\n" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" "Veraltetes ESP-Paket mit Sequenz %u wird toleriert (% erwartet)\n" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "Erneut gesendetes ESP-Paket mit Sequenz %u wird verworfen\n" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "Erneut gesendetes ESP-Paket mit Sequenz %u wird toleriert\n" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" "Außerordentliches ESP-Paket mit Sequenz %u wird akzeptiert (% " "erwartet)\n" #: esp.c:63 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "Parameter für %s ESP: SPI 0x%08x\n" #: esp.c:66 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "ESP-Verschlüsselungstyp %s, Schlüssel 0x%s\n" #: esp.c:69 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "ESP-Legitimierungstyp %s, Schlüssel 0x%s\n" #: esp.c:87 msgid "incoming" msgstr "ankommend" #: esp.c:88 msgid "outgoing" msgstr "ausgehend" #: esp.c:90 esp.c:113 msgid "Send ESP probes\n" msgstr "ESP-Proben senden\n" #: esp.c:138 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "ESP-Paket mit %d Byte empfangen\n" #: esp.c:155 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "ESP-Paket von altem SPI 0x%x empfangen, Sequenz %u\n" #: esp.c:161 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "ESP-Paket mit ungültigem SPI 0x%08x empfangen\n" #: esp.c:174 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "ESP-Paket mit ungültigem Nutzdatentyp %02x empfangen\n" #: esp.c:181 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "Ungültige Auffüllänge %02x in ESP\n" #: esp.c:193 msgid "Invalid padding bytes in ESP\n" msgstr "Ungültige Auffüll-Bytes in ESP\n" #: esp.c:202 msgid "ESP session established with server\n" msgstr "ESP-Sitzung mit Server aufgebaut\n" #: esp.c:213 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" "Speicher zur Entschlüsselung des ESP-Pakets konnte nicht reserviert werden\n" #: esp.c:219 msgid "LZO decompression of ESP packet failed\n" msgstr "LZO-Dekompression des ESP-Pakets schlug fehl\n" #: esp.c:225 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "LZO-Dekompression von %d Bytes in %d\n" #: esp.c:239 msgid "Rekey not implemented for ESP\n" msgstr "Rekey ist für ESP nicht implementiert\n" #: esp.c:243 msgid "ESP detected dead peer\n" msgstr "ESP erkannte nicht reagierende Gegenstelle\n" #: esp.c:251 msgid "Send ESP probes for DPD\n" msgstr "ESP-Proben für DPD senden\n" #: esp.c:258 msgid "Keepalive not implemented for ESP\n" msgstr "Keepalive ist für ESP nicht implementiert\n" #: esp.c:278 #, c-format msgid "Failed to encrypt ESP packet: %d\n" msgstr "" #: esp.c:294 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:301 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "ESP-Paket konnte nicht gesendet werden: %s\n" #: esp.c:307 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "ESP-Paket von %d Bytes wurde gesendet\n" #: gnutls-dtls.c:190 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "DTLS-Wiederaufnahme wird verzögert, bis CSTP eine PSK erzeugt\n" #: gnutls-dtls.c:198 msgid "Failed to generate DTLS priority string\n" msgstr "Erzeugen der Zeichenkette der DTLS-Priorität schlug fehl\n" #: gnutls-dtls.c:207 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "Initialisieren des DTLS schlug fehl: %s\n" #: gnutls-dtls.c:216 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "Festlegen der DTLS-Priorität schlug fehl: »%s«: %s\n" #: gnutls-dtls.c:240 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "Anmeldedaten konnten nicht zugewiesen werden: %s\n" #: gnutls-dtls.c:253 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "Erzeugen des DTLS-Schlüssels fehlgeschlagen: %s\n" #: gnutls-dtls.c:267 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "Festlegen des DTLS-Schlüssels schlug fehl: %s\n" #: gnutls-dtls.c:275 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "Festlegen der DTLS-PSK-Anmeldedaten schlug fehl: %s\n" #: gnutls-dtls.c:309 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Unbekannte DTLS-Parameter für angefragte CipherSuite »%s«\n" #: gnutls-dtls.c:324 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "Festlegen der DTLS-Priorität schlug fehl: %s\n" #: gnutls-dtls.c:345 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "DTLS-Sitzungsparameter konnten nicht festgelegt werden: %s\n" #: gnutls-dtls.c:373 openssl-dtls.c:534 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "MTU %d der Gegenstelle ist zu klein, um DTLS zu erlauben\n" #: gnutls-dtls.c:382 openssl-dtls.c:545 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "DTLS-MTU auf %d reduziert\n" #: gnutls-dtls.c:392 openssl-dtls.c:554 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" "Wiederaufnahme der DTLS-Sitzung fehlgeschlagen. Möglicher »Man in the " "Middle«-Angriff. DTLS wird abgeschaltet.\n" #: gnutls-dtls.c:405 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Festlegen der DTLS-MTU schlug fehl: %s\n" #: gnutls-dtls.c:416 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "DTLS-Verbindung aufgebaut (mit GnuTLS).Schiffrierwerk %s.\n" #: gnutls-dtls.c:422 openssl-dtls.c:572 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "DTLS-Verbindungskompression mit %s.\n" #: gnutls-dtls.c:437 openssl-dtls.c:653 openssl-dtls.c:657 msgid "DTLS handshake timed out\n" msgstr "Zeitüberschreitung bei DTLS-Handshake\n" #: gnutls-dtls.c:440 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "DTLS-Handshake schlug fehl: %s\n" #: gnutls-dtls.c:444 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(Verhindert eine Firewall das Senden von UDP-Paketen?)\n" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "Initialisieren des ESP-Schlüssels schlug fehl: %s\n" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "Initialisieren des ESP-HMAC schlug fehl: %s\n" #: gnutls-esp.c:121 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "Zufallsschlüssel für ESP konnten nicht erzeugt werden: %s\n" #: gnutls-esp.c:132 msgid "Failed to generate ESP IV\n" msgstr "" #: gnutls-esp.c:161 gnutls-esp.c:217 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "HMAC für ESP-Paket konnte nicht errechnet werden: %s\n" #: gnutls-esp.c:168 openssl-esp.c:192 msgid "Received ESP packet with invalid HMAC\n" msgstr "ESP-Paket mit ungültigem HMAC empfangen\n" #: gnutls-esp.c:180 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "ESP-Paket konnte nicht entschlüsselt werden: %s\n" #: gnutls-esp.c:209 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "ESP-Paket konnte nicht verschlüsselt werden: %s\n" #: gnutls.c:95 openssl.c:154 msgid "SSL write cancelled\n" msgstr "SSL-Schreibvorgang abgebrochen\n" #: gnutls.c:99 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "Schreiben in SSL-Socket schlug fehl: %s\n" #: gnutls.c:145 gnutls.c:237 openssl.c:204 openssl.c:271 msgid "SSL read cancelled\n" msgstr "SSL-Lesevorgang abgebrochen\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:158 msgid "SSL socket closed uncleanly\n" msgstr "SSL-Socket-Verbindung abgebrochen\n" #: gnutls.c:168 gnutls.c:246 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "Lesen vom SSL-Socket schlug fehl: %s\n" #: gnutls.c:266 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "SSL-Lesefehler: %s; Neuverbinden läuft.\n" #: gnutls.c:302 #, c-format msgid "SSL send failed: %s\n" msgstr "»SSL_send« fehlgeschlagen: %s\n" #: gnutls.c:315 msgid "Could not extract expiration time of certificate\n" msgstr "Ablaufzeitpunkt des Zertifikats konnte nicht ermittelt werden\n" #: gnutls.c:320 openssl.c:1592 msgid "Client certificate has expired at" msgstr "Client-Zertifikat ist abgelaufen am" #: gnutls.c:322 openssl.c:1597 msgid "Client certificate expires soon at" msgstr "Client-Zertifikat läuft bald ab am" #: gnutls.c:371 openssl.c:771 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" "Laden des Objekts »%s« aus dem Schlüsselspeicher ist fehlgeschlagen: %s\n" #: gnutls.c:384 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Öffnen der Schlüssel-/Zertifikatsdatei %s schlug fehl: %s\n" #: gnutls.c:391 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Abfragen der Schlüssel-/Zertifikatsdatei %s schlug fehl: %s\n" #: gnutls.c:400 msgid "Failed to allocate certificate buffer\n" msgstr "Anfordern von Pufferspeicher schlug fehl\n" #: gnutls.c:408 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Lesen des Zertifikats in den Speicher schlug fehl: %s\n" #: gnutls.c:439 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "PKCS#12-Datenstruktur konnte nicht angelegt werden: %s\n" #: gnutls.c:462 openssl.c:534 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "PKCS#12-Zertifikatdatei konnte nicht entschlüsselt werden\n" #: gnutls.c:466 openssl.c:537 msgid "Enter PKCS#12 pass phrase:" msgstr "Geben Sie das PKCS#12-Passwort ein:" #: gnutls.c:489 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Verarbeiten der PKCS#12-Datei schlug fehl: %s\n" #: gnutls.c:501 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Laden des PKCS#12-Zertifikats schlug fehl: %s\n" #: gnutls.c:584 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Importieren des X509-Zertifikats schlug fehl: %s\n" #: gnutls.c:594 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Festlegen des PKCS#11-Zertifikats schlug fehl: %s\n" #: gnutls.c:628 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "MD5-Prüfsumme konnte nicht initialisiert werden: %s\n" #: gnutls.c:638 #, c-format msgid "MD5 hash error: %s\n" msgstr "MD5-Prüfsummenfehler: %s\n" #: gnutls.c:696 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "Fehlende DEK-Info: Kopf des OpenSSL-Chiffrierschlüssels\n" #: gnutls.c:703 msgid "Cannot determine PEM encryption type\n" msgstr "PEM-Verschlüsselungstyp konnte nicht ermittelt werden\n" #: gnutls.c:716 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Nicht unterstützter PEM-Verschlüsselungstyp: %s\n" #: gnutls.c:741 gnutls.c:754 msgid "Invalid salt in encrypted PEM file\n" msgstr "Ungültiges Salt in der verschlüsselten PEM-Datei\n" #: gnutls.c:778 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "" "Fehler beim Dekodieren der verschlüsselten PEM-Datei nach base64: %s\n" #: gnutls.c:786 msgid "Encrypted PEM file too short\n" msgstr "Verschlüsselte PEM-Datei ist zu kurz\n" #: gnutls.c:814 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" "Initialisieren des Schlüssels zur Entschlüsselung der PEM-Datei schlug fehl: " "%s\n" #: gnutls.c:825 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Die Entschlüsselung des PEM-Schlüssels scheiterte: %s\n" #: gnutls.c:877 msgid "Decrypting PEM key failed\n" msgstr "Entschlüsselung des PEM-Schlüssels scheiterte\n" #: gnutls.c:881 gnutls.c:1405 openssl.c:458 msgid "Enter PEM pass phrase:" msgstr "Geben Sie das PEM-Kennwort ein:" #: gnutls.c:942 msgid "This binary built without system key support\n" msgstr "Diese Version wurde ohne Systemschlüssel-Unterstützung erstellt\n" #: gnutls.c:949 msgid "This binary built without PKCS#11 support\n" msgstr "Dieses Binary wurde ohne PKCS#11-Unterstützung erstellt\n" #: gnutls.c:993 openssl-pkcs11.c:407 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "PKCS#11-Zertifikat %s wird verwendet\n" #: gnutls.c:994 #, c-format msgid "Using system certificate %s\n" msgstr "Systemzertifikat »%s« wird verwendet\n" #: gnutls.c:1012 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Fehler beim Laden des Zertifikats von PKCS#11: %s\n" #: gnutls.c:1013 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Fehler beim Laden des Systemzertifikats: %s\n" #: gnutls.c:1024 openssl.c:827 #, c-format msgid "Using certificate file %s\n" msgstr "Zertifikatsdatei %s wird verwendet\n" #: gnutls.c:1052 msgid "PKCS#11 file contained no certificate\n" msgstr "PKCS#11-Datei enthielt kein Zertifikat\n" #: gnutls.c:1078 msgid "No certificate found in file" msgstr "Kein Zertifikat gefunden in Datei" #: gnutls.c:1083 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Laden des Zertifikats ist gescheitert: %s\n" #: gnutls.c:1098 #, c-format msgid "Using system key %s\n" msgstr "Systemschlüssel %s wird verwendet\n" #: gnutls.c:1103 gnutls.c:1271 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Fehler beim Initialisieren der privaten Schlüsselstruktur: %s\n" #: gnutls.c:1114 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Fehler beim Importieren des Systemschlüssels %s: %s\n" #: gnutls.c:1125 gnutls.c:1219 gnutls.c:1247 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "PKCS#11 Schlüsseladresse %s wird versucht\n" #: gnutls.c:1130 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Fehler beim Initialisieren der PKCS#11-Schlüsselstruktur: %s\n" #: gnutls.c:1259 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Fehler beim Importieren der PKCS#11-Adresse %s: %s\n" #: gnutls.c:1266 openssl-pkcs11.c:644 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "PKCS#11-Schlüssel %s wird verwendet\n" #: gnutls.c:1281 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" "Fehler beim Importieren des PKCS#11-Schlüssels in private Schlüsselstruktur: " "%s\n" #: gnutls.c:1299 #, c-format msgid "Using private key file %s\n" msgstr "Private Schlüsseldatei %s wird verwendet\n" #: gnutls.c:1310 openssl.c:651 msgid "This version of OpenConnect was built without TPM support\n" msgstr "" "Diese Version von Openconnect wurde ohne Unterstützung für TPM erstellt\n" #: gnutls.c:1326 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1347 msgid "Failed to interpret PEM file\n" msgstr "Interpretieren der PEM-Datei fehlgeschlagen\n" #: gnutls.c:1366 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Laden des privaten PKCS#1-Schlüssels scheiterte: %s\n" #: gnutls.c:1379 gnutls.c:1393 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Laden des geheimen Schlüssels als PKCS#8 ist gescheitert: %s\n" #: gnutls.c:1401 gnutls.c:1434 openssl.c:1002 openssl.c:1012 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "PKCS#8-Zertifikatdatei konnte nicht entschlüsselt werden\n" #: gnutls.c:1426 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Bestimmung des Typs des privaten Schlüssels %s schlug fehl\n" #: gnutls.c:1438 openssl.c:1008 msgid "Enter PKCS#8 pass phrase:" msgstr "Geben Sie das PKCS#8-Passwort ein:" #: gnutls.c:1454 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Ermitteln der Schlüsselkennung fehlgeschlagen: %s\n" #: gnutls.c:1499 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Fehler beim Signieren der Testdaten mit dem geheimen Schlüssel: %s\n" #: gnutls.c:1514 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Fehler bei der Überprüfung der Signatur anhand des Zertifikats: %s\n" #: gnutls.c:1539 msgid "No SSL certificate found to match private key\n" msgstr "Kein dem geheimen Schlüssel entsprechendes SSL-Zertifikat gefunden\n" #: gnutls.c:1551 openssl.c:560 openssl.c:709 #, c-format msgid "Using client certificate '%s'\n" msgstr "Client-Zertifikat »%s« wird verwendet\n" #: gnutls.c:1558 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "Festlegen der Zertifikat-Wiederrufsliste schlug fehl: %s\n" #: gnutls.c:1579 gnutls.c:1589 msgid "Failed to allocate memory for certificate\n" msgstr "Speicher für das Zertifikat konnte nicht reserviert werden\n" #: gnutls.c:1625 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" "WARNUNG: GnuTLS gab falsche Herausgeber-Zertifikate zurück; Legitimierung " "könnte fehlschlagen!\n" #: gnutls.c:1648 msgid "Got no issuer from PKCS#11\n" msgstr "Kein Herausgeber von PKCS#11 erhalten\n" #: gnutls.c:1653 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "Nächste CA »%s« von PKCS11 erhalten\n" #: gnutls.c:1679 msgid "Failed to allocate memory for supporting certificates\n" msgstr "" "Belegen von Speicher für die Unterstützung von Zertifikaten schlug fehl\n" #: gnutls.c:1702 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Unterstützende CA wird hinzugefügt : %s\n" #: gnutls.c:1724 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1748 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Festlegen des Zertifikats ist gescheitert: %s\n" #: gnutls.c:1941 msgid "Server presented no certificate\n" msgstr "Server zeigte kein Zertifikat vor\n" #: gnutls.c:1949 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" "Fehler beim Vergleichen des Zertifikats des Servers beim erneuten Handshake: " "%s\n" #: gnutls.c:1954 openssl.c:1515 msgid "Server presented different cert on rehandshake\n" msgstr "Server zeigte ein anderes Zertifikat vor beim erneuten Handshake\n" #: gnutls.c:1959 openssl.c:1518 msgid "Server presented identical cert on rehandshake\n" msgstr "Server zeigte das identische Zertifikat vor beim erneuten Handshake\n" #: gnutls.c:1965 msgid "Error initialising X509 cert structure\n" msgstr "Fehler beim Initialisieren der X.509-Zertifikatstruktur\n" #: gnutls.c:1971 msgid "Error importing server's cert\n" msgstr "Fehler beim Importieren des Zertifikats des Servers\n" #: gnutls.c:1980 main.c:1794 msgid "Could not calculate hash of server's certificate\n" msgstr "Streuwert konnte nicht für das Server-Zertifikat berechnet werden\n" #: gnutls.c:1985 msgid "Error checking server cert status\n" msgstr "Fehler beim Prüfen des Status des Server-Zertifikats\n" #: gnutls.c:1990 msgid "certificate revoked" msgstr "Zertifikat widerrufen" #: gnutls.c:1992 msgid "signer not found" msgstr "Signierer nicht gefunden" #: gnutls.c:1994 msgid "signer not a CA certificate" msgstr "Signierer ist kein CA-Zertifikat" #: gnutls.c:1996 msgid "insecure algorithm" msgstr "Unsicherer Algorithmus" #: gnutls.c:1998 msgid "certificate not yet activated" msgstr "Das Zertifikat ist noch nicht aktiviert" #: gnutls.c:2000 msgid "certificate expired" msgstr "Zertifikat abgelaufen" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2005 msgid "signature verification failed" msgstr "Überprüfung der Signatur fehlgeschlagen" #: gnutls.c:2054 openssl.c:1399 openssl.c:1551 msgid "certificate does not match hostname" msgstr "Zertifikat passt nicht zum Rechnernamen" #: gnutls.c:2059 openssl.c:1398 openssl.c:1557 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Prüfen des Server-Zertifikats schlug fehl: %s\n" #: gnutls.c:2126 msgid "Failed to allocate memory for cafile certs\n" msgstr "Anfordern von Speicher für cafile-Zertifikate schlug fehl\n" #: gnutls.c:2147 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Lesen von Zertifikaten aus CA-Datei ist fehlgeschlagen: %s\n" #: gnutls.c:2163 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Öffnen der CA-Datei »%s« fehlgeschlagen : %s\n" #: gnutls.c:2176 openssl.c:1679 msgid "Loading certificate failed. Aborting.\n" msgstr "Laden des Zertifikats schlug fehl. Abbruch.\n" #: gnutls.c:2237 #, c-format msgid "Failed to set TLS priority string (\"%s\"): %s\n" msgstr "TLS-Prioritätszeichenkette konnte nicht festgelegt werden (»%s«): %s\n" #: gnutls.c:2249 openssl.c:1796 #, c-format msgid "SSL negotiation with %s\n" msgstr "SSL-Verhandlung mit %s\n" #: gnutls.c:2296 openssl.c:1822 msgid "SSL connection cancelled\n" msgstr "SSL-Verbindung abgebrochen\n" #: gnutls.c:2303 #, c-format msgid "SSL connection failure: %s\n" msgstr "SSL-Verbindung versagt: %s\n" #: gnutls.c:2312 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "GnuTLS nicht-fatale Rückgabe während Handshake: %s\n" #: gnutls.c:2318 openssl.c:1839 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "Verbunden mit HTTPS auf %s\n" #: gnutls.c:2321 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "SSL wird auf %s neu ausgehandelt\n" #: gnutls.c:2483 openssl-pkcs11.c:199 #, c-format msgid "PIN required for %s" msgstr "Für %s wird eine PIN benötigt" #: gnutls.c:2487 openssl-pkcs11.c:202 msgid "Wrong PIN" msgstr "Falsche PIN" #: gnutls.c:2490 msgid "This is the final try before locking!" msgstr "Dies ist der letzte Versuch vor der Sperrung!" #: gnutls.c:2492 msgid "Only a few tries left before locking!" msgstr "Nur noch wenige Versuche, bevor Sperrung erfolgt!" #: gnutls.c:2497 openssl-pkcs11.c:206 msgid "Enter PIN:" msgstr "PIN eingeben:" #: gnutls.c:2583 openssl.c:1967 msgid "Unsupported OATH HMAC algorithm\n" msgstr "Nicht unterstützter OATH-HMAC-Algorithmus\n" #: gnutls.c:2592 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "OATH-HMAC konnte nicht errechnet werden: %s\n" #: gnutls_tpm.c:54 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "TPM-Signierfunktion aufgerufen für %d Byte.\n" #: gnutls_tpm.c:61 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "TPM-Hash-Objekt konnte nicht erstellt werden: %s\n" #: gnutls_tpm.c:68 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Festlegen eines Werts im TPM-Hash-Objekt schlug fehl: %s\n" #: gnutls_tpm.c:78 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "TPM Hash-Signatur schlug fehl: %s\n" #: gnutls_tpm.c:100 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Fehler beim Dekodieren der TSS-Schlüssel-Daten: %s\n" #: gnutls_tpm.c:108 gnutls_tpm.c:119 gnutls_tpm.c:132 msgid "Error in TSS key blob\n" msgstr "Fehler in den TSS-Schlüssel-Daten\n" #: gnutls_tpm.c:139 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Erstellen des TPM-Kontexts fehlgeschlagen: %s\n" #: gnutls_tpm.c:146 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Verbinden des TPM-Kontexts fehlgeschlagen: %s\n" #: gnutls_tpm.c:154 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Laden des TPM SRK-Schlüssels scheiterte: %s\n" #: gnutls_tpm.c:161 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Laden des TPM SRK Richtlinien-Objekts ist gescheitert: %s\n" #: gnutls_tpm.c:182 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Festlegen der TPM-PIN fehlgeschlagen: %s\n" #: gnutls_tpm.c:198 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Laden des privaten TPM-Schlüssels scheiterte: %s\n" #: gnutls_tpm.c:205 msgid "Enter TPM SRK PIN:" msgstr "TPM SRK PIN eingeben:" #: gnutls_tpm.c:226 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Schlüssel-Richtlinienobjekte konnten nicht erstellt werden: %s\n" #: gnutls_tpm.c:234 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Zuweisen der Richtlinie zum Schlüssel ist fehlgeschlagen: %s\n" #: gnutls_tpm.c:240 msgid "Enter TPM key PIN:" msgstr "PIN des TPM-Schlüssels eingeben:" #: gnutls_tpm.c:251 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Festlegen der Schlüssel-PIN fehlgeschlagen: %s\n" #: gnutls_tpm2.c:92 gnutls_tpm2_esys.c:474 gnutls_tpm2_ibm.c:419 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:198 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:208 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:217 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:225 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:231 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:249 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:270 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:275 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:384 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2_esys.c:173 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:189 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:190 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:191 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:192 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:196 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:201 gnutls_tpm2_ibm.c:262 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:209 gnutls_tpm2_esys.c:303 gnutls_tpm2_esys.c:374 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:221 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:226 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:245 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:250 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:258 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:261 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:274 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:295 gnutls_tpm2_ibm.c:278 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:309 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:317 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:323 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:333 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:363 gnutls_tpm2_ibm.c:363 gnutls_tpm2_ibm.c:450 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:395 #, c-format msgid "TPM2 RSA sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:414 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:420 gnutls_tpm2_esys.c:500 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:464 gnutls_tpm2_ibm.c:405 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:494 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:532 gnutls_tpm2_ibm.c:485 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:546 gnutls_tpm2_ibm.c:502 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:555 gnutls_tpm2_ibm.c:512 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:569 gnutls_tpm2_ibm.c:523 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:54 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:226 #, c-format msgid "%s\n" msgstr "%s\n" #: gpst.c:229 #, c-format msgid "Challenge: %s\n" msgstr "Challenge: %s\n" #: gpst.c:417 #, c-format msgid "Unknown ESP %s algorithm: %s" msgstr "Unbekannter ESP-%s-Algorithmus: %s" #: gpst.c:477 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: gpst.c:483 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "Nicht standardmäßiger SSL-Tunnel-Pfad: %s\n" #: gpst.c:487 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" "Tunnel-Zeitspanne (Intervall zum erneuten Schlüsselaustausch) ist %d " "Minuten.\n" #: gpst.c:498 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" "Gateway-Adresse in der XML-Konfiguration (%s) unterscheidet sich von der " "Adresse des externen Gateways (%s).\n" #: gpst.c:551 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" "GlobalProtect-Konfiguration sendete ipsec-mode=%s (esp-tunnel wurde " "erwartet)\n" #: gpst.c:560 oncp.c:835 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" "ESP-Schlüssel werden ignoriert, weil ESP-Unterstützung hier nicht verfügbar " "ist\n" #: gpst.c:627 msgid "ESP disabled" msgstr "ESP ist deaktiviert" #: gpst.c:629 msgid "No ESP keys received" msgstr "Keine ESP-Schlüssel empfangen" #: gpst.c:631 msgid "ESP support not available in this build" msgstr "ESP-Unterstützung ist hier nicht verfügbar" #: gpst.c:635 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "Kein MTU empfangen. Berechnet %d für %s%s\n" #: gpst.c:680 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "Verbindung zum HTTPS-Tunnel-Endpunkt wird aufgebaut …\n" #: gpst.c:702 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "Fehler beim Holen der GET-tunnel-HTTPS-Antwort.\n" #: gpst.c:711 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "Gateway wurde unmittelbar nach der GET-tunnel-Anfrage geschlossen.\n" #: gpst.c:719 #, c-format msgid "Got inappropriate HTTP GET-tunnel response: %.*s\n" msgstr "Unpassende HTTP-GET-tunnel-Antwort erhalten: %.*s\n" #: gpst.c:861 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" "VPN connectivity may be disabled or limited without HIP report submission.\n" "You need to provide a --csd-wrapper argument with the HIP report submission " "script.\n" msgstr "" "WARNUNG: Der Server hat darum gebeten, einen HIP-Report mit der md5-" "Prüfsumme %s zu senden.\n" "Die VPN-Konnektivität kann ohne die Übertragung eines HIP-Reports " "eingeschränkt oder unterbunden werden.\n" "Es wird erforderlich sein, für das Übertragungsskript des HIP-Reports das " "Argument --csd-wrapper anzuwenden.\n" #: gpst.c:871 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" "Fehler: Ausführen des »HIP Report«-Skripts auf dieser Plattform ist noch " "nicht implementiert.\n" #: gpst.c:900 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:905 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:911 msgid "HIP report submission failed.\n" msgstr "Übertragung des HIP-Reports fehlgeschlagen.\n" #: gpst.c:913 msgid "HIP report submitted successfully.\n" msgstr "Der HIP-Report wurde erfolgreich übertragen.\n" #: gpst.c:942 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "HIP-Skript %s konnte nicht ausgeführt werden\n" #: gpst.c:966 msgid "Gateway says HIP report submission is needed.\n" msgstr "" "Das Gateway sagt, dass die Übertragung eines HIP-Reports erforderlich ist.\n" #: gpst.c:972 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" "Das Gateway sagt, dass die Übertragung eines HIP-Reports nicht erforderlich " "ist.\n" #: gpst.c:999 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "ESP-Tunnel verbunden; HTTPS-Hauptschleife wird unterbrochen.\n" #: gpst.c:1015 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" "ESP-tunnel konnte nicht verbunden werden; stattdessen wird HTTPS verwendet.\n" #: gpst.c:1051 #, c-format msgid "Packet receive error: %s\n" msgstr "Fehler beim Paketempfang: %s\n" #: gpst.c:1072 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" "Unerwartete Paketlänge. SSL_read gab %d zurück (enthält 16 Header-Bytes), " "aber payload_len des Headers ist %d\n" #: gpst.c:1082 msgid "Got GPST DPD/keepalive response\n" msgstr "GPST-DPD/Keepalive-Anfrage erhalten\n" #: gpst.c:1086 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" "0000000000000000 wurden als letzte 8 Bytes des DPD/Keepalive-Paket-Headers " "erwartet, aber Folgendes erhalten:\n" #: gpst.c:1092 #, c-format msgid "Received data packet of %d bytes\n" msgstr "Datenpaket mit %d Byte empfangen\n" #: gpst.c:1101 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" "0100000000000000 wurden als letzte 8 Bytes des Datenpaket-Headers erwartet, " "aber Folgendes erhalten:\n" #: gpst.c:1109 msgid "Unknown packet. Header dump follows:\n" msgstr "Unbekanntes Paket. Header-Dump wie folgt:\n" #: gpst.c:1157 msgid "GlobalProtect rekey due\n" msgstr "Erneuter GlobalProtect-Schlüsselaustausch fällig\n" #: gpst.c:1162 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "GPST Dead Peer Detection erkannte nicht reagierende Gegenstelle!\n" #: gpst.c:1182 msgid "Send GPST DPD/keepalive request\n" msgstr "GPST-DPD/Keepalive-Anfrage senden\n" #: gpst.c:1202 #, c-format msgid "Sending data packet of %d bytes\n" msgstr "Datenpaket mit %d Byte wird gesendet\n" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Fehler beim Importieren des GSSAPI-Namens zur Legitimierung:\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "Fehler beim Erstellen der GSSAPI-Antwort:\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "Versuch der GSSAPI-Legitimierung zum Proxy\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "Versuch der GSSAPI-Legitimierung am Server »%s«\n" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "GSSAPI-Authentifizierung abgeschlossen\n" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "GSSAPI-Token zu groß (%zd Byte)\n" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "GSSAPI-Token von %zu Byte wird gesendet\n" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "Senden des GSSAPI-Legitimierungs-Token an Proxy fehlgeschlagen: %s\n" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" "Empfangen des GSSAPI-Legitimierungs-Token von Proxy fehlgeschlagen: %s\n" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "SOCKS-Server meldete GSSAPI-Kontext ist fehlgeschlagen\n" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "Unbekannte GSSAPI-Statusantwort (0x%02x) von SOCKS-Server\n" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "GSSAPI-Token von %zu Byte erhalten: %02x %02x %02x %02x\n" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "GSSAPI-Schutzaushandlung von %zu Byte wird gesendet\n" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "Senden der GSSAPI-Schutzaushandlung an Proxy fehlgeschlagen: %s\n" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "Erhalten der GSSAPI-Schutzaushandlung von Proxy fehlgeschlagen: %s\n" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "GSSAPI-Schutzantwort von %zu Byte erhalten: %02x %02x %02x %02x\n" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "Ungültige GSSAPI-Schutzantwort von Proxy (%zu Byte)\n" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" "Der SOCKS-Proxy verlangt Nachrichtenintegrität, was aber nicht unterstützt " "wird\n" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" "Der SOCKS-Proxy verlangt Nachrichtenvertraulichkeit, was aber nicht " "unterstützt wird\n" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "Der SOCKS-Proxy verlangt zum Schutz den unbekannten Typ 0x%02x\n" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "Grundlegende HTTP-Legitimierung zum Proxy wird versucht\n" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "Grundlegende HTTP-Legitimierung am Server »%s« wird versucht\n" #: http-auth.c:200 http.c:1165 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" "Diese Version von OpenConnect wurde ohne Unterstützung für GSSAPI erstellt\n" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" "Der Proxy verlangte nach Basislegitimierung, die standardmäßig deaktiviert " "ist\n" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" "Der Server »%s« verlangte nach Basislegitimierung, die standardmäßig " "deaktiviert ist\n" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "Keine weiteren möglichen Legitimierungsmethoden\n" #: http.c:319 msgid "No memory for allocating cookies\n" msgstr "Kein Speicher zum Reservieren für Cookies\n" #: http.c:394 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Verarbeitung der HTTP-Antwort »%s« ist gescheitert\n" #: http.c:400 #, c-format msgid "Got HTTP response: %s\n" msgstr "HTTP-Antwort erhalten: %s\n" #: http.c:408 msgid "Error processing HTTP response\n" msgstr "Fehler beim Verarbeitung der HTTP-Antwort\n" #: http.c:415 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Unbekannte Zeile »%s« in HTTP-Antwort wird ignoriert\n" #: http.c:435 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Ungültiger Cookie angeboten: %s\n" #: http.c:454 msgid "SSL certificate authentication failed\n" msgstr "Prüfung des SSL-Zertifikats ist gescheitert\n" #: http.c:485 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Textkörper der Antwort hat negative Größe (%d)\n" #: http.c:496 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Unbekannte Zeichensatzkodierung: %s\n" #. Now the body, if there is one #: http.c:515 #, c-format msgid "HTTP body %s (%d)\n" msgstr "HTTP-Nachrichtenrumpf: %s (%d)\n" #: http.c:529 http.c:556 msgid "Error reading HTTP response body\n" msgstr "Fehler beim Lesen des Textkörpers der HTTP-Antwort\n" #: http.c:542 msgid "Error fetching chunk header\n" msgstr "Fehler beim Holen des gestückelten Headers\n" #: http.c:566 msgid "Error fetching HTTP response body\n" msgstr "Fehler beim Holen des Textkörpers der HTTP-Antwort\n" #: http.c:569 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "Fehler beim gestückelten Entschlüsseln. »« erwartet, »%s« bekommen" #: http.c:581 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "" "HTTP 1.0-Rumpf kann nicht ohne Schließen der Verbindung empfangen werden\n" #: http.c:708 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Verarbeiten der Umleitungsadresse »%s« schlug fehl: %s\n" #: http.c:732 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Folgen der Umleitung zu nicht-https-Adresse »%s« ist nicht möglich\n" #: http.c:760 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Anfordern eines neuen Pfades für relative Umleitung schlug fehl: %s\n" #: http.c:973 oncp.c:591 #, c-format msgid "Unexpected %d result from server\n" msgstr "Unerwartetes %d-Ergebnis vom Server\n" #: http.c:1021 msgid "request granted" msgstr "Anforderung stattgegeben" #: http.c:1022 msgid "general failure" msgstr "Allgemeiner Fehler" #: http.c:1023 msgid "connection not allowed by ruleset" msgstr "Verbindung ist aufgrund des Regelwerks nicht erlaubt" #: http.c:1024 msgid "network unreachable" msgstr "Das Netzwerk ist nicht erreichbar" #: http.c:1025 msgid "host unreachable" msgstr "Rechner ist nicht erreichbar" #: http.c:1026 msgid "connection refused by destination host" msgstr "Verbindung wird vom Zielrechner verweigert" #: http.c:1027 msgid "TTL expired" msgstr "TTL abgelaufen" #: http.c:1028 msgid "command not supported / protocol error" msgstr "Befehl nicht unterstützt / Protokollfehler" #: http.c:1029 msgid "address type not supported" msgstr "Der Adresstyp wird nicht unterstützt" #: http.c:1039 msgid "SOCKS server requested username/password but we have none\n" msgstr "" "SOCKS-Server verlangte Benutzername/Passwort. Beides ist aber nicht " "vorhanden.\n" #: http.c:1047 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" "Benutzername und Password müssen für SOCKS-Legitimierung < 255 Byte sein\n" #: http.c:1062 http.c:1118 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Fehler beim Schreiben der auth-Anforderung an SOCKS-Proxy: %s\n" #: http.c:1070 http.c:1125 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Fehler beim Lesen der auth-Anforderung von SOCKS-Proxy: %s\n" #: http.c:1077 http.c:1131 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "UNerwartete auth-Antwort von SOCKS-Proxy: %02x %02x\n" #: http.c:1083 msgid "Authenticated to SOCKS server using password\n" msgstr "Bei SOCKS-Server mit Passwort legitimiert\n" #: http.c:1087 msgid "Password authentication to SOCKS server failed\n" msgstr "Passwort-Legitimierung mit SOCKS-Server fehlgeschlagen\n" #: http.c:1143 http.c:1150 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "SOCKS-Server verlangte GSSAPI-Legitimierung\n" #: http.c:1156 msgid "SOCKS server requested password authentication\n" msgstr "SOCKS-Server verlangte Passwort-Legitimierung\n" #: http.c:1163 msgid "SOCKS server requires authentication\n" msgstr "SOCKS-Server benötigt Legitimierung\n" #: http.c:1170 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "SOCKS-Server forderte unbekannte Legitimierungsmethode %02x an\n" #: http.c:1176 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Anfordern von SOCKS Proxy-Verbindung zu %s:%d\n" #: http.c:1191 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Fehler beim Schreiben der Verbindungsanforderung an SOCKS-Proxy: %s\n" #: http.c:1199 http.c:1241 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Fehler beim Lesen der Verbindungsantwort von SOCKS-Proxy: %s\n" #: http.c:1205 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Unerwartete Verbindungsantwort vom SOCKS-Proxy: %02x %02x...\n" #: http.c:1213 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "SOCKS Proxy-Fehler %02x: %s\n" #: http.c:1217 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "SOCKS Proxy-Fehler %02x\n" #: http.c:1234 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Unerwarteter Adresstyp %02x in SOCKS-Verbindungsantwort\n" #: http.c:1257 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Anfordern von HTTP Proxy-Verbindung zu %s:%d\n" #: http.c:1292 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Senden der Proxy-Anfrage ist gescheitert: %s\n" #: http.c:1315 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "Proxy-CONNECT-Anfrage ist gescheitert: %d\n" #: http.c:1334 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Unbekannter Proxy-Typ »%s«\n" #: http.c:1383 msgid "Only http or socks(5) proxies supported\n" msgstr "Es werden nur http- oder socks(5)-Proxies unterstützt\n" #: library.c:112 msgid "Cisco AnyConnect or openconnect" msgstr "Cisco AnyConnect oder Openconnect" #: library.c:113 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "Kompatibel zu Cisco AnyConnect SSL VPN und auch ocserv" #: library.c:129 msgid "Juniper Network Connect" msgstr "Juniper-Netzwerkverbindung" #: library.c:130 msgid "Compatible with Juniper Network Connect / Pulse Secure SSL VPN" msgstr "Kompatibel mit Juniper-Netzwerkverbindung / Pulse Secure SSL VPN" #: library.c:148 msgid "Palo Alto Networks GlobalProtect" msgstr "Palo Alto Networks GlobalProtect" #: library.c:149 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "Kompatibel zu Palo Alto Networks (PAN) GlobalProtect SSL VPN" #: library.c:211 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "Unbekanntes VPN-Protokoll »%s«\n" #: library.c:233 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Mit einer SSL-Bibliothek ohne Cisco DTLS-Unterstützung erstellt\n" #: library.c:656 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Verarbeiten der Serveradresse »%s« schlug fehl\n" #: library.c:662 msgid "Only https:// permitted for server URL\n" msgstr "Nur https:// erlaubt für Server-Adresse\n" #: library.c:1056 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "Ungültige Prüfsumme des Zertifikats: %s.\n" #: library.c:1085 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" "Der bereitgestellte Fingerabdruck ist kleiner als die minimal erforderliche " "Größe (%u).\n" #: library.c:1146 msgid "No form handler; cannot authenticate.\n" msgstr "" "Verarbeitung des Formulars nicht möglich, Legitimierung kann nicht " "ausgeführt werden.\n" #: main.c:340 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "CommandLineToArgvW() schlug fehl: %s\n" #: main.c:353 #, c-format msgid "Fatal error in command line handling\n" msgstr "Schwerwiegender Fehler in der Abarbeitung der Befehlszeile\n" #: main.c:388 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "ReadConsole() schlug fehl: %s\n" #: main.c:401 #, c-format msgid "fgetws() failed: %s\n" msgstr "fgetws() ist fehlgeschlagen: %s\n" #: main.c:416 main.c:429 #, c-format msgid "Error converting console input: %s\n" msgstr "Fehler beim Umwandeln der Konsoleneingabe: %s\n" #: main.c:423 main.c:689 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Zuweisungsfehler für Zeichenkette aus der Standardeingabe\n" #: main.c:584 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" "Bitte lesen Sie für Hilfe zu OpenConnect die Webseite\n" " http://www.infradead.org/openconnect/mail.html\n" #: main.c:593 #, c-format msgid "Using OpenSSL. Features present:" msgstr "OpenSSL wird verwendet. Vorhandene Funktionsmerkmale:" #: main.c:595 #, c-format msgid "Using GnuTLS. Features present:" msgstr "GnuTLS wird verwendet. Vorhandene Funktionsmerkmale:" #: main.c:608 msgid "OpenSSL ENGINE not present" msgstr "OpenSSL-ENGINE nicht vorhanden" #: main.c:647 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" "WARNUNG: Keine DTLS- und/oder ESP-Unterstützung verfügbar. Die Leistung wird " "dadurch beeinträchtigt.\n" #: main.c:657 #, c-format msgid "Supported protocols:" msgstr "Unterstützte Protokolle:" #: main.c:659 main.c:675 msgid " (default)" msgstr " (Vorgabe)" #: main.c:672 msgid "Set VPN protocol" msgstr "VPN-Protokoll festlegen" #: main.c:713 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:754 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Kann ausführbaren Pfad »%s« nicht verarbeiten" #: main.c:760 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "Anfordern des vpnc-script-Pfad schlug fehl\n" #: main.c:780 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "Hostname von »%s« in »%s« ändern\n" #: main.c:793 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Aufruf: openconnect [Optionen] \n" #: main.c:794 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" "Open client für mehrere VPN-Protokolle, Version %s\n" "\n" #: main.c:796 msgid "Read options from config file" msgstr "Optionen aus Konfigurationsdatei lesen" #: main.c:797 msgid "Report version number" msgstr "Versionsnummer ausgeben" #: main.c:798 msgid "Display help text" msgstr "Hilfetext zeigen" #: main.c:802 msgid "Authentication" msgstr "Legitimierung" #: main.c:803 msgid "Set login username" msgstr "Benutzername für die Anmeldung festlegen" #: main.c:804 msgid "Disable password/SecurID authentication" msgstr "Legitimierung mit Passwort/SecurID ausschalten" #: main.c:805 msgid "Do not expect user input; exit if it is required" msgstr "Keine Benutzereingabe erwarten; abbrechen, falls erforderlich" #: main.c:806 msgid "Read password from standard input" msgstr "Passwort von Standardeingabe lesen" #: main.c:807 msgid "Choose authentication login selection" msgstr "Wählen Sie den Legitimierungs-Anmeldeabschnitt" #: main.c:808 msgid "Provide authentication form responses" msgstr "" #: main.c:809 msgid "Use SSL client certificate CERT" msgstr "SSL Client-Zertifikat CERT verwenden" #: main.c:810 msgid "Use SSL private key file KEY" msgstr "Private SSL-Schlüsseldatei KEY verwenden" #: main.c:811 msgid "Warn when certificate lifetime < DAYS" msgstr "Warnen, wenn die Lebensdauer des Zertifikats unter DAYS liegt" #: main.c:812 msgid "Set login usergroup" msgstr "Benutzergruppe für die Anmeldung festlegen" #: main.c:813 msgid "Set key passphrase or TPM SRK PIN" msgstr "Schlüsselkennwort oder TPM-SRK-PIN setzen" #: main.c:814 msgid "Key passphrase is fsid of file system" msgstr "Schlüsselkennwort ist fsid des Dateisystems" #: main.c:815 msgid "Software token type: rsa, totp or hotp" msgstr "Software Token-Typ: rsa, totp oder hotp" #: main.c:816 msgid "Software token secret" msgstr "Software-Token-Geheimnis" #: main.c:818 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" "(HINWEIS: libstoken (RSA SecurID) wurde bei der Erstellung deaktiviert)" #: main.c:821 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(HINWEIS: Yubikey OATH wurde bei der Erstellung deaktiviert)" #: main.c:824 msgid "Server validation" msgstr "Server-Überprüfung" #: main.c:825 msgid "Server's certificate SHA1 fingerprint" msgstr "SHA1-Fingerabdruck des Serverzertifikats" #: main.c:826 msgid "Do not require server SSL cert to be valid" msgstr "Gültigkeit des SSL-Serverzertifikats nicht voraussetzen" #: main.c:827 msgid "Disable default system certificate authorities" msgstr "Standard-Zertifizierungsstellen des Systems deaktivieren" #: main.c:828 msgid "Cert file for server verification" msgstr "Zertifikatdatei für Server-Überprüfung" #: main.c:830 msgid "Internet connectivity" msgstr "Internetverbindung" #: main.c:831 msgid "Set proxy server" msgstr "Proxy-Server festlegen" #: main.c:832 msgid "Set proxy authentication methods" msgstr "Legitimierungsmethoden für Proxy festlegen" #: main.c:833 msgid "Disable proxy" msgstr "Proxy deaktivieren" #: main.c:834 msgid "Use libproxy to automatically configure proxy" msgstr "libproxy zur automatischen Konfiguration des Proxys verwenden" #: main.c:836 msgid "(NOTE: libproxy disabled in this build)" msgstr "(HINWEIS: libproxy wurde bei der Erstellung deaktiviert)" #: main.c:838 msgid "Connection retry timeout in seconds" msgstr "Wartezeit für erneuten Verbindungsversuch in Sekunden" #: main.c:839 msgid "Use IP when connecting to HOST" msgstr "IP beim Verbinden mit HOST verwenden" #: main.c:840 msgid "copy TOS / TCLASS when using DTLS" msgstr "TOS/TCLASS kopieren, wenn DTLS verwendet wird" #: main.c:841 msgid "Set local port for DTLS and ESP datagrams" msgstr "Lokalen Port für DTLS- und ESP-Datagramme festlegen" #: main.c:843 msgid "Authentication (two-phase)" msgstr "Legitimierung (Zwei-Faktor)" #: main.c:844 msgid "Use authentication cookie COOKIE" msgstr "Legitimierungs-Cookie COOKIE verwenden" #: main.c:845 msgid "Read cookie from standard input" msgstr "Cookie von Standardeingabe lesen" #: main.c:846 msgid "Authenticate only and print login info" msgstr "Nur legitimieren und Anmeldeinformationen ausgeben" #: main.c:847 msgid "Fetch and print cookie only; don't connect" msgstr "Nur Cookie holen und ausgeben, nicht verbinden" #: main.c:848 msgid "Print cookie before connecting" msgstr "Vor dem Verbinden Cookie ausgeben" #: main.c:851 msgid "Process control" msgstr "Prozesssteuerung" #: main.c:852 msgid "Continue in background after startup" msgstr "Nach Start im Hintergrund weiterlaufen" #: main.c:853 msgid "Write the daemon's PID to this file" msgstr "PID des Daemons in diese Datei schreiben" #: main.c:854 msgid "Drop privileges after connecting" msgstr "Privilegien nach Verbinden ablegen" #: main.c:857 msgid "Logging (two-phase)" msgstr "Protokollierung (Zwei-Faktor)" #: main.c:859 msgid "Use syslog for progress messages" msgstr "syslog für Fortschrittsmeldungen verwenden" #: main.c:861 msgid "More output" msgstr "Mehr Ausgabe" #: main.c:862 msgid "Less output" msgstr "Weniger Ausgabe" #: main.c:863 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "HTTP Authentifizierungs-Verkehr abspeichern (impliziert --verbose)" #: main.c:864 msgid "Prepend timestamp to progress messages" msgstr "Zeitstempel der Fortschrittsnachricht voranstellen" #: main.c:866 msgid "VPN configuration script" msgstr "VPN-Konfigurationsskript" #: main.c:867 msgid "Use IFNAME for tunnel interface" msgstr "IFNAME für Tunnel-Schnittstelle verwenden" #: main.c:868 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" "Shell-Befehlszeile für die Verwendung eines vpnc-kompatiblen " "Konfigurationsskripts" #: main.c:869 msgid "default" msgstr "Vorgabe" #: main.c:871 msgid "Pass traffic to 'script' program, not tun" msgstr "Verkehr an »Skript«-Programm weiterleiten, nicht tun" #: main.c:874 msgid "Tunnel control" msgstr "Tunnelsteuerung" #: main.c:875 msgid "Do not ask for IPv6 connectivity" msgstr "IPv6-Verbindung nicht anfordern" #: main.c:876 msgid "XML config file" msgstr "XML-Konfigurationsdatei" #: main.c:877 msgid "Request MTU from server (legacy servers only)" msgstr "MTU vom Server anfordern (nur veraltete Server)" #: main.c:878 msgid "Indicate path MTU to/from server" msgstr "Path MTU vom/zum Server angeben" #: main.c:879 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:880 msgid "Disable all compression" msgstr "" #: main.c:881 msgid "Set minimum Dead Peer Detection interval" msgstr "Minimalintervall zum Erkennen von »Dead Peers« festlegen" #: main.c:882 msgid "Require perfect forward secrecy" msgstr "»perfect forward secrecy« verlangen" #: main.c:883 msgid "Disable DTLS and ESP" msgstr "DTLS und ESP abschalten" #: main.c:884 msgid "OpenSSL ciphers to support for DTLS" msgstr "OpenSSL-Schlüssel zur Unterstützung für DTLS" #: main.c:885 msgid "Set packet queue limit to LEN pkts" msgstr "Warteschlangenbegrenzung auf LEN Pakete setzen" #: main.c:887 msgid "Local system information" msgstr "Lokale Systeminformationen" #: main.c:888 msgid "HTTP header User-Agent: field" msgstr "HTTP-Kopf User-Agent: Feld" #: main.c:889 msgid "Local hostname to advertise to server" msgstr "Lokaler Rechnername, der an den Server gemeldet wird" #: main.c:890 msgid "OS type (linux,linux-64,win,...) to report" msgstr "zu berichtender Typ des Betriebssystems (linux,linux-64,win,...)" #: main.c:891 msgid "reported version string during authentication" msgstr "" #: main.c:892 msgid "default:" msgstr "" #: main.c:895 msgid "Trojan binary (CSD) execution" msgstr "Ausführung des Trojaner-Binarys (CSD)" #: main.c:896 msgid "Drop privileges during trojan execution" msgstr "Privilegien während Trojaner-Ausführung ablegen" #: main.c:897 msgid "Run SCRIPT instead of trojan binary" msgstr "SCRIPT an Stelle der Trojaner-Binärdatei ausführen" #: main.c:900 msgid "Server bugs" msgstr "Serverfehler" #: main.c:901 msgid "Disable HTTP connection re-use" msgstr "Wiederverwendung von HTTP-Verbindungen abschalten" #: main.c:902 msgid "Do not attempt XML POST authentication" msgstr "XML POST-Authentifizierung nicht versuchen" #: main.c:924 #, c-format msgid "Failed to allocate string\n" msgstr "Anfordern der Zeichnkette ist fehlgeschlagen\n" #: main.c:997 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Zeile aus der Konfigurationsdatei konnte nicht geholt werden: %s\n" #: main.c:1037 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Unbekannte Option in Zeile %d: »%s«\n" #: main.c:1047 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Option »%s« akzeptiert kein Argument in Zeile %d\n" #: main.c:1051 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Option »%s« erfordert ein Argument in Zeile %d\n" #: main.c:1076 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "Ungültiger Benutzer »%s«: %s\n" #: main.c:1086 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "Ungültiger Benutzer »%d«: %s\n" #: main.c:1130 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "WARNUNG: Spracheinstellung kann nicht gesetzt werden: %s\n" #: main.c:1140 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "WARNUNG: Diese Version von »openconnect« wurde ohne »iconv«-Unterstützung " "erstellt. Sie verwenden anscheinend den veralteten Zeichensatz »%s«. " "Erwarten Sie seltsames Verhalten.\n" #: main.c:1147 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "WARNUNG: Dies ist Version %s von openconnect, aber\n" " die Bibliothek libopenconnect ist %s\n" #: main.c:1157 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Zuweisen der vpninfo-Struktur ist fehlgeschlagen\n" #: main.c:1215 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" "Option »config« darf nicht in einer Konfigurationsdatei verwendet werden\n" #: main.c:1223 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Konfigurationsdatei »%s« kann nicht geöffnet werden: %s\n" #: main.c:1239 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "Ungültiger Kompressionsmodus »%s«\n" #: main.c:1260 #, c-format msgid "Missing colon in resolve option\n" msgstr "Fehlender Doppelpunkt in Auflöse-Option\n" #: main.c:1265 #, c-format msgid "Failed to allocate memory\n" msgstr "Speicher konnte nicht reserviert werden\n" #: main.c:1349 main.c:1358 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d ist zu klein\n" #: main.c:1388 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Wiederverwendung jeglicher HTTP-Verbindungen wird wegen der Option »--no-" "http-keepalive« abgeschaltet.\n" "Falls dies hilft, so berichten Sie bitte davon auf .\n" #: main.c:1394 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" "Die Option --no-cert-check wurde als unsicher eingestuft und entfernt.\n" "Reparieren Sie das Zertifikat Ihres Servers oder verwenden Sie\n" "--servercert, um ihm zu vertrauen.\n" #: main.c:1411 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Warteschlangenlänge Null ist nicht erlaubt. 1 wird verwendet\n" #: main.c:1425 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect Version %s\n" #: main.c:1463 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Ungültiger Software-Token-Modus »%s«\n" #: main.c:1473 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "Ungültige Betriebssystemidentität »%s«\n" #: main.c:1506 #, c-format msgid "Too many arguments on command line\n" msgstr "Zu viele Argumente auf der Befehlszeile\n" #: main.c:1509 #, c-format msgid "No server specified\n" msgstr "Kein Server angegeben\n" #: main.c:1525 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" "Diese Version von openconnect wurde ohne Unterstützung für libproxy " "erstellt\n" #: main.c:1555 #, c-format msgid "Error opening cmd pipe\n" msgstr "Fehler beim Öffnen der cmd-Weiterleitung\n" #: main.c:1588 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "Erlangen eines WebVPN-Cookie schlug fehl\n" #: main.c:1609 #, c-format msgid "Creating SSL connection failed\n" msgstr "Erstellen einer SSL-Verbindung schlug fehl\n" #: main.c:1625 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:1633 #, c-format msgid "Connected as %s%s%s, using SSL%s%s, with %s%s%s %s\n" msgstr "" #: main.c:1639 msgid "disabled" msgstr "" #: main.c:1639 msgid "in progress" msgstr "" #: main.c:1643 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "Kein »--script«-Argument angegeben, DNS und Routing sind nicht konfiguriert\n" #: main.c:1645 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Siehe http://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:1658 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Öffnen von »%s« zum Schreiben schlug fehl: %s\n" #: main.c:1670 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Fortsetzung im Hintergrund; pid %d\n" #: main.c:1687 msgid "User requested reconnect\n" msgstr "Benutzer forderte eine Neuverbindung an\n" #: main.c:1695 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "Cookie wurde bei Wiederverbindung abgelehnt; Vorgang wird beendet.\n" #: main.c:1699 msgid "Session terminated by server; exiting.\n" msgstr "Sitzung wurde durch Server beendet. Abbruch.\n" #: main.c:1703 msgid "User cancelled (SIGINT/SIGTERM); exiting.\n" msgstr "" #: main.c:1707 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "Benutzer hat sich aus Sitzung ausgeklinkt (SIGHUP). Abbruch.\n" #: main.c:1711 msgid "Unknown error; exiting.\n" msgstr "Unbekannter Fehler. Abbruch.\n" #: main.c:1730 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Öffnen von %s zum Schreiben schlug fehl: %s\n" #: main.c:1738 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Schreiben der Konfiguration nach %s schlug fehl: %s\n" #: main.c:1797 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "SSL-Zertifikat des Servers passt nicht: %s\n" #: main.c:1816 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Gültigkeit des Zertifikats des VPN-Servers »%s« konnte nicht bestätigt " "werden.\n" "Grund: %s\n" #: main.c:1819 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" "Um in Zukunft diesem Server zu vertrauen, sollten Sie Folgendes\n" "zu Ihrer Befehlszeile hinzufügen:\n" #: main.c:1820 #, c-format msgid " --servercert %s\n" msgstr " --servercert %s\n" #: main.c:1825 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Geben Sie »%s« zum Akzeptieren ein, oder »%s« zum Abbrechen. Alles andere, " "um Folgendes anzusehen: " #: main.c:1826 main.c:1844 msgid "no" msgstr "nein" #: main.c:1826 main.c:1832 msgid "yes" msgstr "ja" #: main.c:1853 #, c-format msgid "Server key hash: %s\n" msgstr "Serverschlüssel-Streuwert: %s\n" #: main.c:1887 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Legitimierungsmöglichkeit »%s« passt zu mehreren Optionen\n" #: main.c:1890 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Legitimierungsmöglichkeit »%s« ist nicht verfügbar\n" #: main.c:1911 msgid "User input required in non-interactive mode\n" msgstr "Benutzereingabe im nicht-interaktiven Modus erforderlich\n" #: main.c:2149 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Öffnen der Token-Datei zum Schreiben schlug fehl: %s\n" #: main.c:2157 #, c-format msgid "Failed to write token: %s\n" msgstr "Schreiben des Tokens schlug fehl: %s\n" #: main.c:2203 main.c:2224 #, c-format msgid "Soft token string is invalid\n" msgstr "Zeichenkette für Soft-Token ist ungültig\n" #: main.c:2206 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "~/.stokenrc kann nicht geöffnet werden\n" #: main.c:2209 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "OpenConnect wurde ohne Unterstützung für libstoken erstellt\n" #: main.c:2212 #, c-format msgid "General failure in libstoken\n" msgstr "Allgemeiner Fehler in libstoken\n" #: main.c:2227 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "OpenConnect wurde ohne Unterstützung für liboath erstellt\n" #: main.c:2230 #, c-format msgid "General failure in liboath\n" msgstr "Allgemeiner Fehler in liboath\n" #: main.c:2241 #, c-format msgid "Yubikey token not found\n" msgstr "Yubikey-Token nicht gefunden\n" #: main.c:2244 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "OpenConnect wurde ohne Unterstützung für Yubikey erstellt\n" #: main.c:2247 #, c-format msgid "General Yubikey failure: %s\n" msgstr "Allgemeiner Fehler in Yubikey: %s\n" #: mainloop.c:127 #, c-format msgid "Set up tun script failed\n" msgstr "Einrichten des tun-Skripts schlug fehl\n" #: mainloop.c:134 #, c-format msgid "Set up tun device failed\n" msgstr "Einrichten des tun-Geräts schlug fehl\n" #: mainloop.c:265 msgid "Caller paused the connection\n" msgstr "Aufrufer hat die Sitzung angehalten\n" #: mainloop.c:273 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Es gibt nichts zu tun. Schlafen für %d ms …\n" #: mainloop.c:294 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "WaitForMultipleObjects schlug fehl: %s\n" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "InitializeSecurityContext() schlug fehl: %lx\n" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "AcquireCredentialsHandle() schlug fehl: %lx\n" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "Fehler bei der Kommunikation mit »ntlm_auth helper«\n" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "Versuche HTTP-NTLM-Legitimierung am Proxy (Einmalanmeldung)\n" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" "HTTP-NTLM-Legitimierung am Server »%s« wird versucht (Einmalanmeldung)\n" #: ntlm.c:978 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "HTTP NTLMv%d-Legitimierung zum Proxy wird versucht\n" #: ntlm.c:982 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "HTTP-NTLMv%d-Legitimierung am Server »%s« wird versucht\n" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "Ungültiger base32-Token-Zeichenkette\n" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" "Anfordern von Speicher für Dekodierung des OATH-Geheimnisses schlug fehl\n" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" "Diese Version von OpenConnect wurde ohne Unterstützung für PSKC erstellt\n" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "OK zum Erzeugen des ANFÄNGLICHEN Tokencodes\n" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "OK zum Erzeugen des NÄCHSTEN Tokencodes\n" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" "Server hat den Soft-Token abgewiesen, es wird zur manuellen Eingabe " "gewechselt\n" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "OATH TOTP Token-Code wird erzeugt\n" #: oath.c:565 msgid "Generating OATH HOTP token code\n" msgstr "OATH HOTP Token-Code wird erzeugt\n" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "Ungültiger »%s«\n" #: oncp.c:160 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "Unerwartete Länge %d für TLV %d/%d\n" #: oncp.c:166 #, c-format msgid "Received MTU %d from server\n" msgstr "MTU %d vom Server erhalten\n" #: oncp.c:175 #, c-format msgid "Received DNS server %s\n" msgstr "DNS-Server %s empfangen\n" #: oncp.c:186 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "DNS-Suchdomain %.*s empfangen\n" #: oncp.c:201 #, c-format msgid "Received internal IP address %s\n" msgstr "Interne IP-Adresse %s empfangen\n" #: oncp.c:210 #, c-format msgid "Received netmask %s\n" msgstr "Netzmaske %s empfangen\n" #: oncp.c:219 #, c-format msgid "Received internal gateway address %s\n" msgstr "Interne Gateway-Adresse %s empfangen\n" #: oncp.c:232 #, c-format msgid "Received split include route %s\n" msgstr "»Split include«-Route %s wurde empfangen\n" #: oncp.c:254 #, c-format msgid "Received split exclude route %s\n" msgstr "»Split exclude«-Route %s wurde empfangen\n" #: oncp.c:274 #, c-format msgid "Received WINS server %s\n" msgstr "WINS-Server %s empfangen\n" #: oncp.c:297 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "ESP-Verschlüsselung: 0x%02x (%s)\n" #: oncp.c:316 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "ESP-HMAC: 0x%02x (%s)\n" #: oncp.c:327 #, c-format msgid "ESP compression: %d\n" msgstr "ESP-Kompression: %d\n" #: oncp.c:335 #, c-format msgid "ESP port: %d\n" msgstr "ESP-Port: %d\n" #: oncp.c:342 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "ESP-Schlüssel-Lebensdauer: %u bytes\n" #: oncp.c:350 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "ESP-Schlüssel-Lebensdauer: %u Sekunden\n" #: oncp.c:358 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "ESP-zu-SSL-Ausweichen: %u Sekunden\n" #: oncp.c:366 #, c-format msgid "ESP replay protection: %d\n" msgstr "Schutz vor erneutem Einspielen für ESP: %d\n" #: oncp.c:374 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "ESP-SPI (ausgehend): %x\n" #: oncp.c:383 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "%d Byte ESP-Geheimnisse\n" #: oncp.c:395 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "Unbekannter TLV, Gruppe %d, Attribut %d, Länge %d:%s\n" #: oncp.c:473 msgid "Failed to parse KMP header\n" msgstr "Verarbeitung des KMP-Headers ist gescheitert\n" #: oncp.c:490 msgid "Failed to parse KMP message\n" msgstr "Verarbeitung der KMP-Meldung ist gescheitert\n" #: oncp.c:496 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "KMP-Meldung %d der Größe %d erhalten\n" #: oncp.c:512 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "Nicht-ESP TLV (Gruppe %d) in ESP-Aushandlung KMP erhalten\n" #: oncp.c:577 oncp.c:609 oncp.c:747 msgid "Error creating oNCP negotiation request\n" msgstr "Fehler bei der Erstellung der oNCP-Verhandlungsanfrage\n" #: oncp.c:618 oncp.c:783 msgid "Short write in oNCP negotiation\n" msgstr "Kurzer Schreibvorgang in oNCP-Verhandlung\n" #: oncp.c:631 oncp.c:666 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "%d des SSL-Datensatzes gelesen\n" #: oncp.c:636 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "Unerwartete Antwort der Größe %d nach Rechnername-Paket\n" #: oncp.c:643 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "Serverantwort auf das Rechnername-Paket ist Fehlercode 0x%02x\n" #: oncp.c:670 msgid "Invalid packet waiting for KMP 301\n" msgstr "Ungültiges Paket wartet auf KMP 301\n" #: oncp.c:683 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "KMP-Meldung 301 vom Server erwartet, aber %d erhalten\n" #: oncp.c:692 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "KMP-Meldung 301 vom Server ist zu groß (%d Byte)\n" #: oncp.c:698 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "KMP-Meldung 301 der Länge %d erhalten\n" #: oncp.c:705 msgid "Failed to read continuation record length\n" msgstr "" "Länge des Folgedatensatzes konnte nicht gelesen werden\n" "\n" #: oncp.c:711 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "Aufnahme zusätzlicher %d Bytes ist zu groß; das Ergebnis wäre %d\n" #: oncp.c:720 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "Folgedatensatz der Länge %d konnte nicht gelesen werden\n" #: oncp.c:726 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "Weitere %d Byte einer KMP-301-Nachricht gelesen\n" #: oncp.c:767 msgid "Error negotiating ESP keys\n" msgstr "Fehler beim Aushandeln der ESP-Schlüssel:\n" #: oncp.c:776 msgid "oNCP negotiation request outgoing:\n" msgstr "Ausgehende oNCP-Verhandlungsanfrage:\n" #: oncp.c:829 msgid "new incoming" msgstr "neu ankommend" #: oncp.c:830 msgid "new outgoing" msgstr "neu abgehend" #: oncp.c:855 msgid "Read only 1 byte of oNCP length field\n" msgstr "Nur 1 Byte des oNCP-Längenfelds gelesen\n" #: oncp.c:864 msgid "Server terminated connection (session expired)\n" msgstr "Server hat die Verbindung abgebrochen (Sitzung abgelaufen)\n" #: oncp.c:868 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "Server hat die Verbindung abgebrochen (Grund: %d)\n" #: oncp.c:874 msgid "Server sent zero-length oNCP record\n" msgstr "Server sendete oNCP-Datensatz der Länge Null\n" #: oncp.c:969 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "Ankommende KMP-Meldung %d der Größe %d (%d erhalten)\n" #: oncp.c:972 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" "Verarbeitung der KMP-Nachricht %d wird fortgesetzt. Größe jetzt %d (erhielt " "%d)\n" #: oncp.c:991 msgid "Unrecognised data packet\n" msgstr "Nicht erkanntes Datenpaket\n" #: oncp.c:1053 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "Unbekannte KMP-Meldung %d der Größe %d:\n" #: oncp.c:1058 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr ".... + %d weitere Bytes nicht empfangen\n" #: oncp.c:1073 msgid "Packet outgoing:\n" msgstr "Paket ausgehend:\n" #: oncp.c:1134 msgid "Sent ESP enable control packet\n" msgstr "Steuerpaket zur ESP-Aktivierung wurde gesendet\n" #: oncp.c:1268 msgid "Logout successful.\n" msgstr "Abmelden war erfolgreich.\n" #: openconnect-internal.h:1119 openconnect-internal.h:1127 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "FEHLER: %s() aufgerufen mit ungültigem UTF-8 für das Argument »%s«\n" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "DTLS-Overhead für %s konnte nicht ermittelt werden\n" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "Erzeugung der SSL_SESSION-ASN.1 für OpenSSL ist fehlgeschlagen: %s\n" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "OpenSSL scheiterte beim Auswerten von SSL_SESSION ASN.1\n" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "Initialisierung der DTLSv1-Sitzung gescheitert\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "PSK-Callback\n" #: openssl-dtls.c:365 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Initialisierung der DTLSv1-CTX gescheitert\n" #: openssl-dtls.c:378 msgid "Set DTLS CTX version failed\n" msgstr "Festlegen der DTLS-CTX-Version ist fehlgeschlagen\n" #: openssl-dtls.c:395 msgid "Failed to generate DTLS key\n" msgstr "Erzeugen des DTLS-Schlüssels fehlgeschlagen: %s\n" #: openssl-dtls.c:413 msgid "Set DTLS cipher list failed\n" msgstr "Festlegen der DTLS-Chiffrierliste schlug fehl\n" #: openssl-dtls.c:439 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:460 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "SSL_set_session() gescheitert mit alter Protokollversion 0x%x\n" "Verwenden Sie eine ältere OpenSSL-Version als 0.9.8m?\n" "Siehe http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Verwenden Sie die Befehlszeilenoption --no-dtls\n" "um diese Meldung zu unterdrücken\n" #: openssl-dtls.c:493 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:566 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "DTLS-Verbindung aufgebaut (mit OpenSSL). Schiffrierwerk %s.\n" #: openssl-dtls.c:603 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" "Ihre OpenSSL-Version ist älter als jene, gegen die gebaut wurde, daher wird " "DTLS scheitern!" #: openssl-dtls.c:654 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Dies ist vermutlich, weil Ihr OpenSSL defekt ist\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: openssl-dtls.c:661 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "DTLS-Handshake schlug fehl: %d\n" #: openssl-esp.c:87 msgid "Failed to initialise ESP cipher:\n" msgstr "Initialisieren des ESP-Schlüssels schlug fehl:\n" #: openssl-esp.c:101 msgid "Failed to initialize ESP HMAC\n" msgstr "Initialisieren der ESP-HMAC schlug fehl\n" #: openssl-esp.c:157 msgid "Failed to generate random keys for ESP:\n" msgstr "Zufallsschlüssel für ESP konnten nicht erzeugt werden:\n" #: openssl-esp.c:202 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" "Entschlüsselungskontext für ESP-Paket konnte nicht eingerichtet werden:\n" #: openssl-esp.c:210 msgid "Failed to decrypt ESP packet:\n" msgstr "Die Entschlüsselung des ESP-Pakets scheiterte:\n" #: openssl-esp.c:241 msgid "Failed to encrypt ESP packet:\n" msgstr "Die Verschlüsselung des ESP-Pakets scheiterte:\n" #: openssl-pkcs11.c:43 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "Erstellung des libp11 PKCS#11-Kontexts ist fehlgeschlagen:\n" #: openssl-pkcs11.c:49 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "Laden des PKCS#11-Provider-Moduls scheiterte (%s):\n" #: openssl-pkcs11.c:269 msgid "PIN locked\n" msgstr "PIN ist gesperrt\n" #: openssl-pkcs11.c:272 msgid "PIN expired\n" msgstr "PIN abgelaufen\n" #: openssl-pkcs11.c:275 msgid "Another user already logged in\n" msgstr "Ein anderer Benutzer ist bereits angemeldet\n" #: openssl-pkcs11.c:279 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "Unbekannter Fehler beim Anmelden am PKCS#11-Token\n" #: openssl-pkcs11.c:286 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "Angemeldet am PKCS#11-Slot »%s«\n" #: openssl-pkcs11.c:300 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" "Nummerieren der Zertifikate in PKCS#11 Position »%s« ist fehlgeschlagen\n" #: openssl-pkcs11.c:306 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "%d Zertifikate in Slot »%s« gefunden\n" #: openssl-pkcs11.c:342 openssl-pkcs11.c:565 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "PKCS#11-URI »%s« kann nicht ausgewertet werden\n" #: openssl-pkcs11.c:349 openssl-pkcs11.c:575 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "Nummerieren der PKCS#11-Positionen ist fehlgeschlagen\n" #: openssl-pkcs11.c:383 openssl-pkcs11.c:617 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "Anmelden am PKCS#11-Slot »%s«\n" #: openssl-pkcs11.c:393 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "PKCS#11-Zertifikat »%s« konnte nicht gefunden werden\n" #: openssl-pkcs11.c:401 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "Inhalt des X.509-Zertifikats nicht von libp11 geholt\n" #: openssl-pkcs11.c:412 openssl.c:713 msgid "Failed to install certificate in OpenSSL context\n" msgstr "Fehler beim Installieren des Zertifikats im OpenSSL-Kontext\n" #: openssl-pkcs11.c:458 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" "Nummerieren der Schlüssel in PKCS#11 Position »%s« ist fehlgeschlagen\n" #: openssl-pkcs11.c:464 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "%d Schlüssel in Slot »%s« gefunden\n" #: openssl-pkcs11.c:497 msgid "Certificate has no public key\n" msgstr "Zertifikat hat keinen öffentlichen Schlüssel\n" #: openssl-pkcs11.c:503 openssl-pkcs11.c:526 msgid "Certificate does not match private key\n" msgstr "Zertifikat passt nicht zum geheimen Schlüssel\n" #: openssl-pkcs11.c:506 msgid "Checking EC key matches cert\n" msgstr "Überprüfung, ob EC-Schlüssel zum Zertifikat passt\n" #: openssl-pkcs11.c:510 msgid "Failed to allocate signature buffer\n" msgstr "Signaturpuffer konnte nicht zugewiesen werden\n" #: openssl-pkcs11.c:520 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" "Testdaten zum Überprüfen des EC-Schlüssels konnten nicht signiert werden\n" #: openssl-pkcs11.c:638 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "PKCS#11-Schlüssel »%s« konnte nicht gefunden werden\n" #: openssl-pkcs11.c:649 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "Realisieren der Schlüssel aus PKCS#11 ist fehlgeschlagen\n" #: openssl-pkcs11.c:678 msgid "Add key from PKCS#11 failed\n" msgstr "Hinzufügen des Schlüssels von PKCS#11 scheiterte\n" #: openssl-pkcs11.c:710 openssl-pkcs11.c:716 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" "Diese Version von OpenConnect wurde ohne Unterstützung für PSKC#11 erstellt\n" #: openssl.c:147 msgid "Failed to write to SSL socket\n" msgstr "Schreiben in SSL-Socket schlug fehl\n" #: openssl.c:197 openssl.c:263 msgid "Failed to read from SSL socket\n" msgstr "Lesen vom SSL-Socket schlug fehl\n" #: openssl.c:292 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" "SSL-Lesefehler %d (Server hat wahrscheinlich die Verbindung geschlossen), " "wird erneut verbunden.\n" #: openssl.c:317 #, c-format msgid "SSL_write failed: %d\n" msgstr "»SSL_write« fehlgeschlagen: %d\n" #: openssl.c:389 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "Unbehandelter SSL-UI-Anfragetyp %d\n" #: openssl.c:465 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "PEM-Passwort ist zu lang (%d >= %d)\n" #: openssl.c:498 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Zusätzliches Zertifikat von %s: »%s«\n" #: openssl.c:548 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Verarbeiten von PKCS#12 ist fehlgeschlagen (siehe obere Fehler)\n" #: openssl.c:563 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS#12 enthält kein Zertifikat!\n" #: openssl.c:572 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS#12 enthält keinen privaten Schlüssel!\n" #: openssl.c:577 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:600 msgid "Can't load TPM engine.\n" msgstr "TPM-Engine kann nicht geladen werden.\n" #: openssl.c:606 msgid "Failed to init TPM engine\n" msgstr "Initialisieren der TPM-Engine fehlgeschlagen\n" #: openssl.c:616 msgid "Failed to set TPM SRK password\n" msgstr "TPM-SRK-Passwort konnte nicht gesetzt werden\n" #: openssl.c:630 msgid "Failed to load TPM private key\n" msgstr "Laden des privaten TPM-Schlüssels scheiterte\n" #: openssl.c:636 msgid "Add key from TPM failed\n" msgstr "Hinzufügen von TPM scheiterte\n" #: openssl.c:687 openssl.c:835 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Öffnen der Zertifikatsdatei %s schlug fehl: %s\n" #: openssl.c:697 msgid "Loading certificate failed\n" msgstr "Laden des Zertifikats ist gescheitert\n" #: openssl.c:735 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" "Verarbeitung aller unterstützten Zertifikate fehlgeschlagen. Es wird " "trotzdem versucht …\n" #: openssl.c:748 msgid "PEM file" msgstr "PEM-Datei" #: openssl.c:777 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Erstellen des BIO für das Schlüsselspeicher-Objekt »%s« schlug fehl\n" #: openssl.c:802 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "" "Laden des privaten Schlüssels ist fehlgeschlagen (falsches Kennwort?)\n" #: openssl.c:808 msgid "Loading private key failed (see above errors)\n" msgstr "" "Laden des geheimen Schlüssels ist gescheitert (siehe vorherige Fehler)\n" #: openssl.c:858 msgid "Failed to load X509 certificate from keystore\n" msgstr "" "Laden des X509-Zertifikats aus dem Schlüsselspeicher ist fehlgeschlagen\n" #: openssl.c:864 msgid "Failed to use X509 certificate from keystore\n" msgstr "" "Verwenden des X509-Zertifikats aus dem Schlüsselspeicher ist fehlgeschlagen\n" #: openssl.c:896 msgid "Failed to use private key from keystore\n" msgstr "" "Verwenden des privaten Schlüssels aus dem Schlüsselspeicher ist " "fehlgeschlagen\n" #: openssl.c:912 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Öffnen der privaten Schlüsseldatei %s schlug fehl: %s\n" #: openssl.c:936 openssl.c:951 openssl.c:972 openssl.c:1038 msgid "Loading private key failed\n" msgstr "Laden des privaten Schlüssels schlug fehl\n" #: openssl.c:1032 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "PKCS#8 konnte nicht in OpenSSL-EVP_PKEY umgewandelt werden\n" #: openssl.c:1049 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Identifizierung des geheimen Schlüsseltyps in »%s« ist gescheitert\n" #: openssl.c:1203 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Übereinstimmung für alternativen DNS-Namen »%s«\n" #: openssl.c:1210 #, c-format msgid "No match for altname '%s'\n" msgstr "Keine Übereinstimmung für alternativen Namen »%s«\n" #: openssl.c:1224 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" "Zertifikat hat den alternativen Namen GEN_IPADD mit unsinniger Länge %d\n" #: openssl.c:1235 openssl.c:1381 #, c-format msgid "Matched %s address '%s'\n" msgstr "Übereinstimmende Adresse %s »%s«\n" #: openssl.c:1242 #, c-format msgid "No match for %s address '%s'\n" msgstr "Keine Übereinstimmung für %s-Adresse »%s«\n" #: openssl.c:1284 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "Adresse »%s« hat einen nicht-leeren Pfad; wird ignoriert\n" #: openssl.c:1289 #, c-format msgid "Matched URI '%s'\n" msgstr "Adresse »%s« stimmt überein\n" #: openssl.c:1300 #, c-format msgid "No match for URI '%s'\n" msgstr "Keine Übereinstimmung für Adresse »%s«\n" #: openssl.c:1315 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" "Kein alternativer Name in Zertifikat des Partners stimmt überein mit »%s«\n" #: openssl.c:1323 msgid "No subject name in peer cert!\n" msgstr "Kein Betreff im Zertifikat des Partners!\n" #: openssl.c:1343 msgid "Failed to parse subject name in peer cert\n" msgstr "Verarbeiten des Betreffs im Zertifikat des Partners schlug fehl\n" #: openssl.c:1350 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "" "Betreff des Zertifikats des Partners stimmt nicht überein (»%s« != »%s«)\n" #: openssl.c:1355 openssl.c:1389 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Betreff »%s« des Zertifikats des Partners stimmt überein\n" #: openssl.c:1451 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Zusätzliches Zertifikat von CA-Datei: »%s«\n" #: openssl.c:1589 msgid "Error in client cert notAfter field\n" msgstr "Fehler im Feld »notAfter« des Client-Zertifikats\n" #: openssl.c:1602 msgid "" msgstr "" #: openssl.c:1655 msgid "Create TLSv1 CTX failed\n" msgstr "Erstellen von TLSv1 CTX fehlgeschlagen\n" #: openssl.c:1674 msgid "SSL certificate and key do not match\n" msgstr "SSL-Zertifikat und -Schlüssel passen nicht zusammen\n" #: openssl.c:1719 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Lesen von Zertifikaten aus der CA-Datei »%s« ist fehlgeschlagen\n" #: openssl.c:1752 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Öffnen der CA-Datei »%s« fehlgeschlagen\n" #: openssl.c:1812 msgid "SSL connection failure\n" msgstr "SSL-Verbindung fehlgeschlagen\n" #: openssl.c:1973 msgid "Failed to calculate OATH HMAC\n" msgstr "OATH-HMAC konnte nicht errechnet werden\n" #: script.c:130 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Entfernen des schlechten »split include«: »%s«\n" #: script.c:134 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Entfernen des schlechten »split exclude«: »%s«\n" #: script.c:507 script.c:555 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Erzeugen des Skripts »%s« für »%s« ist gescheitert: %s\n" #: script.c:562 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "Skript »%s« wurde außerplanmäßig abgebrochen (%x)\n" #: script.c:570 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Skript »%s« gab Fehler %d zurück\n" #: ssl.c:108 msgid "Socket connect cancelled\n" msgstr "Socket-Verbindung abgebrochen\n" #: ssl.c:217 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "Neuverbindung zum Proxy %s ist gescheitert: %s\n" #: ssl.c:221 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "Neuverbindung zum Rechner %s ist gescheitert: %s\n" #: ssl.c:289 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Proxy von libproxy: %s://%s:%d/\n" #: ssl.c:317 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "getaddrinfo für Rechner »%s« gescheitert: %s\n" #: ssl.c:326 ssl.c:451 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "Neue Verbindung zum DynDNS-Server mit zuvor gesicherter IP-Adresse\n" #: ssl.c:341 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Verbindungsversuch mit Proxy %s%s%s:%s\n" #: ssl.c:342 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Verbindungsversuch mit Server %s%s%s:%s\n" #: ssl.c:362 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "Verbunden mit %s%s%s:%s\n" #: ssl.c:374 msgid "Failed to allocate sockaddr storage\n" msgstr "Zuweisen des sockaddr-Speichers ist fehlgeschlagen.\n" #: ssl.c:416 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "Verbindung zum %s%s%s:%s fehlgeschlagen: %s\n" #: ssl.c:434 msgid "Forgetting non-functional previous peer address\n" msgstr "Nicht funktionierende, frühere Peer-Adressen werden vergessen\n" #: ssl.c:446 #, c-format msgid "Failed to connect to host %s\n" msgstr "Verbindung zum Server %s fehlgeschlagen\n" #: ssl.c:465 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "Neuverbinden mit Proxy %s\n" #: ssl.c:536 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:564 msgid "Could not obtain file system ID for passphrase\n" msgstr "Dateisystemadresse (ID) der Passphrase konnte nicht erhalten werden\n" #: ssl.c:575 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "Öffnen der privaten Schlüsseldatei »%s« schlug fehl: %s\n" #: ssl.c:603 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:694 msgid "No error" msgstr "Kein Fehler" #: ssl.c:695 msgid "Keystore locked" msgstr "Schlüsselspeicher gesperrt" #: ssl.c:696 msgid "Keystore uninitialized" msgstr "Schlüsselspeicher nicht initialisiert" #: ssl.c:697 msgid "System error" msgstr "Systemfehler" #: ssl.c:698 msgid "Protocol error" msgstr "Protokollfehler" #: ssl.c:699 msgid "Permission denied" msgstr "Zugriff verweigert" #: ssl.c:700 msgid "Key not found" msgstr "Schlüssel nicht gefunden" #: ssl.c:701 msgid "Value corrupted" msgstr "Wert defekt" #: ssl.c:702 msgid "Undefined action" msgstr "Undefinierte Aktion" #: ssl.c:706 msgid "Wrong password" msgstr "Falsches Passwort" #: ssl.c:707 msgid "Unknown error" msgstr "Unbekannter Fehler" #: ssl.c:896 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" "openconnect_fopen_utf8() wurde in nicht unterstütztem Modus »%s« verwendet'\n" #: ssl.c:931 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" "Unbekannte Protokollfamilie %d. UDP-Serveradresse kann nicht erzeugt werden\n" #: ssl.c:950 msgid "Open UDP socket" msgstr "UDP-Socket öffnen" #: ssl.c:981 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" "Unbekannte Protokollfamilie %d. UDP-Transport kann nicht verwendet werden\n" #: ssl.c:989 msgid "Bind UDP socket" msgstr "UDP-Socket binden" #: ssl.c:996 msgid "Connect UDP socket\n" msgstr "UDP-Socket verbinden\n" #: ssl.c:1034 msgid "Cookie is no longer valid, ending session\n" msgstr "Cookie ist nicht mehr gültig. Sitzung wird beendet\n" #: ssl.c:1038 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "Wartezeit %ds, verbleibender Timeout %ds\n" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "SSPI-Token ist zu groß (%ld Byte)\n" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "SSPI-Token von %lu Byte wird gesendet\n" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "Senden des SSPI-Legitimierungs-Token an Proxy fehlgeschlagen: %s\n" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "Empfangen des SSPI-Legitimierungs-Token von Proxy fehlgeschlagen: %s\n" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "SOCKS-Server meldete SSPI-Kontext ist fehlgeschlagen\n" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "Unbekannte SSPI-Statusantwort (0x%02x) von SOCKS-Server\n" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "SSPI-Token mit %lu Byte erhalten: %02x %02x %02x %02x\n" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "QueryContextAttributes() schlug fehl: %lx\n" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "EncryptMessage schlug fehl: %lx\n" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "ergebnis von EncryptMessage() zu groß (%lu + %lu + %lu)\n" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "SSPI-Schutzaushandlung von %u Byte wird gesendet\n" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "Senden der SSPI-Schutzaushandlung an Proxy fehlgeschlagen: %s\n" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "Erhalten der SSPI-Schutzaushandlung von Proxy fehlgeschlagen: %s\n" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "SSPI-Schutzantwort von %d Byte erhalten: %02x %02x %02x %02x\n" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "DecryptMessage schlug fehl: %lx\n" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "Ungültige SSPI-Schutzantwort von Proxy (%lu Byte)\n" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "Geben Sie die Anmeldedaten ein, um den Software-Token zu entsperren." #: stoken.c:82 msgid "Device ID:" msgstr "Gerätekennung:" #: stoken.c:89 msgid "Password:" msgstr "Passwort:" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "Benutzer hat den Soft-Token umgangen.\n" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "Alle Felder werden benötigt. Bitte versuchen Sie es erneut.\n" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "Allgemeiner Fehler in libstoken.\n" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "Gerätekennung oder Passwort war inkorrekt, versuchen Sie es erneut.\n" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "Initialisierung des Soft-Token war erfolgreich.\n" #: stoken.c:185 msgid "Enter software token PIN." msgstr "Geben Sie den PIN des Software-Token ein." #: stoken.c:189 msgid "PIN:" msgstr "PIN:" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "Ungültiges PIN-Format; versuchen Sie es erneut.\n" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "RSA Token-Code wird erzeugt\n" #: tun-win32.c:76 msgid "Error accessing registry key for network adapters\n" msgstr "Fehler beim Zugriff auf Registrierungsschlüssel für Netzwerk-Adapter\n" #: tun-win32.c:139 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "Nicht zutreffende TAP-Schnittstelle »%s« wird ignoriert\n" #: tun-win32.c:154 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "Keine Windows-TAP-Adapter gefunden. Ist der Treiber installiert?\n" #: tun-win32.c:186 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" "GetAdapterIndex() fehlgeschlagen: %s\n" "Es wird auf GetAdaptersInfo() ausgewichen\n" #: tun-win32.c:200 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "GetAdaptersInfo() schlug fehl: %s\n" #: tun-win32.c:231 #, c-format msgid "Failed to open %s\n" msgstr "Öffnen von »%s« fehlgeschlagen\n" #: tun-win32.c:236 #, c-format msgid "Opened tun device %s\n" msgstr "tun-Gerät %s geöffnet\n" #: tun-win32.c:244 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Ermitteln der TAP-Treiberversion schlug fehl: %s\n" #: tun-win32.c:250 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Fehler: Windows-TAP-Treiber v9.9 oder neuer ist notwendig (%ld.%ld " "gefunden)\n" #: tun-win32.c:271 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Festlegen der TAP IP-Adressen fehlgeschlagen: %s\n" #: tun-win32.c:283 tun-win32.c:406 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Festlegen des TAP Medienstatus fehlgeschlagen: %s\n" #: tun-win32.c:316 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "TAP-Gerät brach die Verbindung ab. Sie wird getrennt.\n" #: tun-win32.c:321 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Lesen vom TAP-Gerät fehlgeschlagen: %s\n" #: tun-win32.c:335 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Abschließen des Lesens von TAP-Gerät fehlgeschlagen: %s\n" #: tun-win32.c:358 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "%ld Bytes wurden an »tun« geschrieben\n" #: tun-win32.c:368 msgid "Waiting for tun write...\n" msgstr "" "Auf das Schreiben von »tun« wird gewartet …\n" "\n" #: tun-win32.c:371 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "%ld Bytes wurden nach dem Warten an »tun« geschrieben\n" #: tun-win32.c:378 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Schreiben auf das TAP-Gerät fehlgeschlagen: %s\n" #: tun-win32.c:423 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" "Das Anlegen von Tunnel-Skripten wird unter Windows noch nicht unterstützt\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "/dev/tun konnte nicht für die Verbindung geöffnet werden" #: tun.c:92 msgid "Can't push IP" msgstr "IP kann nicht weitergeleitet werden" #: tun.c:102 msgid "Can't set ifname" msgstr "ifname kann nicht festgelegt werden" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "%s kann nicht geöffnet werden: %s" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Verbindung %s für IPv%d gescheitert: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "open /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Neues tun konnte nicht erstellt werden" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" "Umstellen des tun-Dateideskriptors in den Nachrichten-Verwerfen-Modus ist " "fehlgeschlagen" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "tun-Gerät wird auf dieser Plattform nicht unterstützt\n" #: tun.c:205 msgid "open net" msgstr "Offenes Netz" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Öffnen des tun-Geräts ist gescheitert: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "Binden des lokalen tun-Geräts ist gescheitert (TUNSETIFF): %s\n" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" "Um das lokale Netzwerk zu konfigurieren, muss Openconnect mit " "Systemverwalterrechten ausgeführt werden.\n" "Weitere Informationen: http://www.infradead.org/openconnect/nonroot.html\n" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" "Ungültiger Schnittstellenname »%s«; muss »utun%%d« oder »tun%%d« " "entsprechen\n" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "Öffnen des Socket SYSPROTO_CONTROL schlug fehl: %s\n" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "Abfrage der »utun«-Kontrolladresse fehlgeschlagen: %s\n" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "Zuweisung des »utun«-Gerätenamens fehlgeschlagen\n" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "Verbindung zur utun-Einheit fehlgeschlagen: %s\n" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Ungültiger Schnittstellenname »%s«; muss »tun%%d« entsprechen\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "»%s« kann nicht geöffnet werden: %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:479 #, c-format msgid "socketpair failed: %s\n" msgstr "Socket-Paar fehlgeschlagen: %s\n" #: tun.c:484 #, c-format msgid "fork failed: %s\n" msgstr "fork fehlgeschlagen: %s\n" #: tun.c:488 msgid "setpgid" msgstr "setpgid" #: tun.c:493 msgid "execl" msgstr "execl" #: tun.c:498 msgid "(script)" msgstr "(script)" #: tun.c:566 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Schreiben des eingehenden Pakets schlug fehl: %s\n" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "Öffnen von %s fehlgeschlagen: %s\n" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "fstat() für %s schlug fehl: %s\n" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Anfordern von %d Byte für %s schlug fehl\n" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "Lesen von %s fehlgeschlagen: %s\n" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Rechner »%s« wird als nackter Rechnername angesehen\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Fehler beim Bilden von SHA1 der bestehenden Datei\n" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "XML-Konfigurationsdatei SHA1: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Fehler beim Verarbeiten der XML-Konfigurationsdatei %s\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Rechner »%s« besitzt Adresse »%s«\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Rechner »%s« besitzt UserGroup »%s«\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "Rechner »%s« ist nicht in der Konfiguration aufgeführt. Er wird als nackter " "Rechnername angesehen\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "Senden von »%s« an ykneo-oath-Applet fehlgeschlagen: %s\n" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "Ungültige kurze Antwort des ykneo-oath-Applet auf »%s«\n" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "Fehler in Antwort auf: »%s«: %04x\n" #: yubikey.c:174 msgid "select applet command" msgstr "»Applet wählen«-Befehl" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "Nicht erkannte Antwort des ykneo.oath-Applets\n" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "ykneo.oath-Applet v%d.%d.%d. gefunden\n" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "Für das Yubikey-OATH-Applet wird ein PIN benötigt" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "Yubikey PIN:" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "Die Yubikey-Entsperrantwort konnte nicht berechnet werden\n" #: yubikey.c:274 msgid "unlock command" msgstr "Entsperren-Befehl" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "Gekürzte PBKBF2-Variante der Yubikey-PIN wird versucht\n" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "Erstellung eines PC/SC-Kontext fehlgeschlagen: %s\n" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "PC/SC-Kontext wurde hergestellt\n" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "Anfragen der Leserliste ist fehlgeschlagen: %s\n" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "Verbindung zum PC/SC-Leser »%s« fehlgeschlagen: %s\n" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "Verbundener PC/SC-Leser »%s«\n" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" "Exklusiver Zugriff auf Einleser »%s« konnte nicht erhalten werden: %s\n" #: yubikey.c:412 msgid "list keys command" msgstr "»Schlüssel auflisten«-Befehl" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "%s/%s Schlüssel »%s« auf »%s« wurde gefunden\n" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" "Token »%s« nicht in Yubikey »%s« gefunden. Ein anderer Yubikey wird gesucht " "…\n" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" "Server hat den Yubikey-Token abgewiesen, es wird zur manuellen Eingabe " "gewechselt\n" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "Yubikey Token-Code wird erzeugt\n" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "Exklusiver Zugriff auf Yubikey konnte nicht erhalten werden: %s\n" #: yubikey.c:619 msgid "calculate command" msgstr "Berechnen-Befehl" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "Nicht erkannte Antwort von Yubikey bei Erstellung des Token-Codes\n" openconnect-8.05/po/lt.po0000664000076400007640000040174213470043037017143 0ustar00dwoodhoudwoodhou00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2019-05-18 10:44-0700\n" "PO-Revision-Date: 2011-09-22 22:31+0000\n" "Last-Translator: FULL NAME \n" "Language-Team: Lithuanian (http://www.transifex.net/projects/p/meego/team/" "lt/)\n" "Language: lt\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && (n" "%100<10 || n%100>=20) ? 1 : 2)\n" #: auth-globalprotect.c:108 #, c-format msgid "" "SAML login is required via %s to this URL:\n" "\t%s" msgstr "" "Norint prisijungti prie šio URL naudojant %s reikalingas SAML " "prisijungtimas\n" "\t%s" #: auth-globalprotect.c:110 msgid "Please enter your username and password" msgstr "Įveskite savo naudotojo vardą ir slaptažodį" #: auth-globalprotect.c:119 msgid "Username" msgstr "Naudotojo vardas" #: auth-globalprotect.c:134 msgid "Password" msgstr "Slaptažodis" #: auth-globalprotect.c:181 msgid "Challenge: " msgstr "Tikrinimas:" #: auth-globalprotect.c:260 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "GlobalProtect prisijungimas grąžino %s=%s (laukta %s)\n" #: auth-globalprotect.c:266 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "GlobalProtect prisijungimas grąžino tuščią arba trūkstamą %s\n" #: auth-globalprotect.c:272 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "GlobalProtect prisijungimas grąžino %s=%s\n" #: auth-globalprotect.c:315 msgid "Please select GlobalProtect gateway." msgstr "Pasirinkite GlobalProtect tinklų sietuvą." #: auth-globalprotect.c:325 msgid "GATEWAY:" msgstr "TINKLŲ SIETUVAS:" #. each entry looks like Label #: auth-globalprotect.c:379 #, c-format msgid "%d gateway servers available:\n" msgstr "Galimi %d tinklų sietuvų serveriai:\n" #: auth-globalprotect.c:400 #, c-format msgid " %s (%s)\n" msgstr " %s (%s)\n" #: auth-globalprotect.c:484 auth-juniper.c:730 auth.c:669 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "Nepavyko sukurti OTP leksemos kodo; išjungiama leksema\n" #: auth-globalprotect.c:584 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "Serveris nėra nei GlobalProtect portalas, nei tinklų sietuvas.\n" #: auth-globalprotect.c:636 oncp.c:1266 msgid "Logout failed.\n" msgstr "Atsijungimas nepavyko.\n" #: auth-globalprotect.c:638 msgid "Logout successful\n" msgstr "Atsijungimas sėkmingas.\n" #: auth-juniper.c:142 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "Nepaisoma nežinomo formos pateikimo elemento „%s“\n" #: auth-juniper.c:153 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "Nepaisoma nežinomo formos įvesties tipo „%s“\n" #: auth-juniper.c:163 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "Išmetamas pakartotinis parametras „%s“\n" #: auth-juniper.c:236 auth.c:408 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Negalima apdoroti formos method='%s', action='%s'\n" #: auth-juniper.c:267 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "Nežinomas teksto srities laukas: „%s“\n" #: auth-juniper.c:337 msgid "TNCC support not implemented yet on Windows\n" msgstr "TNCC palaikymas Windows sistemoje dar nerealizuotas\n" #: auth-juniper.c:359 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "Nėra DSPREAUTH slapuko; nebandoma TNCC\n" #: auth-juniper.c:397 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "Nepavyko įvykdyti TNCC scenarijaus %s: %s\n" #: auth-juniper.c:411 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "Nepavyko išskirti atminties komunikacijai su TNCC\n" #: auth-juniper.c:418 msgid "Failed to send start command to TNCC\n" msgstr "Nepavyko išsiųsti pradžios komandos į TNCC\n" #: auth-juniper.c:425 msgid "Sent start; waiting for response from TNCC\n" msgstr "Pradžia išsiųsta; laukiama atsakymo iš TNCC\n" #: auth-juniper.c:432 msgid "Failed to read response from TNCC\n" msgstr "Nepavyko perskaityti TNCC atsakymo\n" #: auth-juniper.c:439 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "Iš TNCC gautas nesėkmingas %s atsakymas\n" #: auth-juniper.c:445 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:452 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "Iš TNCC gautas naujas DSPREAUTH slapukas: %s\n" #: auth-juniper.c:474 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:481 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:650 msgid "Failed to parse HTML document\n" msgstr "Nepavyko perskaityti HTML dokumento\n" #: auth-juniper.c:667 msgid "Failed to find or parse web form in login page\n" msgstr "" "Nepavyko rasti ar perskaityti žiniatinklio formos prisijungimo puslapyje\n" "\n" #: auth-juniper.c:675 msgid "Encountered form with no ID\n" msgstr "Sutikta forma be ID\n" #: auth-juniper.c:713 #, c-format msgid "Unknown form ID '%s'\n" msgstr "Nežinoma formos ID „%s“\n" #: auth-juniper.c:716 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "Išmetama nežinoma HTML forma\n" #: auth.c:96 msgid "Form choice has no name\n" msgstr "Formos pasirinkimas neturi pavadinimo\n" #: auth.c:181 #, c-format msgid "name %s not input\n" msgstr "pavadinimas %s neturi įvesties\n" #: auth.c:188 msgid "No input type in form\n" msgstr "Nėra įvesties tipo formoje\n" #: auth.c:200 msgid "No input name in form\n" msgstr "Nėra įvesties pavadinimo formoje\n" #: auth.c:230 #, c-format msgid "Unknown input type %s in form\n" msgstr "Nežinomas įvesties tipas %s formoje\n" #: auth.c:540 gpst.c:214 msgid "Empty response from server\n" msgstr "Tuščias atsakymas iš serverio\n" #: auth.c:551 gpst.c:289 msgid "Failed to parse server response\n" msgstr "Nepavyko perskaityti serverio atsakymo\n" #: auth.c:553 gpst.c:291 #, c-format msgid "Response was:%s\n" msgstr "Atsakymas buvo:%s\n" #: auth.c:575 msgid "Received when not expected.\n" msgstr "Gautas , nors jo nesitikėta.\n" #: auth.c:603 msgid "XML response has no \"auth\" node\n" msgstr "XML atsakymas neturi „auth“ viršūnės\n" #: auth.c:636 msgid "Asked for password but '--no-passwd' set\n" msgstr "Prašyta slaptažodžio, bet nustatyta „--no-passwd“\n" #: auth.c:925 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "Neparsiunčiamas XML profilis, nes SHA1 jau atitinka\n" #: auth.c:931 cstp.c:335 http.c:916 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Nepavyko atverti HTTPS ryšio į %s\n" #: auth.c:952 msgid "Failed to send GET request for new config\n" msgstr "Nepavyko išsiųsti GET užklausos naujai konfigūracijai\n" #: auth.c:976 msgid "Downloaded config file did not match intended SHA1\n" msgstr "Parsiųstas konfigūracijos failas neatitiko siekiamo SHA1\n" #: auth.c:981 msgid "Downloaded new XML profile\n" msgstr "Parsiųstas naujas XML profilis\n" #: auth.c:992 auth.c:1044 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" "Klaida: „Cisco Secure Desktop“ trojos arklio vykdymas šioje platformoje dar " "nerealizuotas.\n" #: auth.c:1003 mainloop.c:144 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "Nepavyko nustatyti gid %ld: %s\n" #: auth.c:1010 mainloop.c:151 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "Nepavyko nustatyti grupių į %ld: %s\n" #: auth.c:1017 mainloop.c:158 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "Nepavyko nustatyti uid %ld: %s\n" #: auth.c:1024 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "Netinkamas naudotojo uid=%ld: %s\n" #: auth.c:1031 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Nepavyko pakeisti CSD namų katalogo „%s“: %s\n" #: auth.c:1053 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Klaida: Serveris prašė vykdyti CSD serverio paiešką.\n" "Jums reikia pateikti tinkamą --csd-wrapper argumentą.\n" #: auth.c:1060 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Klaida: serveris paprašė parsiųsti ir įvykdyti „Cisco Secure Desktop“ trojos " "arklį.\n" "Ši funkcija numatytai yra išjungta saugumo sumetimai, tad jūs galite norėti " "ją įjungti.\n" #: auth.c:1067 msgid "Trying to run Linux CSD trojan script.\n" msgstr "Bandoma vykdyti Linux CSD trojos arklio scenarijų.\n" #: auth.c:1094 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "Laikinasis katalogas „%s“ nėra rašomas: %s\n" #: auth.c:1102 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Nepavyko atverti laikinojo CSD scenarijaus failo: %s\n" #: auth.c:1111 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Nepavyko įrašyti laikinojo CSD scenarijaus failo: %s\n" #: auth.c:1141 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Įspėjimas: jūs vykdote nesaugų CSD kodą root teisėmis\n" "\t Naudokite komandų eilutės parametrą „--csd-user“\n" #: auth.c:1189 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Nepavyko įvykdyti CSD scenarijaus %s\n" #: auth.c:1221 msgid "Unknown response from server\n" msgstr "Nežinomas atsakymas iš serverio\n" #: auth.c:1342 msgid "Server requested SSL client certificate after one was provided\n" msgstr "Serveris paprašė SSL kliento liudijimo po to, kai jis buvo pateiktas\n" #: auth.c:1346 msgid "Server requested SSL client certificate; none was configured\n" msgstr "Serveris paprašė SSL kliento liudijimo; joks nebuvo sukonfigūruotas\n" #: auth.c:1362 msgid "XML POST enabled\n" msgstr "XML POST įjungtas\n" #: auth.c:1405 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Atnaujinama %s po 1 sekundės...\n" #: compat.c:207 #, c-format msgid "(error 0x%lx)" msgstr "(klaida 0x%lx)" #: compat.c:210 msgid "(Error while describing error!)" msgstr "(Klaida aprašant klaidą!)" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "KLAIDA: nepavyksta inicializuoti lizdų\n" #: cstp.c:112 gpst.c:341 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:134 gpst.c:360 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:281 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" "KRITINĖ KLAIDA: DTLS pagrindinė paslaptis neinicializuota. Praneškite apie " "tai.\n" #: cstp.c:312 msgid "Error creating HTTPS CONNECT request\n" msgstr "Klaida kuriant HTTPS CONNECT užklausą\n" #: cstp.c:328 http.c:384 msgid "Error fetching HTTPS response\n" msgstr "Klaida parsiunčiant HTTPS atsakymą\n" #: cstp.c:355 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "VPN tarnyba neprieinama; priežastis: %s\n" #: cstp.c:360 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Gautas netinkamas HTTP CONNECT atsakymas: %s\n" #: cstp.c:367 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Gautas CONNECT atsakymas: %s\n" #: cstp.c:396 cstp.c:404 msgid "No memory for options\n" msgstr "Nėra atminties parametrams\n" #: cstp.c:413 http.c:444 msgid "" msgstr "" #: cstp.c:433 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Session-ID ne 64 simboliai; yra: „%s“\n" #: cstp.c:450 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "X-DTLS-Session-ID yra netinkama; yra: „%s“\n" #: cstp.c:468 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "Nežinomas CSTP-Content-Encoding %s\n" #: cstp.c:510 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Nežinomas CSTP-Content-Encoding %s\n" #: cstp.c:585 msgid "No MTU received. Aborting\n" msgstr "Negauta MTU. Nutraukiama\n" #: cstp.c:593 gpst.c:641 msgid "No IP address received. Aborting\n" msgstr "Negautas IP adresas. Nutraukiama\n" #: cstp.c:599 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "Gauta IPv6 konfigūracija, bet MTU %d yra per mažas.\n" #: cstp.c:605 gpst.c:648 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Persijungimas gavo skirtingą seną IP adresą (%s != %s)\n" #: cstp.c:614 gpst.c:657 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "Persijungimas gavo skirtingą seną IP tinklo kaukę (%s != %s)\n" #: cstp.c:622 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Persijungimas gavo skirtingą IPv6 adresą (%s != %s)\n" #: cstp.c:630 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Persijungimas gavo skirtingą IPv6 tinklo kaukę (%s != %s)\n" #: cstp.c:638 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "Prisijungta prie CSTP. DPD %d, keepalive %d\n" #: cstp.c:640 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "CSTP šifravimo rinkinys: %s\n" #: cstp.c:702 msgid "Compression setup failed\n" msgstr "Nepavyko nustatyti suspaudimo\n" #: cstp.c:719 msgid "Allocation of deflate buffer failed\n" msgstr "Nepavyko išskirti buferio\n" #: cstp.c:781 msgid "inflate failed\n" msgstr "buferis nepavyko\n" #: cstp.c:804 #, c-format msgid "LZS decompression failed: %s\n" msgstr "LZS išskleidimas nepavyko: %s\n" #: cstp.c:817 msgid "LZ4 decompression failed\n" msgstr "LZ4 išskleidimas nepavyko\n" #: cstp.c:824 #, c-format msgid "Unknown compression type %d\n" msgstr "Nežinomas suspaudimo tipas %d\n" #: cstp.c:829 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "Gautas %s suspaustas %d baitų duomenų paketas (buvo %d)\n" #: cstp.c:849 #, c-format msgid "deflate failed %d\n" msgstr "nepavyko išskleisti %d\n" #: cstp.c:922 dtls.c:281 dtls.c:740 esp.c:129 gpst.c:1042 mainloop.c:69 #: oncp.c:914 msgid "Allocation failed\n" msgstr "Nepavyko išskirti atminties\n" #: cstp.c:933 gpst.c:1055 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "Gautas trumpas paketas (%d baitai)\n" #: cstp.c:946 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Nelauktas paketo ilgis. SSL_read grąžino %d, bet paketas yra\n" #: cstp.c:960 msgid "Got CSTP DPD request\n" msgstr "Gauta CSTP DPD užklausa\n" #: cstp.c:966 msgid "Got CSTP DPD response\n" msgstr "Gautas CSTP DPD atsakymas\n" #: cstp.c:971 msgid "Got CSTP Keepalive\n" msgstr "Gautas CSTP Keepalive\n" #: cstp.c:976 oncp.c:1003 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Gautas nespaustų duomenų paketas iš %d baitų\n" #: cstp.c:993 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Gautas serverio atsijungimas: %02x „%s“\n" #: cstp.c:996 msgid "Received server disconnect\n" msgstr "Gautas serverio atsijungimas\n" #: cstp.c:1004 msgid "Compressed packet received in !deflate mode\n" msgstr "Suspaustas paketas gautas ne spaudimo veiksenoje\n" #: cstp.c:1013 msgid "received server terminate packet\n" msgstr "gautas serverio pabaigos paketas\n" #: cstp.c:1020 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Nežinomas paketas %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1063 gpst.c:1142 oncp.c:1121 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL įrašė per mažai baitų! Prašyta %d, išsiųsta %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1091 oncp.c:1155 msgid "CSTP rekey due\n" msgstr "Atliekamas CSTP raktų pakeitimas\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1098 oncp.c:1162 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Pakartotinis rankos paspaudimas nepavyko; bandomas naujas tunelis\n" #: cstp.c:1109 oncp.c:1173 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "CSTO negyvų porininkų aptikimas aptiko negyvą porininką!\n" #: cstp.c:1113 gpst.c:1166 oncp.c:1091 oncp.c:1177 msgid "Reconnect failed\n" msgstr "Nepavyko persijungimas\n" #: cstp.c:1129 oncp.c:1193 msgid "Send CSTP DPD\n" msgstr "Siųsti CSTO DPD\n" #: cstp.c:1141 oncp.c:1204 msgid "Send CSTP Keepalive\n" msgstr "Siųsti CSTO Keepalive\n" #: cstp.c:1166 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "Siunčiamas suspaustų duomenų paketas iš %d baitų (buvo %d)\n" #: cstp.c:1177 oncp.c:1238 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Siunčiamas nespaustų duomenų paketas iš %d baitų\n" #: cstp.c:1216 #, c-format msgid "Send BYE packet: %s\n" msgstr "Siųsti BYE paketą: %s\n" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "Bandoma nusiųsti tapatybės patvirtinimą į tarpinį serverį\n" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "Bandoma nusiųsti tapatybės patvirtinimą į tarpinį serverį „%s“\n" #: dtls.c:113 msgid "DTLS connection attempted with an existing fd\n" msgstr "DTLS ryšys bandytas su esamu fd\n" #: dtls.c:119 msgid "No DTLS address\n" msgstr "Nėra DTLS adreso\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:126 msgid "Server offered no DTLS cipher option\n" msgstr "Serveris nepasiūlė DTLS šifro parinkties\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:133 msgid "No DTLS when connected via proxy\n" msgstr "Nėra DTLS jungiantis per tarpinį serverį\n" #: dtls.c:200 #, c-format msgid "DTLS option %s : %s\n" msgstr "DTLS parametras %s: %s\n" #: dtls.c:239 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS inicializuota. DPD %d, Keepalive %d\n" #: dtls.c:265 msgid "Attempt new DTLS connection\n" msgstr "Bandomas naujas DTLS ryšys\n" #: dtls.c:292 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Gautas DTKS paketas 0x%02x iš %d baitų\n" #: dtls.c:306 msgid "Got DTLS DPD request\n" msgstr "Gauta DTLS DPD užklausa\n" #: dtls.c:312 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Nepavyko išsiųsti DPD atsakymo. Tikėkitės atsijungimo\n" #: dtls.c:316 msgid "Got DTLS DPD response\n" msgstr "Gautas DTLS DPD atsakymas\n" #: dtls.c:320 msgid "Got DTLS Keepalive\n" msgstr "Gautas DTLS Keepalive\n" #: dtls.c:326 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "Gautas suspaustas DTLS paketas, kai suspaudimas nėra įjungtas\n" #: dtls.c:334 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Nežinomas DTLS paketo tipas %02x, ilgis %d\n" #: dtls.c:356 msgid "DTLS rekey due\n" msgstr "Atliekamas DTLS raktų pasikeitimas\n" #: dtls.c:363 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "Nepavyko DTLS rankos paspaudimas; jungiamasi iš naujo.\n" #: dtls.c:372 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "DTLS negyvų porininkų aptikimas aptiko negyvą porininką!\n" #: dtls.c:378 msgid "Send DTLS DPD\n" msgstr "Siųsti DTLS DPD\n" #: dtls.c:383 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Nepavyko siųsti DPD užklausos. Tikėkitės atsijungimo\n" #: dtls.c:396 msgid "Send DTLS Keepalive\n" msgstr "Siųsti DTLS Keepalive\n" #: dtls.c:401 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Nepavyko siųsti keepalive užklausos. Tikėkitės atsijungimo\n" #: dtls.c:432 tun.c:541 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Gautas nežinomas paketas (ilgis %d): %02x %02x %02x %02x...\n" #: dtls.c:439 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "Šis TOS: %d, paskutinis TOS: %d\n" #: dtls.c:443 msgid "UDP setsockopt" msgstr "UDP setsockopt" #: dtls.c:474 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "DTLS gavo rašymo klaidą %d. Pereinama prie SSL\n" #: dtls.c:488 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "DTLS gavo rašymo klaidą: %s. Pereinama prie SSL\n" #: dtls.c:503 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "Siunčiamas DTLS paketas iš %d baitų; DTLS siutimas grąžino %d\n" #: dtls.c:531 #, c-format msgid "Initiating IPv4 MTU detection (min=%d, max=%d)\n" msgstr "Inicijuojamas IPv4 MTU aptikimas (min=%d, max=%d)\n" #: dtls.c:551 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "Per ilgas MTU aptikimo ciklas; numanomas suderintas MTU.\n" #: dtls.c:555 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "Per ilgas MTU aptikimo ciklas; MTU nustatyta į %d.\n" #: dtls.c:564 #, c-format msgid "Sending MTU DPD probe (%u bytes, min=%u, max=%u)\n" msgstr "Siunčiamas MTU DPD zondas (%u baitų, min.=%u, maks.=%u)\n" #: dtls.c:568 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "Nepavyko išsiųsti DPD užklausos (%d %d)\n" #: dtls.c:582 dtls.c:690 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "Gautas nelauktas paketas (%.2x) MTU aptikime; praleidžiama.\n" #: dtls.c:594 #, c-format msgid "Timeout while waiting for DPD response; trying %d\n" msgstr "Laukiant DPD atsakymo pasibaigė tam skirtas laikas; bandoma %d\n" #: dtls.c:601 dtls.c:682 msgid "Timeout while waiting for DPD response; resending probe.\n" msgstr "" "Laukiant DPD atsakymo pasibaigė tam skirtas laikas; iš naujo siunčiamas " "zondas.\n" #: dtls.c:608 dtls.c:709 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "Nepavyko gauti DPD užklausos (%d)\n" #: dtls.c:613 #, c-format msgid "Received MTU DPD probe (%u bytes of %u)\n" msgstr "Gautas MTU DPD zondas (%u baitų iš %u)\n" #: dtls.c:651 msgid "Initiating IPv6 MTU detection\n" msgstr "Inicijuojamas IPv6 MTU aptikimas\n" #: dtls.c:666 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "Siunčiamas MTU DPD zondas (%u baitų)\n" #: dtls.c:670 #, c-format msgid "Failed to send DPD request (%d)\n" msgstr "Nepavyko išsiųsti DPD užklausos (%d)\n" #: dtls.c:695 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "Gautas MTU DPD zondas (%u baitų)\n" #: dtls.c:759 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "Aptiktas %d baitų MTU (buvo %d)\n" #: dtls.c:762 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "Po aptikimo nėra MTU pasikeitimo (buvo %d)\n" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "Tikimasi ESP paketo su seq %u\n" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "Priimamas pavėlavęs ESP paketas su seq %u (laukta %)\n" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "Išmetamas senas ESP paketas su seq %u (laukta %)\n" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "Toleruojamas senas ESP paketas su seq %u (laukta %)\n" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "Išmetamas ESP atsakymo paketas su seq %u\n" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "Toleruojamas ESP atsakymo paketas su seq %u\n" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "Priimamas ne eilės tvarkos ESP paketas su seq %u (laukta %)\n" #: esp.c:63 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "%s ESP parametrai: SPI 0x%8x\n" #: esp.c:66 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "ESP šifravimo tipo %s raktas 0x%s\n" #: esp.c:69 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "ESP tapatybės patvirtinimo tipo %s raktas 0x%s\n" #: esp.c:87 msgid "incoming" msgstr "gaunama" #: esp.c:88 msgid "outgoing" msgstr "siunčiama" #: esp.c:90 esp.c:113 msgid "Send ESP probes\n" msgstr "Siųsti ESP zondus\n" #: esp.c:138 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "Gautas ESP paketas iš %d baitų\n" #: esp.c:155 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "Gautas ESP paketas su senu SPI 0x%08x, seq %u\n" #: esp.c:161 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "Gautas ESP paketas su netinkamu SPI 0x%08x\n" #: esp.c:174 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "Gautas ESP paketas su nepažįstamu duomenų tipu %02x\n" #: esp.c:181 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "Netinkamas ESP užpildo ilgis %02x\n" #: esp.c:193 msgid "Invalid padding bytes in ESP\n" msgstr "Netinkami ESP užpildo baitai\n" #: esp.c:202 msgid "ESP session established with server\n" msgstr "Užmegztas ESO seansas su serveriu\n" #: esp.c:213 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "Nepavyko išskirti atminties ESP paketo dešifravimui\n" #: esp.c:219 msgid "LZO decompression of ESP packet failed\n" msgstr "ESP paketo LZ0 išskleidimas nepavyko\n" #: esp.c:225 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "LZ0 išskleidė %d baitų į %d\n" #: esp.c:239 msgid "Rekey not implemented for ESP\n" msgstr "ESP nerealizuoja rekey\n" #: esp.c:243 msgid "ESP detected dead peer\n" msgstr "ESP aptiko negyvą porininką!\n" #: esp.c:251 msgid "Send ESP probes for DPD\n" msgstr "Siųsti ESO zondus DPD gavimui\n" #: esp.c:258 msgid "Keepalive not implemented for ESP\n" msgstr "ESP nerealizuoja keepalive\n" #: esp.c:278 #, c-format msgid "Failed to encrypt ESP packet: %d\n" msgstr "" #: esp.c:294 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:301 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "Nepavyko išsiųsti ESP paketo: %s\n" #: esp.c:307 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "Siųsti ESP paketą iš %d baitų\n" #: gnutls-dtls.c:190 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "Atidedamas DTLS tęsimas iki CSTP sugeneruos PSK\n" #: gnutls-dtls.c:198 msgid "Failed to generate DTLS priority string\n" msgstr "Nepavyko sugeneruoti DTLS prioriteto eilutės\n" #: gnutls-dtls.c:207 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "Nepavyko inicijuoti DTLS: %s\n" #: gnutls-dtls.c:216 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "Nepavyko nustatyti DTLS prioriteto: „%s“: %s\n" #: gnutls-dtls.c:240 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "Nepavyko paskirstyti įgaliojimų: %s\n" #: gnutls-dtls.c:253 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "Nepavyko sugeneruoti DTLS rakto: %s\n" #: gnutls-dtls.c:267 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "Nepavyko nustatyti DTLS rakto: %s\n" #: gnutls-dtls.c:275 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "Nepavyko nustatyti DTLS PSK įgaliojimų: %s\n" #: gnutls-dtls.c:309 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Nežinomi DTLS parametrai prašomam CipherSuite „%s“\n" #: gnutls-dtls.c:324 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "Nepavyko nustatyti DTLS prioriteto: %s\n" #: gnutls-dtls.c:345 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Nepavyko nustatyti DTLS sesijos prametrų: %s\n" #: gnutls-dtls.c:373 openssl-dtls.c:534 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "Porininko MTU %d pernelyg mažas, kad būtų leista DTLS\n" #: gnutls-dtls.c:382 openssl-dtls.c:545 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "DTLS MTU sumažinta iki %d\n" #: gnutls-dtls.c:392 openssl-dtls.c:554 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" "DTLS seanso pratęsimas nepavyko; galimas MITM užpuolimas. Išjungiama DTLS.\n" #: gnutls-dtls.c:405 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Nepavyko nustatyti DTLS MTU: %s\n" #: gnutls-dtls.c:416 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "Užmegztas DTLS ryšys (naudojant GnuTLS). Šifrų rinkinys %s.\n" #: gnutls-dtls.c:422 openssl-dtls.c:572 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "DTLS ryšio suspaudimas, naudojant %s.\n" #: gnutls-dtls.c:437 openssl-dtls.c:653 openssl-dtls.c:657 msgid "DTLS handshake timed out\n" msgstr "DTLS rankos paspaudimo laikas baigėsi\n" #: gnutls-dtls.c:440 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "Nepavyko DTLS rankos paspaudimas: %s\n" #: gnutls-dtls.c:444 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(Ar ugniasienė neleidžia jums siųsti UDP paketų?)\n" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "Nepavyko inicializuoti ESP šifro: %s\n" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "Nepavyko inicializuoti ESP HMAC: %s\n" #: gnutls-esp.c:121 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "Nepavyko sugeneruoti atsitiktinių ESP raktų: %s\n" #: gnutls-esp.c:132 msgid "Failed to generate ESP IV\n" msgstr "" #: gnutls-esp.c:161 gnutls-esp.c:217 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "Nepavyko apskaičiuoti HMAC ESP paketui: %s\n" #: gnutls-esp.c:168 openssl-esp.c:192 msgid "Received ESP packet with invalid HMAC\n" msgstr "Gautas ESP paketas su netinkamu HMAC\n" #: gnutls-esp.c:180 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "Nepavyko dešifruoti ESP paketo: %s\n" #: gnutls-esp.c:209 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "Nepavyko užšifruoti ESP paketo: %s\n" #: gnutls.c:95 openssl.c:154 msgid "SSL write cancelled\n" msgstr "SSL rašymas atšauktas\n" #: gnutls.c:99 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "Nepavyko rašyti į SSL lizdą: %s\n" #: gnutls.c:145 gnutls.c:237 openssl.c:204 openssl.c:271 msgid "SSL read cancelled\n" msgstr "SSL skaitymas atšauktas\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:158 msgid "SSL socket closed uncleanly\n" msgstr "SSL lizdas netvarkingai užvertas\n" #: gnutls.c:168 gnutls.c:246 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "Nepavyko skaityti iš SSL lizdo: %s\n" #: gnutls.c:266 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "SSL skaitymo klaida: %s; persijungiama.\n" #: gnutls.c:302 #, c-format msgid "SSL send failed: %s\n" msgstr "Nepavyko SSL siuntimas: %s\n" #: gnutls.c:315 msgid "Could not extract expiration time of certificate\n" msgstr "Nepavyko išgauti liudijimo galiojimo pabaigos laiko\n" #: gnutls.c:320 openssl.c:1592 msgid "Client certificate has expired at" msgstr "Kliento liudijimo galiojimas baigėsi" #: gnutls.c:322 openssl.c:1597 msgid "Client certificate expires soon at" msgstr "Kleinto liudijimas biags galioti" #: gnutls.c:371 openssl.c:771 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Nepavyko įkelti elemento „%s“ iš įvesties: %s\n" #: gnutls.c:384 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Nepavyko atverti rakto/liudijimo failo %s: %s\n" #: gnutls.c:391 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Nepavyko rakto/liudijimo failo %s stat: %s\n" #: gnutls.c:400 msgid "Failed to allocate certificate buffer\n" msgstr "Nepavyko išskirti liudijimo buferio\n" #: gnutls.c:408 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Nepavyko perskaityti liudijimo į atmintį: %s\n" #: gnutls.c:439 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Nepavyko nustatyti PKCS#12 duomenų struktūros: %s\n" #: gnutls.c:462 openssl.c:534 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Nepavyko dešifruoti PKCS#12 liudijimo failo\n" #: gnutls.c:466 openssl.c:537 msgid "Enter PKCS#12 pass phrase:" msgstr "Įveskite PKCS#12 slaptažodį:" #: gnutls.c:489 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Nepavyko apdoroti PKCS#12 failo: %s\n" #: gnutls.c:501 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Nepavyko įkelti PKCS#12 liudijimo: %s\n" #: gnutls.c:584 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Nepavyko importuoti X509 liudijimo: %s\n" #: gnutls.c:594 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Nepavyko nustatyti PKCS#11 liudijimo: %s\n" #: gnutls.c:628 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Nepavyko inicializuoti MD5 maišos: %s\n" #: gnutls.c:638 #, c-format msgid "MD5 hash error: %s\n" msgstr "MD5 maišos klaida: %s\n" #: gnutls.c:696 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "Trūksta DEK-Info: antraštė iš OpenSSL šifruoto rakto\n" #: gnutls.c:703 msgid "Cannot determine PEM encryption type\n" msgstr "Nepavyko nustatyti PEM šifravimo tipo\n" #: gnutls.c:716 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Nepalaikomas PEM šifravimo tipas: %s\n" #: gnutls.c:741 gnutls.c:754 msgid "Invalid salt in encrypted PEM file\n" msgstr "Netinkamas šifruoto PEM failo druska\n" #: gnutls.c:778 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Klaida šifruoto PEM failo base64 dešifravime: %s\n" #: gnutls.c:786 msgid "Encrypted PEM file too short\n" msgstr "Šifruotas PEM failas per trumpas\n" #: gnutls.c:814 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "Nepavyko inicializuoti šifro PEM failo dešifravimui: %s\n" #: gnutls.c:825 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Nepavyko dešifruoti PEM rakto: %s\n" #: gnutls.c:877 msgid "Decrypting PEM key failed\n" msgstr "Nepavyko dešifruoti PEM rakto\n" #: gnutls.c:881 gnutls.c:1405 openssl.c:458 msgid "Enter PEM pass phrase:" msgstr "Įveskite PEM slaptažodį:" #: gnutls.c:942 msgid "This binary built without system key support\n" msgstr "Ši programa sukurta be sistemos rakto palaikymo\n" #: gnutls.c:949 msgid "This binary built without PKCS#11 support\n" msgstr "Ši programa sukurta be PKCS#12 palaikymo\n" #: gnutls.c:993 openssl-pkcs11.c:407 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Naudojamas PKCS#11 liudijimas %s\n" #: gnutls.c:994 #, c-format msgid "Using system certificate %s\n" msgstr "Naudojamas sistemos liudijimas %s\n" #: gnutls.c:1012 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Klaida įkeliant liudijimą iš PKCS#11: %s\n" #: gnutls.c:1013 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Klaida įkeliant sistemos liudijimą: %s\n" #: gnutls.c:1024 openssl.c:827 #, c-format msgid "Using certificate file %s\n" msgstr "Naudojamas liudijimo failas %s\n" #: gnutls.c:1052 msgid "PKCS#11 file contained no certificate\n" msgstr "PKCS#11 failas neturėjo liudijimo\n" #: gnutls.c:1078 msgid "No certificate found in file" msgstr "Nerasta liudijimų faile" #: gnutls.c:1083 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Nepavyko įkelti liudijimo: %s\n" #: gnutls.c:1098 #, c-format msgid "Using system key %s\n" msgstr "Naudojamas sistemos raktas %s\n" #: gnutls.c:1103 gnutls.c:1271 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Klaida inicializuojant privataus rakto struktūrą: %s\n" #: gnutls.c:1114 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Klaida importuojant sistemos raktą %s: %s\n" #: gnutls.c:1125 gnutls.c:1219 gnutls.c:1247 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "Bandomas PKCS#11 rakto URL %s\n" #: gnutls.c:1130 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Klaida inicializuotant PKCS#11 rakto struktūrą: %s\n" #: gnutls.c:1259 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Klaida importuojant PKCS#11 URL %s: %s\n" #: gnutls.c:1266 openssl-pkcs11.c:644 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Naudojamas PKCS#11 raktas %s\n" #: gnutls.c:1281 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "Klaida importuojant PKCS#11 raktą į privataus rakto struktūrą: %s\n" #: gnutls.c:1299 #, c-format msgid "Using private key file %s\n" msgstr "Naudojamas privataus rakto failas %s\n" #: gnutls.c:1310 openssl.c:651 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Ši OpenConnect versija sukurta be TPM palaikymo\n" #: gnutls.c:1326 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "Ši OpenConnect versija sukurta be TPM2 palaikymo\n" #: gnutls.c:1347 msgid "Failed to interpret PEM file\n" msgstr "Nepavyko interpretuoti PEM failo\n" #: gnutls.c:1366 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Nepavyko įkelti PKCS#1 privataus rakto: %s\n" #: gnutls.c:1379 gnutls.c:1393 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Nepavyko įkelti privataus rakto kaip PKCS#8: %s\n" #: gnutls.c:1401 gnutls.c:1434 openssl.c:1002 openssl.c:1012 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Nepavyko dešifruoti PKCS#8 liudijimo failo\n" #: gnutls.c:1426 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Nepavyko nustatyti privataus rakto %s tipo\n" #: gnutls.c:1438 openssl.c:1008 msgid "Enter PKCS#8 pass phrase:" msgstr "Įveskite PKCS#8 slaptažodį:" #: gnutls.c:1454 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Nepavyko gauti rakto ID: %s\n" #: gnutls.c:1499 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Klaida pasirašant testinius duomenis privačiu raktu: %s\n" #: gnutls.c:1514 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Klaida tikrinant parašą su liudijimu: %s\n" #: gnutls.c:1539 msgid "No SSL certificate found to match private key\n" msgstr "Nerastas SSL liudijimas, atitinkantis privatų raktą\n" #: gnutls.c:1551 openssl.c:560 openssl.c:709 #, c-format msgid "Using client certificate '%s'\n" msgstr "Naudojamas kliento liudijimas „%s“\n" #: gnutls.c:1558 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "Nepavyko nustatyti liudijimų atšaukimų sąrašo: %s\n" #: gnutls.c:1579 gnutls.c:1589 msgid "Failed to allocate memory for certificate\n" msgstr "Nepavyko išskirti atminties liudijimui\n" #: gnutls.c:1625 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" "ĮSPĖJIMAS: GnuTLS grąžino neteisingus išdavėjų liudijimus; tapatybės " "patvirtinimas gali nepavykti!\n" #: gnutls.c:1648 msgid "Got no issuer from PKCS#11\n" msgstr "Negauta jokio išdavėjo iš PKCS#11\n" #: gnutls.c:1653 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "Gauta kita LĮ „%s“ iš PKCS11\n" #: gnutls.c:1679 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Nepavyko išskirti atminties liudijimų palaikymui\n" #: gnutls.c:1702 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Pridedama palaikanti LĮ „%s“\n" #: gnutls.c:1724 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1748 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Nepavyko nustatyti liudijimo: %s\n" #: gnutls.c:1941 msgid "Server presented no certificate\n" msgstr "Serveris nepateikė liudijimo\n" #: gnutls.c:1949 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" "Klaida lyginant serverio liudijimą pakartotiniame rankos paspaudime: %s\n" #: gnutls.c:1954 openssl.c:1515 msgid "Server presented different cert on rehandshake\n" msgstr "Serveris pateikė kitokį liudijimą pakartotiniame rankos paspaudime\n" #: gnutls.c:1959 openssl.c:1518 msgid "Server presented identical cert on rehandshake\n" msgstr "" "Serveris pateikė identišką liudijimą pakartotiniame rankos paspaudime\n" #: gnutls.c:1965 msgid "Error initialising X509 cert structure\n" msgstr "Klaida inicializuojant X509 liudijimo struktūrą\n" #: gnutls.c:1971 msgid "Error importing server's cert\n" msgstr "Klaida importuojant serverio liudijimą\n" #: gnutls.c:1980 main.c:1794 msgid "Could not calculate hash of server's certificate\n" msgstr "Nepavyko suskaičiuoti serverio liudijimo maišos vertės\n" #: gnutls.c:1985 msgid "Error checking server cert status\n" msgstr "Klaida tikrinant serverio liudijimo būseną\n" #: gnutls.c:1990 msgid "certificate revoked" msgstr "liudijimas atšauktas" #: gnutls.c:1992 msgid "signer not found" msgstr "pasirašytojas nerastas" #: gnutls.c:1994 msgid "signer not a CA certificate" msgstr "pasirašytojas nėra LĮ liudijimas" #: gnutls.c:1996 msgid "insecure algorithm" msgstr "nesaugus algoritmas" #: gnutls.c:1998 msgid "certificate not yet activated" msgstr "liudijimas dar neaktyvuotas" #: gnutls.c:2000 msgid "certificate expired" msgstr "liudijimo galiojimas baigėsi" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2005 msgid "signature verification failed" msgstr "nepavyko patikrinti liudijimo" #: gnutls.c:2054 openssl.c:1399 openssl.c:1551 msgid "certificate does not match hostname" msgstr "liudijimas neatitinka serverio vardo" #: gnutls.c:2059 openssl.c:1398 openssl.c:1557 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Nepavyko serverio liudijimo patikrinimas: %s\n" #: gnutls.c:2126 msgid "Failed to allocate memory for cafile certs\n" msgstr "Klaida išskiriant atmintį cafile liudijimams\n" #: gnutls.c:2147 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Nepavyko perskaityti liudijimų iš cafile: %s\n" #: gnutls.c:2163 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Nepavyko atverti LŠ failo „%s“: %s\n" #: gnutls.c:2176 openssl.c:1679 msgid "Loading certificate failed. Aborting.\n" msgstr "Nepavyko įkelti liudijimo. Nutraukiama.\n" #: gnutls.c:2237 #, c-format msgid "Failed to set TLS priority string (\"%s\"): %s\n" msgstr "Nepavyko nustatyti TLS prioriteto eilutės („%s“): %s\n" #: gnutls.c:2249 openssl.c:1796 #, c-format msgid "SSL negotiation with %s\n" msgstr "SSL derybos su %s\n" #: gnutls.c:2296 openssl.c:1822 msgid "SSL connection cancelled\n" msgstr "SSL ryšys nutrauktas\n" #: gnutls.c:2303 #, c-format msgid "SSL connection failure: %s\n" msgstr "SSL ryšio klaida: %s\n" #: gnutls.c:2312 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "GnuTLS nelemtinga grįžimas rankos paspaudimo metu: %s\n" #: gnutls.c:2318 openssl.c:1839 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "Prisijungta prie HTTPS %s\n" #: gnutls.c:2321 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "Iš naujo užmezgamas SSL su %s\n" #: gnutls.c:2483 openssl-pkcs11.c:199 #, c-format msgid "PIN required for %s" msgstr "%s būtinas PIN" #: gnutls.c:2487 openssl-pkcs11.c:202 msgid "Wrong PIN" msgstr "Neteisingas PIN" #: gnutls.c:2490 msgid "This is the final try before locking!" msgstr "Tai yra galutinis bandymas prie užrakinant!" #: gnutls.c:2492 msgid "Only a few tries left before locking!" msgstr "Liko tik keli bandymai prieš užrakinimą!" #: gnutls.c:2497 openssl-pkcs11.c:206 msgid "Enter PIN:" msgstr "Įveskite PIN:" #: gnutls.c:2583 openssl.c:1967 msgid "Unsupported OATH HMAC algorithm\n" msgstr "Nepalaikomas OATH HMAC algoritmas\n" #: gnutls.c:2592 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "Nepavyko suskaičiuoti OATH HMAC: %s\n" #: gnutls_tpm.c:54 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "TPM pasirašymo funkcija iškviesta %d baitams.\n" #: gnutls_tpm.c:61 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Nepavyko sukurti TPM maišos objekto: %s\n" #: gnutls_tpm.c:68 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Nepavyko nustatyti vergtės TPM maišos objekte: %s\n" #: gnutls_tpm.c:78 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "Nepavyko TPM maišos parašas: %s\n" #: gnutls_tpm.c:100 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Klaida dekoduojant TSS rakto duomenis: %s\n" #: gnutls_tpm.c:108 gnutls_tpm.c:119 gnutls_tpm.c:132 msgid "Error in TSS key blob\n" msgstr "Klaida TSS rakto duomenyse\n" #: gnutls_tpm.c:139 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Nepavyko sukurti TPM konteksto: %s\n" #: gnutls_tpm.c:146 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Nepavyko prijungti TPM konteksto: %s\n" #: gnutls_tpm.c:154 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Nepavyko įkelti TPM SRK rakto: %s\n" #: gnutls_tpm.c:161 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Nepavyko įkelti TPM SRK politikos objekto: %s\n" #: gnutls_tpm.c:182 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Nepavyko nustatyti TPM PIN: %s\n" #: gnutls_tpm.c:198 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Nepavyko įkelti TPM rakto duomenų: %s\n" #: gnutls_tpm.c:205 msgid "Enter TPM SRK PIN:" msgstr "Įveskite TPM SRK PIN:" #: gnutls_tpm.c:226 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Nepavyko sukurti rakto politikos objekto: %s\n" #: gnutls_tpm.c:234 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Nepavyko priskirti politikos raktui: %s\n" #: gnutls_tpm.c:240 msgid "Enter TPM key PIN:" msgstr "Įveskite TPM rakto PIN:" #: gnutls_tpm.c:251 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Nepavyko nustatyti rakto PIN: %s\n" #: gnutls_tpm2.c:92 gnutls_tpm2_esys.c:474 gnutls_tpm2_ibm.c:419 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "Nežinomas TPM2 EC pranešimo dydis %d\n" #: gnutls_tpm2.c:198 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "Klaida dekoduojant TSS2 rakto duomenis: %s\n" #: gnutls_tpm2.c:208 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "Nepavyko sukurti ASN.1 tipo TPM2: %s\n" #: gnutls_tpm2.c:217 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "Nepavyko iškoduoti TPM2 rakto ASN.1: %s\n" #: gnutls_tpm2.c:225 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:231 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:249 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "Nepavyko perskaityti TPM2 rakto tėvo: %s\n" #: gnutls_tpm2.c:270 msgid "Failed to parse TPM2 pubkey element\n" msgstr "Nepavyko perskaityti TPM2 viešojo rakto elemento\n" #: gnutls_tpm2.c:275 msgid "Failed to parse TPM2 privkey element\n" msgstr "Nepavyko perskaityti TPM2 privataus rakto elemento\n" #: gnutls_tpm2.c:280 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "Perskaitytas TPM2 raktas su tėvu %x, emptyauth %d\n" #: gnutls_tpm2.c:384 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "TPM2 pranešimas per ilgas: %d >= %d\n" #: gnutls_tpm2_esys.c:173 msgid "TPM2 password too long; truncating\n" msgstr "TPM2 slaptažodis per ilgas; trumpinamas\n" #: gnutls_tpm2_esys.c:189 msgid "owner" msgstr "savininkas" #: gnutls_tpm2_esys.c:190 msgid "null" msgstr "null" #: gnutls_tpm2_esys.c:191 msgid "endorsement" msgstr "patvirtinimas" #: gnutls_tpm2_esys.c:192 msgid "platform" msgstr "platforma" #: gnutls_tpm2_esys.c:196 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "Kuriamas pirminis raktas %s hierarchijoje.\n" #: gnutls_tpm2_esys.c:201 gnutls_tpm2_ibm.c:262 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "Įveskite TPM2 %s hierarchijos slaptažodį:" #: gnutls_tpm2_esys.c:209 gnutls_tpm2_esys.c:303 gnutls_tpm2_esys.c:374 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "TPM2 Esys_TR_SetAuth klaida: 0x%x\n" #: gnutls_tpm2_esys.c:221 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "TPM2 Esys_CreatePrimary savininko tapatybės patvirtinimo klaida\n" #: gnutls_tpm2_esys.c:226 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "TPM2 Esys_CreatePrimary klaida: 0x%x\n" #: gnutls_tpm2_esys.c:245 msgid "Establishing connection with TPM.\n" msgstr "Užmezgamas ryšys su TPM.\n" #: gnutls_tpm2_esys.c:250 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "TPM2 Esys_Initialize klaida: 0x%x\n" #: gnutls_tpm2_esys.c:258 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" "TPM2 jau buvo paleista todėl tpm2tss žurnale yra neteisingas pranešimas apie " "klaidą.\n" #: gnutls_tpm2_esys.c:261 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "TPM2 Esys_Startup klaida: 0x%x\n" #: gnutls_tpm2_esys.c:274 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "Esys_TR_FromTPMPublic klaida deskriptoriui 0x%x: 0x%x\n" #: gnutls_tpm2_esys.c:295 gnutls_tpm2_ibm.c:278 msgid "Enter TPM2 parent key password:" msgstr "Įveskite TPM2 tėvinio rakto slaptažodį:" #: gnutls_tpm2_esys.c:309 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "Įkeliami TPM2 rakto duomenys, tėvas %x.\n" #: gnutls_tpm2_esys.c:317 msgid "TPM2 Esys_Load auth failed\n" msgstr "TPM2 Esys_Load tapatybės patvirtinimo klaida\n" #: gnutls_tpm2_esys.c:323 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "TPM2 Esys_Load klaida: 0x%x\n" #: gnutls_tpm2_esys.c:333 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "TPM2 Esys_FlushContext klaida generuojant pirminį: 0x%x\n" #: gnutls_tpm2_esys.c:363 gnutls_tpm2_ibm.c:363 gnutls_tpm2_ibm.c:450 msgid "Enter TPM2 key password:" msgstr "Įveskite TPM2 rakto slaptažodį:" #: gnutls_tpm2_esys.c:395 #, c-format msgid "TPM2 RSA sign function called for %d bytes.\n" msgstr "TPM2 RSA pasirašymo funkcija iškviesta %d baitams.\n" #: gnutls_tpm2_esys.c:414 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "TPM2 Esys_RSA_Decrypt tapatybės patvirtinimo klaida\n" #: gnutls_tpm2_esys.c:420 gnutls_tpm2_esys.c:500 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "TPM2 klaida generuojant RSA parašą: 0x%x\n" #: gnutls_tpm2_esys.c:464 gnutls_tpm2_ibm.c:405 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "TPM2 EC pasirašymo funkcija iškviesta %d baitams.\n" #: gnutls_tpm2_esys.c:494 msgid "TPM2 Esys_Sign auth failed\n" msgstr "TPM2 Esys_Sign tapatybės patvirtinimo klaida\n" #: gnutls_tpm2_esys.c:532 gnutls_tpm2_ibm.c:485 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "Netinkamas TPM2 tėvo deskriptorius 0x%08x\n" #: gnutls_tpm2_esys.c:546 gnutls_tpm2_ibm.c:502 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "Nepavyko importuoti TPM2 privačiojo rakto duomenų: 0x%x\n" #: gnutls_tpm2_esys.c:555 gnutls_tpm2_ibm.c:512 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "Nepavyko importuoti TPM2 viešojo rakto duomenų: 0x%x\n" #: gnutls_tpm2_esys.c:569 gnutls_tpm2_ibm.c:523 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "Nepalaikomas TPM2 rakto tipas %d\n" #: gnutls_tpm2_ibm.c:54 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "TPM2 veiksmas %s nepavyko (%d): %s%s%s\n" #: gpst.c:226 #, c-format msgid "%s\n" msgstr "%s\n" #: gpst.c:229 #, c-format msgid "Challenge: %s\n" msgstr "Patikrinimas: %s\n" #: gpst.c:417 #, c-format msgid "Unknown ESP %s algorithm: %s" msgstr "Nežinomas ESP %s algoritmas: %s" #: gpst.c:477 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "Neveiksnumo laiko limitas yra %d minutės.\n" #: gpst.c:483 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "Nestandartinis SSL tunelio kelias: %s\n" #: gpst.c:487 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "Tunelio laiko limitas (raktų keitimo intervalas) yra %d minutės.\n" #: gpst.c:498 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" "Tinklų sietuvo adresas konfigūracijos XML (%s) skiriasi nuo išorinio tinklų " "sietuvo adreso (%s).\n" #: gpst.c:551 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" "GlobalProtect konfigūratorius atsiuntė ipsec-mode=%s (laukta esp-tunnel)\n" #: gpst.c:560 oncp.c:835 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "Nepaisoma ESP raktų, kadangi ESP palaikymo nėra šioje versijoje\n" #: gpst.c:627 msgid "ESP disabled" msgstr "ESP išjungtas" #: gpst.c:629 msgid "No ESP keys received" msgstr "Negauta ESP raktų" #: gpst.c:631 msgid "ESP support not available in this build" msgstr "ESP palaikymo nėra šioje versijoje" #: gpst.c:635 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "Negauta MTU. Suskaičiuota %d %s%s\n" #: gpst.c:680 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "Jungiamasi prie HTTPS tunelio jungties ...\n" #: gpst.c:702 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "Klaida parsiunčiant GET-tunnel HTTPS atsakymą.\n" #: gpst.c:711 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "Tinklų sietuvas atsijungė iš karto po GET-tunnel užklausos.\n" #: gpst.c:719 #, c-format msgid "Got inappropriate HTTP GET-tunnel response: %.*s\n" msgstr "Gautas netinkamas HTTP GET-tunnel atsakymas: %.*s\n" #: gpst.c:861 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" "VPN connectivity may be disabled or limited without HIP report submission.\n" "You need to provide a --csd-wrapper argument with the HIP report submission " "script.\n" msgstr "" "ĮSPĖJIMAS: serveris paprašė pateikti HIP ataskaitą su md5sum %s.\n" "VPM ryšys gali būti išjungtas arba ribotas be HIP ataskaitos pateikimo.\n" "Jums reikia pateikti --csd-wrappe parametrą su HIP ataskaitos pateikimo " "scenarijumi.\n" #: gpst.c:871 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" "Klaida: „HIP Report“ scenarijaus vykdymas šioje platformoje dar " "nerealizuotas.\n" #: gpst.c:900 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "HIP scenarijus „%s“ išėjo nenormaliai\n" #: gpst.c:905 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "HIP scenarijus „%s“ grąžino nenulinę būseną: %d\n" #: gpst.c:911 msgid "HIP report submission failed.\n" msgstr "Nepavyko pateikti HIP ataskaitos.\n" #: gpst.c:913 msgid "HIP report submitted successfully.\n" msgstr "HIP ataskaita sėkmingai pateikta.\n" #: gpst.c:942 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "Nepavyko įvykdyti HIP scenarijaus %s\n" #: gpst.c:966 msgid "Gateway says HIP report submission is needed.\n" msgstr "Tinklų sietuvas sako, kad reikia HIP ataskaita.\n" #: gpst.c:972 msgid "Gateway says no HIP report submission is needed.\n" msgstr "Tinklų sietuvas sako, kad HIP ataskaitos nereikia.\n" #: gpst.c:999 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "Prisijungta prie ESP tunelio; išeinama iš HTTPS pagrindinio ciklo.\n" #: gpst.c:1015 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "Nepavyko prisijungti prie ESP tunelio; vietoj to naudojamas HTTPS.\n" #: gpst.c:1051 #, c-format msgid "Packet receive error: %s\n" msgstr "Paketo gavimo klaida: %s\n" #: gpst.c:1072 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" "Nelauktas paketo ilgis. SSL_read grąžino %d (įskaitant 16 antraštės baitų), " "bet antraštė payload_len yra %d\n" #: gpst.c:1082 msgid "Got GPST DPD/keepalive response\n" msgstr "Gautas CSTP DPD/keepalive atsakymas\n" #: gpst.c:1086 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" "Laukta 0000000000000000 kaip paskutinių 8 baitų DPD/keepalive paketo " "antraštėje, bet gauta:\n" #: gpst.c:1092 #, c-format msgid "Received data packet of %d bytes\n" msgstr "Gautas %d baitų duomenų paketas\n" #: gpst.c:1101 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" "Laukta 0100000000000000 kaip paskutinių 8 baitų duomenų paketo antraštėje, " "bet gauta:\n" #: gpst.c:1109 msgid "Unknown packet. Header dump follows:\n" msgstr "Nežinomas paketas. Antraštė yra:\n" #: gpst.c:1157 msgid "GlobalProtect rekey due\n" msgstr "GlobalProtect raktų pakeitimas\n" #: gpst.c:1162 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "GPST negyvų porininkų aptikimas aptiko negyvą porininką!\n" #: gpst.c:1182 msgid "Send GPST DPD/keepalive request\n" msgstr "Siųsti GPST DPD/keepalive užklausą\n" #: gpst.c:1202 #, c-format msgid "Sending data packet of %d bytes\n" msgstr "Siunčiamas %d baitų duomenų paketas\n" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Klaida importuojant GSSAPI pavadinimą tapatybės patvirtinimui:\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "Klaida generuojant GSSAPI atsakymą:\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "Bandomas GSSAPI tapatybės patvirtinimą tarpiniame serveryje\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "Bandomas GSSAPI tapatybės patvirtinimą tarpiniame serveryje „%s“\n" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "GSSAPI tapatybės patvirtinimas užbaigtas\n" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "GSSAPI leksema per didelė (%zd baitai)\n" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "Siunčiama %zu baitų GSSAPI leksema\n" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" "Nepavyko išsiųsti GSSAPI tapatybės patvirtinimo leksemos į tarpinį serverį: " "%s\n" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" "Nepavyko gauti GSSAPI tapatybės patvirtinimo leksemos iš tarpinio serverio: " "%s\n" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "SOCKS serveris pranešį apie GSSAPI konteksto klaidą\n" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "Nežinomas GSSAPI būsenos atsakymas (0x%02x) iš SOCKS serverio\n" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "Gauta %zu baitų GSSAPI leksema: %02x %02x %02x %02x\n" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "Siunčiamas GSSAPI apsaugos prašymas iš %zu baitų\n" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "Nepavyko išsiųsti GSSAPI apsaugos atsakymo į tarpinį serverį: %s\n" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "Nepavyko gauti GSSAPI apsaugos atsakymo iš tarpinio serverio: %s\n" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "Gautas GSSAPI apsaugos atsakymas iš %zu baitų: %02x %02x %02x %02x\n" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" "Netinkamas GSSAPI apsaugos atsakymas iš tarpinio serverio (%zu baitai)\n" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" "SOCKS tarpinis serveris prašo pranešimų vientisumo, kuris nepalaikomas\n" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" "SOCKS tarpinis serveris prašo pranešimų konfidencialumo, kuris nepalaikomas\n" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "SOCKS tarpinis serveris prašo nežinomo tipo 0x%02x apsaugos\n" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "Bandomas HTTP Basic tapatybės patvirtinimas tarpiniame serveryje\n" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" "Bandomas HTTP Basic tapatybės patvirtinimas tarpiniame serveryje „%s“\n" #: http-auth.c:200 http.c:1165 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "Ši OpenConnect versija sukurta be GSSAPI palaikymo\n" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" "Tarpinis serveris paprašė Basic tapatybės patvirtinimo, kuris yra numatytai " "išjungtas\n" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" "Serveris „%s“ paprašė Basic tapatybės patvirtinimo, kuris yra numatytai " "išjungtas\n" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "Daugiau nebėra bandomų tapatybės patvirtinimo metodų\n" #: http.c:319 msgid "No memory for allocating cookies\n" msgstr "Nėra atminties slapukams\n" #: http.c:394 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Nepavyko perskaityti HTTP atsakymo „%s“\n" #: http.c:400 #, c-format msgid "Got HTTP response: %s\n" msgstr "Gautas HTTP atsakymas: %s\n" #: http.c:408 msgid "Error processing HTTP response\n" msgstr "Klaida apdorojant HTTP atsakymą\n" #: http.c:415 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Nepaisoma nežinomo HTTP atsakymo eilutėje „%s“\n" #: http.c:435 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Pasiūlytas neteisingas slapukas: %s\n" #: http.c:454 msgid "SSL certificate authentication failed\n" msgstr "SSL liudijimo tapatybės patvirtinimas nepavyko\n" #: http.c:485 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Atsakymo pagrindinė dalis yra neigiamo dydžio (%d)\n" #: http.c:496 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Nežinoma perdavimo koduotė: %s\n" #. Now the body, if there is one #: http.c:515 #, c-format msgid "HTTP body %s (%d)\n" msgstr "HTTP pagrindinė dalis %s (%d)\n" #: http.c:529 http.c:556 msgid "Error reading HTTP response body\n" msgstr "Klaida skaitant HTTP atsakymo pagrindinę dalį\n" #: http.c:542 msgid "Error fetching chunk header\n" msgstr "Klaida parsiunčiant dalies antraštę\n" #: http.c:566 msgid "Error fetching HTTP response body\n" msgstr "Klaida parsiunčiant HTTP atsakymo pagrindinę dalį\n" #: http.c:569 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "Klaida padalintame dekodavime. Tikėtasi „“, gauta: „%s“" #: http.c:581 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Negalima gauti HTTP 1.0 pagrindinės dalies neužveriant ryšio\n" #: http.c:708 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Nepavyko perskaityti nukreiptojo URL „%s“: %s\n" #: http.c:732 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Negalima sekti nukreipimu į ne https URL „%s“\n" #: http.c:760 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Nepavyko išskirti naujo kelio santykiniam nukreipimui: %s\n" #: http.c:973 oncp.c:591 #, c-format msgid "Unexpected %d result from server\n" msgstr "Netikėtas %d rezultatas iš serverio\n" #: http.c:1021 msgid "request granted" msgstr "prašymas patvirtintas" #: http.c:1022 msgid "general failure" msgstr "bendroji klaida" #: http.c:1023 msgid "connection not allowed by ruleset" msgstr "ryšis neleistas pagal taisykles" #: http.c:1024 msgid "network unreachable" msgstr "tinklas nepasiekiamas" #: http.c:1025 msgid "host unreachable" msgstr "serveris nepasiekiamas" #: http.c:1026 msgid "connection refused by destination host" msgstr "ryšį atmetė paskirties serveris" #: http.c:1027 msgid "TTL expired" msgstr "TTL laikas baigėsi" #: http.c:1028 msgid "command not supported / protocol error" msgstr "komanda nepalaikoma / protokolo klaida" #: http.c:1029 msgid "address type not supported" msgstr "adreso tipas nepalaikomas" #: http.c:1039 msgid "SOCKS server requested username/password but we have none\n" msgstr "" "SOCKS serveris paprašė naudotojo vardo/slaptažodžio, bet mes jokių neturime\n" #: http.c:1047 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" "Naudotojo vardas ir slaptažodis SOCKS tapatybės patvirtinimui turi būti < " "255 baitai\n" #: http.c:1062 http.c:1118 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Klaida rašant auth užklausą į SOCKS tarpinį serverį: %s\n" #: http.c:1070 http.c:1125 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Klaida skaitant auth atsakymą iš SOCKS tarpinio serverio: %s\n" #: http.c:1077 http.c:1131 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Netikėtas auth atsakymas iš SOCKS tarpinio serverio: %02x %02x\n" #: http.c:1083 msgid "Authenticated to SOCKS server using password\n" msgstr "Patvirtinta tapatybė SOCKS serveryje naudojant slaptažodį\n" #: http.c:1087 msgid "Password authentication to SOCKS server failed\n" msgstr "Nepavyko patvirtinti tapatybės slaptažodžius SOCKS serveryje\n" #: http.c:1143 http.c:1150 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "Socks serveris paprašė GSSAPI tapatybės patvirtinimo\n" #: http.c:1156 msgid "SOCKS server requested password authentication\n" msgstr "Socks serveris paprašė tapatybės patvirtinimo slaptažodžiu\n" #: http.c:1163 msgid "SOCKS server requires authentication\n" msgstr "Socks serveris paprašė tapatybės patvirtinimo\n" #: http.c:1170 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "Socks serveris paprašė nežinomo tipo %02x tapatybės patvirtinimo\n" #: http.c:1176 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Prašomas SOCKS tarpinio serverio ryšio į %s:%d\n" #: http.c:1191 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Klaida rašant ryšio prašymą į SOCKS tarpinį serverį: %s\n" #: http.c:1199 http.c:1241 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Klaida skaitant jungimosi atsakymą iš SOCKS tarpinio serverio: %s\n" #: http.c:1205 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "" "Nelauktas jungimosi atsakymas iš SOCKS tarpinio serverio: %02x %02x...\n" #: http.c:1213 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "SOCKS tarpinio serverio klaida %02x: %s\n" #: http.c:1217 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "SOCKS tarpinio serverio klaida %02x\n" #: http.c:1234 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Nelauktas adreso tipas %02x SOCKS jungimosi atsakyme\n" #: http.c:1257 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Prašomas HTTP tarpinio serverio ryšio į %s:%d\n" #: http.c:1292 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Tarpinio serverio prašymo siuntimas nepavyko: %s\n" #: http.c:1315 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "Tarpinio serverio CONNECT užklausa nepavyko: %d\n" #: http.c:1334 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Nežinomas tarpinio serverio tipas „%s“\n" #: http.c:1383 msgid "Only http or socks(5) proxies supported\n" msgstr "Palaikomi tik http arba socks(5) tarpiniai serveriai\n" #: library.c:112 msgid "Cisco AnyConnect or openconnect" msgstr "Cisco AnyConnect ar openconnect" #: library.c:113 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "Suderinamas su Cisco AnyConnect SSL VPN taip pat kaip ir su ocserv" #: library.c:129 msgid "Juniper Network Connect" msgstr "Juniper Network Connect" #: library.c:130 msgid "Compatible with Juniper Network Connect / Pulse Secure SSL VPN" msgstr "Suderinamas su Juniper Network Connect / Pulse Secure SSL VPN" #: library.c:148 msgid "Palo Alto Networks GlobalProtect" msgstr "Palo Alto Networks GlobalProtect" #: library.c:149 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "Suderinamas su Palo Alto Networks (PAN) GlobalProtect SSL VPN" #: library.c:211 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "Nežinomas VPN protokolas „%s“\n" #: library.c:233 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Sukurta naudojant SSL biblioteką be Cisco DTLS palaikymo\n" #: library.c:656 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Nepavyko perskaityti serverio URL „%s“\n" #: library.c:662 msgid "Only https:// permitted for server URL\n" msgstr "Leidžiami tik https:// serverio URL\n" #: library.c:1056 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "Nežinoma liudijimo maiša: %s.\n" #: library.c:1085 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" "Pateikto kontrolinio kodo dydis yra mažesnis nei mažiausias reikalaujamas " "dydis (%u).\n" #: library.c:1146 msgid "No form handler; cannot authenticate.\n" msgstr "Nėra formos apdorotojo; negalima patvirtinti tapatybės.\n" #: main.c:340 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "CommandLineToArgvW() nepavyko: %s\n" #: main.c:353 #, c-format msgid "Fatal error in command line handling\n" msgstr "Lemtinga klaida komandų eilutės apdorojime\n" #: main.c:388 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "ReadConsole() nepavyko: %s\n" #: main.c:401 #, c-format msgid "fgetws() failed: %s\n" msgstr "fgetws() nepavyko: %s\n" #: main.c:416 main.c:429 #, c-format msgid "Error converting console input: %s\n" msgstr "Klaida konvertuojant terminalo įvestį: %s\n" #: main.c:423 main.c:689 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Nepavyko eilutės iš stdin išskyrimas\n" #: main.c:584 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" "Pagalbą dirbant su OpenConnect rasite tinklapyje adresu\n" " http://www.infradead.org/openconnect/mail.html\n" #: main.c:593 #, c-format msgid "Using OpenSSL. Features present:" msgstr "Naudojama OpenSSL. Turimos savybės:" #: main.c:595 #, c-format msgid "Using GnuTLS. Features present:" msgstr "Naudojama GnuTLS. Turimos savybės:" #: main.c:608 msgid "OpenSSL ENGINE not present" msgstr "OpenSSL variklio nėra" #: main.c:647 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" "ĮSPĖJIMAS: Šioje programoje trūksta DTLS ir/ar ESP palaikymo. Našumas bus " "blogesnis.\n" #: main.c:657 #, c-format msgid "Supported protocols:" msgstr "Palaikomi protokolai:" #: main.c:659 main.c:675 msgid " (default)" msgstr " (numatytasis)" #: main.c:672 msgid "Set VPN protocol" msgstr "Nustatyti VPN protokolą" #: main.c:713 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:754 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Negalima apdoroti šio vykdomojo failo kelio „%s“" #: main.c:760 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "Nepavyko išskirti vpnc-script keliui\n" #: main.c:780 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "Perrašomas serverio pavadinimas iš „%s“ į „%s“\n" #: main.c:793 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Naudojimas: openconnect [parametrai] \n" #: main.c:794 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "Atverti klientą, skirtą keliems VPN protokolams, versiją %s\n" #: main.c:796 msgid "Read options from config file" msgstr "Skaityti parametrus iš konfigūracijos failo" #: main.c:797 msgid "Report version number" msgstr "Pranešti versijos numerį" #: main.c:798 msgid "Display help text" msgstr "Rodyti pagalbos tekstą" #: main.c:802 msgid "Authentication" msgstr "Tapatybės patvirtinimas" #: main.c:803 msgid "Set login username" msgstr "Nustatyti prisijungimo naudotojo vardą" #: main.c:804 msgid "Disable password/SecurID authentication" msgstr "Išjungti slaptažodžio/SecurID tapatybės patvirtinimą" #: main.c:805 msgid "Do not expect user input; exit if it is required" msgstr "Nelaukti naudotojo įvesties; išeiti, jei ji būtina" #: main.c:806 msgid "Read password from standard input" msgstr "Skaityti slaptažodį iš standartinės įvesties" #: main.c:807 msgid "Choose authentication login selection" msgstr "Pasirinkite tapatybės patvirtinimo prisijungimo pasirinkimą" #: main.c:808 msgid "Provide authentication form responses" msgstr "" #: main.c:809 msgid "Use SSL client certificate CERT" msgstr "Naudoti SSL kliento liudijimą CERT" #: main.c:810 msgid "Use SSL private key file KEY" msgstr "Naudoti SSL privataus rakto failą RAKTAS" #: main.c:811 msgid "Warn when certificate lifetime < DAYS" msgstr "Įspėti, kai liudijimo galiojimas < DIENŲ" #: main.c:812 msgid "Set login usergroup" msgstr "Nustatyti prisijungimo naudotojo grupę" #: main.c:813 msgid "Set key passphrase or TPM SRK PIN" msgstr "Nustatyti rakto slaptažodį arba TPM SRK PIN" #: main.c:814 msgid "Key passphrase is fsid of file system" msgstr "Rakto slaptažodis yra failų sistemos fsid" #: main.c:815 msgid "Software token type: rsa, totp or hotp" msgstr "Programinės leksemos tipas: rsa, totp arba hotp" #: main.c:816 msgid "Software token secret" msgstr "Programinės leksemos paslaptis" #: main.c:818 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "(PASTABA: libstoken (RSA SecurID) išjungta šioje programoje)" #: main.c:821 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(PASTABA: Yubikey OATH išjungtas šioje programoje)" #: main.c:824 msgid "Server validation" msgstr "Serverio tikrinimas" #: main.c:825 msgid "Server's certificate SHA1 fingerprint" msgstr "Serverio liudijimo SHA1 piršto atspaudas" #: main.c:826 msgid "Do not require server SSL cert to be valid" msgstr "Nereikalauti, kad serverio SSL liudijimas būtų teisingas" #: main.c:827 msgid "Disable default system certificate authorities" msgstr "Išjungti numatytąsias sistemos liudijimų įstaigas" #: main.c:828 msgid "Cert file for server verification" msgstr "Liudijimo failas serverio patikrinimui" #: main.c:830 msgid "Internet connectivity" msgstr "Interneto ryšys" #: main.c:831 msgid "Set proxy server" msgstr "Nustatyti tarpinį serverį" #: main.c:832 msgid "Set proxy authentication methods" msgstr "Nustatyti tarpinio serverio tapatybės patvirtinimo metodus" #: main.c:833 msgid "Disable proxy" msgstr "Išjungti tarpinį serverį" #: main.c:834 msgid "Use libproxy to automatically configure proxy" msgstr "Naudoti libproxy automatiniam tarpinio serverio konfigūravimui" #: main.c:836 msgid "(NOTE: libproxy disabled in this build)" msgstr "(PASTABA: libproxy išjungtas šioje programoje)" #: main.c:838 msgid "Connection retry timeout in seconds" msgstr "Jungimosi pakartotinio bandymo laikas sekundėmis" #: main.c:839 msgid "Use IP when connecting to HOST" msgstr "Naudoti IP jungiantis prie SERVERIO" #: main.c:840 msgid "copy TOS / TCLASS when using DTLS" msgstr "nukopijuoti TOS / TCLASS, kai naudojamas DTLS" #: main.c:841 msgid "Set local port for DTLS and ESP datagrams" msgstr "Nustatyti vietinį prievadą DTLS ir ESP datagramoms" #: main.c:843 msgid "Authentication (two-phase)" msgstr "Tapatybės patvirtinimas (dviejų fazių)" #: main.c:844 msgid "Use authentication cookie COOKIE" msgstr "Naudoti tapatybės patvirtinimo slapuką SLAPUKAS" #: main.c:845 msgid "Read cookie from standard input" msgstr "Nuskaityti slapuką iš standartinės įvesties" #: main.c:846 msgid "Authenticate only and print login info" msgstr "Tik patvirtinti tapatybę ir atspausdinti prisijungimo informaciją" #: main.c:847 msgid "Fetch and print cookie only; don't connect" msgstr "Tik parsisiųsti ir atspausdinti slapuką; neprisijungti" #: main.c:848 msgid "Print cookie before connecting" msgstr "Atspausdinti slapuką prieš jungiantis" #: main.c:851 msgid "Process control" msgstr "Proceso valdymas" #: main.c:852 msgid "Continue in background after startup" msgstr "Tęsti fone po paleidimo" #: main.c:853 msgid "Write the daemon's PID to this file" msgstr "Įrašyti tarnybos PID į šį failą" #: main.c:854 msgid "Drop privileges after connecting" msgstr "Atsisakyti privilegijų po prisijungimo" #: main.c:857 msgid "Logging (two-phase)" msgstr "Prisijungimas (dviejų fazių)" #: main.c:859 msgid "Use syslog for progress messages" msgstr "Naudoti syslog eigos pranešimams" #: main.c:861 msgid "More output" msgstr "Daugiau išvesties" #: main.c:862 msgid "Less output" msgstr "Mažiau išvesties" #: main.c:863 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "Įrašyti HTTP tapatybės patvirtinimo srautą (įtraukia --verbose)" #: main.c:864 msgid "Prepend timestamp to progress messages" msgstr "Prie eigos pranešimų pridėti laiko žymą" #: main.c:866 msgid "VPN configuration script" msgstr "VPN konfigūracijos scenarijus" #: main.c:867 msgid "Use IFNAME for tunnel interface" msgstr "Naudoti IFNAME tunelio sąsajai" #: main.c:868 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" "Apvalkalo komandų eilutė vpnc-suderinamam konfigūracijos scenarijui naudoti" #: main.c:869 msgid "default" msgstr "numatyta" #: main.c:871 msgid "Pass traffic to 'script' program, not tun" msgstr "Siųsti srautą į „scenarijaus“ programą, ne tun" #: main.c:874 msgid "Tunnel control" msgstr "Tunelio valdymas" #: main.c:875 msgid "Do not ask for IPv6 connectivity" msgstr "Neklausti IPv6 jungimosi" #: main.c:876 msgid "XML config file" msgstr "XML konfigūracijos failas" #: main.c:877 msgid "Request MTU from server (legacy servers only)" msgstr "Prašyti MTU iš serverio (tik pasenusiems serveriams)" #: main.c:878 msgid "Indicate path MTU to/from server" msgstr "Nurodyti kelią MTU į/iš serverio" #: main.c:879 msgid "Enable stateful compression (default is stateless only)" msgstr "Įjungti suspaudimą su būsena (numatyta yra tik be būsenos)" #: main.c:880 msgid "Disable all compression" msgstr "Išjungti visą suspaudimą" #: main.c:881 msgid "Set minimum Dead Peer Detection interval" msgstr "Nustatyti mažiausią negyvų porininkų aptikimo intervalą" #: main.c:882 msgid "Require perfect forward secrecy" msgstr "Reikalauti tobulo pirminio slaptumo" #: main.c:883 msgid "Disable DTLS and ESP" msgstr "Išjungti DTLS ir ESP" #: main.c:884 msgid "OpenSSL ciphers to support for DTLS" msgstr "OpenSSL šifrais DTLS palaikymui" #: main.c:885 msgid "Set packet queue limit to LEN pkts" msgstr "Nustatyti paketų eilės ribą į LEN paketų" #: main.c:887 msgid "Local system information" msgstr "Vietinės sistemos informacija" #: main.c:888 msgid "HTTP header User-Agent: field" msgstr "HTTP antraštės User-Agent: laukas" #: main.c:889 msgid "Local hostname to advertise to server" msgstr "Vietinis vardas, pranešamas serveriui" #: main.c:890 msgid "OS type (linux,linux-64,win,...) to report" msgstr "Pranešamas OS tipas (linux,linux-64,win,...)" #: main.c:891 msgid "reported version string during authentication" msgstr "" #: main.c:892 msgid "default:" msgstr "" #: main.c:895 msgid "Trojan binary (CSD) execution" msgstr "Trojos arklio (CSD) vykdymas" #: main.c:896 msgid "Drop privileges during trojan execution" msgstr "Atsisakyti privilegijų vykdant trojos arklį" #: main.c:897 msgid "Run SCRIPT instead of trojan binary" msgstr "Vykdyti SCENARIJŲ vietoj trojos arklio programos" #: main.c:900 msgid "Server bugs" msgstr "Serverio klaidos" #: main.c:901 msgid "Disable HTTP connection re-use" msgstr "Išjungti HTTP ryšio pakartotinį naudojimą" #: main.c:902 msgid "Do not attempt XML POST authentication" msgstr "Nemėginti XML POST tapatybės patvirtinimo" #: main.c:924 #, c-format msgid "Failed to allocate string\n" msgstr "Nepavyko išskirti simbolių eilutės\n" #: main.c:997 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Nepavyko gauti eilutės iš konfigūracijos failo: %s\n" #: main.c:1037 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Neatpažintas parametras eilutėje %d: „%s“\n" #: main.c:1047 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Parametrui „%s“ nereikia argumento eilutėje %d\n" #: main.c:1051 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Parametrui „%s“ būtinas argumentas eilutėje %d\n" #: main.c:1076 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "Netinkamas naudotojas „%s“: %s\n" #: main.c:1086 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "Netinkamas naudotojo ID „%d“: %s\n" #: main.c:1130 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "ĮSPĖJIMAS: nepavyko nustatyti lokalės: %s\n" #: main.c:1140 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "ĮSPĖJIMAS: ši openconnect versija buvo sukurta be iconv\n" " palaikymo, bet atrodo, kad naudojate seną simbolių\n" " koduotę „%s“. Tikėkitės keistumų.\n" #: main.c:1147 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "ĮSPĖJIMAS: Ši openconnect versija yra %s, bet\n" " libopenconnect biblioteka yra %s\n" #: main.c:1157 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Nepavyko išskirti vpninfo struktūros\n" #: main.c:1215 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Nepavyko naudoti „config“ parametro konfigūracijos faile\n" #: main.c:1223 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Nepavyko atverti konfigūracijos failo „%s“: %s\n" #: main.c:1239 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "Netinkama suspaudimo veiksena „%s“\n" #: main.c:1260 #, c-format msgid "Missing colon in resolve option\n" msgstr "Trūksta dvitaškio resolve parametre\n" #: main.c:1265 #, c-format msgid "Failed to allocate memory\n" msgstr "Nepavyko išskirti atminties\n" #: main.c:1349 main.c:1358 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d per mažas\n" #: main.c:1388 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Išjungiami visi HTTP ryšių pakartotiniai naudojimai dėl --no-http-keepalive\n" "parametro. Jei tai padės, praneškite .\n" #: main.c:1394 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" "Parametras --no-cert-check buvo nesaugus ir buvo pašalintas.\n" "Pataisykite savo serverio liugijimą arba naudokite --servercert is juo " "pasitikėkite.\n" #: main.c:1411 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Neleidžiamas nulinis eilės ilgis; naudojamas 1\n" #: main.c:1425 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect versija %s\n" #: main.c:1463 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Netinkama programinės leksemos veiksena „%s“\n" #: main.c:1473 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "Netinkamas OS identitetas „%s“\n" #: main.c:1506 #, c-format msgid "Too many arguments on command line\n" msgstr "Per daug argumentų komandų eilutėje\n" #: main.c:1509 #, c-format msgid "No server specified\n" msgstr "Nenurodytas serveris\n" #: main.c:1525 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "Ši openconnect versija sukurta be libproxy palaikymo\n" #: main.c:1555 #, c-format msgid "Error opening cmd pipe\n" msgstr "Klaida atveriant cmd kanalą\n" #: main.c:1588 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "Nepavyko gauti WebVPN slapuko\n" #: main.c:1609 #, c-format msgid "Creating SSL connection failed\n" msgstr "Nepavyko sukurti SSL ryšio\n" #: main.c:1625 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "Nepavyko nustatyti UDP; vietoj to naudojama SSL\n" #: main.c:1633 #, c-format msgid "Connected as %s%s%s, using SSL%s%s, with %s%s%s %s\n" msgstr "Prisijungta kaip %s%s%s, naudojant SSL%s%s, su %s%s%s %s\n" #: main.c:1639 msgid "disabled" msgstr "išjungta" #: main.c:1639 msgid "in progress" msgstr "vykdoma" #: main.c:1643 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "Nepateiktas --script argumentas; DNS ir maršrutizavimas nesukonfigūruoti\n" #: main.c:1645 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Žiūrėkite http://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:1658 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Nepavyko atverti „%s“ rašymui: %s\n" #: main.c:1670 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Tęsiama fone; pid %d\n" #: main.c:1687 msgid "User requested reconnect\n" msgstr "Naudotojas paprašė persijungti\n" #: main.c:1695 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "Persijungiant atmestas slapukas; išeinama.\n" #: main.c:1699 msgid "Session terminated by server; exiting.\n" msgstr "Serveris nutraukė seansą; išeinama.\n" #: main.c:1703 msgid "User cancelled (SIGINT/SIGTERM); exiting.\n" msgstr "" #: main.c:1707 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "Naudotojas atsijungė nuo seanso (SIGHUP); išeinama.\n" #: main.c:1711 msgid "Unknown error; exiting.\n" msgstr "Nežinoma klaida; išeinama.\n" #: main.c:1730 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Nepavyko atverti %s rašymui: %s\n" #: main.c:1738 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Nepavyko įrašyti konfigūracijos į %s: %s\n" #: main.c:1797 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "Serverio SSL liudijimas neatitiko: %s\n" #: main.c:1816 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Liudijimas iš VPN serverio „%s“ nepraėjo patikrinimo.\n" "Priežastis: %s\n" #: main.c:1819 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" "Norėdami pasitikėti šiuo serveriu ateityje, galite pridėti prie savo komandų " "eilutės:\n" #: main.c:1820 #, c-format msgid " --servercert %s\n" msgstr " --servercert %s\n" #: main.c:1825 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "Įveskite „%s“ sutikimui, „%s“ nutraukimui; bet ką kitą peržiūrai: " #: main.c:1826 main.c:1844 msgid "no" msgstr "ne" #: main.c:1826 main.c:1832 msgid "yes" msgstr "taip" #: main.c:1853 #, c-format msgid "Server key hash: %s\n" msgstr "Serverio rakto maišos vertė: %s\n" #: main.c:1887 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Auth pasirinkimas „%s“ atitinka kelis parametrus\n" #: main.c:1890 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Auth pasirinkimo „%s“ nėra\n" #: main.c:1911 msgid "User input required in non-interactive mode\n" msgstr "Būtina naudotojo įvestis neinteraktyvioje veiksenoje\n" #: main.c:2149 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Nepavyko atverti leksemos failo rašymui: %s\n" #: main.c:2157 #, c-format msgid "Failed to write token: %s\n" msgstr "Nepavyko įrašyti leksemos: %s\n" #: main.c:2203 main.c:2224 #, c-format msgid "Soft token string is invalid\n" msgstr "Švelni leksemos eilutė netinkama\n" #: main.c:2206 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Nepavyko atverti ~/.stokenrc failo\n" #: main.c:2209 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "OpenConnect nebuvo sukurtas su libstoken palaikymu\n" #: main.c:2212 #, c-format msgid "General failure in libstoken\n" msgstr "Bendra libstoken klaida\n" #: main.c:2227 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "OpenConnect nebuvo sukurta su liboath palaikymu\n" #: main.c:2230 #, c-format msgid "General failure in liboath\n" msgstr "Bendra liboath klaida\n" #: main.c:2241 #, c-format msgid "Yubikey token not found\n" msgstr "Yubikey leksema nerasta\n" #: main.c:2244 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "OpenConnect nebuvo sukurtas su Yubikey palaikymu\n" #: main.c:2247 #, c-format msgid "General Yubikey failure: %s\n" msgstr "Bendroji Yubikey klaida: %s\n" #: mainloop.c:127 #, c-format msgid "Set up tun script failed\n" msgstr "Nepavyko nustatyti tun scenarijaus\n" #: mainloop.c:134 #, c-format msgid "Set up tun device failed\n" msgstr "Nepavyko nustatyti tun įrenginio\n" #: mainloop.c:265 msgid "Caller paused the connection\n" msgstr "Kvietėjas pristabdė ryšį\n" #: mainloop.c:273 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Nėra darbo; miegama %d ms...\n" #: mainloop.c:294 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "WaitForMultipleObjects nepavyko: %s\n" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "InitializeSecurityContext() nepavyko: %lx\n" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "AcquireCredentialsHandle() nepavyko: %lx\n" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "Klaida komunikuojant su ntlm_auth pagalbininku\n" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" "Bandomas HTTP NTLM tapatybės patvirtinimas tarpiniame serveryje (vienas " "prisijungimas)\n" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" "Bandomas HTTP NTLM tapatybės patvirtinimas tarpiniame serveryje „%s“ (vienas " "prisijungimas)\n" #: ntlm.c:978 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "Bandomas HTTP NTLM%d tapatybės patvirtinimas tarpiniame serveryje\n" #: ntlm.c:982 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" "Bandomas HTTP NTLM%d tapatybės patvirtinimas tarpiniame serveryje „%s“\n" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "Netinkama base32 leksema\n" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "Klaida išskiriant atminties OATH paslapties dekodavimui\n" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "Ši OpenConnect versija sukurta be PSKC palaikymo\n" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "GERAI PRADINIAM tokencode generuoti\n" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "GERAI KITAM tokencode generuoti\n" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" "Serveris atmeta programinę leksemą; persijungiama prie rankinio įvedimo\n" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "Generuojamas OATH TOTP leksemos kodas\n" #: oath.c:565 msgid "Generating OATH HOTP token code\n" msgstr "Generuojamas OATH HOTP leksemos kodas\n" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "Netinkamas slapukas „%s“\n" #: oncp.c:160 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "Nelaukas TLV ilgis %d %d/%d\n" #: oncp.c:166 #, c-format msgid "Received MTU %d from server\n" msgstr "Gautas MTU %d iš serverio\n" #: oncp.c:175 #, c-format msgid "Received DNS server %s\n" msgstr "Gautas DNS serveris %s\n" #: oncp.c:186 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "Gautas DNS paieškos domenas %.*s\n" #: oncp.c:201 #, c-format msgid "Received internal IP address %s\n" msgstr "Gautas vidinis IP adresas %s\n" #: oncp.c:210 #, c-format msgid "Received netmask %s\n" msgstr "Gauta tinklo kaukė %s\n" #: oncp.c:219 #, c-format msgid "Received internal gateway address %s\n" msgstr "Gautas vidinis šliuzo adresas %s\n" #: oncp.c:232 #, c-format msgid "Received split include route %s\n" msgstr "Gautas padalinimas įtraukia kelią %s\n" #: oncp.c:254 #, c-format msgid "Received split exclude route %s\n" msgstr "Gautas padalinimas išmeta kelią %s\n" #: oncp.c:274 #, c-format msgid "Received WINS server %s\n" msgstr "Gautas WINS serveris %s\n" #: oncp.c:297 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "ESP šifravimas: 0x%02x (%s)\n" #: oncp.c:316 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "ESP HMAC: 0x%02x (%s)\n" #: oncp.c:327 #, c-format msgid "ESP compression: %d\n" msgstr "ESP suspaudimas: %d\n" #: oncp.c:335 #, c-format msgid "ESP port: %d\n" msgstr "ESP prievadas: %d\n" #: oncp.c:342 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "ESP rakto gyvenimas: %u baitai\n" #: oncp.c:350 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "ESP rakto gyvenimas: %u sekundės\n" #: oncp.c:358 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "ESP į SSL atsarginė veiksena: %u sekundės\n" #: oncp.c:366 #, c-format msgid "ESP replay protection: %d\n" msgstr "ESP pakartojimo apsauga: %d\n" #: oncp.c:374 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "ESP SPI (išeinantis): %x\n" #: oncp.c:383 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "%d baitai ESP paslapčių\n" #: oncp.c:395 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "Nežinoma TLV grupė %d attr %d ilgis %d:%s\n" #: oncp.c:473 msgid "Failed to parse KMP header\n" msgstr "Nepavyko perskaityti KMP antraštės\n" #: oncp.c:490 msgid "Failed to parse KMP message\n" msgstr "Nepavyko perskaityti KMP pranešimo\n" #: oncp.c:496 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "Gautas KMP pranešimas %d, dydis %d\n" #: oncp.c:512 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "Gautas ne-ESP TLV (grupė %d) ESP prašyme KMP\n" #: oncp.c:577 oncp.c:609 oncp.c:747 msgid "Error creating oNCP negotiation request\n" msgstr "Klaida kuriant oNCP prašymą\n" #: oncp.c:618 oncp.c:783 msgid "Short write in oNCP negotiation\n" msgstr "Per trumpas oNCP prašymas\n" #: oncp.c:631 oncp.c:666 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "Perskaityti %d SSL įrašo baitų\n" #: oncp.c:636 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "Laukta %d dydžio atsakymo po serverio paketo\n" #: oncp.c:643 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "Serverio atsakymas serverio pavadinimo paketui yra klaida 0x%02x\n" #: oncp.c:670 msgid "Invalid packet waiting for KMP 301\n" msgstr "Netinkamas paketas laukiant KMP 301\n" #: oncp.c:683 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "Laukas KMP pranešimo 301 iš serverio, bet gauta %d\n" #: oncp.c:692 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "KMP pranešimas 301 iš serverio yra per didelis (%d baitai)\n" #: oncp.c:698 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "Gautas KMP pranešimas 301, ilgis %d\n" #: oncp.c:705 msgid "Failed to read continuation record length\n" msgstr "Nepavyko perskaityti tęsinio įrašo ilgio\n" #: oncp.c:711 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "Papildomų %d baitų įrašymas yra per didelis; būtų %d\n" #: oncp.c:720 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "Nepavyko perskaityti %d ilgio įrašo\n" #: oncp.c:726 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "Perskaityti papildomus %d KMP 301 pranešimo baitus\n" #: oncp.c:767 msgid "Error negotiating ESP keys\n" msgstr "Klaida apsikeičiant ESP raktais\n" #: oncp.c:776 msgid "oNCP negotiation request outgoing:\n" msgstr "Išeinančios oNCP užklausos prašymas:\n" #: oncp.c:829 msgid "new incoming" msgstr "nauji gaunami duomenys" #: oncp.c:830 msgid "new outgoing" msgstr "nauji siunčiami duomenys" #: oncp.c:855 msgid "Read only 1 byte of oNCP length field\n" msgstr "Perskaityti tik 1 baito ilgio oNCP lauką\n" #: oncp.c:864 msgid "Server terminated connection (session expired)\n" msgstr "Serveris nutraukė ryšį (baigėsi seansas)\n" #: oncp.c:868 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "Serveris nutraukė ryšį (priežastis: %d)\n" #: oncp.c:874 msgid "Server sent zero-length oNCP record\n" msgstr "Serveris atsiuntė nulinio ilgio oNCP įrašą\n" #: oncp.c:969 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "Gaunamas KMP pranešimas %d, dydis %d (gauta %d)\n" #: oncp.c:972 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "Tęsiamas KMP pranešimo %d apdorojimas, dabar dydis %d (gauta %d)\n" #: oncp.c:991 msgid "Unrecognised data packet\n" msgstr "Neatpažintas duomenų paketas\n" #: oncp.c:1053 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "Nežinomas KMP pranešimas %d, dydis %d:\n" #: oncp.c:1058 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr ".... + %d papildomų baitų gauta\n" #: oncp.c:1073 msgid "Packet outgoing:\n" msgstr "Išeinantys paketai:\n" #: oncp.c:1134 msgid "Sent ESP enable control packet\n" msgstr "Išsiųsta ESP įjungimo kontrolinis paketas\n" #: oncp.c:1268 msgid "Logout successful.\n" msgstr "Atsijungimas sėkmingas.\n" #: openconnect-internal.h:1119 openconnect-internal.h:1127 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "KLAIDA: %s() iškviesta su netinkamu UTF-8 „%s“ argumentui\n" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "Nepavyko apskaičiuoti pridėtinio DTLS, skirto %s\n" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "Nepavyko sugeneruoti atsitiktinio rakto\n" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "Nepavyko sukurti OpenSSL SSL_SESSION ASN.1: %s\n" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "OpenSSL nepavyko perskaityti SSL_SESSION ASN.1\n" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "Nepavyko inicializuoti DTLSv1 seanso\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "Per didelis programos ID dydis\n" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "PSK iškvieta\n" #: openssl-dtls.c:365 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Nepavyko inicializuoti DTLSv1 CTX\n" #: openssl-dtls.c:378 msgid "Set DTLS CTX version failed\n" msgstr "Nepavyko nustatyti DTLS CTX versijos\n" #: openssl-dtls.c:395 msgid "Failed to generate DTLS key\n" msgstr "Nepavyko sugeneruoti DTLS rakto\n" #: openssl-dtls.c:413 msgid "Set DTLS cipher list failed\n" msgstr "Nepavyko nustatyti DTLS šifrų\n" #: openssl-dtls.c:439 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:460 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "SSL_set_session() nepavyko su sena protokolo versija 0x%x\n" "Ar naudojate OpenSSL versiją senesnę nei 0.9.8m?\n" "Žiūrėkite http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Naudokite --no-dtls komandų eilutės parametrą šio pranešimo išvengimui\n" #: openssl-dtls.c:493 msgid "SSL_set_session() failed\n" msgstr "SSL_set_session() klaida\n" #: openssl-dtls.c:566 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "Užmezgamas DTLS ryšys (naudojant OpenSSL). Šifrų rinkinys %s.\n" #: openssl-dtls.c:603 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" "Jūsų OpenSSL yra senesnė, nei naudota kūrimui, todėl DTLS gali nepavykti!" #: openssl-dtls.c:654 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Taip greičiausiai atsitiko, nes jūsų OpenSSL yra su klaidomis\n" "Žiūrėkite http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: openssl-dtls.c:661 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "Nepavyko DTLS rankos paspaudimas: %d\n" #: openssl-esp.c:87 msgid "Failed to initialise ESP cipher:\n" msgstr "Nepavyko inicializuoti ESP šifro:\n" #: openssl-esp.c:101 msgid "Failed to initialize ESP HMAC\n" msgstr "Nepavyko inicializuoti ESP HMAC\n" #: openssl-esp.c:157 msgid "Failed to generate random keys for ESP:\n" msgstr "Nepavyko sugeneruoti atsitiktinių ESP raktų:\n" #: openssl-esp.c:202 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "Nepavyko nustatyti ESP paketo dešifravimo konteksto:\n" #: openssl-esp.c:210 msgid "Failed to decrypt ESP packet:\n" msgstr "Nepavyko dešifruoti ESP paketo:\n" #: openssl-esp.c:241 msgid "Failed to encrypt ESP packet:\n" msgstr "Nepavyko užšifruoti ESP paketo:\n" #: openssl-pkcs11.c:43 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "Nepavyko sukurti libp11 PKCS#11 konteksto:\n" #: openssl-pkcs11.c:49 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "Nepavyko įkelti PKCS#11 tiekėjo modulio (%s):\n" #: openssl-pkcs11.c:269 msgid "PIN locked\n" msgstr "PIN užrakintas\n" #: openssl-pkcs11.c:272 msgid "PIN expired\n" msgstr "PIN galiojimas baigėsi\n" #: openssl-pkcs11.c:275 msgid "Another user already logged in\n" msgstr "Kitas naudotojas jau prisijungė\n" #: openssl-pkcs11.c:279 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "Nežinoma klaida prisijungiant prie PKCS#11 leksemos\n" #: openssl-pkcs11.c:286 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "Prisijungta prie PKCS#11 lizdo „%s“\n" #: openssl-pkcs11.c:300 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "Nepavyko išvardinti liudijimų PKCS#11 lizde „%s“\n" #: openssl-pkcs11.c:306 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "Rasti %d liudijimai lizde „%s“\n" #: openssl-pkcs11.c:342 openssl-pkcs11.c:565 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "Nepavyko perskaityti PKCS#11 URI „%s“\n" #: openssl-pkcs11.c:349 openssl-pkcs11.c:575 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "Nepavyko išvardinti PKCS#11 lizdų\n" #: openssl-pkcs11.c:383 openssl-pkcs11.c:617 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "Jungiamasi prie PKCS#11 lizdo „%s“\n" #: openssl-pkcs11.c:393 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "Nepavyko rasti PKCS#11 liudijimo „%s“\n" #: openssl-pkcs11.c:401 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "Liudijimo X.509 turinys negautas iš libp11\n" #: openssl-pkcs11.c:412 openssl.c:713 msgid "Failed to install certificate in OpenSSL context\n" msgstr "Nepavyko įdiegti liudijimo OpenSSL kontekste\n" #: openssl-pkcs11.c:458 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "Nepavyko išvardinti raktų PKCS#11 lizde „%s“\n" #: openssl-pkcs11.c:464 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "Rasti %d raktai lizde „%s“\n" #: openssl-pkcs11.c:497 msgid "Certificate has no public key\n" msgstr "Liudijimas neturi viešojo rakto\n" #: openssl-pkcs11.c:503 openssl-pkcs11.c:526 msgid "Certificate does not match private key\n" msgstr "Liudijimas neatitinka privataus rakto\n" #: openssl-pkcs11.c:506 msgid "Checking EC key matches cert\n" msgstr "Tikrinama, ar EC atitinka liudijimą\n" #: openssl-pkcs11.c:510 msgid "Failed to allocate signature buffer\n" msgstr "Nepavyko išskirti parašo buferio\n" #: openssl-pkcs11.c:520 msgid "Failed to sign dummy data to validate EC key\n" msgstr "Nepavyko pasirašyti tuščių duomenų EC rakto patikrinimui\n" #: openssl-pkcs11.c:638 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "Nepavyko rasti PKCS#11 rakto „%s“\n" #: openssl-pkcs11.c:649 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "Nepavyko sukurti privataus rakto iš PKCS#11\n" #: openssl-pkcs11.c:678 msgid "Add key from PKCS#11 failed\n" msgstr "Nepavyko pridėti rakto iš PKCS#11\n" #: openssl-pkcs11.c:710 openssl-pkcs11.c:716 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "Ši OpenConnect versija sukurta be PKCS#11 palaikymo\n" #: openssl.c:147 msgid "Failed to write to SSL socket\n" msgstr "Nepavyko rašyti į SSL lizdą\n" #: openssl.c:197 openssl.c:263 msgid "Failed to read from SSL socket\n" msgstr "Nepavyko skaityti iš SSL lizdo\n" #: openssl.c:292 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" "SSL skaitymo klaida %d (serveris greičiausiai užvėrė ryšį); persijungiama.\n" #: openssl.c:317 #, c-format msgid "SSL_write failed: %d\n" msgstr "Nepavyko SSL_write: %d\n" #: openssl.c:389 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "Neapdorotas SSL UI prašymo tipas %d\n" #: openssl.c:465 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "PEM slaptažodis per ilgas (%d >= %d)\n" #: openssl.c:498 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Papildomas liudijimas iš %s: „%s“\n" #: openssl.c:548 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Nepavyko perskaityti PKCS#12 (žiūrėkite klaidas aukščiau)\n" #: openssl.c:563 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS#12 neturėjo liudijimo!\n" #: openssl.c:572 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS#12 neturėjo privataus rakto!\n" #: openssl.c:577 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:600 msgid "Can't load TPM engine.\n" msgstr "Nepavyksta įkelti TPM variklio.\n" #: openssl.c:606 msgid "Failed to init TPM engine\n" msgstr "Nepavyko inicializuoti TPM variklio\n" #: openssl.c:616 msgid "Failed to set TPM SRK password\n" msgstr "Nepavyko nustatyti TPM SRK slaptažodžio\n" #: openssl.c:630 msgid "Failed to load TPM private key\n" msgstr "Nepavyko įkelti TPM privataus rakto\n" #: openssl.c:636 msgid "Add key from TPM failed\n" msgstr "Nepavyko pridėti rakto iš TPM\n" #: openssl.c:687 openssl.c:835 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Nepavyko atverti liudijimo failo %s: %s\n" #: openssl.c:697 msgid "Loading certificate failed\n" msgstr "Nepavyko įkelti liudijimo\n" #: openssl.c:735 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "Nepavyko apdoroti visų palaikomų liudijimų. Vis tiek bandoma...\n" #: openssl.c:748 msgid "PEM file" msgstr "PEM failas" #: openssl.c:777 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Nepavyko sukurti BIO iš įvesties elemento „%s“\n" #: openssl.c:802 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Nepavyko įkelti privataus rakto (neteisingas slaptažodis?)\n" #: openssl.c:808 msgid "Loading private key failed (see above errors)\n" msgstr "Nepavyko įkelti privataus rakto (žiūrėkite klaidas aukščiau)\n" #: openssl.c:858 msgid "Failed to load X509 certificate from keystore\n" msgstr "Nepavyko įkelti X509 liudijimo iš įvesties\n" #: openssl.c:864 msgid "Failed to use X509 certificate from keystore\n" msgstr "Nepavyko naudoti X509 liudijimo iš įvesties\n" #: openssl.c:896 msgid "Failed to use private key from keystore\n" msgstr "Nepavyko naudoti privataus rakto iš įvesties\n" #: openssl.c:912 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Nepavyko atverti privataus rakto failo %s: %s\n" #: openssl.c:936 openssl.c:951 openssl.c:972 openssl.c:1038 msgid "Loading private key failed\n" msgstr "Nepavyko įkelti privataus rakto\n" #: openssl.c:1032 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "Nepavyko konvertuoti PKCS#8 į OpenSSL EVP_PKEY\n" #: openssl.c:1049 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Nepavyko identifikuoti privataus rakto tipas iš „%s“\n" #: openssl.c:1203 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Atitikęs DNS alternatyvus vardas „%s“\n" #: openssl.c:1210 #, c-format msgid "No match for altname '%s'\n" msgstr "Nėra atitikmenų alternatyviam vardui „%s“\n" #: openssl.c:1224 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "Liudijimas turi blogo ilgio %d GEN_IPADD alternatyvų vardą\n" #: openssl.c:1235 openssl.c:1381 #, c-format msgid "Matched %s address '%s'\n" msgstr "Atitiko %s adresas „%s“\n" #: openssl.c:1242 #, c-format msgid "No match for %s address '%s'\n" msgstr "Nėra atitikmens %s adresui „%s“\n" #: openssl.c:1284 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "URI „%s“ turi netuščia kelia; nepaisoma\n" #: openssl.c:1289 #, c-format msgid "Matched URI '%s'\n" msgstr "Atitiko URI „%s“\n" #: openssl.c:1300 #, c-format msgid "No match for URI '%s'\n" msgstr "Nėra atitikmens URI „%s“\n" #: openssl.c:1315 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "Nėra alternatyvaus vardo porinio liudijimo atitikime „%s“\n" #: openssl.c:1323 msgid "No subject name in peer cert!\n" msgstr "Nėra subjekto vardo poriniame liudijime!\n" #: openssl.c:1343 msgid "Failed to parse subject name in peer cert\n" msgstr "Nepavyko perskaityti subjekto poriniame liudijime\n" #: openssl.c:1350 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Porinio liudijimo neatitikimas ('%s' != '%s')\n" #: openssl.c:1355 openssl.c:1389 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Atitikęs porinio liudijimo subjekto vardas „%s“\n" #: openssl.c:1451 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Papildomas liudijimas iš cafile: „%s“\n" #: openssl.c:1589 msgid "Error in client cert notAfter field\n" msgstr "Klaida kliento liudijimo notAfter lauke\n" #: openssl.c:1602 msgid "" msgstr "" #: openssl.c:1655 msgid "Create TLSv1 CTX failed\n" msgstr "Nepavyko sukurti TLSv1 CTX\n" #: openssl.c:1674 msgid "SSL certificate and key do not match\n" msgstr "SSL liudijimas ir raktas nesutampa\n" #: openssl.c:1719 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Nepavyko perskaityti liudijimų iš LĮ failo „%s“\n" #: openssl.c:1752 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Nepavyko atverti LĮ failo „%s“\n" #: openssl.c:1812 msgid "SSL connection failure\n" msgstr "SSL ryšio klaida\n" #: openssl.c:1973 msgid "Failed to calculate OATH HMAC\n" msgstr "Nepavyko suskaičiuoti OATH HMAC\n" #: script.c:130 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Išmetamas blogas padalinimas įtraukia: „%s“\n" #: script.c:134 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Išmetamas blogas padalinimas neįtraukia: „%s“\n" #: script.c:507 script.c:555 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Nepavyko paleisti scenarijaus „%s“ %s: %s\n" #: script.c:562 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "Scenarijus „%s“ išėjo nenormaliai (%x)\n" #: script.c:570 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Scenarijus „%s“ grąžino klaidą %d\n" #: ssl.c:108 msgid "Socket connect cancelled\n" msgstr "Lizdo jungimasis atšauktas\n" #: ssl.c:217 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "Nepavyko pakartotinai prisijungti prie tarpinio serverio %s: %s\n" #: ssl.c:221 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "Nepavyko pakartotinai prisijungti prie serverio %s: %s\n" #: ssl.c:289 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Tarpinis serveris iš libproxy: %s://%s:%d/\n" #: ssl.c:317 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "Nepavyko getaddrinfo iš serverio „%s“: %s\n" #: ssl.c:326 ssl.c:451 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" "Persijungiama prie DynDNS serverio naudojant ankščiau įrašytą IP adresą\n" #: ssl.c:341 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Bandoma jungtis prie tarpinio serverio %s%s%s:%s\n" #: ssl.c:342 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Bandoma jungtis prie serverio %s%s%s:%s\n" #: ssl.c:362 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "Prisijungta prie %s%s%s:%s\n" #: ssl.c:374 msgid "Failed to allocate sockaddr storage\n" msgstr "Nepavyko išskirti sockaddr vietos\n" #: ssl.c:416 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "Nepavyko prisijungti prie %s%s%s:%s: %s\n" #: ssl.c:434 msgid "Forgetting non-functional previous peer address\n" msgstr "Pamirštamas neveikiantis ankstesnis porininko adresas\n" #: ssl.c:446 #, c-format msgid "Failed to connect to host %s\n" msgstr "Nepavyko prisijungti prie serverio %s\n" #: ssl.c:465 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "Persijungiama prie tarpinio serverio %s\n" #: ssl.c:536 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:564 msgid "Could not obtain file system ID for passphrase\n" msgstr "Nepavyko gauti failų sistemos ID ar slaptafrazės\n" #: ssl.c:575 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "Nepavyko atverti privataus rakto failo „%s“: %s\n" #: ssl.c:603 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:694 msgid "No error" msgstr "Nėra klaidos" #: ssl.c:695 msgid "Keystore locked" msgstr "Raktų saugykla užrakinta" #: ssl.c:696 msgid "Keystore uninitialized" msgstr "Raktų saugykla neinicializuota" #: ssl.c:697 msgid "System error" msgstr "Sistemos klaida" #: ssl.c:698 msgid "Protocol error" msgstr "Protokolo klaida" #: ssl.c:699 msgid "Permission denied" msgstr "Nėra leidimo" #: ssl.c:700 msgid "Key not found" msgstr "Raktas nerastas" #: ssl.c:701 msgid "Value corrupted" msgstr "Vertė sugadinta" #: ssl.c:702 msgid "Undefined action" msgstr "Neapibrėžtas veiksmas" #: ssl.c:706 msgid "Wrong password" msgstr "Neteisingas slaptažodis" #: ssl.c:707 msgid "Unknown error" msgstr "Nežinoma klaida" #: ssl.c:896 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "openconnect_fopen_utf8() naudota su nepalaikoma veiksena „%s“\n" #: ssl.c:931 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "Nežinoma protokolo šeima %d. Negalima sukurti UDP serverio adreso\n" #: ssl.c:950 msgid "Open UDP socket" msgstr "Open UDP lizdas" #: ssl.c:981 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "Nežinoma protokolo šeima %d. Negalima naudoti UDP transporto\n" #: ssl.c:989 msgid "Bind UDP socket" msgstr "Prijungti UDP lizdą" #: ssl.c:996 msgid "Connect UDP socket\n" msgstr "Prisijungti prie UDP lizdo\n" #: ssl.c:1034 msgid "Cookie is no longer valid, ending session\n" msgstr "Slapukas nebegalioja, baigiamas seansas\n" #: ssl.c:1038 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "miegama %ds, liko laiko %ds\n" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "SSPI leksema per didelė (%ld baitai)\n" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "Siunčiama %lu baitų SSPI leksema\n" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" "Nepavyko išsiųsti SSPI tapatybės patvirtinimo leksemos į tarpinį serverį: " "%s\n" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "Nepavyko gauti SSPI tapatybės patvirtinimo leksemos iš serverio: %s\n" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "SOCKS serveris pranešė apie SSPI konteksto klaidą\n" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "Nežinomas SSPI būsenos atsakymas (0x%02x) iš SOCKS serverio\n" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "Gauta %lu baitų SSPI leksema: %02x %02x %02x %02x\n" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "QueryContextAttributes() nepavyko: %lx\n" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "EncryptMessage() nepavyko: %lx\n" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "EncryptMessage() rezultatas per didelis (%lu + %lu + %lu)\n" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "Siunčiamas %u baitų SSPI apsaugos prašymas\n" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "Nepavyko išsiųsti SSPI apsaugos atsakymo tarpiniam serveriui: %s\n" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "Nepavyko gauti SSPI apsaugos atsakymo iš tarpinio serverio: %s\n" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "Gautas %d baitų SSPI apsaugos atsakymas: %02x %02x %02x %02x\n" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "DecryptMessage nepavyko: %lx\n" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "Netinkamas SSPI apsaugos atsakymas iš tarpinio serverio (%lu baitai)\n" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "Įveskite įgaliojimus programinei leksemai atrakinti." #: stoken.c:82 msgid "Device ID:" msgstr "Įrenginio ID:" #: stoken.c:89 msgid "Password:" msgstr "Slaptažodis:" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "Naudotojas apėjo programinę leksemą.\n" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "Visi laukai yra būtini; bandykite dar kartą.\n" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "Bendra libstoken klaida.\n" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "Neteisingas įrenginio ID arba slaptažodis; bandykite dar kartą.\n" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "Programinės leksemos inicializacija buvo sėkminga.\n" #: stoken.c:185 msgid "Enter software token PIN." msgstr "Įveskite programinės leksemos PIN." #: stoken.c:189 msgid "PIN:" msgstr "PIN:" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "Netinkamas PIN formatas; bandykite dar kartą.\n" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "Generuojamas RSA leksemos kodas\n" #: tun-win32.c:76 msgid "Error accessing registry key for network adapters\n" msgstr "Klaida prieinant prie registro rakto tinklo adapteriams\n" #: tun-win32.c:139 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "Nepaisoma neatitinkančios TAP sąsajos „%s“\n" #: tun-win32.c:154 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "Rasti ne Windows-TAP adapteriai. Ar tvarkyklė įdiegta?\n" #: tun-win32.c:186 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" "GetAdapterIndex() nepavyko: %s\n" "Grįžtama prie GetAdaptersInfo()\n" #: tun-win32.c:200 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "GetAdaptersInfo() nepavyko: %s\n" #: tun-win32.c:231 #, c-format msgid "Failed to open %s\n" msgstr "Nepavyko atverti %s\n" #: tun-win32.c:236 #, c-format msgid "Opened tun device %s\n" msgstr "Atvertas tun įrenginys %s\n" #: tun-win32.c:244 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Nepavyko gauti TAP tvarkyklės versijos: %s\n" #: tun-win32.c:250 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Klaida: reikalinga TAP-Windows tvarkylė v9.9 arba naujesnė (rasta %ld.%ld)\n" #: tun-win32.c:271 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Nepavyko nustatyti TAP IP adresų: %s\n" #: tun-win32.c:283 tun-win32.c:406 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Nepavyko nustatyti TAP laikmenos būsenos: %s\n" #: tun-win32.c:316 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "TAP įrenginys atmetė ryšį. Atsijungiama.\n" #: tun-win32.c:321 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Nepavyko skaityti iš TAP įrenginio: %s\n" #: tun-win32.c:335 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Nepavyko skaityti iš TAP įrenginio: %s\n" #: tun-win32.c:358 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "Į tun įrašyta %ld baitų\n" #: tun-win32.c:368 msgid "Waiting for tun write...\n" msgstr "Laukiama tun rašymui...\n" #: tun-win32.c:371 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "Po laukimo į tun įrašyta %ld baitų\n" #: tun-win32.c:378 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Nepavyko rašyti į TAP įrenginį: %s\n" #: tun-win32.c:423 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "Tunelio scenarijų paleidimas Windows aplinkoje dar nepalaikomas\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Nepavyko atverti /dev/tun siuntimui" #: tun.c:92 msgid "Can't push IP" msgstr "Nepavyksta siųsti IP" #: tun.c:102 msgid "Can't set ifname" msgstr "Nepavyksta nustatyti ifname" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "Nepavyksta atverti %s: %s" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Nepavyksta apdoroti srauto %s IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "atverti /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Nepavyko sukurti naujo tun" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" "Nepavyko patalpinti tun failo deskriptoriaus į pranešimų išmetimo veikseną" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "tun įrenginys nepalaikomas šioje platformoje\n" #: tun.c:205 msgid "open net" msgstr "atverti tinklą" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Nepavyko atverti tun įrenginio: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "Nepavyko prijungti vietinio tun įrenginio (TUNSETIFF): %s\n" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" "Vietiniam tinklui konfigūruoti openconnect turi veik root teisėmis\n" "Daugiau informacijos adresu http://www.infradead.org/openconnect/nonroot." "html\n" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" "Netinkamas sąsajos pavadinimas „%s“; turi atitikti „utun%%d“ „tun%%d“\n" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "Nepavyko atverti SYSPROTO_CONTROL lizdo: %s\n" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "Nepavyko užklausti utun valdymo id: %s\n" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "Nepavyko išskirti utun įrenginio pavadinimo\n" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "Nepavyko prisijungti prie utun vieneto: %s\n" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Netinkamas sąsajos pavadinimas „%s“; turi atitikti „tun%%d“\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Nepavyksta atverti „%s“: %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:479 #, c-format msgid "socketpair failed: %s\n" msgstr "socketpair nepavyko: %s\n" #: tun.c:484 #, c-format msgid "fork failed: %s\n" msgstr "fork nepavyko: %s\n" #: tun.c:488 msgid "setpgid" msgstr "setpgid" #: tun.c:493 msgid "execl" msgstr "execl" #: tun.c:498 msgid "(script)" msgstr "(scenarijus)" #: tun.c:566 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Nepavyko įrašyti įeinančio paketo: %s\n" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "Nepavyko atverti %s: %s\n" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "Nepavyko fstat() %s: %s\n" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Nepavyko išskirti %d baitų %s\n" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "Nepavyko perskaityti %s: %s\n" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Traktuoti kompiuterį „%s“ kaip tiesioginį kompiuterį\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Nepavyko SHA1 esamam failui\n" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "XML konfigūracijos failo SHA1: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Nepavyko perskaityti XML konfigūracijos failo %s\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Kompiuteris „%s“ turi adresą „%s“\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Kompiuteris „%s“ turi UserGroup „%s“\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "Kompiuterio „%s“ nėra konfigūracijoje; traktuojamas kaip tiesioginis " "kompiuteris\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "Nepavyko išsiųsti „%s“ ykneo-oath įtaisui: %s\n" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "Netinkamas trumpas atsakymas „%s“ iš ykneo-oath įtaiso\n" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "Klaidos atsakymas į „%s“: %04x\n" #: yubikey.c:174 msgid "select applet command" msgstr "pasirinkite įtaiso komandą" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "Neatpažintas atsakymas iš ykneo-oath įtaiso\n" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "Rastas ykneo-oath įtaisas v%d.%d.%d.\n" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "Yubikey OATH įtaisui būtinas PIN" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "Yubikey PIN:" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "Nepavyko suskaičiuoti Yubikey atrakinimo atsakymo\n" #: yubikey.c:274 msgid "unlock command" msgstr "atrakinimo komanda" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "Bandomas trumpinto simbolio PBKBF2 Yubikey PIN variantas\n" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "Nepavyko sukurti PC/SC konteksto: %s\n" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "Sukurtas PC/SC kontekstas\n" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "Nepavyko užklausti skaitytojų sąrašo: %s\n" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "Nepavyko prisijungti prie PC/SC skaitytojo „%s“: %s\n" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "Prisijungta prie PC/SC skaitytojo „%s“\n" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "Nepavyko gauti išskirtinės prieigos prie skaitytojo „%s“: %s\n" #: yubikey.c:412 msgid "list keys command" msgstr "raktų išvardinimo komanda" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "Rastas %s/%s raktas „%s“ „%s“\n" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "Leksema „%s“ nerasta Yubikey „%s“. Ieškoma kito Yubikey...\n" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "Serveris atmeta Yubikey leksemą; persijungiama prie rankinio įvedimo\n" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "Generuojamas Yubikey leksemos kodas\n" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "Nepavyko gauti išskirtinės prieigos prie Yubikey: %s\n" #: yubikey.c:619 msgid "calculate command" msgstr "skaičiavimo komanda" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "Neatpažintas atsakymas iš Yubikey generuojant leksemos kodą\n" openconnect-8.05/po/pl.po0000664000076400007640000044327713521074144017150 0ustar00dwoodhoudwoodhou00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2019-08-01 15:33-0700\n" "PO-Revision-Date: 2011-09-22 22:31+0000\n" "Last-Translator: FULL NAME \n" "Language-Team: Polish (http://www.transifex.net/projects/p/meego/team/pl/)\n" "Language: pl\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=3; plural=(n==1 ? 0 : n%10>=2 && n%10<=4 && (n%100<10 " "|| n%100>=20) ? 1 : 2)\n" #: auth-globalprotect.c:124 #, c-format msgid "" "SAML login is required via %s to this URL:\n" "\t%s" msgstr "" "Logowanie SAML jest wymagane przez %s do tego adresu URL:\n" "\t%s" #: auth-globalprotect.c:126 msgid "Please enter your username and password" msgstr "Proszę podać nazwę użytkownika i hasło" #: auth-globalprotect.c:135 msgid "Username" msgstr "Nazwa użytkownika" #: auth-globalprotect.c:150 msgid "Password" msgstr "Hasło" #: auth-globalprotect.c:197 msgid "Challenge: " msgstr "Wyzwanie: " #: auth-globalprotect.c:276 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "Logowanie GlobalProtect zwróciło %s=%s (oczekiwano %s)\n" #: auth-globalprotect.c:282 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "Logowanie GlobalProtect zwróciło puste lub brakujące %s\n" #: auth-globalprotect.c:288 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "Logowanie GlobalProtect zwróciło %s=%s\n" #: auth-globalprotect.c:331 msgid "Please select GlobalProtect gateway." msgstr "Proszę wybrać bramę GlobalProtect." #: auth-globalprotect.c:341 msgid "GATEWAY:" msgstr "BRAMA:" #. each entry looks like Label #: auth-globalprotect.c:395 #, c-format msgid "%d gateway servers available:\n" msgstr "Dostępne serwery bramy (%d):\n" #: auth-globalprotect.c:416 #, c-format msgid " %s (%s)\n" msgstr " %s (%s)\n" #: auth-globalprotect.c:492 auth-juniper.c:730 auth.c:669 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "Utworzenie kodu tokena OTP się nie powiodło. Wyłączanie tokena\n" #: auth-globalprotect.c:588 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "Serwer nie jest portalem ani bramą GlobalProtect.\n" #: auth-globalprotect.c:640 oncp.c:1267 msgid "Logout failed.\n" msgstr "Wylogowanie się nie powiodło.\n" #: auth-globalprotect.c:642 msgid "Logout successful\n" msgstr "Pomyślnie wylogowano\n" #: auth-juniper.c:142 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "Ignorowanie elementu „submit” „%s” nieznanego formularza\n" #: auth-juniper.c:153 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "Ignorowanie elementu „input” „%s” nieznanego formularza\n" #: auth-juniper.c:163 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "Odrzucanie podwójnej opcji „%s”\n" #: auth-juniper.c:236 auth.c:408 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Nie można obsłużyć formularza method='%s', action='%s'\n" #: auth-juniper.c:267 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "Nieznane pole „textarea”: „%s”\n" #: auth-juniper.c:337 msgid "TNCC support not implemented yet on Windows\n" msgstr "Obsługa TNCC nie jest jeszcze zaimplementowana w systemie Windows\n" #: auth-juniper.c:359 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "Brak ciasteczka DSPREAUTH. Bez próbowania TNCC\n" #: auth-juniper.c:397 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "Wykonanie skryptu TNCC %s się nie powiodło: %s\n" #: auth-juniper.c:411 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "Przydzielenie pamięci do komunikacji z TNCC się nie powiodło\n" #: auth-juniper.c:418 msgid "Failed to send start command to TNCC\n" msgstr "Wysłanie polecenia „start” do TNCC się nie powiodło\n" #: auth-juniper.c:425 msgid "Sent start; waiting for response from TNCC\n" msgstr "Wysłano „start”. Oczekiwanie na odpowiedź z TNCC\n" #: auth-juniper.c:432 msgid "Failed to read response from TNCC\n" msgstr "Odczytanie odpowiedzi z TNCC się nie powiodło\n" #: auth-juniper.c:439 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "Otrzymano niepomyślną odpowiedź %s z TNCC\n" #: auth-juniper.c:445 msgid "TNCC response 200 OK\n" msgstr "Odpowiedź TNCC 200 OK\n" #: auth-juniper.c:452 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "Drugi wiersz odpowiedzi TNCC: „%s”\n" #: auth-juniper.c:461 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "Otrzymano nowe ciasteczko DSPREAUTH z TNCC: %s\n" #: auth-juniper.c:474 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "Nieoczekiwany niepusty wiersz z TNCC po ciasteczku DSPREAUTH: „%s”\n" #: auth-juniper.c:481 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "Za dużo niepustych wierszy z TNCC po ciasteczku DSPREAUTH\n" #: auth-juniper.c:650 msgid "Failed to parse HTML document\n" msgstr "Przetworzenie dokumentu HTML się nie powiodło\n" #: auth-juniper.c:667 msgid "Failed to find or parse web form in login page\n" msgstr "" "Odnalezienie lub przetworzenie formularza WWW na stronie logowania się nie " "powiodło\n" #: auth-juniper.c:675 msgid "Encountered form with no ID\n" msgstr "Wystąpił formularz bez identyfikatora\n" #: auth-juniper.c:713 #, c-format msgid "Unknown form ID '%s'\n" msgstr "Nieznany identyfikator formularza „%s”\n" #: auth-juniper.c:716 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "Zrzucanie nieznanego formularza HTML:\n" #: auth.c:96 msgid "Form choice has no name\n" msgstr "Wybór formularza nie posiada nazwy\n" #: auth.c:181 #, c-format msgid "name %s not input\n" msgstr "nazwa %s nie jest „input”\n" #: auth.c:188 msgid "No input type in form\n" msgstr "Brak typu „input” w formularzu\n" #: auth.c:200 msgid "No input name in form\n" msgstr "Brak nazwy „input” w formularzu\n" #: auth.c:230 #, c-format msgid "Unknown input type %s in form\n" msgstr "Nieznany typ „input” %s w formularzu\n" #: auth.c:540 gpst.c:214 msgid "Empty response from server\n" msgstr "Pusta odpowiedź z serwera\n" #: auth.c:551 gpst.c:289 msgid "Failed to parse server response\n" msgstr "Przetworzenie odpowiedzi serwera się nie powiodło\n" #: auth.c:553 gpst.c:291 #, c-format msgid "Response was:%s\n" msgstr "Odpowiedź: %s\n" #: auth.c:575 msgid "Received when not expected.\n" msgstr "Otrzymano nieoczekiwane .\n" #: auth.c:603 msgid "XML response has no \"auth\" node\n" msgstr "Odpowiedź XML nie posiada węzła „auth”\n" #: auth.c:636 msgid "Asked for password but '--no-passwd' set\n" msgstr "Zapytano o hasło, ale ustawiono „--no-passwd”\n" #: auth.c:925 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "Profil XML nie zostanie pobrany, ponieważ suma SHA1 już pasuje\n" #: auth.c:931 cstp.c:335 http.c:928 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Otwarcie połączenia HTTPS z %s się nie powiodło\n" #: auth.c:952 msgid "Failed to send GET request for new config\n" msgstr "Wysłanie żądania GET dla nowej konfiguracji się nie powiodło\n" #: auth.c:976 msgid "Downloaded config file did not match intended SHA1\n" msgstr "Pobrany plik konfiguracji nie pasuje do docelowej sumy SHA1\n" #: auth.c:981 msgid "Downloaded new XML profile\n" msgstr "Pobrano nowy profil XML\n" #: auth.c:992 auth.c:1044 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" "Błąd: uruchamianie konia trojańskiego „Cisco Secure Desktop” na tej " "platformie nie jest jeszcze zaimplementowane.\n" #: auth.c:1003 mainloop.c:144 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "Ustawienie GID %ld się nie powiodło: %s\n" #: auth.c:1010 mainloop.c:151 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "Ustawienie grup na %ld się nie powiodło: %s\n" #: auth.c:1017 mainloop.c:158 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "Ustawienie UID %ld się nie powiodło: %s\n" #: auth.c:1024 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "Nieprawidłowy użytkownik uid=%ld: %s\n" #: auth.c:1031 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Przejście do katalogu domowego CSD „%s” się nie powiodło: %s\n" #: auth.c:1053 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Błąd: serwer poprosił o wykonanie skanowania komputera CSD.\n" "Należy dostarczyć odpowiedni parametr --csd-wrapper.\n" #: auth.c:1060 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Błąd: serwer poprosił o pobranie i uruchomienie konia trojańskiego „Cisco " "Secure Desktop”.\n" "Ta możliwość jest domyślnie wyłączona z powodów bezpieczeństwa, więc można " "ją włączyć.\n" #: auth.c:1067 msgid "Trying to run Linux CSD trojan script.\n" msgstr "" "Próbowanie uruchomienia skryptu konia trojańskiego CSD dla systemu Linux.\n" #: auth.c:1094 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "Nie można zapisać do katalogu tymczasowego „%s”: %s\n" #: auth.c:1102 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Otwarcie pliku skryptu tymczasowego CSD się nie powiodło: %s\n" #: auth.c:1111 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Zapisanie pliku skryptu tymczasowego CSD się nie powiodło: %s\n" #: auth.c:1141 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Ostrzeżenie: uruchomiony jest niezabezpieczony kod CSD za pomocą uprawnień " "roota\n" "\t Należy użyć opcji wiersza poleceń „--csd-user”\n" #: auth.c:1189 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Wykonanie skryptu CSD %s się nie powiodło\n" #: auth.c:1221 msgid "Unknown response from server\n" msgstr "Nieznana odpowiedź serwera\n" #: auth.c:1342 msgid "Server requested SSL client certificate after one was provided\n" msgstr "Serwer zażądał certyfikatu klienta SSL po dostarczeniu jednego\n" #: auth.c:1346 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" "Serwer zażądał certyfikatu klienta SSL. Żaden nie został skonfigurowany\n" #: auth.c:1362 msgid "XML POST enabled\n" msgstr "Włączono „POST” XML\n" #: auth.c:1405 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Odświeżanie %s za 1 sekundę…\n" #: compat.c:207 #, c-format msgid "(error 0x%lx)" msgstr "(błąd 0x%lx)" #: compat.c:210 msgid "(Error while describing error!)" msgstr "(Błąd podczas opisywania błędu)" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "BŁĄD: nie można zainicjować gniazd\n" #: cstp.c:112 gpst.c:341 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:134 gpst.c:360 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:281 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" "BŁĄD KRYTYCZNY: główne hasło DTLS jest niezainicjowane. Prosimy to zgłosić.\n" #: cstp.c:312 msgid "Error creating HTTPS CONNECT request\n" msgstr "Błąd podczas tworzenia żądania „CONNECT” HTTPS\n" #: cstp.c:328 http.c:384 msgid "Error fetching HTTPS response\n" msgstr "Błąd podczas pobierania odpowiedzi HTTPS\n" #: cstp.c:355 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "Usługa VPN jest niedostępna. Przyczyna: %s\n" #: cstp.c:360 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Otrzymano nieodpowiednią odpowiedź „CONNECT” HTTPS: %s\n" #: cstp.c:367 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Otrzymano odpowiedź „CONNECT”: %s\n" #: cstp.c:396 cstp.c:404 msgid "No memory for options\n" msgstr "Brak pamięci dla opcji\n" #: cstp.c:413 http.c:444 msgid "" msgstr "" #: cstp.c:433 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Session-ID nie wynosi 64 znaków. Wynosi: „%s”\n" #: cstp.c:450 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "X-DTLS-Session-ID jest nieprawidłowe. Wynosi: „%s”\n" #: cstp.c:468 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "Nieznane DTLS-Content-Encoding %s\n" #: cstp.c:510 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Nieznane CSTP-Content-Encoding %s\n" #: cstp.c:586 msgid "No MTU received. Aborting\n" msgstr "Nie otrzymano MTU. Przerywanie\n" #: cstp.c:594 gpst.c:670 msgid "No IP address received. Aborting\n" msgstr "Nie otrzymano adresu IP. Przerywanie\n" #: cstp.c:600 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "Otrzymano konfigurację IPv6, ale MTU %d jest za małe.\n" #: cstp.c:606 gpst.c:677 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Ponowne połączenie przekazało inny adres IP „Legacy” (%s != %s)\n" #: cstp.c:615 gpst.c:686 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" "Ponowne połączenie przekazało inną maskę sieci IP „Legacy” (%s != %s)\n" #: cstp.c:623 gpst.c:695 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Ponowne połączenie przekazało inny adres IPv6 (%s != %s)\n" #: cstp.c:631 gpst.c:703 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Ponowne połączenie przekazało inną maskę sieci IPv6 (%s != %s)\n" #: cstp.c:639 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "Połączono CSTP. DPD %d, Keepalive %d\n" #: cstp.c:641 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "Zestaw szyfrów CSTP: %s\n" #: cstp.c:703 msgid "Compression setup failed\n" msgstr "Ustawienie kompresji się nie powiodło\n" #: cstp.c:720 msgid "Allocation of deflate buffer failed\n" msgstr "Przydzielenie bufora „deflate” się nie powiodło\n" #: cstp.c:782 msgid "inflate failed\n" msgstr "„inflate” się nie powiodło\n" #: cstp.c:805 #, c-format msgid "LZS decompression failed: %s\n" msgstr "Dekompresja LZS się nie powiodła: %s\n" #: cstp.c:818 msgid "LZ4 decompression failed\n" msgstr "Dekompresja LZ4 się nie powiodła\n" #: cstp.c:825 #, c-format msgid "Unknown compression type %d\n" msgstr "Nieznany typ kompresji %d\n" #: cstp.c:830 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" "Otrzymano skompresowany pakiet danych %s o rozmiarze %d bajtów (wynosił %d)\n" #: cstp.c:850 #, c-format msgid "deflate failed %d\n" msgstr "%d „deflate” się nie powiodło\n" #: cstp.c:923 dtls.c:281 dtls.c:690 esp.c:163 gpst.c:1096 mainloop.c:69 #: oncp.c:914 pulse.c:2297 msgid "Allocation failed\n" msgstr "Przydzielenie się nie powiodło\n" #: cstp.c:934 gpst.c:1109 pulse.c:2309 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "Otrzymano krótki pakiet (%d bajtów)\n" #: cstp.c:947 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" "Nieoczekiwana długość pakietu. „SSL_read” zwróciło %d, ale pakiet wynosi\n" #: cstp.c:961 msgid "Got CSTP DPD request\n" msgstr "Otrzymano żądanie „DPD” CSTP\n" #: cstp.c:967 msgid "Got CSTP DPD response\n" msgstr "Otrzymano odpowiedź „DPD” CSTP\n" #: cstp.c:972 msgid "Got CSTP Keepalive\n" msgstr "Otrzymano „Keepalive” CSTP\n" #: cstp.c:977 oncp.c:1003 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Otrzymano nieskompresowany pakiet danych o rozmiarze %d bajtów\n" #: cstp.c:994 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Otrzymano rozłączenie z serwera: %02x „%s”\n" #: cstp.c:997 msgid "Received server disconnect\n" msgstr "Otrzymano rozłączenie z serwera\n" #: cstp.c:1005 msgid "Compressed packet received in !deflate mode\n" msgstr "Otrzymano nieskompresowany pakiet w trybie „!deflate”\n" #: cstp.c:1014 msgid "received server terminate packet\n" msgstr "otrzymano pakiet wymuszenia zakończenia serwera\n" #: cstp.c:1021 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Nieznany pakiet %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1064 gpst.c:1197 oncp.c:1121 pulse.c:2452 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL zapisało za mało bajtów. Poproszono o %d, wysłano %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1092 oncp.c:1156 pulse.c:2479 msgid "CSTP rekey due\n" msgstr "„rekey” CSTP do\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1099 oncp.c:1163 pulse.c:2486 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Ponowne powitanie się nie powiodło. Próbowanie „new-tunnel”\n" #: cstp.c:1110 oncp.c:1174 pulse.c:2497 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "Wykrywanie martwych partnerów CSTP wykryło martwego partnera.\n" #: cstp.c:1114 gpst.c:1221 oncp.c:1091 oncp.c:1178 pulse.c:2422 pulse.c:2502 msgid "Reconnect failed\n" msgstr "Ponowne połączenie się nie powiodło\n" #: cstp.c:1130 oncp.c:1194 pulse.c:2518 msgid "Send CSTP DPD\n" msgstr "Wysłanie „DPD” CSTP\n" #: cstp.c:1142 oncp.c:1205 pulse.c:2530 msgid "Send CSTP Keepalive\n" msgstr "Wysłanie „Keepalive” CSTP\n" #: cstp.c:1167 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" "Wysyłanie nieskompresowanego pakietu danych o rozmiarze %d bajtów (wynosił " "%d)\n" #: cstp.c:1178 oncp.c:1239 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Wysyłanie nieskompresowanego pakietu danych o rozmiarze %d bajtów\n" #: cstp.c:1217 #, c-format msgid "Send BYE packet: %s\n" msgstr "Wysłanie pakietu „BYE”: %s\n" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "Próbowanie uwierzytelnienia „Digest” do pośrednika\n" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "Próbowanie uwierzytelnienia „Digest” do serwera „%s”\n" #: dtls.c:113 msgid "DTLS connection attempted with an existing fd\n" msgstr "Próbowano połączenia DTLS za pomocą istniejącego deskryptora pliku\n" #: dtls.c:119 msgid "No DTLS address\n" msgstr "Brak adresu DTLS\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:126 msgid "Server offered no DTLS cipher option\n" msgstr "Serwer nie zaproponował żadnej opcji szyfrowania DTLS\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:133 msgid "No DTLS when connected via proxy\n" msgstr "Brak DTLS podczas łączenia przez pośrednika\n" #: dtls.c:200 #, c-format msgid "DTLS option %s : %s\n" msgstr "Opcja DTLS %s: %s\n" #: dtls.c:239 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "Zainicjowano DTLS. DPD %d, Keepalive %d\n" #: dtls.c:265 msgid "Attempt new DTLS connection\n" msgstr "Próba nowego połączenia DTLS\n" #: dtls.c:292 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Otrzymano pakiet DTLS 0x%02x z %d bajtów\n" #: dtls.c:306 msgid "Got DTLS DPD request\n" msgstr "Otrzymano żądanie „DPD” DTLS\n" #: dtls.c:312 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "" "Wysłanie odpowiedzi DPD się nie powiodło. Należy oczekiwać rozłączenia\n" #: dtls.c:316 msgid "Got DTLS DPD response\n" msgstr "Otrzymano odpowiedź „DPD” DTLS\n" #: dtls.c:320 msgid "Got DTLS Keepalive\n" msgstr "Otrzymano „Keepalive” DTLS\n" #: dtls.c:326 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "Otrzymano skompresowany pakiet DTLS, kiedy kompresja jest wyłączona\n" #: dtls.c:334 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Nieznany typ pakietu DTLS %02x, len %d\n" #: dtls.c:356 msgid "DTLS rekey due\n" msgstr "„rekey” DTLS do\n" #: dtls.c:363 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "Ponowne powitanie DTLS się nie powiodło. Łączenie ponownie.\n" #: dtls.c:372 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "Wykrywanie martwych partnerów DTLS wykryło martwego partnera.\n" #: dtls.c:378 msgid "Send DTLS DPD\n" msgstr "Wysłanie „DPD” DTLS\n" #: dtls.c:383 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Wysłanie żądania DPD się nie powiodło. Należy oczekiwać rozłączenia\n" #: dtls.c:396 msgid "Send DTLS Keepalive\n" msgstr "Wysłanie „Keepalive” DTLS\n" #: dtls.c:401 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" "Wysłanie żądania Keepalive się nie powiodło. Należy oczekiwać rozłączenia\n" #: dtls.c:432 tun.c:541 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Otrzymano nieznany pakiet (len %d): %02x %02x %02x %02x...\n" #: dtls.c:439 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "Ten TOS: %d, ostatni TOS: %d\n" #: dtls.c:443 msgid "UDP setsockopt" msgstr "setsockopt UDP" #: dtls.c:474 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "DTLS otrzymało błąd zapisu %d. Używanie SSL\n" #: dtls.c:488 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "DTLS otrzymało błąd zapisu: %s. Używanie SSL\n" #: dtls.c:503 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "Wysłano pakiet DTLS o rozmiarze %d bajtów. Wysłanie DTLS zwróciło %d\n" #: dtls.c:551 #, c-format msgid "Initiating MTU detection (min=%d, max=%d)\n" msgstr "Inicjowanie wykrywania MTU (min=%d, max=%d)\n" #: dtls.c:585 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "Wysyłanie sondy „DPD” MTU (%u bajtów)\n" #: dtls.c:589 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "Wysłanie żądania DPD się nie powiodło (%d %d)\n" #: dtls.c:612 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" "Za dużo czasu w pętli wykrywania MTU. Przyjmowanie wynegocjowanego MTU.\n" #: dtls.c:616 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "Za dużo czasu w pętli wykrywania MTU. Ustawiono MTU na %d.\n" #: dtls.c:633 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" "Odebrano nieoczekiwany pakiet (%.2x) podczas wykrywania MTU. Pomijanie.\n" #: dtls.c:640 #, c-format msgid "No response to size %u after %d tries; declare MTU is %u\n" msgstr "Brak odpowiedzi na rozmiar %u po %d próbach. Zgłoszone MTU to %u\n" #: dtls.c:647 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "Odebranie żądania DPD się nie powiodło (%d)\n" #: dtls.c:651 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "Otrzymano sondę „DPD” MTU (%u bajtów)\n" #: dtls.c:701 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "Wykryto MTU o rozmiarze %d bajtów (wynosił %d)\n" #: dtls.c:704 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "Brak zmian w MTU po wykrywaniu (wynosił %d)\n" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "Przyjmowanie oczekiwanego pakietu ESP z sekwencją %u\n" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" "Przyjmowanie pakietu ESP późniejszego niż oczekiwano z sekwencją %u " "(oczekiwano %)\n" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "Odrzucanie starego pakietu ESP z sekwencją %u (oczekiwano %)\n" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" "Tolerowanie starego pakietu ESP z sekwencją %u (oczekiwano %)\n" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "Odrzucanie powtórzonego pakietu ESP z sekwencją %u\n" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "Tolerowanie powtórzonego pakietu ESP z sekwencją %u\n" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" "Przyjmowanie pakietu ESP poza kolejnością z sekwencją %u (oczekiwano " "%)\n" #: esp.c:66 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "Parametry dla ESP %s: SPI 0x%08x\n" #: esp.c:69 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "Szyfrowanie ESP typu %s klucz 0x%s\n" #: esp.c:72 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "Uwierzytelnienie ESP typu %s klucz 0x%s\n" #: esp.c:90 msgid "incoming" msgstr "przychodzące" #: esp.c:91 msgid "outgoing" msgstr "wychodzące" #: esp.c:93 esp.c:147 msgid "Send ESP probes\n" msgstr "Wysłanie próbek ESP\n" #: esp.c:172 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "Otrzymano pakiet ESP o rozmiarze %d bajtów\n" #: esp.c:189 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "Otrzymano pakiet ESP ze starym SPI 0x%x, sekwencją %u\n" #: esp.c:195 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "Otrzymano pakiet ESP z nieprawidłowym SPI 0x%08x\n" #: esp.c:208 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "Otrzymano pakiet ESP z nierozpoznanym typem ładunku %02x\n" #: esp.c:215 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "Nieprawidłowa długość wypełnienia %02x w ESP\n" #: esp.c:227 msgid "Invalid padding bytes in ESP\n" msgstr "Nieprawidłowe bajty wypełnienia w ESP\n" #: esp.c:236 msgid "ESP session established with server\n" msgstr "Nawiązano sesję ESP z serwerem\n" #: esp.c:247 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "Przydzielenie pamięci do odszyfrowania pakietu ESP się nie powiodło\n" #: esp.c:253 msgid "LZO decompression of ESP packet failed\n" msgstr "Dekompresja LZO pakietu ESP się nie powiodła\n" #: esp.c:259 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "LZO zdekompresowało %d bajtów do %d\n" #: esp.c:273 msgid "Rekey not implemented for ESP\n" msgstr "„rekey” nie jest zaimplementowane dla ESP\n" #: esp.c:277 msgid "ESP detected dead peer\n" msgstr "ESP wykryło martwego partnera\n" #: esp.c:285 msgid "Send ESP probes for DPD\n" msgstr "Wysłanie próbek ESP dla DPD\n" #: esp.c:292 msgid "Keepalive not implemented for ESP\n" msgstr "„Keepalive” nie jest zaimplementowane dla ESP\n" #: esp.c:343 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "Ponowne kolejkowanie nieudanego wysłania ESP: %s\n" #: esp.c:350 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "Wysłanie pakietu ESP się nie powiodło: %s\n" #: esp.c:356 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "Wysłano pakiet ESP o rozmiarze %d bajtów\n" #: esp.c:427 msgid "Failed to generate random keys for ESP\n" msgstr "Utworzenie losowych kluczy dla ESP się nie powiodło\n" #: esp.c:434 msgid "Failed to generate initial IV for ESP\n" msgstr "Utworzenie początkowego IV dla ESP się nie powiodło\n" #: gnutls-dtls.c:190 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "Odkładanie wznowienia DTLS, aż CSTP utworzy PSK\n" #: gnutls-dtls.c:198 msgid "Failed to generate DTLS priority string\n" msgstr "Utworzenie ciągu priorytetu DTLS się nie powiodło\n" #: gnutls-dtls.c:207 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "Zainicjowanie DTLS się nie powiodło: %s\n" #: gnutls-dtls.c:216 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "Ustawienie priorytetu DTLS się nie powiodło: „%s”: %s\n" #: gnutls-dtls.c:240 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "Przydzielenie danych uwierzytelniających się nie powiodło: %s\n" #: gnutls-dtls.c:253 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "Utworzenie klucza DTLS się nie powiodło: %s\n" #: gnutls-dtls.c:267 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "Ustawienie klucza DTLS się nie powiodło: %s\n" #: gnutls-dtls.c:275 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "" "Ustawienie danych uwierzytelniających „PSK” DTLS się nie powiodło: %s\n" #: gnutls-dtls.c:309 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Nieznane parametry DTLS dla żądanego zestawu szyfrów „%s”\n" #: gnutls-dtls.c:324 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "Ustawienie priorytetu DTLS się nie powiodło: %s\n" #: gnutls-dtls.c:345 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Ustawienie parametrów sesji DTLS się nie powiodło: %s\n" #: gnutls-dtls.c:373 openssl-dtls.c:574 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "MTU partnera %d jest za małe, aby umożliwić DTLS\n" #: gnutls-dtls.c:382 openssl-dtls.c:585 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "Zmniejszono „MTU” DTLS do %d\n" #: gnutls-dtls.c:392 openssl-dtls.c:594 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" "Wznowienie sesji DTLS się nie powiodło. Możliwe, że to atak typu „MITM”. " "Wyłączanie DTLS.\n" #: gnutls-dtls.c:405 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Ustawienie „MTU” DTLS się nie powiodło: %s\n" #: gnutls-dtls.c:416 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" "Nawiązano połączenie DTLS (używając biblioteki GnuTLS). Zestaw szyfrów %s.\n" #: gnutls-dtls.c:422 openssl-dtls.c:612 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "Kompresja połączenia DTLS używając %s.\n" #: gnutls-dtls.c:437 openssl-dtls.c:693 openssl-dtls.c:697 msgid "DTLS handshake timed out\n" msgstr "Powitanie DTLS przekroczyło czas oczekiwania\n" #: gnutls-dtls.c:440 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "Powitanie DTLS się nie powiodło: %s\n" #: gnutls-dtls.c:444 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(Czy zapora sieciowa uniemożliwia wysyłanie pakietów UDP?)\n" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "Zainicjowanie szyfru ESP się nie powiodło: %s\n" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "Zainicjowanie „HMAC” ESP się nie powiodło: %s\n" #: gnutls-esp.c:128 gnutls-esp.c:171 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "Obliczenie HMAC dla pakietu ESP się nie powiodło: %s\n" #: gnutls-esp.c:135 openssl-esp.c:166 msgid "Received ESP packet with invalid HMAC\n" msgstr "Otrzymano pakiet ESP z nieprawidłowym HMAC\n" #: gnutls-esp.c:147 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "Odszyfrowanie pakietu ESP się nie powiodło: %s\n" #: gnutls-esp.c:163 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "Zaszyfrowanie pakietu ESP się nie powiodło: %s\n" #: gnutls.c:95 openssl.c:154 msgid "SSL write cancelled\n" msgstr "Anulowano zapis SSL\n" #: gnutls.c:99 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "Zapisanie do gniazda SSL się nie powiodło: %s\n" #: gnutls.c:145 gnutls.c:237 openssl.c:204 openssl.c:271 msgid "SSL read cancelled\n" msgstr "Anulowano odczyt SSL\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:158 msgid "SSL socket closed uncleanly\n" msgstr "Nieczysto zamknięto gniazdo SSL\n" #: gnutls.c:168 gnutls.c:246 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "Odczytanie z gniazda SSL się nie powiodło: %s\n" #: gnutls.c:266 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "Błąd odczytu SSL: %s. Łączenie ponownie.\n" #: gnutls.c:302 #, c-format msgid "SSL send failed: %s\n" msgstr "Wysłanie SSL się nie powiodło: %s\n" #: gnutls.c:315 msgid "Could not extract expiration time of certificate\n" msgstr "Nie można wydobyć czasu wygaśnięcia certyfikatu\n" #: gnutls.c:320 openssl.c:1592 msgid "Client certificate has expired at" msgstr "Certyfikat klienta wygasł w" #: gnutls.c:322 openssl.c:1597 msgid "Client certificate expires soon at" msgstr "Certyfikat klienta niedługo wygaśnie w" #: gnutls.c:371 openssl.c:771 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Wczytanie elementu „%s” z bazy kluczy się nie powiodło: %s\n" #: gnutls.c:384 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Otwarcie pliku klucza/certyfikatu %s się nie powiodło: %s\n" #: gnutls.c:391 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Wykonanie „stat” na pliku klucza/certyfikatu %s się nie powiodło: %s\n" #: gnutls.c:400 msgid "Failed to allocate certificate buffer\n" msgstr "Przydzielenie bufora certyfikatu się nie powiodło\n" #: gnutls.c:408 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Odczytanie certyfikatu do pamięci się nie powiodło: %s\n" #: gnutls.c:439 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Ustawienie struktury danych PKCS#12 się nie powiodło: %s\n" #: gnutls.c:462 openssl.c:534 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Odszyfrowanie pliku certyfikatu PKCS#12 się nie powiodło\n" #: gnutls.c:466 openssl.c:537 msgid "Enter PKCS#12 pass phrase:" msgstr "Hasło PKCS#12:" #: gnutls.c:489 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Przetworzenie pliku PKCS#12 się nie powiodło: %s\n" #: gnutls.c:501 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Wczytanie certyfikatu PKCS#12 się nie powiodło: %s\n" #: gnutls.c:584 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Importowanie certyfikatu X.509 się nie powiodło: %s\n" #: gnutls.c:594 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Ustawienie certyfikatu PKCS#11 się nie powiodło: %s\n" #: gnutls.c:628 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Nie można zainicjować sumy kontrolnej MD5: %s\n" #: gnutls.c:638 #, c-format msgid "MD5 hash error: %s\n" msgstr "Błąd sumy kontrolnej MD5: %s\n" #: gnutls.c:696 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "Brak nagłówka DEK-Info: z zaszyfrowanego klucza biblioteki OpenSSL\n" #: gnutls.c:703 msgid "Cannot determine PEM encryption type\n" msgstr "Nie można ustalić typu szyfrowania PEM\n" #: gnutls.c:716 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Nieobsługiwany typ szyfrowania PEM: %s\n" #: gnutls.c:741 gnutls.c:754 msgid "Invalid salt in encrypted PEM file\n" msgstr "Nieprawidłowe „salt” w zaszyfrowanym pliku PEM\n" #: gnutls.c:778 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "" "Błąd podczas odszyfrowywania zaszyfrowanego pliku PEM za pomocą base64: %s\n" #: gnutls.c:786 msgid "Encrypted PEM file too short\n" msgstr "Zaszyfrowany plik PEM jest za krótki\n" #: gnutls.c:814 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "Zainicjowanie szyfru do odszyfrowania pliku PEM się nie powiodło: %s\n" #: gnutls.c:825 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Odszyfrowanie klucza PEM się nie powiodło: %s\n" #: gnutls.c:877 msgid "Decrypting PEM key failed\n" msgstr "Odszyfrowanie klucza PEM się nie powiodło\n" #: gnutls.c:881 gnutls.c:1405 openssl.c:458 msgid "Enter PEM pass phrase:" msgstr "Hasło PEM:" #: gnutls.c:942 msgid "This binary built without system key support\n" msgstr "Ten plik binarny został zbudowany bez obsługi kluczy systemowych\n" #: gnutls.c:949 msgid "This binary built without PKCS#11 support\n" msgstr "Ten plik binarny został zbudowany bez obsługi PKCS#11\n" #: gnutls.c:993 openssl-pkcs11.c:407 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Używanie certyfikatu PKCS#11 %s\n" #: gnutls.c:994 #, c-format msgid "Using system certificate %s\n" msgstr "Używanie systemowego certyfikatu %s\n" #: gnutls.c:1012 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Błąd podczas wczytywania certyfikatu z PKCS#11: %s\n" #: gnutls.c:1013 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Błąd podczas wczytywania systemowego certyfikatu: %s\n" #: gnutls.c:1024 openssl.c:827 #, c-format msgid "Using certificate file %s\n" msgstr "Używanie pliku certyfikatu %s\n" #: gnutls.c:1052 msgid "PKCS#11 file contained no certificate\n" msgstr "Plik PKCS#11 nie zawiera żadnego certyfikatu\n" #: gnutls.c:1078 msgid "No certificate found in file" msgstr "Nie odnaleziono żadnego certyfikatu w pliku" #: gnutls.c:1083 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Wczytanie certyfikatu się nie powiodło: %s\n" #: gnutls.c:1098 #, c-format msgid "Using system key %s\n" msgstr "Używanie systemowego klucza %s\n" #: gnutls.c:1103 gnutls.c:1271 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Błąd podczas inicjowania struktury klucza prywatnego: %s\n" #: gnutls.c:1114 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Błąd podczas importowania systemowego klucza %s: %s\n" #: gnutls.c:1125 gnutls.c:1219 gnutls.c:1247 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "Próbowanie adresu URL klucza PKCS#11 %s\n" #: gnutls.c:1130 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Błąd podczas inicjowania struktury klucza PKCS#11: %s\n" #: gnutls.c:1259 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Błąd podczas importowania adresu URL klucza PKCS#11 %s: %s\n" #: gnutls.c:1266 openssl-pkcs11.c:644 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Używanie klucza PKCS#11 %s\n" #: gnutls.c:1281 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" "Błąd podczas importowania klucza PKCS#11 do struktury klucza prywatnego: %s\n" #: gnutls.c:1299 #, c-format msgid "Using private key file %s\n" msgstr "Używanie pliku klucza prywatnego %s\n" #: gnutls.c:1310 openssl.c:651 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Ta wersja OpenConnect została zbudowana bez obsługi TPM\n" #: gnutls.c:1326 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "Ta wersja OpenConnect została zbudowana bez obsługi TPM2\n" #: gnutls.c:1347 msgid "Failed to interpret PEM file\n" msgstr "Zinterpretowanie pliku PEM się nie powiodło\n" #: gnutls.c:1366 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Wczytanie klucza prywatnego PKCS#1 się nie powiodło: %s\n" #: gnutls.c:1379 gnutls.c:1393 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Wczytanie klucza prywatnego jako PKCS#8 się nie powiodło: %s\n" #: gnutls.c:1401 gnutls.c:1434 openssl.c:1002 openssl.c:1012 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Odszyfrowanie pliku certyfikatu PKCS#8 się nie powiodło\n" #: gnutls.c:1426 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Ustalenie typu klucza prywatnego %s się nie powiodło\n" #: gnutls.c:1438 openssl.c:1008 msgid "Enter PKCS#8 pass phrase:" msgstr "Hasło PKCS#8:" #: gnutls.c:1454 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Uzyskanie identyfikatora klucza się nie powiodło: %s\n" #: gnutls.c:1499 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "" "Błąd podczas podpisywania danych testowych za pomocą klucza prywatnego: %s\n" #: gnutls.c:1514 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Błąd podczas sprawdzania poprawności podpisu z certyfikatem: %s\n" #: gnutls.c:1539 msgid "No SSL certificate found to match private key\n" msgstr "Nie odnaleziono certyfikatu SSL pasującego do klucza prywatnego\n" #: gnutls.c:1551 openssl.c:560 openssl.c:709 #, c-format msgid "Using client certificate '%s'\n" msgstr "Używanie certyfikatu klienta „%s”\n" #: gnutls.c:1558 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "Ustawienie listy unieważnień certyfikatów się nie powiodło: %s\n" #: gnutls.c:1579 gnutls.c:1589 msgid "Failed to allocate memory for certificate\n" msgstr "Przydzielenie pamięci dla certyfikatu się nie powiodło\n" #: gnutls.c:1625 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" "OSTRZEŻENIE: biblioteka GnuTLS zwróciła niepoprawne certyfikaty " "wystawiających. Uwierzytelnienie może się nie powieść.\n" #: gnutls.c:1648 msgid "Got no issuer from PKCS#11\n" msgstr "Nie otrzymano wystawiającego z PKCS#11\n" #: gnutls.c:1653 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "Otrzymano następne CA „%s” z PKCS#11\n" #: gnutls.c:1679 msgid "Failed to allocate memory for supporting certificates\n" msgstr "" "Przydzielenie pamięci dla certyfikatów wspierających się nie powiodło\n" #: gnutls.c:1702 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Dodawanie wspierającego CA „%s”\n" #: gnutls.c:1724 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "Klucz prywatny nie obsługuje RSA-PSS. Wyłączanie TLSv1.3\n" #: gnutls.c:1748 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Ustawienie certyfikatu się nie powiodło: %s\n" #: gnutls.c:1941 msgid "Server presented no certificate\n" msgstr "Serwer nie przedstawił żadnego certyfikatu\n" #: gnutls.c:1949 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" "Błąd podczas porównywania certyfikatu serwera przy ponownym powitaniu: %s\n" #: gnutls.c:1954 openssl.c:1515 msgid "Server presented different cert on rehandshake\n" msgstr "Serwer przedstawił inny certyfikat podczas ponownego powitania\n" #: gnutls.c:1959 openssl.c:1518 msgid "Server presented identical cert on rehandshake\n" msgstr "Serwer przedstawił identyczny certyfikat podczas ponownego powitania\n" #: gnutls.c:1965 msgid "Error initialising X509 cert structure\n" msgstr "Błąd podczas inicjowania struktury certyfikatów X.509\n" #: gnutls.c:1971 msgid "Error importing server's cert\n" msgstr "Błąd podczas importowania certyfikatu serwera\n" #: gnutls.c:1980 main.c:1794 msgid "Could not calculate hash of server's certificate\n" msgstr "Nie można obliczyć sumy kontrolnej certyfikatu serwera\n" #: gnutls.c:1985 msgid "Error checking server cert status\n" msgstr "Błąd podczas sprawdzania stanu certyfikatu serwera\n" #: gnutls.c:1990 msgid "certificate revoked" msgstr "unieważniony certyfikat" #: gnutls.c:1992 msgid "signer not found" msgstr "nie odnaleziono podpisującego" #: gnutls.c:1994 msgid "signer not a CA certificate" msgstr "podpisujący nie jest certyfikatem CA" #: gnutls.c:1996 msgid "insecure algorithm" msgstr "niebezpieczny algorytm" #: gnutls.c:1998 msgid "certificate not yet activated" msgstr "certyfikat nie został jeszcze aktywowany" #: gnutls.c:2000 msgid "certificate expired" msgstr "certyfikat wygasł" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2005 msgid "signature verification failed" msgstr "sprawdzenie poprawności podpisu się nie powiodło" #: gnutls.c:2054 openssl.c:1399 openssl.c:1551 msgid "certificate does not match hostname" msgstr "certyfikat nie pasuje do nazwy komputera" #: gnutls.c:2059 openssl.c:1398 openssl.c:1557 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Sprawdzenie poprawności certyfikatu klienta się nie powiodło: %s\n" #: gnutls.c:2126 msgid "Failed to allocate memory for cafile certs\n" msgstr "Przydzielenie pamięci dla certyfikatów pliku CA się nie powiodło\n" #: gnutls.c:2147 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Odczytanie certyfikatów z pliku CA się nie powiodło: %s\n" #: gnutls.c:2163 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Otwarcie pliku CA „%s” się nie powiodło: %s\n" #: gnutls.c:2176 openssl.c:1679 msgid "Loading certificate failed. Aborting.\n" msgstr "Wczytanie certyfikatu się nie powiodło. Przerywanie.\n" #: gnutls.c:2237 #, c-format msgid "Failed to set TLS priority string (\"%s\"): %s\n" msgstr "Ustawienie ciągu priorytetu TLS się nie powiodło („%s”): %s\n" #: gnutls.c:2249 openssl.c:1796 #, c-format msgid "SSL negotiation with %s\n" msgstr "Negocjacja SSL z %s\n" #: gnutls.c:2296 openssl.c:1822 msgid "SSL connection cancelled\n" msgstr "Anulowano połączenie SSL\n" #: gnutls.c:2303 #, c-format msgid "SSL connection failure: %s\n" msgstr "Niepowodzenie połączenia SSL: %s\n" #: gnutls.c:2312 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "Niekrytyczny zwrot biblioteki GnuTLS podczas powitania: %s\n" #: gnutls.c:2318 openssl.c:1839 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "Połączono z HTTPS na %s\n" #: gnutls.c:2321 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "Ponownie negocjowano SSL na %s\n" #: gnutls.c:2483 openssl-pkcs11.c:199 #, c-format msgid "PIN required for %s" msgstr "Wymagany jest kod PIN dla %s" #: gnutls.c:2487 openssl-pkcs11.c:202 msgid "Wrong PIN" msgstr "Błędny kod PIN" #: gnutls.c:2490 msgid "This is the final try before locking!" msgstr "To ostatnia próba przed zablokowaniem." #: gnutls.c:2492 msgid "Only a few tries left before locking!" msgstr "Pozostało tylko kilka prób przed zablokowaniem." #: gnutls.c:2497 openssl-pkcs11.c:206 msgid "Enter PIN:" msgstr "Proszę wprowadzić kod PIN:" #: gnutls.c:2583 openssl.c:1969 msgid "Unsupported OATH HMAC algorithm\n" msgstr "Nieobsługiwany algorytm HMAC „OATH”\n" #: gnutls.c:2592 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "Obliczenie HMAC „OATH” się nie powiodło: %s\n" #: gnutls.c:2606 #, c-format msgid "ttls_pull_timeout_func %dms\n" msgstr "ttls_pull_timeout_func %d ms\n" #: gnutls.c:2649 openssl.c:2084 msgid "Established EAP-TTLS session\n" msgstr "Ustanowiono sesję EAP-TTLS\n" #: gnutls_tpm.c:54 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "Wywołano funkcję podpisywania TPM dla %d bajtów.\n" #: gnutls_tpm.c:61 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Utworzenie obiektu sumy kontrolnej TPM się nie powiodło: %s\n" #: gnutls_tpm.c:68 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "" "Ustawienie wartości w obiekcie sumy kontrolnej TPM się nie powiodło: %s\n" #: gnutls_tpm.c:78 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "Podpis sumy kontrolnej TPM się nie powiódł: %s\n" #: gnutls_tpm.c:100 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Błąd podczas dekodowania danych „blob” klucza TSS: %s\n" #: gnutls_tpm.c:108 gnutls_tpm.c:119 gnutls_tpm.c:132 msgid "Error in TSS key blob\n" msgstr "Błąd w danych „blob” klucza TSS\n" #: gnutls_tpm.c:139 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Utworzenie kontekstu TPM się nie powiodło: %s\n" #: gnutls_tpm.c:146 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Połączenie kontekstu TPM się nie powiodło: %s\n" #: gnutls_tpm.c:154 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Wczytanie klucza „SRK” TPM się nie powiodło: %s\n" #: gnutls_tpm.c:161 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Wczytanie obiektu polityki „SRK” TPM się nie powiodło: %s\n" #: gnutls_tpm.c:182 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Ustawienie kodu PIN TPM się nie powiodło: %s\n" #: gnutls_tpm.c:198 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Wczytanie danych „blob” klucza TPM się nie powiodło: %s\n" #: gnutls_tpm.c:205 msgid "Enter TPM SRK PIN:" msgstr "Kod PIN „SRK” TPM:" #: gnutls_tpm.c:226 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Utworzenie obiektu polityki kluczy się nie powiodło: %s\n" #: gnutls_tpm.c:234 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Przydzielenie polityki do klucza się nie powiodło: %s\n" #: gnutls_tpm.c:240 msgid "Enter TPM key PIN:" msgstr "Kod PIN klucza TPM:" #: gnutls_tpm.c:251 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Ustawienie kodu PIN klucza się nie powiodło: %s\n" #: gnutls_tpm2.c:92 gnutls_tpm2_esys.c:474 gnutls_tpm2_ibm.c:419 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "Nieznany rozmiar skrótu EC TPM2 %d\n" #: gnutls_tpm2.c:198 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "Błąd podczas dekodowania danych „blob” klucza TSS2: %s\n" #: gnutls_tpm2.c:208 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "Utworzenie typu ASN.1 dla TPM2 się nie powiodło: %s\n" #: gnutls_tpm2.c:217 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "Dekodowanie ASN.1 klucza TPM2 się nie powiodło: %s\n" #: gnutls_tpm2.c:225 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "Przetworzenie typu OID klucza TPM2 się nie powiodło: %s\n" #: gnutls_tpm2.c:231 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "Klucz TPM2 ma nieznany typ OID %s, nie %s\n" #: gnutls_tpm2.c:249 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "Przetworzenie nadrzędnego klucza TPM2 się nie powiodło: %s\n" #: gnutls_tpm2.c:270 msgid "Failed to parse TPM2 pubkey element\n" msgstr "Przetworzenie elementu klucza publicznego TPM2 się nie powiodło\n" #: gnutls_tpm2.c:275 msgid "Failed to parse TPM2 privkey element\n" msgstr "Przetworzenie elementu klucza prywatnego TPM2 się nie powiodło\n" #: gnutls_tpm2.c:280 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "Przetworzono klucz TPM2 za pomocą nadrzędnego %x, emptyauth %d\n" #: gnutls_tpm2.c:384 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "Skrót TPM2 jest za duży: %d > %d\n" #: gnutls_tpm2_esys.c:173 msgid "TPM2 password too long; truncating\n" msgstr "Hasło TPM2 jest za długie, skracanie\n" #: gnutls_tpm2_esys.c:189 msgid "owner" msgstr "właściciel" #: gnutls_tpm2_esys.c:190 msgid "null" msgstr "puste" #: gnutls_tpm2_esys.c:191 msgid "endorsement" msgstr "aprobata" #: gnutls_tpm2_esys.c:192 msgid "platform" msgstr "platforma" #: gnutls_tpm2_esys.c:196 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "Tworzenie głównego klucz w hierarchii %s.\n" #: gnutls_tpm2_esys.c:201 gnutls_tpm2_ibm.c:262 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "Hasło hierarchii TPM2 %s:" #: gnutls_tpm2_esys.c:209 gnutls_tpm2_esys.c:303 gnutls_tpm2_esys.c:374 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "Esys_TR_SetAuth TPM2 się nie powiodło: 0x%x\n" #: gnutls_tpm2_esys.c:221 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" "Uwierzytelnienie właściciela Esys_CreatePrimary TPM2 się nie powiodło\n" #: gnutls_tpm2_esys.c:226 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "Esys_CreatePrimary TPM2 się nie powiodło: 0x%x\n" #: gnutls_tpm2_esys.c:245 msgid "Establishing connection with TPM.\n" msgstr "Nawiązywanie połączenia za pomocą TPM.\n" #: gnutls_tpm2_esys.c:250 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "Esys_Initialize TPM2 się nie powiodło: 0x%x\n" #: gnutls_tpm2_esys.c:258 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" "TPM2 zostało już uruchomione, co spowodowało fałszywy alarm niepowodzenia " "w dzienniku tpm2tss.\n" #: gnutls_tpm2_esys.c:261 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "Esys_Startup TPM2 się nie powiodło: 0x%x\n" #: gnutls_tpm2_esys.c:274 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" "Esys_TR_FromTPMPublic się nie powiodło dla programu obsługującego 0x%x: 0x" "%x\n" #: gnutls_tpm2_esys.c:295 gnutls_tpm2_ibm.c:278 msgid "Enter TPM2 parent key password:" msgstr "Hasło nadrzędnego klucza TPM2:" #: gnutls_tpm2_esys.c:309 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "Wczytywanie danych „blob” klucza TPM2, nadrzędny %x.\n" #: gnutls_tpm2_esys.c:317 msgid "TPM2 Esys_Load auth failed\n" msgstr "Uwierzytelnienie Esys_Load TPM2 się nie powiodło\n" #: gnutls_tpm2_esys.c:323 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "Esys_Load TPM2 się nie powiodło: 0x%x\n" #: gnutls_tpm2_esys.c:333 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" "Esys_FlushContex TPM2 dla utworzonego głównego się nie powiodło: 0x%x\n" #: gnutls_tpm2_esys.c:363 gnutls_tpm2_ibm.c:363 gnutls_tpm2_ibm.c:450 msgid "Enter TPM2 key password:" msgstr "Hasło klucza TPM2:" #: gnutls_tpm2_esys.c:395 #, c-format msgid "TPM2 RSA sign function called for %d bytes.\n" msgstr "Wywołano funkcję podpisywania RSA TPM2 dla %d B.\n" #: gnutls_tpm2_esys.c:414 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "Uwierzytelnienie Esys_RSA_Decrypt TPM2 się nie powiodło\n" #: gnutls_tpm2_esys.c:420 gnutls_tpm2_esys.c:500 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "Utworzenie podpisu RSA przez TPM2 się nie powiodło: 0x%x\n" #: gnutls_tpm2_esys.c:464 gnutls_tpm2_ibm.c:405 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "Wywołano funkcję podpisywania EC TPM2 dla %d B.\n" #: gnutls_tpm2_esys.c:494 msgid "TPM2 Esys_Sign auth failed\n" msgstr "Uwierzytelnienie Esys_Sign TPM2 się nie powiodło\n" #: gnutls_tpm2_esys.c:532 gnutls_tpm2_ibm.c:485 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "Nieprawidłowy program obsługujący 0x%08x nadrzędnego TPM2\n" #: gnutls_tpm2_esys.c:546 gnutls_tpm2_ibm.c:502 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "Zaimportowanie danych klucza prywatnego TPM2 się nie powiodło: 0x%x\n" #: gnutls_tpm2_esys.c:555 gnutls_tpm2_ibm.c:512 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "Zaimportowanie danych klucza publicznego TPM2 się nie powiodło: 0x%x\n" #: gnutls_tpm2_esys.c:569 gnutls_tpm2_ibm.c:523 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "Nieobsługiwany typ klucza TPM2 %d\n" #: gnutls_tpm2_ibm.c:54 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "Działanie TPM2 %s się nie powiodło (%d): %s%s%s\n" #: gpst.c:226 #, c-format msgid "%s\n" msgstr "%s\n" #: gpst.c:229 #, c-format msgid "Challenge: %s\n" msgstr "Wyzwanie: %s\n" #: gpst.c:412 #, c-format msgid "Unknown ESP MAC algorithm: %s" msgstr "Nieznany algorytm MAC ESP: %s" #: gpst.c:420 #, c-format msgid "Unknown ESP encryption algorithm: %s" msgstr "Nieznany algorytm szyfrowania ESP: %s" #: gpst.c:486 #, c-format msgid "Session will expire after %d minutes.\n" msgstr "Sesja wygaśnie za %d min.\n" #: gpst.c:489 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "Czas oczekiwania bezczynności wynosi %d min.\n" #: gpst.c:495 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "Niestandardowa ścieżka do tunelu SSL: %s\n" #: gpst.c:499 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "Czas oczekiwania tunelu (czas między „rekey”) wynosi %d min.\n" #: gpst.c:510 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" "Adres bramy w XML konfiguracji (%s) różni się od adresu zewnętrznej bramy " "(%s).\n" #: gpst.c:564 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" "Konfiguracja GlobalProtect wysłała ipsec-mode=%s (oczekiwano esp-tunnel)\n" #: gpst.c:573 oncp.c:835 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "Ignorowanie kluczy ESP, ponieważ obsługa ESP jest niedostępna\n" #: gpst.c:591 #, c-format msgid "" "Potential IPv6-related GlobalProtect config tag <%s>: %s\n" "This build does not support GlobalProtect IPv6 due to a lack of\n" "of information on how it is configured. Please report this\n" "to .\n" msgstr "" "Potencjalny znacznik konfiguracji GlobalProtect powiązany z IPv6 <%s>: %s\n" "Ta kompilacja nie obsługuje IPv6 GlobalProtect z powodu braku\n" "informacji o sposobie konfiguracji. Prosimy to zgłosić na adres\n" " (w języku angielskim).\n" #: gpst.c:596 #, c-format msgid "Unknown GlobalProtect config tag <%s>: %s\n" msgstr "Nieznany znacznik konfiguracji GlobalProtect <%s>: %s\n" #: gpst.c:655 msgid "ESP disabled" msgstr "ESP jest wyłączone" #: gpst.c:657 msgid "No ESP keys received" msgstr "Nie otrzymano kluczy ESP" #: gpst.c:659 msgid "ESP support not available in this build" msgstr "Obsługa ESP została wyłączona podczas budowania" #: gpst.c:663 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "Nie otrzymano MTU. Obliczono %d dla %s%s\n" #: gpst.c:725 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "Łączenie z punktem końcowym tunelu HTTPS…\n" #: gpst.c:747 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "Błąd podczas pobierania odpowiedzi „GET-tunnel” HTTPS.\n" #: gpst.c:756 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "Brama rozłączyła się od razu po żądaniu „GET-tunnel”.\n" #: gpst.c:764 #, c-format msgid "Got inappropriate HTTP GET-tunnel response: %.*s\n" msgstr "Otrzymano nieodpowiednią odpowiedź „GET-tunnel” HTTPS: %.*s\n" #: gpst.c:909 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" "VPN connectivity may be disabled or limited without HIP report submission.\n" "You need to provide a --csd-wrapper argument with the HIP report submission " "script.\n" msgstr "" "OSTRZEŻENIE: serwer poprosił o wysłanie zgłoszenia HIP o sumie kontrolnej " "MD5 %s.\n" "Łączność z VPN może być wyłączona lub ograniczona bez wysłania zgłoszenia " "HIP.\n" "Należy podać parametr --csd-wrapper ze skryptem wysyłania zgłoszenia HIP.\n" #: gpst.c:919 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" "Błąd: uruchamianie skryptu „HIP Report” na tej platformie nie jest jeszcze " "zaimplementowane.\n" #: gpst.c:948 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "Skrypt HIP „%s” nieoczekiwanie zakończył działanie\n" #: gpst.c:953 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "Skrypt HIP „%s” zwrócił niezerowy stan: %d\n" #: gpst.c:959 msgid "HIP report submission failed.\n" msgstr "Wysłanie zgłoszenia HIP się nie powiodło.\n" #: gpst.c:961 msgid "HIP report submitted successfully.\n" msgstr "Pomyślnie wysłano zgłoszenie HIP.\n" #: gpst.c:996 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "Wykonanie skryptu HIP %s się nie powiodło\n" #: gpst.c:1020 msgid "Gateway says HIP report submission is needed.\n" msgstr "Brama mówi, że wymagane jest wysłanie zgłoszenia HIP.\n" #: gpst.c:1026 msgid "Gateway says no HIP report submission is needed.\n" msgstr "Brama mówi, że wysłanie zgłoszenia HIP nie jest wymagane.\n" #: gpst.c:1053 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "Wykryto tunel ESP. Wychodzenie z głównej pętli HTTPS.\n" #: gpst.c:1069 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "Połączenie tunelu ESP się nie powiodło. Używanie HTTPS zamiast tego.\n" #: gpst.c:1105 #, c-format msgid "Packet receive error: %s\n" msgstr "Błąd odbioru pakietu: %s\n" #: gpst.c:1126 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" "Nieoczekiwana długość pakietu. „SSL_read” zwróciło %d (w tym 16 bajtów " "nagłówka), ale „payload_len” nagłówka wynosi %d\n" #: gpst.c:1136 msgid "Got GPST DPD/keepalive response\n" msgstr "Otrzymano odpowiedź „DPD/keepalive” GPST\n" #: gpst.c:1140 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" "Oczekiwano 0000000000000000 jako ostatnie 8 bajtów nagłówka pakietu „DPD/" "keepalive”, ale otrzymano:\n" #: gpst.c:1147 #, c-format msgid "Received IPv%d data packet of %d bytes\n" msgstr "Otrzymano pakiet danych IPv%d o rozmiarze %d B\n" #: gpst.c:1156 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" "Oczekiwano 0100000000000000 jako ostatnie 8 bajtów nagłówka pakietu danych, " "ale otrzymano:\n" #: gpst.c:1164 msgid "Unknown packet. Header dump follows:\n" msgstr "Nieznany pakiet. Zrzut nagłówka:\n" #: gpst.c:1212 msgid "GlobalProtect rekey due\n" msgstr "„rekey” GlobalProtect do\n" #: gpst.c:1217 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "Wykrywanie martwych partnerów GPST wykryło martwego partnera.\n" #: gpst.c:1237 msgid "Send GPST DPD/keepalive request\n" msgstr "Wysłanie żądania „DPD/keepalive” GPST\n" #: gpst.c:1260 #, c-format msgid "Sending IPv%d data packet of %d bytes\n" msgstr "Wysyłanie pakietu danych IPv%d o rozmiarze %d B\n" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Błąd podczas importowania nazwy GSSAPI do uwierzytelnienia:\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "Błąd podczas tworzenia odpowiedzi GSSAPI:\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "Próbowanie uwierzytelnienia GSSAPI do pośrednika\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "Próbowanie uwierzytelnienia GSSAPI do serwera „%s”\n" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "Ukończono uwierzytelnianie GSSAPI\n" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "Token GSSAPI jest za duży (%zd bajtów)\n" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "Wysyłanie tokena GSSAPI o rozmiarze %zu bajtów\n" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" "Wysłanie tokena uwierzytelnienia GSSAPI do pośrednika się nie powiodło: %s\n" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" "Otrzymanie tokena uwierzytelnienia GSSAPI z pośrednika się nie powiodło: %s\n" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "Serwer SOCKS zgłosił niepowodzenie kontekstu GSSAPI\n" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "Nieznana odpowiedź stanu GSSAPI (0x%02x) z serwera SOCKS\n" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "Otrzymano token GSSAPI o rozmiarze %zu bajtów: %02x %02x %02x %02x\n" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "Wysyłanie negocjacji ochrony GSSAPI o rozmiarze %zu bajtów\n" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" "Wysłanie odpowiedzi ochrony GSSAPI do pośrednika się nie powiodło: %s\n" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" "Otrzymanie odpowiedzi ochrony GSSAPI z pośrednika się nie powiodło: %s\n" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" "Otrzymano odpowiedź ochrony GSSAPI o rozmiarze %zu bajtów: %02x %02x %02x " "%02x\n" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "Nieprawidłowa odpowiedź ochrony GSSAPI z pośrednika (%zu bajtów)\n" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" "Pośrednik SOCKS żąda integralności komunikatów, co jest nieobsługiwane\n" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "Pośrednik SOCKS żąda poufności komunikatów, co jest nieobsługiwane\n" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "Pośrednik SOCKS żąda ochrony o nieznanym typie 0x%02x\n" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "Próbowanie podstawowego uwierzytelnienia HTTP do pośrednika\n" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "Próbowanie podstawowego uwierzytelnienia HTTP z serwerem „%s”\n" #: http-auth.c:200 http.c:1178 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "Ta wersja OpenConnect została zbudowana bez obsługi GSSAPI\n" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" "Pośrednik zażądał podstawowego uwierzytelnienia, które jest domyślnie " "wyłączone\n" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" "Serwer „%s” zażądał podstawowego uwierzytelnienia, które jest domyślnie " "wyłączone\n" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "Nie ma więcej metod uwierzytelnienia do wypróbowania\n" #: http.c:319 msgid "No memory for allocating cookies\n" msgstr "Brak pamięci do przydzielenia ciasteczek\n" #: http.c:394 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Przetworzenie odpowiedzi HTTP „%s” się nie powiodło\n" #: http.c:400 #, c-format msgid "Got HTTP response: %s\n" msgstr "Otrzymano odpowiedź HTTP: %s\n" #: http.c:408 msgid "Error processing HTTP response\n" msgstr "Błąd podczas przetwarzania odpowiedzi HTTP\n" #: http.c:415 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Ignorowanie nieznanego wiersza odpowiedzi HTTP „%s”\n" #: http.c:435 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Zaproponowano nieprawidłowe ciasteczko: %s\n" #: http.c:454 msgid "SSL certificate authentication failed\n" msgstr "Uwierzytelnienie certyfikatu SSL się nie powiodło\n" #: http.c:485 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Treść odpowiedzi ma ujemny rozmiar (%d)\n" #: http.c:496 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Nieznane Transfer-Encoding: %s\n" #. Now the body, if there is one #: http.c:515 #, c-format msgid "HTTP body %s (%d)\n" msgstr "Treść HTTP %s (%d)\n" #: http.c:529 http.c:556 msgid "Error reading HTTP response body\n" msgstr "Błąd podczas odczytywania treści odpowiedzi HTTP\n" #: http.c:542 msgid "Error fetching chunk header\n" msgstr "Błąd podczas pobierania nagłówka fragmentu\n" #: http.c:566 msgid "Error fetching HTTP response body\n" msgstr "Błąd podczas pobierania treści odpowiedzi HTTP\n" #: http.c:569 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "" "Błąd podczas fragmentarycznego dekodowania. Oczekiwano „”, otrzymano: „%s”" #: http.c:581 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Nie można pobrać treści HTTP 1.0 bez zamknięcia połączenia\n" #: http.c:708 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Przetworzenie przekierowanego adresu URL „%s” się nie powiodło: %s\n" #: http.c:732 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "" "Nie można podążyć za przekierowaniem do adresu URL „%s” niebędącego HTTPS\n" #: http.c:760 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "" "Przydzielenie nowej ścieżki dla względnego przekierowania się nie powiodło: " "%s\n" #: http.c:985 oncp.c:591 pulse.c:1292 #, c-format msgid "Unexpected %d result from server\n" msgstr "Oczekiwano %d wyników z serwera\n" #: http.c:1033 msgid "request granted" msgstr "udzielono żądanie" #: http.c:1034 msgid "general failure" msgstr "ogólne niepowodzenie" #: http.c:1035 msgid "connection not allowed by ruleset" msgstr "połączenie niedozwolone przez zestaw reguł" #: http.c:1036 msgid "network unreachable" msgstr "sieć jest nieosiągalna" #: http.c:1037 msgid "host unreachable" msgstr "komputer jest nieosiągalny" #: http.c:1038 msgid "connection refused by destination host" msgstr "połączenie odrzucone przez komputer docelowy" #: http.c:1039 msgid "TTL expired" msgstr "TTL wygasło" #: http.c:1040 msgid "command not supported / protocol error" msgstr "nieobsługiwane polecenie/błąd protokołu" #: http.c:1041 msgid "address type not supported" msgstr "nieobsługiwany typ adresu" #: http.c:1051 msgid "SOCKS server requested username/password but we have none\n" msgstr "Serwer SOCKS zażądał nazwy użytkownika/hasło, ale nie ma żadnego\n" #: http.c:1059 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" "Nazwa użytkownika i hasło do uwierzytelnienia SOCKS musi być < 255 bajtów\n" #: http.c:1074 http.c:1130 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" "Błąd podczas zapisywania żądania uwierzytelnienia do pośrednika SOCKS: %s\n" #: http.c:1082 http.c:1137 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" "Błąd podczas odczytywania żądania uwierzytelnienia z pośrednika SOCKS: %s\n" #: http.c:1089 http.c:1143 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" "Nieoczekiwana odpowiedź uwierzytelnienia z pośrednika SOCKS: %02x %02x\n" #: http.c:1095 msgid "Authenticated to SOCKS server using password\n" msgstr "Uwierzytelniono z serwerem SOCKS używając hasła\n" #: http.c:1099 msgid "Password authentication to SOCKS server failed\n" msgstr "Uwierzytelnienie hasłem z serwerem SOCKS się nie powiodło\n" #: http.c:1155 http.c:1162 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "Serwer SOCKS zażądał uwierzytelnienia GSSAPI\n" #: http.c:1168 msgid "SOCKS server requested password authentication\n" msgstr "Serwer SOCKS zażądał uwierzytelnienia hasłem\n" #: http.c:1175 msgid "SOCKS server requires authentication\n" msgstr "Serwer SOCKS wymaga uwierzytelnienia\n" #: http.c:1184 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "Serwer SOCKS zażądał nieznanego typu uwierzytelnienia %02x\n" #: http.c:1190 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Żądanie połączenia pośrednika SOCKS do %s:%d\n" #: http.c:1205 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Błąd podczas zapisywania żądania połączenia do pośrednika SOCKS: %s\n" #: http.c:1213 http.c:1255 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Błąd podczas odczytywania żądania połączenia z pośrednika SOCKS: %s\n" #: http.c:1219 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Nieoczekiwana odpowiedź połączenia z pośrednika SOCKS: %02x %02x…\n" #: http.c:1227 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "Błąd pośrednika SOCKS %02x: %s\n" #: http.c:1231 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "Błąd pośrednika SOCKS %02x\n" #: http.c:1248 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Nieoczekiwany typ adresu %02x w odpowiedzi połączenia SOCKS\n" #: http.c:1271 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Żądanie połączenia pośrednika HTTP do %s:%d\n" #: http.c:1306 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Wysłanie żądania pośrednika się nie powiodło: %s\n" #: http.c:1329 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "Żądanie „CONNECT” pośrednika się nie powiodło: %d\n" #: http.c:1348 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Nieznany typ pośrednika „%s”\n" #: http.c:1397 msgid "Only http or socks(5) proxies supported\n" msgstr "Obsługiwane są tylko pośredniki HTTP i SOCKS(5)\n" #: library.c:116 msgid "Cisco AnyConnect or openconnect" msgstr "Cisco AnyConnect lub openconnect" #: library.c:117 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "Zgodny z VPN Cisco AnyConnect SSL, a także z ocserv" #: library.c:133 msgid "Juniper Network Connect" msgstr "Juniper Network Connect" #: library.c:134 msgid "Compatible with Juniper Network Connect" msgstr "Zgodny z Juniper Network Connect" #: library.c:152 msgid "Palo Alto Networks GlobalProtect" msgstr "Palo Alto Networks GlobalProtect" #: library.c:153 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "Zgodny z VPN Palo Alto Networks (PAN) GlobalProtect SSL" #: library.c:171 msgid "Pulse Connect Secure" msgstr "Pulse Connect Secure" #: library.c:172 msgid "Compatible with Pulse Connect Secure SSL VPN" msgstr "Zgodny z VPN Pulse Connect Secure SSL" #: library.c:234 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "Nieznany protokół VPN „%s”\n" #: library.c:256 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Zbudowano z biblioteką SSL bez obsługi DTLS firmy Cisco\n" #: library.c:683 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Przetworzenie adresu URL serwera „%s” się nie powiodło\n" #: library.c:689 msgid "Only https:// permitted for server URL\n" msgstr "W adresach URL serwera dozwolone jest tylko „https://”\n" #: library.c:1084 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "Nieznana suma kontrolna certyfikatu: %s.\n" #: library.c:1113 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "Rozmiar podanego odcisku jest mniejszy niż minimalnie wymagany (%u).\n" #: library.c:1174 msgid "No form handler; cannot authenticate.\n" msgstr "Brak programu obsługującego formularze. Nie można uwierzytelnić.\n" #: main.c:340 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "CommandLineToArgvW() się nie powiodło: %s\n" #: main.c:353 #, c-format msgid "Fatal error in command line handling\n" msgstr "Krytyczny błąd podczas obsługiwania wiersza poleceń\n" #: main.c:388 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "ReadConsole() się nie powiodło: %s\n" #: main.c:401 #, c-format msgid "fgetws() failed: %s\n" msgstr "fgetws() się nie powiodło: %s\n" #: main.c:416 main.c:429 #, c-format msgid "Error converting console input: %s\n" msgstr "Błąd podczas konwertowania wejścia konsoli: %s\n" #: main.c:423 main.c:689 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Niepowodzenie przydzielania dla ciągu ze standardowego wejścia\n" #: main.c:584 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" "Pomoc dla OpenConnect jest dostępna na stronie\n" " http://www.infradead.org/openconnect/mail.html\n" #: main.c:593 #, c-format msgid "Using OpenSSL. Features present:" msgstr "Używanie biblioteki OpenSSL. Obecne funkcje:" #: main.c:595 #, c-format msgid "Using GnuTLS. Features present:" msgstr "Używanie biblioteki GnuTLS. Obecne funkcje:" #: main.c:608 msgid "OpenSSL ENGINE not present" msgstr "„ENGINE” biblioteki OpenSSL jest nieobecne" #: main.c:647 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" "OSTRZEŻENIE: ten plik binarny nie obsługuje DTLS lub ESP. Wydajność będzie " "zmniejszona.\n" #: main.c:657 #, c-format msgid "Supported protocols:" msgstr "Obsługiwane protokoły:" #: main.c:659 main.c:675 msgid " (default)" msgstr " (domyślny)" #: main.c:672 msgid "Set VPN protocol" msgstr "Ustawienie protokołu VPN" #: main.c:713 msgid "fgets (stdin)" msgstr "fgets (standardowe wejście)" #: main.c:754 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Nie można przetworzyć tej ścieżki wykonywalnej „%s”" #: main.c:760 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "Przydzielenie dla ścieżki vpnc-script się nie powiodło\n" #: main.c:780 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "Zastępuje nazwę komputera „%s” nazwą „%s”\n" #: main.c:793 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Użycie: openconnect [opcje] \n" #: main.c:794 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" "Otwarty klient dla wielu protokołów VPN, wersja %s\n" "\n" #: main.c:796 msgid "Read options from config file" msgstr "Odczytuje opcje z pliku konfiguracji" #: main.c:797 msgid "Report version number" msgstr "Wyświetla numer wersji" #: main.c:798 msgid "Display help text" msgstr "Wyświetla tekst pomocy" #: main.c:802 msgid "Authentication" msgstr "Uwierzytelnienie" #: main.c:803 msgid "Set login username" msgstr "Ustawia nazwę użytkownika logowania" #: main.c:804 msgid "Disable password/SecurID authentication" msgstr "Wyłącza uwierzytelnianie hasłem/SecurID" #: main.c:805 msgid "Do not expect user input; exit if it is required" msgstr "" "Bez oczekiwania działań użytkownika. Kończy działanie, jeśli jest wymagane" #: main.c:806 msgid "Read password from standard input" msgstr "Odczytuje hasło ze standardowego wejścia" #: main.c:807 msgid "Choose authentication login selection" msgstr "Wybiera logowanie uwierzytelnienia" #: main.c:808 msgid "Provide authentication form responses" msgstr "Podaje odpowiedzi formularza uwierzytelnienia" #: main.c:809 msgid "Use SSL client certificate CERT" msgstr "Używa CERTYFIKATU klienta SSL" #: main.c:810 msgid "Use SSL private key file KEY" msgstr "Używa pliku KLUCZA prywatnego SSL" #: main.c:811 msgid "Warn when certificate lifetime < DAYS" msgstr "Ostrzega, kiedy czas życia certyfikatu < DNI" #: main.c:812 msgid "Set login usergroup" msgstr "Ustawia grupę użytkownika logowania" #: main.c:813 msgid "Set key passphrase or TPM SRK PIN" msgstr "Ustawia hasło klucza lub kod PIN „SRK” TPM" #: main.c:814 msgid "Key passphrase is fsid of file system" msgstr "Hasło klucza jest fsid systemu plików" #: main.c:815 msgid "Software token type: rsa, totp or hotp" msgstr "Typ tokena programowego: rsa, totp lub hotp" #: main.c:816 msgid "Software token secret" msgstr "Hasło tokena programowego" #: main.c:818 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" "(UWAGA: obsługa biblioteki libstoken (SecurID RSA) została wyłączona podczas " "budowania)" #: main.c:821 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(UWAGA: obsługa „OATH” Yubikey została wyłączona podczas budowania)" #: main.c:824 msgid "Server validation" msgstr "Sprawdzanie poprawności serwera" #: main.c:825 msgid "Server's certificate SHA1 fingerprint" msgstr "Odcisk SHA1 certyfikatu serwera" #: main.c:826 msgid "Do not require server SSL cert to be valid" msgstr "Bez wymagania poprawności certyfikatu SSL serwera" #: main.c:827 msgid "Disable default system certificate authorities" msgstr "Wyłącza domyślne CA systemu" #: main.c:828 msgid "Cert file for server verification" msgstr "Plik certyfikatu do sprawdzania poprawności serwera" #: main.c:830 msgid "Internet connectivity" msgstr "Łączność z Internetem" #: main.c:831 msgid "Set proxy server" msgstr "Ustawia serwer pośrednika" #: main.c:832 msgid "Set proxy authentication methods" msgstr "Ustawia metody uwierzytelnienia pośrednika" #: main.c:833 msgid "Disable proxy" msgstr "Wyłącza pośrednika" #: main.c:834 msgid "Use libproxy to automatically configure proxy" msgstr "Używa biblioteki libproxy do automatycznego konfigurowania pośrednika" #: main.c:836 msgid "(NOTE: libproxy disabled in this build)" msgstr "" "(UWAGA: obsługa biblioteki libproxy została wyłączona podczas budowania)" #: main.c:838 msgid "Connection retry timeout in seconds" msgstr "Ograniczenie czasu ponawiania połączenia w sekundach" #: main.c:839 msgid "Use IP when connecting to HOST" msgstr "Używa IP podczas łączenie z KOMPUTEREM" #: main.c:840 msgid "copy TOS / TCLASS when using DTLS" msgstr "kopiuje TOS/TCLASS podczas używania DTLS" #: main.c:841 msgid "Set local port for DTLS and ESP datagrams" msgstr "Ustawia lokalny port dla datagramów DTLS i ESP" #: main.c:843 msgid "Authentication (two-phase)" msgstr "Uwierzytelnienie (dwuetapowe)" #: main.c:844 msgid "Use authentication cookie COOKIE" msgstr "Używa CIASTECZKA uwierzytelnienia" #: main.c:845 msgid "Read cookie from standard input" msgstr "Odczytuje ciasteczko ze standardowego wejścia" #: main.c:846 msgid "Authenticate only and print login info" msgstr "Tylko uwierzytelnia i wyświetla informacje logowania" #: main.c:847 msgid "Fetch and print cookie only; don't connect" msgstr "Tylko pobiera i wyświetla ciasteczko. Bez łączenia" #: main.c:848 msgid "Print cookie before connecting" msgstr "Wyświetla ciasteczko przed łączeniem" #: main.c:851 msgid "Process control" msgstr "Sterowanie procesem" #: main.c:852 msgid "Continue in background after startup" msgstr "Kontynuuje w tle po uruchomieniu" #: main.c:853 msgid "Write the daemon's PID to this file" msgstr "Zapisuje PID usługi do tego pliku" #: main.c:854 msgid "Drop privileges after connecting" msgstr "Traci uprawnienia po połączeniu" #: main.c:857 msgid "Logging (two-phase)" msgstr "Logowanie (dwuetapowe)" #: main.c:859 msgid "Use syslog for progress messages" msgstr "Używa syslog do komunikatów postępu" #: main.c:861 msgid "More output" msgstr "Więcej komunikatów" #: main.c:862 msgid "Less output" msgstr "Mniej komunikatów" #: main.c:863 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "Zrzuca ruch uwierzytelnienia HTTP (zakłada --verbose)" #: main.c:864 msgid "Prepend timestamp to progress messages" msgstr "Poprzedza komunikaty postępu czasem" #: main.c:866 msgid "VPN configuration script" msgstr "Skrypt konfiguracji VPN" #: main.c:867 msgid "Use IFNAME for tunnel interface" msgstr "Używa NAZWY-INTERFEJSU jako interfejs tunelu" #: main.c:868 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" "Wiersz poleceń powłoki do używania skryptu konfiguracji zgodnego z vpnc" #: main.c:869 msgid "default" msgstr "domyślne" #: main.c:871 msgid "Pass traffic to 'script' program, not tun" msgstr "Przekazuje ruch do programu „script”, nie tun" #: main.c:874 msgid "Tunnel control" msgstr "Sterowanie tunelem" #: main.c:875 msgid "Do not ask for IPv6 connectivity" msgstr "Bez pytania o łączność IPv6" #: main.c:876 msgid "XML config file" msgstr "Plik konfiguracji XML" #: main.c:877 msgid "Request MTU from server (legacy servers only)" msgstr "Żąda MTU z serwera (tylko przestarzałe serwery)" #: main.c:878 msgid "Indicate path MTU to/from server" msgstr "Wskazuje ścieżkę MTU do/z serwera" #: main.c:879 msgid "Enable stateful compression (default is stateless only)" msgstr "Włącza stanową kompresję (domyślnie jest tylko bezstanowa)" #: main.c:880 msgid "Disable all compression" msgstr "Wyłącza całą kompresję" #: main.c:881 msgid "Set minimum Dead Peer Detection interval" msgstr "Ustawia minimalny czas między wykrywaniem martwych partnerów" #: main.c:882 msgid "Require perfect forward secrecy" msgstr "Wymaga PFS (Perfect Forward Secrecy)" #: main.c:883 msgid "Disable DTLS and ESP" msgstr "Wyłącza DTLS i ESP" #: main.c:884 msgid "OpenSSL ciphers to support for DTLS" msgstr "Obsługiwane szyfry biblioteki OpenSSL dla DTLS" #: main.c:885 msgid "Set packet queue limit to LEN pkts" msgstr "Ustawia ograniczenie kolejki pakietów na LEN pkts" #: main.c:887 msgid "Local system information" msgstr "Informacje o lokalnym systemie" #: main.c:888 msgid "HTTP header User-Agent: field" msgstr "Pole nagłówka „User-Agent:” HTTP" #: main.c:889 msgid "Local hostname to advertise to server" msgstr "Lokalna nazwa komputera do zgłaszania serwerowi" #: main.c:890 msgid "OS type (linux,linux-64,win,...) to report" msgstr "Typ zgłaszanego systemu operacyjnego (linux,linux-64,win…)" #: main.c:891 msgid "reported version string during authentication" msgstr "zgłaszany ciąg wersji podczas uwierzytelniania" #: main.c:892 msgid "default:" msgstr "domyślnie:" #: main.c:895 msgid "Trojan binary (CSD) execution" msgstr "Wykonywanie pliku binarnego konia trojańskiego (CSD)" #: main.c:896 msgid "Drop privileges during trojan execution" msgstr "Traci uprawnienia podczas wykonywania konia trojańskiego" #: main.c:897 msgid "Run SCRIPT instead of trojan binary" msgstr "Wykonuje SKRYPT zamiast pliku binarnego konia trojańskiego" #: main.c:900 msgid "Server bugs" msgstr "Błędy serwera" #: main.c:901 msgid "Disable HTTP connection re-use" msgstr "Wyłącza ponowne używanie połączenia HTTP" #: main.c:902 msgid "Do not attempt XML POST authentication" msgstr "Bez próbowania uwierzytelnienia „POST” XML" #: main.c:924 #, c-format msgid "Failed to allocate string\n" msgstr "Przydzielenie ciągu się nie powiodło\n" #: main.c:997 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Uzyskanie wiersza z pliku konfiguracji się nie powiodło: %s\n" #: main.c:1037 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Nierozpoznana opcja w wierszu %d: „%s”\n" #: main.c:1047 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Opcja „%s” nie przyjmuje parametru w wierszu %d\n" #: main.c:1051 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Opcja „%s” wymaga parametru w wierszu %d\n" #: main.c:1076 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "Nieprawidłowy użytkownik „%s”: %s\n" #: main.c:1086 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "Nieprawidłowy identyfikator użytkownika „%d”: %s\n" #: main.c:1130 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "OSTRZEŻENIE: nie można ustawić lokalizacji: %s\n" #: main.c:1140 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "OSTRZEŻENIE: ta wersja OpenConnect została zbudowana bez obsługi iconv,\n" " a używany jest przestarzały zestaw znaków „%s”.\n" " Program może się dziwnie zachowywać.\n" #: main.c:1147 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "OSTRZEŻENIE: ta wersja OpenConnect to %s, ale\n" " biblioteki libopenconnect to %s\n" #: main.c:1157 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Przydzielenie struktury vpninfo się nie powiodło\n" #: main.c:1215 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Nie można użyć opcji „config” wewnątrz pliku konfiguracji\n" #: main.c:1223 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Nie można otworzyć pliku konfiguracji „%s”: %s\n" #: main.c:1239 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "Nieprawidłowy tryb kompresji \"%s\"\n" #: main.c:1260 #, c-format msgid "Missing colon in resolve option\n" msgstr "Brak dwukropka w opcji „resolve”\n" #: main.c:1265 #, c-format msgid "Failed to allocate memory\n" msgstr "Przydzielenie pamięci się nie powiodło\n" #: main.c:1349 main.c:1358 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d jest za małe\n" #: main.c:1388 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Wyłączanie wszystkich ponownych użyć połączeń HTTP z powodu opcji --no-http-" "keepalive.\n" "Jeśli to pomoże, to prosimy to zgłosić na adres (w języku angielskim).\n" #: main.c:1394 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" "Opcja --no-cert-check była niebezpieczna i została usunięta.\n" "Należy naprawić certyfikat serwera lub użyć opcji --servercert, aby mu " "zaufać.\n" #: main.c:1411 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Zerowa długość kolejki jest niedozwolona. Używanie 1\n" #: main.c:1425 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect wersja %s\n" #: main.c:1463 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Nieprawidłowy tryb tokena programowego „%s”\n" #: main.c:1473 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "Nieprawidłowa tożsamość systemu operacyjnego „%s”\n" #: main.c:1506 #, c-format msgid "Too many arguments on command line\n" msgstr "Za dużo parametrów w wierszu poleceń\n" #: main.c:1509 #, c-format msgid "No server specified\n" msgstr "Nie podano serwera\n" #: main.c:1525 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" "Ta wersja OpenConnect została zbudowana bez obsługi biblioteki libproxy\n" #: main.c:1555 #, c-format msgid "Error opening cmd pipe\n" msgstr "Błąd podczas otwierania potoku cmd\n" #: main.c:1588 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "Uzyskanie ciasteczka WebVPN się nie powiodło\n" #: main.c:1609 #, c-format msgid "Creating SSL connection failed\n" msgstr "Utworzenie połączenia SSL się nie powiodło\n" #: main.c:1625 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "Ustawienie UDP się nie powiodło. Używanie SSL zamiast tego\n" #: main.c:1633 #, c-format msgid "Connected as %s%s%s, using SSL%s%s, with %s%s%s %s\n" msgstr "Połączono jako %s%s%s, za pomocą SSL%s%s, z %s%s%s %s\n" #: main.c:1639 msgid "disabled" msgstr "wyłączone" #: main.c:1639 msgid "in progress" msgstr "w trakcie" #: main.c:1643 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "Nie podano parametru --script. DNS i trasowanie nie są skonfigurowane\n" #: main.c:1645 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "" "Proszę zobaczyć http://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:1658 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Otwarcie „%s” do zapisu się nie powiodło: %s\n" #: main.c:1670 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Kontynuowanie w tle. PID %d\n" #: main.c:1687 msgid "User requested reconnect\n" msgstr "Użytkownik zażądał ponownego połączenia\n" #: main.c:1695 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "" "Ciasteczko zostało odrzucone podczas łączenia ponownie. Kończenie " "działania.\n" #: main.c:1699 msgid "Session terminated by server; exiting.\n" msgstr "Sesja została zakończona przez serwer. Kończenie działania.\n" #: main.c:1703 msgid "User cancelled (SIGINT/SIGTERM); exiting.\n" msgstr "Anulowane przez użytkownika (SIGINT/SIGTERM). Kończenie działania.\n" #: main.c:1707 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "Użytkownik odłączył od sesji (SIGHUP). Kończenie działania.\n" #: main.c:1711 msgid "Unknown error; exiting.\n" msgstr "Nieznany błąd; kończenie działania.\n" #: main.c:1730 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Otwarcie %s do zapisu się nie powiodło: %s\n" #: main.c:1738 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Zapisanie konfiguracji do %s się nie powiodło: %s\n" #: main.c:1797 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "Certyfikat SSL serwera się nie zgadza: %s\n" #: main.c:1816 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Sprawdzenie poprawność certyfikatu z serwera VPN „%s” się nie powiodło.\n" "Przyczyna: %s\n" #: main.c:1819 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" "Aby zaufać temu serwerowi w przyszłości, można dodać to do wiersza poleceń:\n" #: main.c:1820 #, c-format msgid " --servercert %s\n" msgstr " --servercert %s\n" #: main.c:1825 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Wpisanie \"%s\" zaakceptuje, \"%s\" przerwie, inne wartości spowodują " "wyświetlenie: " #: main.c:1826 main.c:1844 msgid "no" msgstr "nie" #: main.c:1826 main.c:1832 msgid "yes" msgstr "tak" #: main.c:1853 #, c-format msgid "Server key hash: %s\n" msgstr "Suma kontrolna klucza serwera: %s\n" #: main.c:1887 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Wybór uwierzytelnienia „%s” pasuje do wielu opcji\n" #: main.c:1890 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Wybór uwierzytelnienia „%s” jest niedostępny\n" #: main.c:1911 msgid "User input required in non-interactive mode\n" msgstr "Wymagane jest działanie użytkownika w trybie nieinteraktywnym\n" #: main.c:2149 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Otwarcie pliku token do zapisu się nie powiodło: %s\n" #: main.c:2157 #, c-format msgid "Failed to write token: %s\n" msgstr "Zapisanie tokenu się nie powiodło: %s\n" #: main.c:2203 main.c:2224 #, c-format msgid "Soft token string is invalid\n" msgstr "Ciąg tokena programowego jest nieprawidłowy\n" #: main.c:2206 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Nie można otworzyć pliku ~/.stokenrc\n" #: main.c:2209 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "OpenConnect zostało zbudowane bez obsługi biblioteki libstoken\n" #: main.c:2212 #, c-format msgid "General failure in libstoken\n" msgstr "Ogólne niepowodzenie w bibliotece libstoken\n" #: main.c:2227 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "OpenConnect zostało zbudowane bez obsługi biblioteki liboath\n" #: main.c:2230 #, c-format msgid "General failure in liboath\n" msgstr "Ogólne niepowodzenie w bibliotece liboath\n" #: main.c:2241 #, c-format msgid "Yubikey token not found\n" msgstr "Nie odnaleziono tokena Yubikey\n" #: main.c:2244 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "OpenConnect zostało zbudowane bez obsługi Yubikey\n" #: main.c:2247 #, c-format msgid "General Yubikey failure: %s\n" msgstr "Ogólne niepowodzenie Yubikey: %s\n" #: mainloop.c:127 #, c-format msgid "Set up tun script failed\n" msgstr "Ustawienie skryptu tun się nie powiodło\n" #: mainloop.c:134 #, c-format msgid "Set up tun device failed\n" msgstr "Ustawienie urządzenia tun się nie powiodło\n" #: mainloop.c:265 msgid "Caller paused the connection\n" msgstr "Wywołujący wstrzymał połączenie\n" #: mainloop.c:273 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Nie ma nic do zrobienia. Usypianie na %d ms…\n" #: mainloop.c:294 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "WaitForMultipleObjects się nie powiodło: %s\n" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "InitializeSecurityContext() się nie powiodło: %lx\n" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "AcquireCredentialsHandle() się nie powiodło: %lx\n" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "Błąd podczas komunikowania się z ntlm_auth helper\n" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" "Próbowanie uwierzytelnienia „NTLM” HTTP do pośrednika („single-sign-on”)\n" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" "Próbowanie uwierzytelnienia „NTLM” HTTP do serwera „%s” („single-sign-on”)\n" #: ntlm.c:978 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "Próbowanie uwierzytelnienia „NTLMv%d” HTTP do pośrednika\n" #: ntlm.c:982 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "Próbowanie uwierzytelnienia „NTLMv%d” HTTP do serwera „%s”\n" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "Nieprawidłowy ciąg tokena base32\n" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "Przydzielenie pamięci do dekodowania hasła OATH się nie powiodło\n" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "Ta wersja OpenConnect została zbudowana bez obsługi PSKC\n" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "Można utworzyć kod tokena „INITIAL”\n" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "Można utworzyć kod tokena „NEXT”\n" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "Serwer odrzuca token programowy. Przełączanie na wprowadzanie ręczne\n" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "Tworzenie kodu tokena „TOTP” OATH\n" #: oath.c:565 msgid "Generating OATH HOTP token code\n" msgstr "Tworzenie kodu tokena „HOTP” OATH\n" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "Nieprawidłowe ciasteczko \"%s\"\n" #: oncp.c:160 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "Nieoczekiwana długość %d dla TLV %d/%d\n" #: oncp.c:166 pulse.c:402 #, c-format msgid "Received MTU %d from server\n" msgstr "Otrzymano MTU %d z serwera\n" #: oncp.c:175 pulse.c:285 pulse.c:343 #, c-format msgid "Received DNS server %s\n" msgstr "Otrzymano serwer DNS %s\n" #: oncp.c:186 pulse.c:411 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "Otrzymano domenę wyszukiwania DNS %.*s\n" #: oncp.c:201 #, c-format msgid "Received internal IP address %s\n" msgstr "Otrzymano wewnętrzny adres IP %s\n" #: oncp.c:210 pulse.c:276 #, c-format msgid "Received netmask %s\n" msgstr "Otrzymano maskę sieci %s\n" #: oncp.c:219 pulse.c:426 #, c-format msgid "Received internal gateway address %s\n" msgstr "Otrzymano wewnętrzny adres bramy %s\n" #: oncp.c:232 pulse.c:2001 #, c-format msgid "Received split include route %s\n" msgstr "Otrzymano trasę dołączania „split” %s\n" #: oncp.c:254 pulse.c:2014 #, c-format msgid "Received split exclude route %s\n" msgstr "Otrzymano trasę wykluczania „split” %s\n" #: oncp.c:274 pulse.c:300 #, c-format msgid "Received WINS server %s\n" msgstr "Otrzymano serwer WINS %s\n" #: oncp.c:297 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "Szyfrowanie ESP: 0x%02x (%s)\n" #: oncp.c:316 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "HMAC ESP: 0x%02x (%s)\n" #: oncp.c:327 #, c-format msgid "ESP compression: %d\n" msgstr "Kompresja ESP: %d\n" #: oncp.c:335 pulse.c:506 #, c-format msgid "ESP port: %d\n" msgstr "Port ESP: %d\n" #: oncp.c:342 pulse.c:489 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "Czas życia klucza ESP: %u bajtów\n" #: oncp.c:350 pulse.c:481 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "Czas życia klucza ESP: %u sekund\n" #: oncp.c:358 pulse.c:513 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "Przechodzenie z ESP do SSL: %u sekund\n" #: oncp.c:366 pulse.c:497 #, c-format msgid "ESP replay protection: %d\n" msgstr "Ochrona powtarzania ESP: %d\n" #: oncp.c:374 pulse.c:529 pulse.c:2115 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "„SPI” ESP (wychodzące): %x\n" #: oncp.c:383 pulse.c:538 pulse.c:2103 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "%d bajtów haseł ESP\n" #: oncp.c:395 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "Nieznana grupa TLV %d attr %d len %d:%s\n" #: oncp.c:473 msgid "Failed to parse KMP header\n" msgstr "Przetworzenie nagłówka KMP się nie powiodło\n" #: oncp.c:490 msgid "Failed to parse KMP message\n" msgstr "Przetworzenie komunikatu KMP się nie powiodło\n" #: oncp.c:496 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "Otrzymano komunikat KMP %d o rozmiarze %d\n" #: oncp.c:512 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "Otrzymano TLV niebędące ESP (grupa %d) w KMP negocjacji ESP\n" #: oncp.c:577 oncp.c:609 oncp.c:747 msgid "Error creating oNCP negotiation request\n" msgstr "Błąd podczas tworzenia żądania negocjacji oNCP\n" #: oncp.c:618 oncp.c:783 msgid "Short write in oNCP negotiation\n" msgstr "Krótki zapis w negocjacji oNCP\n" #: oncp.c:631 oncp.c:666 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "Odczyt %d bajtów wpisu SSL\n" #: oncp.c:636 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "Oczekiwano odpowiedzi o rozmiarze %d po pakiecie nazwy komputera\n" #: oncp.c:643 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "Odpowiedź serwera na pakiet nazwy komputera to błąd 0x%02x\n" #: oncp.c:670 msgid "Invalid packet waiting for KMP 301\n" msgstr "Nieprawidłowy pakiet oczekujący na KMP 301\n" #: oncp.c:683 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "Oczekiwano komunikatu „301” KMP z serwera, ale otrzymano %d\n" #: oncp.c:692 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "Komunikat „301” KMP z serwera jest za duży (%d bajtów)\n" #: oncp.c:698 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "Otrzymano komunikat „301” KMP o długości %d\n" #: oncp.c:705 msgid "Failed to read continuation record length\n" msgstr "Odczytanie długości wpisu kontynuacji się nie powiodło\n" #: oncp.c:711 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "Wpis jest za dużo o dodatkowe %d bajtów. Byłby %d\n" #: oncp.c:720 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "Odczytanie wpisu kontynuacji o długości %d się nie powiodło\n" #: oncp.c:726 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "Odczyt dodatkowych %d bajtów komunikatu „301” KMP\n" #: oncp.c:767 msgid "Error negotiating ESP keys\n" msgstr "Błąd podczas negocjowania kluczy ESP\n" #: oncp.c:776 msgid "oNCP negotiation request outgoing:\n" msgstr "Wychodzące żądanie negocjacji oNCP:\n" #: oncp.c:829 pulse.c:2372 msgid "new incoming" msgstr "nowe przychodzące" #: oncp.c:830 pulse.c:2373 msgid "new outgoing" msgstr "nowe wychodzące" #: oncp.c:855 msgid "Read only 1 byte of oNCP length field\n" msgstr "Odczyt tylko 1 bajtu pola długości oNCP\n" #: oncp.c:864 msgid "Server terminated connection (session expired)\n" msgstr "Serwer zakończył połączenie (sesja wygasła)\n" #: oncp.c:868 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "Serwer zakończył połączenie (przyczyna: %d)\n" #: oncp.c:874 msgid "Server sent zero-length oNCP record\n" msgstr "Serwer wysłał wpis oNCP o zerowej długości\n" #: oncp.c:969 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "Przychodzący komunikat KMP %d o rozmiarze %d (otrzymano %d)\n" #: oncp.c:972 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" "Kontynuowanie przetwarzania komunikatu KMP %d o obecnym rozmiarze %d " "(otrzymano %d)\n" #: oncp.c:991 msgid "Unrecognised data packet\n" msgstr "Nierozpoznany pakiet danych\n" #: oncp.c:1053 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "Nieznany komunikat KMP %d o rozmiarze %d:\n" #: oncp.c:1058 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "… + %d więcej bajtów nie zostało otrzymanych\n" #: oncp.c:1073 pulse.c:2404 msgid "Packet outgoing:\n" msgstr "Wychodzący pakiet:\n" #: oncp.c:1135 msgid "Sent ESP enable control packet\n" msgstr "Wysłano pakiet kontroli włączenia ESP\n" #: oncp.c:1269 msgid "Logout successful.\n" msgstr "Pomyślnie wylogowano.\n" #: openconnect-internal.h:1164 openconnect-internal.h:1172 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" "BŁĄD: %s() zostało wywołane za pomocą nieprawidłowego UTF-8 dla parametru " "„%s”\n" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "Nie można obliczyć narzutu DTLS dla %s\n" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "Utworzenie losowego klucza się nie powiodło\n" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" "Utworzenie „SSL_SESSION ASN.1” dla biblioteki OpenSSL się nie powiodło: %s\n" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" "Przetworzenie „SSL_SESSION ASN.1” przez bibliotekę OpenSSL się nie powiodło\n" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "Zainicjowanie sesji DTLSv1 się nie powiodło\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "Za duży rozmiar identyfikatora programu\n" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "Wywołanie zwrotne PSK\n" #: openssl-dtls.c:366 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Zainicjowanie sesji „CTX” DTLSv1 się nie powiodło\n" #: openssl-dtls.c:376 msgid "Set DTLS CTX version failed\n" msgstr "Ustawienie wersji „CTX” DTLS się nie powiodło\n" #: openssl-dtls.c:398 msgid "Failed to generate DTLS key\n" msgstr "Utworzenie klucza DTLS się nie powiodło\n" #: openssl-dtls.c:453 msgid "Set DTLS cipher list failed\n" msgstr "Ustawienie listy szyfrów DTLS się nie powiodło\n" #: openssl-dtls.c:479 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "Nie odnaleziono szyfru DTLS „%s”\n" #: openssl-dtls.c:500 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "SSL_set_session() się nie powiodło za pomocą starej wersji protokołu 0x%x\n" "Czy używana jest wersja biblioteki OpenSSL starsza niż 0.9.8m?\n" "Więcej informacji na http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Należy użyć opcji wiersza poleceń „--no-dtls”, aby uniknąć tego komunikatu\n" #: openssl-dtls.c:533 msgid "SSL_set_session() failed\n" msgstr "SSL_set_session() się nie powiodło\n" #: openssl-dtls.c:606 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "" "Nawiązano połączenie DTLS (używając biblioteki OpenSSL). Zestaw szyfrów %s.\n" #: openssl-dtls.c:643 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" "Biblioteka OpenSSL jest starsza niż ta, z którą zbudowano, więc DTLS może " "się nie powieść." #: openssl-dtls.c:694 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Prawdopodobnie biblioteka OpenSSL jest uszkodzona\n" "Więcej informacji na http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: openssl-dtls.c:701 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "Powitanie DTLS się nie powiodło: %d\n" #: openssl-esp.c:86 msgid "Failed to initialise ESP cipher:\n" msgstr "Zainicjowanie szyfru ESP się nie powiodło:\n" #: openssl-esp.c:100 msgid "Failed to initialize ESP HMAC\n" msgstr "Zainicjowanie „HMAC” ESP się nie powiodło\n" #: openssl-esp.c:176 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" "Ustawienie kontekstu odszyfrowywania dla pakietu ESP się nie powiodło:\n" #: openssl-esp.c:184 msgid "Failed to decrypt ESP packet:\n" msgstr "Odszyfrowanie pakietu ESP się nie powiodło:\n" #: openssl-esp.c:200 msgid "Failed to encrypt ESP packet:\n" msgstr "Zaszyfrowanie pakietu ESP się nie powiodło:\n" #: openssl-pkcs11.c:43 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "Ustanowienie kontekstu PKCS#11 biblioteki libp11 się nie powiodło:\n" #: openssl-pkcs11.c:49 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "Wczytanie modułu dostarczającego PKCS#11 (%s) się nie powiodło:\n" #: openssl-pkcs11.c:269 msgid "PIN locked\n" msgstr "Zablokowany kod PIN\n" #: openssl-pkcs11.c:272 msgid "PIN expired\n" msgstr "Kod PIN wygasł\n" #: openssl-pkcs11.c:275 msgid "Another user already logged in\n" msgstr "Inny użytkownik jest już zalogowany\n" #: openssl-pkcs11.c:279 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "Nieznany błąd podczas logowania do tokena PKCS#11\n" #: openssl-pkcs11.c:286 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "Zalogowano do gniazda PKCS#11 „%s”\n" #: openssl-pkcs11.c:300 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "Wyliczenie certyfikatów w gnieździe PKCS#11 „%s” się nie powiodło\n" #: openssl-pkcs11.c:306 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "Odnaleziono %d certyfikatów w gnieździe „%s”\n" #: openssl-pkcs11.c:342 openssl-pkcs11.c:565 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "Przetworzenie adresu URI „%s” PKCS#11 się nie powiodło\n" #: openssl-pkcs11.c:349 openssl-pkcs11.c:575 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "Wyliczenie gniazd PKCS#11 się nie powiodło\n" #: openssl-pkcs11.c:383 openssl-pkcs11.c:617 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "Logowanie do gniazda PKCS#11 „%s”\n" #: openssl-pkcs11.c:393 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "Odnalezienie certyfikatu PKCS#11 „%s” się nie powiodło\n" #: openssl-pkcs11.c:401 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "Biblioteka libp11 nie pobrała treści certyfikatu X.509\n" #: openssl-pkcs11.c:412 openssl.c:713 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" "Zainstalowanie certyfikatu w kontekście biblioteki OpenSSL się nie powiodło\n" #: openssl-pkcs11.c:458 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "Wyliczenie kluczy w gnieździe PKCS#11 „%s” się nie powiodło\n" #: openssl-pkcs11.c:464 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "Odnaleziono %d kluczy w gnieździe PKCS#11 „%s”\n" #: openssl-pkcs11.c:497 msgid "Certificate has no public key\n" msgstr "Certyfikat nie ma klucza publicznego\n" #: openssl-pkcs11.c:503 openssl-pkcs11.c:526 msgid "Certificate does not match private key\n" msgstr "Certyfikat nie pasuje do klucza prywatnego\n" #: openssl-pkcs11.c:506 msgid "Checking EC key matches cert\n" msgstr "Sprawdzanie, czy klucz EC pasuje do certyfikatu\n" #: openssl-pkcs11.c:510 msgid "Failed to allocate signature buffer\n" msgstr "Przydzielenie bufora podpisu się nie powiodło\n" #: openssl-pkcs11.c:520 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" "Podpisanie pustych danych, aby sprawdzić poprawność klucza EC, się nie " "powiodło\n" #: openssl-pkcs11.c:638 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "Odnalezienie klucza PKCS#11 „%s” się nie powiodło\n" #: openssl-pkcs11.c:649 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "Wystąpienie klucza prywatnego z PKCS#11 się nie powiodło\n" #: openssl-pkcs11.c:678 msgid "Add key from PKCS#11 failed\n" msgstr "Dodanie klucza z PKCS#11 się nie powiodło\n" #: openssl-pkcs11.c:710 openssl-pkcs11.c:716 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "Ta wersja OpenConnect została zbudowana bez obsługi PKCS#11\n" #: openssl.c:147 msgid "Failed to write to SSL socket\n" msgstr "Zapisanie do gniazda SSL się nie powiodło\n" #: openssl.c:197 openssl.c:263 msgid "Failed to read from SSL socket\n" msgstr "Odczytanie z gniazda SSL się nie powiodło\n" #: openssl.c:292 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" "Błąd odczytu SSL %d (serwer prawdopodobnie zamknął połączenie). Łączenie " "ponownie.\n" #: openssl.c:317 #, c-format msgid "SSL_write failed: %d\n" msgstr "SSL_write się nie powiodło: %d\n" #: openssl.c:389 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "Nieobsłużony typ żądania interfejsu użytkownika SSL %d\n" #: openssl.c:465 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "Hasło PEM jest za długie (%d >= %d)\n" #: openssl.c:498 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Dodatkowy certyfikat z %s: „%s”\n" #: openssl.c:548 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Przetworzenie PKCS#12 się nie powiodło (błędy powyżej)\n" #: openssl.c:563 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS#12 nie zawiera żadnego certyfikatu\n" #: openssl.c:572 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS#12 nie zawiera żadnego klucza prywatnego\n" #: openssl.c:577 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:600 msgid "Can't load TPM engine.\n" msgstr "Nie można wczytać mechanizmu TPM.\n" #: openssl.c:606 msgid "Failed to init TPM engine\n" msgstr "Zainicjowanie mechanizmu TPM się nie powiodło\n" #: openssl.c:616 msgid "Failed to set TPM SRK password\n" msgstr "Ustawienie hasła „SRK” TPM się nie powiodło\n" #: openssl.c:630 msgid "Failed to load TPM private key\n" msgstr "Wczytanie klucza prywatnego TPM się nie powiodło\n" #: openssl.c:636 msgid "Add key from TPM failed\n" msgstr "Dodanie klucza z TPM się nie powiodło\n" #: openssl.c:687 openssl.c:835 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Otwarcie pliku certyfikatu %s się nie powiodło: %s\n" #: openssl.c:697 msgid "Loading certificate failed\n" msgstr "Wczytanie certyfikatu się nie powiodło\n" #: openssl.c:735 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" "Przetworzenie wszystkich obsługiwanych certyfikatów się nie powiodło. " "Próbowanie mimo to…\n" #: openssl.c:748 msgid "PEM file" msgstr "Plik PEM" #: openssl.c:777 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Utworzenie „BIO” dla elementu bazy kluczy „%s” się nie powiodło\n" #: openssl.c:802 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Wczytanie klucza prywatnego się nie powiodło (błędne hasło?)\n" #: openssl.c:808 msgid "Loading private key failed (see above errors)\n" msgstr "Wczytanie klucza prywatnego się nie powiodło (błędy powyżej)\n" #: openssl.c:858 msgid "Failed to load X509 certificate from keystore\n" msgstr "Wczytanie certyfikatu X.509 z bazy kluczy się nie powiodło\n" #: openssl.c:864 msgid "Failed to use X509 certificate from keystore\n" msgstr "Użycie certyfikatu X.509 z bazy kluczy się nie powiodło\n" #: openssl.c:896 msgid "Failed to use private key from keystore\n" msgstr "Użycie klucza prywatnego z bazy kluczy się nie powiodło\n" #: openssl.c:912 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Otwarcie pliku klucza prywatnego %s się nie powiodło: %s\n" #: openssl.c:936 openssl.c:951 openssl.c:972 openssl.c:1038 msgid "Loading private key failed\n" msgstr "Wczytanie klucza prywatnego się nie powiodło\n" #: openssl.c:1032 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "Konwertowanie PKCS#8 na EVP_PKEY biblioteki OpenSSL się nie powiodło\n" #: openssl.c:1049 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Zidentyfikowanie typu klucza prywatnego w „%s” się nie powiodło\n" #: openssl.c:1203 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Pasujące „altname” DNS „%s”\n" #: openssl.c:1210 #, c-format msgid "No match for altname '%s'\n" msgstr "Nic nie pasuje do „altname” „%s”\n" #: openssl.c:1224 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "Certyfikat posiada „altname” GEN_IPADD z fałszywą długością %d\n" #: openssl.c:1235 openssl.c:1381 #, c-format msgid "Matched %s address '%s'\n" msgstr "Pasujący adres %s „%s”\n" #: openssl.c:1242 #, c-format msgid "No match for %s address '%s'\n" msgstr "Nic nie pasuje do adresu %s „%s”\n" #: openssl.c:1284 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "Adres URI „%s” posiada niepustą ścieżkę. Ignorowanie\n" #: openssl.c:1289 #, c-format msgid "Matched URI '%s'\n" msgstr "Pasujący adres URI „%s”\n" #: openssl.c:1300 #, c-format msgid "No match for URI '%s'\n" msgstr "Nic nie pasuje do adresu URI „%s”\n" #: openssl.c:1315 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "Żadne „altname” w certyfikacie partnera nie pasuje do „%s”\n" #: openssl.c:1323 msgid "No subject name in peer cert!\n" msgstr "Brak nazwy tematu w certyfikacie partnera\n" #: openssl.c:1343 msgid "Failed to parse subject name in peer cert\n" msgstr "Przetworzenie nazwy tematu w certyfikacie partnera się nie powiodło\n" #: openssl.c:1350 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Niedopasowanie tematu certyfikatu partnera („%s” != „%s”)\n" #: openssl.c:1355 openssl.c:1389 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Pasująca nazwa tematu certyfikatu partnera „%s”\n" #: openssl.c:1451 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Dodatkowy certyfikat z pliku CA: „%s”\n" #: openssl.c:1589 msgid "Error in client cert notAfter field\n" msgstr "Błąd w polu „notAfter” certyfikatu klienta\n" #: openssl.c:1602 msgid "" msgstr "" #: openssl.c:1655 msgid "Create TLSv1 CTX failed\n" msgstr "Utworzenie „CTX” TLSv1 się nie powiodło\n" #: openssl.c:1674 msgid "SSL certificate and key do not match\n" msgstr "Certyfikat SSL i klucz nie pasują\n" #: openssl.c:1719 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Odczytanie certyfikatów z pliku CA „%s” się nie powiodło\n" #: openssl.c:1752 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Otwarcie pliku CA „%s” się nie powiodło\n" #: openssl.c:1812 msgid "SSL connection failure\n" msgstr "Niepowodzenie połączenia SSL\n" #: openssl.c:1975 msgid "Failed to calculate OATH HMAC\n" msgstr "Obliczenie „HMAC” OATH się nie powiodło\n" #: openssl.c:2078 #, c-format msgid "EAP-TTLS negotiation with %s\n" msgstr "Negocjacja EAP-TTLS z %s\n" #: openssl.c:2089 #, c-format msgid "EAP-TTLS connection failure %d\n" msgstr "Niepowodzenie połączenia EAP-TTLS: %d\n" #: pulse.c:267 #, c-format msgid "Received internal Legacy IP address %s\n" msgstr "Otrzymano wewnętrzny przestarzały adres IP %s\n" #: pulse.c:315 pulse.c:332 pulse.c:351 pulse.c:374 msgid "Failed to handle IPv6 address\n" msgstr "Obsłużenie adresu IPv6 się nie powiodło\n" #: pulse.c:324 #, c-format msgid "Received internal IPv6 address %s\n" msgstr "Otrzymano wewnętrzny adres IPv6 %s\n" #: pulse.c:366 #, c-format msgid "Received IPv6 split include %s\n" msgstr "Otrzymano dołączenie „split” IPv6 %s\n" #: pulse.c:389 #, c-format msgid "Received IPv6 split exclude %s\n" msgstr "Otrzymano wykluczenie „split” IPv6 %s\n" #: pulse.c:396 #, c-format msgid "Unexpected length %d for attr 0x%x\n" msgstr "Nieoczekiwana długość %d dla atrybutu 0x%x\n" #: pulse.c:447 #, c-format msgid "ESP encryption: 0x%04x (%s)\n" msgstr "Szyfrowanie ESP: 0x%04x (%s)\n" #: pulse.c:471 #, c-format msgid "ESP HMAC: 0x%04x (%s)\n" msgstr "HMAC ESP: 0x%04x (%s)\n" #. Amusingly, this isn't enforced. It's client-only #: pulse.c:521 #, c-format msgid "ESP only: %d\n" msgstr "Tylko ESP: %d\n" #: pulse.c:563 #, c-format msgid "Unknown attr 0x%x len %d:%s\n" msgstr "Nieznany atrybut 0x%x len %d:%s\n" #: pulse.c:574 #, c-format msgid "Read %d bytes of IF-T/TLS record\n" msgstr "Odczyt %d B wpisu IF-T/TLS\n" #: pulse.c:591 msgid "Short write to IF-T/TLS\n" msgstr "Krótki zapis do IF-T/TLS\n" #: pulse.c:604 msgid "Error creating IF-T packet\n" msgstr "Błąd podczas tworzenia pakietu IF-T\n" #: pulse.c:624 msgid "Error creating EAP packet\n" msgstr "Błąd podczas tworzenia pakietu EAP\n" #: pulse.c:659 pulse.c:1358 pulse.c:1421 msgid "Unexpected IF-T/TLS authentication challenge:\n" msgstr "Nieoczekiwane wyzwanie uwierzytelnienia IF-T/TLS:\n" #: pulse.c:677 msgid "Unexpected EAP-TTLS payload:\n" msgstr "Nieoczekiwany ładunek EAP-TTLS:\n" #: pulse.c:710 #, c-format msgid "AVP 0x%x/0x%x:%s\n" msgstr "AVP 0x%x/0x%x:%s\n" #: pulse.c:712 #, c-format msgid "AVP %d:%s\n" msgstr "AVP %d:%s\n" #: pulse.c:779 msgid "Enter Pulse user realm:" msgstr "Proszę podać obszar użytkownika Pulse:" #: pulse.c:784 pulse.c:827 msgid "Realm:" msgstr "Obszar:" #: pulse.c:822 msgid "Choose Pulse user realm:" msgstr "Proszę wybrać obszar użytkownika Pulse:" #: pulse.c:838 pulse.c:1487 pulse.c:1556 msgid "Failed to parse AVP\n" msgstr "Przetworzenie AVP się nie powiodło\n" #: pulse.c:905 msgid "Session limit reached. Choose session to kill:\n" msgstr "Osiągnięto ograniczenie sesji. Proszę wybrać sesję do zakończenia:\n" #: pulse.c:910 msgid "Session:" msgstr "Sesja:" #: pulse.c:926 msgid "Failed to parse session list\n" msgstr "Przetworzenie listy sesji się nie powiodło\n" #: pulse.c:1012 msgid "Enter secondary credentials:" msgstr "Proszę podać drugorzędne dane uwierzytelniania:" #. Point to password prompt in case that's all we use #: pulse.c:1012 msgid "Enter user credentials:" msgstr "Proszę podać dane uwierzytelniania użytkownika:" #: pulse.c:1022 pulse.c:1115 msgid "Secondary username:" msgstr "Drugorzędna nazwa użytkownika:" #: pulse.c:1022 pulse.c:1115 msgid "Username:" msgstr "Nazwa użytkownika:" #: pulse.c:1032 stoken.c:89 msgid "Password:" msgstr "Hasło:" #: pulse.c:1032 msgid "Secondary password:" msgstr "Drugorzędne hasło:" #: pulse.c:1105 msgid "Token code request:" msgstr "Żądanie kodu tokena:" #: pulse.c:1129 msgid "Please enter response:" msgstr "Proszę podać odpowiedź:" #: pulse.c:1133 msgid "Please enter your passcode:" msgstr "Proszę podać kod hasła:" #: pulse.c:1135 msgid "Please enter your secondary token information:" msgstr "Proszę podać informacje o drugorzędnym tokenie:" #: pulse.c:1275 msgid "Error creating Pulse connection request\n" msgstr "Błąd podczas tworzenia żądania negocjacji Pulse\n" #: pulse.c:1318 msgid "Unexpected response to IF-T/TLS version negotiation:\n" msgstr "Nieoczekiwana odpowiedź na negocjację wersji IF-T/TLS:\n" #: pulse.c:1323 #, c-format msgid "IF-T/TLS version from server: %d\n" msgstr "Wersja IF-T/TLS z serwera: %d\n" #: pulse.c:1449 msgid "Failed to establish EAP-TTLS session\n" msgstr "Ustanowienie sesji EAP-TTLS się nie powiodło\n" #: pulse.c:1568 msgid "Server certificate mismatch. Aborting due to suspected MITM attack\n" msgstr "" "Niedopasowanie certyfikatu serwera. Przerywanie z powodu podejrzenia ataku " "typu „MITM”\n" #: pulse.c:1583 msgid "Authentication failure: Account locked out\n" msgstr "Niepowodzenie uwierzytelnienia: konto zostało zablokowane\n" #: pulse.c:1586 #, c-format msgid "Authentication failure: Code 0x%02x\n" msgstr "Niepowodzenie uwierzytelnienia: kod 0x%02x\n" #: pulse.c:1668 msgid "Unhandled Pulse authentication packet, or authentication failure\n" msgstr "" "Nieobsłużony pakiet uwierzytelnienia Pulse lub niepowodzenie " "uwierzytelnienia\n" #: pulse.c:1684 msgid "Pulse authentication cookie not accepted\n" msgstr "Nie przyjęto ciasteczka uwierzytelnienia Pulse\n" #: pulse.c:1690 msgid "Pulse realm entry\n" msgstr "Wpis obszaru Pulse\n" #: pulse.c:1696 msgid "Pulse realm choice\n" msgstr "Wybór obszaru Pulse\n" #: pulse.c:1703 #, c-format msgid "Pulse password auth request, code 0x%02x\n" msgstr "Żądanie uwierzytelnienia hasła Pulse, kod 0x%02x\n" #: pulse.c:1714 msgid "Pulse password general token code request\n" msgstr "Żądanie kodu tokena ogólnego hasła Pulse\n" #: pulse.c:1725 #, c-format msgid "Pulse session limit, %d sessions\n" msgstr "Ograniczenie liczby sesji Pulse: %d\n" #: pulse.c:1734 msgid "Unhandled Pulse auth request\n" msgstr "Nieobsłużone żądanie uwierzytelnienia Pulse\n" #: pulse.c:1771 msgid "Unexpected response instead of IF-T/TLS auth success:\n" msgstr "" "Nieoczekiwana odpowiedź zamiast powodzenia uwierzytelnienia IF-T/TLS:\n" #: pulse.c:1844 #, c-format msgid "Read %d bytes of IF-T/TLS EAP-TTLS record\n" msgstr "Odczyt %d B wpisu EAP-TTLS IF-T/TLS\n" #: pulse.c:1855 msgid "Bad EAP-TTLS packet\n" msgstr "Błędny pakiet EAP-TTLS\n" #: pulse.c:1968 msgid "Unexpected Pulse config packet:\n" msgstr "Nieoczekiwany pakiet konfiguracji Pulse:\n" #: pulse.c:2025 #, c-format msgid "Receive route of unknown type 0x%08x\n" msgstr "Otrzymanie trasy o nieznanym typie 0x%08x\n" #: pulse.c:2096 msgid "Invalid ESP config packet:\n" msgstr "Nieprawidłowy pakiet konfiguracji ESP:\n" #: pulse.c:2108 msgid "Invalid ESP setup\n" msgstr "Nieprawidłowa konfiguracja ESP\n" #: pulse.c:2183 msgid "Bad IF-T/TLS packet when expecting configuration:\n" msgstr "Błędny pakiet IF-T/TLS, kiedy oczekiwano konfiguracji:\n" #: pulse.c:2191 msgid "Unexpected IF-T/TLS packet when expecting configuration.\n" msgstr "Błędny pakiet IF-T/TLS, kiedy oczekiwano konfiguracji.\n" #: pulse.c:2342 #, c-format msgid "Received data packet of %d bytes\n" msgstr "Otrzymano pakiet danych o rozmiarze %d B\n" #: pulse.c:2364 msgid "ESP rekey failed\n" msgstr "„rekey” ESP się nie powiodło\n" #: pulse.c:2388 msgid "Unknown Pulse packet\n" msgstr "Nieznany pakiet Pulse\n" #: pulse.c:2566 #, c-format msgid "Sending IF-T/TLS data packet of %d bytes\n" msgstr "Wysyłanie pakietu danych IF-T/TLS o rozmiarze %d B\n" #: script.c:130 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Odrzucanie błędnego dołączania „split”: „%s”\n" #: script.c:134 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Odrzucanie błędnego wykluczania „split”: „%s”\n" #: script.c:507 script.c:555 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Wywołanie skryptu „%s” dla %s się nie powiodło: %s\n" #: script.c:562 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "Skrypt „%s” nieoczekiwanie zakończył działanie (%x)\n" #: script.c:570 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Skrypt „%s” zwrócił błąd %d\n" #: ssl.c:108 msgid "Socket connect cancelled\n" msgstr "Anulowano połączenie gniazda\n" #: ssl.c:217 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "Ponowne połączenie z pośrednikiem %s się nie powiodło: %s\n" #: ssl.c:221 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "Ponowne połączenie z komputerem %s się nie powiodło: %s\n" #: ssl.c:289 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Pośrednik z biblioteki libproxy: %s://%s:%d/\n" #: ssl.c:317 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "getaddrinfo się nie powiodło dla komputera „%s”: %s\n" #: ssl.c:326 ssl.c:451 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" "Ponowne łączenie z serwerem DynDNS używając poprzednio buforowanego adresu " "IP\n" #: ssl.c:341 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Próba połączenia z pośrednikiem %s%s%s:%s\n" #: ssl.c:342 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Próba połączenia z serwerem %s%s%s:%s\n" #: ssl.c:362 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "Połączono z %s%s%s:%s\n" #: ssl.c:374 msgid "Failed to allocate sockaddr storage\n" msgstr "Przydzielenie pamięci masowej sockaddr się nie powiodło\n" #: ssl.c:416 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "Połączenie z %s%s%s:%s się nie powiodło: %s\n" #: ssl.c:434 msgid "Forgetting non-functional previous peer address\n" msgstr "Zapominanie niedziałającego poprzedniego adresu partnera\n" #: ssl.c:446 #, c-format msgid "Failed to connect to host %s\n" msgstr "Połączenie z komputerem %s się nie powiodło\n" #: ssl.c:465 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "Ponowne łączenie z pośrednikiem %s\n" #: ssl.c:536 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:564 msgid "Could not obtain file system ID for passphrase\n" msgstr "Nie można uzyskać identyfikatora systemu plików dla hasła\n" #: ssl.c:575 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "Otwarcie pliku klucza prywatnego „%s” się nie powiodło: %s\n" #: ssl.c:603 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:694 msgid "No error" msgstr "Brak błędu" #: ssl.c:695 msgid "Keystore locked" msgstr "Zablokowano bazę kluczy" #: ssl.c:696 msgid "Keystore uninitialized" msgstr "Niezainicjowano bazy kluczy" #: ssl.c:697 msgid "System error" msgstr "Błąd systemu" #: ssl.c:698 msgid "Protocol error" msgstr "Błąd protokołu" #: ssl.c:699 msgid "Permission denied" msgstr "Odmowa dostępu" #: ssl.c:700 msgid "Key not found" msgstr "Nie odnaleziono klucza" #: ssl.c:701 msgid "Value corrupted" msgstr "Uszkodzona wartość" #: ssl.c:702 msgid "Undefined action" msgstr "Nieokreślone działanie" #: ssl.c:706 msgid "Wrong password" msgstr "Błędne hasło" #: ssl.c:707 msgid "Unknown error" msgstr "Nieznany błąd" #: ssl.c:896 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" "openconnect_fopen_utf8() używane za pomocą nieobsługiwanego trybu „%s”\n" #: ssl.c:931 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" "Nieznana rodzina protokołów %d. Nie można utworzyć adresu serwera UDP\n" #: ssl.c:950 msgid "Open UDP socket" msgstr "Otwarcie gniazda UDP" #: ssl.c:981 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "Nieznana rodzina protokołów %d. Nie można użyć transportu UDP\n" #: ssl.c:989 msgid "Bind UDP socket" msgstr "Dowiązanie gniazda UDP" #: ssl.c:996 msgid "Connect UDP socket\n" msgstr "Połączenie gniazda UDP\n" #: ssl.c:1034 msgid "Cookie is no longer valid, ending session\n" msgstr "Ciasteczko nie jest już prawidłowe, kończenie sesji\n" #: ssl.c:1038 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "uśpienie: %d s, pozostały czas oczekiwania: %d s\n" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "Token SSPI jest za duży (%ld bajtów)\n" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "Wysyłanie tokena SSPI o rozmiarze %lu bajtów\n" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" "Wysłanie tokenu uwierzytelnienia SSPI do pośrednika się nie powiodło: %s\n" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" "Otrzymanie tokenu uwierzytelnienia SSPI z pośrednika się nie powiodło: %s\n" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "Serwer SOCKS zgłosił niepowodzenie kontekstu SSPI\n" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "Nieznana odpowiedź stanu SSPI (0x%02x) z serwera SOCKS\n" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "Otrzymano token SSPI o rozmiarze %lu bajtów: %02x %02x %02x %02x\n" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "QueryContextAttributes() się nie powiodło: %lx\n" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "EncryptMessage() się nie powiodło: %lx\n" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "Wynik EncryptMessage() jest za duży (%lu + %lu + %lu)\n" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "Wysyłanie negocjacji ochrony SSPI o rozmiarze %u bajtów\n" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "Wysłanie odpowiedzi ochrony SSPI do pośrednika się nie powiodło: %s\n" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "Otrzymanie odpowiedzi ochrony SSPI z pośrednika się nie powiodło: %s\n" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" "Otrzymano odpowiedź ochrony SSPI o rozmiarze %d bajtów: %02x %02x %02x %02x\n" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "DecryptMessage się nie powiodło: %lx\n" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "Nieprawidłowa odpowiedź ochrony SSPI z pośrednika (%lu bajtów)\n" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "" "Wymagane jest wprowadzenie danych uwierzytelniających, aby odblokować token " "programowy." #: stoken.c:82 msgid "Device ID:" msgstr "Identyfikator urządzenia:" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "Użytkownik obszedł token programowy.\n" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "Wymagane są wszystkie pola. Proszę spróbować ponownie.\n" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "Ogólne niepowodzenie w bibliotece libstoken.\n" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "" "Niepoprawny identyfikator urządzenia lub hasło. Proszę spróbować ponownie.\n" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "Pomyślnie zainicjowano token programowy.\n" #: stoken.c:185 msgid "Enter software token PIN." msgstr "Proszę wprowadzić kod PIN tokena programowego." #: stoken.c:189 msgid "PIN:" msgstr "PIN:" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "Nieprawidłowy format kodu PIN; proszę spróbować ponownie.\n" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "Tworzenie kodu tokena RSA\n" #: tun-win32.c:76 msgid "Error accessing registry key for network adapters\n" msgstr "" "Błąd podczas uzyskiwania dostępu do klucza rejestru dla adapterów " "sieciowych\n" #: tun-win32.c:139 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "Ignorowanie niepasującego interfejsu TAP „%s”\n" #: tun-win32.c:154 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" "Nie odnaleziono adapterów Windows-TAP. Czy sterownik jest zainstalowany?\n" #: tun-win32.c:186 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" "GetAdapterIndex() się nie powiodło: %s\n" "Używanie GetAdaptersInfo()\n" #: tun-win32.c:200 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "GetAdaptersInfo() się nie powiodło: %s\n" #: tun-win32.c:231 #, c-format msgid "Failed to open %s\n" msgstr "Otwarcie %s się nie powiodło\n" #: tun-win32.c:236 #, c-format msgid "Opened tun device %s\n" msgstr "Otwarto urządzenie tun %s\n" #: tun-win32.c:244 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Uzyskanie wersji sterownika TAP się nie powiodło: %s\n" #: tun-win32.c:250 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Błąd: wymagany jest sterownik TAP-Windows w wersji 9.9 lub nowszej " "(odnaleziono wersję %ld.%ld)\n" #: tun-win32.c:271 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Ustawienie adresu IP TAP się nie powiodło: %s\n" #: tun-win32.c:283 tun-win32.c:406 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Ustawienie stanu nośnika TAP się nie powiodło: %s\n" #: tun-win32.c:316 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "Urządzenie TAP nieoczekiwanie przerwało łączność. Rozłączanie.\n" #: tun-win32.c:321 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Odczytanie z urządzenia TAP się nie powiodło: %s\n" #: tun-win32.c:335 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Pełne odczytanie z urządzenia TAP się nie powiodło: %s\n" #: tun-win32.c:358 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "Zapisano %ld bajtów do tun\n" #: tun-win32.c:368 msgid "Waiting for tun write...\n" msgstr "Oczekiwanie na zapis tun…\n" #: tun-win32.c:371 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "Zapisano %ld bajtów do tun po oczekiwaniu\n" #: tun-win32.c:378 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Zapisanie do urządzenia TAP się nie powiodło: %s\n" #: tun-win32.c:423 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" "Wywoływanie skryptów tuneli nie jest jeszcze obsługiwane w systemie Windows\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Nie można otworzyć /dev/tun do sondowania" #: tun.c:92 msgid "Can't push IP" msgstr "Nie można wypchać adresu IP" #: tun.c:102 msgid "Can't set ifname" msgstr "Nie można ustawić nazwy interfejsu" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "Nie można otworzyć %s: %s" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Nie można sondować %s dla IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "otwarcie /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Utworzenie nowego tun się nie powiodło" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" "Umieszczenie deskryptora pliku tun w trybie „message-discard” się nie " "powiodło" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "Urządzenie tun jest nieobsługiwane na tej platformie\n" #: tun.c:205 msgid "open net" msgstr "otwarcie sieci" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Otwarcie urządzenia tun się nie powiodło: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "Dowiązanie lokalnego urządzenia tun (TUNSETIFF) się nie powiodło: %s\n" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" "Do skonfigurowania lokalnej sieci OpenConnect musi być uruchomione jako " "root\n" "Więcej informacji: http://www.infradead.org/openconnect/nonroot.html\n" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" "Nieprawidłowa nazwa interfejsu „%s”. Musi pasować do „utun%%d” lub „tun%%d”\n" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "Otwarcie gniazda „SYSPROTO_CONTROL” się nie powiodło: %s\n" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "Odpytanie identyfikatora kontroli utun się nie powiodło: %s\n" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "Przydzielenie nazwy urządzenia utun się nie powiodło\n" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "Połączenie jednostki utun się nie powiodło: %s\n" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Nieprawidłowa nazwa interfejsu „%s”. Musi pasować do „tun%%d”\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Nie można otworzyć \"%s\": %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:479 #, c-format msgid "socketpair failed: %s\n" msgstr "socketpair się nie powiodło: %s\n" #: tun.c:484 #, c-format msgid "fork failed: %s\n" msgstr "fork się nie powiodło: %s\n" #: tun.c:488 msgid "setpgid" msgstr "setpgid" #: tun.c:493 msgid "execl" msgstr "execl" #: tun.c:498 msgid "(script)" msgstr "(skrypt)" #: tun.c:566 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Zapisanie przychodzącego pakietu się nie powiodło: %s\n" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "Otwarcie %s się nie powiodło: %s\n" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "Wykonanie fstat() na %s się nie powiodło: %s\n" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Przydzielenie %d bajtów dla %s się nie powiodło\n" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "Odczytanie %s się nie powiodło: %s\n" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Traktowanie komputera „%s” jako surowa nazwa komputera\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Użycie SHA1 na istniejącym pliku się nie powiodło\n" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "Suma kontrolna SHA1 pliku konfiguracji XML: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Przetworzenie pliku konfiguracji XML %s się nie powiodło\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Komputer „%s” posiada adres „%s”\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Komputer „%s” posiada „UserGroup” „%s”\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "Komputer „%s” nie jest wymieniony w konfiguracji. Traktowanie jako surowa " "nazwa komputera\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "Wysłanie „%s” do apletu „ykneo-oath” się nie powiodło: %s\n" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "Nieprawidłowa krótka odpowiedź do „%s” z apletu „ykneo-oath”\n" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "Niepowodzenie odpowiedzi do „%s”: %04x\n" #: yubikey.c:174 msgid "select applet command" msgstr "wybór polecenia apletu" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "Nierozpoznana odpowiedź z apletu „ykneo-oath”\n" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "Odnaleziono aplet ykneo-oath w wersji %d.%d.%d.\n" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "Wymagany jest kod PIN dla apletu „OATH” Yubikey" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "Kod PIN Yubikey:" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "Obliczenie odpowiedzi odblokowania Yubikey się nie powiodło\n" #: yubikey.c:274 msgid "unlock command" msgstr "polecenie odblokowania" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "Próbowanie wariantu „truncated-char” PBKBF2 kodu PIN Yubikey\n" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "Ustanowienie kontekstu PC/SC się nie powiodło: %s\n" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "Ustanowiono kontekst PC/SC\n" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "Odpytanie listy czytników się nie powiodło: %s\n" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "Połączenie z czytnikiem PC/SC „%s” się nie powiodło: %s\n" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "Połączono czytnik PC/SC „%s”\n" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "Uzyskanie wyłącznego dostępu do czytnika „%s” się nie powiodło: %s\n" #: yubikey.c:412 msgid "list keys command" msgstr "polecenie wyświetlenia listy kluczy" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "Odnaleziono %s/%s klucz „%s” na „%s”\n" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" "Nie odnaleziono tokena na „%s” na Yubikey „%s” Wyszukiwanie innego Yubikey…\n" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "Serwer odrzuca token Yubikey. Przełączanie na ręczne wprowadzanie\n" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "Tworzenie kodu tokena Yubikey\n" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "Uzyskanie wyłącznego dostępu do Yubikey się nie powiodło: %s\n" #: yubikey.c:619 msgid "calculate command" msgstr "polecenie obliczania" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "Nierozpoznana odpowiedź z Yubikey podczas tworzenia kodu tokena\n" #~ msgid "Failed to generate random keys for ESP:\n" #~ msgstr "Utworzenie losowych kluczy dla ESP się nie powiodło:\n" #~ msgid "Compatible with Juniper Network Connect / Pulse Secure SSL VPN" #~ msgstr "Zgodny z VPN SSL Juniper Network Connect/Pulse Secure" #~ msgid "Sending data packet of %d bytes\n" #~ msgstr "Wysyłanie pakietu danych o rozmiarze %d B\n" #~ msgid "Unknown ESP %s algorithm: %s" #~ msgstr "Nieznany algorytm ESP %s: %s" #~ msgid "Failed to generate random keys for ESP: %s\n" #~ msgstr "Utworzenie losowych kluczy dla ESP się nie powiodło: %s\n" #~ msgid "Failed to send DPD request (%d)\n" #~ msgstr "Wysłanie żądania DPD się nie powiodło (%d)\n" #~ msgid "Initiating IPv6 MTU detection\n" #~ msgstr "Inicjowanie wykrywania MTU IPv6\n" #~ msgid "Received MTU DPD probe (%u bytes of %u)\n" #~ msgstr "Otrzymano sondę „DPD” MTU (%u bajtów z %u)\n" #~ msgid "Timeout while waiting for DPD response; resending probe.\n" #~ msgstr "" #~ "Przekroczono czas oczekiwania podczas czekania na odpowiedź DPD. Ponowne " #~ "wysyłanie sondy.\n" #~ msgid "Timeout while waiting for DPD response; trying %d\n" #~ msgstr "" #~ "Przekroczono czas oczekiwania podczas oczekiwania na odpowiedź DPD. " #~ "Próbowanie %d\n" #~ msgid "Sending MTU DPD probe (%u bytes, min=%u, max=%u)\n" #~ msgstr "Wysyłanie sondy „DPD” MTU (%u bajtów, min=%u, max=%u)\n" #~ msgid "Initiating IPv4 MTU detection (min=%d, max=%d)\n" #~ msgstr "Inicjowanie wykrywania MTU IPv4 (min=%d, max=%d)\n" openconnect-8.05/po/fr.po0000664000076400007640000025307613470043037017140 0ustar00dwoodhoudwoodhou00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: # Camille Baldock , 2012. # Mademoiselle Geek , 2011. msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2019-05-18 10:44-0700\n" "PO-Revision-Date: 2012-07-17 08:17+0000\n" "Last-Translator: David Woodhouse \n" "Language-Team: French (http://www.transifex.com/projects/p/meego/language/" "fr/)\n" "Language: fr\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n > 1)\n" #: auth-globalprotect.c:108 #, c-format msgid "" "SAML login is required via %s to this URL:\n" "\t%s" msgstr "" #: auth-globalprotect.c:110 msgid "Please enter your username and password" msgstr "" #: auth-globalprotect.c:119 msgid "Username" msgstr "" #: auth-globalprotect.c:134 msgid "Password" msgstr "" #: auth-globalprotect.c:181 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:260 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:266 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:272 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:315 msgid "Please select GlobalProtect gateway." msgstr "" #: auth-globalprotect.c:325 msgid "GATEWAY:" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:379 #, c-format msgid "%d gateway servers available:\n" msgstr "" #: auth-globalprotect.c:400 #, c-format msgid " %s (%s)\n" msgstr "" #: auth-globalprotect.c:484 auth-juniper.c:730 auth.c:669 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth-globalprotect.c:584 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" #: auth-globalprotect.c:636 oncp.c:1266 msgid "Logout failed.\n" msgstr "" #: auth-globalprotect.c:638 msgid "Logout successful\n" msgstr "" #: auth-juniper.c:142 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:153 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:163 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:236 auth.c:408 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "" #: auth-juniper.c:267 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "" #: auth-juniper.c:337 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:359 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:397 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:411 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:418 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:425 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:432 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:439 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:445 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:452 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:481 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:650 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:667 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:675 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:713 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:716 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth.c:96 msgid "Form choice has no name\n" msgstr "" #: auth.c:181 #, c-format msgid "name %s not input\n" msgstr "" #: auth.c:188 msgid "No input type in form\n" msgstr "" #: auth.c:200 msgid "No input name in form\n" msgstr "" #: auth.c:230 #, c-format msgid "Unknown input type %s in form\n" msgstr "" #: auth.c:540 gpst.c:214 msgid "Empty response from server\n" msgstr "" #: auth.c:551 gpst.c:289 msgid "Failed to parse server response\n" msgstr "" #: auth.c:553 gpst.c:291 #, c-format msgid "Response was:%s\n" msgstr "" #: auth.c:575 msgid "Received when not expected.\n" msgstr "" #: auth.c:603 msgid "XML response has no \"auth\" node\n" msgstr "" #: auth.c:636 msgid "Asked for password but '--no-passwd' set\n" msgstr "" #: auth.c:925 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:931 cstp.c:335 http.c:916 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "" #: auth.c:952 msgid "Failed to send GET request for new config\n" msgstr "" #: auth.c:976 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" #: auth.c:981 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:992 auth.c:1044 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" #: auth.c:1003 mainloop.c:144 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "" #: auth.c:1010 mainloop.c:151 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "" #: auth.c:1017 mainloop.c:158 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "" #: auth.c:1024 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "" #: auth.c:1031 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "" #: auth.c:1053 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:1060 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" #: auth.c:1067 msgid "Trying to run Linux CSD trojan script.\n" msgstr "" #: auth.c:1094 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1102 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "" #: auth.c:1111 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "" #: auth.c:1141 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" #: auth.c:1189 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "" #: auth.c:1221 msgid "Unknown response from server\n" msgstr "" #: auth.c:1342 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1346 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" #: auth.c:1362 msgid "XML POST enabled\n" msgstr "" #: auth.c:1405 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "" #: compat.c:207 #, c-format msgid "(error 0x%lx)" msgstr "" #: compat.c:210 msgid "(Error while describing error!)" msgstr "" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:112 gpst.c:341 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "" #: cstp.c:134 gpst.c:360 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "" #: cstp.c:281 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:312 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:328 http.c:384 msgid "Error fetching HTTPS response\n" msgstr "" #: cstp.c:355 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "" #: cstp.c:360 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "" #: cstp.c:367 #, c-format msgid "Got CONNECT response: %s\n" msgstr "" #: cstp.c:396 cstp.c:404 msgid "No memory for options\n" msgstr "" #: cstp.c:413 http.c:444 msgid "" msgstr "" #: cstp.c:433 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "" #: cstp.c:450 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "" #: cstp.c:468 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:510 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "" #: cstp.c:585 msgid "No MTU received. Aborting\n" msgstr "" #: cstp.c:593 gpst.c:641 msgid "No IP address received. Aborting\n" msgstr "" #: cstp.c:599 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: cstp.c:605 gpst.c:648 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "" #: cstp.c:614 gpst.c:657 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" #: cstp.c:622 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "" #: cstp.c:630 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "" #: cstp.c:638 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "" #: cstp.c:640 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "" #: cstp.c:702 msgid "Compression setup failed\n" msgstr "" #: cstp.c:719 msgid "Allocation of deflate buffer failed\n" msgstr "" #: cstp.c:781 msgid "inflate failed\n" msgstr "" #: cstp.c:804 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:817 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:824 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:829 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:849 #, c-format msgid "deflate failed %d\n" msgstr "" #: cstp.c:922 dtls.c:281 dtls.c:740 esp.c:129 gpst.c:1042 mainloop.c:69 #: oncp.c:914 msgid "Allocation failed\n" msgstr "" #: cstp.c:933 gpst.c:1055 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: cstp.c:946 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" #: cstp.c:960 msgid "Got CSTP DPD request\n" msgstr "" #: cstp.c:966 msgid "Got CSTP DPD response\n" msgstr "" #: cstp.c:971 msgid "Got CSTP Keepalive\n" msgstr "" #: cstp.c:976 oncp.c:1003 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:993 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "" #: cstp.c:996 msgid "Received server disconnect\n" msgstr "" #: cstp.c:1004 msgid "Compressed packet received in !deflate mode\n" msgstr "" #: cstp.c:1013 msgid "received server terminate packet\n" msgstr "" #: cstp.c:1020 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Paquet inconnu %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1063 gpst.c:1142 oncp.c:1121 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1091 oncp.c:1155 msgid "CSTP rekey due\n" msgstr "" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1098 oncp.c:1162 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: cstp.c:1109 oncp.c:1173 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "" #: cstp.c:1113 gpst.c:1166 oncp.c:1091 oncp.c:1177 msgid "Reconnect failed\n" msgstr "" #: cstp.c:1129 oncp.c:1193 msgid "Send CSTP DPD\n" msgstr "" #: cstp.c:1141 oncp.c:1204 msgid "Send CSTP Keepalive\n" msgstr "" #: cstp.c:1166 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1177 oncp.c:1238 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:1216 #, c-format msgid "Send BYE packet: %s\n" msgstr "" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:113 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:119 msgid "No DTLS address\n" msgstr "" #. We probably didn't offer it any ciphers it liked #: dtls.c:126 msgid "Server offered no DTLS cipher option\n" msgstr "" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:133 msgid "No DTLS when connected via proxy\n" msgstr "" #: dtls.c:200 #, c-format msgid "DTLS option %s : %s\n" msgstr "" #: dtls.c:239 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:265 msgid "Attempt new DTLS connection\n" msgstr "" #: dtls.c:292 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "" #: dtls.c:306 msgid "Got DTLS DPD request\n" msgstr "" #: dtls.c:312 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "" #: dtls.c:316 msgid "Got DTLS DPD response\n" msgstr "" #: dtls.c:320 msgid "Got DTLS Keepalive\n" msgstr "" #: dtls.c:326 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:334 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "" #: dtls.c:356 msgid "DTLS rekey due\n" msgstr "" #: dtls.c:363 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: dtls.c:372 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "" #: dtls.c:378 msgid "Send DTLS DPD\n" msgstr "" #: dtls.c:383 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "" #: dtls.c:396 msgid "Send DTLS Keepalive\n" msgstr "" #: dtls.c:401 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" #: dtls.c:432 tun.c:541 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "" #: dtls.c:439 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "" #: dtls.c:443 msgid "UDP setsockopt" msgstr "" #: dtls.c:474 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "" #: dtls.c:488 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "" #: dtls.c:503 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "" #: dtls.c:531 #, c-format msgid "Initiating IPv4 MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:551 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" #: dtls.c:555 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" #: dtls.c:564 #, c-format msgid "Sending MTU DPD probe (%u bytes, min=%u, max=%u)\n" msgstr "" #: dtls.c:568 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "" #: dtls.c:582 dtls.c:690 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" #: dtls.c:594 #, c-format msgid "Timeout while waiting for DPD response; trying %d\n" msgstr "" #: dtls.c:601 dtls.c:682 msgid "Timeout while waiting for DPD response; resending probe.\n" msgstr "" #: dtls.c:608 dtls.c:709 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "" #: dtls.c:613 #, c-format msgid "Received MTU DPD probe (%u bytes of %u)\n" msgstr "" #: dtls.c:651 msgid "Initiating IPv6 MTU detection\n" msgstr "" #: dtls.c:666 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:670 #, c-format msgid "Failed to send DPD request (%d)\n" msgstr "" #: dtls.c:695 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:759 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "" #: dtls.c:762 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" #: esp.c:63 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:66 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:69 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:87 msgid "incoming" msgstr "" #: esp.c:88 msgid "outgoing" msgstr "" #: esp.c:90 esp.c:113 msgid "Send ESP probes\n" msgstr "" #: esp.c:138 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:155 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:161 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:174 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:181 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:193 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:202 msgid "ESP session established with server\n" msgstr "" #: esp.c:213 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:219 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:225 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:239 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:243 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:251 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:258 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:278 #, c-format msgid "Failed to encrypt ESP packet: %d\n" msgstr "" #: esp.c:294 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:301 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:307 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-dtls.c:190 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "" #: gnutls-dtls.c:198 msgid "Failed to generate DTLS priority string\n" msgstr "" #: gnutls-dtls.c:207 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "" #: gnutls-dtls.c:216 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "" #: gnutls-dtls.c:240 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "" #: gnutls-dtls.c:253 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:267 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:275 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "" #: gnutls-dtls.c:309 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "" #: gnutls-dtls.c:324 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "" #: gnutls-dtls.c:345 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "" #: gnutls-dtls.c:373 openssl-dtls.c:534 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "" #: gnutls-dtls.c:382 openssl-dtls.c:545 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "" #: gnutls-dtls.c:392 openssl-dtls.c:554 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" #: gnutls-dtls.c:405 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "" #: gnutls-dtls.c:416 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: gnutls-dtls.c:422 openssl-dtls.c:572 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "" #: gnutls-dtls.c:437 openssl-dtls.c:653 openssl-dtls.c:657 msgid "DTLS handshake timed out\n" msgstr "" #: gnutls-dtls.c:440 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "" #: gnutls-dtls.c:444 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:121 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:132 msgid "Failed to generate ESP IV\n" msgstr "" #: gnutls-esp.c:161 gnutls-esp.c:217 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:168 openssl-esp.c:192 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:180 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:209 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:95 openssl.c:154 msgid "SSL write cancelled\n" msgstr "" #: gnutls.c:99 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "" #: gnutls.c:145 gnutls.c:237 openssl.c:204 openssl.c:271 msgid "SSL read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:158 msgid "SSL socket closed uncleanly\n" msgstr "" #: gnutls.c:168 gnutls.c:246 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "" #: gnutls.c:266 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "" #: gnutls.c:302 #, c-format msgid "SSL send failed: %s\n" msgstr "" #: gnutls.c:315 msgid "Could not extract expiration time of certificate\n" msgstr "" #: gnutls.c:320 openssl.c:1592 msgid "Client certificate has expired at" msgstr "" #: gnutls.c:322 openssl.c:1597 msgid "Client certificate expires soon at" msgstr "" #: gnutls.c:371 openssl.c:771 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" #: gnutls.c:384 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "" #: gnutls.c:391 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" #: gnutls.c:400 msgid "Failed to allocate certificate buffer\n" msgstr "" #: gnutls.c:408 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "" #: gnutls.c:439 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "" #: gnutls.c:462 openssl.c:534 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "" #: gnutls.c:466 openssl.c:537 msgid "Enter PKCS#12 pass phrase:" msgstr "" #: gnutls.c:489 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "" #: gnutls.c:501 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:584 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "" #: gnutls.c:594 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "" #: gnutls.c:628 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "" #: gnutls.c:638 #, c-format msgid "MD5 hash error: %s\n" msgstr "" #: gnutls.c:696 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" #: gnutls.c:703 msgid "Cannot determine PEM encryption type\n" msgstr "" #: gnutls.c:716 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "" #: gnutls.c:741 gnutls.c:754 msgid "Invalid salt in encrypted PEM file\n" msgstr "" #: gnutls.c:778 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "" #: gnutls.c:786 msgid "Encrypted PEM file too short\n" msgstr "" #: gnutls.c:814 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" #: gnutls.c:825 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "" #: gnutls.c:877 msgid "Decrypting PEM key failed\n" msgstr "" #: gnutls.c:881 gnutls.c:1405 openssl.c:458 msgid "Enter PEM pass phrase:" msgstr "" #: gnutls.c:942 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:949 msgid "This binary built without PKCS#11 support\n" msgstr "" #: gnutls.c:993 openssl-pkcs11.c:407 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "" #: gnutls.c:994 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1012 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "" #: gnutls.c:1013 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1024 openssl.c:827 #, c-format msgid "Using certificate file %s\n" msgstr "" #: gnutls.c:1052 msgid "PKCS#11 file contained no certificate\n" msgstr "" #: gnutls.c:1078 msgid "No certificate found in file" msgstr "" #: gnutls.c:1083 #, c-format msgid "Loading certificate failed: %s\n" msgstr "" #: gnutls.c:1098 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1103 gnutls.c:1271 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "" #: gnutls.c:1114 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1125 gnutls.c:1219 gnutls.c:1247 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1130 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "" #: gnutls.c:1259 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "" #: gnutls.c:1266 openssl-pkcs11.c:644 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "" #: gnutls.c:1281 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" #: gnutls.c:1299 #, c-format msgid "Using private key file %s\n" msgstr "" #: gnutls.c:1310 openssl.c:651 msgid "This version of OpenConnect was built without TPM support\n" msgstr "" #: gnutls.c:1326 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1347 msgid "Failed to interpret PEM file\n" msgstr "" #: gnutls.c:1366 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "" #: gnutls.c:1379 gnutls.c:1393 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "" #: gnutls.c:1401 gnutls.c:1434 openssl.c:1002 openssl.c:1012 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "" #: gnutls.c:1426 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "" #: gnutls.c:1438 openssl.c:1008 msgid "Enter PKCS#8 pass phrase:" msgstr "" #: gnutls.c:1454 #, c-format msgid "Failed to get key ID: %s\n" msgstr "" #: gnutls.c:1499 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "" #: gnutls.c:1514 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "" #: gnutls.c:1539 msgid "No SSL certificate found to match private key\n" msgstr "" #: gnutls.c:1551 openssl.c:560 openssl.c:709 #, c-format msgid "Using client certificate '%s'\n" msgstr "" #: gnutls.c:1558 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "" #: gnutls.c:1579 gnutls.c:1589 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1625 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" #: gnutls.c:1648 msgid "Got no issuer from PKCS#11\n" msgstr "" #: gnutls.c:1653 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "" #: gnutls.c:1679 msgid "Failed to allocate memory for supporting certificates\n" msgstr "" #: gnutls.c:1702 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "" #: gnutls.c:1724 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1748 #, c-format msgid "Setting certificate failed: %s\n" msgstr "" #: gnutls.c:1941 msgid "Server presented no certificate\n" msgstr "" #: gnutls.c:1949 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" #: gnutls.c:1954 openssl.c:1515 msgid "Server presented different cert on rehandshake\n" msgstr "" #: gnutls.c:1959 openssl.c:1518 msgid "Server presented identical cert on rehandshake\n" msgstr "" #: gnutls.c:1965 msgid "Error initialising X509 cert structure\n" msgstr "" #: gnutls.c:1971 msgid "Error importing server's cert\n" msgstr "" #: gnutls.c:1980 main.c:1794 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:1985 msgid "Error checking server cert status\n" msgstr "" #: gnutls.c:1990 msgid "certificate revoked" msgstr "" #: gnutls.c:1992 msgid "signer not found" msgstr "" #: gnutls.c:1994 msgid "signer not a CA certificate" msgstr "" #: gnutls.c:1996 msgid "insecure algorithm" msgstr "" #: gnutls.c:1998 msgid "certificate not yet activated" msgstr "" #: gnutls.c:2000 msgid "certificate expired" msgstr "" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2005 msgid "signature verification failed" msgstr "" #: gnutls.c:2054 openssl.c:1399 openssl.c:1551 msgid "certificate does not match hostname" msgstr "" #: gnutls.c:2059 openssl.c:1398 openssl.c:1557 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "" #: gnutls.c:2126 msgid "Failed to allocate memory for cafile certs\n" msgstr "" #: gnutls.c:2147 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "" #: gnutls.c:2163 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "" #: gnutls.c:2176 openssl.c:1679 msgid "Loading certificate failed. Aborting.\n" msgstr "" #: gnutls.c:2237 #, c-format msgid "Failed to set TLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2249 openssl.c:1796 #, c-format msgid "SSL negotiation with %s\n" msgstr "Négociation SSL avec %s\n" #: gnutls.c:2296 openssl.c:1822 msgid "SSL connection cancelled\n" msgstr "" #: gnutls.c:2303 #, c-format msgid "SSL connection failure: %s\n" msgstr "" #: gnutls.c:2312 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "" #: gnutls.c:2318 openssl.c:1839 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "" #: gnutls.c:2321 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "" #: gnutls.c:2483 openssl-pkcs11.c:199 #, c-format msgid "PIN required for %s" msgstr "" #: gnutls.c:2487 openssl-pkcs11.c:202 msgid "Wrong PIN" msgstr "" #: gnutls.c:2490 msgid "This is the final try before locking!" msgstr "" #: gnutls.c:2492 msgid "Only a few tries left before locking!" msgstr "" #: gnutls.c:2497 openssl-pkcs11.c:206 msgid "Enter PIN:" msgstr "" #: gnutls.c:2583 openssl.c:1967 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2592 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:54 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm.c:61 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:68 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:78 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "" #: gnutls_tpm.c:100 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "" #: gnutls_tpm.c:108 gnutls_tpm.c:119 gnutls_tpm.c:132 msgid "Error in TSS key blob\n" msgstr "" #: gnutls_tpm.c:139 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "" #: gnutls_tpm.c:146 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "" #: gnutls_tpm.c:154 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "" #: gnutls_tpm.c:161 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "" #: gnutls_tpm.c:182 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "" #: gnutls_tpm.c:198 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "" #: gnutls_tpm.c:205 msgid "Enter TPM SRK PIN:" msgstr "" #: gnutls_tpm.c:226 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "" #: gnutls_tpm.c:234 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "" #: gnutls_tpm.c:240 msgid "Enter TPM key PIN:" msgstr "" #: gnutls_tpm.c:251 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "" #: gnutls_tpm2.c:92 gnutls_tpm2_esys.c:474 gnutls_tpm2_ibm.c:419 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:198 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:208 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:217 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:225 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:231 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:249 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:270 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:275 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:384 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2_esys.c:173 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:189 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:190 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:191 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:192 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:196 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:201 gnutls_tpm2_ibm.c:262 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:209 gnutls_tpm2_esys.c:303 gnutls_tpm2_esys.c:374 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:221 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:226 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:245 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:250 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:258 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:261 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:274 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:295 gnutls_tpm2_ibm.c:278 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:309 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:317 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:323 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:333 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:363 gnutls_tpm2_ibm.c:363 gnutls_tpm2_ibm.c:450 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:395 #, c-format msgid "TPM2 RSA sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:414 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:420 gnutls_tpm2_esys.c:500 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:464 gnutls_tpm2_ibm.c:405 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:494 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:532 gnutls_tpm2_ibm.c:485 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:546 gnutls_tpm2_ibm.c:502 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:555 gnutls_tpm2_ibm.c:512 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:569 gnutls_tpm2_ibm.c:523 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:54 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:226 #, c-format msgid "%s\n" msgstr "" #: gpst.c:229 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:417 #, c-format msgid "Unknown ESP %s algorithm: %s" msgstr "" #: gpst.c:477 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: gpst.c:483 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:487 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:498 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:551 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:560 oncp.c:835 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: gpst.c:627 msgid "ESP disabled" msgstr "" #: gpst.c:629 msgid "No ESP keys received" msgstr "" #: gpst.c:631 msgid "ESP support not available in this build" msgstr "" #: gpst.c:635 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:680 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:702 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:711 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:719 #, c-format msgid "Got inappropriate HTTP GET-tunnel response: %.*s\n" msgstr "" #: gpst.c:861 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" "VPN connectivity may be disabled or limited without HIP report submission.\n" "You need to provide a --csd-wrapper argument with the HIP report submission " "script.\n" msgstr "" #: gpst.c:871 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:900 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:905 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:911 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:913 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:942 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:966 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:972 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:999 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1015 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1051 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1072 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1082 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1086 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1092 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: gpst.c:1101 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1109 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1157 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1162 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1182 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1202 #, c-format msgid "Sending data packet of %d bytes\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1165 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "" #: http.c:319 msgid "No memory for allocating cookies\n" msgstr "" #: http.c:394 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "" #: http.c:400 #, c-format msgid "Got HTTP response: %s\n" msgstr "" #: http.c:408 msgid "Error processing HTTP response\n" msgstr "" #: http.c:415 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "" #: http.c:435 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "" #: http.c:454 msgid "SSL certificate authentication failed\n" msgstr "" #: http.c:485 #, c-format msgid "Response body has negative size (%d)\n" msgstr "" #: http.c:496 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "" #. Now the body, if there is one #: http.c:515 #, c-format msgid "HTTP body %s (%d)\n" msgstr "" #: http.c:529 http.c:556 msgid "Error reading HTTP response body\n" msgstr "" #: http.c:542 msgid "Error fetching chunk header\n" msgstr "" #: http.c:566 msgid "Error fetching HTTP response body\n" msgstr "" #: http.c:569 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "" #: http.c:581 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "" #: http.c:708 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "" #: http.c:732 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "" #: http.c:760 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "" #: http.c:973 oncp.c:591 #, c-format msgid "Unexpected %d result from server\n" msgstr "" #: http.c:1021 msgid "request granted" msgstr "" #: http.c:1022 msgid "general failure" msgstr "" #: http.c:1023 msgid "connection not allowed by ruleset" msgstr "" #: http.c:1024 msgid "network unreachable" msgstr "" #: http.c:1025 msgid "host unreachable" msgstr "" #: http.c:1026 msgid "connection refused by destination host" msgstr "" #: http.c:1027 msgid "TTL expired" msgstr "TTL expiré" #: http.c:1028 msgid "command not supported / protocol error" msgstr "" #: http.c:1029 msgid "address type not supported" msgstr "" #: http.c:1039 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1047 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1062 http.c:1118 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" #: http.c:1070 http.c:1125 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" #: http.c:1077 http.c:1131 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" #: http.c:1083 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1087 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1143 http.c:1150 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1156 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1163 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1170 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1176 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "" #: http.c:1191 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" #: http.c:1199 http.c:1241 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "" #: http.c:1205 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "" #: http.c:1213 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "" #: http.c:1217 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "" #: http.c:1234 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "" #: http.c:1257 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "" #: http.c:1292 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "" #: http.c:1315 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1334 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "" #: http.c:1383 msgid "Only http or socks(5) proxies supported\n" msgstr "" #: library.c:112 msgid "Cisco AnyConnect or openconnect" msgstr "" #: library.c:113 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "" #: library.c:129 msgid "Juniper Network Connect" msgstr "" #: library.c:130 msgid "Compatible with Juniper Network Connect / Pulse Secure SSL VPN" msgstr "" #: library.c:148 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:149 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:211 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:233 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "" #: library.c:656 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "" #: library.c:662 msgid "Only https:// permitted for server URL\n" msgstr "" #: library.c:1056 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "" #: library.c:1085 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" #: library.c:1146 msgid "No form handler; cannot authenticate.\n" msgstr "" #: main.c:340 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:353 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:388 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:401 #, c-format msgid "fgetws() failed: %s\n" msgstr "" #: main.c:416 main.c:429 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:423 main.c:689 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "" #: main.c:584 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:593 #, c-format msgid "Using OpenSSL. Features present:" msgstr "" #: main.c:595 #, c-format msgid "Using GnuTLS. Features present:" msgstr "" #: main.c:608 msgid "OpenSSL ENGINE not present" msgstr "" #: main.c:647 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" #: main.c:657 #, c-format msgid "Supported protocols:" msgstr "" #: main.c:659 main.c:675 msgid " (default)" msgstr "" #: main.c:672 msgid "Set VPN protocol" msgstr "" #: main.c:713 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:754 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:760 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:780 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "" #: main.c:793 #, c-format msgid "Usage: openconnect [options] \n" msgstr "" #: main.c:794 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" #: main.c:796 msgid "Read options from config file" msgstr "" #: main.c:797 msgid "Report version number" msgstr "" #: main.c:798 msgid "Display help text" msgstr "" #: main.c:802 msgid "Authentication" msgstr "" #: main.c:803 msgid "Set login username" msgstr "" #: main.c:804 msgid "Disable password/SecurID authentication" msgstr "" #: main.c:805 msgid "Do not expect user input; exit if it is required" msgstr "" #: main.c:806 msgid "Read password from standard input" msgstr "" #: main.c:807 msgid "Choose authentication login selection" msgstr "" #: main.c:808 msgid "Provide authentication form responses" msgstr "" #: main.c:809 msgid "Use SSL client certificate CERT" msgstr "" #: main.c:810 msgid "Use SSL private key file KEY" msgstr "" #: main.c:811 msgid "Warn when certificate lifetime < DAYS" msgstr "" #: main.c:812 msgid "Set login usergroup" msgstr "" #: main.c:813 msgid "Set key passphrase or TPM SRK PIN" msgstr "" #: main.c:814 msgid "Key passphrase is fsid of file system" msgstr "" #: main.c:815 msgid "Software token type: rsa, totp or hotp" msgstr "" #: main.c:816 msgid "Software token secret" msgstr "" #: main.c:818 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" #: main.c:821 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:824 msgid "Server validation" msgstr "" #: main.c:825 msgid "Server's certificate SHA1 fingerprint" msgstr "" #: main.c:826 msgid "Do not require server SSL cert to be valid" msgstr "" #: main.c:827 msgid "Disable default system certificate authorities" msgstr "" #: main.c:828 msgid "Cert file for server verification" msgstr "" #: main.c:830 msgid "Internet connectivity" msgstr "" #: main.c:831 msgid "Set proxy server" msgstr "Sélectionner le serveur proxy" #: main.c:832 msgid "Set proxy authentication methods" msgstr "" #: main.c:833 msgid "Disable proxy" msgstr "Désactiver le proxy" #: main.c:834 msgid "Use libproxy to automatically configure proxy" msgstr "Utiliser libproxy pour configurer le proxy automatiquement" #: main.c:836 msgid "(NOTE: libproxy disabled in this build)" msgstr "" #: main.c:838 msgid "Connection retry timeout in seconds" msgstr "" #: main.c:839 msgid "Use IP when connecting to HOST" msgstr "" #: main.c:840 msgid "copy TOS / TCLASS when using DTLS" msgstr "" #: main.c:841 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:843 msgid "Authentication (two-phase)" msgstr "" #: main.c:844 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:845 msgid "Read cookie from standard input" msgstr "" #: main.c:846 msgid "Authenticate only and print login info" msgstr "" #: main.c:847 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:848 msgid "Print cookie before connecting" msgstr "" #: main.c:851 msgid "Process control" msgstr "" #: main.c:852 msgid "Continue in background after startup" msgstr "" #: main.c:853 msgid "Write the daemon's PID to this file" msgstr "" #: main.c:854 msgid "Drop privileges after connecting" msgstr "" #: main.c:857 msgid "Logging (two-phase)" msgstr "" #: main.c:859 msgid "Use syslog for progress messages" msgstr "" #: main.c:861 msgid "More output" msgstr "" #: main.c:862 msgid "Less output" msgstr "" #: main.c:863 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "" #: main.c:864 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:866 msgid "VPN configuration script" msgstr "" #: main.c:867 msgid "Use IFNAME for tunnel interface" msgstr "" #: main.c:868 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" #: main.c:869 msgid "default" msgstr "" #: main.c:871 msgid "Pass traffic to 'script' program, not tun" msgstr "" #: main.c:874 msgid "Tunnel control" msgstr "" #: main.c:875 msgid "Do not ask for IPv6 connectivity" msgstr "" #: main.c:876 msgid "XML config file" msgstr "Fichier configuration XML" #: main.c:877 msgid "Request MTU from server (legacy servers only)" msgstr "" #: main.c:878 msgid "Indicate path MTU to/from server" msgstr "" #: main.c:879 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:880 msgid "Disable all compression" msgstr "" #: main.c:881 msgid "Set minimum Dead Peer Detection interval" msgstr "" #: main.c:882 msgid "Require perfect forward secrecy" msgstr "" #: main.c:883 msgid "Disable DTLS and ESP" msgstr "" #: main.c:884 msgid "OpenSSL ciphers to support for DTLS" msgstr "" #: main.c:885 msgid "Set packet queue limit to LEN pkts" msgstr "" #: main.c:887 msgid "Local system information" msgstr "" #: main.c:888 msgid "HTTP header User-Agent: field" msgstr "" #: main.c:889 msgid "Local hostname to advertise to server" msgstr "" #: main.c:890 msgid "OS type (linux,linux-64,win,...) to report" msgstr "" #: main.c:891 msgid "reported version string during authentication" msgstr "" #: main.c:892 msgid "default:" msgstr "" #: main.c:895 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:896 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:897 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:900 msgid "Server bugs" msgstr "" #: main.c:901 msgid "Disable HTTP connection re-use" msgstr "Désactiver la réutilisation de la connexion HTTP" #: main.c:902 msgid "Do not attempt XML POST authentication" msgstr "" #: main.c:924 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:997 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "" #: main.c:1037 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "" #: main.c:1047 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "" #: main.c:1051 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "" #: main.c:1076 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "" #: main.c:1086 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "" #: main.c:1130 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "" #: main.c:1140 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:1147 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:1157 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "" #: main.c:1215 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" #: main.c:1223 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "" #: main.c:1239 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1260 #, c-format msgid "Missing colon in resolve option\n" msgstr "" #: main.c:1265 #, c-format msgid "Failed to allocate memory\n" msgstr "" #: main.c:1349 main.c:1358 #, c-format msgid "MTU %d too small\n" msgstr "" #: main.c:1388 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" #: main.c:1394 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" #: main.c:1411 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "" #: main.c:1425 #, c-format msgid "OpenConnect version %s\n" msgstr "Version %s de OpenConnect\n" #: main.c:1463 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "" #: main.c:1473 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "" #: main.c:1506 #, c-format msgid "Too many arguments on command line\n" msgstr "" #: main.c:1509 #, c-format msgid "No server specified\n" msgstr "Pas de serveur spécifié\n" #: main.c:1525 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" #: main.c:1555 #, c-format msgid "Error opening cmd pipe\n" msgstr "" #: main.c:1588 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "" #: main.c:1609 #, c-format msgid "Creating SSL connection failed\n" msgstr "" #: main.c:1625 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:1633 #, c-format msgid "Connected as %s%s%s, using SSL%s%s, with %s%s%s %s\n" msgstr "" #: main.c:1639 msgid "disabled" msgstr "" #: main.c:1639 msgid "in progress" msgstr "" #: main.c:1643 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" #: main.c:1645 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "" #: main.c:1658 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "" #: main.c:1670 #, c-format msgid "Continuing in background; pid %d\n" msgstr "" #: main.c:1687 msgid "User requested reconnect\n" msgstr "" #: main.c:1695 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "" #: main.c:1699 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:1703 msgid "User cancelled (SIGINT/SIGTERM); exiting.\n" msgstr "" #: main.c:1707 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "" #: main.c:1711 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:1730 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "" #: main.c:1738 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "" #: main.c:1797 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "" #: main.c:1816 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" #: main.c:1819 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" #: main.c:1820 #, c-format msgid " --servercert %s\n" msgstr "" #: main.c:1825 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" #: main.c:1826 main.c:1844 msgid "no" msgstr "non" #: main.c:1826 main.c:1832 msgid "yes" msgstr "oui" #: main.c:1853 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:1887 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:1890 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "" #: main.c:1911 msgid "User input required in non-interactive mode\n" msgstr "" #: main.c:2149 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:2157 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:2203 main.c:2224 #, c-format msgid "Soft token string is invalid\n" msgstr "" #: main.c:2206 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "" #: main.c:2209 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "" #: main.c:2212 #, c-format msgid "General failure in libstoken\n" msgstr "" #: main.c:2227 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "" #: main.c:2230 #, c-format msgid "General failure in liboath\n" msgstr "" #: main.c:2241 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2244 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2247 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: mainloop.c:127 #, c-format msgid "Set up tun script failed\n" msgstr "" #: mainloop.c:134 #, c-format msgid "Set up tun device failed\n" msgstr "" #: mainloop.c:265 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:273 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "" #: mainloop.c:294 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:978 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:982 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:565 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:160 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:166 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:175 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:186 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:201 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:210 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:219 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:232 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:254 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:274 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:297 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:316 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:327 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:335 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:342 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:350 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:358 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:366 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:374 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:383 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:395 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:473 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:490 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:496 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:512 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:577 oncp.c:609 oncp.c:747 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:618 oncp.c:783 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:631 oncp.c:666 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:636 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:643 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:670 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:683 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:692 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "" #: oncp.c:698 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "" #: oncp.c:705 msgid "Failed to read continuation record length\n" msgstr "" #: oncp.c:711 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "" #: oncp.c:720 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "" #: oncp.c:726 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "" #: oncp.c:767 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:776 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:829 msgid "new incoming" msgstr "" #: oncp.c:830 msgid "new outgoing" msgstr "" #: oncp.c:855 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:864 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:868 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:874 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:969 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:972 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:991 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1053 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1058 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1073 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1134 msgid "Sent ESP enable control packet\n" msgstr "" #: oncp.c:1268 msgid "Logout successful.\n" msgstr "" #: openconnect-internal.h:1119 openconnect-internal.h:1127 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "" #: openssl-dtls.c:365 msgid "Initialise DTLSv1 CTX failed\n" msgstr "" #: openssl-dtls.c:378 msgid "Set DTLS CTX version failed\n" msgstr "" #: openssl-dtls.c:395 msgid "Failed to generate DTLS key\n" msgstr "" #: openssl-dtls.c:413 msgid "Set DTLS cipher list failed\n" msgstr "" #: openssl-dtls.c:439 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:460 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: openssl-dtls.c:493 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:566 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "" #: openssl-dtls.c:603 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" #: openssl-dtls.c:654 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" #: openssl-dtls.c:661 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "" #: openssl-esp.c:87 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:101 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:157 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:202 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:210 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:241 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:43 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:49 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "" #: openssl-pkcs11.c:269 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:272 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:275 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:279 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:286 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:300 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:306 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:342 openssl-pkcs11.c:565 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:349 openssl-pkcs11.c:575 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:383 openssl-pkcs11.c:617 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:393 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "" #: openssl-pkcs11.c:401 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:412 openssl.c:713 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl-pkcs11.c:458 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:464 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:497 msgid "Certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:503 openssl-pkcs11.c:526 msgid "Certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:506 msgid "Checking EC key matches cert\n" msgstr "" #: openssl-pkcs11.c:510 msgid "Failed to allocate signature buffer\n" msgstr "" #: openssl-pkcs11.c:520 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" #: openssl-pkcs11.c:638 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "" #: openssl-pkcs11.c:649 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:678 msgid "Add key from PKCS#11 failed\n" msgstr "" #: openssl-pkcs11.c:710 openssl-pkcs11.c:716 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:147 msgid "Failed to write to SSL socket\n" msgstr "" #: openssl.c:197 openssl.c:263 msgid "Failed to read from SSL socket\n" msgstr "" #: openssl.c:292 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" #: openssl.c:317 #, c-format msgid "SSL_write failed: %d\n" msgstr "" #: openssl.c:389 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:465 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "" #: openssl.c:498 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "" #: openssl.c:548 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:563 msgid "PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:572 msgid "PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:577 msgid "PKCS#12" msgstr "" #: openssl.c:600 msgid "Can't load TPM engine.\n" msgstr "" #: openssl.c:606 msgid "Failed to init TPM engine\n" msgstr "" #: openssl.c:616 msgid "Failed to set TPM SRK password\n" msgstr "" #: openssl.c:630 msgid "Failed to load TPM private key\n" msgstr "" #: openssl.c:636 msgid "Add key from TPM failed\n" msgstr "" #: openssl.c:687 openssl.c:835 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "" #: openssl.c:697 msgid "Loading certificate failed\n" msgstr "" #: openssl.c:735 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:748 msgid "PEM file" msgstr "" #: openssl.c:777 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "" #: openssl.c:802 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:808 msgid "Loading private key failed (see above errors)\n" msgstr "" #: openssl.c:858 msgid "Failed to load X509 certificate from keystore\n" msgstr "" #: openssl.c:864 msgid "Failed to use X509 certificate from keystore\n" msgstr "" #: openssl.c:896 msgid "Failed to use private key from keystore\n" msgstr "" #: openssl.c:912 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "" #: openssl.c:936 openssl.c:951 openssl.c:972 openssl.c:1038 msgid "Loading private key failed\n" msgstr "" #: openssl.c:1032 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1049 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "" #: openssl.c:1203 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "" #: openssl.c:1210 #, c-format msgid "No match for altname '%s'\n" msgstr "" #: openssl.c:1224 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" #: openssl.c:1235 openssl.c:1381 #, c-format msgid "Matched %s address '%s'\n" msgstr "" #: openssl.c:1242 #, c-format msgid "No match for %s address '%s'\n" msgstr "" #: openssl.c:1284 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "" #: openssl.c:1289 #, c-format msgid "Matched URI '%s'\n" msgstr "" #: openssl.c:1300 #, c-format msgid "No match for URI '%s'\n" msgstr "" #: openssl.c:1315 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" #: openssl.c:1323 msgid "No subject name in peer cert!\n" msgstr "" #: openssl.c:1343 msgid "Failed to parse subject name in peer cert\n" msgstr "" #: openssl.c:1350 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "" #: openssl.c:1355 openssl.c:1389 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "" #: openssl.c:1451 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "" #: openssl.c:1589 msgid "Error in client cert notAfter field\n" msgstr "" #: openssl.c:1602 msgid "" msgstr "" #: openssl.c:1655 msgid "Create TLSv1 CTX failed\n" msgstr "" #: openssl.c:1674 msgid "SSL certificate and key do not match\n" msgstr "" #: openssl.c:1719 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "" #: openssl.c:1752 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Impossible d'ouvrir le fichier CA '%s'\n" #: openssl.c:1812 msgid "SSL connection failure\n" msgstr "" #: openssl.c:1973 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:130 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "" #: script.c:134 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "" #: script.c:507 script.c:555 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "" #: script.c:562 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "" #: script.c:570 #, c-format msgid "Script '%s' returned error %d\n" msgstr "" #: ssl.c:108 msgid "Socket connect cancelled\n" msgstr "" #: ssl.c:217 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "" #: ssl.c:221 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "" #: ssl.c:289 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "" #: ssl.c:317 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "" #: ssl.c:326 ssl.c:451 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:341 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "" #: ssl.c:342 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "" #: ssl.c:362 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "" #: ssl.c:374 msgid "Failed to allocate sockaddr storage\n" msgstr "" #: ssl.c:416 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "" #: ssl.c:434 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:446 #, c-format msgid "Failed to connect to host %s\n" msgstr "" #: ssl.c:465 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:536 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:564 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:575 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:603 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:694 msgid "No error" msgstr "" #: ssl.c:695 msgid "Keystore locked" msgstr "" #: ssl.c:696 msgid "Keystore uninitialized" msgstr "" #: ssl.c:697 msgid "System error" msgstr "" #: ssl.c:698 msgid "Protocol error" msgstr "" #: ssl.c:699 msgid "Permission denied" msgstr "" #: ssl.c:700 msgid "Key not found" msgstr "" #: ssl.c:701 msgid "Value corrupted" msgstr "" #: ssl.c:702 msgid "Undefined action" msgstr "" #: ssl.c:706 msgid "Wrong password" msgstr "" #: ssl.c:707 msgid "Unknown error" msgstr "" #: ssl.c:896 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:931 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:950 msgid "Open UDP socket" msgstr "" #: ssl.c:981 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:989 msgid "Bind UDP socket" msgstr "" #: ssl.c:996 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:1034 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:1038 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "" #: stoken.c:82 msgid "Device ID:" msgstr "" #: stoken.c:89 msgid "Password:" msgstr "" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "" #: stoken.c:185 msgid "Enter software token PIN." msgstr "" #: stoken.c:189 msgid "PIN:" msgstr "" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "" #: tun-win32.c:76 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:139 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "" #: tun-win32.c:154 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" #: tun-win32.c:186 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" #: tun-win32.c:200 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "" #: tun-win32.c:231 #, c-format msgid "Failed to open %s\n" msgstr "" #: tun-win32.c:236 #, c-format msgid "Opened tun device %s\n" msgstr "" #: tun-win32.c:244 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:250 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:271 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:283 tun-win32.c:406 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:316 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:321 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:335 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:358 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:368 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:371 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:423 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "" #: tun.c:92 msgid "Can't push IP" msgstr "" #: tun.c:102 msgid "Can't set ifname" msgstr "" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "" #: tun.c:139 msgid "open /dev/tun" msgstr "ouvrir /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "" #: tun.c:205 msgid "open net" msgstr "" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "" #: tun.c:479 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:484 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:488 msgid "setpgid" msgstr "" #: tun.c:493 msgid "execl" msgstr "" #: tun.c:498 msgid "(script)" msgstr "(script)" #: tun.c:566 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "L'hôte \"%s\" a pour adresse \"%s\"\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:174 msgid "select applet command" msgstr "" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:274 msgid "unlock command" msgstr "" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:412 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:619 msgid "calculate command" msgstr "" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-8.05/po/en_GB.po0000664000076400007640000030655013470043037017477 0ustar00dwoodhoudwoodhou00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: # Margie Foster , 2011. msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2019-05-18 10:44-0700\n" "PO-Revision-Date: 2012-11-15 08:31+0000\n" "Last-Translator: David Woodhouse \n" "Language-Team: English (United Kingdom) (http://www.transifex.com/projects/p/" "meego/language/en_GB/)\n" "Language: en_GB\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: auth-globalprotect.c:108 #, c-format msgid "" "SAML login is required via %s to this URL:\n" "\t%s" msgstr "" #: auth-globalprotect.c:110 msgid "Please enter your username and password" msgstr "" #: auth-globalprotect.c:119 msgid "Username" msgstr "" #: auth-globalprotect.c:134 msgid "Password" msgstr "" #: auth-globalprotect.c:181 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:260 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:266 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:272 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:315 msgid "Please select GlobalProtect gateway." msgstr "" #: auth-globalprotect.c:325 msgid "GATEWAY:" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:379 #, c-format msgid "%d gateway servers available:\n" msgstr "" #: auth-globalprotect.c:400 #, c-format msgid " %s (%s)\n" msgstr "" #: auth-globalprotect.c:484 auth-juniper.c:730 auth.c:669 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth-globalprotect.c:584 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" #: auth-globalprotect.c:636 oncp.c:1266 msgid "Logout failed.\n" msgstr "" #: auth-globalprotect.c:638 msgid "Logout successful\n" msgstr "" #: auth-juniper.c:142 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:153 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:163 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:236 auth.c:408 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Cannot handle form method='%s', action='%s'\n" #: auth-juniper.c:267 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "" #: auth-juniper.c:337 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:359 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:397 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:411 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:418 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:425 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:432 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:439 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:445 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:452 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:481 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:650 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:667 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:675 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:713 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:716 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth.c:96 msgid "Form choice has no name\n" msgstr "Form choice has no name\n" #: auth.c:181 #, c-format msgid "name %s not input\n" msgstr "name %s not input\n" #: auth.c:188 msgid "No input type in form\n" msgstr "No input type in form\n" #: auth.c:200 msgid "No input name in form\n" msgstr "No input name in form\n" #: auth.c:230 #, c-format msgid "Unknown input type %s in form\n" msgstr "Unknown input type %s in form\n" #: auth.c:540 gpst.c:214 msgid "Empty response from server\n" msgstr "" #: auth.c:551 gpst.c:289 msgid "Failed to parse server response\n" msgstr "Failed to parse server response\n" #: auth.c:553 gpst.c:291 #, c-format msgid "Response was:%s\n" msgstr "Response was:%s\n" #: auth.c:575 msgid "Received when not expected.\n" msgstr "" #: auth.c:603 msgid "XML response has no \"auth\" node\n" msgstr "" #: auth.c:636 msgid "Asked for password but '--no-passwd' set\n" msgstr "Asked for password but '--no-passwd' set\n" #: auth.c:925 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:931 cstp.c:335 http.c:916 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Failed to open HTTPS connection to %s\n" #: auth.c:952 msgid "Failed to send GET request for new config\n" msgstr "Failed to send GET request for new config\n" #: auth.c:976 msgid "Downloaded config file did not match intended SHA1\n" msgstr "Downloaded config file did not match intended SHA1\n" #: auth.c:981 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:992 auth.c:1044 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" #: auth.c:1003 mainloop.c:144 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "" #: auth.c:1010 mainloop.c:151 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "" #: auth.c:1017 mainloop.c:158 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "" #: auth.c:1024 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "" #: auth.c:1031 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Failed to change to CSD home directory '%s': %s\n" #: auth.c:1053 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:1060 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" #: auth.c:1067 msgid "Trying to run Linux CSD trojan script.\n" msgstr "Trying to run Linux CSD trojan script.\n" #: auth.c:1094 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1102 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Failed to open temporary CSD script file: %s\n" #: auth.c:1111 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Failed to write temporary CSD script file: %s\n" #: auth.c:1141 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Warning: you are running insecure CSD code with root privileges\n" "» Use command line option \"--csd-user\"\n" #: auth.c:1189 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Failed to exec CSD script %s\n" #: auth.c:1221 msgid "Unknown response from server\n" msgstr "Unknown response from server\n" #: auth.c:1342 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1346 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" #: auth.c:1362 msgid "XML POST enabled\n" msgstr "" #: auth.c:1405 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Refreshing %s after 1 second...\n" #: compat.c:207 #, c-format msgid "(error 0x%lx)" msgstr "" #: compat.c:210 msgid "(Error while describing error!)" msgstr "" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:112 gpst.c:341 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:134 gpst.c:360 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:281 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:312 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:328 http.c:384 msgid "Error fetching HTTPS response\n" msgstr "Error fetching HTTPS response\n" #: cstp.c:355 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "VPN service unavailable; reason: %s\n" #: cstp.c:360 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Got inappropriate HTTP CONNECT response: %s\n" #: cstp.c:367 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Got CONNECT response: %s\n" #: cstp.c:396 cstp.c:404 msgid "No memory for options\n" msgstr "No memory for options\n" #: cstp.c:413 http.c:444 msgid "" msgstr "" #: cstp.c:433 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" #: cstp.c:450 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "" #: cstp.c:468 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:510 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Unknown CSTP-Content-Encoding %s\n" #: cstp.c:585 msgid "No MTU received. Aborting\n" msgstr "No MTU received. Aborting\n" #: cstp.c:593 gpst.c:641 msgid "No IP address received. Aborting\n" msgstr "No IP address received. Aborting\n" #: cstp.c:599 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: cstp.c:605 gpst.c:648 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Reconnect gave different Legacy IP address (%s != %s)\n" #: cstp.c:614 gpst.c:657 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "Reconnect gave different Legacy IP netmask (%s != %s)\n" #: cstp.c:622 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Reconnect gave different IPv6 address (%s != %s)\n" #: cstp.c:630 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Reconnect gave different IPv6 netmask (%s != %s)\n" #: cstp.c:638 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP connected. DPD %d, Keepalive %d\n" #: cstp.c:640 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "" #: cstp.c:702 msgid "Compression setup failed\n" msgstr "Compression setup failed\n" #: cstp.c:719 msgid "Allocation of deflate buffer failed\n" msgstr "Allocation of deflate buffer failed\n" #: cstp.c:781 msgid "inflate failed\n" msgstr "inflate failed\n" #: cstp.c:804 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:817 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:824 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:829 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:849 #, c-format msgid "deflate failed %d\n" msgstr "deflate failed %d\n" #: cstp.c:922 dtls.c:281 dtls.c:740 esp.c:129 gpst.c:1042 mainloop.c:69 #: oncp.c:914 msgid "Allocation failed\n" msgstr "" #: cstp.c:933 gpst.c:1055 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: cstp.c:946 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Unexpected packet length. SSL_read returned %d but packet is\n" #: cstp.c:960 msgid "Got CSTP DPD request\n" msgstr "Got CSTP DPD request\n" #: cstp.c:966 msgid "Got CSTP DPD response\n" msgstr "Got CSTP DPD response\n" #: cstp.c:971 msgid "Got CSTP Keepalive\n" msgstr "Got CSTP Keepalive\n" #: cstp.c:976 oncp.c:1003 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Received uncompressed data packet of %d bytes\n" #: cstp.c:993 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Received server disconnect: %02x '%s'\n" #: cstp.c:996 msgid "Received server disconnect\n" msgstr "" #: cstp.c:1004 msgid "Compressed packet received in !deflate mode\n" msgstr "Compressed packet received in !deflate mode\n" #: cstp.c:1013 msgid "received server terminate packet\n" msgstr "received server terminate packet\n" #: cstp.c:1020 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1063 gpst.c:1142 oncp.c:1121 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL wrote too few bytes! Asked for %d, sent %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1091 oncp.c:1155 msgid "CSTP rekey due\n" msgstr "CSTP rekey due\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1098 oncp.c:1162 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: cstp.c:1109 oncp.c:1173 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "CSTP Dead Peer Detection detected dead peer!\n" #: cstp.c:1113 gpst.c:1166 oncp.c:1091 oncp.c:1177 msgid "Reconnect failed\n" msgstr "Reconnect failed\n" #: cstp.c:1129 oncp.c:1193 msgid "Send CSTP DPD\n" msgstr "Send CSTP DPD\n" #: cstp.c:1141 oncp.c:1204 msgid "Send CSTP Keepalive\n" msgstr "Send CSTP Keepalive\n" #: cstp.c:1166 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1177 oncp.c:1238 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Sending uncompressed data packet of %d bytes\n" #: cstp.c:1216 #, c-format msgid "Send BYE packet: %s\n" msgstr "Send BYE packet: %s\n" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:113 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:119 msgid "No DTLS address\n" msgstr "No DTLS address\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:126 msgid "Server offered no DTLS cipher option\n" msgstr "Server offered no DTLS cipher option\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:133 msgid "No DTLS when connected via proxy\n" msgstr "No DTLS when connected via proxy\n" #: dtls.c:200 #, c-format msgid "DTLS option %s : %s\n" msgstr "DTLS option %s : %s\n" #: dtls.c:239 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:265 msgid "Attempt new DTLS connection\n" msgstr "Attempt new DTLS connection\n" #: dtls.c:292 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Received DTLS packet 0x%02x of %d bytes\n" #: dtls.c:306 msgid "Got DTLS DPD request\n" msgstr "Got DTLS DPD request\n" #: dtls.c:312 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Failed to send DPD response. Expect disconnect\n" #: dtls.c:316 msgid "Got DTLS DPD response\n" msgstr "Got DTLS DPD response\n" #: dtls.c:320 msgid "Got DTLS Keepalive\n" msgstr "Got DTLS Keepalive\n" #: dtls.c:326 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:334 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Unknown DTLS packet type %02x, len %d\n" #: dtls.c:356 msgid "DTLS rekey due\n" msgstr "DTLS rekey due\n" #: dtls.c:363 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: dtls.c:372 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "DTLS Dead Peer Detection detected dead peer!\n" #: dtls.c:378 msgid "Send DTLS DPD\n" msgstr "Send DTLS DPD\n" #: dtls.c:383 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Failed to send DPD request. Expect disconnect\n" #: dtls.c:396 msgid "Send DTLS Keepalive\n" msgstr "Send DTLS Keepalive\n" #: dtls.c:401 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Failed to send keepalive request. Expect disconnect\n" #: dtls.c:432 tun.c:541 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" #: dtls.c:439 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "" #: dtls.c:443 msgid "UDP setsockopt" msgstr "" #: dtls.c:474 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "DTLS got write error %d. Falling back to SSL\n" #: dtls.c:488 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "DTLS got write error: %s. Falling back to SSL\n" #: dtls.c:503 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "Sent DTLS packet of %d bytes; DTLS send returned %d\n" #: dtls.c:531 #, c-format msgid "Initiating IPv4 MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:551 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" #: dtls.c:555 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" #: dtls.c:564 #, c-format msgid "Sending MTU DPD probe (%u bytes, min=%u, max=%u)\n" msgstr "" #: dtls.c:568 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "" #: dtls.c:582 dtls.c:690 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" #: dtls.c:594 #, c-format msgid "Timeout while waiting for DPD response; trying %d\n" msgstr "" #: dtls.c:601 dtls.c:682 msgid "Timeout while waiting for DPD response; resending probe.\n" msgstr "" #: dtls.c:608 dtls.c:709 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "" #: dtls.c:613 #, c-format msgid "Received MTU DPD probe (%u bytes of %u)\n" msgstr "" #: dtls.c:651 msgid "Initiating IPv6 MTU detection\n" msgstr "" #: dtls.c:666 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:670 #, c-format msgid "Failed to send DPD request (%d)\n" msgstr "" #: dtls.c:695 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:759 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "" #: dtls.c:762 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" #: esp.c:63 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:66 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:69 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:87 msgid "incoming" msgstr "" #: esp.c:88 msgid "outgoing" msgstr "" #: esp.c:90 esp.c:113 msgid "Send ESP probes\n" msgstr "" #: esp.c:138 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:155 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:161 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:174 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:181 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:193 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:202 msgid "ESP session established with server\n" msgstr "" #: esp.c:213 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:219 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:225 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:239 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:243 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:251 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:258 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:278 #, c-format msgid "Failed to encrypt ESP packet: %d\n" msgstr "" #: esp.c:294 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:301 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:307 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-dtls.c:190 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "" #: gnutls-dtls.c:198 msgid "Failed to generate DTLS priority string\n" msgstr "" #: gnutls-dtls.c:207 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "" #: gnutls-dtls.c:216 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "" #: gnutls-dtls.c:240 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "" #: gnutls-dtls.c:253 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:267 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:275 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "" #: gnutls-dtls.c:309 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Unknown DTLS parameters for requested CipherSuite '%s'\n" #: gnutls-dtls.c:324 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "Failed to set DTLS priority: %s\n" #: gnutls-dtls.c:345 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Failed to set DTLS session parameters: %s\n" #: gnutls-dtls.c:373 openssl-dtls.c:534 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "" #: gnutls-dtls.c:382 openssl-dtls.c:545 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "" #: gnutls-dtls.c:392 openssl-dtls.c:554 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" #: gnutls-dtls.c:405 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Failed to set DTLS MTU: %s\n" #: gnutls-dtls.c:416 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: gnutls-dtls.c:422 openssl-dtls.c:572 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "" #: gnutls-dtls.c:437 openssl-dtls.c:653 openssl-dtls.c:657 msgid "DTLS handshake timed out\n" msgstr "DTLS handshake timed out\n" #: gnutls-dtls.c:440 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "DTLS handshake failed: %s\n" #: gnutls-dtls.c:444 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:121 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:132 msgid "Failed to generate ESP IV\n" msgstr "" #: gnutls-esp.c:161 gnutls-esp.c:217 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:168 openssl-esp.c:192 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:180 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:209 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:95 openssl.c:154 msgid "SSL write cancelled\n" msgstr "SSL write cancelled\n" #: gnutls.c:99 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "Failed to write to SSL socket: %s\n" #: gnutls.c:145 gnutls.c:237 openssl.c:204 openssl.c:271 msgid "SSL read cancelled\n" msgstr "SSL read cancelled\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:158 msgid "SSL socket closed uncleanly\n" msgstr "" #: gnutls.c:168 gnutls.c:246 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "Failed to read from SSL socket: %s\n" #: gnutls.c:266 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "SSL read error: %s; reconnecting.\n" #: gnutls.c:302 #, c-format msgid "SSL send failed: %s\n" msgstr "SSL send failed: %s\n" #: gnutls.c:315 msgid "Could not extract expiration time of certificate\n" msgstr "Could not extract expiration time of certificate\n" #: gnutls.c:320 openssl.c:1592 msgid "Client certificate has expired at" msgstr "Client certificate has expired at" #: gnutls.c:322 openssl.c:1597 msgid "Client certificate expires soon at" msgstr "Client certificate expires soon at" #: gnutls.c:371 openssl.c:771 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Failed to load item '%s' from keystore: %s\n" #: gnutls.c:384 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Failed to open key/certificate file %s: %s\n" #: gnutls.c:391 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Failed to stat key/certificate file %s: %s\n" #: gnutls.c:400 msgid "Failed to allocate certificate buffer\n" msgstr "Failed to allocate certificate buffer\n" #: gnutls.c:408 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Failed to read certificate into memory: %s\n" #: gnutls.c:439 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Failed to setup PKCS#12 data structure: %s\n" #: gnutls.c:462 openssl.c:534 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Failed to decrypt PKCS#12 certificate file\n" #: gnutls.c:466 openssl.c:537 msgid "Enter PKCS#12 pass phrase:" msgstr "Enter PKCS#12 pass phrase:" #: gnutls.c:489 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Failed to process PKCS#12 file: %s\n" #: gnutls.c:501 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Failed to load PKCS#12 certificate: %s\n" #: gnutls.c:584 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Importing X509 certificate failed: %s\n" #: gnutls.c:594 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Setting PKCS#11 certificate failed: %s\n" #: gnutls.c:628 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Could not initialise MD5 hash: %s\n" #: gnutls.c:638 #, c-format msgid "MD5 hash error: %s\n" msgstr "MD5 hash error: %s\n" #: gnutls.c:696 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "Missing DEK-Info: header from OpenSSL encrypted key\n" #: gnutls.c:703 msgid "Cannot determine PEM encryption type\n" msgstr "Cannot determine PEM encryption type\n" #: gnutls.c:716 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Unsupported PEM encryption type: %s\n" #: gnutls.c:741 gnutls.c:754 msgid "Invalid salt in encrypted PEM file\n" msgstr "Invalid salt in encrypted PEM file\n" #: gnutls.c:778 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Error base64-decoding encrypted PEM file: %s\n" #: gnutls.c:786 msgid "Encrypted PEM file too short\n" msgstr "Encrypted PEM file too short\n" #: gnutls.c:814 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "Failed to initialise cipher for decrypting PEM file: %s\n" #: gnutls.c:825 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Failed to decrypt PEM key: %s\n" #: gnutls.c:877 msgid "Decrypting PEM key failed\n" msgstr "Decrypting PEM key failed\n" #: gnutls.c:881 gnutls.c:1405 openssl.c:458 msgid "Enter PEM pass phrase:" msgstr "Enter PEM pass phrase:" #: gnutls.c:942 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:949 msgid "This binary built without PKCS#11 support\n" msgstr "This binary built without PKCS#11 support\n" #: gnutls.c:993 openssl-pkcs11.c:407 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Using PKCS#11 certificate %s\n" #: gnutls.c:994 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1012 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Error loading certificate from PKCS#11: %s\n" #: gnutls.c:1013 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1024 openssl.c:827 #, c-format msgid "Using certificate file %s\n" msgstr "Using certificate file %s\n" #: gnutls.c:1052 msgid "PKCS#11 file contained no certificate\n" msgstr "PKCS#11 file contained no certificate\n" #: gnutls.c:1078 msgid "No certificate found in file" msgstr "No certificate found in file" #: gnutls.c:1083 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Loading certificate failed: %s\n" #: gnutls.c:1098 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1103 gnutls.c:1271 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Error initialising private key structure: %s\n" #: gnutls.c:1114 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1125 gnutls.c:1219 gnutls.c:1247 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1130 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Error initialising PKCS#11 key structure: %s\n" #: gnutls.c:1259 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Error importing PKCS#11 URL %s: %s\n" #: gnutls.c:1266 openssl-pkcs11.c:644 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Using PKCS#11 key %s\n" #: gnutls.c:1281 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "Error importing PKCS#11 key into private key structure: %s\n" #: gnutls.c:1299 #, c-format msgid "Using private key file %s\n" msgstr "Using private key file %s\n" #: gnutls.c:1310 openssl.c:651 msgid "This version of OpenConnect was built without TPM support\n" msgstr "This version of OpenConnect was built without TPM support\n" #: gnutls.c:1326 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1347 msgid "Failed to interpret PEM file\n" msgstr "Failed to interpret PEM file\n" #: gnutls.c:1366 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Failed to load PKCS#1 private key: %s\n" #: gnutls.c:1379 gnutls.c:1393 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Failed to load private key as PKCS#8: %s\n" #: gnutls.c:1401 gnutls.c:1434 openssl.c:1002 openssl.c:1012 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Failed to decrypt PKCS#8 certificate file\n" #: gnutls.c:1426 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Failed to determine type of private key %s\n" #: gnutls.c:1438 openssl.c:1008 msgid "Enter PKCS#8 pass phrase:" msgstr "Enter PKCS#8 pass phrase:" #: gnutls.c:1454 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Failed to get key ID: %s\n" #: gnutls.c:1499 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Error signing test data with private key: %s\n" #: gnutls.c:1514 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Error validating signature against certificate: %s\n" #: gnutls.c:1539 msgid "No SSL certificate found to match private key\n" msgstr "No SSL certificate found to match private key\n" #: gnutls.c:1551 openssl.c:560 openssl.c:709 #, c-format msgid "Using client certificate '%s'\n" msgstr "Using client certificate '%s'\n" #: gnutls.c:1558 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "Setting certificate revocation list failed: %s\n" #: gnutls.c:1579 gnutls.c:1589 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1625 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" #: gnutls.c:1648 msgid "Got no issuer from PKCS#11\n" msgstr "" #: gnutls.c:1653 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "" #: gnutls.c:1679 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Failed to allocate memory for supporting certificates\n" #: gnutls.c:1702 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Adding supporting CA '%s'\n" #: gnutls.c:1724 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1748 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Setting certificate failed: %s\n" #: gnutls.c:1941 msgid "Server presented no certificate\n" msgstr "Server presented no certificate\n" #: gnutls.c:1949 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" #: gnutls.c:1954 openssl.c:1515 msgid "Server presented different cert on rehandshake\n" msgstr "" #: gnutls.c:1959 openssl.c:1518 msgid "Server presented identical cert on rehandshake\n" msgstr "" #: gnutls.c:1965 msgid "Error initialising X509 cert structure\n" msgstr "Error initialising X509 cert structure\n" #: gnutls.c:1971 msgid "Error importing server's cert\n" msgstr "Error importing server's cert\n" #: gnutls.c:1980 main.c:1794 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:1985 msgid "Error checking server cert status\n" msgstr "Error checking server cert status\n" #: gnutls.c:1990 msgid "certificate revoked" msgstr "certificate revoked" #: gnutls.c:1992 msgid "signer not found" msgstr "signer not found" #: gnutls.c:1994 msgid "signer not a CA certificate" msgstr "signer not a CA certificate" #: gnutls.c:1996 msgid "insecure algorithm" msgstr "insecure algorithm" #: gnutls.c:1998 msgid "certificate not yet activated" msgstr "certificate not yet activated" #: gnutls.c:2000 msgid "certificate expired" msgstr "certificate expired" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2005 msgid "signature verification failed" msgstr "signature verification failed" #: gnutls.c:2054 openssl.c:1399 openssl.c:1551 msgid "certificate does not match hostname" msgstr "certificate does not match hostname" #: gnutls.c:2059 openssl.c:1398 openssl.c:1557 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Server certificate verify failed: %s\n" #: gnutls.c:2126 msgid "Failed to allocate memory for cafile certs\n" msgstr "Failed to allocate memory for cafile certs\n" #: gnutls.c:2147 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Failed to read certs from cafile: %s\n" #: gnutls.c:2163 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Failed to open CA file '%s': %s\n" #: gnutls.c:2176 openssl.c:1679 msgid "Loading certificate failed. Aborting.\n" msgstr "Loading certificate failed. Aborting.\n" #: gnutls.c:2237 #, c-format msgid "Failed to set TLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2249 openssl.c:1796 #, c-format msgid "SSL negotiation with %s\n" msgstr "SSL negotiation with %s\n" #: gnutls.c:2296 openssl.c:1822 msgid "SSL connection cancelled\n" msgstr "SSL connection cancelled\n" #: gnutls.c:2303 #, c-format msgid "SSL connection failure: %s\n" msgstr "SSL connection failure: %s\n" #: gnutls.c:2312 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "GnuTLS non-fatal return during handshake: %s\n" #: gnutls.c:2318 openssl.c:1839 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "Connected to HTTPS on %s\n" #: gnutls.c:2321 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "" #: gnutls.c:2483 openssl-pkcs11.c:199 #, c-format msgid "PIN required for %s" msgstr "PIN required for %s" #: gnutls.c:2487 openssl-pkcs11.c:202 msgid "Wrong PIN" msgstr "Wrong PIN" #: gnutls.c:2490 msgid "This is the final try before locking!" msgstr "This is the final try before locking!" #: gnutls.c:2492 msgid "Only a few tries left before locking!" msgstr "Only a few tries left before locking!" #: gnutls.c:2497 openssl-pkcs11.c:206 msgid "Enter PIN:" msgstr "Enter PIN:" #: gnutls.c:2583 openssl.c:1967 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2592 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:54 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "TPM sign function called for %d bytes.\n" #: gnutls_tpm.c:61 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Failed to create TPM hash object: %s\n" #: gnutls_tpm.c:68 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Failed to set value in TPM hash object: %s\n" #: gnutls_tpm.c:78 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "TPM hash signature failed: %s\n" #: gnutls_tpm.c:100 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Error decoding TSS key blob: %s\n" #: gnutls_tpm.c:108 gnutls_tpm.c:119 gnutls_tpm.c:132 msgid "Error in TSS key blob\n" msgstr "Error in TSS key blob\n" #: gnutls_tpm.c:139 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Failed to create TPM context: %s\n" #: gnutls_tpm.c:146 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Failed to connect TPM context: %s\n" #: gnutls_tpm.c:154 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Failed to load TPM SRK key: %s\n" #: gnutls_tpm.c:161 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Failed to load TPM SRK policy object: %s\n" #: gnutls_tpm.c:182 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Failed to set TPM PIN: %s\n" #: gnutls_tpm.c:198 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Failed to load TPM key blob: %s\n" #: gnutls_tpm.c:205 msgid "Enter TPM SRK PIN:" msgstr "Enter TPM SRK PIN:" #: gnutls_tpm.c:226 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Failed to create key policy object: %s\n" #: gnutls_tpm.c:234 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Failed to assign policy to key: %s\n" #: gnutls_tpm.c:240 msgid "Enter TPM key PIN:" msgstr "Enter TPM key PIN:" #: gnutls_tpm.c:251 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Failed to set key PIN: %s\n" #: gnutls_tpm2.c:92 gnutls_tpm2_esys.c:474 gnutls_tpm2_ibm.c:419 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:198 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:208 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:217 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:225 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:231 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:249 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:270 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:275 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:384 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2_esys.c:173 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:189 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:190 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:191 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:192 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:196 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:201 gnutls_tpm2_ibm.c:262 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:209 gnutls_tpm2_esys.c:303 gnutls_tpm2_esys.c:374 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:221 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:226 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:245 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:250 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:258 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:261 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:274 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:295 gnutls_tpm2_ibm.c:278 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:309 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:317 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:323 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:333 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:363 gnutls_tpm2_ibm.c:363 gnutls_tpm2_ibm.c:450 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:395 #, c-format msgid "TPM2 RSA sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:414 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:420 gnutls_tpm2_esys.c:500 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:464 gnutls_tpm2_ibm.c:405 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:494 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:532 gnutls_tpm2_ibm.c:485 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:546 gnutls_tpm2_ibm.c:502 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:555 gnutls_tpm2_ibm.c:512 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:569 gnutls_tpm2_ibm.c:523 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:54 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:226 #, c-format msgid "%s\n" msgstr "" #: gpst.c:229 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:417 #, c-format msgid "Unknown ESP %s algorithm: %s" msgstr "" #: gpst.c:477 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: gpst.c:483 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:487 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:498 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:551 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:560 oncp.c:835 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: gpst.c:627 msgid "ESP disabled" msgstr "" #: gpst.c:629 msgid "No ESP keys received" msgstr "" #: gpst.c:631 msgid "ESP support not available in this build" msgstr "" #: gpst.c:635 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:680 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:702 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:711 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:719 #, c-format msgid "Got inappropriate HTTP GET-tunnel response: %.*s\n" msgstr "" #: gpst.c:861 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" "VPN connectivity may be disabled or limited without HIP report submission.\n" "You need to provide a --csd-wrapper argument with the HIP report submission " "script.\n" msgstr "" #: gpst.c:871 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:900 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:905 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:911 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:913 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:942 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:966 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:972 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:999 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1015 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1051 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1072 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1082 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1086 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1092 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: gpst.c:1101 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1109 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1157 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1162 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1182 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1202 #, c-format msgid "Sending data packet of %d bytes\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1165 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "" #: http.c:319 msgid "No memory for allocating cookies\n" msgstr "No memory for allocating cookies\n" #: http.c:394 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Failed to parse HTTP response '%s'\n" #: http.c:400 #, c-format msgid "Got HTTP response: %s\n" msgstr "Got HTTP response: %s\n" #: http.c:408 msgid "Error processing HTTP response\n" msgstr "Error processing HTTP response\n" #: http.c:415 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Ignoring unknown HTTP response line '%s'\n" #: http.c:435 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Invalid cookie offered: %s\n" #: http.c:454 msgid "SSL certificate authentication failed\n" msgstr "SSL certificate authentication failed\n" #: http.c:485 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Response body has negative size (%d)\n" #: http.c:496 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Unknown Transfer-Encoding: %s\n" #. Now the body, if there is one #: http.c:515 #, c-format msgid "HTTP body %s (%d)\n" msgstr "HTTP body %s (%d)\n" #: http.c:529 http.c:556 msgid "Error reading HTTP response body\n" msgstr "Error reading HTTP response body\n" #: http.c:542 msgid "Error fetching chunk header\n" msgstr "Error fetching chunk header\n" #: http.c:566 msgid "Error fetching HTTP response body\n" msgstr "Error fetching HTTP response body\n" #: http.c:569 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "Error in chunked decoding. Expected '', got: '%s'" #: http.c:581 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Cannot receive HTTP 1.0 body without closing connection\n" #: http.c:708 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Failed to parse redirected URL '%s': %s\n" #: http.c:732 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Cannot follow redirection to non-https URL '%s'\n" #: http.c:760 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Allocating new path for relative redirect failed: %s\n" #: http.c:973 oncp.c:591 #, c-format msgid "Unexpected %d result from server\n" msgstr "Unexpected %d result from server\n" #: http.c:1021 msgid "request granted" msgstr "request granted" #: http.c:1022 msgid "general failure" msgstr "general failure" #: http.c:1023 msgid "connection not allowed by ruleset" msgstr "connection not allowed by ruleset" #: http.c:1024 msgid "network unreachable" msgstr "network unreachable" #: http.c:1025 msgid "host unreachable" msgstr "host unreachable" #: http.c:1026 msgid "connection refused by destination host" msgstr "connection refused by destination host" #: http.c:1027 msgid "TTL expired" msgstr "TTL expired" #: http.c:1028 msgid "command not supported / protocol error" msgstr "command not supported / protocol error" #: http.c:1029 msgid "address type not supported" msgstr "address type not supported" #: http.c:1039 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1047 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1062 http.c:1118 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Error writing auth request to SOCKS proxy: %s\n" #: http.c:1070 http.c:1125 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Error reading auth response from SOCKS proxy: %s\n" #: http.c:1077 http.c:1131 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Unexpected auth response from SOCKS proxy: %02x %02x\n" #: http.c:1083 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1087 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1143 http.c:1150 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1156 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1163 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1170 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1176 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Requesting SOCKS proxy connection to %s:%d\n" #: http.c:1191 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Error writing connect request to SOCKS proxy: %s\n" #: http.c:1199 http.c:1241 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Error reading connect response from SOCKS proxy: %s\n" #: http.c:1205 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Unexpected connect response from SOCKS proxy: %02x %02x...\n" #: http.c:1213 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "SOCKS proxy error %02x: %s\n" #: http.c:1217 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "SOCKS proxy error %02x\n" #: http.c:1234 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Unexpected address type %02x in SOCKS connect response\n" #: http.c:1257 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Requesting HTTP proxy connection to %s:%d\n" #: http.c:1292 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Sending proxy request failed: %s\n" #: http.c:1315 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1334 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Unknown proxy type '%s'\n" #: http.c:1383 msgid "Only http or socks(5) proxies supported\n" msgstr "Only http or socks(5) proxies supported\n" #: library.c:112 msgid "Cisco AnyConnect or openconnect" msgstr "" #: library.c:113 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "" #: library.c:129 msgid "Juniper Network Connect" msgstr "" #: library.c:130 msgid "Compatible with Juniper Network Connect / Pulse Secure SSL VPN" msgstr "" #: library.c:148 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:149 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:211 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:233 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Built against SSL library with no Cisco DTLS support\n" #: library.c:656 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Failed to parse server URL '%s'\n" #: library.c:662 msgid "Only https:// permitted for server URL\n" msgstr "Only https:// permitted for server URL\n" #: library.c:1056 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "" #: library.c:1085 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" #: library.c:1146 msgid "No form handler; cannot authenticate.\n" msgstr "No form handler; cannot authenticate.\n" #: main.c:340 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:353 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:388 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:401 #, c-format msgid "fgetws() failed: %s\n" msgstr "" #: main.c:416 main.c:429 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:423 main.c:689 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Allocation failure for string from stdin\n" #: main.c:584 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:593 #, c-format msgid "Using OpenSSL. Features present:" msgstr "Using OpenSSL. Features present:" #: main.c:595 #, c-format msgid "Using GnuTLS. Features present:" msgstr "Using GnuTLS. Features present:" #: main.c:608 msgid "OpenSSL ENGINE not present" msgstr "OpenSSL ENGINE not present" #: main.c:647 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" #: main.c:657 #, c-format msgid "Supported protocols:" msgstr "" #: main.c:659 main.c:675 msgid " (default)" msgstr "" #: main.c:672 msgid "Set VPN protocol" msgstr "" #: main.c:713 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:754 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:760 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:780 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "" #: main.c:793 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Usage: openconnect [options] \n" #: main.c:794 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" #: main.c:796 msgid "Read options from config file" msgstr "Read options from config file" #: main.c:797 msgid "Report version number" msgstr "Report version number" #: main.c:798 msgid "Display help text" msgstr "Display help text" #: main.c:802 msgid "Authentication" msgstr "" #: main.c:803 msgid "Set login username" msgstr "Set login username" #: main.c:804 msgid "Disable password/SecurID authentication" msgstr "Disable password/SecurID authentication" #: main.c:805 msgid "Do not expect user input; exit if it is required" msgstr "Do not expect user input; exit if it is required" #: main.c:806 msgid "Read password from standard input" msgstr "Read password from standard input" #: main.c:807 msgid "Choose authentication login selection" msgstr "Choose authentication login selection" #: main.c:808 msgid "Provide authentication form responses" msgstr "" #: main.c:809 msgid "Use SSL client certificate CERT" msgstr "Use SSL client certificate CERT" #: main.c:810 msgid "Use SSL private key file KEY" msgstr "Use SSL private key file KEY" #: main.c:811 msgid "Warn when certificate lifetime < DAYS" msgstr "Warn when certificate lifetime < DAYS" #: main.c:812 msgid "Set login usergroup" msgstr "Set login usergroup" #: main.c:813 msgid "Set key passphrase or TPM SRK PIN" msgstr "Set key passphrase or TPM SRK PIN" #: main.c:814 msgid "Key passphrase is fsid of file system" msgstr "Key passphrase is fsid of file system" #: main.c:815 msgid "Software token type: rsa, totp or hotp" msgstr "" #: main.c:816 msgid "Software token secret" msgstr "" #: main.c:818 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" #: main.c:821 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:824 msgid "Server validation" msgstr "" #: main.c:825 msgid "Server's certificate SHA1 fingerprint" msgstr "Server's certificate SHA1 fingerprint" #: main.c:826 msgid "Do not require server SSL cert to be valid" msgstr "Do not require server SSL cert to be valid" #: main.c:827 msgid "Disable default system certificate authorities" msgstr "" #: main.c:828 msgid "Cert file for server verification" msgstr "Cert file for server verification" #: main.c:830 msgid "Internet connectivity" msgstr "" #: main.c:831 msgid "Set proxy server" msgstr "Set proxy server" #: main.c:832 msgid "Set proxy authentication methods" msgstr "" #: main.c:833 msgid "Disable proxy" msgstr "Disable proxy" #: main.c:834 msgid "Use libproxy to automatically configure proxy" msgstr "Use libproxy to automatically configure proxy" #: main.c:836 msgid "(NOTE: libproxy disabled in this build)" msgstr "(NOTE: libproxy disabled in this build)" #: main.c:838 msgid "Connection retry timeout in seconds" msgstr "Connection retry timeout in seconds" #: main.c:839 msgid "Use IP when connecting to HOST" msgstr "" #: main.c:840 msgid "copy TOS / TCLASS when using DTLS" msgstr "" #: main.c:841 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:843 msgid "Authentication (two-phase)" msgstr "" #: main.c:844 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:845 msgid "Read cookie from standard input" msgstr "Read cookie from standard input" #: main.c:846 msgid "Authenticate only and print login info" msgstr "Authenticate only and print login info" #: main.c:847 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:848 msgid "Print cookie before connecting" msgstr "" #: main.c:851 msgid "Process control" msgstr "" #: main.c:852 msgid "Continue in background after startup" msgstr "Continue in background after startup" #: main.c:853 msgid "Write the daemon's PID to this file" msgstr "Write the daemon's PID to this file" #: main.c:854 msgid "Drop privileges after connecting" msgstr "Drop privileges after connecting" #: main.c:857 msgid "Logging (two-phase)" msgstr "" #: main.c:859 msgid "Use syslog for progress messages" msgstr "Use syslog for progress messages" #: main.c:861 msgid "More output" msgstr "More output" #: main.c:862 msgid "Less output" msgstr "Less output" #: main.c:863 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "" #: main.c:864 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:866 msgid "VPN configuration script" msgstr "" #: main.c:867 msgid "Use IFNAME for tunnel interface" msgstr "Use IFNAME for tunnel interface" #: main.c:868 msgid "Shell command line for using a vpnc-compatible config script" msgstr "Shell command line for using a vpnc-compatible config script" #: main.c:869 msgid "default" msgstr "default" #: main.c:871 msgid "Pass traffic to 'script' program, not tun" msgstr "Pass traffic to 'script' program, not tun" #: main.c:874 msgid "Tunnel control" msgstr "" #: main.c:875 msgid "Do not ask for IPv6 connectivity" msgstr "Do not ask for IPv6 connectivity" #: main.c:876 msgid "XML config file" msgstr "XML config file" #: main.c:877 msgid "Request MTU from server (legacy servers only)" msgstr "" #: main.c:878 msgid "Indicate path MTU to/from server" msgstr "Indicate path MTU to/from server" #: main.c:879 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:880 msgid "Disable all compression" msgstr "" #: main.c:881 msgid "Set minimum Dead Peer Detection interval" msgstr "Set minimum Dead Peer Detection interval" #: main.c:882 msgid "Require perfect forward secrecy" msgstr "" #: main.c:883 msgid "Disable DTLS and ESP" msgstr "" #: main.c:884 msgid "OpenSSL ciphers to support for DTLS" msgstr "OpenSSL ciphers to support for DTLS" #: main.c:885 msgid "Set packet queue limit to LEN pkts" msgstr "Set packet queue limit to LEN pkts" #: main.c:887 msgid "Local system information" msgstr "" #: main.c:888 msgid "HTTP header User-Agent: field" msgstr "HTTP header User-Agent: field" #: main.c:889 msgid "Local hostname to advertise to server" msgstr "" #: main.c:890 msgid "OS type (linux,linux-64,win,...) to report" msgstr "" #: main.c:891 msgid "reported version string during authentication" msgstr "" #: main.c:892 msgid "default:" msgstr "" #: main.c:895 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:896 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:897 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:900 msgid "Server bugs" msgstr "" #: main.c:901 msgid "Disable HTTP connection re-use" msgstr "Disable HTTP connection re-use" #: main.c:902 msgid "Do not attempt XML POST authentication" msgstr "" #: main.c:924 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:997 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Failed to get line from config file: %s\n" #: main.c:1037 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Unrecognised option at line %d: '%s'\n" #: main.c:1047 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Option '%s' does not take an argument at line %d\n" #: main.c:1051 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Option '%s' requires an argument at line %d\n" #: main.c:1076 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "" #: main.c:1086 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "" #: main.c:1130 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "" #: main.c:1140 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:1147 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:1157 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Failed to allocate vpninfo structure\n" #: main.c:1215 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Cannot use 'config' option inside config file\n" #: main.c:1223 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Cannot open config file '%s': %s\n" #: main.c:1239 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1260 #, c-format msgid "Missing colon in resolve option\n" msgstr "" #: main.c:1265 #, c-format msgid "Failed to allocate memory\n" msgstr "" #: main.c:1349 main.c:1358 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d too small\n" #: main.c:1388 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" #: main.c:1394 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" #: main.c:1411 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Queue length zero not permitted; using 1\n" #: main.c:1425 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect version %s\n" #: main.c:1463 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "" #: main.c:1473 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "" #: main.c:1506 #, c-format msgid "Too many arguments on command line\n" msgstr "Too many arguments on command line\n" #: main.c:1509 #, c-format msgid "No server specified\n" msgstr "No server specified\n" #: main.c:1525 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "This version of openconnect was built without libproxy support\n" #: main.c:1555 #, c-format msgid "Error opening cmd pipe\n" msgstr "" #: main.c:1588 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "Failed to obtain WebVPN cookie\n" #: main.c:1609 #, c-format msgid "Creating SSL connection failed\n" msgstr "Creating SSL connection failed\n" #: main.c:1625 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:1633 #, c-format msgid "Connected as %s%s%s, using SSL%s%s, with %s%s%s %s\n" msgstr "" #: main.c:1639 msgid "disabled" msgstr "" #: main.c:1639 msgid "in progress" msgstr "" #: main.c:1643 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "No --script argument provided; DNS and routing are not configured\n" #: main.c:1645 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "See http://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:1658 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Failed to open '%s' for write: %s\n" #: main.c:1670 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Continuing in background; pid %d\n" #: main.c:1687 msgid "User requested reconnect\n" msgstr "" #: main.c:1695 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "" #: main.c:1699 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:1703 msgid "User cancelled (SIGINT/SIGTERM); exiting.\n" msgstr "" #: main.c:1707 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "" #: main.c:1711 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:1730 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Failed to open %s for write: %s\n" #: main.c:1738 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Failed to write config to %s: %s\n" #: main.c:1797 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "Server SSL certificate didn't match: %s\n" #: main.c:1816 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" #: main.c:1819 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" #: main.c:1820 #, c-format msgid " --servercert %s\n" msgstr "" #: main.c:1825 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "Enter '%s' to accept, '%s' to abort; anything else to view: " #: main.c:1826 main.c:1844 msgid "no" msgstr "no" #: main.c:1826 main.c:1832 msgid "yes" msgstr "yes" #: main.c:1853 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:1887 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:1890 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Auth choice \"%s\" not available\n" #: main.c:1911 msgid "User input required in non-interactive mode\n" msgstr "User input required in non-interactive mode\n" #: main.c:2149 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:2157 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:2203 main.c:2224 #, c-format msgid "Soft token string is invalid\n" msgstr "" #: main.c:2206 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "" #: main.c:2209 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "" #: main.c:2212 #, c-format msgid "General failure in libstoken\n" msgstr "" #: main.c:2227 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "" #: main.c:2230 #, c-format msgid "General failure in liboath\n" msgstr "" #: main.c:2241 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2244 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2247 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: mainloop.c:127 #, c-format msgid "Set up tun script failed\n" msgstr "" #: mainloop.c:134 #, c-format msgid "Set up tun device failed\n" msgstr "Set up tun device failed\n" #: mainloop.c:265 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:273 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "No work to do; sleeping for %d ms...\n" #: mainloop.c:294 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:978 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:982 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:565 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:160 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:166 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:175 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:186 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:201 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:210 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:219 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:232 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:254 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:274 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:297 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:316 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:327 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:335 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:342 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:350 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:358 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:366 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:374 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:383 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:395 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:473 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:490 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:496 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:512 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:577 oncp.c:609 oncp.c:747 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:618 oncp.c:783 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:631 oncp.c:666 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:636 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:643 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:670 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:683 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:692 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "" #: oncp.c:698 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "" #: oncp.c:705 msgid "Failed to read continuation record length\n" msgstr "" #: oncp.c:711 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "" #: oncp.c:720 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "" #: oncp.c:726 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "" #: oncp.c:767 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:776 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:829 msgid "new incoming" msgstr "" #: oncp.c:830 msgid "new outgoing" msgstr "" #: oncp.c:855 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:864 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:868 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:874 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:969 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:972 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:991 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1053 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1058 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1073 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1134 msgid "Sent ESP enable control packet\n" msgstr "" #: oncp.c:1268 msgid "Logout successful.\n" msgstr "" #: openconnect-internal.h:1119 openconnect-internal.h:1127 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "Initialise DTLSv1 session failed\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "" #: openssl-dtls.c:365 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Initialise DTLSv1 CTX failed\n" #: openssl-dtls.c:378 msgid "Set DTLS CTX version failed\n" msgstr "" #: openssl-dtls.c:395 msgid "Failed to generate DTLS key\n" msgstr "" #: openssl-dtls.c:413 msgid "Set DTLS cipher list failed\n" msgstr "Set DTLS cipher list failed\n" #: openssl-dtls.c:439 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:460 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" #: openssl-dtls.c:493 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:566 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "" #: openssl-dtls.c:603 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" "Your OpenSSL is older than the one you built against, so DTLS may fail!" #: openssl-dtls.c:654 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" #: openssl-dtls.c:661 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "DTLS handshake failed: %d\n" #: openssl-esp.c:87 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:101 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:157 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:202 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:210 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:241 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:43 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:49 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "" #: openssl-pkcs11.c:269 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:272 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:275 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:279 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:286 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:300 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:306 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:342 openssl-pkcs11.c:565 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:349 openssl-pkcs11.c:575 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:383 openssl-pkcs11.c:617 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:393 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "" #: openssl-pkcs11.c:401 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:412 openssl.c:713 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl-pkcs11.c:458 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:464 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:497 msgid "Certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:503 openssl-pkcs11.c:526 msgid "Certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:506 msgid "Checking EC key matches cert\n" msgstr "" #: openssl-pkcs11.c:510 msgid "Failed to allocate signature buffer\n" msgstr "" #: openssl-pkcs11.c:520 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" #: openssl-pkcs11.c:638 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "" #: openssl-pkcs11.c:649 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:678 msgid "Add key from PKCS#11 failed\n" msgstr "" #: openssl-pkcs11.c:710 openssl-pkcs11.c:716 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:147 msgid "Failed to write to SSL socket\n" msgstr "Failed to write to SSL socket\n" #: openssl.c:197 openssl.c:263 msgid "Failed to read from SSL socket\n" msgstr "Failed to read from SSL socket\n" #: openssl.c:292 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "SSL read error %d (server probably closed connection); reconnecting.\n" #: openssl.c:317 #, c-format msgid "SSL_write failed: %d\n" msgstr "SSL_write failed: %d\n" #: openssl.c:389 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:465 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "PEM password too long (%d >= %d)\n" #: openssl.c:498 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Extra cert from %s: '%s'\n" #: openssl.c:548 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Parse PKCS#12 failed (see above errors)\n" #: openssl.c:563 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS#12 contained no certificate!\n" #: openssl.c:572 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS#12 contained no private key!\n" #: openssl.c:577 msgid "PKCS#12" msgstr "" #: openssl.c:600 msgid "Can't load TPM engine.\n" msgstr "Can't load TPM engine.\n" #: openssl.c:606 msgid "Failed to init TPM engine\n" msgstr "Failed to init TPM engine\n" #: openssl.c:616 msgid "Failed to set TPM SRK password\n" msgstr "Failed to set TPM SRK password\n" #: openssl.c:630 msgid "Failed to load TPM private key\n" msgstr "Failed to load TPM private key\n" #: openssl.c:636 msgid "Add key from TPM failed\n" msgstr "Add key from TPM failed\n" #: openssl.c:687 openssl.c:835 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Failed to open certificate file %s: %s\n" #: openssl.c:697 msgid "Loading certificate failed\n" msgstr "Loading certificate failed\n" #: openssl.c:735 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:748 msgid "PEM file" msgstr "" #: openssl.c:777 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Failed to create BIO for keystore item '%s'\n" #: openssl.c:802 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Loading private key failed (wrong passphrase?)\n" #: openssl.c:808 msgid "Loading private key failed (see above errors)\n" msgstr "Loading private key failed (see above errors)\n" #: openssl.c:858 msgid "Failed to load X509 certificate from keystore\n" msgstr "Failed to load X509 certificate from keystore\n" #: openssl.c:864 msgid "Failed to use X509 certificate from keystore\n" msgstr "Failed to use X509 certificate from keystore\n" #: openssl.c:896 msgid "Failed to use private key from keystore\n" msgstr "Failed to use private key from keystore\n" #: openssl.c:912 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Failed to open private key file %s: %s\n" #: openssl.c:936 openssl.c:951 openssl.c:972 openssl.c:1038 msgid "Loading private key failed\n" msgstr "" #: openssl.c:1032 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1049 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Failed to identify private key type in '%s'\n" #: openssl.c:1203 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Matched DNS altname '%s'\n" #: openssl.c:1210 #, c-format msgid "No match for altname '%s'\n" msgstr "No match for altname '%s'\n" #: openssl.c:1224 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "Certificate has GEN_IPADD altname with bogus length %d\n" #: openssl.c:1235 openssl.c:1381 #, c-format msgid "Matched %s address '%s'\n" msgstr "Matched %s address '%s'\n" #: openssl.c:1242 #, c-format msgid "No match for %s address '%s'\n" msgstr "No match for %s address '%s'\n" #: openssl.c:1284 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "URI '%s' has non-empty path; ignoring\n" #: openssl.c:1289 #, c-format msgid "Matched URI '%s'\n" msgstr "Matched URI '%s'\n" #: openssl.c:1300 #, c-format msgid "No match for URI '%s'\n" msgstr "No match for URI '%s'\n" #: openssl.c:1315 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "No altname in peer cert matched '%s'\n" #: openssl.c:1323 msgid "No subject name in peer cert!\n" msgstr "No subject name in peer cert!\n" #: openssl.c:1343 msgid "Failed to parse subject name in peer cert\n" msgstr "Failed to parse subject name in peer cert\n" #: openssl.c:1350 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Peer cert subject mismatch ('%s' != '%s')\n" #: openssl.c:1355 openssl.c:1389 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Matched peer certificate subject name '%s'\n" #: openssl.c:1451 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Extra cert from cafile: '%s'\n" #: openssl.c:1589 msgid "Error in client cert notAfter field\n" msgstr "Error in client cert notAfter field\n" #: openssl.c:1602 msgid "" msgstr "" #: openssl.c:1655 msgid "Create TLSv1 CTX failed\n" msgstr "" #: openssl.c:1674 msgid "SSL certificate and key do not match\n" msgstr "" #: openssl.c:1719 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Failed to read certs from CA file '%s'\n" #: openssl.c:1752 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Failed to open CA file '%s'\n" #: openssl.c:1812 msgid "SSL connection failure\n" msgstr "SSL connection failure\n" #: openssl.c:1973 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:130 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Discard bad split include: \"%s\"\n" #: script.c:134 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Discard bad split exclude: \"%s\"\n" #: script.c:507 script.c:555 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Failed to spawn script '%s' for %s: %s\n" #: script.c:562 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "Script '%s' exited abnormally (%x)\n" #: script.c:570 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Script '%s' returned error %d\n" #: ssl.c:108 msgid "Socket connect cancelled\n" msgstr "Socket connect cancelled\n" #: ssl.c:217 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "" #: ssl.c:221 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "" #: ssl.c:289 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Proxy from libproxy: %s://%s:%d/\n" #: ssl.c:317 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "getaddrinfo failed for host '%s': %s\n" #: ssl.c:326 ssl.c:451 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:341 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Attempting to connect to proxy %s%s%s:%s\n" #: ssl.c:342 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Attempting to connect to server %s%s%s:%s\n" #: ssl.c:362 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "" #: ssl.c:374 msgid "Failed to allocate sockaddr storage\n" msgstr "Failed to allocate sockaddr storage\n" #: ssl.c:416 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "" #: ssl.c:434 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:446 #, c-format msgid "Failed to connect to host %s\n" msgstr "Failed to connect to host %s\n" #: ssl.c:465 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:536 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:564 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:575 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:603 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:694 msgid "No error" msgstr "No error" #: ssl.c:695 msgid "Keystore locked" msgstr "Keystore locked" #: ssl.c:696 msgid "Keystore uninitialized" msgstr "Keystore uninitialised" #: ssl.c:697 msgid "System error" msgstr "System error" #: ssl.c:698 msgid "Protocol error" msgstr "Protocol error" #: ssl.c:699 msgid "Permission denied" msgstr "Permission denied" #: ssl.c:700 msgid "Key not found" msgstr "Key not found" #: ssl.c:701 msgid "Value corrupted" msgstr "Value corrupted" #: ssl.c:702 msgid "Undefined action" msgstr "Undefined action" #: ssl.c:706 msgid "Wrong password" msgstr "Wrong password" #: ssl.c:707 msgid "Unknown error" msgstr "Unknown error" #: ssl.c:896 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:931 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:950 msgid "Open UDP socket" msgstr "" #: ssl.c:981 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:989 msgid "Bind UDP socket" msgstr "" #: ssl.c:996 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:1034 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:1038 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "sleep %ds, remaining timeout %ds\n" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "" #: stoken.c:82 msgid "Device ID:" msgstr "" #: stoken.c:89 msgid "Password:" msgstr "" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "" #: stoken.c:185 msgid "Enter software token PIN." msgstr "" #: stoken.c:189 msgid "PIN:" msgstr "" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "" #: tun-win32.c:76 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:139 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "" #: tun-win32.c:154 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" #: tun-win32.c:186 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" #: tun-win32.c:200 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "" #: tun-win32.c:231 #, c-format msgid "Failed to open %s\n" msgstr "" #: tun-win32.c:236 #, c-format msgid "Opened tun device %s\n" msgstr "" #: tun-win32.c:244 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:250 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:271 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:283 tun-win32.c:406 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:316 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:321 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:335 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:358 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:368 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:371 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:423 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Could not open /dev/tun for plumbing" #: tun.c:92 msgid "Can't push IP" msgstr "Can't push IP" #: tun.c:102 msgid "Can't set ifname" msgstr "Can't set ifname" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "Can't open %s: %s" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Can't plumb %s for IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "open /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Failed to create new tun" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "Failed to put tun file descriptor into message-discard mode" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "" #: tun.c:205 msgid "open net" msgstr "open net" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Failed to open tun device: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Invalid interface name '%s'; must match 'tun%%d'\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Cannot open '%s': %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:479 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:484 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:488 msgid "setpgid" msgstr "" #: tun.c:493 msgid "execl" msgstr "execl" #: tun.c:498 msgid "(script)" msgstr "(script)" #: tun.c:566 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Failed to write incoming packet: %s\n" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Treating host \"%s\" as a raw hostname\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Failed to SHA1 existing file\n" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "XML config file SHA1: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Failed to parse XML config file %s\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Host \"%s\" has address \"%s\"\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Host \"%s\" has UserGroup \"%s\"\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "Host \"%s\" not listed in config; treating as raw hostname\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:174 msgid "select applet command" msgstr "" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:274 msgid "unlock command" msgstr "" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:412 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:619 msgid "calculate command" msgstr "" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-8.05/po/pt.po0000664000076400007640000035640013470043037017147 0ustar00dwoodhoudwoodhou00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: # Carlos , 2013 # Carlos , 2011-2013 msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2019-05-18 10:44-0700\n" "PO-Revision-Date: 2014-02-19 09:05+0000\n" "Last-Translator: David Woodhouse \n" "Language-Team: Portuguese (http://www.transifex.com/projects/p/meego/" "language/pt/)\n" "Language: pt\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: auth-globalprotect.c:108 #, c-format msgid "" "SAML login is required via %s to this URL:\n" "\t%s" msgstr "" #: auth-globalprotect.c:110 msgid "Please enter your username and password" msgstr "" #: auth-globalprotect.c:119 msgid "Username" msgstr "" #: auth-globalprotect.c:134 msgid "Password" msgstr "" #: auth-globalprotect.c:181 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:260 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:266 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:272 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:315 msgid "Please select GlobalProtect gateway." msgstr "" #: auth-globalprotect.c:325 msgid "GATEWAY:" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:379 #, c-format msgid "%d gateway servers available:\n" msgstr "" #: auth-globalprotect.c:400 #, c-format msgid " %s (%s)\n" msgstr "" #: auth-globalprotect.c:484 auth-juniper.c:730 auth.c:669 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "Falha ao gerar OTP tokencode; a desativar símbolo\n" #: auth-globalprotect.c:584 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" #: auth-globalprotect.c:636 oncp.c:1266 msgid "Logout failed.\n" msgstr "" #: auth-globalprotect.c:638 msgid "Logout successful\n" msgstr "" #: auth-juniper.c:142 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "A ignorar item de submissão de formulário desconhecido \"%s\"\n" #: auth-juniper.c:153 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "A ignorar tipo de entrada de formulário desconhecida \"%s\"\n" #: auth-juniper.c:163 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "A descartar opção \"%s\" duplicada\n" #: auth-juniper.c:236 auth.c:408 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Não consegue processar formulário method='%s', action='%s'\n" #: auth-juniper.c:267 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "" #: auth-juniper.c:337 msgid "TNCC support not implemented yet on Windows\n" msgstr "Suporte a TNCC ainda não implementado em Windows\n" #: auth-juniper.c:359 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "Sem cookie DSPREAUTH; sem tentar TNCC\n" #: auth-juniper.c:397 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "Falha ao executar script TNCC %s: %s\n" #: auth-juniper.c:411 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "Falha ao alocar memória para comunicação com TNCC\n" #: auth-juniper.c:418 msgid "Failed to send start command to TNCC\n" msgstr "Falha ao enviar comando inicial para TNCC\n" #: auth-juniper.c:425 msgid "Sent start; waiting for response from TNCC\n" msgstr "Início enviado; a aguardar resposta de TNCC\n" #: auth-juniper.c:432 msgid "Failed to read response from TNCC\n" msgstr "Falhou a leitura da resposta de TNCC\n" #: auth-juniper.c:439 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "Recebida resposta %s sem sucesso de TNCC\n" #: auth-juniper.c:445 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:452 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "Obtido novo cookie DSPREAUTH de TNCC: %s\n" #: auth-juniper.c:474 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:481 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:650 msgid "Failed to parse HTML document\n" msgstr "Falha ao processar documento HTML\"\n" #: auth-juniper.c:667 msgid "Failed to find or parse web form in login page\n" msgstr "" "Falha ao encontrar ou processar formulário web na página de início de " "sessão\n" #: auth-juniper.c:675 msgid "Encountered form with no ID\n" msgstr "Encontrado formulário sem ID\n" #: auth-juniper.c:713 #, c-format msgid "Unknown form ID '%s'\n" msgstr "ID de formulário \"%s\" desconhecida\n" #: auth-juniper.c:716 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "A despejar formulário HMTL desconhecido:\n" #: auth.c:96 msgid "Form choice has no name\n" msgstr "A escolha do formulário não tem nome\n" #: auth.c:181 #, c-format msgid "name %s not input\n" msgstr "nome %s não introduzido\n" #: auth.c:188 msgid "No input type in form\n" msgstr "" "Sem tipo de entrada no formulário\n" "\n" #: auth.c:200 msgid "No input name in form\n" msgstr "Sem nome de entrada no formulário\n" #: auth.c:230 #, c-format msgid "Unknown input type %s in form\n" msgstr "Tipo de entrada %s desconhecido no formulário\n" #: auth.c:540 gpst.c:214 msgid "Empty response from server\n" msgstr "Resposta vazia do servidor\n" #: auth.c:551 gpst.c:289 msgid "Failed to parse server response\n" msgstr "Falhou ao processar resposta do servidor\n" #: auth.c:553 gpst.c:291 #, c-format msgid "Response was:%s\n" msgstr "Resposta foi:%s\n" #: auth.c:575 msgid "Received when not expected.\n" msgstr "Recbido quando não era esperado.\n" #: auth.c:603 msgid "XML response has no \"auth\" node\n" msgstr "Resposta XML não tem nó \"auth\"\n" #: auth.c:636 msgid "Asked for password but '--no-passwd' set\n" msgstr "Perguntou pela senha, mas '--no-passwd' definido\n" #: auth.c:925 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "O perfil XML não será transferido porque SHA1 já coincide\n" #: auth.c:931 cstp.c:335 http.c:916 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Falha ao abrir a ligação HTTPS a %s\n" #: auth.c:952 msgid "Failed to send GET request for new config\n" msgstr "Falha ao enviar o pedido GET para nova configuração\n" #: auth.c:976 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" "O ficheiro de configuração transferido não correspondeu ao SHA1 desejado\n" #: auth.c:981 msgid "Downloaded new XML profile\n" msgstr "Transferido novo perfil XML\n" #: auth.c:992 auth.c:1044 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" #: auth.c:1003 mainloop.c:144 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "" #: auth.c:1010 mainloop.c:151 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "" #: auth.c:1017 mainloop.c:158 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "" #: auth.c:1024 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "" #: auth.c:1031 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Falhou ao alterar a pasta pessoal CSD: '%s': %s\n" #: auth.c:1053 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Erro: o servidor pediu para executar CSD hostscan.\n" "Tem de indicar um argumento --csd-wrapper adequado.\n" #: auth.c:1060 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Erro: o servidor pediu para transferir e executar o troiano \"Cisco Secure " "Desktop\".\n" "Esta funcionalidade está desativada por motivos de segurança, poderá querer " "ativá-la.\n" #: auth.c:1067 msgid "Trying to run Linux CSD trojan script.\n" msgstr "A tentar executar o script troiano Linux CSD.\n" #: auth.c:1094 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "Pasta temporária \"%s\" não pode ser escrita: %s\n" #: auth.c:1102 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Falhou ao abrir o ficheiro de script CSD temporário: %s\n" #: auth.c:1111 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Falhou ao escrever o ficheiro de script CSD temporário: %s\n" #: auth.c:1141 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Aviso: está a executar código CSD inseguro privilégios de raiz\n" "\t Use a opção de linha de comando \"--csd-user\"\n" #: auth.c:1189 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Falhou ao executar script CSD %s\n" #: auth.c:1221 msgid "Unknown response from server\n" msgstr "Resposta desconhecida do servidor\n" #: auth.c:1342 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" "O servidor pediu certificado SSL do cliente após ter sido fornecido um\n" #: auth.c:1346 msgid "Server requested SSL client certificate; none was configured\n" msgstr "Servidor pediu o certificado do cliente SSL; nenhum foi configurado\n" #: auth.c:1362 msgid "XML POST enabled\n" msgstr "XML POST ativado\n" #: auth.c:1405 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "A refrescar %s após 1 segundo...\n" #: compat.c:207 #, c-format msgid "(error 0x%lx)" msgstr "(erro 0x%lx)" #: compat.c:210 msgid "(Error while describing error!)" msgstr "(erro ao descrever o erro!)" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "Erro: impossível inicializar sockets\n" #: cstp.c:112 gpst.c:341 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcb mss %d, env mss %d, adv mss %d, pmtu %d\n" #: cstp.c:134 gpst.c:360 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:281 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" "ERRO CRÍTICO: o segredo mestre DTLS não está inicializado. Por favor, " "reporte isto.\n" #: cstp.c:312 msgid "Error creating HTTPS CONNECT request\n" msgstr "Erro ao criar pedido HTTPS CONNECT\n" #: cstp.c:328 http.c:384 msgid "Error fetching HTTPS response\n" msgstr "Erro ao obter resposta HTTPS\n" #: cstp.c:355 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "Serviço VPN indisponível; razão: %s\n" #: cstp.c:360 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Obteve resposta HTTP CONNECT inapropriada: %s\n" #: cstp.c:367 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Obteve resposta CONNECT: %s\n" #: cstp.c:396 cstp.c:404 msgid "No memory for options\n" msgstr "Não há memória para opções\n" #: cstp.c:413 http.c:444 msgid "" msgstr "" #: cstp.c:433 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Session-ID não é de 64 caracteres; é de: \"%s\"\n" #: cstp.c:450 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "" #: cstp.c:468 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "CSTP-Content-Encoding %s desconhecido\n" #: cstp.c:510 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Codificação de Conteúdo Desconhecido CSTP %s\n" #: cstp.c:585 msgid "No MTU received. Aborting\n" msgstr "Sem MTU recebido. A abortar\n" #: cstp.c:593 gpst.c:641 msgid "No IP address received. Aborting\n" msgstr "Sem endereço IP recebido. A abortar\n" #: cstp.c:599 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "Recebida configuração IPv6 mas MTU %d é demasiado pequeno.\n" #: cstp.c:605 gpst.c:648 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Reconexão deu endereços IP diferentes antigos (%s != %s)\n" #: cstp.c:614 gpst.c:657 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "Reconexão deu máscara de rede IP diferente antiga (%s != %s)\n" #: cstp.c:622 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Reconexão deu endereços IPv6 diferentes (%s != %s)\n" #: cstp.c:630 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Reconexão deu máscara de rede IPv6 diferente (%s != %s)\n" #: cstp.c:638 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP ligado. DPD %d, Keepalive %d\n" #: cstp.c:640 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "CSTP Ciphersuite: %s\n" #: cstp.c:702 msgid "Compression setup failed\n" msgstr "A configuração de compressão falhou\n" #: cstp.c:719 msgid "Allocation of deflate buffer failed\n" msgstr "Falha na alocação do buffer para esvaziar\n" #: cstp.c:781 msgid "inflate failed\n" msgstr "enchimento falhou\n" #: cstp.c:804 #, c-format msgid "LZS decompression failed: %s\n" msgstr "Falha na descompressão LZS: %s\n" #: cstp.c:817 msgid "LZ4 decompression failed\n" msgstr "Falha na descompressão LZ4\n" #: cstp.c:824 #, c-format msgid "Unknown compression type %d\n" msgstr "Tipo de compressão \"%d\" desconhecido\n" #: cstp.c:829 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "Recebido pacote %s de dados comprimidos de %d bytes (era %d)\n" #: cstp.c:849 #, c-format msgid "deflate failed %d\n" msgstr "deflate falhou %d\n" #: cstp.c:922 dtls.c:281 dtls.c:740 esp.c:129 gpst.c:1042 mainloop.c:69 #: oncp.c:914 msgid "Allocation failed\n" msgstr "Falha na alocação\n" #: cstp.c:933 gpst.c:1055 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "Recebido pacote curto (%d bytes)\n" #: cstp.c:946 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" "Comprimento inesperado do pacote. SSL_read devolveu %d mas o pacote é\n" #: cstp.c:960 msgid "Got CSTP DPD request\n" msgstr "Pedido CSTP DPD obtido\n" #: cstp.c:966 msgid "Got CSTP DPD response\n" msgstr "Resposta CSTP DPD obtida\n" #: cstp.c:971 msgid "Got CSTP Keepalive\n" msgstr "Obteve CSTP Keepalive\n" #: cstp.c:976 oncp.c:1003 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Recebido pacote de dados não comprimidos de %d bytes\n" #: cstp.c:993 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Recebido o desligamento do servidor: %02x '%s'\n" #: cstp.c:996 msgid "Received server disconnect\n" msgstr "Recebido fim de ligação do servidor\n" #: cstp.c:1004 msgid "Compressed packet received in !deflate mode\n" msgstr "Recebido pacote comprimido em modo !deflate\n" #: cstp.c:1013 msgid "received server terminate packet\n" msgstr "pacote de terminação do servidor recebido\n" #: cstp.c:1020 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Pacote desconhecido %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1063 gpst.c:1142 oncp.c:1121 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "" "SSL escreveu poucos bytes! Pediu por %d, enviou %d\n" "\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1091 oncp.c:1155 msgid "CSTP rekey due\n" msgstr "Reescrita de CSTP devida\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1098 oncp.c:1162 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Falha no reaperto de mão, a tentar novo túnel\n" #: cstp.c:1109 oncp.c:1173 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "CSTP Dead Peer Detection detetou um par morto!\n" #: cstp.c:1113 gpst.c:1166 oncp.c:1091 oncp.c:1177 msgid "Reconnect failed\n" msgstr "Religação falhou\n" #: cstp.c:1129 oncp.c:1193 msgid "Send CSTP DPD\n" msgstr "Enviar CSTP DPD\n" #: cstp.c:1141 oncp.c:1204 msgid "Send CSTP Keepalive\n" msgstr "Enviar CSTP Keepalive\n" #: cstp.c:1166 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "A enviar pacote de dados comprimidos de %d bytes (era %d)\n" #: cstp.c:1177 oncp.c:1238 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "A enviar pacote de dados não comprimidos de %d bytes\n" #: cstp.c:1216 #, c-format msgid "Send BYE packet: %s\n" msgstr "Enviar pacote BYE: %s\n" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "A tentar autenticação Digest no proxy\n" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "A tentar autenticação Digest no servidor \"%s\"\n" #: dtls.c:113 msgid "DTLS connection attempted with an existing fd\n" msgstr "Tentada ligação DTLS com um fd existente\n" #: dtls.c:119 msgid "No DTLS address\n" msgstr "Sem endereço DTLS\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:126 msgid "Server offered no DTLS cipher option\n" msgstr "O servidor não ofereceu opção de cifra DTLS\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:133 msgid "No DTLS when connected via proxy\n" msgstr "Sem DTLS ao ligar via proxy\n" #: dtls.c:200 #, c-format msgid "DTLS option %s : %s\n" msgstr "Opção DTLS %s : %s\n" #: dtls.c:239 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "CSTP ligado. DPD %d, Keepalive %d\n" #: dtls.c:265 msgid "Attempt new DTLS connection\n" msgstr "Tentar nova ligação DTLS\n" #: dtls.c:292 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Recebido pacote DTLS 0x%02x de %d bytes\n" #: dtls.c:306 msgid "Got DTLS DPD request\n" msgstr "Pedido DTLS DPD obtido\n" #: dtls.c:312 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Falha ao enviar resposta DPD. Desligar esperado\n" #: dtls.c:316 msgid "Got DTLS DPD response\n" msgstr "Resposta DTLS DPD obtida\n" #: dtls.c:320 msgid "Got DTLS Keepalive\n" msgstr "Obteve DTLS Keepalive\n" #: dtls.c:326 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "Recebido pacote DTLS comprimido com compressão não ativada\n" #: dtls.c:334 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Tipo de pacote DTLS desconhecido %02x, len %d\n" #: dtls.c:356 msgid "DTLS rekey due\n" msgstr "Reescrita DTLS devida\n" #: dtls.c:363 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "Cumprimento DTLS falhou, a religar.\n" #: dtls.c:372 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "DTLS Dead Peer Detection detetou um par morto!\n" #: dtls.c:378 msgid "Send DTLS DPD\n" msgstr "Enviar DTLS DPD\n" #: dtls.c:383 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Falha ao enviar pedido DPD. Desligar esperado\n" #: dtls.c:396 msgid "Send DTLS Keepalive\n" msgstr "Enviar DTLS Keepalive\n" #: dtls.c:401 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Falha ao enviar pedido keepalive. Desligar esperado\n" #: dtls.c:432 tun.c:541 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Pacote desconhecido (comp %d) recebido: %02x %02x %02x %02x...\n" #: dtls.c:439 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "" #: dtls.c:443 msgid "UDP setsockopt" msgstr "" #: dtls.c:474 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "DTLS obteve erro de escrita %d. A reverter para SSL\n" #: dtls.c:488 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "DTLS obteve erro de escrita %s. A reverter para SSL\n" #: dtls.c:503 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "Enviado pacote DTLS de %d bytes; o envio DTLS devolveu %d\n" #: dtls.c:531 #, c-format msgid "Initiating IPv4 MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:551 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" #: dtls.c:555 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" #: dtls.c:564 #, c-format msgid "Sending MTU DPD probe (%u bytes, min=%u, max=%u)\n" msgstr "" #: dtls.c:568 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "" #: dtls.c:582 dtls.c:690 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" #: dtls.c:594 #, c-format msgid "Timeout while waiting for DPD response; trying %d\n" msgstr "" #: dtls.c:601 dtls.c:682 msgid "Timeout while waiting for DPD response; resending probe.\n" msgstr "" #: dtls.c:608 dtls.c:709 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "" #: dtls.c:613 #, c-format msgid "Received MTU DPD probe (%u bytes of %u)\n" msgstr "" #: dtls.c:651 msgid "Initiating IPv6 MTU detection\n" msgstr "" #: dtls.c:666 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:670 #, c-format msgid "Failed to send DPD request (%d)\n" msgstr "" #: dtls.c:695 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:759 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "" #: dtls.c:762 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "A aceitar pacote ESP esperado com seq %u\n" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "Aceitar pacote ESP atrasado com seq %u (esperado %)\n" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "A descartar pacote ESP antigo com seq %u (esperado %)\n" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "Descartar pacote ESP reproduzido com seq %u\n" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "Aceitar pacote ESP avariado com seq %u (esperado %)\n" #: esp.c:63 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "Parâmetros para %s ESP: SPI 0x%08x\n" #: esp.c:66 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "Tipo de encriptação ESP %s chave 0x%s\n" #: esp.c:69 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "Tipo de autenticação ESP %s chave 0x%s\n" #: esp.c:87 msgid "incoming" msgstr "a chegar" #: esp.c:88 msgid "outgoing" msgstr "a sair" #: esp.c:90 esp.c:113 msgid "Send ESP probes\n" msgstr "Enviar sondas ESP\n" #: esp.c:138 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "Recebido pacote ESP de %d bytes\n" #: esp.c:155 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:161 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "Recebido pacote ESP com SPI 0x%08x inválido\n" #: esp.c:174 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" "Recebido pacote ESP com tipo de carga de pagamente %02x não reconhecida\n" #: esp.c:181 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "Comprimento de espaço %02x inválido no ESP\n" #: esp.c:193 msgid "Invalid padding bytes in ESP\n" msgstr "Bytes de espaço inválidos no ESP\n" #: esp.c:202 msgid "ESP session established with server\n" msgstr "Sessão ESP estabelecida com o servidor\n" #: esp.c:213 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "Falha ao alocar memória para desencriptar o pacote ESP\n" #: esp.c:219 msgid "LZO decompression of ESP packet failed\n" msgstr "Falha na descompressão LZO do pacote ESP\n" #: esp.c:225 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "LZO descomprimiu %d bytes em %d\n" #: esp.c:239 msgid "Rekey not implemented for ESP\n" msgstr "Rekey não implementado para ESP\n" #: esp.c:243 msgid "ESP detected dead peer\n" msgstr "O ESP detetou um par morto\n" #: esp.c:251 msgid "Send ESP probes for DPD\n" msgstr "Enviar sondas ESP para DPD\n" #: esp.c:258 msgid "Keepalive not implemented for ESP\n" msgstr "Keepalive não implementado para ESP\n" #: esp.c:278 #, c-format msgid "Failed to encrypt ESP packet: %d\n" msgstr "" #: esp.c:294 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:301 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "Falha ao enviar pacote ESP: %s\n" #: esp.c:307 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "Enviado pacote ESP de %d bytes\n" #: gnutls-dtls.c:190 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "" #: gnutls-dtls.c:198 msgid "Failed to generate DTLS priority string\n" msgstr "" #: gnutls-dtls.c:207 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "" #: gnutls-dtls.c:216 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "" #: gnutls-dtls.c:240 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "" #: gnutls-dtls.c:253 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:267 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:275 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "" #: gnutls-dtls.c:309 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Parâmetros DTLS desconhecidos para o CipherSuite \"%s\" pedido\n" #: gnutls-dtls.c:324 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "Falha ao definir a prioridade DTLS: %s\n" #: gnutls-dtls.c:345 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Falha ao definir parâmetros de sessão DTLS: %s\n" #: gnutls-dtls.c:373 openssl-dtls.c:534 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "" #: gnutls-dtls.c:382 openssl-dtls.c:545 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "" #: gnutls-dtls.c:392 openssl-dtls.c:554 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" #: gnutls-dtls.c:405 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Falha ao definir DTLS MTU: %s\n" #: gnutls-dtls.c:416 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "Estabelecida ligação DTLS (usando GnuTLS). Ciphersuite %s.\n" #: gnutls-dtls.c:422 openssl-dtls.c:572 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "Compressão de ligação DTLS usando %s\n" #: gnutls-dtls.c:437 openssl-dtls.c:653 openssl-dtls.c:657 msgid "DTLS handshake timed out\n" msgstr "Cumprimento DTLS expirado\n" #: gnutls-dtls.c:440 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "Cumprimento DTLS falhou: %s\n" #: gnutls-dtls.c:444 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(tem uma firewall a impedi-lo de enviar pacotes UDP?)\n" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "Falha ao inicializar cifra ESP: %s\n" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "Falha ao inicializar ESP HMAC: %s\n" #: gnutls-esp.c:121 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "Falha ao gerar chaves aleatórias para ESP: %s\n" #: gnutls-esp.c:132 msgid "Failed to generate ESP IV\n" msgstr "" #: gnutls-esp.c:161 gnutls-esp.c:217 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "Falha ao calcular HMAC para pacote ESP: %s\n" #: gnutls-esp.c:168 openssl-esp.c:192 msgid "Received ESP packet with invalid HMAC\n" msgstr "Recebido pacote ESP com HMAC inválido\n" #: gnutls-esp.c:180 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "Falha ao desencriptar pacote ESP: %s\n" #: gnutls-esp.c:209 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "Falha ao encriptar pacote ESP: %s\n" #: gnutls.c:95 openssl.c:154 msgid "SSL write cancelled\n" msgstr "Escrita SSL cancelada\n" #: gnutls.c:99 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "Falha ao escrever na tomada SSL: %s\n" #: gnutls.c:145 gnutls.c:237 openssl.c:204 openssl.c:271 msgid "SSL read cancelled\n" msgstr "Leitura SSL cancelada\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:158 msgid "SSL socket closed uncleanly\n" msgstr "Tomada SSL fechou suja\n" #: gnutls.c:168 gnutls.c:246 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "Falha ao ler da tomada SSL: %s\n" #: gnutls.c:266 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "Erro de leitura SSL: %s, a religar.\n" #: gnutls.c:302 #, c-format msgid "SSL send failed: %s\n" msgstr "Envio SSL falhou: %s\n" #: gnutls.c:315 msgid "Could not extract expiration time of certificate\n" msgstr "Impossível extrair hora de expiração do certificado\n" #: gnutls.c:320 openssl.c:1592 msgid "Client certificate has expired at" msgstr "Certificado do cliente expirou em" #: gnutls.c:322 openssl.c:1597 msgid "Client certificate expires soon at" msgstr "Certificado do cliente expira brevemente em" #: gnutls.c:371 openssl.c:771 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Falha ao carregar o item \"%s\" da loja: %s\n" #: gnutls.c:384 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Falha ao abrir chave/certificado %s: %s\n" #: gnutls.c:391 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Falha na estatística de chave/certificado %s: %s\n" #: gnutls.c:400 msgid "Failed to allocate certificate buffer\n" msgstr "Falha ao alocar buffer de certificado\n" #: gnutls.c:408 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Falha ao ler certificado para a memória: %s\n" #: gnutls.c:439 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Falha ao configurar estrutura de dados PKCS#12: %s\n" #: gnutls.c:462 openssl.c:534 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Falha ao desencriptar ficheiro de certificado PKCS#12\n" #: gnutls.c:466 openssl.c:537 msgid "Enter PKCS#12 pass phrase:" msgstr "Insira a frase-passe de PKCS#12:" #: gnutls.c:489 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Falha ao processar ficheiro PKCS#12: %s\n" #: gnutls.c:501 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Falha ao carregar certificado PKCS#12: %s\n" #: gnutls.c:584 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Falha ao importar certificado PKCS#12:%s\n" #: gnutls.c:594 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Falha ao definir certificado PKCS#12: %s\n" #: gnutls.c:628 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Impossível inicializar hash MD5: %s\n" #: gnutls.c:638 #, c-format msgid "MD5 hash error: %s\n" msgstr "Erro de hash MD5: %s\n" #: gnutls.c:696 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "DEK-Info em falta: cabeçalho de chave encriptada OpenSSL\n" #: gnutls.c:703 msgid "Cannot determine PEM encryption type\n" msgstr "Impossível determinar tipo de encriptação PEM\n" #: gnutls.c:716 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Tipo de encriptação PEM não suportado: %s\n" #: gnutls.c:741 gnutls.c:754 msgid "Invalid salt in encrypted PEM file\n" msgstr "Sal inválido no ficheiro PEM encriptado\n" #: gnutls.c:778 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Erro de descodificação base 64 no ficheiro PEM encriptado: %s\n" #: gnutls.c:786 msgid "Encrypted PEM file too short\n" msgstr "Ficheiro PEM encriptado demasiado curto\n" #: gnutls.c:814 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "Falha ao inicializar cifra para desencriptar ficheiro PEM: %s\n" #: gnutls.c:825 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Falha ao desencriptar chave PEM: %s\n" #: gnutls.c:877 msgid "Decrypting PEM key failed\n" msgstr "Falha ao desencriptar chave PEM\n" #: gnutls.c:881 gnutls.c:1405 openssl.c:458 msgid "Enter PEM pass phrase:" msgstr "Introduza a palavra-passe PEM:" #: gnutls.c:942 msgid "This binary built without system key support\n" msgstr "Este binário foi compilado sem suporte de chave de sistema\n" #: gnutls.c:949 msgid "This binary built without PKCS#11 support\n" msgstr "Este binário foi compilado sem suporte PKCS#11\n" #: gnutls.c:993 openssl-pkcs11.c:407 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "A usar certificado PKCS#11 %s\n" #: gnutls.c:994 #, c-format msgid "Using system certificate %s\n" msgstr "A usar o ficheiro de certificado %s\n" #: gnutls.c:1012 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Erro ao carregar o certificado de PKCS#11: %s\n" #: gnutls.c:1013 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Erro ao carregar o certificado de sistema: %s\n" #: gnutls.c:1024 openssl.c:827 #, c-format msgid "Using certificate file %s\n" msgstr "A usar o ficheiro de certificado %s\n" #: gnutls.c:1052 msgid "PKCS#11 file contained no certificate\n" msgstr "O ficheiro PKCS#11 não contém certificados\n" #: gnutls.c:1078 msgid "No certificate found in file" msgstr "Não se encontrou um certificado no ficheiro" #: gnutls.c:1083 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Falha ao carregar o certificado: %s\n" #: gnutls.c:1098 #, c-format msgid "Using system key %s\n" msgstr "A usar chave de sistema %s\n" #: gnutls.c:1103 gnutls.c:1271 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Erro ao inicializar estrutura da chave privada: %s\n" #: gnutls.c:1114 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Erro ao importar chave de sistema %s: %s\n" #: gnutls.c:1125 gnutls.c:1219 gnutls.c:1247 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "A tentar URL de chave PKCS#11 %s\n" #: gnutls.c:1130 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Erro ao inicializar estrutura de chave PKCS#11: %s\n" #: gnutls.c:1259 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Erro ao importar URL PKCS#11 %s: %s\n" #: gnutls.c:1266 openssl-pkcs11.c:644 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "A usar chave PKCS#11 %s\n" #: gnutls.c:1281 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "Erro ao importar chave PKCS#11 para a estrutura da chave privada: %s\n" #: gnutls.c:1299 #, c-format msgid "Using private key file %s\n" msgstr "A usar ficheiro de chave privada %s\n" #: gnutls.c:1310 openssl.c:651 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Esta versão de OpenConnect foi compilada sem suporte de TPM\n" #: gnutls.c:1326 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1347 msgid "Failed to interpret PEM file\n" msgstr "Falha ao interpretar ficheiro PEM\n" #: gnutls.c:1366 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Falha ao carregar chave privada PKCS#11: %s\n" #: gnutls.c:1379 gnutls.c:1393 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Falha ao carregar chave privada como PKCS#8: %s\n" #: gnutls.c:1401 gnutls.c:1434 openssl.c:1002 openssl.c:1012 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Falha ao desencriptar ficheiro de certificado PKCS#8\n" #: gnutls.c:1426 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Falha ao determinar tipo de chave privada %s\n" #: gnutls.c:1438 openssl.c:1008 msgid "Enter PKCS#8 pass phrase:" msgstr "Insira a frase-passe de PKCS#8:" #: gnutls.c:1454 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Falha ao obter a ID de chave: %s\n" #: gnutls.c:1499 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Erro ao assinar dados de teste com a chave privada: %s\n" #: gnutls.c:1514 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Erro ao validar a assinatura contra o certificado: %s\n" #: gnutls.c:1539 msgid "No SSL certificate found to match private key\n" msgstr "Sem certificado SSL para comparar chave privada\n" #: gnutls.c:1551 openssl.c:560 openssl.c:709 #, c-format msgid "Using client certificate '%s'\n" msgstr "A usar certificado de cliente \"%s\"\n" #: gnutls.c:1558 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "Falha ao definir lista de revogação de certificado: %s\n" #: gnutls.c:1579 gnutls.c:1589 msgid "Failed to allocate memory for certificate\n" msgstr "Falha ao alocar memória para o certificado\n" #: gnutls.c:1625 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" "AVISO: GnuTLS devolveu emissor incorreto para certificados; a autenticação " "pode falhar!\n" #: gnutls.c:1648 msgid "Got no issuer from PKCS#11\n" msgstr "" #: gnutls.c:1653 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "Obtido CA \"%s\" seguinte de PKCS#11\n" #: gnutls.c:1679 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Falha ao alocar memória para certificados de suporte\n" #: gnutls.c:1702 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "A adicionar CA \"%s\" de suporte\n" #: gnutls.c:1724 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1748 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Falha ao definir certificado: %s\n" #: gnutls.c:1941 msgid "Server presented no certificate\n" msgstr "O servidor não apresentou certificado\n" #: gnutls.c:1949 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" #: gnutls.c:1954 openssl.c:1515 msgid "Server presented different cert on rehandshake\n" msgstr "" #: gnutls.c:1959 openssl.c:1518 msgid "Server presented identical cert on rehandshake\n" msgstr "" #: gnutls.c:1965 msgid "Error initialising X509 cert structure\n" msgstr "Erro ao inicializar estrutura de certificado X509\n" #: gnutls.c:1971 msgid "Error importing server's cert\n" msgstr "Erro ao importar certificado do servidor\n" #: gnutls.c:1980 main.c:1794 msgid "Could not calculate hash of server's certificate\n" msgstr "Impossível calcular hash do certificado do servidor\n" #: gnutls.c:1985 msgid "Error checking server cert status\n" msgstr "Erro ao verificar estado do certificado do servidor\n" #: gnutls.c:1990 msgid "certificate revoked" msgstr "certificado revogado" #: gnutls.c:1992 msgid "signer not found" msgstr "assinante não encontrado" #: gnutls.c:1994 msgid "signer not a CA certificate" msgstr "assinante não é certificado CA" #: gnutls.c:1996 msgid "insecure algorithm" msgstr "algoritmo inseguro" #: gnutls.c:1998 msgid "certificate not yet activated" msgstr "certificado ainda não ativado" #: gnutls.c:2000 msgid "certificate expired" msgstr "certificado expirou" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2005 msgid "signature verification failed" msgstr "falhou a verificação de assinatura" #: gnutls.c:2054 openssl.c:1399 openssl.c:1551 msgid "certificate does not match hostname" msgstr "certificado não corresponde ao nome da máquina" #: gnutls.c:2059 openssl.c:1398 openssl.c:1557 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Falhou a verificação do certificado do servidor: %s\n" #: gnutls.c:2126 msgid "Failed to allocate memory for cafile certs\n" msgstr "Falha ao alocar memória para certificados cafile\n" #: gnutls.c:2147 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Falha ao ler certificados de ficheiro cafile: %s\n" #: gnutls.c:2163 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Falha ao abrir ficheiro CA \"%s\": %s\n" #: gnutls.c:2176 openssl.c:1679 msgid "Loading certificate failed. Aborting.\n" msgstr "" "Falhou ao carregar o certificado. A abortar.\n" "\n" #: gnutls.c:2237 #, c-format msgid "Failed to set TLS priority string (\"%s\"): %s\n" msgstr "Falha ao definir cadeia de prioridade TLS (\"%s\"): %s\n" #: gnutls.c:2249 openssl.c:1796 #, c-format msgid "SSL negotiation with %s\n" msgstr "Negociação SSL com %s\n" #: gnutls.c:2296 openssl.c:1822 msgid "SSL connection cancelled\n" msgstr "Ligação SSL cancelada\n" #: gnutls.c:2303 #, c-format msgid "SSL connection failure: %s\n" msgstr "Falha na ligação SSL: %s\n" #: gnutls.c:2312 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "Devolução não fatal GnuTLS durante o cumprimento: %s\n" #: gnutls.c:2318 openssl.c:1839 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "Ligado a HTTPS em %s\n" #: gnutls.c:2321 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "SSL renegociada em %s\n" #: gnutls.c:2483 openssl-pkcs11.c:199 #, c-format msgid "PIN required for %s" msgstr "PIN necessário para %s" #: gnutls.c:2487 openssl-pkcs11.c:202 msgid "Wrong PIN" msgstr "PIN errado" #: gnutls.c:2490 msgid "This is the final try before locking!" msgstr "Esta é a última tentativa antes de trancar!" #: gnutls.c:2492 msgid "Only a few tries left before locking!" msgstr "Só restam algumas tentativas antes de trancar!" #: gnutls.c:2497 openssl-pkcs11.c:206 msgid "Enter PIN:" msgstr "Introduza o PIN:" #: gnutls.c:2583 openssl.c:1967 msgid "Unsupported OATH HMAC algorithm\n" msgstr "Algoritmo OATH HMAC não suportado\n" #: gnutls.c:2592 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "Falha ao calcular OATH HMAC: %s\n" #: gnutls_tpm.c:54 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "Função de assinatura TPM pediu %d bytes.\n" #: gnutls_tpm.c:61 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Falha ao criar objeto de hash TPM: %s\n" #: gnutls_tpm.c:68 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Falha ao definir valor em objeto de hash TPM: %s\n" #: gnutls_tpm.c:78 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "Falha na assinatura hash TPM: %s\n" #: gnutls_tpm.c:100 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Erro ao descodificar blob de chave TSS: %s\n" #: gnutls_tpm.c:108 gnutls_tpm.c:119 gnutls_tpm.c:132 msgid "Error in TSS key blob\n" msgstr "Erro no blob de chave TSS\n" #: gnutls_tpm.c:139 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Falha ao criar contexto TPM: %s\n" #: gnutls_tpm.c:146 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Falha ao ligar contexto TPM: %s\n" #: gnutls_tpm.c:154 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Falha ao carregar chave TPM SRK: %s\n" #: gnutls_tpm.c:161 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Falha ao carregar objeto de política TPM SRK: %s\n" #: gnutls_tpm.c:182 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Falha ao definir PIN TPM: %s\n" #: gnutls_tpm.c:198 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Falha ao carregar blob de chave TPM: %s\n" #: gnutls_tpm.c:205 msgid "Enter TPM SRK PIN:" msgstr "Introduza o PIN de TPM SRK:" #: gnutls_tpm.c:226 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Falha ao criar objeto de política de chave: %s\n" #: gnutls_tpm.c:234 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Falha ao atribuir política a chave: %s\n" #: gnutls_tpm.c:240 msgid "Enter TPM key PIN:" msgstr "Introduza o PIN da chave TPM:" #: gnutls_tpm.c:251 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Falha ao definir o PIN da chave: %s\n" #: gnutls_tpm2.c:92 gnutls_tpm2_esys.c:474 gnutls_tpm2_ibm.c:419 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:198 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:208 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:217 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:225 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:231 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:249 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:270 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:275 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:384 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2_esys.c:173 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:189 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:190 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:191 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:192 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:196 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:201 gnutls_tpm2_ibm.c:262 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:209 gnutls_tpm2_esys.c:303 gnutls_tpm2_esys.c:374 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:221 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:226 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:245 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:250 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:258 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:261 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:274 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:295 gnutls_tpm2_ibm.c:278 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:309 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:317 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:323 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:333 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:363 gnutls_tpm2_ibm.c:363 gnutls_tpm2_ibm.c:450 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:395 #, c-format msgid "TPM2 RSA sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:414 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:420 gnutls_tpm2_esys.c:500 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:464 gnutls_tpm2_ibm.c:405 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:494 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:532 gnutls_tpm2_ibm.c:485 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:546 gnutls_tpm2_ibm.c:502 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:555 gnutls_tpm2_ibm.c:512 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:569 gnutls_tpm2_ibm.c:523 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:54 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:226 #, c-format msgid "%s\n" msgstr "" #: gpst.c:229 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:417 #, c-format msgid "Unknown ESP %s algorithm: %s" msgstr "" #: gpst.c:477 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: gpst.c:483 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:487 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:498 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:551 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:560 oncp.c:835 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" "A ignorar chaves ESP por o suporte a ESP não estar disponível nesta " "compilação\n" #: gpst.c:627 msgid "ESP disabled" msgstr "" #: gpst.c:629 msgid "No ESP keys received" msgstr "" #: gpst.c:631 msgid "ESP support not available in this build" msgstr "" #: gpst.c:635 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:680 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:702 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:711 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:719 #, c-format msgid "Got inappropriate HTTP GET-tunnel response: %.*s\n" msgstr "" #: gpst.c:861 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" "VPN connectivity may be disabled or limited without HIP report submission.\n" "You need to provide a --csd-wrapper argument with the HIP report submission " "script.\n" msgstr "" #: gpst.c:871 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:900 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:905 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:911 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:913 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:942 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:966 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:972 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:999 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1015 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1051 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1072 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1082 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1086 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1092 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: gpst.c:1101 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1109 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1157 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1162 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1182 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1202 #, c-format msgid "Sending data packet of %d bytes\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Erro ao importar nome GSSAPI para autenticação:\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "Erro ao gerar resposta GSSAPI:\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "A tentar autenticação GSSAPI no proxy\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "A tentar autenticação GSSAPI no servidor \"%s\"\n" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "Autenticação GSSAPI terminada\n" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "Símbolo GSSAPI demasiado grande (%zd bytes)\n" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "A enviar símbolo GSSAPI de %zu bytes\n" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "Falha ao enviar símbolo de autenticação GSSAPI para o proxy: %s\n" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "Falha ao receber símbolo de autenticação GSSAPI do proxy: %s\n" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "Servidor SOCKS devolveu falha no contexto GSSAPI\n" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "Resposta de estado GSSAPI desconhecida (0x%02x) do servidor SOCKS\n" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "Obtido símbolo GSSAPI de %zu bytes: %02x %02x %02x %02x\n" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "A enviar negociação de proteção GSSAPI de %zu bytes\n" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "Falha ao enviar resposta de proteção GSSAPI ao proxy: %s\n" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "Falha ao receber resposta de proteção GSSAPI do proxy: %s\n" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "Obtida resposta de proteção GSSAPI de %zu bytes: %02x %02x %02x %02x\n" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "Resposta de proteção GSSAPI do proxy inválida (%zu bytes)\n" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "Proxy SOCKS exige integridade de mensagem, que não é suportada\n" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "Proxy SOCKS exige confidencialidade de mensagem, que não é suportada\n" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "Proxy SOCKS exige tipo de proteção 0x%02x desconhecida\n" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "A tentar autenticação Basic HTTP no proxy\n" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "A tentar autenticação Basic HTTP no servidor \"%s\"\n" #: http-auth.c:200 http.c:1165 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "Esta versão do OpenConnect foi compilada sem suporte GSSAPI\n" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" "O proxy pediu autenticação Basic, que está desativada por predefinição\n" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" "O servidor \"%s\" pediu autenticação Basic, que está desativada por " "predefinição\n" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "Sem mais métodos de autenticação para tentar\n" #: http.c:319 msgid "No memory for allocating cookies\n" msgstr "Sem memória para alocar cookies\n" #: http.c:394 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Falhou ao processar resposta HTTP '%s'\n" #: http.c:400 #, c-format msgid "Got HTTP response: %s\n" msgstr "Obteve resposta HTTP: %s\n" #: http.c:408 msgid "Error processing HTTP response\n" msgstr "Erro ao processar resposta HTTP\n" #: http.c:415 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "A ignorar linha com resposta HTTP desconhecida '%s'\n" #: http.c:435 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Cookie inválido oferecido: %s\n" #: http.c:454 msgid "SSL certificate authentication failed\n" msgstr "Falha na autenticação de certificado SSL\n" #: http.c:485 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Corpo de respostas tem tamanho negativo (%d)\n" #: http.c:496 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Codificação de Conteúdo Desconhecido: %s\n" #. Now the body, if there is one #: http.c:515 #, c-format msgid "HTTP body %s (%d)\n" msgstr "Corpo HTTP %s (%d)\n" #: http.c:529 http.c:556 msgid "Error reading HTTP response body\n" msgstr "Erro ao ler corpo de reposta HTTP\n" #: http.c:542 msgid "Error fetching chunk header\n" msgstr "Erro ao obter cabeçalho do pedaço\n" #: http.c:566 msgid "Error fetching HTTP response body\n" msgstr "Erro ao obter resposta do corpo HTTP\n" #: http.c:569 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "Erro na descodificação do bloco. Esperado '', obtido: '%s'" #: http.c:581 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "" "Não pode receber corpo em HTTP 1.0 sem ligação de fecho\n" "\n" #: http.c:708 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Falhou ao processar URL redirecionado '%s': %s\n" #: http.c:732 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Impossível seguir redirecionamento para URL não https \"%s\"\n" #: http.c:760 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Falhou a alocação de novo caminho do redirecionamento relativo: %s\n" #: http.c:973 oncp.c:591 #, c-format msgid "Unexpected %d result from server\n" msgstr "Resultado inesperado %d do servidor\n" #: http.c:1021 msgid "request granted" msgstr "pedido concedido" #: http.c:1022 msgid "general failure" msgstr "falha geral" #: http.c:1023 msgid "connection not allowed by ruleset" msgstr "ligação não permitida pelas regras" #: http.c:1024 msgid "network unreachable" msgstr "rede inatingível" #: http.c:1025 msgid "host unreachable" msgstr "hospedeiro inatingível " #: http.c:1026 msgid "connection refused by destination host" msgstr "ligação recusada pelo hospedeiro no destino" #: http.c:1027 msgid "TTL expired" msgstr "TTL expirou" #: http.c:1028 msgid "command not supported / protocol error" msgstr "comando não suportado / erro de protocolo" #: http.c:1029 msgid "address type not supported" msgstr "tipo de endereço não suportado" #: http.c:1039 msgid "SOCKS server requested username/password but we have none\n" msgstr "O servidor SOCKS pediu utilizador/senha mas não há nada\n" #: http.c:1047 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "Utilizador e senha para autenticação SOCKS tem de ser < 255 bytes\n" #: http.c:1062 http.c:1118 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Erro ao escrever pedido de autorização ao proxy SOCKS: %s\n" #: http.c:1070 http.c:1125 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Erro ao ler resposta de autorização do proxy SOCKS: %s\n" #: http.c:1077 http.c:1131 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Resposta de autorização inesperada do proxy SOCKS: %02x %02x\n" #: http.c:1083 msgid "Authenticated to SOCKS server using password\n" msgstr "Autenticado no servidor SOCKS usando senha\n" #: http.c:1087 msgid "Password authentication to SOCKS server failed\n" msgstr "Falha na autenticação com senha no servidor SOCKS\n" #: http.c:1143 http.c:1150 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "O servidor SOCKS pediu autenticação GSSAPI\n" #: http.c:1156 msgid "SOCKS server requested password authentication\n" msgstr "O servidor SOCKS pediu autenticação com senha\n" #: http.c:1163 msgid "SOCKS server requires authentication\n" msgstr "O servidor SOCKS requer autenticação\n" #: http.c:1170 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "O servidor SOCKS pediu tipo de autenticação %02x desconhecida\n" #: http.c:1176 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "A pedir ligação SOCKS por proxy a %s:%d\n" #: http.c:1191 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Erro ao escrever pedido de ligação ao proxy SOCKS: %s\n" #: http.c:1199 http.c:1241 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Erro ao ler resposta de ligação do proxy SOCKS: %s\n" #: http.c:1205 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Resposta de ligação inesperada do proxy SOCKS: %02x %02x...\n" #: http.c:1213 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "Erro de proxy SOCKS %02x: %s\n" #: http.c:1217 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "Erro de proxy SOCKS %02x\n" #: http.c:1234 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Tipo de endereço inesperado %02x na resposta de ligação SOCKS\n" #: http.c:1257 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "A pedir ligação do proxy HTTP a %s:%d\n" #: http.c:1292 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Falhou o envio do pedido de proxy: %s\n" #: http.c:1315 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "Falha no pedido CONNECT do proxy: %d\n" #: http.c:1334 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Tipo de proxy '%s' desconhecido \n" #: http.c:1383 msgid "Only http or socks(5) proxies supported\n" msgstr "Apenas proxies http ou socks(5) são suportados\n" #: library.c:112 msgid "Cisco AnyConnect or openconnect" msgstr "" #: library.c:113 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "" #: library.c:129 msgid "Juniper Network Connect" msgstr "" #: library.c:130 msgid "Compatible with Juniper Network Connect / Pulse Secure SSL VPN" msgstr "" #: library.c:148 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:149 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:211 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "Tipo de protocolo VPN \"%s\" desconhecido \n" #: library.c:233 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Compilado contra biblioteca SSL sem suporte Cisco DTLS\n" #: library.c:656 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Falhou ao processar URL do servidor '%s'\n" #: library.c:662 msgid "Only https:// permitted for server URL\n" msgstr "Só é permitido https:// no URL do servidor\n" #: library.c:1056 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "" #: library.c:1085 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" #: library.c:1146 msgid "No form handler; cannot authenticate.\n" msgstr "Sem gestor de formulário, impossível autenticar.\n" #: main.c:340 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "Falha no CommandLineToArgvW(): %s\n" #: main.c:353 #, c-format msgid "Fatal error in command line handling\n" msgstr "Erro fatal na gestão da linha de comando\n" #: main.c:388 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "Falha em ReadConsole(): %s\n" #: main.c:401 #, c-format msgid "fgetws() failed: %s\n" msgstr "" #: main.c:416 main.c:429 #, c-format msgid "Error converting console input: %s\n" msgstr "Erro ao converter entrada da consola: %s\n" #: main.c:423 main.c:689 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Falha na alocação da cadeia de stdin\n" #: main.c:584 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" "Para assistência do OpenConnect, por favor, veja a página web em\n" " http://www.infradead.org/openconnect/mail.html\n" #: main.c:593 #, c-format msgid "Using OpenSSL. Features present:" msgstr "A usar OpenSSL. Funcionalidades presentes:" #: main.c:595 #, c-format msgid "Using GnuTLS. Features present:" msgstr "A usar GnuTLS. Funcionalidades presentes:" #: main.c:608 msgid "OpenSSL ENGINE not present" msgstr "MOTOR OpenSSL não está presente" #: main.c:647 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" #: main.c:657 #, c-format msgid "Supported protocols:" msgstr "" #: main.c:659 main.c:675 msgid " (default)" msgstr "" #: main.c:672 msgid "Set VPN protocol" msgstr "" #: main.c:713 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:754 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Impossível processar este caminho executável \"%s\"" #: main.c:760 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "Falha na alocação do caminho para vpnc-script\n" #: main.c:780 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "Substituir nome de máquina \"%s\" por \"%s\"\n" #: main.c:793 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Utilização: openconnect [opções] \n" #: main.c:794 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" #: main.c:796 msgid "Read options from config file" msgstr "Ler opções do ficheiro de configuração" #: main.c:797 msgid "Report version number" msgstr "Relatar número da versão" #: main.c:798 msgid "Display help text" msgstr "Mostrar texto de ajuda" #: main.c:802 msgid "Authentication" msgstr "" #: main.c:803 msgid "Set login username" msgstr "Definir nome de utilizador" #: main.c:804 msgid "Disable password/SecurID authentication" msgstr "Desativar autenticação por senha/SecuID" #: main.c:805 msgid "Do not expect user input; exit if it is required" msgstr "Não esperar entrada do utilizador; sair se for necessária" #: main.c:806 msgid "Read password from standard input" msgstr "Ler senha da entrada padrão" #: main.c:807 msgid "Choose authentication login selection" msgstr "Escolha seleção de autenticação de sessão" #: main.c:808 msgid "Provide authentication form responses" msgstr "" #: main.c:809 msgid "Use SSL client certificate CERT" msgstr "Usar o certificado CERT do cliente SSL" #: main.c:810 msgid "Use SSL private key file KEY" msgstr "Usar ficheiro de chave privada SSL CHAVE" #: main.c:811 msgid "Warn when certificate lifetime < DAYS" msgstr "Avisar quando a vida útil do certificado for < DIAS" #: main.c:812 msgid "Set login usergroup" msgstr "Definir grupo de utilizadores da sessão" #: main.c:813 msgid "Set key passphrase or TPM SRK PIN" msgstr "Definir frase-passe ou PIN TPM SRK" #: main.c:814 msgid "Key passphrase is fsid of file system" msgstr "Frase-passe da chave é fsid do sistema de ficheiros" #: main.c:815 msgid "Software token type: rsa, totp or hotp" msgstr "Tipo de símbolo de programa: rsa, totp ou hotp" #: main.c:816 msgid "Software token secret" msgstr "Segredo do símbolo de programa" #: main.c:818 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "(NOTA: libstoken (RSA SecurID) desativado nesta compilação)" #: main.c:821 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(NOTA: Yubikey OATH desativado nesta compilação)" #: main.c:824 msgid "Server validation" msgstr "" #: main.c:825 msgid "Server's certificate SHA1 fingerprint" msgstr "Impressão digital SHA1 do certificado do servidor" #: main.c:826 msgid "Do not require server SSL cert to be valid" msgstr "Não pedir validade de certificado SSL do servidor" #: main.c:827 msgid "Disable default system certificate authorities" msgstr "Desativar autoridades certificadoras predefinidas do sistema" #: main.c:828 msgid "Cert file for server verification" msgstr "Ficheiro cert para verificação do servidor" #: main.c:830 msgid "Internet connectivity" msgstr "" #: main.c:831 msgid "Set proxy server" msgstr "Definir servidor de proxy" #: main.c:832 msgid "Set proxy authentication methods" msgstr "Definir métodos de autenticação do proxy" #: main.c:833 msgid "Disable proxy" msgstr "Desativar proxy" #: main.c:834 msgid "Use libproxy to automatically configure proxy" msgstr "Usar libproxy para configurar o proxy automaticamente" #: main.c:836 msgid "(NOTE: libproxy disabled in this build)" msgstr "(NOTA: libproxy desativado nesta compilação)" #: main.c:838 msgid "Connection retry timeout in seconds" msgstr "Tempo de nova tentativa em segundos" #: main.c:839 msgid "Use IP when connecting to HOST" msgstr "Usar IP ao ligar a MÁQUINA" #: main.c:840 msgid "copy TOS / TCLASS when using DTLS" msgstr "" #: main.c:841 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:843 msgid "Authentication (two-phase)" msgstr "" #: main.c:844 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:845 msgid "Read cookie from standard input" msgstr "Ler cookie da entrada padrão" #: main.c:846 msgid "Authenticate only and print login info" msgstr "Autenticar só e imprimir informação de sessão" #: main.c:847 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:848 msgid "Print cookie before connecting" msgstr "" #: main.c:851 msgid "Process control" msgstr "" #: main.c:852 msgid "Continue in background after startup" msgstr "Continuar nos bastidores após arranque" #: main.c:853 msgid "Write the daemon's PID to this file" msgstr "Escrever a PID do daemon neste ficheiro" #: main.c:854 msgid "Drop privileges after connecting" msgstr "Largar privilégios após ligar" #: main.c:857 msgid "Logging (two-phase)" msgstr "" #: main.c:859 msgid "Use syslog for progress messages" msgstr "Usar diário de sistema para mensagens de progresso" #: main.c:861 msgid "More output" msgstr "Mais saída" #: main.c:862 msgid "Less output" msgstr "Menos saída" #: main.c:863 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "Despejar tráfego de autenticação HTTP (implica --verbose)" #: main.c:864 msgid "Prepend timestamp to progress messages" msgstr "Acrescentar carimbo a mensagens de progresso" #: main.c:866 msgid "VPN configuration script" msgstr "" #: main.c:867 msgid "Use IFNAME for tunnel interface" msgstr "Usar IFNAME na interface de túnel" #: main.c:868 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" "Terminal de linha de comando para uso com script de configuração vpnc " "compatível" #: main.c:869 msgid "default" msgstr "padrão" #: main.c:871 msgid "Pass traffic to 'script' program, not tun" msgstr "Passar tráfego ao programa de script, não \"tun\"" #: main.c:874 msgid "Tunnel control" msgstr "" #: main.c:875 msgid "Do not ask for IPv6 connectivity" msgstr "Não pedir ligação IPv6" #: main.c:876 msgid "XML config file" msgstr "Ficheiro de configuração XML" #: main.c:877 msgid "Request MTU from server (legacy servers only)" msgstr "" #: main.c:878 msgid "Indicate path MTU to/from server" msgstr "Indicar caminho MTU de/para o servidor" #: main.c:879 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:880 msgid "Disable all compression" msgstr "" #: main.c:881 msgid "Set minimum Dead Peer Detection interval" msgstr "Definir intervalo mínimo Dead Peer Detection" #: main.c:882 msgid "Require perfect forward secrecy" msgstr "Requer secretismo de reencaminhamento perfeito" #: main.c:883 msgid "Disable DTLS and ESP" msgstr "" #: main.c:884 msgid "OpenSSL ciphers to support for DTLS" msgstr "Cifras OpenSSL a suportar para DTLS" #: main.c:885 msgid "Set packet queue limit to LEN pkts" msgstr "Definir limite de fila de pacotes para COMP pacotes" #: main.c:887 msgid "Local system information" msgstr "" #: main.c:888 msgid "HTTP header User-Agent: field" msgstr "Cabeçalho HTTP User-Agent: campo" #: main.c:889 msgid "Local hostname to advertise to server" msgstr "" #: main.c:890 msgid "OS type (linux,linux-64,win,...) to report" msgstr "Tipo de OS (linux,linux-64,win,...) a reportar" #: main.c:891 msgid "reported version string during authentication" msgstr "" #: main.c:892 msgid "default:" msgstr "" #: main.c:895 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:896 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:897 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:900 msgid "Server bugs" msgstr "" #: main.c:901 msgid "Disable HTTP connection re-use" msgstr "Desativar reutilização de ligação HTTP" #: main.c:902 msgid "Do not attempt XML POST authentication" msgstr "Não tentar autenticação XML POST" #: main.c:924 #, c-format msgid "Failed to allocate string\n" msgstr "Falha ao alocar a cadeia\n" #: main.c:997 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Falha ao obter linha do ficheiro de configuração: %s\n" #: main.c:1037 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Opção não reconhecida na linha %d: \"%s\"\n" #: main.c:1047 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "A opção \"%s\" não aceita o argumento na linha %d\n" #: main.c:1051 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "A opção \"%s\" requer um argumento na linha %d\n" #: main.c:1076 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "" #: main.c:1086 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "" #: main.c:1130 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "" #: main.c:1140 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "AVISO: esta versão do openconnect foi compilada sem suporte\n" " a iconv mas parece estar a usar o conjunto de caracteres\n" " antigo \"%s\". Espere coisas estranhas.\n" #: main.c:1147 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "AVISO: esta versão do openconnect é %s mas\n" " a biblioteca libopenconnect é %s\n" #: main.c:1157 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Falha ao alocar estrutura vpninfo\n" #: main.c:1215 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Impossível usar a opção \"config\" no ficheiro de configuração\n" #: main.c:1223 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Impossível abrir o ficheiro \"%s\": %s\n" #: main.c:1239 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "Modo de compressão \"%s\" inválido\n" #: main.c:1260 #, c-format msgid "Missing colon in resolve option\n" msgstr "Dois pontos (:) em falta na opção de resolução\n" #: main.c:1265 #, c-format msgid "Failed to allocate memory\n" msgstr "Falha ao alocar a memória\n" #: main.c:1349 main.c:1358 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d demasiado pequeno\n" #: main.c:1388 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "A desativar reutilização de todas as ligações HTTP devido à opção --no-http-" "keepalive.\n" "Se ajudar, por favor, reporte em .\n" #: main.c:1394 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" #: main.c:1411 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Comprimento 0 na fila não é permitido; a usar 1\n" #: main.c:1425 #, c-format msgid "OpenConnect version %s\n" msgstr "Versão OpenConnect %s\n" #: main.c:1463 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Modo de símbolo de programa \"%s\" inválido\n" #: main.c:1473 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "Identidade OS \"%s\" inválida\n" #: main.c:1506 #, c-format msgid "Too many arguments on command line\n" msgstr "Demasiados argumentos na linha de comando\n" #: main.c:1509 #, c-format msgid "No server specified\n" msgstr "Nenhum servidor especificado\n" #: main.c:1525 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "Esta versão do openconnect foi compilada sem suporte a libproxy\n" #: main.c:1555 #, c-format msgid "Error opening cmd pipe\n" msgstr "Erro ao abrir o canal cmd\n" #: main.c:1588 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "Falha ao obter o cookie WebVPN\n" #: main.c:1609 #, c-format msgid "Creating SSL connection failed\n" msgstr "Falhou ao criar a ligação SSL\n" #: main.c:1625 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:1633 #, c-format msgid "Connected as %s%s%s, using SSL%s%s, with %s%s%s %s\n" msgstr "" #: main.c:1639 msgid "disabled" msgstr "" #: main.c:1639 msgid "in progress" msgstr "" #: main.c:1643 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "Sem argumento --script indicado; DNS e routing não estão configurados\n" #: main.c:1645 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Veja http://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:1658 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Falhou ao abrir '%s' para escrita: %s\n" #: main.c:1670 #, c-format msgid "Continuing in background; pid %d\n" msgstr "A continuar nos bastidores; pid %d\n" #: main.c:1687 msgid "User requested reconnect\n" msgstr "Re-ligação pedida pelo utilizador\n" #: main.c:1695 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "O cookie foi rejeitado ao religar; a sair.\n" #: main.c:1699 msgid "Session terminated by server; exiting.\n" msgstr "Sessão terminada pelo servidor; a sair.\n" #: main.c:1703 msgid "User cancelled (SIGINT/SIGTERM); exiting.\n" msgstr "" #: main.c:1707 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "Utilizador desanexado da sessão (SIGHUP); a sair.\n" #: main.c:1711 msgid "Unknown error; exiting.\n" msgstr "Erro desconhecido; a sair.\n" #: main.c:1730 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Falhou ao abrir %s para escrita: %s\n" #: main.c:1738 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Falhou ao escrever configuração em %s: %s\n" #: main.c:1797 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "O certificado do servidor SSL não correspondeu: %s\n" #: main.c:1816 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Certificado do servidor VPN \"%s\" falhou a verificação.\n" "Razão_: %s\n" #: main.c:1819 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" #: main.c:1820 #, c-format msgid " --servercert %s\n" msgstr "" #: main.c:1825 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Insira \"%s\" para aceitar, \"%s\" para abortar; qualquer outra para ver: " #: main.c:1826 main.c:1844 msgid "no" msgstr "não" #: main.c:1826 main.c:1832 msgid "yes" msgstr "sim" #: main.c:1853 #, c-format msgid "Server key hash: %s\n" msgstr "Hash da chave do servidor: %s\n" #: main.c:1887 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Escolha de autenticação \"%s\" coincide com múltiplas opções\n" #: main.c:1890 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Escolha de autenticação \"%s\" indisponível\n" #: main.c:1911 msgid "User input required in non-interactive mode\n" msgstr "Requerida entrada do utilizador em modo não interativo\n" #: main.c:2149 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Falha ao abrir ficheiro de símbolo para escrita: %s\n" #: main.c:2157 #, c-format msgid "Failed to write token: %s\n" msgstr "Falha ao escrever símbolo: %s\n" #: main.c:2203 main.c:2224 #, c-format msgid "Soft token string is invalid\n" msgstr "Cadeia suave de símbolo é inválida\n" #: main.c:2206 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Não consegue abrir o ficheiro ~/.stokenrc\n" #: main.c:2209 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "O OpenConnect não foi compilado com suporte a libstoken\n" #: main.c:2212 #, c-format msgid "General failure in libstoken\n" msgstr "Falha geral em libstoken\n" #: main.c:2227 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "O OpenConnect não foi compilado com suporte a liboath\n" #: main.c:2230 #, c-format msgid "General failure in liboath\n" msgstr "Falha geral em liboath\n" #: main.c:2241 #, c-format msgid "Yubikey token not found\n" msgstr "Símbolo Yubikey não encontrado\n" #: main.c:2244 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "O OpenConnect não foi compilado com suporte a Yubikey\n" #: main.c:2247 #, c-format msgid "General Yubikey failure: %s\n" msgstr "Falha geral de Yubikey: %s\n" #: mainloop.c:127 #, c-format msgid "Set up tun script failed\n" msgstr "Falha na definição do script tun\n" #: mainloop.c:134 #, c-format msgid "Set up tun device failed\n" msgstr "Falha na definição do dispositivo tun\n" #: mainloop.c:265 msgid "Caller paused the connection\n" msgstr "Chamador pausou a ligação\n" #: mainloop.c:273 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Nada para fazer; a descansar durante %d ms...\n" #: mainloop.c:294 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "Falha em WaitForMultipleObjects: %s\n" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "Falha em InitializeSecurityContext(): %lx\n" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "Falha em AcquireCredentialsHandle(): %lx\n" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "Erro ao comunicar com o ajudante ntlm_auth\n" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "A tentar autenticação HTTP NTLM no proxy (single-sign-on)\n" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "A tentar autenticação HTTP NTLM no servidor \"%s\" (single-sign-on)\n" #: ntlm.c:978 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "A tentar autenticação HTTP NTLMv%d no proxy\n" #: ntlm.c:982 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "A tentar autenticação HTTP NTLMv%d no servidor \"%s\"\n" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "Cadeia de símbolo base32 inválida\n" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "Falha ao alocar memória para descodificar segredo OATH\n" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "Esta versão de OpenConnect foi compilada sem suporte de PSKC\n" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "Aceitar para gerar tokencode INICIAL\n" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "Aceitar para gerar tokencode SEGUINTE\n" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" "O servidor está a rejeitar o símbolo suave; a mudar para entrada manual\n" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "A gerar código de símbolo OATH TOTP\n" #: oath.c:565 msgid "Generating OATH HOTP token code\n" msgstr "A gerar código de símbolo OATH HOTP\n" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "Cookie \"%s\" inválido\n" #: oncp.c:160 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "Comprimento %d inesperado para TLV %d/%d\n" #: oncp.c:166 #, c-format msgid "Received MTU %d from server\n" msgstr "Recebido MTU %d do servidor\n" #: oncp.c:175 #, c-format msgid "Received DNS server %s\n" msgstr "Recebido DNS do servidor %s\n" #: oncp.c:186 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "Recebido domínio de procura %.*s\n" #: oncp.c:201 #, c-format msgid "Received internal IP address %s\n" msgstr "Recebido endereço interno IP %s\n" #: oncp.c:210 #, c-format msgid "Received netmask %s\n" msgstr "Recebida máscara de rede %s\n" #: oncp.c:219 #, c-format msgid "Received internal gateway address %s\n" msgstr "Recebido endereço interno de gateway %s\n" #: oncp.c:232 #, c-format msgid "Received split include route %s\n" msgstr "Recebida rota dividida incluída %s\n" #: oncp.c:254 #, c-format msgid "Received split exclude route %s\n" msgstr "Recebida rota dividida excluída %s\n" #: oncp.c:274 #, c-format msgid "Received WINS server %s\n" msgstr "Recebido servidor WINS %s\n" #: oncp.c:297 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "Encriptação ESP: 0x%02x (%s)\n" #: oncp.c:316 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "ESP HMAC: 0x%02x (%s)\n" #: oncp.c:327 #, c-format msgid "ESP compression: %d\n" msgstr "Compressão ESP: %d\n" #: oncp.c:335 #, c-format msgid "ESP port: %d\n" msgstr "Porta ESP: %d\n" #: oncp.c:342 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "Vida útil da chave ESP: %u bytes\n" #: oncp.c:350 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "Vida útil da chave ESP: %u segundos\n" #: oncp.c:358 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "Recurso de ESP para SSL: %u segundos\n" #: oncp.c:366 #, c-format msgid "ESP replay protection: %d\n" msgstr "Proteção de reprodução ESP: %d\n" #: oncp.c:374 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "ESP SPI (limite exterior): %x\n" #: oncp.c:383 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "%d bytes de segredos ESP\n" #: oncp.c:395 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "Grupo TLV %d desconhecido, atr. %d comp. %d:%s\n" #: oncp.c:473 msgid "Failed to parse KMP header\n" msgstr "Falha ao processar cabeçalho KMP\n" #: oncp.c:490 msgid "Failed to parse KMP message\n" msgstr "Falha ao processar mensagem KMP\n" #: oncp.c:496 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "Obtida mensagem KMP %d de tamanho %d\n" #: oncp.c:512 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "Recebidos TLVs não ESP (grupo %d) em negociação ESP KMP\n" #: oncp.c:577 oncp.c:609 oncp.c:747 msgid "Error creating oNCP negotiation request\n" msgstr "Erro ao criar pedido de negociação oNCP\n" #: oncp.c:618 oncp.c:783 msgid "Short write in oNCP negotiation\n" msgstr "Escrita curta em negociação oNCP\n" #: oncp.c:631 oncp.c:666 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "Lidos %d bytes de registo SSL\n" #: oncp.c:636 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "Resposta inesperada de tamanho %d após pacote de nome de máquina\n" #: oncp.c:643 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "Resposta do servidor ao nome de máquina é erro 0x%02x\n" #: oncp.c:670 msgid "Invalid packet waiting for KMP 301\n" msgstr "Pacote inválido à espera para KMP 301\n" #: oncp.c:683 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "Esperada mensagem KMP 301 do servidor, obtida %d\n" #: oncp.c:692 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "Mensgem KMP 301 do servidor demasiado grande (%d bytes)\n" #: oncp.c:698 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "Obtida mensagem KMP 301 de comprimento %d\n" #: oncp.c:705 msgid "Failed to read continuation record length\n" msgstr "Falha ao ler comprimento de registo de continuação\n" #: oncp.c:711 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "Registo de %d bytes adicionais demasiado grande; faria %d\n" #: oncp.c:720 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "Falha ao ler comprimento %d do registo de continuação\n" #: oncp.c:726 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "Lidos %d bytes adicionais da mensagem KMP 301\n" #: oncp.c:767 msgid "Error negotiating ESP keys\n" msgstr "Erro ao negociar chaves ESP\n" #: oncp.c:776 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:829 msgid "new incoming" msgstr "nova chegada" #: oncp.c:830 msgid "new outgoing" msgstr "nova saída" #: oncp.c:855 msgid "Read only 1 byte of oNCP length field\n" msgstr "Lido só 1 byte do campo de comprimento de oNCP\n" #: oncp.c:864 msgid "Server terminated connection (session expired)\n" msgstr "O servidor terminou a ligação (sessão expirada)\n" #: oncp.c:868 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "O servidor terminou a ligação (motivo: %d)\n" #: oncp.c:874 msgid "Server sent zero-length oNCP record\n" msgstr "O servidor enviou um registo oNCP de comprimento zero\n" #: oncp.c:969 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "Mensagen KMP chegada %d de tamanho %d (obtido %d)\n" #: oncp.c:972 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" "Continuando a processar a mensagem KMP %d agora de tamanho %d (obtido %d)\n" #: oncp.c:991 msgid "Unrecognised data packet\n" msgstr "Pacote de dados não reconhecido\n" #: oncp.c:1053 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "Mensagem KMP %d de tamanho %d desconhecida:\n" #: oncp.c:1058 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr ".... + %d mais bytes não recebidos\n" #: oncp.c:1073 msgid "Packet outgoing:\n" msgstr "Pacote de saída:\n" #: oncp.c:1134 msgid "Sent ESP enable control packet\n" msgstr "Enviado pacote de ativação de controlo ESP\n" #: oncp.c:1268 msgid "Logout successful.\n" msgstr "" #: openconnect-internal.h:1119 openconnect-internal.h:1127 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "ERRO: %s() chamado com UTF-8 inválido para o argumento \"%s\"\n" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "Falha ao criar SSL_SESSION ASN.1 para OpenSSL: %s\n" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "O OpenSSL falhou o processamento de SSL_SESSION ASN 1\n" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "Falhou ao iniciar a sessão DTLSv1\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "" #: openssl-dtls.c:365 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Falhou a inicialização de DTLSv1 CTX\n" #: openssl-dtls.c:378 msgid "Set DTLS CTX version failed\n" msgstr "" #: openssl-dtls.c:395 msgid "Failed to generate DTLS key\n" msgstr "" #: openssl-dtls.c:413 msgid "Set DTLS cipher list failed\n" msgstr "Falhou a definição da lista de cifras DTLS\n" #: openssl-dtls.c:439 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:460 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "SSL_set_session() falhou com o antigo protocolo versão 0x%x\n" "Você está ausar uma versão do OpenSSL anterior do que a 0.9.8m?\n" "Consulte http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Utilize a opção de linha de comando --no-dtls para evitar esta mensagem\n" #: openssl-dtls.c:493 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:566 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "Estabelecida ligação DTLS (usando OpenSSL). Ciphersuite %s.\n" #: openssl-dtls.c:603 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" "O seu OpenSSL é anterior ao que acabou de compilar, por isso pode falhar o " "DTLS!" #: openssl-dtls.c:654 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Isto é provavelmente porque o seu OpenSSL está quebrado\n" "Veja http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: openssl-dtls.c:661 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "Cumprimento DTLS falhou:%d\n" #: openssl-esp.c:87 msgid "Failed to initialise ESP cipher:\n" msgstr "Falhou ao inicializar cifra ESP\n" #: openssl-esp.c:101 msgid "Failed to initialize ESP HMAC\n" msgstr "Falhou ao inicializar ESP HMAC\n" #: openssl-esp.c:157 msgid "Failed to generate random keys for ESP:\n" msgstr "Falha ao gerar chaves aleatórias para ESP:\n" #: openssl-esp.c:202 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "Falha ao configurar contexto de descrição para pacote ESP:\n" #: openssl-esp.c:210 msgid "Failed to decrypt ESP packet:\n" msgstr "Falha ao desencriptar pacote ESP:\n" #: openssl-esp.c:241 msgid "Failed to encrypt ESP packet:\n" msgstr "Falha ao encriptar pacote ESP:\n" #: openssl-pkcs11.c:43 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "Falha ao estabelecer contexto PKCS#11:\n" #: openssl-pkcs11.c:49 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "Falha ao carregar módulo de fornecedor PKCS#11 (%s):\n" #: openssl-pkcs11.c:269 msgid "PIN locked\n" msgstr "PIN trancado\n" #: openssl-pkcs11.c:272 msgid "PIN expired\n" msgstr "PIN expirado\n" #: openssl-pkcs11.c:275 msgid "Another user already logged in\n" msgstr "Já há outro utilizador em sessão\n" #: openssl-pkcs11.c:279 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "Erro desconhecido ao iniciar sessão no símbolo PKCS#11\n" #: openssl-pkcs11.c:286 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "Sessão iniciada em PKCS#11 \"%s\"\n" #: openssl-pkcs11.c:300 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "Falha ao enumerar certificados na tomada PKCS#11 \"%s\"\n" #: openssl-pkcs11.c:306 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "Encontrados %d certificadoss em \"%s\"\n" #: openssl-pkcs11.c:342 openssl-pkcs11.c:565 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "Falha ao processar URL do servidor \"%s\"\n" #: openssl-pkcs11.c:349 openssl-pkcs11.c:575 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "Falha ao processar ficheiro PKCS#12: %s\n" #: openssl-pkcs11.c:383 openssl-pkcs11.c:617 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "A usar chave PKCS#11 %s\n" #: openssl-pkcs11.c:393 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "" #: openssl-pkcs11.c:401 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "Conteúdo do certificador X.509 não obtido por libp11\n" #: openssl-pkcs11.c:412 openssl.c:713 msgid "Failed to install certificate in OpenSSL context\n" msgstr "Falha ao instalar certificado no contexto OpenSSL\n" #: openssl-pkcs11.c:458 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "Falha ao carregar chave privada como PKCS#8: %s\n" #: openssl-pkcs11.c:464 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "Encontrada %d chaves em \"%s\"\n" #: openssl-pkcs11.c:497 msgid "Certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:503 openssl-pkcs11.c:526 msgid "Certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:506 msgid "Checking EC key matches cert\n" msgstr "" #: openssl-pkcs11.c:510 msgid "Failed to allocate signature buffer\n" msgstr "" #: openssl-pkcs11.c:520 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" #: openssl-pkcs11.c:638 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "" #: openssl-pkcs11.c:649 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "Falha ao carregar chave privada como PKCS#8: %s\n" #: openssl-pkcs11.c:678 msgid "Add key from PKCS#11 failed\n" msgstr "Falha ao adicionar a chave de TPM\n" #: openssl-pkcs11.c:710 openssl-pkcs11.c:716 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "Esta versão de OpenConnect foi compilada sem suporte de PSKC\n" #: openssl.c:147 msgid "Failed to write to SSL socket\n" msgstr "Falha ao escrever na tomada SSL\n" #: openssl.c:197 openssl.c:263 msgid "Failed to read from SSL socket\n" msgstr "Falha ao ler da tomada SSL\n" #: openssl.c:292 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" "Erro de leitura SSL %d (o servidor provavelmente fechou a ligação); a " "religar.\n" #: openssl.c:317 #, c-format msgid "SSL_write failed: %d\n" msgstr "SSL_write falhou: %d\n" #: openssl.c:389 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "Tipo %d de pedido SSL UI não gerido\n" #: openssl.c:465 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "Senha PEM demasiado comprida (%d >= %d)\n" #: openssl.c:498 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Certificado extra de %s: '%s'\n" #: openssl.c:548 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Falhou processamento PKCS#12 (consultar erros acima)\n" #: openssl.c:563 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS#12 não continha um certificado!\n" #: openssl.c:572 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS#12 não continha uma chave privada!\n" #: openssl.c:577 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:600 msgid "Can't load TPM engine.\n" msgstr "Não consegue carregar o motor TPM.\n" #: openssl.c:606 msgid "Failed to init TPM engine\n" msgstr "Falhou iniciar o motor TPM\n" #: openssl.c:616 msgid "Failed to set TPM SRK password\n" msgstr "Falhou ao definir a senha TPM SRK\n" #: openssl.c:630 msgid "Failed to load TPM private key\n" msgstr "Falhou carregar a chave privada TPM\n" #: openssl.c:636 msgid "Add key from TPM failed\n" msgstr "Falhou adicionar a chave de TPM\n" #: openssl.c:687 openssl.c:835 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Falhou ao abrir o ficheiro de certificado %s: %s\n" #: openssl.c:697 msgid "Loading certificate failed\n" msgstr "Falhou ao carregar o certificado\n" #: openssl.c:735 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" "Falha ao processar todos os certificados de suporte. A tentar mesmo " "assim...\n" #: openssl.c:748 msgid "PEM file" msgstr "Ficheiro PEM" #: openssl.c:777 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Falha ao criar BIO para item \"%s\"\n" #: openssl.c:802 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Falhou carregar chave privada (senha errada?)\n" #: openssl.c:808 msgid "Loading private key failed (see above errors)\n" msgstr "Falhou carregar a chave privada (consultar erros acima)\n" #: openssl.c:858 msgid "Failed to load X509 certificate from keystore\n" msgstr "Falha ao carregar certificado X509 da loja\n" #: openssl.c:864 msgid "Failed to use X509 certificate from keystore\n" msgstr "Falha ao usar certificado X509 da loja\n" #: openssl.c:896 msgid "Failed to use private key from keystore\n" msgstr "Falha ao usar chave privada da loja\n" #: openssl.c:912 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Falhou ao abrir o ficheiro de chave privada %s: %s\n" #: openssl.c:936 openssl.c:951 openssl.c:972 openssl.c:1038 msgid "Loading private key failed\n" msgstr "Falha ao carregar chave privada\n" #: openssl.c:1032 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1049 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "" "Falhou a identificação do tipo de chave privada em '%s'\n" "\n" #: openssl.c:1203 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Nome DNS alternativo \"%s\" encontrado\n" #: openssl.c:1210 #, c-format msgid "No match for altname '%s'\n" msgstr "Nome DNS alternativo \"%s\" não encontrado\n" #: openssl.c:1224 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" "O certificado tem nome alternativo GEN_IPADD com comprimento falso %d\n" #: openssl.c:1235 openssl.c:1381 #, c-format msgid "Matched %s address '%s'\n" msgstr "Correspondeu %s do endereço '%s'\n" #: openssl.c:1242 #, c-format msgid "No match for %s address '%s'\n" msgstr "Sem correspondências do endereço %s '%s':\n" #: openssl.c:1284 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "URI '%s' tem um caminho não vazio; será ignorado\n" #: openssl.c:1289 #, c-format msgid "Matched URI '%s'\n" msgstr "URI correspondido '%s'\n" #: openssl.c:1300 #, c-format msgid "No match for URI '%s'\n" msgstr "Sem correspondências do URI '%s'\n" #: openssl.c:1315 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" "Sem correspondências para nome alternativo \"%s\" de certificado do par\n" #: openssl.c:1323 msgid "No subject name in peer cert!\n" msgstr "Sem nome de assunto no certificado do par!\n" #: openssl.c:1343 msgid "Failed to parse subject name in peer cert\n" msgstr "Falha ao processar nome de assunto no certificado do par\n" #: openssl.c:1350 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Assunto no certificado do par incorreto (\"%s\" != \"%s\")\n" #: openssl.c:1355 openssl.c:1389 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Encontrado nome de assunto \"%s\" no certificado do par\n" #: openssl.c:1451 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Certificado extra do catfile: '%s'\n" #: openssl.c:1589 msgid "Error in client cert notAfter field\n" msgstr "Erro no campo notAfter do certificado do cliente\n" #: openssl.c:1602 msgid "" msgstr "" #: openssl.c:1655 msgid "Create TLSv1 CTX failed\n" msgstr "" #: openssl.c:1674 msgid "SSL certificate and key do not match\n" msgstr "" #: openssl.c:1719 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Falha ao ler certificados de ficheiro CA \"%s\"\n" #: openssl.c:1752 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Falhou ao abrir ficheiro CA '%s'\n" #: openssl.c:1812 msgid "SSL connection failure\n" msgstr "falha na ligação SSL\n" #: openssl.c:1973 msgid "Failed to calculate OATH HMAC\n" msgstr "Falha ao alocar a cadeia\n" #: script.c:130 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Descarte de má divisão inclui: \"%s\"\n" #: script.c:134 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Descarte de má divisão exclui: \"%s\"\n" #: script.c:507 script.c:555 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Falha ao espalhar script \"%s\" para %s: %s\n" #: script.c:562 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "Script \"%s\" saiu anormalmente (%x)\n" #: script.c:570 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Script \"%s\" devolveu o erro %d\n" #: ssl.c:108 msgid "Socket connect cancelled\n" msgstr "Ligação à tomada cancelada\n" #: ssl.c:217 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "Falha ao religar ao proxy %s: %s\n" #: ssl.c:221 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "Falha ao religar à máquina %s: %s\n" #: ssl.c:289 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Proxy de libproxy: %s://%s:%d/\n" #: ssl.c:317 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "Falha em getaddrinfo para a máquina \"%s\": %s\n" #: ssl.c:326 ssl.c:451 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" "A religar ao servidor DynDNS usando o endereço IP anteriormente em cache\n" #: ssl.c:341 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "A tentar ligar ao proxy %s%s%s:%s\n" #: ssl.c:342 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "A tentar ligar ao servidor %s%s%s:%s\n" #: ssl.c:362 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "Ligado a %s%s%s:%s\n" #: ssl.c:374 msgid "Failed to allocate sockaddr storage\n" msgstr "Falha ao alocar armazenamento sockaddr\n" #: ssl.c:416 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "Falha ao ligar a %s%s%s:%s: %s\n" #: ssl.c:434 msgid "Forgetting non-functional previous peer address\n" msgstr "A esquecer endereço não funcional anterior do par\n" #: ssl.c:446 #, c-format msgid "Failed to connect to host %s\n" msgstr "Falha ao ligar à máquina %s\n" #: ssl.c:465 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "A religar ao proxy %s\n" #: ssl.c:536 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:564 msgid "Could not obtain file system ID for passphrase\n" msgstr "Impossível obter ID de sistema de ficheiros para frase-passe\n" #: ssl.c:575 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "Falha ao abrir ficheiro de chave privada \"%s\": %s\n" #: ssl.c:603 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:694 msgid "No error" msgstr "Sem erros" #: ssl.c:695 msgid "Keystore locked" msgstr "Loja trancada" #: ssl.c:696 msgid "Keystore uninitialized" msgstr "Loja inicializada" #: ssl.c:697 msgid "System error" msgstr "Erro do sistema" #: ssl.c:698 msgid "Protocol error" msgstr "Erro de protocolo" #: ssl.c:699 msgid "Permission denied" msgstr "Permissão negada" #: ssl.c:700 msgid "Key not found" msgstr "Chave não encontrada" #: ssl.c:701 msgid "Value corrupted" msgstr "Valor corrompido" #: ssl.c:702 msgid "Undefined action" msgstr "Ação indefinida" #: ssl.c:706 msgid "Wrong password" msgstr "Senha errada" #: ssl.c:707 msgid "Unknown error" msgstr "Erro desconhecido" #: ssl.c:896 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "openconnect_fopen_utf8() usado com modo não suportado \"%s\"\n" #: ssl.c:931 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "Família de protocolo desconhecida %d. Impossível fazer DTLS\n" #: ssl.c:950 msgid "Open UDP socket" msgstr "Abrir tomada UDP para DTLS:" #: ssl.c:981 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "Família de protocolo desconhecida %d. Impossível fazer DTLS\n" #: ssl.c:989 msgid "Bind UDP socket" msgstr "Tomada UDP associada para DTLS" #: ssl.c:996 msgid "Connect UDP socket\n" msgstr "Ligar tomada UDP\n" #: ssl.c:1034 msgid "Cookie is no longer valid, ending session\n" msgstr "O cookie já não é válido, a terminar sessão\n" #: ssl.c:1038 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "sono %ds, expiração restante %ds\n" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "Símbolo SSPI demasiado grande (%ld bytes)\n" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "A enviar símbolo SSPI de %lu bytes\n" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "Falha ao enviar símbolo de autenticação SSPI ao proxy: %s\n" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "Falha ao receber símbolo de autenticação SSPI do proxy: %s\n" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "Servidor SOCKS devolveu falha no contexto SSPI\n" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "Resposta de estado SSPI (0x%02x) desconhecida do servidor SOCKS\n" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "Obtido símbolo SSPI de %lu bytes: %02x %02x %02x %02x\n" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "Falha em QueryContextAttributes(): %lx\n" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "Falha em EncryptMessage(): %lx\n" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "Resultado de EncryptMessage() demasiado grande (%lu + %lu + %lu)\n" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "A enviar negociação de proteção SSPI de %u bytes\n" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "Falha ao enviar resposta de proteção SSPI ao proxy: %s\n" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "Falha ao receber resposta de proteção SSPI do proxy: %s\n" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "Obtida resposta de proteção SSPI de %d bytes: %02x %02x %02x %02x\n" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "Falha em DecryptMessage: %lx\n" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "Resposta de proteção SSPI do proxy inválida (%lu bytes)\n" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "Insira as credenciais para destrancar o símbolo de programa." #: stoken.c:82 msgid "Device ID:" msgstr "ID do Dispositivo:" #: stoken.c:89 msgid "Password:" msgstr "Senha:" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "Símbolo suave contornado pelo utilizador.\n" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "Todos os campos são necessários; tente novamente.\n" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "Falha geral em libstoken.\n" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "ID de dispositivo ou senha incorretas; tente novamente.\n" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "Inicialização de símbolo suave com sucesso.\n" #: stoken.c:185 msgid "Enter software token PIN." msgstr "Insira o PIN do símbolo de programa." #: stoken.c:189 msgid "PIN:" msgstr "PIN:" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "Formato de PIN inválido; tente nvamente.\n" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "A gerar código de símbolo RSA\n" #: tun-win32.c:76 msgid "Error accessing registry key for network adapters\n" msgstr "Erro ao aceder à chave de registo para adaptadores de rede\n" #: tun-win32.c:139 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "A ignorar ambiente TAP \"%s\" não correspondente\n" #: tun-win32.c:154 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "Sem adaptadores Windows-TAP. Tem o controlador instalado?\n" #: tun-win32.c:186 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" #: tun-win32.c:200 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "" #: tun-win32.c:231 #, c-format msgid "Failed to open %s\n" msgstr "Falha ao abrir %s\n" #: tun-win32.c:236 #, c-format msgid "Opened tun device %s\n" msgstr "Dispositivo tun %s aberto\n" #: tun-win32.c:244 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Falha ao obter versão do controlador TAP: %s\n" #: tun-win32.c:250 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Erro: controlador TAP-Windows v9.9 ou superior requerida (encontrada %ld." "%ld)\n" #: tun-win32.c:271 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Falha ao definir endereço IP TAP: %s\n" #: tun-win32.c:283 tun-win32.c:406 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Falha ao definir estado do suporte TAP: %s\n" #: tun-win32.c:316 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "O dispositivo TAP abortou a ligação. A desligar.\n" #: tun-win32.c:321 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Falha ao ler do dispositivo TAP: %s\n" #: tun-win32.c:335 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Falha ao ler completamente o dispositivo TAP: %s\n" #: tun-win32.c:358 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "Escritos %ld bytes no tun\n" #: tun-win32.c:368 msgid "Waiting for tun write...\n" msgstr "A aguardar pela escrita tun...\n" #: tun-win32.c:371 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "Escritos %ld bytes no tun após esperar\n" #: tun-win32.c:378 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Falha ao escrever no dispositivo TAP: %s\n" #: tun-win32.c:423 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "Espalhar scripts de túnel ainda não é suportado em Windows\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Impossível abrir /dev/tun para canalização" #: tun.c:92 msgid "Can't push IP" msgstr "Não pode forçar o IP" #: tun.c:102 msgid "Can't set ifname" msgstr "Não consegue definir ifname" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "Não consegue abrir %s: %s" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Impossível canalizar %s para IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "open /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Falha ao criar novo tun" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "Falha ao pôr o descritor de ficheiro em modo message-discard" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "" #: tun.c:205 msgid "open net" msgstr "rede aberta" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Falha ao abrir dispositivo tun: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "Falha ao abrir dispositivo tun: %s\n" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" "Para configurar a rede local, o openconnect tem de ser executado como root.\n" "Veja http://www.infradead.org/openconnect/nonroot.html para mais informação\n" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" "Nome de ambiente inválido \"%s\"; tem de ser \"utun%%d\" ou \"tun%%d\"\n" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "Falha ao abrir a tomada SYSPROTO_CONTROL: %s\n" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "Falha ao consultar id de controlo utun: %s\n" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "Falha ao alocar nome de dsipositivo utun: %s\n" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "Falha ao ligar unidade utun: %s\n" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Nome de ambiente \"%s\" inválido; tem de ser \"tun%%d\"\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Impossível abrir \"%s\": %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:479 #, c-format msgid "socketpair failed: %s\n" msgstr "Falha em socketpair: %s\n" #: tun.c:484 #, c-format msgid "fork failed: %s\n" msgstr "Falha em fork: %s\n" #: tun.c:488 msgid "setpgid" msgstr "setpgid" #: tun.c:493 msgid "execl" msgstr "execl" #: tun.c:498 msgid "(script)" msgstr "(script)" #: tun.c:566 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Falha ao escrever pacote chegado: %s\n" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "Falha ao abrir %s: %s\n" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "Falha em fstat() %s: %s\n" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Falha ao alocar %d bytes para %s\n" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "Falha ao ler %s: %s\n" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "A tratar máquina \"%s\" como nome de máquina em bruto\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Falhou no SHA1 do ficheiro existente\n" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "Ficheiro de configuração em XML de SHA1: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Falha ao processar ficheiro de configuração XML %s\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Máquina \"%s\" tem o endereço \"%s\"\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Máquina \"%s\" tem o grupo de utilizadores \"%s\"\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "Máquina \"%s\" não listada na configuração; a tratar como nome de máquina em " "bruto\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "Falha ao enviar \"%s\" para a aplicação ykneo-oath: %s\n" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "Resposta curta a \"%s\" inválida da aplicação ykneo-oath\n" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "Falha na resposta a \"%s\": %04x\n" #: yubikey.c:174 msgid "select applet command" msgstr "selecione o comando da aplicação" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "Resposta não reconhecida da aplicação ykneo-oath\n" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "Encontrada aplicação ykneo-oath v%d.%d.%d.\n" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "PIN necessário para a aplicação Yubikey OATH" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "PIN Yubikey:" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "Falha ao calcular resposta de desbloqueio de Yubikey\n" #: yubikey.c:274 msgid "unlock command" msgstr "comando de desbloqueio" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "A tentar a variante de carácter truncado PBKBF2 do PIN Yubikey\n" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "Falha ao estabelecer contexto PC/SC: %s\n" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "Contexto PC/SC estabelecido\n" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "Falha ao consultar lista de leitor: %s\n" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "Falha ao ligar ao leitor PC/SC \"%s\": %s\n" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "Leitor PC/SC \"%s\" ligado\n" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "Falha ao obter acesso exclusivo ao leitor \"%s\": %s\n" #: yubikey.c:412 msgid "list keys command" msgstr "comando para listar chaves" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "Encontrada chave %s/%s \"%s\" em \"%s\"\n" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" "Símbolo \"%s\" não encontrado em Yubikey \"%s\". A procurar outra " "Yubikey...\n" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" "O servidor está a rejeitar o símbolo Yubikey; a mudar para entrada manual\n" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "A gerar código de símbolo Yubikey\n" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "Falha ao obter acesso exclusivo a Yubikey: %s\n" #: yubikey.c:619 msgid "calculate command" msgstr "comando para calcular" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "Resposta não reconhecida de Yubikey ao gerar código de símbolo\n" openconnect-8.05/po/bs.po0000664000076400007640000035227613470043037017137 0ustar00dwoodhoudwoodhou00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2019-05-18 10:44-0700\n" "PO-Revision-Date: 2011-09-22 22:31+0000\n" "Last-Translator: FULL NAME \n" "Language-Team: Bosnian (http://www.transifex.net/projects/p/meego/team/bs/)\n" "Language: bs\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && n" "%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2)\n" #: auth-globalprotect.c:108 #, c-format msgid "" "SAML login is required via %s to this URL:\n" "\t%s" msgstr "" #: auth-globalprotect.c:110 msgid "Please enter your username and password" msgstr "" #: auth-globalprotect.c:119 msgid "Username" msgstr "" #: auth-globalprotect.c:134 msgid "Password" msgstr "" #: auth-globalprotect.c:181 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:260 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:266 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:272 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:315 msgid "Please select GlobalProtect gateway." msgstr "" #: auth-globalprotect.c:325 msgid "GATEWAY:" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:379 #, c-format msgid "%d gateway servers available:\n" msgstr "" #: auth-globalprotect.c:400 #, c-format msgid " %s (%s)\n" msgstr "" #: auth-globalprotect.c:484 auth-juniper.c:730 auth.c:669 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "Nije uspjelo proizvesti OTP token kod; onemogućavanje token\n" #: auth-globalprotect.c:584 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" #: auth-globalprotect.c:636 oncp.c:1266 msgid "Logout failed.\n" msgstr "" #: auth-globalprotect.c:638 msgid "Logout successful\n" msgstr "" #: auth-juniper.c:142 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "Ignorišem nepoznati objekt za potvrdu unosa na formularu '%s'\n" #: auth-juniper.c:153 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "Ignorišem nepoznati objekt za unos podataka na formularu '%s'\n" #: auth-juniper.c:163 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "Odbacujem duplu opciju '%s'\n" #: auth-juniper.c:236 auth.c:408 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Ne može baratati form metodom= '%s', akcija= '%s'\n" #: auth-juniper.c:267 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "" #: auth-juniper.c:337 msgid "TNCC support not implemented yet on Windows\n" msgstr "TNCC podrška još nije realizovana na Windows\n" #: auth-juniper.c:359 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "Nema DSPREAUTH kolačića; ne pokušavam TNCC\n" #: auth-juniper.c:397 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "Neuspjelo izvršiti TNCC skriptu %s: %s\n" #: auth-juniper.c:411 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "Nije uspjela alokacija memorije za komunikaciju s TNCC\n" #: auth-juniper.c:418 msgid "Failed to send start command to TNCC\n" msgstr "Neuspjelo poslati start komandu za TNCC\n" #: auth-juniper.c:425 msgid "Sent start; waiting for response from TNCC\n" msgstr "Početak poslan; čekam odgovor od TNCC\n" #: auth-juniper.c:432 msgid "Failed to read response from TNCC\n" msgstr "Neuspjelo pročitati odgovor od TNCC\n" #: auth-juniper.c:439 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "Primljen neuspješan %s odgovor od TNCC\n" #: auth-juniper.c:445 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:452 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "Dobijen novi DSPREAUTH kolačić od TNCC: %s\n" #: auth-juniper.c:474 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:481 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:650 msgid "Failed to parse HTML document\n" msgstr "Neuspjelo analizirati HTML dokument\n" #: auth-juniper.c:667 msgid "Failed to find or parse web form in login page\n" msgstr "Neuspjelo naći ili analizirati web formular u stranici za prijavu\n" #: auth-juniper.c:675 msgid "Encountered form with no ID\n" msgstr "Uočena forma bez ID\n" #: auth-juniper.c:713 #, c-format msgid "Unknown form ID '%s'\n" msgstr "Nepoznat ID forme '%s'\n" #: auth-juniper.c:716 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "Prikazujem nepoznatu HTML formu:\n" #: auth.c:96 msgid "Form choice has no name\n" msgstr "Forma odabira nema ime\n" #: auth.c:181 #, c-format msgid "name %s not input\n" msgstr "ime %s nema ulaza\n" #: auth.c:188 msgid "No input type in form\n" msgstr "Nema ulaza tipa u formatu\n" #: auth.c:200 msgid "No input name in form\n" msgstr "Nema ulaza imena u formatu\n" #: auth.c:230 #, c-format msgid "Unknown input type %s in form\n" msgstr "Nepoznat ulazni tip %s u formi\n" #: auth.c:540 gpst.c:214 msgid "Empty response from server\n" msgstr "Prazan odgovor od servera\n" #: auth.c:551 gpst.c:289 msgid "Failed to parse server response\n" msgstr "Nemoguće razdijeliti odgovor servera\n" #: auth.c:553 gpst.c:291 #, c-format msgid "Response was:%s\n" msgstr "Odgovor je bio:%s\n" #: auth.c:575 msgid "Received when not expected.\n" msgstr "Primljeno kada nije očekivano.\n" #: auth.c:603 msgid "XML response has no \"auth\" node\n" msgstr "XML odgovor nema \"auth\" čvora\n" #: auth.c:636 msgid "Asked for password but '--no-passwd' set\n" msgstr "Upitan za šifru ali '--nema-šifre' postavi\n" #: auth.c:925 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "Ne preuzima se XML profil jer SHA1 već odgovara\n" #: auth.c:931 cstp.c:335 http.c:916 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Neuspjeh pri otvaranju HTTPS konekcije na %s\n" #: auth.c:952 msgid "Failed to send GET request for new config\n" msgstr "Nemoguće poslati GET zahtjev za novi config\n" #: auth.c:976 msgid "Downloaded config file did not match intended SHA1\n" msgstr "Preuzeta config datoteka nije usparena sa SHA1\n" #: auth.c:981 msgid "Downloaded new XML profile\n" msgstr "Preuzimanje novog XML profila\n" #: auth.c:992 auth.c:1044 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" #: auth.c:1003 mainloop.c:144 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "" #: auth.c:1010 mainloop.c:151 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "" #: auth.c:1017 mainloop.c:158 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "" #: auth.c:1024 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "" #: auth.c:1031 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Nemoguće promijeniti u CSD domaći direktorijum '%s': %s\n" #: auth.c:1053 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Greška: Server nas pita da pokrene CSD hostscan.\n" "Trebate obezbjediti pogodan --csd-wrapper argument.\n" #: auth.c:1060 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Error: Server nas pita da preuzme i pokrene 'Cisco Secure Desktop' trojan.\n" "Ova operacije je isključena po običnim postavkama iz sigurnosnih razloga, " "želite li da je uključite.\n" #: auth.c:1067 msgid "Trying to run Linux CSD trojan script.\n" msgstr "Pokušava pokrenuti Linux CSD trojan script.\n" #: auth.c:1094 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "Privremeni direktorijum „%s“ nije upisiv: %s\n" #: auth.c:1102 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Neuspjeh pri otvaranju privremene CSD script datoteke: %s\n" #: auth.c:1111 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Nemoguće upisati privremenu CSD script datoteku: %s\n" #: auth.c:1141 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "UPOZORENJE: pokrenuli ste neisguran CSD kod sa nultim prioritetom\n" "\t Koristi komandnu liniju opcija \"--csd-user\"\n" #: auth.c:1189 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Nemoguće exec CSD script %s\n" #: auth.c:1221 msgid "Unknown response from server\n" msgstr "Nepoznat odgovor od servera\n" #: auth.c:1342 msgid "Server requested SSL client certificate after one was provided\n" msgstr "Server zahtjeva SSL klijent certifikat nakon što je jedan obezbjeđen\n" #: auth.c:1346 msgid "Server requested SSL client certificate; none was configured\n" msgstr "Server zahtjeva SSL klijent certifikat; nijedan nije konfigurisan\n" #: auth.c:1362 msgid "XML POST enabled\n" msgstr "XML POST omogućen\n" #: auth.c:1405 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Osvježavanje %s poslije 1 sekundi...\n" #: compat.c:207 #, c-format msgid "(error 0x%lx)" msgstr "(greška 0h%lx)" #: compat.c:210 msgid "(Error while describing error!)" msgstr "(Greška prilikom opisivanja greške!)" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "GREŠKA: Ne može inicijalizirati utičnice\n" #: cstp.c:112 gpst.c:341 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:134 gpst.c:360 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:281 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" "KRITIČNA GREŠKA: DTLS master tajna nije inicijalizovana. Molimo, prijavite " "ovo.\n" #: cstp.c:312 msgid "Error creating HTTPS CONNECT request\n" msgstr "Greška kreirajući HTTPS CONNECT zahtjev\n" #: cstp.c:328 http.c:384 msgid "Error fetching HTTPS response\n" msgstr "Greška fetching HTTPS odgovor\n" #: cstp.c:355 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "VPN servis nedostupan; razlog: %s\n" #: cstp.c:360 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Ima neprikladan HTTP CONNECT odgovor: %s\n" #: cstp.c:367 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Ima CONNECT odgovor: %s\n" #: cstp.c:396 cstp.c:404 msgid "No memory for options\n" msgstr "Nema memorije za opcije\n" #: cstp.c:413 http.c:444 msgid "" msgstr "" #: cstp.c:433 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Session-ID nema 64 karaktera; je: \"%s\"\n" #: cstp.c:450 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "" #: cstp.c:468 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "Nepoznat DTLS-Content-Encoding %s\n" #: cstp.c:510 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Nepoznati CSTP-Sadržaj-Kodiran %s\n" #: cstp.c:585 msgid "No MTU received. Aborting\n" msgstr "Nema MTU prijema. Ukidanje\n" #: cstp.c:593 gpst.c:641 msgid "No IP address received. Aborting\n" msgstr "Nije IP adresa primljena. Ukidanje\n" #: cstp.c:599 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "Primljeno je IPv6 podešavanje ali MTU %d je premali.\n" #: cstp.c:605 gpst.c:648 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Ponovno konektovanje daje drugačiju IP adresu (%s != %s)\n" #: cstp.c:614 gpst.c:657 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "Ponovno konektovanje daje drugačiju IP netmask (%s != %s)\n" #: cstp.c:622 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Ponovno konektovanje daje drugačiju IPv6 adresu (%s != %s)\n" #: cstp.c:630 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Ponovno konektovanje daje drugačiju IPv6 netmask (%s != %s)\n" #: cstp.c:638 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP konektovan. DPD %d, Keepalive %d\n" #: cstp.c:640 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "CSTP komplet šifrera: %s\n" #: cstp.c:702 msgid "Compression setup failed\n" msgstr "Instalacija sažimanja neuspjela\n" #: cstp.c:719 msgid "Allocation of deflate buffer failed\n" msgstr "Alokacija deflate bafera neuspjela\n" #: cstp.c:781 msgid "inflate failed\n" msgstr "podizanje neuspjelo\n" #: cstp.c:804 #, c-format msgid "LZS decompression failed: %s\n" msgstr "LZS dekompresija neuspjela: %s\n" #: cstp.c:817 msgid "LZ4 decompression failed\n" msgstr "LZ4 dekompresija neuspjela\n" #: cstp.c:824 #, c-format msgid "Unknown compression type %d\n" msgstr "Nepoznat tip kompresije %d\n" #: cstp.c:829 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "Primljen %s kompresovan paket podataka od %d bajta (bilo %d)\n" #: cstp.c:849 #, c-format msgid "deflate failed %d\n" msgstr "deflate neuspio %d\n" #: cstp.c:922 dtls.c:281 dtls.c:740 esp.c:129 gpst.c:1042 mainloop.c:69 #: oncp.c:914 msgid "Allocation failed\n" msgstr "Nije uspjela raspodela\n" #: cstp.c:933 gpst.c:1055 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "Primljen je kratak paket (%d bajta)\n" #: cstp.c:946 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Ne očekivani paket dužine. SSL_čita vraćeni %d ali paket je\n" #: cstp.c:960 msgid "Got CSTP DPD request\n" msgstr "Ima CSTP DPD zahtjev\n" #: cstp.c:966 msgid "Got CSTP DPD response\n" msgstr "Ima CSTP DPD odgovor\n" #: cstp.c:971 msgid "Got CSTP Keepalive\n" msgstr "Ima CSTP Keepalive\n" #: cstp.c:976 oncp.c:1003 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Primljen ne kompresovan paket podataka od %d bajta\n" #: cstp.c:993 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Primljeni server odspojen: %02x '%s'\n" #: cstp.c:996 msgid "Received server disconnect\n" msgstr "Primljeni server odspojen\n" #: cstp.c:1004 msgid "Compressed packet received in !deflate mode\n" msgstr "Kompresovani paket primljen u !deflate režim\n" #: cstp.c:1013 msgid "received server terminate packet\n" msgstr "primljeni server završava paket\n" #: cstp.c:1020 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Nepoznati paket %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1063 gpst.c:1142 oncp.c:1121 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL napisao premalo bajta! Upitan za %d, poslano %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1091 oncp.c:1155 msgid "CSTP rekey due\n" msgstr "CSTP rekey due\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1098 oncp.c:1162 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Rehandshake nije uspio; pokušavanje novi-tunel\n" #: cstp.c:1109 oncp.c:1173 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "CSTP Dead Peer Detection detektovan dead peer!\n" #: cstp.c:1113 gpst.c:1166 oncp.c:1091 oncp.c:1177 msgid "Reconnect failed\n" msgstr "Ponovna konekcija neuspjela\n" #: cstp.c:1129 oncp.c:1193 msgid "Send CSTP DPD\n" msgstr "Pošalji CSTP DPD\n" #: cstp.c:1141 oncp.c:1204 msgid "Send CSTP Keepalive\n" msgstr "Pošalji CSTP Keepalive\n" #: cstp.c:1166 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "Slanje kompresovanog paketa podataka od %d bajta (bilo je %d)\n" #: cstp.c:1177 oncp.c:1238 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Slanje ne kompresovanog paketa podataka od %d bajta\n" #: cstp.c:1216 #, c-format msgid "Send BYE packet: %s\n" msgstr "Poslan BYE paket: %s\n" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "Pokušavanje Digest autentifikacije za proxy\n" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "Pokušana Digest prijava na server '%s'\n" #: dtls.c:113 msgid "DTLS connection attempted with an existing fd\n" msgstr "DTLS veza je pokušana biti ostvarena sa postojećim fd\n" #: dtls.c:119 msgid "No DTLS address\n" msgstr "Nema DTLS adrese\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:126 msgid "Server offered no DTLS cipher option\n" msgstr "Server ponudio nema DTLS opcija o šifri\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:133 msgid "No DTLS when connected via proxy\n" msgstr "Nema DTLS kada je konektovan putem proxy\n" #: dtls.c:200 #, c-format msgid "DTLS option %s : %s\n" msgstr "DTLS opcija %s : %s\n" #: dtls.c:239 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS postavljen. DPD %d, Keepalive %d\n" #: dtls.c:265 msgid "Attempt new DTLS connection\n" msgstr "Pokušaj novu DTLS konekciju\n" #: dtls.c:292 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Primljen DTLS paket 0x%02x of %d bajta\n" #: dtls.c:306 msgid "Got DTLS DPD request\n" msgstr "Ima DTLS DPD zahtjev\n" #: dtls.c:312 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Ne moguće poslati DPD odgovor. Očekuj odspajanje\n" #: dtls.c:316 msgid "Got DTLS DPD response\n" msgstr "Ima DTLS DPD odgovor\n" #: dtls.c:320 msgid "Got DTLS Keepalive\n" msgstr "Ima DTLS Keepalive\n" #: dtls.c:326 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "Kompresovani DTLS paket primljen kada kompresija nije bila omogućena\n" #: dtls.c:334 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Nepoznati DTLS paket tipa %02x, lijen %d\n" #: dtls.c:356 msgid "DTLS rekey due\n" msgstr "DTLS rekey due\n" #: dtls.c:363 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "DTLS Rehandshake nije uspio; ponovna konekcija.\n" #: dtls.c:372 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "DTLS Dead Peer Detection detektovan dead peer!\n" #: dtls.c:378 msgid "Send DTLS DPD\n" msgstr "Pošalji DTLS DPD\n" #: dtls.c:383 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Ne moguće poslati DPD zahtjev. Očekuj odspajanje\n" #: dtls.c:396 msgid "Send DTLS Keepalive\n" msgstr "Pošalji DTLS Keepalive\n" #: dtls.c:401 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Ne moguće poslati keepalive zahtjev. Očekuj odspajanje\n" #: dtls.c:432 tun.c:541 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Nepoznat paket (lijen %d) primljen: %02x %02x %02x %02x...\n" #: dtls.c:439 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "" #: dtls.c:443 msgid "UDP setsockopt" msgstr "" #: dtls.c:474 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "DTLS je napisao grešku %d. Vraća se na SSL\n" #: dtls.c:488 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "DTLS je napravo grešku: %s. Vraća se na SSL\n" #: dtls.c:503 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "Poslan DTLS paket od %d bajta; DTLS poslao vraćeni %d\n" #: dtls.c:531 #, c-format msgid "Initiating IPv4 MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:551 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" #: dtls.c:555 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" #: dtls.c:564 #, c-format msgid "Sending MTU DPD probe (%u bytes, min=%u, max=%u)\n" msgstr "" #: dtls.c:568 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "" #: dtls.c:582 dtls.c:690 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" #: dtls.c:594 #, c-format msgid "Timeout while waiting for DPD response; trying %d\n" msgstr "" #: dtls.c:601 dtls.c:682 msgid "Timeout while waiting for DPD response; resending probe.\n" msgstr "" #: dtls.c:608 dtls.c:709 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "" #: dtls.c:613 #, c-format msgid "Received MTU DPD probe (%u bytes of %u)\n" msgstr "" #: dtls.c:651 msgid "Initiating IPv6 MTU detection\n" msgstr "" #: dtls.c:666 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:670 #, c-format msgid "Failed to send DPD request (%d)\n" msgstr "" #: dtls.c:695 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:759 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "" #: dtls.c:762 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "Prihvatam očekivani ESP paket sa seq %u\n" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" "Prihvatam kasnije od očekivanog ESP paket sa seq %u (očekivano %)\n" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "Odbacujem stari ESP paket s seq %u (očekivano %)\n" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "Odbacujem ponovljeni ESP paket sa seq %u\n" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "Prihvatam prekoredni ESP paket sa seq %u (očekivano %)\n" #: esp.c:63 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "Parametri za %s ESP: SPI 0x%08x\n" #: esp.c:66 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "ESP tip šifrovamka %s ključ 0x%s\n" #: esp.c:69 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "ESP tip autentifikacije %s ključ 0x%s\n" #: esp.c:87 msgid "incoming" msgstr "dolazni" #: esp.c:88 msgid "outgoing" msgstr "odlazni" #: esp.c:90 esp.c:113 msgid "Send ESP probes\n" msgstr "Pošalji ESP testove\n" #: esp.c:138 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "Primljen ESP paket od %d bajta\n" #: esp.c:155 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:161 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "Primljen ESP paket s nevažećim SPI 0x%08x\n" #: esp.c:174 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "Primljen ESP paket sa neprepozntom vrsom sadržaja %02x\n" #: esp.c:181 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "Pogrešna dopunjavajuča dužina %02x u ESP\n" #: esp.c:193 msgid "Invalid padding bytes in ESP\n" msgstr "Pogrešni dopunjavajući bajtovi u ESP\n" #: esp.c:202 msgid "ESP session established with server\n" msgstr "ESP sessija uspostavljena s serverom\n" #: esp.c:213 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "Neuspješna alokacija memorije za dešifrovanje ESP paketa\n" #: esp.c:219 msgid "LZO decompression of ESP packet failed\n" msgstr "LZO dekompresija ESP paketa neuspjela\n" #: esp.c:225 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "LZO dekompresovao %d bajtova u %d\n" #: esp.c:239 msgid "Rekey not implemented for ESP\n" msgstr "Rekey nije realizovan za ESP\n" #: esp.c:243 msgid "ESP detected dead peer\n" msgstr "ESP prepoznao neaktivnog saradnika\n" #: esp.c:251 msgid "Send ESP probes for DPD\n" msgstr "Pošalji ESP testove za DPD\n" #: esp.c:258 msgid "Keepalive not implemented for ESP\n" msgstr "Keepalive nije realizovan za ESP\n" #: esp.c:278 #, c-format msgid "Failed to encrypt ESP packet: %d\n" msgstr "" #: esp.c:294 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:301 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "Neuspjelo poslati ESP paket: %s\n" #: esp.c:307 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "Poslan ESP paket od %d bajta\n" #: gnutls-dtls.c:190 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "" #: gnutls-dtls.c:198 msgid "Failed to generate DTLS priority string\n" msgstr "" #: gnutls-dtls.c:207 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "" #: gnutls-dtls.c:216 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "" #: gnutls-dtls.c:240 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "" #: gnutls-dtls.c:253 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:267 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:275 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "" #: gnutls-dtls.c:309 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Nepoznati DTLS parametri za zahtjevani CipherSuite '%s'\n" #: gnutls-dtls.c:324 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "Neuspjeh pri postavljanju DTLS prioriteta: %s\n" #: gnutls-dtls.c:345 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Neuspjeh pri postavljanju DTLS sesije parametara: %s\n" #: gnutls-dtls.c:373 openssl-dtls.c:534 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "" #: gnutls-dtls.c:382 openssl-dtls.c:545 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "" #: gnutls-dtls.c:392 openssl-dtls.c:554 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" #: gnutls-dtls.c:405 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Neuspjeh pri postavljanju DTLS MTU: %s\n" #: gnutls-dtls.c:416 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "Osnovana DTLS veza (pomoću GnuTLS). Ciphersuite %s.\n" #: gnutls-dtls.c:422 openssl-dtls.c:572 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "" #: gnutls-dtls.c:437 openssl-dtls.c:653 openssl-dtls.c:657 msgid "DTLS handshake timed out\n" msgstr "Za DTLS spajanje vrijeme isteklo\n" #: gnutls-dtls.c:440 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "DTLS spajanje neuspjelo: %s\n" #: gnutls-dtls.c:444 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(Da li vas mrežna barijera sprečava da pošaljete UDP pakete?)\n" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "Neuspjelo inicijalizirati ESP šifru: %s\n" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "Neuspjelo inicijalizirati ESP HMAC: %s\n" #: gnutls-esp.c:121 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "Neuspjelo generisati slučajne ključeve za ESP: %s\n" #: gnutls-esp.c:132 msgid "Failed to generate ESP IV\n" msgstr "" #: gnutls-esp.c:161 gnutls-esp.c:217 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "Neuspjelo izračunati HMAC za ESP paket: %s\n" #: gnutls-esp.c:168 openssl-esp.c:192 msgid "Received ESP packet with invalid HMAC\n" msgstr "Primljen ESP paket s neispravnim HMAC\n" #: gnutls-esp.c:180 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "Dešifrovanje ESP paketa neuspjelo: %s\n" #: gnutls-esp.c:209 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "Neuspjelo šifrovanje ESP paketa: %s\n" #: gnutls.c:95 openssl.c:154 msgid "SSL write cancelled\n" msgstr "SSL pisanje otkazano\n" #: gnutls.c:99 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "Ne može upisati u SSL soket: %s\n" #: gnutls.c:145 gnutls.c:237 openssl.c:204 openssl.c:271 msgid "SSL read cancelled\n" msgstr "SSL čitanje otkazano\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:158 msgid "SSL socket closed uncleanly\n" msgstr "SSL utičnica je zatvorena neispravno\n" #: gnutls.c:168 gnutls.c:246 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "Ne može pročitati iz SSL soketa: %s\n" #: gnutls.c:266 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "SSL očitao grešku: %s; ponovno konektovanje.\n" #: gnutls.c:302 #, c-format msgid "SSL send failed: %s\n" msgstr "SSL poslao nespjeh: %s\n" #: gnutls.c:315 msgid "Could not extract expiration time of certificate\n" msgstr "Ne može izvući vrijeme isteka od certifikata\n" #: gnutls.c:320 openssl.c:1592 msgid "Client certificate has expired at" msgstr "Certifikat klijenta je istekao" #: gnutls.c:322 openssl.c:1597 msgid "Client certificate expires soon at" msgstr "Certifikat klijenta istice uskoro" #: gnutls.c:371 openssl.c:771 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Ne može učitati predmet '%s' iz keystore: %s\n" #: gnutls.c:384 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Ne može otvoriti kljč/certifikat datoteku %s: %s\n" #: gnutls.c:391 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Nije uspio stat ključ/certifikat datoteka %s: %s\n" #: gnutls.c:400 msgid "Failed to allocate certificate buffer\n" msgstr "Neuspjeh pri alociranju bafera certifikata\n" #: gnutls.c:408 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Ne može učitati certifikat u memoriju: %s\n" #: gnutls.c:439 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Ne može instalirati PKCS#12 podatkovnu strukturu: %s\n" #: gnutls.c:462 openssl.c:534 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Ne može dešifrirati PKCS#12 certifikat datoteku\n" #: gnutls.c:466 openssl.c:537 msgid "Enter PKCS#12 pass phrase:" msgstr "Unesi PKCS#12 prolaznu frazu:" #: gnutls.c:489 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Ne može procesuirati PKXS#12 datoteku: %s\n" #: gnutls.c:501 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Ne može učitati PKCS#12 certifikat: %s\n" #: gnutls.c:584 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Ubacivanje X509 certifikata neuspjelo: %s\n" #: gnutls.c:594 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Postavljanje PKCS#12 certifikata neuspjelo: %s\n" #: gnutls.c:628 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Ne može pokrenuti MD5 sastav: %s\n" #: gnutls.c:638 #, c-format msgid "MD5 hash error: %s\n" msgstr "MD5 hash greška: %s\n" #: gnutls.c:696 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "Nedostaje DEK-infor: zaglavlje iz OpenSSL šifrovanog ključa\n" #: gnutls.c:703 msgid "Cannot determine PEM encryption type\n" msgstr "Ne može odrediti PEM Šifrovani tip\n" #: gnutls.c:716 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Ne podržan PEM šifrovani tip: %s\n" #: gnutls.c:741 gnutls.c:754 msgid "Invalid salt in encrypted PEM file\n" msgstr "Neispravna salt u šifrovanim PEM datotekama\n" #: gnutls.c:778 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Greška base64-dešifriranje šifrovanih PEM datoteka: %s\n" #: gnutls.c:786 msgid "Encrypted PEM file too short\n" msgstr "Šifrovane PEM datoteke prije male\n" #: gnutls.c:814 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "Ne može pokrenuti šifru za dešifriranje PEM datoteka: %s\n" #: gnutls.c:825 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Neuspjeh pri dešifrovanju PEM datoteka: %s\n" #: gnutls.c:877 msgid "Decrypting PEM key failed\n" msgstr "Dešifrovanje PEM ključa neuspjelo\n" #: gnutls.c:881 gnutls.c:1405 openssl.c:458 msgid "Enter PEM pass phrase:" msgstr "Unesi PEM prolaznu frazu:" #: gnutls.c:942 msgid "This binary built without system key support\n" msgstr "Ova izvršna je izgrađena bez podrške ključa sistema\n" #: gnutls.c:949 msgid "This binary built without PKCS#11 support\n" msgstr "Ova binarna datoteka je izgrađena bez podrške za PKCS#11\n" #: gnutls.c:993 openssl-pkcs11.c:407 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Korsti PKCS#11 certifikat %s\n" #: gnutls.c:994 #, c-format msgid "Using system certificate %s\n" msgstr "Koristim sistemsko uvjerenje „%s“\n" #: gnutls.c:1012 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Greška pri učitavanju certifikata iz PKXS#11: %s\n" #: gnutls.c:1013 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Greška učitavanja sistemskog uvjerenja: %s\n" #: gnutls.c:1024 openssl.c:827 #, c-format msgid "Using certificate file %s\n" msgstr "Koristi certifikat datoteka %s\n" #: gnutls.c:1052 msgid "PKCS#11 file contained no certificate\n" msgstr "PKCS#11 datoteka ne sadrži certifikat\n" #: gnutls.c:1078 msgid "No certificate found in file" msgstr "Nije pronađen certifikat u datoteci" #: gnutls.c:1083 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Učitavanje certifikata neuspjelo: %s\n" #: gnutls.c:1098 #, c-format msgid "Using system key %s\n" msgstr "Koristim sistemski ključ „%s“\n" #: gnutls.c:1103 gnutls.c:1271 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Greška pri pokretanju privatne ključ strukture: %s\n" #: gnutls.c:1114 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Greška uvoza sistemskog ključa „%s“: %s\n" #: gnutls.c:1125 gnutls.c:1219 gnutls.c:1247 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "Pokušavam adresu PKCS#11 ključa „%s“\n" #: gnutls.c:1130 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Greška pri pokretanju PKCS#11 ključ strukture: %s\n" #: gnutls.c:1259 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Greška pri unosu PKCS#11 URL %s: %s\n" #: gnutls.c:1266 openssl-pkcs11.c:644 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Koristi PKCS\"11 ključ %s\n" #: gnutls.c:1281 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "Greška pri unosu PKCS#11 ključa u privatnu ključ strukturu: %s\n" #: gnutls.c:1299 #, c-format msgid "Using private key file %s\n" msgstr "Koristi privatnu ključ datoteku %s\n" #: gnutls.c:1310 openssl.c:651 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Ova verzija OpenConnect je napravljena bez podrške za TPM\n" #: gnutls.c:1326 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1347 msgid "Failed to interpret PEM file\n" msgstr "Neuspjeh pri prevođenju PEM datoteke\n" #: gnutls.c:1366 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Neuspjeh pri učitavanju PKCS#1 privatnog ključa: %s\n" #: gnutls.c:1379 gnutls.c:1393 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Neuspjeh pri učitavanju privatnog ključa kao PKCS#8: %s\n" #: gnutls.c:1401 gnutls.c:1434 openssl.c:1002 openssl.c:1012 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Neuspjeh pri dešifriranju PKCS#8 certifikat datoteke\n" #: gnutls.c:1426 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Ne može utvrditi tip privatnog ključa %s\n" #: gnutls.c:1438 openssl.c:1008 msgid "Enter PKCS#8 pass phrase:" msgstr "Unesi PKCS#8 prolaznu frazu:" #: gnutls.c:1454 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Ne može dobiti ključ ID: %s\n" #: gnutls.c:1499 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Greška pri popisivanju podataka sa privatnim ključem: %s\n" #: gnutls.c:1514 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Greška pri ovjeravanju potpisa protiv certifikata: %s\n" #: gnutls.c:1539 msgid "No SSL certificate found to match private key\n" msgstr "Nije pronađen SSL certifikat za usporedbu privatnog ključa\n" #: gnutls.c:1551 openssl.c:560 openssl.c:709 #, c-format msgid "Using client certificate '%s'\n" msgstr "Koristi klijent certifikat '%s'\n" #: gnutls.c:1558 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "Postavljanje certifikata na opozivu listu neuspjelo: %s\n" #: gnutls.c:1579 gnutls.c:1589 msgid "Failed to allocate memory for certificate\n" msgstr "Nije uspjela alokacija memorije za potvrdu\n" #: gnutls.c:1625 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" "UPOZORENJE: GnuTLS vraćen pogrešan izdavateljski certs; ovjera možda " "neuspjela!\n" #: gnutls.c:1648 msgid "Got no issuer from PKCS#11\n" msgstr "" #: gnutls.c:1653 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "Dobijena sljedeća CA '%s' iz PKCS11\n" #: gnutls.c:1679 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Neuspjeh pri alociranju memorije za podršku certifikatima\n" #: gnutls.c:1702 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Dodavanje podrške CA '%s'\n" #: gnutls.c:1724 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1748 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Postavljanje certifikata neuspjelo: %s\n" #: gnutls.c:1941 msgid "Server presented no certificate\n" msgstr "Server predstavljen bez certifikata\n" #: gnutls.c:1949 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" #: gnutls.c:1954 openssl.c:1515 msgid "Server presented different cert on rehandshake\n" msgstr "" #: gnutls.c:1959 openssl.c:1518 msgid "Server presented identical cert on rehandshake\n" msgstr "" #: gnutls.c:1965 msgid "Error initialising X509 cert structure\n" msgstr "Greška pri pokretanju X509 cert strukture\n" #: gnutls.c:1971 msgid "Error importing server's cert\n" msgstr "Greška pri unosu server cert\n" #: gnutls.c:1980 main.c:1794 msgid "Could not calculate hash of server's certificate\n" msgstr "Ne mogu da izračunam heš serverskog uverenja\n" #: gnutls.c:1985 msgid "Error checking server cert status\n" msgstr "Greška pri provjeri statusa server certifikata\n" #: gnutls.c:1990 msgid "certificate revoked" msgstr "certifikat opozvan" #: gnutls.c:1992 msgid "signer not found" msgstr "potpisnik nije pronađen" #: gnutls.c:1994 msgid "signer not a CA certificate" msgstr "potpisnik nije CA certifikat" #: gnutls.c:1996 msgid "insecure algorithm" msgstr "nesiguran algoritam" #: gnutls.c:1998 msgid "certificate not yet activated" msgstr "certifikat nije još aktiviran" #: gnutls.c:2000 msgid "certificate expired" msgstr "certifikat istekao" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2005 msgid "signature verification failed" msgstr "neuspješna verifikacija potpisa" #: gnutls.c:2054 openssl.c:1399 openssl.c:1551 msgid "certificate does not match hostname" msgstr "certifikat nema odgovarajući hostname" #: gnutls.c:2059 openssl.c:1398 openssl.c:1557 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Ovjera server certifikata neuspjela: %s\n" #: gnutls.c:2126 msgid "Failed to allocate memory for cafile certs\n" msgstr "Neuspješna alokacija memorije za cafile certs\n" #: gnutls.c:2147 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Neuspješno učitavanje certifikata iz cafalie: %s\n" #: gnutls.c:2163 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Neuspješno otvaranje CA datoteke '%s': %s\n" #: gnutls.c:2176 openssl.c:1679 msgid "Loading certificate failed. Aborting.\n" msgstr "Učitavanje certifikata neuspjelo. Zatvaranje.\n" #: gnutls.c:2237 #, c-format msgid "Failed to set TLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2249 openssl.c:1796 #, c-format msgid "SSL negotiation with %s\n" msgstr "SSL pregovara sa %s\n" #: gnutls.c:2296 openssl.c:1822 msgid "SSL connection cancelled\n" msgstr "SSL povezivanje otkazano\n" #: gnutls.c:2303 #, c-format msgid "SSL connection failure: %s\n" msgstr "SSL konekcija neuspjela: %s\n" #: gnutls.c:2312 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "GnuTLS non-fatal return during handshake: %s\n" #: gnutls.c:2318 openssl.c:1839 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "Povezan na HTTPS na %s\n" #: gnutls.c:2321 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "Reprogramirani SSL na %s\n" #: gnutls.c:2483 openssl-pkcs11.c:199 #, c-format msgid "PIN required for %s" msgstr "PIN zahtjeva %s" #: gnutls.c:2487 openssl-pkcs11.c:202 msgid "Wrong PIN" msgstr "Pogrešan PIN" #: gnutls.c:2490 msgid "This is the final try before locking!" msgstr "Ovo je zadnji pokušaj prije zaključavanja!" #: gnutls.c:2492 msgid "Only a few tries left before locking!" msgstr "Samo još nekoliko pokušaja preostalo prije zaključavanja!" #: gnutls.c:2497 openssl-pkcs11.c:206 msgid "Enter PIN:" msgstr "Unesi PIN:" #: gnutls.c:2583 openssl.c:1967 msgid "Unsupported OATH HMAC algorithm\n" msgstr "Nepodržan OATH HMAC algoritam\n" #: gnutls.c:2592 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "Neuspjelo izračunati OATH HMAC: %s\n" #: gnutls_tpm.c:54 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "TPM znak funkcije pozvan za %d bajta.\n" #: gnutls_tpm.c:61 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Neuspjelo kreiranje TPM hash objekta: %s\n" #: gnutls_tpm.c:68 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Neuspjelo postavljanje vrijednosti u TPM hash objekat: %s\n" #: gnutls_tpm.c:78 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "TPM hash potpis neuspio: %s\n" #: gnutls_tpm.c:100 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Greška dešifrovanja TSS ključa blob: %s\n" #: gnutls_tpm.c:108 gnutls_tpm.c:119 gnutls_tpm.c:132 msgid "Error in TSS key blob\n" msgstr "Greška u TSS ključ blob\n" #: gnutls_tpm.c:139 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Neuspjelo kreiranje TPM kontekst: %s\n" #: gnutls_tpm.c:146 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Neuspjelo povezivanje TPM kontekst: %s\n" #: gnutls_tpm.c:154 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Neuspjelo učitavanje TPM SRK ključa: %s\n" #: gnutls_tpm.c:161 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Neuspjelo učitavanje TPM SRK smjer objekta: %s\n" #: gnutls_tpm.c:182 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Neuspjelo postavljanje TPM PIN: %s\n" #: gnutls_tpm.c:198 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Neuspjelo učitavanje TPM ključa: %s\n" #: gnutls_tpm.c:205 msgid "Enter TPM SRK PIN:" msgstr "Unesi TPM SRK PIN:" #: gnutls_tpm.c:226 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Neuspjelo kreiranje ključa policy objekta: %s\n" #: gnutls_tpm.c:234 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Ne može dodijeliti policy ključu: %s\n" #: gnutls_tpm.c:240 msgid "Enter TPM key PIN:" msgstr "Unesi TPM ključ PIN:" #: gnutls_tpm.c:251 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Neuspjeh pri postavljanju ključ PIN: %s\n" #: gnutls_tpm2.c:92 gnutls_tpm2_esys.c:474 gnutls_tpm2_ibm.c:419 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:198 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:208 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:217 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:225 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:231 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:249 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:270 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:275 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:384 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2_esys.c:173 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:189 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:190 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:191 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:192 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:196 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:201 gnutls_tpm2_ibm.c:262 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:209 gnutls_tpm2_esys.c:303 gnutls_tpm2_esys.c:374 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:221 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:226 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:245 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:250 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:258 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:261 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:274 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:295 gnutls_tpm2_ibm.c:278 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:309 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:317 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:323 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:333 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:363 gnutls_tpm2_ibm.c:363 gnutls_tpm2_ibm.c:450 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:395 #, c-format msgid "TPM2 RSA sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:414 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:420 gnutls_tpm2_esys.c:500 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:464 gnutls_tpm2_ibm.c:405 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:494 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:532 gnutls_tpm2_ibm.c:485 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:546 gnutls_tpm2_ibm.c:502 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:555 gnutls_tpm2_ibm.c:512 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:569 gnutls_tpm2_ibm.c:523 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:54 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:226 #, c-format msgid "%s\n" msgstr "" #: gpst.c:229 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:417 #, c-format msgid "Unknown ESP %s algorithm: %s" msgstr "" #: gpst.c:477 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: gpst.c:483 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:487 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:498 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:551 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:560 oncp.c:835 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "Ignoršem ESP ključeve pošto ESP podrška nije dostupna u ovoj gradnji\n" #: gpst.c:627 msgid "ESP disabled" msgstr "" #: gpst.c:629 msgid "No ESP keys received" msgstr "" #: gpst.c:631 msgid "ESP support not available in this build" msgstr "" #: gpst.c:635 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:680 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:702 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:711 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:719 #, c-format msgid "Got inappropriate HTTP GET-tunnel response: %.*s\n" msgstr "" #: gpst.c:861 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" "VPN connectivity may be disabled or limited without HIP report submission.\n" "You need to provide a --csd-wrapper argument with the HIP report submission " "script.\n" msgstr "" #: gpst.c:871 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:900 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:905 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:911 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:913 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:942 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:966 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:972 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:999 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1015 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1051 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1072 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1082 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1086 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1092 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: gpst.c:1101 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1109 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1157 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1162 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1182 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1202 #, c-format msgid "Sending data packet of %d bytes\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Greška slanja GSSAPI imena za autentifikaciju:\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "Greška generisanja GSSAPI odgovora:\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "Pokušavanje GSSAPI autentifikacije za zamjenu\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "Pokušana GSSAPI authentication to server '%s'\n" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "GSSAPI autentifikacija završena\n" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "GSSAPI znak je previše dug (%zd bajta)\n" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "Slanje GSSAPI znaka od %zu bajta\n" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "Neuspješno slanje GSSAPI autentifikacionog znaka za zamjenu: %s\n" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "Neuspješno primanje GSSAPI autentifikacionog znaka iz zamjene: %s\n" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "SOCKS server provjerava GSSAPI greške konteksta\n" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "Nepoznati GSSAPI status odgovara (0x%02x) iz SOCKS servera\n" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "Dobijen GSSAPI znak od %zu bajta: %02x %02x %02x %02x\n" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "Slanje GSSAPI zaštitnog pregovaranja od %zu bajta\n" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "Neuspješno slanje GSSAPI zaštitnog odgovora za zamjenu: %s\n" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "Neuspješno primanje GSSAPI zaštitnog odgovora iz zamjene: %s\n" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "Dobijen GSSAPI zaštitni odgovor od %zu bajta: %02x %02x %02x %02x\n" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "Nevažeći GSSAPI zaštitni odgovor iz zamjene (%zu bajta)\n" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "SOCKS proxy zahtjeva integritet poruke, koji nije podržan\n" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "SOCKS proxy zahtijeva poruku tajnosti, koja nije podržana\n" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "SOCKS proxy zahtijeva zaštitu nepoznatog tipa 0x%02x\n" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "Pokušavanje HTTP Basic autentičnosti za proxy\n" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "Pokušana HTTP Basic prijava na server '%s'\n" #: http-auth.c:200 http.c:1165 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "Ova verzija OtvoreneKonekcije je izgrađena bez GSSAPI podrške\n" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "Proxy traži Basic autentičnost koja je onemogućena\n" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "Nema više metoda autentičnosti za isprobavanje\n" #: http.c:319 msgid "No memory for allocating cookies\n" msgstr "Nedostatak memorije za alokaciju cookies\n" #: http.c:394 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Nemoguće rasčlaniti HTTP odgovor '%s'\n" #: http.c:400 #, c-format msgid "Got HTTP response: %s\n" msgstr "Ima HTTP odgovor: %s\n" #: http.c:408 msgid "Error processing HTTP response\n" msgstr "Greška pri procesiranju HTTP odgovora\n" #: http.c:415 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Ignorisanje nepoznatih HTTP odgovora reda '%s'\n" #: http.c:435 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Ne validan cookie ponuđen: %s\n" #: http.c:454 msgid "SSL certificate authentication failed\n" msgstr "SSL ovjera certifikata neuspjela\n" #: http.c:485 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Odgovor tijelo ima negativnu veličini (%d)\n" #: http.c:496 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Nepoznat Transfer-Encoding: %s\n" #. Now the body, if there is one #: http.c:515 #, c-format msgid "HTTP body %s (%d)\n" msgstr "HTTP tijelo %s (%d)\n" #: http.c:529 http.c:556 msgid "Error reading HTTP response body\n" msgstr "Greška učitavanja HTTP odgovora tijela\n" #: http.c:542 msgid "Error fetching chunk header\n" msgstr "Greška u dijelu zaglavlja\n" #: http.c:566 msgid "Error fetching HTTP response body\n" msgstr "Greška HTTP odgovor tijela\n" #: http.c:569 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "Greška u chunked dekodiran. Očekivan \",got: '%s'" #: http.c:581 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Ne može primiti HTTP 1.0 oblik bez zatvaranja konekcije\n" #: http.c:708 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Nemoguće rasčlaniti preusmjereni URL '%s': %s\n" #: http.c:732 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Ne može pratiti preusmjerenje na non-https URL '%s'\n" #: http.c:760 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Alociranje nove putanje za relativno preusmjerenje neuspjelo: %s\n" #: http.c:973 oncp.c:591 #, c-format msgid "Unexpected %d result from server\n" msgstr "Neočekivan %d rezultat od servera\n" #: http.c:1021 msgid "request granted" msgstr "zahtjev odobren" #: http.c:1022 msgid "general failure" msgstr "opšta greška" #: http.c:1023 msgid "connection not allowed by ruleset" msgstr "konekcija nije dopuštena od strane rulset" #: http.c:1024 msgid "network unreachable" msgstr "mreža je nedostupna" #: http.c:1025 msgid "host unreachable" msgstr "računar domaćin je nedostupan" #: http.c:1026 msgid "connection refused by destination host" msgstr "konekcija odbijena od strane domaćina" #: http.c:1027 msgid "TTL expired" msgstr "TTL istekao" #: http.c:1028 msgid "command not supported / protocol error" msgstr "komandan nije podržana/protokol greška" #: http.c:1029 msgid "address type not supported" msgstr "tip adrese nije podržan" #: http.c:1039 msgid "SOCKS server requested username/password but we have none\n" msgstr "SOCKS server zahtijeva korisničko ime/lozinku, ali nema ništa\n" #: http.c:1047 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" "Korisničko ime i lozinka za SOCKS autentifikaciju mora biti < 255 bajta\n" #: http.c:1062 http.c:1118 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Greška pisanja auth ahtjev za SOCKS proxy: %s\n" #: http.c:1070 http.c:1125 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Greška ulitavanja auth odgovor od SOCKS proxy: %s\n" #: http.c:1077 http.c:1131 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Neočekivan auth odgovor od SOCKS proxy: %02x %02x\n" #: http.c:1083 msgid "Authenticated to SOCKS server using password\n" msgstr "Autentifikovano za SOCKS server koristeći lozinku\n" #: http.c:1087 msgid "Password authentication to SOCKS server failed\n" msgstr "Autentifikacija lozinkom za SOCKS server nije uspjela\n" #: http.c:1143 http.c:1150 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "SOCKS server zahtijeva GSSAPI autentifikaciju\n" #: http.c:1156 msgid "SOCKS server requested password authentication\n" msgstr "SOCKS server zahtijeva autentifikaciju lozinkom\n" #: http.c:1163 msgid "SOCKS server requires authentication\n" msgstr "SOCKS server zahtijeva autentifikaciju\n" #: http.c:1170 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "SOCKS server traži nepoznatu autentifikaciju tipa %02x\n" #: http.c:1176 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Zahtjeva SOCKS proxy konekciju za %s:%d\n" #: http.c:1191 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Greška pisanja konekcija zahtjeva SOCKS proxy: %s\n" #: http.c:1199 http.c:1241 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Greška učitavanja konekcije odgovor od SOCKS proxy: %s\n" #: http.c:1205 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Neočekivana konekcija odgovor od SOCKS proxy: %02x %02x...\n" #: http.c:1213 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "SOCKS proxy greška %02x: %s\n" #: http.c:1217 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "SOCKS proxy greška %02x\n" #: http.c:1234 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Neočekivana adresa tipa %02x u SOXKS konekcije odgovor\n" #: http.c:1257 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Zahtjeva HTTP proxy konekciju za %s:%d\n" #: http.c:1292 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Slanje proxy zahtjeva neuspjelo: %s\n" #: http.c:1315 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "Proxy CONNECT zahtjev nije uspio: %d\n" #: http.c:1334 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Nepoznat proxy tip '%s'\n" #: http.c:1383 msgid "Only http or socks(5) proxies supported\n" msgstr "Samo http ili soket(5) proxies podržani\n" #: library.c:112 msgid "Cisco AnyConnect or openconnect" msgstr "" #: library.c:113 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "" #: library.c:129 msgid "Juniper Network Connect" msgstr "" #: library.c:130 msgid "Compatible with Juniper Network Connect / Pulse Secure SSL VPN" msgstr "" #: library.c:148 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:149 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:211 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:233 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Izgradi ponovno SSL biblioteku bez Cisco DTLS podrške\n" #: library.c:656 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Ne može se analizirati server URL '%s'\n" #: library.c:662 msgid "Only https:// permitted for server URL\n" msgstr "Samo https:// dozvoljeni za server URL\n" #: library.c:1056 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "" #: library.c:1085 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" #: library.c:1146 msgid "No form handler; cannot authenticate.\n" msgstr "Nema forma handler; ne može potvrditi.\n" #: main.c:340 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "Nije uspjela funkcija linije naredbi u argument: %s\n" #: main.c:353 #, c-format msgid "Fatal error in command line handling\n" msgstr "Fatalna greška u rukovanju komandnom linijom\n" #: main.c:388 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "Nije uspjela funkcija čitanja konzole: %s\n" #: main.c:401 #, c-format msgid "fgetws() failed: %s\n" msgstr "" #: main.c:416 main.c:429 #, c-format msgid "Error converting console input: %s\n" msgstr "Greška pretvaranja ulaza konzole: %s\n" #: main.c:423 main.c:689 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Alokacija neuspjela za string iz stdin\n" #: main.c:584 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" "Za pomoć pri OtvorenojKonekciji, molimo pogledajte web stranicu\n" " http://www.infradead.org/openconnect/mail.html\n" #: main.c:593 #, c-format msgid "Using OpenSSL. Features present:" msgstr "Koristi OpenSSl. Odlike predstavljen:" #: main.c:595 #, c-format msgid "Using GnuTLS. Features present:" msgstr "Koristi GnuTLS. Odlike predstavljene:" #: main.c:608 msgid "OpenSSL ENGINE not present" msgstr "OpenSSL ENGINE nije prikazan" #: main.c:647 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" #: main.c:657 #, c-format msgid "Supported protocols:" msgstr "" #: main.c:659 main.c:675 msgid " (default)" msgstr "" #: main.c:672 msgid "Set VPN protocol" msgstr "" #: main.c:713 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:754 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Ne može se obraditi ovaj izvršni put \"%s\"" #: main.c:760 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "Alokacija za vpnc-script put nije uspjela\n" #: main.c:780 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "" #: main.c:793 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Upotreba: openconnect [opcije]\n" #: main.c:794 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" #: main.c:796 msgid "Read options from config file" msgstr "Pročitaj opcije iz config datoteke" #: main.c:797 msgid "Report version number" msgstr "Prijavi broj verzije" #: main.c:798 msgid "Display help text" msgstr "Pomoćni tekst na zaslonu" #: main.c:802 msgid "Authentication" msgstr "" #: main.c:803 msgid "Set login username" msgstr "Postavi login korisnicko ime" #: main.c:804 msgid "Disable password/SecurID authentication" msgstr "Isključi šifru/SecurID ovjeru" #: main.c:805 msgid "Do not expect user input; exit if it is required" msgstr "Ne očekuj unos korisnika; izađi ako je to zatraženo" #: main.c:806 msgid "Read password from standard input" msgstr "Učitaj šifru sa standardnog ulaza" #: main.c:807 msgid "Choose authentication login selection" msgstr "Odaberi ovjeru za login odabir" #: main.c:808 msgid "Provide authentication form responses" msgstr "" #: main.c:809 msgid "Use SSL client certificate CERT" msgstr "Koristi SSL klijent sertifikat CERT" #: main.c:810 msgid "Use SSL private key file KEY" msgstr "Koristi SSL privatni ključ datoteke KEY" #: main.c:811 msgid "Warn when certificate lifetime < DAYS" msgstr "Upozori kada sertifikat vrijemeživota < DANI" #: main.c:812 msgid "Set login usergroup" msgstr "Postavi login korisničkugrupu" #: main.c:813 msgid "Set key passphrase or TPM SRK PIN" msgstr "Postaviti ključ lozinku ili TPM SRK PIN" #: main.c:814 msgid "Key passphrase is fsid of file system" msgstr "Lozinka je fsid od datoteke sistema" #: main.c:815 msgid "Software token type: rsa, totp or hotp" msgstr "Softver znak tipa: rsa, totp or hotp" #: main.c:816 msgid "Software token secret" msgstr "Software token skriven" #: main.c:818 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "(BILJEŠKA: libstoken (RSA SecurID) isključen u ovoj izgradnji)" #: main.c:821 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(NAPOMENA: „Yubikey“ OATH je isključen u ovoj izgradnji)" #: main.c:824 msgid "Server validation" msgstr "" #: main.c:825 msgid "Server's certificate SHA1 fingerprint" msgstr "Server certifikat SHA1 otisakprsta" #: main.c:826 msgid "Do not require server SSL cert to be valid" msgstr "Ne zahtijeva server SSL cert da bi bio validan" #: main.c:827 msgid "Disable default system certificate authorities" msgstr "Isključuje osnovne sistemske izdavače uvjerenja" #: main.c:828 msgid "Cert file for server verification" msgstr "Cert datoteka za provjeru servera" #: main.c:830 msgid "Internet connectivity" msgstr "" #: main.c:831 msgid "Set proxy server" msgstr "Postavi proxy server" #: main.c:832 msgid "Set proxy authentication methods" msgstr "Postavite proxy metode provjere autentičnosti" #: main.c:833 msgid "Disable proxy" msgstr "Onemogući proxy" #: main.c:834 msgid "Use libproxy to automatically configure proxy" msgstr "Koristi libproxy za automatsko konfigurisanje proxy" #: main.c:836 msgid "(NOTE: libproxy disabled in this build)" msgstr "(BILJEŠKA: libproxy onemogućen u ovoj izradi)" #: main.c:838 msgid "Connection retry timeout in seconds" msgstr "Vrijeme u sekundama nakon koga konekcija ističe" #: main.c:839 msgid "Use IP when connecting to HOST" msgstr "" #: main.c:840 msgid "copy TOS / TCLASS when using DTLS" msgstr "" #: main.c:841 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:843 msgid "Authentication (two-phase)" msgstr "" #: main.c:844 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:845 msgid "Read cookie from standard input" msgstr "Pročitaj cookie sa standardnog ulaza" #: main.c:846 msgid "Authenticate only and print login info" msgstr "Ovjeri samo i printaj informacije o unosu" #: main.c:847 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:848 msgid "Print cookie before connecting" msgstr "" #: main.c:851 msgid "Process control" msgstr "" #: main.c:852 msgid "Continue in background after startup" msgstr "Nastavi u pozadini poslije podizanja" #: main.c:853 msgid "Write the daemon's PID to this file" msgstr "Napiši deamon's PID za ovu datoteku" #: main.c:854 msgid "Drop privileges after connecting" msgstr "Odbaci privilegije poslije povezivanja" #: main.c:857 msgid "Logging (two-phase)" msgstr "" #: main.c:859 msgid "Use syslog for progress messages" msgstr "Koristi syslog za punjenje poruka" #: main.c:861 msgid "More output" msgstr "Još izlaza" #: main.c:862 msgid "Less output" msgstr "Nema izlaza" #: main.c:863 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "Smetljište HTTP ovjera puta (implicira --verbose)" #: main.c:864 msgid "Prepend timestamp to progress messages" msgstr "Prepend timestamp u toku poruke" #: main.c:866 msgid "VPN configuration script" msgstr "" #: main.c:867 msgid "Use IFNAME for tunnel interface" msgstr "Koristi IFNAME for tunel sučelje" #: main.c:868 msgid "Shell command line for using a vpnc-compatible config script" msgstr "Okolna komandna linija za korištenje vpnc-kompatibilna onfig skripta" #: main.c:869 msgid "default" msgstr "podrazumijevano" #: main.c:871 msgid "Pass traffic to 'script' program, not tun" msgstr "Prođi put do 'script' program" #: main.c:874 msgid "Tunnel control" msgstr "" #: main.c:875 msgid "Do not ask for IPv6 connectivity" msgstr "Ne pitaj za IPv6 povezivanje" #: main.c:876 msgid "XML config file" msgstr "XML config datoteka" #: main.c:877 msgid "Request MTU from server (legacy servers only)" msgstr "" #: main.c:878 msgid "Indicate path MTU to/from server" msgstr "Postaviti put MTU za/od servera" #: main.c:879 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:880 msgid "Disable all compression" msgstr "" #: main.c:881 msgid "Set minimum Dead Peer Detection interval" msgstr "Postavi minimum Dead Peer Detection interval" #: main.c:882 msgid "Require perfect forward secrecy" msgstr "Zahtijeva se savršeno prosljeđivanje tajnosti" #: main.c:883 msgid "Disable DTLS and ESP" msgstr "" #: main.c:884 msgid "OpenSSL ciphers to support for DTLS" msgstr "OpenSSL šifra za podršku za DTLS" #: main.c:885 msgid "Set packet queue limit to LEN pkts" msgstr "Postavi paket red ogranicen na LEN pkts" #: main.c:887 msgid "Local system information" msgstr "" #: main.c:888 msgid "HTTP header User-Agent: field" msgstr "HTTP zaglavlje Korisnik-Agent: polje" #: main.c:889 msgid "Local hostname to advertise to server" msgstr "" #: main.c:890 msgid "OS type (linux,linux-64,win,...) to report" msgstr "OS tip (linux,linux-64,win,...) za izvještaj" #: main.c:891 msgid "reported version string during authentication" msgstr "" #: main.c:892 msgid "default:" msgstr "" #: main.c:895 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:896 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:897 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:900 msgid "Server bugs" msgstr "" #: main.c:901 msgid "Disable HTTP connection re-use" msgstr "Onemogući ponovnu upotrebu HTTP konekcije" #: main.c:902 msgid "Do not attempt XML POST authentication" msgstr "Ne pokušaL POST ovjeru" #: main.c:924 #, c-format msgid "Failed to allocate string\n" msgstr "Greška pri alociranju stringa\n" #: main.c:997 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Ne može uzeti red iz config datoteke: %s\n" #: main.c:1037 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Ne prepoznatljiva opcija u redu %d: '%s'\n" #: main.c:1047 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Opcija '%s' ne prima argument iz reda %d\n" #: main.c:1051 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Opcija '%s' zahtijeva argument u redu %d\n" #: main.c:1076 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "" #: main.c:1086 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "" #: main.c:1130 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "" #: main.c:1140 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "UPOZORENJE: Ova verzija otvorene mreže je izgrađena bez iconv\n" " podržava, ali izgleda kao da koristite stari znak\n" " postavi \"%s\". Očekujte bizarnosti.\n" #: main.c:1147 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "UPOZORENJE: Ova verzija otvorene veze je %s, ali\n" " libopenconnect biblioteka je %s\n" #: main.c:1157 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Neuspijeh pri alociranju vpninfo strukture\n" #: main.c:1215 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Ne može koristiti 'config' opciju unutar config datoteke\n" #: main.c:1223 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Ne može otvoriti config datoteku '%s': %s\n" #: main.c:1239 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "Pogrešan kompresioni režim '%s'\n" #: main.c:1260 #, c-format msgid "Missing colon in resolve option\n" msgstr "" #: main.c:1265 #, c-format msgid "Failed to allocate memory\n" msgstr "" #: main.c:1349 main.c:1358 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d previše mali\n" #: main.c:1388 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Isključivanje svih HTTP konekcija ponovna upotreba uslijed --no-http-" "keepalive opcije.\n" #: main.c:1394 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" #: main.c:1411 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Nulta dužina reda nije dopuštena; koristi 1\n" #: main.c:1425 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect verzja %s\n" #: main.c:1463 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Pogrešan software toke režim \"%s\"\n" #: main.c:1473 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "Pogrešan OS identitet \"%s\"\n" #: main.c:1506 #, c-format msgid "Too many arguments on command line\n" msgstr "Previše argumenata na komandnoj liniji\n" #: main.c:1509 #, c-format msgid "No server specified\n" msgstr "Nijedan server nije specificiran\n" #: main.c:1525 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "Ova verzija openconnect je napravljena bez podrške za libproxy\n" #: main.c:1555 #, c-format msgid "Error opening cmd pipe\n" msgstr "Greška prilikom otvaranja cmd pipe-a\n" #: main.c:1588 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "Nemoguće dobiti WebVPN cookie\n" #: main.c:1609 #, c-format msgid "Creating SSL connection failed\n" msgstr "Kreiranje SSL konekcije neuspjelo\n" #: main.c:1625 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:1633 #, c-format msgid "Connected as %s%s%s, using SSL%s%s, with %s%s%s %s\n" msgstr "" #: main.c:1639 msgid "disabled" msgstr "" #: main.c:1639 msgid "in progress" msgstr "" #: main.c:1643 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "Nije obezjbeđen --script argument; DNS i usmjeravanje nije konfigurisano\n" #: main.c:1645 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Pogledaj http://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:1658 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Ne može otvoriti '%s' za pisanje: %s\n" #: main.c:1670 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Nastavljanje u pozadini; pid %d\n" #: main.c:1687 msgid "User requested reconnect\n" msgstr "Korisnički zahtjev ponovo uspostavlja konekciju\n" #: main.c:1695 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "Cookie je izbacio ponovnu konekciju; izlazak.\n" #: main.c:1699 msgid "Session terminated by server; exiting.\n" msgstr "Sesija prestaje serverom; izlazak.\n" #: main.c:1703 msgid "User cancelled (SIGINT/SIGTERM); exiting.\n" msgstr "" #: main.c:1707 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "Korisnik je odvojen od sjednice (SIGHUP); izlazak.\n" #: main.c:1711 msgid "Unknown error; exiting.\n" msgstr "Nepoznata greška; izlazak.\n" #: main.c:1730 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Ne može otvoriti %s za pisanje: %s\n" #: main.c:1738 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Ne može pisati config u %s: %s\n" #: main.c:1797 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "Server SSL certifikat nije uspostavljen: %s\n" #: main.c:1816 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Certifikat od VPN servera \"%s\" neuspjela ovjera.\n" "Razlog: %s\n" #: main.c:1819 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" #: main.c:1820 #, c-format msgid " --servercert %s\n" msgstr "" #: main.c:1825 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Unesi '%s' za prihvatanje, '%s' za ignorisanje; bilo što drugo da vidiš: " #: main.c:1826 main.c:1844 msgid "no" msgstr "ne" #: main.c:1826 main.c:1832 msgid "yes" msgstr "da" #: main.c:1853 #, c-format msgid "Server key hash: %s\n" msgstr "Heš serverskog ključa: %s\n" #: main.c:1887 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Auth izbor \"%s\" poklapa se s više opcija\n" #: main.c:1890 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Auth izbor \"%s\" nije dostupan\n" #: main.c:1911 msgid "User input required in non-interactive mode\n" msgstr "Korisnički unos zahtijeva ne-interaktivni režim\n" #: main.c:2149 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Neuspješno otvaranje datoteke znaka za pisanje: %s\n" #: main.c:2157 #, c-format msgid "Failed to write token: %s\n" msgstr "Neuspješno pisanje znaka: %s\n" #: main.c:2203 main.c:2224 #, c-format msgid "Soft token string is invalid\n" msgstr "Soft token string nije ispravan\n" #: main.c:2206 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Ne može otvoriti ~/.stokenrc file\n" #: main.c:2209 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "OpenConnect nije izgrađen sa libstoken podrškom\n" #: main.c:2212 #, c-format msgid "General failure in libstoken\n" msgstr "Opći neuspjeh u libstoken\n" #: main.c:2227 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "OpenConnect nije izgrašen sa liboath podrškom\n" #: main.c:2230 #, c-format msgid "General failure in liboath\n" msgstr "Opći neuspjeh u liboath\n" #: main.c:2241 #, c-format msgid "Yubikey token not found\n" msgstr "Nisam našao modul Jubi ključa\n" #: main.c:2244 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "Otvoreno povezivanje nije izgrađeno sa podrškom Jubi ključa\n" #: main.c:2247 #, c-format msgid "General Yubikey failure: %s\n" msgstr "Opšti neuspjeh Jubi ključa: %s\n" #: mainloop.c:127 #, c-format msgid "Set up tun script failed\n" msgstr "Nije postavljen tun script\n" #: mainloop.c:134 #, c-format msgid "Set up tun device failed\n" msgstr "Instaliranje tun uređaja neuspjelo\n" #: mainloop.c:265 msgid "Caller paused the connection\n" msgstr "Pozivatelj je pauzirao konekciju\n" #: mainloop.c:273 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Nema šta za uraditi; gašenje za %d ms...\n" #: mainloop.c:294 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "Čekanje na više objekata nije uspelo: %s\n" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "InitializeSecurityContext() nije uspio: %lx\n" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "AcquireCredentialsHandle() nije uspio: %lx\n" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "Greška komuniciranja sa ntlm_auth pomoćnikom\n" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "Pokušavanje HTTP NTLM autentičnosti za proxy (single-sign-on)\n" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "Pokušana HTTP NTLM prijava na server '%s' (prosta prijava)\n" #: ntlm.c:978 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "Pokušavanje HTTP NTLMv%d autentičnosti za proxy\n" #: ntlm.c:982 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "Pokušana HTTP NTLMv%d prijava na server '%s'\n" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "Pokrešan base32 token string\n" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "Neuspješna alokacija memorije za dekodiranje OATH tajne\n" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "Ova verzija OtvoreneKonekcije je izgrađena bez PSKC podrške\n" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "Uredu da generišete INITIAL tokencode\n" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "Uredu da generišete NEXT tokencode\n" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "Server je odbio soft token; promijenite na ručni ulaz\n" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "Generisanje OATH TOTP token koda\n" #: oath.c:565 msgid "Generating OATH HOTP token code\n" msgstr "Generisanje OATH HOTP oznake koda\n" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "Ne validan cookie ponuđen: %s\n" #: oncp.c:160 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "Neočekivana dužina %d za TLV %d/%d\n" #: oncp.c:166 #, c-format msgid "Received MTU %d from server\n" msgstr "Zahtijeva MTU %d od servera\n" #: oncp.c:175 #, c-format msgid "Received DNS server %s\n" msgstr "Primljen DNS server %s\n" #: oncp.c:186 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "Primljena DNS domena pretrage %.*s\n" #: oncp.c:201 #, c-format msgid "Received internal IP address %s\n" msgstr "Primljena interna IP adresa %s\n" #: oncp.c:210 #, c-format msgid "Received netmask %s\n" msgstr "Primljena mrežna maska %s\n" #: oncp.c:219 #, c-format msgid "Received internal gateway address %s\n" msgstr "Primljena interna adresa mrežnog izlaza %s\n" #: oncp.c:232 #, c-format msgid "Received split include route %s\n" msgstr "Primljena razdvajajuća ruta uključenja %s\n" #: oncp.c:254 #, c-format msgid "Received split exclude route %s\n" msgstr "Primljena razdvajajuća ruta isključenja %s\n" #: oncp.c:274 #, c-format msgid "Received WINS server %s\n" msgstr "Primljen WINS server %s\n" #: oncp.c:297 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "ESP šifrovanje: 0x%02x (%s)\n" #: oncp.c:316 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "ESP HMAC: 0x%02x (%s)\n" #: oncp.c:327 #, c-format msgid "ESP compression: %d\n" msgstr "ESP kompresija: %d\n" #: oncp.c:335 #, c-format msgid "ESP port: %d\n" msgstr "ESP port: %d\n" #: oncp.c:342 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "ESP dužina života ključa: %u bajta\n" #: oncp.c:350 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "ESP dužina života ključa: %u sekundi\n" #: oncp.c:358 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "ESP u SSL rezervno rješenje: %u sekundi\n" #: oncp.c:366 #, c-format msgid "ESP replay protection: %d\n" msgstr "ESP zaštita pri ponovnom izvođenju: %d\n" #: oncp.c:374 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "ESP SPI (izlaz): %x\n" #: oncp.c:383 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "%d bajta ESP tajni\n" #: oncp.c:395 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "Nepoznata TLV grupa %d attr %d len %d:%s\n" #: oncp.c:473 msgid "Failed to parse KMP header\n" msgstr "Neuspjelo analizirati KMP zaglavlje\n" #: oncp.c:490 msgid "Failed to parse KMP message\n" msgstr "Neuspjelo analizirati KMP poruku\n" #: oncp.c:496 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "Dobijena KMP poruka %d veličine %d\n" #: oncp.c:512 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "Primljen ne-ESP TLV (grupa %d) u ESP dogovoru KMP\n" #: oncp.c:577 oncp.c:609 oncp.c:747 msgid "Error creating oNCP negotiation request\n" msgstr "Greška kreirajući oNCP zahtjev za pregovor\n" #: oncp.c:618 oncp.c:783 msgid "Short write in oNCP negotiation\n" msgstr "Kratko pisanje u oNCP ugovaranju\n" #: oncp.c:631 oncp.c:666 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "Pročitano %d bajta SSL zapisa\n" #: oncp.c:636 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "Neočekivan odgovor veličine %d nakon hostname paketa\n" #: oncp.c:643 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "Serverski odgovor na hostname paket je greška 0x%02x\n" #: oncp.c:670 msgid "Invalid packet waiting for KMP 301\n" msgstr "Pogrešan paket čeka na KMP 301\n" #: oncp.c:683 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "Očekivana KMP poruka 301 sa servera ali je dobijeno %d\n" #: oncp.c:692 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "" #: oncp.c:698 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "" #: oncp.c:705 msgid "Failed to read continuation record length\n" msgstr "" #: oncp.c:711 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "" #: oncp.c:720 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "" #: oncp.c:726 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "" #: oncp.c:767 msgid "Error negotiating ESP keys\n" msgstr "Greška usaglašavanja ESP ključeva:\n" #: oncp.c:776 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:829 msgid "new incoming" msgstr "novi dolazni" #: oncp.c:830 msgid "new outgoing" msgstr "novi odlazni" #: oncp.c:855 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:864 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:868 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:874 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:969 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:972 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:991 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1053 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "Nepoznata KMP poruka %d veličine %d\n" #: oncp.c:1058 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr ".... + %d dodatnih bajtova neprimljeno\n" #: oncp.c:1073 msgid "Packet outgoing:\n" msgstr "Odlazni paket:\n" #: oncp.c:1134 msgid "Sent ESP enable control packet\n" msgstr "Poslan ESP omogućujući kontrolni paket\n" #: oncp.c:1268 msgid "Logout successful.\n" msgstr "" #: openconnect-internal.h:1119 openconnect-internal.h:1127 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "GREŠKA: %s() pozvana sa neispravnim UTF-8 za '%s' argumentom\n" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "Neuspjelo kreirati SSL_SESSION ASN.1 za OpenSSL: %s\n" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "OpenSSL neuspio analizirati SSL_SESSION ASN.1\n" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "Postavljanje DTLSv1 sesije neuspjelo\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "" #: openssl-dtls.c:365 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Postavljanje DTLSv1 CTX neuspjelo\n" #: openssl-dtls.c:378 msgid "Set DTLS CTX version failed\n" msgstr "" #: openssl-dtls.c:395 msgid "Failed to generate DTLS key\n" msgstr "" #: openssl-dtls.c:413 msgid "Set DTLS cipher list failed\n" msgstr "Postavljanje DTLS šifre neuspjelo\n" #: openssl-dtls.c:439 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:460 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "Seje http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Usi the --no-dtls command linije option to avoid this message\n" #: openssl-dtls.c:493 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:566 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "Osnovana DTLS veza (pomoću OpenSSL). Ciphersuite %s.\n" #: openssl-dtls.c:603 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" "Tvoj OpenSSL je stariji od ovog kojeg si napravio ponovo, pa DTLS možda neće " "uspjeti!" #: openssl-dtls.c:654 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Ovo je možda zato što tvoj OpenSSL je pukao\n" "Pogledaj http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: openssl-dtls.c:661 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "DTLS spajanje neuspjelo: %d\n" #: openssl-esp.c:87 msgid "Failed to initialise ESP cipher:\n" msgstr "Neuspjelo inicijalizirati ESP šifru:\n" #: openssl-esp.c:101 msgid "Failed to initialize ESP HMAC\n" msgstr "Neuspjelo inicijalizirati ESP HMAC\n" #: openssl-esp.c:157 msgid "Failed to generate random keys for ESP:\n" msgstr "Neuspjelo generisati slučajne ključeve za ESP:\n" #: openssl-esp.c:202 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "Neuspjelo postavljanje dekripcijskog konteksta za ESP paket:\n" #: openssl-esp.c:210 msgid "Failed to decrypt ESP packet:\n" msgstr "Neuspjelo dešifrovanje ESP paketa:\n" #: openssl-esp.c:241 msgid "Failed to encrypt ESP packet:\n" msgstr "Neuspjelo šifrovanje ESP paketa:\n" #: openssl-pkcs11.c:43 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "Nisam uspeo da uspostavim libp11 PKCS#11 kontekst:\n" #: openssl-pkcs11.c:49 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "Nisam uspeo da učitam modul PKCS#11 dostavljača (%s):\n" #: openssl-pkcs11.c:269 msgid "PIN locked\n" msgstr "PIN je zaključan\n" #: openssl-pkcs11.c:272 msgid "PIN expired\n" msgstr "PIN je istekao\n" #: openssl-pkcs11.c:275 msgid "Another user already logged in\n" msgstr "Drugi korisnik je već prijavljen\n" #: openssl-pkcs11.c:279 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "Nepoznata greška prijavljivanja na PKCS#11 modul\n" #: openssl-pkcs11.c:286 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "Prijavljen sam na PKCS#11 priključak „%s“\n" #: openssl-pkcs11.c:300 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "Nisam uspeo da nabrojim uvjerenja u PKCS#11 priključku „%s“\n" #: openssl-pkcs11.c:306 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "Nađoh %d uvjerenja u priključku „%s“\n" #: openssl-pkcs11.c:342 openssl-pkcs11.c:565 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "Nisam uspeo da obradim PKCS#11 putanju „%s“\n" #: openssl-pkcs11.c:349 openssl-pkcs11.c:575 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "Nisam uspeo da nabrojim PKCS#11 priključke\n" #: openssl-pkcs11.c:383 openssl-pkcs11.c:617 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "Prijavljujem se na PKCS#11 priključak „%s“\n" #: openssl-pkcs11.c:393 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "" #: openssl-pkcs11.c:401 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "libp11 nije dovukla sadržaj H.509 uverenja\n" #: openssl-pkcs11.c:412 openssl.c:713 msgid "Failed to install certificate in OpenSSL context\n" msgstr "Neuspješno instaliranje potvrde u OpenSSL kontekstu\n" #: openssl-pkcs11.c:458 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "Nisam uspeo da nabrojim ključeve u PKCS#11 priključku „%s“\n" #: openssl-pkcs11.c:464 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "Nađoh %d ključa u priključku „%s“\n" #: openssl-pkcs11.c:497 msgid "Certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:503 openssl-pkcs11.c:526 msgid "Certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:506 msgid "Checking EC key matches cert\n" msgstr "" #: openssl-pkcs11.c:510 msgid "Failed to allocate signature buffer\n" msgstr "" #: openssl-pkcs11.c:520 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" #: openssl-pkcs11.c:638 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "" #: openssl-pkcs11.c:649 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "Nisam uspeo da napravim primjerak ličnog ključa iz PKCS#11\n" #: openssl-pkcs11.c:678 msgid "Add key from PKCS#11 failed\n" msgstr "Dodavanje ključa iz PKCS#11 nije uspelo\n" #: openssl-pkcs11.c:710 openssl-pkcs11.c:716 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "Ovo izdanje Otvorenog povezivanja je izgrađeno bez PKCS#11 podrške\n" #: openssl.c:147 msgid "Failed to write to SSL socket\n" msgstr "Neuspjeh pri upisivanju u SSL soket\n" #: openssl.c:197 openssl.c:263 msgid "Failed to read from SSL socket\n" msgstr "Ne može pročitati iz SSL soketa\n" #: openssl.c:292 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" "SSL očitao grešku %d (moguće je da će server zatvoriti konekciju); ponovno " "konektovanje.\n" #: openssl.c:317 #, c-format msgid "SSL_write failed: %d\n" msgstr "SSL_upis neuspio: %d\n" #: openssl.c:389 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "Nepoznata vrsta zahtjeva KS SSL-a %d\n" #: openssl.c:465 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "PEM šifra preduga (%d >= %d)\n" #: openssl.c:498 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Posebni cert iz %s: '%s'\n" #: openssl.c:548 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Fraza PKCS#12 neuspjela (napravi uvid u greške)\n" #: openssl.c:563 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS#12 ne sadrži certifikat!\n" #: openssl.c:572 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS#12 ne sadrži privatni ključ!\n" #: openssl.c:577 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:600 msgid "Can't load TPM engine.\n" msgstr "Ne može učitati TPM engine.\n" #: openssl.c:606 msgid "Failed to init TPM engine\n" msgstr "Ne može pokrenuti TPM engine\n" #: openssl.c:616 msgid "Failed to set TPM SRK password\n" msgstr "Ne može postaviti TPM SRK šifru\n" #: openssl.c:630 msgid "Failed to load TPM private key\n" msgstr "Ne može učitati TPM privatni ključ\n" #: openssl.c:636 msgid "Add key from TPM failed\n" msgstr "Dodavanje ključa iz TPM neuspjelo\n" #: openssl.c:687 openssl.c:835 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Neuspjeh pri otvaranju certifikat datoteke %s: %s\n" #: openssl.c:697 msgid "Loading certificate failed\n" msgstr "Učitavanje certifikata neuspjelo\n" #: openssl.c:735 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" "Neuspješno procesiranje svih cert-ova podrške. Pokušavaj u svakom " "slučaju...\n" #: openssl.c:748 msgid "PEM file" msgstr "PEM datoteka" #: openssl.c:777 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Ne može kreirati BIO za keystore objekt '%s'\n" #: openssl.c:802 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Učitavanje privatnog ključa neuspjelo (pogrešna šifra?)\n" #: openssl.c:808 msgid "Loading private key failed (see above errors)\n" msgstr "Učitavanje privatnog ključa neuspjelo (izvrši uvid grešaka)\n" #: openssl.c:858 msgid "Failed to load X509 certificate from keystore\n" msgstr "Neuspjelo učitavanje X509 certifikata iz keystore\n" #: openssl.c:864 msgid "Failed to use X509 certificate from keystore\n" msgstr "Nemoguće korištenje X509 certifikata iz keystore\n" #: openssl.c:896 msgid "Failed to use private key from keystore\n" msgstr "Nemoguće koristiti privatni ključ iz keystore\n" #: openssl.c:912 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Ne može otvoriti privatnu ključ datoteku %s: %s\n" #: openssl.c:936 openssl.c:951 openssl.c:972 openssl.c:1038 msgid "Loading private key failed\n" msgstr "Neuspješno preuzimanje privatnog ključa\n" #: openssl.c:1032 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1049 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Ne može identifikovati tip privatnog ključa u '%s'\n" #: openssl.c:1203 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Matched DNS altname '%s'\n" #: openssl.c:1210 #, c-format msgid "No match for altname '%s'\n" msgstr "Ne odgovara za altname '%s'\n" #: openssl.c:1224 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "Certifikat ima GEN_IPADD altname sa prividnom dužinom %d\n" #: openssl.c:1235 openssl.c:1381 #, c-format msgid "Matched %s address '%s'\n" msgstr "Uparena %s adresa '%s'\n" #: openssl.c:1242 #, c-format msgid "No match for %s address '%s'\n" msgstr "Ne odgovara za %s adresu '%s'\n" #: openssl.c:1284 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "URI '%s' ima ne praznu putanju; ukidanje\n" #: openssl.c:1289 #, c-format msgid "Matched URI '%s'\n" msgstr "Odgovarajući URI '%s'\n" #: openssl.c:1300 #, c-format msgid "No match for URI '%s'\n" msgstr "Ne odgovara za URI '%s'\n" #: openssl.c:1315 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "Nema altname u odgovarajućem certifikatu '%s'\n" #: openssl.c:1323 msgid "No subject name in peer cert!\n" msgstr "Nema imena subjekta u certifikatu!\n" #: openssl.c:1343 msgid "Failed to parse subject name in peer cert\n" msgstr "Ne može razdvojiti ime subjekta u certifikatu\n" #: openssl.c:1350 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Subjekat certifikata je neusklađen ('%s' != '%s')\n" #: openssl.c:1355 openssl.c:1389 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Odgovarajuće ime subjekta certifikata '%s'\n" #: openssl.c:1451 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Dodatni cert iz cafile: '%s'\n" #: openssl.c:1589 msgid "Error in client cert notAfter field\n" msgstr "Greška u klijent cert notAfter polje\n" #: openssl.c:1602 msgid "" msgstr "" #: openssl.c:1655 msgid "Create TLSv1 CTX failed\n" msgstr "" #: openssl.c:1674 msgid "SSL certificate and key do not match\n" msgstr "" #: openssl.c:1719 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Nemoguće pročitati certs iz CA datoteke '%s'\n" #: openssl.c:1752 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Ne može otvoriti CA datoteku '%s'\n" #: openssl.c:1812 msgid "SSL connection failure\n" msgstr "Spajanje SSL neuspjelo\n" #: openssl.c:1973 msgid "Failed to calculate OATH HMAC\n" msgstr "Neuspjelo izračunavanje OATH HMAC\n" #: script.c:130 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Odbaci lošu podjelu uključujući: \"%s\"\n" #: script.c:134 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Odbaci lošu podjelu isključujući: \"%s\"\n" #: script.c:507 script.c:555 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Nemoguće spawn script '%s' za %s: %s\n" #: script.c:562 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "Script '%s' zavrišio nenormalno (%x)\n" #: script.c:570 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Script '%s' vraćena greška %d\n" #: ssl.c:108 msgid "Socket connect cancelled\n" msgstr "Soket konekcija otkazana\n" #: ssl.c:217 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "" #: ssl.c:221 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "" #: ssl.c:289 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Proxy iz libproxy: %s://%s:%d/\n" #: ssl.c:317 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "getaddrinfo neuspjelo za host '%s': %s\n" #: ssl.c:326 ssl.c:451 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" "Ponovo se povezujem na DinDNS server koristeći prethodno pričuvanu IP " "adresu\n" #: ssl.c:341 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Pokušavanje povezivanja na proxy %s%s%s:%s\n" #: ssl.c:342 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Pokušavanje povezivanja na server %s%s%s:%s\n" #: ssl.c:362 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "" #: ssl.c:374 msgid "Failed to allocate sockaddr storage\n" msgstr "Nemoguće alocirati sockaddr skladište\n" #: ssl.c:416 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "" #: ssl.c:434 msgid "Forgetting non-functional previous peer address\n" msgstr "Zaboravljam ne-delotvornu adresu prehodnog parnjaka\n" #: ssl.c:446 #, c-format msgid "Failed to connect to host %s\n" msgstr "Nemoguće se povezati na host %s\n" #: ssl.c:465 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "Rekonektuj za proxy %s\n" #: ssl.c:536 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:564 msgid "Could not obtain file system ID for passphrase\n" msgstr "Ne mogu dobiti sistem datoteka ID za lozinku\n" #: ssl.c:575 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "Neuspješno otvaranje datoteke privatnog ključa '%s': %s\n" #: ssl.c:603 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:694 msgid "No error" msgstr "Nema greške" #: ssl.c:695 msgid "Keystore locked" msgstr "Keystore zaključano" #: ssl.c:696 msgid "Keystore uninitialized" msgstr "Keystore nepoznato" #: ssl.c:697 msgid "System error" msgstr "Sistemska greška" #: ssl.c:698 msgid "Protocol error" msgstr "Pogreška u protokolu" #: ssl.c:699 msgid "Permission denied" msgstr "Dopuštenje odbijeno" #: ssl.c:700 msgid "Key not found" msgstr "Ključ nije pronađen" #: ssl.c:701 msgid "Value corrupted" msgstr "Vrijednost nevalidna" #: ssl.c:702 msgid "Undefined action" msgstr "Ne definisana akcija" #: ssl.c:706 msgid "Wrong password" msgstr "Pogrešna šifra" #: ssl.c:707 msgid "Unknown error" msgstr "Nepoznata greška" #: ssl.c:896 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "openconnect_fopen_utf8() korišten bez podrške moda '%s'\n" #: ssl.c:931 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "Nepoznata protokol familija %d. Ne može kreirati UDP adresu servera\n" #: ssl.c:950 msgid "Open UDP socket" msgstr "Otvori UDP soket" #: ssl.c:981 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "Nepoznata protokol familija %d. Ne može se koristiti UDP transport\n" #: ssl.c:989 msgid "Bind UDP socket" msgstr "Poveži UDP soket" #: ssl.c:996 msgid "Connect UDP socket\n" msgstr "Povezivanje na UDP soket\n" #: ssl.c:1034 msgid "Cookie is no longer valid, ending session\n" msgstr "Cookie nije više validan, završavanje zasjedanja\n" #: ssl.c:1038 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "spavanje %ds, Preostalo vrijeme %ds\n" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "SSPI oznaka je previše velika (%ld bajta)\n" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "Slanje SSPI oznake od %lu bajta\n" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "Neuspješno slanje SSPI autentične oznake za proxy: %s\n" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "Neuspješno primanje SSPI autentične oznake iz proxy: %s\n" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "SOCKS server provjerava SSPI greške konteksta\n" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "Nepoznat SSPI status odgovara (0x%02x) iz SOCKS servera\n" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "Dobijena SSPI oznaka od %lu bajta: %02x %02x %02x %02x\n" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "QueryContextAttributes() nije uspio: %lx\n" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "EncryptMessage() nije uspio: %lx\n" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "EncryptMessage() rezultat je previše veliki (%lu + %lu + %lu)\n" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "Slanje SSPI zaštitnog pregovaranja od %u bajta\n" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "Neuspješno slanje SSPI zaštitnog odgovora za proxy: %s\n" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "Neuspješno primanje SSPI zaštitnog odgovora iz proxy: %s\n" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "Dobijen SSPI zaštitni odgovor od %d bajta: %02x %02x %02x %02x\n" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "DecryptMessage nije uspio: %lx\n" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "Neispravan SSPI zaštitni odgovor iz proxy (%lu bajta)\n" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "Unesi akreditiv da otključaš software token." #: stoken.c:82 msgid "Device ID:" msgstr "Uređaj ID:" #: stoken.c:89 msgid "Password:" msgstr "Lozinka:" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "Korisnik preskočio soft token.\n" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "Sva polja su potrebna; pokušajte ponovo.\n" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "Opšte pogreške u libstoken.\n" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "Pogrešan uređaj ID ili lozinka; pokušajte ponovo.\n" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "Soft token init bio je uspješan.\n" #: stoken.c:185 msgid "Enter software token PIN." msgstr "Unesi seftver oznaku PIN-a." #: stoken.c:189 msgid "PIN:" msgstr "PIN:" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "Neispravan PIN format; pokušajte ponovo.\n" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "Generisanje RSA token koda\n" #: tun-win32.c:76 msgid "Error accessing registry key for network adapters\n" msgstr "Greška prilikom pristupa ključu registra za mrežne adaptere\n" #: tun-win32.c:139 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "Ignorisanje neodgovarajućeg TAP interfejsa \"%s\"\n" #: tun-win32.c:154 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "Nije pronađen Windows-TAP adapter. Je li instaliran drajver?\n" #: tun-win32.c:186 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" #: tun-win32.c:200 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "" #: tun-win32.c:231 #, c-format msgid "Failed to open %s\n" msgstr "Neuspjelo otvaranje %s\n" #: tun-win32.c:236 #, c-format msgid "Opened tun device %s\n" msgstr "Otvoren tun uređaj %s\n" #: tun-win32.c:244 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Nisam uspeo da dobijem izdanje TAP upravljačkog programa: %s\n" #: tun-win32.c:250 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Greška: TAP-Windows driver v9.9 ili veći je potreban (pronađen %ld.%ld)\n" #: tun-win32.c:271 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Nisam uspeo da podesim TAP IP adrese: %s\n" #: tun-win32.c:283 tun-win32.c:406 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Nisam uspeo da podesim stanje TAP medija: %s\n" #: tun-win32.c:316 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "TAP uređaj je prekinuo povezivost. Prekidam vezu.\n" #: tun-win32.c:321 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Nisam uspeo da čitam sa TAP uređaja: %s\n" #: tun-win32.c:335 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Nisam uspeo da dovršim čitanje sa TAP uređaja: %s\n" #: tun-win32.c:358 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "Napisano %ld bajta za tun\n" #: tun-win32.c:368 msgid "Waiting for tun write...\n" msgstr "Čekanje za tun pisanje...\n" #: tun-win32.c:371 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "Napisano %ld bajta za tun nakon čekanja\n" #: tun-win32.c:378 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Nisam uspeo da pišem na TAP uređaj: %s\n" #: tun-win32.c:423 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "Miješanje tunel oznaka nije još uvijek podržano na Windowsu\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Ne može otvoriti /dev/tun za protok" #: tun.c:92 msgid "Can't push IP" msgstr "Ne može staviti IP" #: tun.c:102 msgid "Can't set ifname" msgstr "Ne može postaviti ifname" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "Nije moguće otvoriti %s: %s" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Ne može mjeriti %s za IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "otvori /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Neuspjeh pri kreiranju novog tun" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "Ne može staviti tun deskriptor datoteke u poruku-odbačeni režim" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "" #: tun.c:205 msgid "open net" msgstr "otvori nit" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Neuspjeh pri otvaranju tun uređaja: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "Neuspjelo povezivanje lokalnog tun uređaja (TUNSETIFF): %s\n" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" "Za konfiguraciju lokalne mreže, openconnect mora biti pokrenut kao root\n" "Vidi http://www.infradead.org/openconnect/nonroot.html za više informacija\n" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "Neispravan naziv uređaja „%s“; mora da bude „utun%%d“ ili „tun%%d“\n" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "Nisam uspeo da otvorim „SYSPROTO_CONTROL“ priključnicu: %s\n" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "Nisam uspeo da propitam ib kontrole utuna: %s\n" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "Nisam uspeo da dodijelim naziv utun uređaja\n" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "Nisam uspeo da povežem utun jedinicu: %s\n" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Ne ispravno ime sučelja '%s'; mora match 'tun%%d'\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Ne može otvoriti '%s': %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:479 #, c-format msgid "socketpair failed: %s\n" msgstr "socketpair nije uspio: %s\n" #: tun.c:484 #, c-format msgid "fork failed: %s\n" msgstr "fork nije uspio: %s\n" #: tun.c:488 msgid "setpgid" msgstr "setpgid" #: tun.c:493 msgid "execl" msgstr "execl" #: tun.c:498 msgid "(script)" msgstr "(script)" #: tun.c:566 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Neuspjeh pri upisivanju dolazećeg paketa: %s\n" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "Neuspjelo otvaranje %s: %s\n" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "Neuspjelo fstat() %s: %s\n" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Neuspjelo alociranje %d bajta za %s\n" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "Neuspjelo čitanje %s: %s\n" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Izloženi host \"%s\" kao osjetljiv hostname\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Neuspjeh za SHA1 postojecu datoteku\n" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "XML config datoteka SHA1: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Nemoguće razdvojiti XML config datoteku %s\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Host \"%s\" ima adresu \"%s\"\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Host \"%s\" ima korisničku grupu \"%s\"\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "Host \"%s\" nije pronađen u config; označen kao nesiguran hostname\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "Nisam uspeo da pošaljem „%s“ do programčeta „ykneo-oath“: %s\n" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "Neispravan kratak odgovor za „%s“ od programčeta „ykneo-oath“\n" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "Neuspjeli odgovor za „%s“: %04x\n" #: yubikey.c:174 msgid "select applet command" msgstr "izaberi naredbu programčeta" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "Nepoznat odgovor od programčeta „ykneo-oath“\n" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "Našao sam programče „ykneo-oath“ i%d.%d.%d.\n" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "Potreban je PIN za OATH programče Jubi ključa" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "PIN Jubi ključa:" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "Nisam uspeo da izračunam odgovor otključavanja Jubi ključa\n" #: yubikey.c:274 msgid "unlock command" msgstr "naredba otključavanja" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "Pokušavam truncated-char PBKBF2 varijantu za Yubikey PIN\n" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "Nisam uspeo da uspostavim PC/SC kontekst: %s\n" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "PC/SC kontekst je upsostavljen\n" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "Nisam uspeo da propitam spisak čitača: %s\n" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "Nisam uspeo da se povežem sa PC/SC čitačem „%s“: %s\n" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "Povezan je PC/SC čitač „%s“\n" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "Nisam uspeo da dobijem isključivi pristup čitaču „%s“: %s\n" #: yubikey.c:412 msgid "list keys command" msgstr "naredba spiska ključeva" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "Nađoh %s/%s kljzč „%s“ na „%s“\n" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" "Nisam našao modul „%s“ na Jubi ključu „%s“. Tražim drugi Jubi ključ...\n" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "Server odbija modul Jubi ključa; prelazim na ručni unos\n" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "Stvaram kod modula Jubi ključa\n" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "Nisam uspeo da dobijem isključivi pristup Jubi ključu: %s\n" #: yubikey.c:619 msgid "calculate command" msgstr "naredba izračunavanja" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "Nepoznat odgovor sa Jubi ključa prilikom stvaranja koda modula\n" openconnect-8.05/po/gl.po0000664000076400007640000026207013470043037017125 0ustar00dwoodhoudwoodhou00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2019-05-18 10:44-0700\n" "PO-Revision-Date: 2011-09-22 22:31+0000\n" "Last-Translator: FULL NAME \n" "Language-Team: Galician (http://www.transifex.net/projects/p/meego/team/" "gl/)\n" "Language: gl\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1)\n" #: auth-globalprotect.c:108 #, c-format msgid "" "SAML login is required via %s to this URL:\n" "\t%s" msgstr "" #: auth-globalprotect.c:110 msgid "Please enter your username and password" msgstr "" #: auth-globalprotect.c:119 msgid "Username" msgstr "" #: auth-globalprotect.c:134 msgid "Password" msgstr "" #: auth-globalprotect.c:181 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:260 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:266 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:272 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:315 msgid "Please select GlobalProtect gateway." msgstr "" #: auth-globalprotect.c:325 msgid "GATEWAY:" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:379 #, c-format msgid "%d gateway servers available:\n" msgstr "" #: auth-globalprotect.c:400 #, c-format msgid " %s (%s)\n" msgstr "" #: auth-globalprotect.c:484 auth-juniper.c:730 auth.c:669 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth-globalprotect.c:584 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" #: auth-globalprotect.c:636 oncp.c:1266 msgid "Logout failed.\n" msgstr "" #: auth-globalprotect.c:638 msgid "Logout successful\n" msgstr "" #: auth-juniper.c:142 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:153 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:163 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:236 auth.c:408 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "" #: auth-juniper.c:267 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "" #: auth-juniper.c:337 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:359 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:397 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:411 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:418 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:425 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:432 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:439 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:445 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:452 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:481 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:650 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:667 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:675 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:713 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:716 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth.c:96 msgid "Form choice has no name\n" msgstr "" #: auth.c:181 #, c-format msgid "name %s not input\n" msgstr "" #: auth.c:188 msgid "No input type in form\n" msgstr "" #: auth.c:200 msgid "No input name in form\n" msgstr "" #: auth.c:230 #, c-format msgid "Unknown input type %s in form\n" msgstr "" #: auth.c:540 gpst.c:214 msgid "Empty response from server\n" msgstr "" #: auth.c:551 gpst.c:289 msgid "Failed to parse server response\n" msgstr "" #: auth.c:553 gpst.c:291 #, c-format msgid "Response was:%s\n" msgstr "" #: auth.c:575 msgid "Received when not expected.\n" msgstr "" #: auth.c:603 msgid "XML response has no \"auth\" node\n" msgstr "" #: auth.c:636 msgid "Asked for password but '--no-passwd' set\n" msgstr "" #: auth.c:925 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:931 cstp.c:335 http.c:916 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "" #: auth.c:952 msgid "Failed to send GET request for new config\n" msgstr "" #: auth.c:976 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" #: auth.c:981 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:992 auth.c:1044 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" #: auth.c:1003 mainloop.c:144 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "" #: auth.c:1010 mainloop.c:151 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "" #: auth.c:1017 mainloop.c:158 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "" #: auth.c:1024 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "" #: auth.c:1031 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "" #: auth.c:1053 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:1060 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" #: auth.c:1067 msgid "Trying to run Linux CSD trojan script.\n" msgstr "" #: auth.c:1094 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1102 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "" #: auth.c:1111 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "" #: auth.c:1141 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" #: auth.c:1189 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "" #: auth.c:1221 msgid "Unknown response from server\n" msgstr "" #: auth.c:1342 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1346 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" #: auth.c:1362 msgid "XML POST enabled\n" msgstr "" #: auth.c:1405 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "" #: compat.c:207 #, c-format msgid "(error 0x%lx)" msgstr "" #: compat.c:210 msgid "(Error while describing error!)" msgstr "" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:112 gpst.c:341 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "" #: cstp.c:134 gpst.c:360 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "" #: cstp.c:281 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:312 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:328 http.c:384 msgid "Error fetching HTTPS response\n" msgstr "" #: cstp.c:355 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "" #: cstp.c:360 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "" #: cstp.c:367 #, c-format msgid "Got CONNECT response: %s\n" msgstr "" #: cstp.c:396 cstp.c:404 msgid "No memory for options\n" msgstr "" #: cstp.c:413 http.c:444 msgid "" msgstr "" #: cstp.c:433 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "" #: cstp.c:450 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "" #: cstp.c:468 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:510 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "" #: cstp.c:585 msgid "No MTU received. Aborting\n" msgstr "" #: cstp.c:593 gpst.c:641 msgid "No IP address received. Aborting\n" msgstr "" #: cstp.c:599 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: cstp.c:605 gpst.c:648 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "" #: cstp.c:614 gpst.c:657 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" #: cstp.c:622 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "" #: cstp.c:630 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "" #: cstp.c:638 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "" #: cstp.c:640 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "" #: cstp.c:702 msgid "Compression setup failed\n" msgstr "" #: cstp.c:719 msgid "Allocation of deflate buffer failed\n" msgstr "" #: cstp.c:781 msgid "inflate failed\n" msgstr "" #: cstp.c:804 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:817 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:824 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:829 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:849 #, c-format msgid "deflate failed %d\n" msgstr "" #: cstp.c:922 dtls.c:281 dtls.c:740 esp.c:129 gpst.c:1042 mainloop.c:69 #: oncp.c:914 msgid "Allocation failed\n" msgstr "" #: cstp.c:933 gpst.c:1055 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: cstp.c:946 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" #: cstp.c:960 msgid "Got CSTP DPD request\n" msgstr "" #: cstp.c:966 msgid "Got CSTP DPD response\n" msgstr "" #: cstp.c:971 msgid "Got CSTP Keepalive\n" msgstr "" #: cstp.c:976 oncp.c:1003 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:993 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "" #: cstp.c:996 msgid "Received server disconnect\n" msgstr "" #: cstp.c:1004 msgid "Compressed packet received in !deflate mode\n" msgstr "" #: cstp.c:1013 msgid "received server terminate packet\n" msgstr "" #: cstp.c:1020 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "" #: cstp.c:1063 gpst.c:1142 oncp.c:1121 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1091 oncp.c:1155 msgid "CSTP rekey due\n" msgstr "" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1098 oncp.c:1162 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: cstp.c:1109 oncp.c:1173 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "" #: cstp.c:1113 gpst.c:1166 oncp.c:1091 oncp.c:1177 msgid "Reconnect failed\n" msgstr "" #: cstp.c:1129 oncp.c:1193 msgid "Send CSTP DPD\n" msgstr "" #: cstp.c:1141 oncp.c:1204 msgid "Send CSTP Keepalive\n" msgstr "" #: cstp.c:1166 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1177 oncp.c:1238 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:1216 #, c-format msgid "Send BYE packet: %s\n" msgstr "" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:113 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:119 msgid "No DTLS address\n" msgstr "" #. We probably didn't offer it any ciphers it liked #: dtls.c:126 msgid "Server offered no DTLS cipher option\n" msgstr "" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:133 msgid "No DTLS when connected via proxy\n" msgstr "" #: dtls.c:200 #, c-format msgid "DTLS option %s : %s\n" msgstr "" #: dtls.c:239 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:265 msgid "Attempt new DTLS connection\n" msgstr "" #: dtls.c:292 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "" #: dtls.c:306 msgid "Got DTLS DPD request\n" msgstr "" #: dtls.c:312 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "" #: dtls.c:316 msgid "Got DTLS DPD response\n" msgstr "" #: dtls.c:320 msgid "Got DTLS Keepalive\n" msgstr "" #: dtls.c:326 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:334 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "" #: dtls.c:356 msgid "DTLS rekey due\n" msgstr "" #: dtls.c:363 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: dtls.c:372 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "" #: dtls.c:378 msgid "Send DTLS DPD\n" msgstr "" #: dtls.c:383 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "" #: dtls.c:396 msgid "Send DTLS Keepalive\n" msgstr "" #: dtls.c:401 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" #: dtls.c:432 tun.c:541 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "" #: dtls.c:439 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "" #: dtls.c:443 msgid "UDP setsockopt" msgstr "" #: dtls.c:474 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "" #: dtls.c:488 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "" #: dtls.c:503 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "" #: dtls.c:531 #, c-format msgid "Initiating IPv4 MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:551 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" #: dtls.c:555 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" #: dtls.c:564 #, c-format msgid "Sending MTU DPD probe (%u bytes, min=%u, max=%u)\n" msgstr "" #: dtls.c:568 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "" #: dtls.c:582 dtls.c:690 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" #: dtls.c:594 #, c-format msgid "Timeout while waiting for DPD response; trying %d\n" msgstr "" #: dtls.c:601 dtls.c:682 msgid "Timeout while waiting for DPD response; resending probe.\n" msgstr "" #: dtls.c:608 dtls.c:709 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "" #: dtls.c:613 #, c-format msgid "Received MTU DPD probe (%u bytes of %u)\n" msgstr "" #: dtls.c:651 msgid "Initiating IPv6 MTU detection\n" msgstr "" #: dtls.c:666 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:670 #, c-format msgid "Failed to send DPD request (%d)\n" msgstr "" #: dtls.c:695 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:759 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "" #: dtls.c:762 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" #: esp.c:63 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:66 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:69 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:87 msgid "incoming" msgstr "" #: esp.c:88 msgid "outgoing" msgstr "" #: esp.c:90 esp.c:113 msgid "Send ESP probes\n" msgstr "" #: esp.c:138 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:155 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:161 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:174 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:181 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:193 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:202 msgid "ESP session established with server\n" msgstr "" #: esp.c:213 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:219 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:225 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:239 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:243 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:251 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:258 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:278 #, c-format msgid "Failed to encrypt ESP packet: %d\n" msgstr "" #: esp.c:294 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:301 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:307 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-dtls.c:190 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "" #: gnutls-dtls.c:198 msgid "Failed to generate DTLS priority string\n" msgstr "" #: gnutls-dtls.c:207 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "" #: gnutls-dtls.c:216 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "" #: gnutls-dtls.c:240 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "" #: gnutls-dtls.c:253 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:267 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:275 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "" #: gnutls-dtls.c:309 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "" #: gnutls-dtls.c:324 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "" #: gnutls-dtls.c:345 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "" #: gnutls-dtls.c:373 openssl-dtls.c:534 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "" #: gnutls-dtls.c:382 openssl-dtls.c:545 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "" #: gnutls-dtls.c:392 openssl-dtls.c:554 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" #: gnutls-dtls.c:405 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "" #: gnutls-dtls.c:416 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: gnutls-dtls.c:422 openssl-dtls.c:572 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "" #: gnutls-dtls.c:437 openssl-dtls.c:653 openssl-dtls.c:657 msgid "DTLS handshake timed out\n" msgstr "" #: gnutls-dtls.c:440 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "" #: gnutls-dtls.c:444 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:121 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:132 msgid "Failed to generate ESP IV\n" msgstr "" #: gnutls-esp.c:161 gnutls-esp.c:217 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:168 openssl-esp.c:192 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:180 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:209 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:95 openssl.c:154 msgid "SSL write cancelled\n" msgstr "" #: gnutls.c:99 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "" #: gnutls.c:145 gnutls.c:237 openssl.c:204 openssl.c:271 msgid "SSL read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:158 msgid "SSL socket closed uncleanly\n" msgstr "" #: gnutls.c:168 gnutls.c:246 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "" #: gnutls.c:266 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "" #: gnutls.c:302 #, c-format msgid "SSL send failed: %s\n" msgstr "" #: gnutls.c:315 msgid "Could not extract expiration time of certificate\n" msgstr "" #: gnutls.c:320 openssl.c:1592 msgid "Client certificate has expired at" msgstr "" #: gnutls.c:322 openssl.c:1597 msgid "Client certificate expires soon at" msgstr "" #: gnutls.c:371 openssl.c:771 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" #: gnutls.c:384 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "" #: gnutls.c:391 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" #: gnutls.c:400 msgid "Failed to allocate certificate buffer\n" msgstr "" #: gnutls.c:408 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "" #: gnutls.c:439 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "" #: gnutls.c:462 openssl.c:534 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "" #: gnutls.c:466 openssl.c:537 msgid "Enter PKCS#12 pass phrase:" msgstr "" #: gnutls.c:489 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "" #: gnutls.c:501 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:584 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "" #: gnutls.c:594 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "" #: gnutls.c:628 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "" #: gnutls.c:638 #, c-format msgid "MD5 hash error: %s\n" msgstr "" #: gnutls.c:696 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" #: gnutls.c:703 msgid "Cannot determine PEM encryption type\n" msgstr "" #: gnutls.c:716 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "" #: gnutls.c:741 gnutls.c:754 msgid "Invalid salt in encrypted PEM file\n" msgstr "" #: gnutls.c:778 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "" #: gnutls.c:786 msgid "Encrypted PEM file too short\n" msgstr "" #: gnutls.c:814 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" #: gnutls.c:825 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "" #: gnutls.c:877 msgid "Decrypting PEM key failed\n" msgstr "" #: gnutls.c:881 gnutls.c:1405 openssl.c:458 msgid "Enter PEM pass phrase:" msgstr "" #: gnutls.c:942 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:949 msgid "This binary built without PKCS#11 support\n" msgstr "" #: gnutls.c:993 openssl-pkcs11.c:407 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "" #: gnutls.c:994 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1012 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "" #: gnutls.c:1013 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1024 openssl.c:827 #, c-format msgid "Using certificate file %s\n" msgstr "" #: gnutls.c:1052 msgid "PKCS#11 file contained no certificate\n" msgstr "" #: gnutls.c:1078 msgid "No certificate found in file" msgstr "" #: gnutls.c:1083 #, c-format msgid "Loading certificate failed: %s\n" msgstr "" #: gnutls.c:1098 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1103 gnutls.c:1271 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "" #: gnutls.c:1114 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1125 gnutls.c:1219 gnutls.c:1247 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1130 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "" #: gnutls.c:1259 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "" #: gnutls.c:1266 openssl-pkcs11.c:644 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "" #: gnutls.c:1281 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" #: gnutls.c:1299 #, c-format msgid "Using private key file %s\n" msgstr "" #: gnutls.c:1310 openssl.c:651 msgid "This version of OpenConnect was built without TPM support\n" msgstr "" #: gnutls.c:1326 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1347 msgid "Failed to interpret PEM file\n" msgstr "" #: gnutls.c:1366 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "" #: gnutls.c:1379 gnutls.c:1393 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "" #: gnutls.c:1401 gnutls.c:1434 openssl.c:1002 openssl.c:1012 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "" #: gnutls.c:1426 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "" #: gnutls.c:1438 openssl.c:1008 msgid "Enter PKCS#8 pass phrase:" msgstr "" #: gnutls.c:1454 #, c-format msgid "Failed to get key ID: %s\n" msgstr "" #: gnutls.c:1499 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "" #: gnutls.c:1514 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "" #: gnutls.c:1539 msgid "No SSL certificate found to match private key\n" msgstr "" #: gnutls.c:1551 openssl.c:560 openssl.c:709 #, c-format msgid "Using client certificate '%s'\n" msgstr "" #: gnutls.c:1558 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "" #: gnutls.c:1579 gnutls.c:1589 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1625 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" #: gnutls.c:1648 msgid "Got no issuer from PKCS#11\n" msgstr "" #: gnutls.c:1653 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "" #: gnutls.c:1679 msgid "Failed to allocate memory for supporting certificates\n" msgstr "" #: gnutls.c:1702 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "" #: gnutls.c:1724 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1748 #, c-format msgid "Setting certificate failed: %s\n" msgstr "" #: gnutls.c:1941 msgid "Server presented no certificate\n" msgstr "" #: gnutls.c:1949 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" #: gnutls.c:1954 openssl.c:1515 msgid "Server presented different cert on rehandshake\n" msgstr "" #: gnutls.c:1959 openssl.c:1518 msgid "Server presented identical cert on rehandshake\n" msgstr "" #: gnutls.c:1965 msgid "Error initialising X509 cert structure\n" msgstr "" #: gnutls.c:1971 msgid "Error importing server's cert\n" msgstr "" #: gnutls.c:1980 main.c:1794 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:1985 msgid "Error checking server cert status\n" msgstr "" #: gnutls.c:1990 msgid "certificate revoked" msgstr "" #: gnutls.c:1992 msgid "signer not found" msgstr "" #: gnutls.c:1994 msgid "signer not a CA certificate" msgstr "" #: gnutls.c:1996 msgid "insecure algorithm" msgstr "" #: gnutls.c:1998 msgid "certificate not yet activated" msgstr "" #: gnutls.c:2000 msgid "certificate expired" msgstr "" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2005 msgid "signature verification failed" msgstr "" #: gnutls.c:2054 openssl.c:1399 openssl.c:1551 msgid "certificate does not match hostname" msgstr "" #: gnutls.c:2059 openssl.c:1398 openssl.c:1557 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "" #: gnutls.c:2126 msgid "Failed to allocate memory for cafile certs\n" msgstr "" #: gnutls.c:2147 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "" #: gnutls.c:2163 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "" #: gnutls.c:2176 openssl.c:1679 msgid "Loading certificate failed. Aborting.\n" msgstr "" #: gnutls.c:2237 #, c-format msgid "Failed to set TLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2249 openssl.c:1796 #, c-format msgid "SSL negotiation with %s\n" msgstr "" #: gnutls.c:2296 openssl.c:1822 msgid "SSL connection cancelled\n" msgstr "" #: gnutls.c:2303 #, c-format msgid "SSL connection failure: %s\n" msgstr "" #: gnutls.c:2312 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "" #: gnutls.c:2318 openssl.c:1839 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "" #: gnutls.c:2321 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "" #: gnutls.c:2483 openssl-pkcs11.c:199 #, c-format msgid "PIN required for %s" msgstr "" #: gnutls.c:2487 openssl-pkcs11.c:202 msgid "Wrong PIN" msgstr "" #: gnutls.c:2490 msgid "This is the final try before locking!" msgstr "" #: gnutls.c:2492 msgid "Only a few tries left before locking!" msgstr "" #: gnutls.c:2497 openssl-pkcs11.c:206 msgid "Enter PIN:" msgstr "" #: gnutls.c:2583 openssl.c:1967 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2592 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:54 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm.c:61 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:68 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:78 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "" #: gnutls_tpm.c:100 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "" #: gnutls_tpm.c:108 gnutls_tpm.c:119 gnutls_tpm.c:132 msgid "Error in TSS key blob\n" msgstr "" #: gnutls_tpm.c:139 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "" #: gnutls_tpm.c:146 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "" #: gnutls_tpm.c:154 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "" #: gnutls_tpm.c:161 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "" #: gnutls_tpm.c:182 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "" #: gnutls_tpm.c:198 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "" #: gnutls_tpm.c:205 msgid "Enter TPM SRK PIN:" msgstr "" #: gnutls_tpm.c:226 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "" #: gnutls_tpm.c:234 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "" #: gnutls_tpm.c:240 msgid "Enter TPM key PIN:" msgstr "" #: gnutls_tpm.c:251 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "" #: gnutls_tpm2.c:92 gnutls_tpm2_esys.c:474 gnutls_tpm2_ibm.c:419 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:198 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:208 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:217 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:225 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:231 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:249 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:270 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:275 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:384 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2_esys.c:173 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:189 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:190 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:191 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:192 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:196 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:201 gnutls_tpm2_ibm.c:262 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:209 gnutls_tpm2_esys.c:303 gnutls_tpm2_esys.c:374 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:221 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:226 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:245 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:250 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:258 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:261 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:274 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:295 gnutls_tpm2_ibm.c:278 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:309 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:317 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:323 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:333 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:363 gnutls_tpm2_ibm.c:363 gnutls_tpm2_ibm.c:450 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:395 #, c-format msgid "TPM2 RSA sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:414 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:420 gnutls_tpm2_esys.c:500 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:464 gnutls_tpm2_ibm.c:405 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:494 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:532 gnutls_tpm2_ibm.c:485 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:546 gnutls_tpm2_ibm.c:502 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:555 gnutls_tpm2_ibm.c:512 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:569 gnutls_tpm2_ibm.c:523 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:54 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:226 #, c-format msgid "%s\n" msgstr "" #: gpst.c:229 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:417 #, c-format msgid "Unknown ESP %s algorithm: %s" msgstr "" #: gpst.c:477 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: gpst.c:483 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:487 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:498 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:551 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:560 oncp.c:835 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: gpst.c:627 msgid "ESP disabled" msgstr "" #: gpst.c:629 msgid "No ESP keys received" msgstr "" #: gpst.c:631 msgid "ESP support not available in this build" msgstr "" #: gpst.c:635 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:680 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:702 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:711 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:719 #, c-format msgid "Got inappropriate HTTP GET-tunnel response: %.*s\n" msgstr "" #: gpst.c:861 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" "VPN connectivity may be disabled or limited without HIP report submission.\n" "You need to provide a --csd-wrapper argument with the HIP report submission " "script.\n" msgstr "" #: gpst.c:871 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:900 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:905 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:911 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:913 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:942 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:966 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:972 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:999 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1015 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1051 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1072 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1082 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1086 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1092 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: gpst.c:1101 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1109 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1157 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1162 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1182 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1202 #, c-format msgid "Sending data packet of %d bytes\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1165 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "" #: http.c:319 msgid "No memory for allocating cookies\n" msgstr "" #: http.c:394 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "" #: http.c:400 #, c-format msgid "Got HTTP response: %s\n" msgstr "" #: http.c:408 msgid "Error processing HTTP response\n" msgstr "" #: http.c:415 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "" #: http.c:435 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "" #: http.c:454 msgid "SSL certificate authentication failed\n" msgstr "" #: http.c:485 #, c-format msgid "Response body has negative size (%d)\n" msgstr "" #: http.c:496 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "" #. Now the body, if there is one #: http.c:515 #, c-format msgid "HTTP body %s (%d)\n" msgstr "" #: http.c:529 http.c:556 msgid "Error reading HTTP response body\n" msgstr "" #: http.c:542 msgid "Error fetching chunk header\n" msgstr "" #: http.c:566 msgid "Error fetching HTTP response body\n" msgstr "" #: http.c:569 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "" #: http.c:581 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "" #: http.c:708 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "" #: http.c:732 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "" #: http.c:760 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "" #: http.c:973 oncp.c:591 #, c-format msgid "Unexpected %d result from server\n" msgstr "" #: http.c:1021 msgid "request granted" msgstr "" #: http.c:1022 msgid "general failure" msgstr "" #: http.c:1023 msgid "connection not allowed by ruleset" msgstr "" #: http.c:1024 msgid "network unreachable" msgstr "" #: http.c:1025 msgid "host unreachable" msgstr "" #: http.c:1026 msgid "connection refused by destination host" msgstr "" #: http.c:1027 msgid "TTL expired" msgstr "" #: http.c:1028 msgid "command not supported / protocol error" msgstr "" #: http.c:1029 msgid "address type not supported" msgstr "" #: http.c:1039 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1047 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1062 http.c:1118 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" #: http.c:1070 http.c:1125 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" #: http.c:1077 http.c:1131 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" #: http.c:1083 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1087 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1143 http.c:1150 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1156 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1163 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1170 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1176 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "" #: http.c:1191 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" #: http.c:1199 http.c:1241 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "" #: http.c:1205 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "" #: http.c:1213 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "" #: http.c:1217 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "" #: http.c:1234 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "" #: http.c:1257 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "" #: http.c:1292 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "" #: http.c:1315 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1334 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "" #: http.c:1383 msgid "Only http or socks(5) proxies supported\n" msgstr "" #: library.c:112 msgid "Cisco AnyConnect or openconnect" msgstr "" #: library.c:113 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "" #: library.c:129 msgid "Juniper Network Connect" msgstr "" #: library.c:130 msgid "Compatible with Juniper Network Connect / Pulse Secure SSL VPN" msgstr "" #: library.c:148 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:149 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:211 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:233 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "" #: library.c:656 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "" #: library.c:662 msgid "Only https:// permitted for server URL\n" msgstr "" #: library.c:1056 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "" #: library.c:1085 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" #: library.c:1146 msgid "No form handler; cannot authenticate.\n" msgstr "" #: main.c:340 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:353 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:388 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:401 #, c-format msgid "fgetws() failed: %s\n" msgstr "" #: main.c:416 main.c:429 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:423 main.c:689 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Fallo de asignación para a cadea desde stdin\n" #: main.c:584 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:593 #, c-format msgid "Using OpenSSL. Features present:" msgstr "Ao usar OpenSSL. Existen estas características:" #: main.c:595 #, c-format msgid "Using GnuTLS. Features present:" msgstr "Ao usar GnuTLS. Existen estas características:" #: main.c:608 msgid "OpenSSL ENGINE not present" msgstr "MOTOR OpenSSL non presente" #: main.c:647 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" #: main.c:657 #, c-format msgid "Supported protocols:" msgstr "" #: main.c:659 main.c:675 msgid " (default)" msgstr "" #: main.c:672 msgid "Set VPN protocol" msgstr "" #: main.c:713 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:754 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:760 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:780 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "" #: main.c:793 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Uso: openconnect [opcións] \n" #: main.c:794 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" #: main.c:796 msgid "Read options from config file" msgstr "Ler opcións desde un ficheiro de configuración" #: main.c:797 msgid "Report version number" msgstr "Informar do número de versión" #: main.c:798 msgid "Display help text" msgstr "Mostrar o texto de axuda" #: main.c:802 msgid "Authentication" msgstr "" #: main.c:803 msgid "Set login username" msgstr "Estabelecer o nome de usuario de inicio de sesión" #: main.c:804 msgid "Disable password/SecurID authentication" msgstr "Desactivar a autenticación por contrasinal/SecurID" #: main.c:805 msgid "Do not expect user input; exit if it is required" msgstr "Non agardar entrada do usuario; saír se se require" #: main.c:806 msgid "Read password from standard input" msgstr "Ler contrasinal da entrada estándar" #: main.c:807 msgid "Choose authentication login selection" msgstr "Escoller selección da autenticación do inicio de sesión " #: main.c:808 msgid "Provide authentication form responses" msgstr "" #: main.c:809 msgid "Use SSL client certificate CERT" msgstr "Usar o certificado CERT do cliente SSL" #: main.c:810 msgid "Use SSL private key file KEY" msgstr "Usar ficheiro de chave privada SSL KEY" #: main.c:811 msgid "Warn when certificate lifetime < DAYS" msgstr "Avisar cando a vida do certificado < DÍAS" #: main.c:812 msgid "Set login usergroup" msgstr "Estabelecer o grupo de usuario de inicio de sesión" #: main.c:813 msgid "Set key passphrase or TPM SRK PIN" msgstr "Estabelecer a frase de paso da chave ou PIN do TPM SRK" #: main.c:814 msgid "Key passphrase is fsid of file system" msgstr "A frase de paso da chave é o fsid do sistema de ficheiros" #: main.c:815 msgid "Software token type: rsa, totp or hotp" msgstr "" #: main.c:816 msgid "Software token secret" msgstr "Token de software segredo" #: main.c:818 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "(NOTA: libtoken (RSA SecurID) desactivado para esta compilación)" #: main.c:821 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:824 msgid "Server validation" msgstr "" #: main.c:825 msgid "Server's certificate SHA1 fingerprint" msgstr "Pegada dixital SHA1 do certificado do servidor" #: main.c:826 msgid "Do not require server SSL cert to be valid" msgstr "Non requirir que o certificado SSL do servidor sexa válido" #: main.c:827 msgid "Disable default system certificate authorities" msgstr "" #: main.c:828 msgid "Cert file for server verification" msgstr "Ficheiro de certificado para a verificación do servidor" #: main.c:830 msgid "Internet connectivity" msgstr "" #: main.c:831 msgid "Set proxy server" msgstr "Estabelecer servidor proxy" #: main.c:832 msgid "Set proxy authentication methods" msgstr "" #: main.c:833 msgid "Disable proxy" msgstr "Desactivar proxy" #: main.c:834 msgid "Use libproxy to automatically configure proxy" msgstr "Usar libproxy para configurar automaticamente o proxy" #: main.c:836 msgid "(NOTE: libproxy disabled in this build)" msgstr "(NOTA: libproxy desactivado para esta compilación)" #: main.c:838 msgid "Connection retry timeout in seconds" msgstr "Tempo de espera do reintento de conexión en segundos" #: main.c:839 msgid "Use IP when connecting to HOST" msgstr "" #: main.c:840 msgid "copy TOS / TCLASS when using DTLS" msgstr "" #: main.c:841 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:843 msgid "Authentication (two-phase)" msgstr "" #: main.c:844 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:845 msgid "Read cookie from standard input" msgstr "Ler cookie desde a entrada estándar" #: main.c:846 msgid "Authenticate only and print login info" msgstr "Só autenticar e imprimir a información de inicio de sesión" #: main.c:847 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:848 msgid "Print cookie before connecting" msgstr "" #: main.c:851 msgid "Process control" msgstr "" #: main.c:852 msgid "Continue in background after startup" msgstr "Continuar en segundo plano despois do inicio" #: main.c:853 msgid "Write the daemon's PID to this file" msgstr "Escribir o PID do daemon neste ficheiro" #: main.c:854 msgid "Drop privileges after connecting" msgstr "Quitar privilexios despois de conectarse" #: main.c:857 msgid "Logging (two-phase)" msgstr "" #: main.c:859 msgid "Use syslog for progress messages" msgstr "Usar syslog para as mensaxes de progreso" #: main.c:861 msgid "More output" msgstr "Máis saída" #: main.c:862 msgid "Less output" msgstr "Menos saída" #: main.c:863 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "" #: main.c:864 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:866 msgid "VPN configuration script" msgstr "" #: main.c:867 msgid "Use IFNAME for tunnel interface" msgstr "Usar IFNAME para a interface de túnel" #: main.c:868 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" #: main.c:869 msgid "default" msgstr "predeterminado" #: main.c:871 msgid "Pass traffic to 'script' program, not tun" msgstr "Pasar o tráfico ao programa «script», non tun" #: main.c:874 msgid "Tunnel control" msgstr "" #: main.c:875 msgid "Do not ask for IPv6 connectivity" msgstr "Non preguntar pola conectividade de IPv6" #: main.c:876 msgid "XML config file" msgstr "Ficheiro de configuración XML" #: main.c:877 msgid "Request MTU from server (legacy servers only)" msgstr "" #: main.c:878 msgid "Indicate path MTU to/from server" msgstr "Indica a ruta MTU ao/desde o servidor" #: main.c:879 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:880 msgid "Disable all compression" msgstr "" #: main.c:881 msgid "Set minimum Dead Peer Detection interval" msgstr "" #: main.c:882 msgid "Require perfect forward secrecy" msgstr "" #: main.c:883 msgid "Disable DTLS and ESP" msgstr "" #: main.c:884 msgid "OpenSSL ciphers to support for DTLS" msgstr "" #: main.c:885 msgid "Set packet queue limit to LEN pkts" msgstr "" #: main.c:887 msgid "Local system information" msgstr "" #: main.c:888 msgid "HTTP header User-Agent: field" msgstr "Campo da cabeceira HTTP User-Agent:" #: main.c:889 msgid "Local hostname to advertise to server" msgstr "" #: main.c:890 msgid "OS type (linux,linux-64,win,...) to report" msgstr "" #: main.c:891 msgid "reported version string during authentication" msgstr "" #: main.c:892 msgid "default:" msgstr "" #: main.c:895 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:896 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:897 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:900 msgid "Server bugs" msgstr "" #: main.c:901 msgid "Disable HTTP connection re-use" msgstr "Desactivar a reutilización da conexión HTTP" #: main.c:902 msgid "Do not attempt XML POST authentication" msgstr "Non tentar a autenticación XML por POST" #: main.c:924 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:997 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "" "Produciuse un fallo ao obter a liña desde o ficheiro de configuración: %s\n" #: main.c:1037 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Opción non recoñecida na liña %d: «%s»\n" #: main.c:1047 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "A opción «%s» non recolle un argumento na liña %d\n" #: main.c:1051 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "A opción «%s» require un argumento na liña %d\n" #: main.c:1076 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "" #: main.c:1086 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "" #: main.c:1130 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "" #: main.c:1140 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:1147 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:1157 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Produciuse un fallo na asignación da estrutura vpninfo.\n" #: main.c:1215 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" "Non foi posíbel usar a opción «config» dendo do ficheiro de configuración\n" #: main.c:1223 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Non é posíbel abrir o ficheiro de configuración «%s»: %s\n" #: main.c:1239 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1260 #, c-format msgid "Missing colon in resolve option\n" msgstr "" #: main.c:1265 #, c-format msgid "Failed to allocate memory\n" msgstr "" #: main.c:1349 main.c:1358 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d demasiado pequeno\n" #: main.c:1388 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" #: main.c:1394 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" #: main.c:1411 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Non se permite a lonxitude cola cero; usando 1\n" #: main.c:1425 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect versión %s\n" #: main.c:1463 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Modo de token de software «%s» non válido\n" #: main.c:1473 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "Identidade do SO «%s» non válida\n" #: main.c:1506 #, c-format msgid "Too many arguments on command line\n" msgstr "Demasiados argumentos na liña de ordes\n" #: main.c:1509 #, c-format msgid "No server specified\n" msgstr "Non se especificou ningún servidor\n" #: main.c:1525 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" "Esta versión de openconnect foi compilada sen compatibilidade para libproxy\n" #: main.c:1555 #, c-format msgid "Error opening cmd pipe\n" msgstr "" #: main.c:1588 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "Produciuse un fallo ao obter a cookie de WebVPN\n" #: main.c:1609 #, c-format msgid "Creating SSL connection failed\n" msgstr "Produciuse un fallo na creación da conexión SSL\n" #: main.c:1625 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:1633 #, c-format msgid "Connected as %s%s%s, using SSL%s%s, with %s%s%s %s\n" msgstr "" #: main.c:1639 msgid "disabled" msgstr "" #: main.c:1639 msgid "in progress" msgstr "" #: main.c:1643 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "Non se forneceu ningún argumento --script; DNS o enrutado non están " "configurados\n" #: main.c:1645 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Vexa http://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:1658 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Produciuse un erro ao abrir «%s» para escritura: %s\n" #: main.c:1670 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Continuando en segundo plando; pid %d\n" #: main.c:1687 msgid "User requested reconnect\n" msgstr "" #: main.c:1695 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "" #: main.c:1699 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:1703 msgid "User cancelled (SIGINT/SIGTERM); exiting.\n" msgstr "" #: main.c:1707 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "" #: main.c:1711 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:1730 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Produciuse un erro ao abrir %s para escritura: %s\n" #: main.c:1738 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Produciuse un fallo ao escribir a configuración en %s: %s\n" #: main.c:1797 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "" #: main.c:1816 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Non foi posíbel verificar o certificado do servidor VPN «%s».\n" "Razón: %s\n" #: main.c:1819 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" #: main.c:1820 #, c-format msgid " --servercert %s\n" msgstr "" #: main.c:1825 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Escriba «%s» para aceptar, «%s» para abortar; calquera outra cousa para ver: " #: main.c:1826 main.c:1844 msgid "no" msgstr "non" #: main.c:1826 main.c:1832 msgid "yes" msgstr "si" #: main.c:1853 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:1887 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:1890 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Elección de autenticación «%s» non dispoñíbel\n" #: main.c:1911 msgid "User input required in non-interactive mode\n" msgstr "Entrada de usuario requirida no modo non-interactivo\n" #: main.c:2149 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:2157 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:2203 main.c:2224 #, c-format msgid "Soft token string is invalid\n" msgstr "A cadea do token de software non é válida\n" #: main.c:2206 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Non é posíbel abrir o ficheiro ~/.stokenrc\n" #: main.c:2209 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "OpenConnect non foi construido con compatibilidade de libstoken\n" #: main.c:2212 #, c-format msgid "General failure in libstoken\n" msgstr "Fallo xeran en libstoken\n" #: main.c:2227 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "OpenConnect non foi construido con compatibilidade de liboath\n" #: main.c:2230 #, c-format msgid "General failure in liboath\n" msgstr "Fallo xeran en liboath\n" #: main.c:2241 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2244 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2247 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: mainloop.c:127 #, c-format msgid "Set up tun script failed\n" msgstr "" #: mainloop.c:134 #, c-format msgid "Set up tun device failed\n" msgstr "Produciuse un fallo na configuración do dispositivo tun\n" #: mainloop.c:265 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:273 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "" #: mainloop.c:294 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:978 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:982 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:565 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:160 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:166 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:175 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:186 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:201 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:210 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:219 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:232 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:254 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:274 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:297 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:316 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:327 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:335 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:342 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:350 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:358 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:366 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:374 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:383 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:395 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:473 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:490 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:496 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:512 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:577 oncp.c:609 oncp.c:747 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:618 oncp.c:783 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:631 oncp.c:666 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:636 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:643 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:670 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:683 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:692 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "" #: oncp.c:698 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "" #: oncp.c:705 msgid "Failed to read continuation record length\n" msgstr "" #: oncp.c:711 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "" #: oncp.c:720 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "" #: oncp.c:726 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "" #: oncp.c:767 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:776 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:829 msgid "new incoming" msgstr "" #: oncp.c:830 msgid "new outgoing" msgstr "" #: oncp.c:855 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:864 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:868 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:874 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:969 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:972 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:991 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1053 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1058 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1073 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1134 msgid "Sent ESP enable control packet\n" msgstr "" #: oncp.c:1268 msgid "Logout successful.\n" msgstr "" #: openconnect-internal.h:1119 openconnect-internal.h:1127 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "" #: openssl-dtls.c:365 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Produciuse un fallo ao inicializar DTLSv1 CTX\n" #: openssl-dtls.c:378 msgid "Set DTLS CTX version failed\n" msgstr "" #: openssl-dtls.c:395 msgid "Failed to generate DTLS key\n" msgstr "" #: openssl-dtls.c:413 msgid "Set DTLS cipher list failed\n" msgstr "" #: openssl-dtls.c:439 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:460 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: openssl-dtls.c:493 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:566 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "" #: openssl-dtls.c:603 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" #: openssl-dtls.c:654 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" #: openssl-dtls.c:661 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "" #: openssl-esp.c:87 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:101 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:157 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:202 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:210 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:241 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:43 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:49 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "" #: openssl-pkcs11.c:269 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:272 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:275 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:279 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:286 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:300 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:306 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:342 openssl-pkcs11.c:565 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:349 openssl-pkcs11.c:575 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:383 openssl-pkcs11.c:617 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:393 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "" #: openssl-pkcs11.c:401 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:412 openssl.c:713 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl-pkcs11.c:458 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:464 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:497 msgid "Certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:503 openssl-pkcs11.c:526 msgid "Certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:506 msgid "Checking EC key matches cert\n" msgstr "" #: openssl-pkcs11.c:510 msgid "Failed to allocate signature buffer\n" msgstr "" #: openssl-pkcs11.c:520 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" #: openssl-pkcs11.c:638 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "" #: openssl-pkcs11.c:649 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:678 msgid "Add key from PKCS#11 failed\n" msgstr "" #: openssl-pkcs11.c:710 openssl-pkcs11.c:716 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:147 msgid "Failed to write to SSL socket\n" msgstr "" #: openssl.c:197 openssl.c:263 msgid "Failed to read from SSL socket\n" msgstr "" #: openssl.c:292 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" #: openssl.c:317 #, c-format msgid "SSL_write failed: %d\n" msgstr "" #: openssl.c:389 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:465 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "" #: openssl.c:498 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "" #: openssl.c:548 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:563 msgid "PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:572 msgid "PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:577 msgid "PKCS#12" msgstr "" #: openssl.c:600 msgid "Can't load TPM engine.\n" msgstr "" #: openssl.c:606 msgid "Failed to init TPM engine\n" msgstr "" #: openssl.c:616 msgid "Failed to set TPM SRK password\n" msgstr "" #: openssl.c:630 msgid "Failed to load TPM private key\n" msgstr "" #: openssl.c:636 msgid "Add key from TPM failed\n" msgstr "" #: openssl.c:687 openssl.c:835 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "" #: openssl.c:697 msgid "Loading certificate failed\n" msgstr "" #: openssl.c:735 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:748 msgid "PEM file" msgstr "" #: openssl.c:777 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "" #: openssl.c:802 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:808 msgid "Loading private key failed (see above errors)\n" msgstr "" #: openssl.c:858 msgid "Failed to load X509 certificate from keystore\n" msgstr "" #: openssl.c:864 msgid "Failed to use X509 certificate from keystore\n" msgstr "" #: openssl.c:896 msgid "Failed to use private key from keystore\n" msgstr "" #: openssl.c:912 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "" #: openssl.c:936 openssl.c:951 openssl.c:972 openssl.c:1038 msgid "Loading private key failed\n" msgstr "" #: openssl.c:1032 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1049 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "" #: openssl.c:1203 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "" #: openssl.c:1210 #, c-format msgid "No match for altname '%s'\n" msgstr "" #: openssl.c:1224 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" #: openssl.c:1235 openssl.c:1381 #, c-format msgid "Matched %s address '%s'\n" msgstr "" #: openssl.c:1242 #, c-format msgid "No match for %s address '%s'\n" msgstr "" #: openssl.c:1284 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "" #: openssl.c:1289 #, c-format msgid "Matched URI '%s'\n" msgstr "" #: openssl.c:1300 #, c-format msgid "No match for URI '%s'\n" msgstr "" #: openssl.c:1315 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" #: openssl.c:1323 msgid "No subject name in peer cert!\n" msgstr "" #: openssl.c:1343 msgid "Failed to parse subject name in peer cert\n" msgstr "" #: openssl.c:1350 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "" #: openssl.c:1355 openssl.c:1389 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "" #: openssl.c:1451 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "" #: openssl.c:1589 msgid "Error in client cert notAfter field\n" msgstr "" #: openssl.c:1602 msgid "" msgstr "" #: openssl.c:1655 msgid "Create TLSv1 CTX failed\n" msgstr "" #: openssl.c:1674 msgid "SSL certificate and key do not match\n" msgstr "" #: openssl.c:1719 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "" #: openssl.c:1752 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "" #: openssl.c:1812 msgid "SSL connection failure\n" msgstr "" #: openssl.c:1973 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:130 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "" #: script.c:134 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "" #: script.c:507 script.c:555 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "" #: script.c:562 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "" #: script.c:570 #, c-format msgid "Script '%s' returned error %d\n" msgstr "" #: ssl.c:108 msgid "Socket connect cancelled\n" msgstr "" #: ssl.c:217 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "" #: ssl.c:221 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "" #: ssl.c:289 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "" #: ssl.c:317 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "" #: ssl.c:326 ssl.c:451 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:341 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "" #: ssl.c:342 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "" #: ssl.c:362 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "" #: ssl.c:374 msgid "Failed to allocate sockaddr storage\n" msgstr "" #: ssl.c:416 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "" #: ssl.c:434 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:446 #, c-format msgid "Failed to connect to host %s\n" msgstr "" #: ssl.c:465 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:536 #, c-format msgid "statvfs: %s\n" msgstr "" #: ssl.c:564 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:575 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:603 #, c-format msgid "statfs: %s\n" msgstr "" #: ssl.c:694 msgid "No error" msgstr "" #: ssl.c:695 msgid "Keystore locked" msgstr "" #: ssl.c:696 msgid "Keystore uninitialized" msgstr "" #: ssl.c:697 msgid "System error" msgstr "" #: ssl.c:698 msgid "Protocol error" msgstr "" #: ssl.c:699 msgid "Permission denied" msgstr "" #: ssl.c:700 msgid "Key not found" msgstr "" #: ssl.c:701 msgid "Value corrupted" msgstr "" #: ssl.c:702 msgid "Undefined action" msgstr "" #: ssl.c:706 msgid "Wrong password" msgstr "" #: ssl.c:707 msgid "Unknown error" msgstr "" #: ssl.c:896 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:931 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:950 msgid "Open UDP socket" msgstr "" #: ssl.c:981 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:989 msgid "Bind UDP socket" msgstr "" #: ssl.c:996 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:1034 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:1038 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "" #: stoken.c:82 msgid "Device ID:" msgstr "" #: stoken.c:89 msgid "Password:" msgstr "" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "" #: stoken.c:185 msgid "Enter software token PIN." msgstr "" #: stoken.c:189 msgid "PIN:" msgstr "" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "" #: tun-win32.c:76 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:139 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "" #: tun-win32.c:154 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" #: tun-win32.c:186 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" #: tun-win32.c:200 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "" #: tun-win32.c:231 #, c-format msgid "Failed to open %s\n" msgstr "" #: tun-win32.c:236 #, c-format msgid "Opened tun device %s\n" msgstr "" #: tun-win32.c:244 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:250 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:271 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:283 tun-win32.c:406 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:316 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:321 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:335 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:358 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:368 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:371 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:423 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "" #: tun.c:92 msgid "Can't push IP" msgstr "" #: tun.c:102 msgid "Can't set ifname" msgstr "" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "" #: tun.c:139 msgid "open /dev/tun" msgstr "" #: tun.c:145 msgid "Failed to create new tun" msgstr "" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "" #: tun.c:205 msgid "open net" msgstr "" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "" #: tun.c:479 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:484 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:488 msgid "setpgid" msgstr "" #: tun.c:493 msgid "execl" msgstr "" #: tun.c:498 msgid "(script)" msgstr "" #: tun.c:566 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Tratando equipo «%s» como un nome de equipo en bruto\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Produciuse un fallo ao xerar o SHA1 do ficheiro existente\n" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "SHA1 do ficheiro de configuración XML: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Produciuse un erro ao analizar o ficheiro de configuración XML %s\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "O equipo «%s» ten o enderezo «%s»\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "O equipo «%s» ten o UserGroup «%s»\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "O equipo «%s» non está na lista de config; tratándoo como un nome de equipo " "en plano\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:174 msgid "select applet command" msgstr "" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:274 msgid "unlock command" msgstr "" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:412 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:619 msgid "calculate command" msgstr "" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-8.05/po/sv.po0000664000076400007640000036613413470043037017161 0ustar00dwoodhoudwoodhou00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2019-05-18 10:44-0700\n" "PO-Revision-Date: 2011-09-22 22:31+0000\n" "Last-Translator: FULL NAME \n" "Language-Team: Swedish (http://www.transifex.net/projects/p/meego/team/sv/)\n" "Language: sv\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1)\n" #: auth-globalprotect.c:108 #, c-format msgid "" "SAML login is required via %s to this URL:\n" "\t%s" msgstr "" #: auth-globalprotect.c:110 msgid "Please enter your username and password" msgstr "" #: auth-globalprotect.c:119 msgid "Username" msgstr "" #: auth-globalprotect.c:134 msgid "Password" msgstr "" #: auth-globalprotect.c:181 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:260 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:266 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:272 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:315 msgid "Please select GlobalProtect gateway." msgstr "" #: auth-globalprotect.c:325 msgid "GATEWAY:" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:379 #, c-format msgid "%d gateway servers available:\n" msgstr "" #: auth-globalprotect.c:400 #, c-format msgid " %s (%s)\n" msgstr "" #: auth-globalprotect.c:484 auth-juniper.c:730 auth.c:669 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "Misslyckades med att generera OTP-tokenkod; inaktiverar token\n" #: auth-globalprotect.c:584 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" #: auth-globalprotect.c:636 oncp.c:1266 msgid "Logout failed.\n" msgstr "Misslyckades med utloggning.\n" #: auth-globalprotect.c:638 msgid "Logout successful\n" msgstr "" #: auth-juniper.c:142 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "Ignorerar okänd formskickat objekt: ”%s\n" #: auth-juniper.c:153 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "Ignorerar okänd forminmatningstyp: ”%s”\n" #: auth-juniper.c:163 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "Förkasta dupliceringsalternativet ”%s”\n" #: auth-juniper.c:236 auth.c:408 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Kan inte hantera formulärmetod=”%s”, åtgärd=”%s”\n" #: auth-juniper.c:267 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "Okänt textområdesfält: ”%s”\n" #: auth-juniper.c:337 msgid "TNCC support not implemented yet on Windows\n" msgstr "TNCC-stöd är ännu inte implementerat på Windows\n" #: auth-juniper.c:359 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "Ingen DSPREAUTH-kaka, provar ej TNCC\n" #: auth-juniper.c:397 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "Misslyckades med att köra TNCC-skriptet %s: %s\n" #: auth-juniper.c:411 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "Misslyckades med att allokera minne för kommunikation med TNCC\n" #: auth-juniper.c:418 msgid "Failed to send start command to TNCC\n" msgstr "Misslyckades med att skicka kommando till TNCC\n" #: auth-juniper.c:425 msgid "Sent start; waiting for response from TNCC\n" msgstr "Skickade start, väntar på svar från TNCC\n" #: auth-juniper.c:432 msgid "Failed to read response from TNCC\n" msgstr "Misslyckades med att läsa svar från TNCC\n" #: auth-juniper.c:439 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "Mottog ogiltigt %s-svar från TNCC\n" #: auth-juniper.c:445 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:452 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "Erhöll ny DSPREAUTH-kaka från TNCC: %s\n" #: auth-juniper.c:474 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:481 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:650 msgid "Failed to parse HTML document\n" msgstr "Misslyckades med att tolka HTML-dokument\n" #: auth-juniper.c:667 msgid "Failed to find or parse web form in login page\n" msgstr "Misslyckades med hitta eller tolka webbformulär på inloggningssidan\n" #: auth-juniper.c:675 msgid "Encountered form with no ID\n" msgstr "Påträffade en form utan ID\n" #: auth-juniper.c:713 #, c-format msgid "Unknown form ID '%s'\n" msgstr "Okänt formulär-ID ”%s”\n" #: auth-juniper.c:716 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "Dumpar okänt HTML-formulär:\n" #: auth.c:96 msgid "Form choice has no name\n" msgstr "Formulärvalet har inget namn\n" #: auth.c:181 #, c-format msgid "name %s not input\n" msgstr "namnet %s angavs inte\n" #: auth.c:188 msgid "No input type in form\n" msgstr "Ingen inmatningstyp i formuläret\n" #: auth.c:200 msgid "No input name in form\n" msgstr "Inget inmatningsnamn i formuläret\n" #: auth.c:230 #, c-format msgid "Unknown input type %s in form\n" msgstr "Okänd inmatningstyp %s i formuläret\n" #: auth.c:540 gpst.c:214 msgid "Empty response from server\n" msgstr "Tomt svar från server\n" #: auth.c:551 gpst.c:289 msgid "Failed to parse server response\n" msgstr "Misslyckades med att tolka serversvar\n" #: auth.c:553 gpst.c:291 #, c-format msgid "Response was:%s\n" msgstr "Svaret var:%s\n" #: auth.c:575 msgid "Received when not expected.\n" msgstr "Tog emot när det inte förväntades.\n" #: auth.c:603 msgid "XML response has no \"auth\" node\n" msgstr "XML-svaret har ingen ”auth”-nod\n" #: auth.c:636 msgid "Asked for password but '--no-passwd' set\n" msgstr "Frågade efter lösenord men ”--no-passwd” var angivet\n" #: auth.c:925 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "Hämtar inte XML-profil eftersom SHA1 redan matchar\n" #: auth.c:931 cstp.c:335 http.c:916 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Misslyckades med att öppna HTTPS-anslutningen till %s\n" #: auth.c:952 msgid "Failed to send GET request for new config\n" msgstr "Misslyckades med att skicka GET-begäran för ny anslutning\n" #: auth.c:976 msgid "Downloaded config file did not match intended SHA1\n" msgstr "Hämtad konfigurationsfil matchar ej SHA1\n" #: auth.c:981 msgid "Downloaded new XML profile\n" msgstr "Hämtade ny XML-profil\n" #: auth.c:992 auth.c:1044 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" "Fel: Att köra trojanen ”Cisco Secure Desktop” på denna plattform stöds ej.\n" #: auth.c:1003 mainloop.c:144 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "Misslyckades med att sätta gid %ld: %s\n" #: auth.c:1010 mainloop.c:151 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "Misslyckades med att sätta grupper till %ld: %s\n" #: auth.c:1017 mainloop.c:158 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "Misslyckades med att sätta uid %ld: %s\n" #: auth.c:1024 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "Ogiltig användare uid=%ld: %s\n" #: auth.c:1031 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Misslyckades med att ändra till CSD-hemkatalogen ”%s”: %s\n" #: auth.c:1053 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Fel: Server bad oss att köra CSD hostscan. Du måste ange ett passande --csd-" "wrapper-argument.\n" #: auth.c:1060 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Fel: Server bad oss att hämta hem och köra ”Cisco Secure Desktop”. Denna " "möjlighet är inaktiverad som standard, du kan vilja aktivera den.\n" #: auth.c:1067 msgid "Trying to run Linux CSD trojan script.\n" msgstr "Försöker att köra Linux CSD-trojanskript.\n" #: auth.c:1094 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "Tillfälliga katalogen ”%s” är inte skrivbar: %s\n" #: auth.c:1102 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Misslyckades med att öppna tillfälliga CSD-skriptfilen: %s\n" #: auth.c:1111 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Misslyckades med att skriva tillfälliga CSD-skriptfilen: %s\n" #: auth.c:1141 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Varning: du kör osäker CSD-kod med root-rättigheter\n" "\t Använd kommandoradsalternativet ”--csd-user”\n" #: auth.c:1189 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Misslyckades med att köra CSD-skriptet %s\n" #: auth.c:1221 msgid "Unknown response from server\n" msgstr "Okänt svar från server\n" #: auth.c:1342 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" "Server begärde SSL-klientcertifikat efter att ett redan tillhandahållits\n" #: auth.c:1346 msgid "Server requested SSL client certificate; none was configured\n" msgstr "Server begärde SSL-klientcertifikat, inget var konfigurerat\n" #: auth.c:1362 msgid "XML POST enabled\n" msgstr "XML POST aktiverat\n" #: auth.c:1405 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Uppdaterar %s efter 1 sekund…\n" #: compat.c:207 #, c-format msgid "(error 0x%lx)" msgstr "(fel 0x%lx)" #: compat.c:210 msgid "(Error while describing error!)" msgstr "(Fel vid beskrivning av fel!)" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "FEL: Kan inte initiera uttag (sockets)\n" #: cstp.c:112 gpst.c:341 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:134 gpst.c:360 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:281 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "KRITISKT FEL: DTLS-huvudhemlighet är ej initierad. Rapportera detta.\n" #: cstp.c:312 msgid "Error creating HTTPS CONNECT request\n" msgstr "Fel vid skapandet av HTTP CONNECT-begäran\n" #: cstp.c:328 http.c:384 msgid "Error fetching HTTPS response\n" msgstr "Fel vid hämtning av HTTPS-svar\n" #: cstp.c:355 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "VPN-tjänst otillgänglig, orsak: %s\n" #: cstp.c:360 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Tog emot opassande HTTP CONNECT-svar: %s\n" #: cstp.c:367 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Tog emot CONNECT-svar: %s\n" #: cstp.c:396 cstp.c:404 msgid "No memory for options\n" msgstr "Inget minne för alternativ\n" #: cstp.c:413 http.c:444 msgid "" msgstr "" #: cstp.c:433 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Session-ID är inte 64 tecken, är: ”%s”\n" #: cstp.c:450 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "X-DTLS-Session-ID är ogiltigt, är: ”%s”\n" #: cstp.c:468 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "Okänd DTLS-Content-Encoding %s\n" #: cstp.c:510 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Okänd CSTP-Content-Encoding %s\n" #: cstp.c:585 msgid "No MTU received. Aborting\n" msgstr "Ingen MTU mottagen. Avbryter\n" #: cstp.c:593 gpst.c:641 msgid "No IP address received. Aborting\n" msgstr "Ingen IP-adress mottagen. Avbryter\n" #: cstp.c:599 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "IPv6-konfiguration mottagen men MTU %d är för liten.\n" #: cstp.c:605 gpst.c:648 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Återanslutning gav en annan föråldrad IP-adress (%s != %s)\n" #: cstp.c:614 gpst.c:657 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "Återanslutning gav en annan föråldrad IP-nätmask (%s != %s)\n" #: cstp.c:622 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Återanslutning gav en annan föråldrad IPv6-adress (%s != %s)\n" #: cstp.c:630 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Återanslutning gav en annan IPv6-nätmask (%s != %s)\n" #: cstp.c:638 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CTSP ansluten. DPD %d, Keepalive %d\n" #: cstp.c:640 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "CSTP Ciphersuite: %s\n" #: cstp.c:702 msgid "Compression setup failed\n" msgstr "Komprimeringsstart misslyckades\n" #: cstp.c:719 msgid "Allocation of deflate buffer failed\n" msgstr "Allokering av komprimeringsbuffert misslyckades\n" #: cstp.c:781 msgid "inflate failed\n" msgstr "dekomprimering misslyckades\n" #: cstp.c:804 #, c-format msgid "LZS decompression failed: %s\n" msgstr "LZS-dekomprimering misslyckades: %s\n" #: cstp.c:817 msgid "LZ4 decompression failed\n" msgstr "LZ4-dekomprimering misslyckades\n" #: cstp.c:824 #, c-format msgid "Unknown compression type %d\n" msgstr "Okänd komprimeringstyp %d\n" #: cstp.c:829 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "Tog emot %s komprimerade datapaket av %d byte (var %d)\n" #: cstp.c:849 #, c-format msgid "deflate failed %d\n" msgstr "dekomprimering misslyckades %d\n" #: cstp.c:922 dtls.c:281 dtls.c:740 esp.c:129 gpst.c:1042 mainloop.c:69 #: oncp.c:914 msgid "Allocation failed\n" msgstr "Allokering misslyckades\n" #: cstp.c:933 gpst.c:1055 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "Kort paket mottogs (%d bytes)\n" #: cstp.c:946 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Oväntad paketlängd. SSL_read returnerade %d men paket är\n" #: cstp.c:960 msgid "Got CSTP DPD request\n" msgstr "Mottog emot CSTP DPD-begäran\n" #: cstp.c:966 msgid "Got CSTP DPD response\n" msgstr "Mottog CSTP DPD-svar\n" #: cstp.c:971 msgid "Got CSTP Keepalive\n" msgstr "Mottog CSTP Keepalive\n" #: cstp.c:976 oncp.c:1003 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Mottog dekomprimerade datapaket av %d byte\n" #: cstp.c:993 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Mottog serverfrånkoppling: %02x '%s'\n" #: cstp.c:996 msgid "Received server disconnect\n" msgstr "Mottog serverfrånkoppling\n" #: cstp.c:1004 msgid "Compressed packet received in !deflate mode\n" msgstr "Komprimerade paket mottogs i !komprimerat läge\n" #: cstp.c:1013 msgid "received server terminate packet\n" msgstr "mottog paket serveravslut\n" #: cstp.c:1020 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Okänt paket %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1063 gpst.c:1142 oncp.c:1121 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL skrev för få byte! Frågade efter %d, skickade %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1091 oncp.c:1155 msgid "CSTP rekey due\n" msgstr "CTSP rekey due\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1098 oncp.c:1162 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Återhandskakning misslyckades; provar ny tunnel\n" #: cstp.c:1109 oncp.c:1173 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "CSTP Dead Peer Detection upptäckte en död motpart!\n" #: cstp.c:1113 gpst.c:1166 oncp.c:1091 oncp.c:1177 msgid "Reconnect failed\n" msgstr "Återanslutning misslyckades\n" #: cstp.c:1129 oncp.c:1193 msgid "Send CSTP DPD\n" msgstr "Skicka CSTP DPD\n" #: cstp.c:1141 oncp.c:1204 msgid "Send CSTP Keepalive\n" msgstr "Skicka CSTP Keepalive\n" #: cstp.c:1166 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "Skickar komprimerade datapaket för %d byte (var %d)\n" #: cstp.c:1177 oncp.c:1238 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Skickar okomprimerade datapaket på %d byte\n" #: cstp.c:1216 #, c-format msgid "Send BYE packet: %s\n" msgstr "Skickar BYE-paket: %s\n" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "Försöker med Digest-autentisering till proxy\n" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "Försöker med Digest-autentisering till servern ”%s”\n" #: dtls.c:113 msgid "DTLS connection attempted with an existing fd\n" msgstr "Försökte DTLS-ansluta med existerande fd\n" #: dtls.c:119 msgid "No DTLS address\n" msgstr "Ingen DTLS-adress\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:126 msgid "Server offered no DTLS cipher option\n" msgstr "Server erbjöd inget DTLS-chifferalternativ\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:133 msgid "No DTLS when connected via proxy\n" msgstr "Ingen DTLS när ansluten via proxy\n" #: dtls.c:200 #, c-format msgid "DTLS option %s : %s\n" msgstr "DTLS-alternativ %s : %s\n" #: dtls.c:239 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS initierad. DPD %d, Keepalive %d\n" #: dtls.c:265 msgid "Attempt new DTLS connection\n" msgstr "Försöker med ny DTLS-anslutning\n" #: dtls.c:292 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Hämtade DTLS-paket 0x%02x av %d byte\n" #: dtls.c:306 msgid "Got DTLS DPD request\n" msgstr "Mottog DTLS DPD-begäran\n" #: dtls.c:312 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Misslyckades med att skicka DPD-svar. Förvänta frånkoppling\n" #: dtls.c:316 msgid "Got DTLS DPD response\n" msgstr "Mottog DTLS DPD-svar\n" #: dtls.c:320 msgid "Got DTLS Keepalive\n" msgstr "Mottog DTLS Keepalive\n" #: dtls.c:326 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "Komprimerade DTLS-paket mottaget när komprimering inte var aktiverat\n" #: dtls.c:334 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Okänt DTLS-pakettyp %02x, län %d\n" #: dtls.c:356 msgid "DTLS rekey due\n" msgstr "DTLS rekey due\n" #: dtls.c:363 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "DTLS-återhandskakning misslyckades, återansluter.\n" #: dtls.c:372 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "DTLS Dead Peer Detection upptäckte en död motpart!\n" #: dtls.c:378 msgid "Send DTLS DPD\n" msgstr "Skicka DTLS DPD\n" #: dtls.c:383 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Misslyckades med att skicka DPD-begäran. Förvänta frånkoppling\n" #: dtls.c:396 msgid "Send DTLS Keepalive\n" msgstr "Skicka DTLS Keepalive\n" #: dtls.c:401 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Misslyckades med att skicka keepalive-begäran. Förvänta frånkoppling\n" #: dtls.c:432 tun.c:541 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Okänt paket (län %d) mottog: %02x %02x %02x %02x…\n" #: dtls.c:439 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "TOS här: %d, TOS senaste: %d\n" #: dtls.c:443 msgid "UDP setsockopt" msgstr "UDP setsockopt" #: dtls.c:474 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "DTLS fick skrivfel %d. Faller tillbaka till SSL\n" #: dtls.c:488 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "DTLS fick skrivfel %s. Faller tillbaka till SSL\n" #: dtls.c:503 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "Skickade DTLS-paket på %d byte, DTLS send returnerade %d\n" #: dtls.c:531 #, c-format msgid "Initiating IPv4 MTU detection (min=%d, max=%d)\n" msgstr "Initierar MTU-upptäckt för IPv4 (min=%d, max=%d)\n" #: dtls.c:551 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "För lång tid i MTU-identifieringsslinga; antar överenskommen MTU.\n" #: dtls.c:555 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "För lång tid i MTU-identifieringsslinga; MTU angivet till %d.\n" #: dtls.c:564 #, c-format msgid "Sending MTU DPD probe (%u bytes, min=%u, max=%u)\n" msgstr "Skickar MTU DPD-avsökning (%u byte, min=%u, max=%u)\n" #: dtls.c:568 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "Misslyckades med att skicka DPD-begäran (%d %d)\n" #: dtls.c:582 dtls.c:690 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "Mottog oväntat paket (%.2x) i MTU-upptäckt; hoppar över.\n" #: dtls.c:594 #, c-format msgid "Timeout while waiting for DPD response; trying %d\n" msgstr "Tidsgräns för att vänta på DPD-svar överskreds; provar %d\n" #: dtls.c:601 dtls.c:682 msgid "Timeout while waiting for DPD response; resending probe.\n" msgstr "" "Tidsgräns för att vänta på DPD-svar överskreds; återsänder avsökning.\n" #: dtls.c:608 dtls.c:709 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "Misslyckades med att ta emot DPD-begäran (%d)\n" #: dtls.c:613 #, c-format msgid "Received MTU DPD probe (%u bytes of %u)\n" msgstr "Mottog MTU DPD-avsökning (%u byte av %u)\n" #: dtls.c:651 msgid "Initiating IPv6 MTU detection\n" msgstr "Initierar MTU-upptäckt för IPv6\n" #: dtls.c:666 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "Skickar MTU DPD-avsökning (%u byte)\n" #: dtls.c:670 #, c-format msgid "Failed to send DPD request (%d)\n" msgstr "Misslyckades med att skicka DPD-begäran (%d)\n" #: dtls.c:695 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "Mottog MTU DPD-avsökning (%u byte)\n" #: dtls.c:759 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "Upptäckte MTU på %d byte (var %d)\n" #: dtls.c:762 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "Ingen ändring i MTU efter upptäckt (var %d)\n" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "Accepterar förväntat ESP-paket med seq %u\n" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" "Accepterar senare-än-väntat ESP-paket med seq %u (förväntade %)\n" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "Förkastar föråldrat ESP-paket med seq %u (förväntade %)\n" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "Förkastar återuppspelat ESP-paket med seq %u\n" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "Accepterar ESP-paket i oordning med seq %u (förväntade %)\n" #: esp.c:63 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "Parametrar för %s ESP: SPI 0x%08x\n" #: esp.c:66 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "ESP krypteringstyp %s key 0x%s\n" #: esp.c:69 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "ESP autentiseringstyp %s key 0x%s\n" #: esp.c:87 msgid "incoming" msgstr "inkommande" #: esp.c:88 msgid "outgoing" msgstr "utgående" #: esp.c:90 esp.c:113 msgid "Send ESP probes\n" msgstr "Skickade ESP-probes\n" #: esp.c:138 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "Mottog ESP-paket på %d byte\n" #: esp.c:155 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:161 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "Mottog ESP-paket med ogiltig SPI 0x%08x\n" #: esp.c:174 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "Mottog ESP-paket med okänd payload-typ %02x\n" #: esp.c:181 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "Ogiltig utfyllnadslängd %02x i ESP\n" #: esp.c:193 msgid "Invalid padding bytes in ESP\n" msgstr "Ogiltig utfyllnadsbyte i ESP\n" #: esp.c:202 msgid "ESP session established with server\n" msgstr "ESP-session etablerad med server\n" #: esp.c:213 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "Misslyckades med att allokera minne för att dekryptera ESP-paket\n" #: esp.c:219 msgid "LZO decompression of ESP packet failed\n" msgstr "LZ4-dekomprimering av ESP-paket misslyckades\n" #: esp.c:225 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "LZO-dekomprimerade %d byte till %d\n" #: esp.c:239 msgid "Rekey not implemented for ESP\n" msgstr "Rekey inte implementerad än för ESP\n" #: esp.c:243 msgid "ESP detected dead peer\n" msgstr "ESP upptäckte en död motpart!\n" #: esp.c:251 msgid "Send ESP probes for DPD\n" msgstr "Skicka ESP-probe för DPD\n" #: esp.c:258 msgid "Keepalive not implemented for ESP\n" msgstr "Keepalive inte implementerad än för ESP\n" #: esp.c:278 #, c-format msgid "Failed to encrypt ESP packet: %d\n" msgstr "" #: esp.c:294 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:301 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "Misslyckades med att skicka ESP-paket: %s\n" #: esp.c:307 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "Skickade ESP-paket på %d byte\n" #: gnutls-dtls.c:190 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "" #: gnutls-dtls.c:198 msgid "Failed to generate DTLS priority string\n" msgstr "Misslyckades med att generera DTLS-prioritetssträng\n" #: gnutls-dtls.c:207 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "Misslyckades med att initiera DTLS: %s\n" #: gnutls-dtls.c:216 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "Misslyckades med att sätta DTLS-prioritet: ”%s”: %s\n" #: gnutls-dtls.c:240 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "Misslyckades med att allokera användaruppgifter: %s\n" #: gnutls-dtls.c:253 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "Misslyckades med att generera DTLS-nyckel: %s\n" #: gnutls-dtls.c:267 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "Misslyckades att sätta DTLS-nyckel: %s\n" #: gnutls-dtls.c:275 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "Misslyckades med att sätta DTLS PSK-användaruppgifter: %s\n" #: gnutls-dtls.c:309 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Okända DTLS-parametrar för begärd Ciphersuite ”%s”\n" #: gnutls-dtls.c:324 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "Misslyckades med att sätta DTLS-prioritet: %s\n" #: gnutls-dtls.c:345 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Misslyckades att sätta DTLS-sessionsparametrar: %s\n" #: gnutls-dtls.c:373 openssl-dtls.c:534 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "Motparts MTU %d för liten för att tillåta DTLS\n" #: gnutls-dtls.c:382 openssl-dtls.c:545 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "DTLS MTU reducerat till %d\n" #: gnutls-dtls.c:392 openssl-dtls.c:554 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" "Misslyckades med att återuppta DTLS-session; möjlig MITM-attack. Inaktiverar " "DTLS.\n" #: gnutls-dtls.c:405 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Misslyckades att sätta DTLS MTU: %s\n" #: gnutls-dtls.c:416 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "Etablerade DTLS-anslutning (använder GnuTLS). Ciphersuite %s.\n" #: gnutls-dtls.c:422 openssl-dtls.c:572 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "DTLS-anslutningskomprimering med %s.\n" #: gnutls-dtls.c:437 openssl-dtls.c:653 openssl-dtls.c:657 msgid "DTLS handshake timed out\n" msgstr "DTLS-handskakning överskred tidsgränsen\n" #: gnutls-dtls.c:440 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "DTLS-handskakning misslyckades: %s\n" #: gnutls-dtls.c:444 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(Hindrar en brandvägg dig från att skicka UDP-paket?)\n" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "Misslyckades med att initiera ESP-chiffer: %s\n" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "Misslyckades med att initiera ESP HMAC: %s\n" #: gnutls-esp.c:121 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "Misslyckades med att generera slumpmässiga nycklar för ESP: %s\n" #: gnutls-esp.c:132 msgid "Failed to generate ESP IV\n" msgstr "" #: gnutls-esp.c:161 gnutls-esp.c:217 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "Misslyckades med att beräkna HMAC för ESP-paket: %s\n" #: gnutls-esp.c:168 openssl-esp.c:192 msgid "Received ESP packet with invalid HMAC\n" msgstr "Mottog ESP-paket med ogiltig HMAC\n" #: gnutls-esp.c:180 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "Dekryptering av ESP-paket misslyckades: %s\n" #: gnutls-esp.c:209 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "Misslyckades med att kryptera ESP-paket: %s\n" #: gnutls.c:95 openssl.c:154 msgid "SSL write cancelled\n" msgstr "SSL-skrivning avbruten\n" #: gnutls.c:99 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "Misslyckades med att skriva till SSL-uttag (socket): %s\n" #: gnutls.c:145 gnutls.c:237 openssl.c:204 openssl.c:271 msgid "SSL read cancelled\n" msgstr "SSL-läsning avbruten\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:158 msgid "SSL socket closed uncleanly\n" msgstr "SSL-uttag (socket) stängde orent\n" #: gnutls.c:168 gnutls.c:246 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "Misslyckades med att läsa från SSL-uttag (socket): %s\n" #: gnutls.c:266 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "SSL-läsfel: %s, återansluter.\n" #: gnutls.c:302 #, c-format msgid "SSL send failed: %s\n" msgstr "SSL send misslyckades: %s\n" #: gnutls.c:315 msgid "Could not extract expiration time of certificate\n" msgstr "Kunde inte extrahera tidsgräns för certifikat\n" #: gnutls.c:320 openssl.c:1592 msgid "Client certificate has expired at" msgstr "Klientcertifikat har passerat tidsgränsen" #: gnutls.c:322 openssl.c:1597 msgid "Client certificate expires soon at" msgstr "Klientcertifikat passerar snart tidsgräns" #: gnutls.c:371 openssl.c:771 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Misslyckades med att läsa in objektet ”%s” från nyckellager: %s\n" #: gnutls.c:384 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Misslyckades med att öppna nyckel-/certifikatfil %s: %s\n" #: gnutls.c:391 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Misslyckades med stat nyckel-/certifikatfil %s: %s\n" #: gnutls.c:400 msgid "Failed to allocate certificate buffer\n" msgstr "Misslyckades med att allokera buffert för certifikat\n" #: gnutls.c:408 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Misslyckades med att läsa in certifikat till minnet: %s\n" #: gnutls.c:439 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Misslyckades med att ställa in PKCS#12-datastrukturen: %s\n" #: gnutls.c:462 openssl.c:534 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Misslyckades med att dekryptera PKCS#12-certifikatfil\n" #: gnutls.c:466 openssl.c:537 msgid "Enter PKCS#12 pass phrase:" msgstr "Ange PKCS#12-lösenfras:" #: gnutls.c:489 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Misslyckades med att behandla PKCS#12-filen: %s\n" #: gnutls.c:501 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Misslyckades med att läsa PKCS#12-certifikatet: %s\n" #: gnutls.c:584 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Misslyckades med import av X509-certifikatet: %s\n" #: gnutls.c:594 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Misslyckades med att sätta PKCS#11-certifikatet: %s\n" #: gnutls.c:628 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Kunde inte initiera MD5-hash: %s\n" #: gnutls.c:638 #, c-format msgid "MD5 hash error: %s\n" msgstr "MD5-hashfel: %s\n" #: gnutls.c:696 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "Saknar DEK-Info: huvud from OpenSSL-krypterad nyckel\n" #: gnutls.c:703 msgid "Cannot determine PEM encryption type\n" msgstr "Kan inte bestämma PEM-kryngstyp\n" #: gnutls.c:716 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "PEM-krypteringstypen: %s stöds ej\n" #: gnutls.c:741 gnutls.c:754 msgid "Invalid salt in encrypted PEM file\n" msgstr "Ogiltigt salt i krypterad PEM-fil\n" #: gnutls.c:778 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Fel base64-decoding krypterad PEM-fil: %s\n" #: gnutls.c:786 msgid "Encrypted PEM file too short\n" msgstr "Krypterad PEM-fil för kort\n" #: gnutls.c:814 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "Misslyckades med att initiera chiffer för att dekryptera PEM-fil: %s\n" #: gnutls.c:825 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Misslyckades med att kryptera PEM-nyckel: %s\n" #: gnutls.c:877 msgid "Decrypting PEM key failed\n" msgstr "Dekryptering av PEM-nyckel misslyckades\n" #: gnutls.c:881 gnutls.c:1405 openssl.c:458 msgid "Enter PEM pass phrase:" msgstr "Ange PEM-lösenfras:" #: gnutls.c:942 msgid "This binary built without system key support\n" msgstr "Denna binär är byggd utan stöd för systemnyckel\n" #: gnutls.c:949 msgid "This binary built without PKCS#11 support\n" msgstr "Denna binär är byggd utan stöd för PKCS#11\n" #: gnutls.c:993 openssl-pkcs11.c:407 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Använder PKCS#11-certifikatet %s\n" #: gnutls.c:994 #, c-format msgid "Using system certificate %s\n" msgstr "Använder systemcertifikatet %s\n" #: gnutls.c:1012 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Fel vid inläsning av certifikat från PKCS#11: %s\n" #: gnutls.c:1013 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Fel vid inläsning av systemcertifikatet: %s\n" #: gnutls.c:1024 openssl.c:827 #, c-format msgid "Using certificate file %s\n" msgstr "Använder certifikatfilen %s\n" #: gnutls.c:1052 msgid "PKCS#11 file contained no certificate\n" msgstr "PKCS#11-filen innehöll inget certifikat\n" #: gnutls.c:1078 msgid "No certificate found in file" msgstr "Inget certifikat hittades i filen" #: gnutls.c:1083 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Misslyckades med att läsa in certifikatet: %s\n" #: gnutls.c:1098 #, c-format msgid "Using system key %s\n" msgstr "Använder systemnyckeln %s\n" #: gnutls.c:1103 gnutls.c:1271 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Fel vid initiering av privata nyckelstrukturen: %s\n" #: gnutls.c:1114 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Fel vid import av systemnyckeln %s: %s\n" #: gnutls.c:1125 gnutls.c:1219 gnutls.c:1247 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "Provar PKCS#11-nyckel-URL %s\n" #: gnutls.c:1130 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Fel vid initiering av PKCS#11-nyckelstruktur: %s\n" #: gnutls.c:1259 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Fel vid import av PKCS#11-URL %s: %s\n" #: gnutls.c:1266 openssl-pkcs11.c:644 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Använder PKCS#11-nyckeln %s\n" #: gnutls.c:1281 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "Fel vid import av PKCS#11-nyckeln till privata nyckelstrukturen: %s\n" #: gnutls.c:1299 #, c-format msgid "Using private key file %s\n" msgstr "Använder privata nyckelfilen %s\n" #: gnutls.c:1310 openssl.c:651 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Denna version av OpenConnect byggdes utan TPM-stöd\n" #: gnutls.c:1326 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1347 msgid "Failed to interpret PEM file\n" msgstr "Misslyckades med att tolka PEM-fil\n" #: gnutls.c:1366 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Misslyckades med att läsa in PKCS#1-privata nyckeln: %s\n" #: gnutls.c:1379 gnutls.c:1393 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Misslyckades med att läsa in privat nyckel som PKCS#8: %s\n" #: gnutls.c:1401 gnutls.c:1434 openssl.c:1002 openssl.c:1012 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Misslyckades med att dekryptera PKCS#8-certifikatfil\n" #: gnutls.c:1426 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Misslyckades med att bestämma typ av privat nyckel %s\n" #: gnutls.c:1438 openssl.c:1008 msgid "Enter PKCS#8 pass phrase:" msgstr "Ange PKCS#8-lösenfras:" #: gnutls.c:1454 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Misslyckades med att hämta nyckel-ID: %s\n" #: gnutls.c:1499 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Fel vid signering av testdata med privata nyckeln: %s\n" #: gnutls.c:1514 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Fel vid validering av signatur mot certifikat: %s\n" #: gnutls.c:1539 msgid "No SSL certificate found to match private key\n" msgstr "Hittade inget SSL-certifikat som matchade privat nyckel\n" #: gnutls.c:1551 openssl.c:560 openssl.c:709 #, c-format msgid "Using client certificate '%s'\n" msgstr "Använder klientcertifikatet ”%s”\n" #: gnutls.c:1558 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "Misslyckades med att sätta certifikatindragningslistan: %s\n" #: gnutls.c:1579 gnutls.c:1589 msgid "Failed to allocate memory for certificate\n" msgstr "Misslyckades med att allokera minne för certifikat\n" #: gnutls.c:1625 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" "VARNING: GnutTLS returnerade ogiltiga utfärdarcertifikat, autentisering kan " "misslyckas!\n" #: gnutls.c:1648 msgid "Got no issuer from PKCS#11\n" msgstr "Erhöll ingen utfärdare från PKCS#11\n" #: gnutls.c:1653 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "Erhöll nästa CA ”%s” från PKCS11\n" #: gnutls.c:1679 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Misslyckades med att allokera minne för att stödja certifikat\n" #: gnutls.c:1702 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Lägger till stöd för CA ”%s”\n" #: gnutls.c:1724 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1748 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Misslyckades med att sätta certifikatet: %s\n" #: gnutls.c:1941 msgid "Server presented no certificate\n" msgstr "Server presenterade inget certifikat\n" #: gnutls.c:1949 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "Fel vid jämförelse av servercertifikat vid återhandskakning: %s\n" #: gnutls.c:1954 openssl.c:1515 msgid "Server presented different cert on rehandshake\n" msgstr "Server presenterade annat certifikat vid återhandskakning\n" #: gnutls.c:1959 openssl.c:1518 msgid "Server presented identical cert on rehandshake\n" msgstr "Server presenterade identiskt certifikat vid återhandskakning\n" #: gnutls.c:1965 msgid "Error initialising X509 cert structure\n" msgstr "Fel vid initiering av X509-certifikatstruktur\n" #: gnutls.c:1971 msgid "Error importing server's cert\n" msgstr "Fel vid import av servercertifikat\n" #: gnutls.c:1980 main.c:1794 msgid "Could not calculate hash of server's certificate\n" msgstr "Kunde inte beräkna hash för serverns certifikat\n" #: gnutls.c:1985 msgid "Error checking server cert status\n" msgstr "Fel vid kontroll av status för servercertifikat\n" #: gnutls.c:1990 msgid "certificate revoked" msgstr "certifikat indraget" #: gnutls.c:1992 msgid "signer not found" msgstr "undertecknare inte funnen" #: gnutls.c:1994 msgid "signer not a CA certificate" msgstr "undertecknare inte ett CA-certifikat" #: gnutls.c:1996 msgid "insecure algorithm" msgstr "osäker algoritm" #: gnutls.c:1998 msgid "certificate not yet activated" msgstr "certifikat inte aktiverat" #: gnutls.c:2000 msgid "certificate expired" msgstr "certifikat har överskridit tidsgräns" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2005 msgid "signature verification failed" msgstr "signaturverifiering misslyckades" #: gnutls.c:2054 openssl.c:1399 openssl.c:1551 msgid "certificate does not match hostname" msgstr "certifikat matcher inte värdnamn" #: gnutls.c:2059 openssl.c:1398 openssl.c:1557 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Verifiering av servercertifikat misslyckades: %s\n" #: gnutls.c:2126 msgid "Failed to allocate memory for cafile certs\n" msgstr "Misslyckades med att allokera minne för cafile-certifikat\n" #: gnutls.c:2147 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Misslyckades med att läsa certifikat från cafile: %s\n" #: gnutls.c:2163 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Misslyckades med att öppna CA-filen ”%s”: %s\n" #: gnutls.c:2176 openssl.c:1679 msgid "Loading certificate failed. Aborting.\n" msgstr "Misslyckades med att läsa in certifikat. Avbryter.\n" #: gnutls.c:2237 #, c-format msgid "Failed to set TLS priority string (\"%s\"): %s\n" msgstr "Misslyckades med att sätta TLS-prioritetssträngen (”%s”): %s\n" #: gnutls.c:2249 openssl.c:1796 #, c-format msgid "SSL negotiation with %s\n" msgstr "SSL-förhandling med %s\n" #: gnutls.c:2296 openssl.c:1822 msgid "SSL connection cancelled\n" msgstr "SSL-anslutning avbruten\n" #: gnutls.c:2303 #, c-format msgid "SSL connection failure: %s\n" msgstr "SSL-anslutning misslyckades: %s\n" #: gnutls.c:2312 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "GnuTLS icke-kritisk retur vid handskakning; %s\n" #: gnutls.c:2318 openssl.c:1839 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "Ansluten till HTTPS på %s\n" #: gnutls.c:2321 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "Omförhandlade SSL på %s\n" #: gnutls.c:2483 openssl-pkcs11.c:199 #, c-format msgid "PIN required for %s" msgstr "PIN krävs för %s" #: gnutls.c:2487 openssl-pkcs11.c:202 msgid "Wrong PIN" msgstr "Fel PIN" #: gnutls.c:2490 msgid "This is the final try before locking!" msgstr "Detta är sista försöket innan låsning!" #: gnutls.c:2492 msgid "Only a few tries left before locking!" msgstr "Bara ett fåtal försök kvar innan låsning!" #: gnutls.c:2497 openssl-pkcs11.c:206 msgid "Enter PIN:" msgstr "Ange PIN:" #: gnutls.c:2583 openssl.c:1967 msgid "Unsupported OATH HMAC algorithm\n" msgstr "OATH HMAC algoritm stöds inte\n" #: gnutls.c:2592 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "Misslyckades med att beräkna OATH HMAC: %s\n" #: gnutls_tpm.c:54 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "TPM signeringsfunktion begärde %d byte.\n" #: gnutls_tpm.c:61 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Misslyckades med att skapa TPM hashobjektet: %s\n" #: gnutls_tpm.c:68 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Misslyckades med att sätta värde i hashobjekt för TPM: %s\n" #: gnutls_tpm.c:78 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "TPM-hashsignatur misslyckades: %s\n" #: gnutls_tpm.c:100 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Fel vid avkodning av TSS-nyckelblob: %s\n" #: gnutls_tpm.c:108 gnutls_tpm.c:119 gnutls_tpm.c:132 msgid "Error in TSS key blob\n" msgstr "Fel i TSS-nyckelblob\n" #: gnutls_tpm.c:139 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Misslyckades med att skapa TPM-kontext: %s\n" #: gnutls_tpm.c:146 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Misslyckades med att ansluta TPM-kontext: %s\n" #: gnutls_tpm.c:154 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Misslyckades med att läsa in TPM SRK-nyckeln: %s\n" #: gnutls_tpm.c:161 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Misslyckades med att läsa in TPM SRK-policyobjektet; %s\n" #: gnutls_tpm.c:182 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Misslyckades med att sätta TPM PIN: %s\n" #: gnutls_tpm.c:198 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Misslyckades med att läsa in TPM-nyckelblob: %s\n" #: gnutls_tpm.c:205 msgid "Enter TPM SRK PIN:" msgstr "Ange TPM SRK PIN:" #: gnutls_tpm.c:226 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Misslyckades med att skapa nyckelpolicyobjektet: %s\n" #: gnutls_tpm.c:234 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Misslyckades med att tilldela policy till nyckeln; %s\n" #: gnutls_tpm.c:240 msgid "Enter TPM key PIN:" msgstr "Ange TPM-nyckel PIN:" #: gnutls_tpm.c:251 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Misslyckades med att ange nyckel-PIN: %s\n" #: gnutls_tpm2.c:92 gnutls_tpm2_esys.c:474 gnutls_tpm2_ibm.c:419 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:198 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:208 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:217 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:225 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:231 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:249 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:270 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:275 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:384 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2_esys.c:173 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:189 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:190 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:191 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:192 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:196 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:201 gnutls_tpm2_ibm.c:262 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:209 gnutls_tpm2_esys.c:303 gnutls_tpm2_esys.c:374 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:221 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:226 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:245 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:250 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:258 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:261 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:274 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:295 gnutls_tpm2_ibm.c:278 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:309 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:317 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:323 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:333 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:363 gnutls_tpm2_ibm.c:363 gnutls_tpm2_ibm.c:450 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:395 #, c-format msgid "TPM2 RSA sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:414 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:420 gnutls_tpm2_esys.c:500 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:464 gnutls_tpm2_ibm.c:405 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:494 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:532 gnutls_tpm2_ibm.c:485 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:546 gnutls_tpm2_ibm.c:502 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:555 gnutls_tpm2_ibm.c:512 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:569 gnutls_tpm2_ibm.c:523 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:54 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:226 #, c-format msgid "%s\n" msgstr "" #: gpst.c:229 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:417 #, c-format msgid "Unknown ESP %s algorithm: %s" msgstr "" #: gpst.c:477 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: gpst.c:483 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:487 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:498 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:551 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:560 oncp.c:835 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" "Ignorerar ESP-nycklar eftersom ESP-stöd inte är tillgängligt i detta bygge\n" #: gpst.c:627 msgid "ESP disabled" msgstr "" #: gpst.c:629 msgid "No ESP keys received" msgstr "" #: gpst.c:631 msgid "ESP support not available in this build" msgstr "" #: gpst.c:635 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:680 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:702 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:711 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:719 #, c-format msgid "Got inappropriate HTTP GET-tunnel response: %.*s\n" msgstr "" #: gpst.c:861 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" "VPN connectivity may be disabled or limited without HIP report submission.\n" "You need to provide a --csd-wrapper argument with the HIP report submission " "script.\n" msgstr "" #: gpst.c:871 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:900 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:905 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:911 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:913 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:942 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:966 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:972 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:999 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1015 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1051 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1072 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1082 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1086 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1092 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: gpst.c:1101 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1109 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1157 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1162 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1182 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1202 #, c-format msgid "Sending data packet of %d bytes\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Fel vid import av GSSAPI-namn för autentisering:\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "Fel vid generering av GSSAPI-svar:\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "Försöker med GSSAPI-autentisering till proxy\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "Försöker med GSSAPI-autentisering till servern ”%s”\n" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "GSSAPI-autentisering färdig\n" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "GSSAPI-token för stor (%zd byte)\n" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "Skickar GSSAPI-token på %zu byte\n" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" "Misslyckades med att skicka GSSAPI-autentiseringstoken till proxy: %s\n" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" "Misslyckades med att mottaga GSSAPI-autentiseringstoken från proxy: %s\n" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "SOCKS-server rapporterade misslyckat GSSAPI-kontext\n" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "Okänd GSSAPI-status svar (0x%02x) från SOCKS-server\n" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "Mottog GSSAPI-token på %zu byte: %02x %02x %02x %02x\n" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "Skickar GSSAPI-skyddsöverenskommelse på %zu byte\n" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "Misslyckades med att skicka GSSAPI-skyddssvar till proxy: %s\n" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "Misslyckades med att motta GSSAPI-skyddssvar från proxy: %s\n" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "Erhöll GSSAPI-skyddssvar på %zu byte: %02x %02x %02x %02x\n" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "Ogiltig GSSAPI-skyddssvar från proxy (%zu byte)\n" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "SOCKS-proxy kräver meddelandeintegritet vilket inte stöds\n" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "SOCK-proxy kräver meddelandekonfidentialitet vilket inte stöds\n" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "SOCKS-proxy kräver skydd av okänd typ 0x%02x\n" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "Försöker med HTTP Basic-autentisering till proxy\n" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "Försöker med HTTP Basic-autentisering till servern ”%s”\n" #: http-auth.c:200 http.c:1165 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "Denna version av OpenConnect byggdes utan GSSAPI-stöd\n" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" "Proxy begärde grundläggande autentisering vilket är inaktiverat som " "standard\n" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" "Servern ”%s” begärde grundläggande autentisering vilket är inaktiverat som " "standard\n" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "Inga fler autentiseringsmetoder att prova\n" #: http.c:319 msgid "No memory for allocating cookies\n" msgstr "Inget minne för att allokera kakor\n" #: http.c:394 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Misslyckades med att tolka HTTP-svaret ”%s”\n" #: http.c:400 #, c-format msgid "Got HTTP response: %s\n" msgstr "Mottog HTTP-svaret: %s\n" #: http.c:408 msgid "Error processing HTTP response\n" msgstr "Fel vid bearbetning av HTTP-svar\n" #: http.c:415 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Ignorerar okänd HTTP-svarsrad ”%s”\n" #: http.c:435 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Ogiltig kaka erbjuden: %s\n" #: http.c:454 msgid "SSL certificate authentication failed\n" msgstr "SSL-certifikatsautentisering misslyckades\n" #: http.c:485 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Svarskropp har negativ storlek (%d)\n" #: http.c:496 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Okänd överföringskodning: %s\n" #. Now the body, if there is one #: http.c:515 #, c-format msgid "HTTP body %s (%d)\n" msgstr "HTTP-kropp %s (%d)\n" #: http.c:529 http.c:556 msgid "Error reading HTTP response body\n" msgstr "Fel vid läsning av HTTP-svarskropp\n" #: http.c:542 msgid "Error fetching chunk header\n" msgstr "Fel vid hämtning av chunk-huvud\n" #: http.c:566 msgid "Error fetching HTTP response body\n" msgstr "Fel vid hämtning av HTTP-svarskropp\n" #: http.c:569 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "Fel i chunked-avkodning. Förväntade ””, fick: ”%s”" #: http.c:581 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Kan inte hämta HTTP 1.0-body utan att stänga anslutning\n" #: http.c:708 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Misslyckades med att tolka omdirigerad URL ”%s”: %s\n" #: http.c:732 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Kan inte följa omdirigering till icke https-URL ”%s”\n" #: http.c:760 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Misslyckades med att allokera ny sökväg för relativ omdirigering: %s\n" #: http.c:973 oncp.c:591 #, c-format msgid "Unexpected %d result from server\n" msgstr "Oväntat resultat %d från server\n" #: http.c:1021 msgid "request granted" msgstr "begäran tillåten" #: http.c:1022 msgid "general failure" msgstr "allmänt fel" #: http.c:1023 msgid "connection not allowed by ruleset" msgstr "anslutning inte tillåten av regeluppsättning" #: http.c:1024 msgid "network unreachable" msgstr "nätverk ej nåbart" #: http.c:1025 msgid "host unreachable" msgstr "värd ej nåbar" #: http.c:1026 msgid "connection refused by destination host" msgstr "anslutning vägras av målvärd" #: http.c:1027 msgid "TTL expired" msgstr "TTL tidsgräns har överskridits" #: http.c:1028 msgid "command not supported / protocol error" msgstr "kommando stöds ej / protokollfel" #: http.c:1029 msgid "address type not supported" msgstr "adresstyp stöds ej" #: http.c:1039 msgid "SOCKS server requested username/password but we have none\n" msgstr "SOCKS-server begärde användarnamn/lösenord men vi har inga\n" #: http.c:1047 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" "Användarnamn och lösenord för SOCKS-autentisering måste vara < 255 byte\n" #: http.c:1062 http.c:1118 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Fel vid skrivning av auth-begäran till SOCKS-proxy: %s\n" #: http.c:1070 http.c:1125 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Fel vid läsning av auth-svar från SOCKS-proxy: %s\n" #: http.c:1077 http.c:1131 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Oväntat auth-svar från SOCKS-proxy: %02x %02x\n" #: http.c:1083 msgid "Authenticated to SOCKS server using password\n" msgstr "Autentiserad till SOCKS-server med lösenord\n" #: http.c:1087 msgid "Password authentication to SOCKS server failed\n" msgstr "Lösenordsautentisering till SOCKS-server misslyckades\n" #: http.c:1143 http.c:1150 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "SOCKS-server begärde GSSAPI-autentisering\n" #: http.c:1156 msgid "SOCKS server requested password authentication\n" msgstr "SOCKS-server begärde lösenordsautentisering\n" #: http.c:1163 msgid "SOCKS server requires authentication\n" msgstr "SOCKS-server begärde autentisering\n" #: http.c:1170 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "SOCKS-server begärde okänd autentiseringstyp %02x\n" #: http.c:1176 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Begär SOCKS-proxyanslutning till %s: %d\n" #: http.c:1191 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Fel vid skrivning av anslutningsbegäran till SOCKS-proxy: %s\n" #: http.c:1199 http.c:1241 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Fel vid läsning av anslutningssvar från SOCKS-proxy: %s\n" #: http.c:1205 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Oväntat anslutningssvar från SOCKS-proxy: %02x %02x…\n" #: http.c:1213 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "SOCKS-proxyfel %02x: %s\n" #: http.c:1217 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "SOCKS-proxyfel %02x\n" #: http.c:1234 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Oväntad adresstyp %02x i SOCKS-anslutningssvar\n" #: http.c:1257 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Begär HTTP-proxyanslutning till %s: %d\n" #: http.c:1292 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Misslyckades med att skicka proxybegäran: %s\n" #: http.c:1315 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "Misslyckades med proxy CONNECT-begäran: %d\n" #: http.c:1334 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Okänd proxytyp ”%s”\n" #: http.c:1383 msgid "Only http or socks(5) proxies supported\n" msgstr "Endast http eller socks(5)-proxyservrar stöds\n" #: library.c:112 msgid "Cisco AnyConnect or openconnect" msgstr "Cisco AnyConnect eller openconnect" #: library.c:113 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "Kompatibel med Cisco AnyConnect SSL VPN såväl som ocserv" #: library.c:129 msgid "Juniper Network Connect" msgstr "Juniper Network Connect" #: library.c:130 msgid "Compatible with Juniper Network Connect / Pulse Secure SSL VPN" msgstr "Kompatibel med Juniper Network Connect / Pulse Secure SSL VPN" #: library.c:148 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:149 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:211 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "Okänt VPN-protokoll ”%s”\n" #: library.c:233 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Byggd mot SSL-bibliotek utan Cisco DTLS-stöd\n" #: library.c:656 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Misslyckades med att tolka server-URL ”%s”\n" #: library.c:662 msgid "Only https:// permitted for server URL\n" msgstr "Endast https:// tillåtet för server-URL\n" #: library.c:1056 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "Okänd certifikatshash: %s\n" #: library.c:1085 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" "Storleken på det tillhandahållna fingeravtrycket är mindre än det minsta som " "krävs (%u).\n" #: library.c:1146 msgid "No form handler; cannot authenticate.\n" msgstr "Ingen formhanterare, kan inte autentisera.\n" #: main.c:340 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "CommandLineToArgvW() misslyckades: %s\n" #: main.c:353 #, c-format msgid "Fatal error in command line handling\n" msgstr "Kritiskt misstag i kommandoradshantering\n" #: main.c:388 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "ReadConsole() misslyckades: %s\n" #: main.c:401 #, c-format msgid "fgetws() failed: %s\n" msgstr "" #: main.c:416 main.c:429 #, c-format msgid "Error converting console input: %s\n" msgstr "Fel vid konvertering av konsolinmatning: %s\n" #: main.c:423 main.c:689 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Allokeringsfel för sträng från stdin\n" #: main.c:584 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" "För hjälp med OpenConnect, se webbsidan på\n" " http://www.infradead.org/openconnect/mail.html\n" #: main.c:593 #, c-format msgid "Using OpenSSL. Features present:" msgstr "Använder OpenSSL. Egenskaper:" #: main.c:595 #, c-format msgid "Using GnuTLS. Features present:" msgstr "Använder GnuTLS. Egenskaper:" #: main.c:608 msgid "OpenSSL ENGINE not present" msgstr "OpenSSL ENGINE inte tillgänglig" #: main.c:647 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" "VARNING: Inget DTLS- och/eller ESP-stöd i denna binär. Prestanda kommer att " "påverkas.\n" #: main.c:657 #, c-format msgid "Supported protocols:" msgstr "Protokoll som stöds:" #: main.c:659 main.c:675 msgid " (default)" msgstr " (standard)" #: main.c:672 msgid "Set VPN protocol" msgstr "" #: main.c:713 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:754 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Kan inte bearbeta denna körbara sökväg ”%s”" #: main.c:760 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "Allokering för vpnc-skriptsökväg misslyckades\n" #: main.c:780 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "Åsidosätt värdnamnet ”%s” till ”%s”\n" #: main.c:793 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Användning: openconnect [flaggor] \n" #: main.c:794 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" "Öppen klient för multipla VPN-protokoll, version %s\n" "\n" #: main.c:796 msgid "Read options from config file" msgstr "Läs flaggor från konfigurationsfil" #: main.c:797 msgid "Report version number" msgstr "Rapportera versionsnummer" #: main.c:798 msgid "Display help text" msgstr "Visa hjälptext" #: main.c:802 msgid "Authentication" msgstr "" #: main.c:803 msgid "Set login username" msgstr "Sätt användarnamn för inloggning" #: main.c:804 msgid "Disable password/SecurID authentication" msgstr "Inaktivera lösenord-/SecurID-autentisering" #: main.c:805 msgid "Do not expect user input; exit if it is required" msgstr "Förvänta inte användarinmatning, avsluta om det krävs" #: main.c:806 msgid "Read password from standard input" msgstr "Läs lösenord från standardinmatning" #: main.c:807 msgid "Choose authentication login selection" msgstr "Välj autentiseringinloggningsmarkering" #: main.c:808 msgid "Provide authentication form responses" msgstr "" #: main.c:809 msgid "Use SSL client certificate CERT" msgstr "Använd SSL-klientcertifikat CERT" #: main.c:810 msgid "Use SSL private key file KEY" msgstr "Använd privata SSL-nyckelfilen KEY" #: main.c:811 msgid "Warn when certificate lifetime < DAYS" msgstr "Varna när certifikatets livslängd < DAYS" #: main.c:812 msgid "Set login usergroup" msgstr "Sätt användargrupp för inloggning" #: main.c:813 msgid "Set key passphrase or TPM SRK PIN" msgstr "Sätt lösenfras för nyckel ett TPM SRK PIN" #: main.c:814 msgid "Key passphrase is fsid of file system" msgstr "Nyckellösenfras är fsid för filsystemet" #: main.c:815 msgid "Software token type: rsa, totp or hotp" msgstr "Programvarutokentyp: rsa, totp eller hotp" #: main.c:816 msgid "Software token secret" msgstr "Programvarutokenhemlighet" #: main.c:818 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "(OBS: libstoken (RSA SecurID) inaktiverat i detta bygge)" #: main.c:821 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(OBS: Yubikey OATH inaktiverat i detta bygge)" #: main.c:824 msgid "Server validation" msgstr "" #: main.c:825 msgid "Server's certificate SHA1 fingerprint" msgstr "SHA1-fingeravtryck för serverns certifikat" #: main.c:826 msgid "Do not require server SSL cert to be valid" msgstr "Kräv inte server-SSL-certifikat att vara giltigt" #: main.c:827 msgid "Disable default system certificate authorities" msgstr "Inaktivera standardutfärdarna för systemcertifikat" #: main.c:828 msgid "Cert file for server verification" msgstr "Certifikatfil för serververifiering" #: main.c:830 msgid "Internet connectivity" msgstr "" #: main.c:831 msgid "Set proxy server" msgstr "Sätt proxyserver" #: main.c:832 msgid "Set proxy authentication methods" msgstr "Sätt proxyautentiseringsmetoder" #: main.c:833 msgid "Disable proxy" msgstr "Inaktivera proxy" #: main.c:834 msgid "Use libproxy to automatically configure proxy" msgstr "Använd libproxy för att automatiskt konfigurera proxy" #: main.c:836 msgid "(NOTE: libproxy disabled in this build)" msgstr "(OBS: libproxy inaktiverad i detta bygge)" #: main.c:838 msgid "Connection retry timeout in seconds" msgstr "Tidsgräns för återanslutningsförsök i sekunder" #: main.c:839 msgid "Use IP when connecting to HOST" msgstr "Använd IP vid anslutning till VÄRD" #: main.c:840 msgid "copy TOS / TCLASS when using DTLS" msgstr "kopiera TOS / TCLASS vid användning av DTLS" #: main.c:841 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:843 msgid "Authentication (two-phase)" msgstr "" #: main.c:844 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:845 msgid "Read cookie from standard input" msgstr "Läs kaka från standard in" #: main.c:846 msgid "Authenticate only and print login info" msgstr "Autentisera endast och skriv ut inloggningsinformation" #: main.c:847 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:848 msgid "Print cookie before connecting" msgstr "" #: main.c:851 msgid "Process control" msgstr "" #: main.c:852 msgid "Continue in background after startup" msgstr "Fortsätt i bakgrunden efter start" #: main.c:853 msgid "Write the daemon's PID to this file" msgstr "Skriv demonens PID till denna fil" #: main.c:854 msgid "Drop privileges after connecting" msgstr "Förkasta privilegier efter anslutning" #: main.c:857 msgid "Logging (two-phase)" msgstr "" #: main.c:859 msgid "Use syslog for progress messages" msgstr "Använd syslog för förloppsmeddelanden" #: main.c:861 msgid "More output" msgstr "Mer utmatning" #: main.c:862 msgid "Less output" msgstr "Mindre utmatning" #: main.c:863 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "Dumpa HTTP-autentiseringstrafik (implicerar --verbose)" #: main.c:864 msgid "Prepend timestamp to progress messages" msgstr "Lägg till tidsstämpel i början av förloppsmeddelanden" #: main.c:866 msgid "VPN configuration script" msgstr "" #: main.c:867 msgid "Use IFNAME for tunnel interface" msgstr "Använd IFNAME för tunnelgränssnitt" #: main.c:868 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" "Skalkommandorad för att använda ett vpnc-kompatibelt konfigurationsskript" #: main.c:869 msgid "default" msgstr "standard" #: main.c:871 msgid "Pass traffic to 'script' program, not tun" msgstr "Sänd trafik till ”script”-program, inte tun" #: main.c:874 msgid "Tunnel control" msgstr "" #: main.c:875 msgid "Do not ask for IPv6 connectivity" msgstr "Fråga inte efter IPv6-anslutning" #: main.c:876 msgid "XML config file" msgstr "XML-konfigurationsfil" #: main.c:877 msgid "Request MTU from server (legacy servers only)" msgstr "Begär MTU från servern (endast föråldrade servrar)" #: main.c:878 msgid "Indicate path MTU to/from server" msgstr "Indikerar sökvägs-MTU till/från server" #: main.c:879 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:880 msgid "Disable all compression" msgstr "" #: main.c:881 msgid "Set minimum Dead Peer Detection interval" msgstr "Sätt minsta intervall för Dead Peer Detection" #: main.c:882 msgid "Require perfect forward secrecy" msgstr "Kräver perfect forward secrecy" #: main.c:883 msgid "Disable DTLS and ESP" msgstr "" #: main.c:884 msgid "OpenSSL ciphers to support for DTLS" msgstr "OpenSSL-chiffer till stöd för DTLS" #: main.c:885 msgid "Set packet queue limit to LEN pkts" msgstr "Sätt paketkögräns till LEN-pkts" #: main.c:887 msgid "Local system information" msgstr "" #: main.c:888 msgid "HTTP header User-Agent: field" msgstr "HTTP-header User-Agent:-fält" #: main.c:889 msgid "Local hostname to advertise to server" msgstr "Lokalt värdnamn att annonsera till server" #: main.c:890 msgid "OS type (linux,linux-64,win,...) to report" msgstr "OS-typ (linux,linux-64,win,…) att rapportera" #: main.c:891 msgid "reported version string during authentication" msgstr "" #: main.c:892 msgid "default:" msgstr "" #: main.c:895 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:896 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:897 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:900 msgid "Server bugs" msgstr "" #: main.c:901 msgid "Disable HTTP connection re-use" msgstr "Inaktivera återanvändning av HTTP-anslutning" #: main.c:902 msgid "Do not attempt XML POST authentication" msgstr "Försök inte med XML POST-autentisering" #: main.c:924 #, c-format msgid "Failed to allocate string\n" msgstr "Misslyckades med att allokera sträng\n" #: main.c:997 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Misslyckades med att hämta rad från konfigurationsfilen %s\n" #: main.c:1037 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Okänd flagga på rad %d: ”%s”\n" #: main.c:1047 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Alternativet ”%s” tar inte argument på rad %d\n" #: main.c:1051 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Alternativet ”%s” kräver ett argument på rad %d\n" #: main.c:1076 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "Ogiltig användare ”%s”: %s\n" #: main.c:1086 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "Ogiltigt användar-ID ”%d”: %s\n" #: main.c:1130 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "" #: main.c:1140 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "VARNING: Denna version av openconnect byggdes utan iconvstöd\n" " men du verkar använda den föråldrade teckenuppsättningen\n" " ”%s”. Förvänta dig konstiga händelser.\n" #: main.c:1147 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "VARNING: Denna version av openconnect är %s men\n" " biblioteket libopenconnect är %s\n" #: main.c:1157 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Misslyckades med att allokera vpninfo-struktur\n" #: main.c:1215 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Kan inte använda ”config” inuti konfigurationsfil\n" #: main.c:1223 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Kan inte öppna konfigurationsfilen ”%s”: %s\n" #: main.c:1239 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "Ogiltigt komprimeringsläge ”%s”\n" #: main.c:1260 #, c-format msgid "Missing colon in resolve option\n" msgstr "Saknar kolon i flaggan för uppslag\n" #: main.c:1265 #, c-format msgid "Failed to allocate memory\n" msgstr "Misslyckades med att allokera minne\n" #: main.c:1349 main.c:1358 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d för litet\n" #: main.c:1388 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Inaktiverar alla HTTP-anslutningsåteranvändningar pga --no-http-keepalive.\n" "Om detta hjälper, rapportera till .\n" #: main.c:1394 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" "--no-cert-check-flaggan var osäker och har tagits bort.\n" "Fixa din servers certifikat eller använd --servercert för att lita på den.\n" #: main.c:1411 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Kölängd noll tillåts inte: använder 1\n" #: main.c:1425 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect version %s\n" #: main.c:1463 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Ogiltigt programvarutokenläge ”%s”\n" #: main.c:1473 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "Ogiltig OS-identitet ”%s”\n" #: main.c:1506 #, c-format msgid "Too many arguments on command line\n" msgstr "För många argument på kommandoraden\n" #: main.c:1509 #, c-format msgid "No server specified\n" msgstr "Ingen server angiven\n" #: main.c:1525 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "Denna version av OpenConnect byggdes utan libproxy-stöd\n" #: main.c:1555 #, c-format msgid "Error opening cmd pipe\n" msgstr "Fel vid öppning av cmd-rör\n" #: main.c:1588 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "Misslyckades med att erhålla WebVpn-kaka\n" #: main.c:1609 #, c-format msgid "Creating SSL connection failed\n" msgstr "Misslyckades med att skapa SSL-anslutning\n" #: main.c:1625 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:1633 #, c-format msgid "Connected as %s%s%s, using SSL%s%s, with %s%s%s %s\n" msgstr "" #: main.c:1639 msgid "disabled" msgstr "" #: main.c:1639 msgid "in progress" msgstr "" #: main.c:1643 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "Inget --script-argument givet, DNS och omdirigering är inte konfigurerade\n" #: main.c:1645 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Se http://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:1658 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Misslyckades med att öppna ”%s” för att skriva: %s\n" #: main.c:1670 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Fortsätter i bakgrunden, pid %d\n" #: main.c:1687 msgid "User requested reconnect\n" msgstr "Användare begärde återanslutning\n" #: main.c:1695 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "Kaka avvisades vid återanslutning, avslutar.\n" #: main.c:1699 msgid "Session terminated by server; exiting.\n" msgstr "Sessionen avslutades av server, avslutar.\n" #: main.c:1703 msgid "User cancelled (SIGINT/SIGTERM); exiting.\n" msgstr "" #: main.c:1707 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "Användare frånkopplade från session (SIGHUP), avslutar.\n" #: main.c:1711 msgid "Unknown error; exiting.\n" msgstr "Okänt fel, avslutar.\n" #: main.c:1730 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Misslyckades med att öppna %s för att skriva: %s\n" #: main.c:1738 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Misslyckades med att skriva konfiguration till %s: %s\n" #: main.c:1797 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "SSL-servercertifikat matchade inte: %s\n" #: main.c:1816 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Certifikatet från VPN-servern \"%s\" klarade inte verifiering.\n" "Anledning: %s\n" #: main.c:1819 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" "För att lista på denna server i framtiden kan du lägga till detta till din " "kommandorad:\n" #: main.c:1820 #, c-format msgid " --servercert %s\n" msgstr " --servercert %s\n" #: main.c:1825 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Skriv in ”%s” för att acceptera, ”%s” för att avbryta, vad som helst annat " "för att visa: " #: main.c:1826 main.c:1844 msgid "no" msgstr "nej" #: main.c:1826 main.c:1832 msgid "yes" msgstr "ja" #: main.c:1853 #, c-format msgid "Server key hash: %s\n" msgstr "Hash för servernyckel: %s\n" #: main.c:1887 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Auth-val ”%s” matchar flera alternativ\n" #: main.c:1890 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Auth-val ”%s” ej tillgängligt\n" #: main.c:1911 msgid "User input required in non-interactive mode\n" msgstr "Användarinmatning krävs i icke-interaktivt läge\n" #: main.c:2149 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Misslyckades med att öppna tokenfil för skrivning: %s\n" #: main.c:2157 #, c-format msgid "Failed to write token: %s\n" msgstr "Misslyckades med att skriva token: %s\n" #: main.c:2203 main.c:2224 #, c-format msgid "Soft token string is invalid\n" msgstr "Programvarutokensträng är ogiltig\n" #: main.c:2206 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Kan inte öppna ~/.stokenrc-fil\n" #: main.c:2209 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "OpenConnect byggdes inte med libstoken-stöd\n" #: main.c:2212 #, c-format msgid "General failure in libstoken\n" msgstr "Allmänt fel i libstoken\n" #: main.c:2227 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "OpenConnect byggdes inte med liboath-stöd\n" #: main.c:2230 #, c-format msgid "General failure in liboath\n" msgstr "Allmänt fel i liboath\n" #: main.c:2241 #, c-format msgid "Yubikey token not found\n" msgstr "Yubikey-token inte funnen\n" #: main.c:2244 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "OpenConnect byggdes inte med Yubikey-stöd\n" #: main.c:2247 #, c-format msgid "General Yubikey failure: %s\n" msgstr "Allmänt Yubikey-fel: %s\n" #: mainloop.c:127 #, c-format msgid "Set up tun script failed\n" msgstr "Misslyckades med att ställa in skript för tun\n" #: mainloop.c:134 #, c-format msgid "Set up tun device failed\n" msgstr "Misslyckades med att ställa in tun-enhet\n" #: mainloop.c:265 msgid "Caller paused the connection\n" msgstr "Anslutaren pausade anslutningen\n" #: mainloop.c:273 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Inget arbete att göra, sover i %d ms…\n" #: mainloop.c:294 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "WaitForMultipleObjects misslyckades: %s\n" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "InitializeSecurityContext() misslyckades: %lx\n" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "AcquireCredentialsHandle() misslyckades: %lx\n" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "Fel vid kommunikation med ntlm_auth helper\n" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "Försöker med HTTP NTLM-autentisering till proxy (single-sign-on)\n" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" "Försöker med HTTP NTLM-autentisering till servern ”%s” (single-sign-on)\n" #: ntlm.c:978 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "Försöker med HTTP NTLMv%d-autentisering till proxy\n" #: ntlm.c:982 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "Försöker med HTTP NTLMv%d-autentisering till servern ”%s”\n" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "Ogiltig base32 tokensträng\n" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "Misslyckades med att allokera minne för att avkoda OATH-hemlighet\n" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "Denna version av OpenConnect byggdes utan PSKC-stöd\n" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "Ok att generera INITIAL tokenkod\n" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "Ok att generera NEXT tokenkod\n" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "Server förkastar programvarutoken, växlar till manuellt angiven\n" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "Genererar OATH TOTP tokenkod\n" #: oath.c:565 msgid "Generating OATH HOTP token code\n" msgstr "Genererar OATH HOTP tokenkod\n" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "Ogiltig kaka ”%s”\n" #: oncp.c:160 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "Oväntad längd %d för TLV %d/%d\n" #: oncp.c:166 #, c-format msgid "Received MTU %d from server\n" msgstr "Erhöll MTU %d från server\n" #: oncp.c:175 #, c-format msgid "Received DNS server %s\n" msgstr "Erhöll DNS-server %s\n" #: oncp.c:186 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "Erhöll DNS-sökdomän %.*s\n" #: oncp.c:201 #, c-format msgid "Received internal IP address %s\n" msgstr "Tog emot intern IP-adress %s\n" #: oncp.c:210 #, c-format msgid "Received netmask %s\n" msgstr "Mottog nätmask %s\n" #: oncp.c:219 #, c-format msgid "Received internal gateway address %s\n" msgstr "Mottog intern gateway-adress %s\n" #: oncp.c:232 #, c-format msgid "Received split include route %s\n" msgstr "Mottog split-include-rutt %s\n" #: oncp.c:254 #, c-format msgid "Received split exclude route %s\n" msgstr "Mottog split-exclude-rutt %s\n" #: oncp.c:274 #, c-format msgid "Received WINS server %s\n" msgstr "Mottog WINS-server %s\n" #: oncp.c:297 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "ESP-kryptering: 0x%02x (%s)\n" #: oncp.c:316 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "ESP HMAC: 0x%02x (%s)\n" #: oncp.c:327 #, c-format msgid "ESP compression: %d\n" msgstr "ESP-komprimering: %d\n" #: oncp.c:335 #, c-format msgid "ESP port: %d\n" msgstr "ESP-port: %d\n" #: oncp.c:342 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "Livslängd för ESP-nyckel: %u byte\n" #: oncp.c:350 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "Livslängd för ESP-nyckel: %u sekunder\n" #: oncp.c:358 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "ESP till SSL-reserv: %u sekunder\n" #: oncp.c:366 #, c-format msgid "ESP replay protection: %d\n" msgstr "ESP-replay skydd: %d\n" #: oncp.c:374 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "ESP SPI (utgående): %x\n" #: oncp.c:383 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "%d byte av ESP-hemligheter\n" #: oncp.c:395 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "Okänd TLV grupp %d attr %d län %d:%s\n" #: oncp.c:473 msgid "Failed to parse KMP header\n" msgstr "Misslyckades med att tolka KMP-header\n" #: oncp.c:490 msgid "Failed to parse KMP message\n" msgstr "Misslyckades med att tolka KMP-meddelanden\n" #: oncp.c:496 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "Erhöll KMP-meddelande %d med storlek %d\n" #: oncp.c:512 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "Erhöll icke-ESP TLVs (grupp %d) i ESP-förhandling KMP\n" #: oncp.c:577 oncp.c:609 oncp.c:747 msgid "Error creating oNCP negotiation request\n" msgstr "Fel vid skapande av begäran av oNCP-förhandling\n" #: oncp.c:618 oncp.c:783 msgid "Short write in oNCP negotiation\n" msgstr "Kort skrivning i oNCP-förhandling\n" #: oncp.c:631 oncp.c:666 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "Läste %d byte av SSL-post\n" #: oncp.c:636 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "Oväntat svar på storlek %d efter värdnamnspaket\n" #: oncp.c:643 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "Serversvar till värdnamnspaket är fel 0x%02x\n" #: oncp.c:670 msgid "Invalid packet waiting for KMP 301\n" msgstr "Ogiltigt paket väntar på KMP 301\n" #: oncp.c:683 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "Förväntad KMP-meddelande 301 från server, men fick %d\n" #: oncp.c:692 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "KMP-meddelande 301 från server för stort (%d byte)\n" #: oncp.c:698 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "Erhöll KMP-meddelande 301 med längd %d\n" #: oncp.c:705 msgid "Failed to read continuation record length\n" msgstr "Misslyckades med att läsa fortsättning på postens längd\n" #: oncp.c:711 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "Post på ytterligare %d byte för stor; skulle bli %d\n" #: oncp.c:720 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "Misslyckades med att läsa ytterligare post på längd %d\n" #: oncp.c:726 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "Läs ytterligare %d byte av KMP-301-meddelande\n" #: oncp.c:767 msgid "Error negotiating ESP keys\n" msgstr "Fel vid förhandling av ESP-nycklar\n" #: oncp.c:776 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:829 msgid "new incoming" msgstr "ny inkommande" #: oncp.c:830 msgid "new outgoing" msgstr "ny utgående" #: oncp.c:855 msgid "Read only 1 byte of oNCP length field\n" msgstr "Läs bara 1 byte från fältet för oNCP-längd\n" #: oncp.c:864 msgid "Server terminated connection (session expired)\n" msgstr "Servern avslutade anslutningen (sessionens tidsgräns passerades)\n" #: oncp.c:868 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "Servern avslutade anslutningen (orsak: %d)\n" #: oncp.c:874 msgid "Server sent zero-length oNCP record\n" msgstr "Servern skickade oNCP-post med längd 0\n" #: oncp.c:969 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "Inkommande KMP-meddelande %d med storlek %d (fick %d)\n" #: oncp.c:972 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "Fortsätter att bearbeta KMP-meddelande %d med storlek %d (fick %d)\n" #: oncp.c:991 msgid "Unrecognised data packet\n" msgstr "Okänt datapaket\n" #: oncp.c:1053 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "Okänt KMP-meddelande %d med storlek %d:\n" #: oncp.c:1058 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr ".... + %d mer byte ej mottaget\n" #: oncp.c:1073 msgid "Packet outgoing:\n" msgstr "Utgående paket:\n" #: oncp.c:1134 msgid "Sent ESP enable control packet\n" msgstr "Skicka ESP enable control-paket\n" #: oncp.c:1268 msgid "Logout successful.\n" msgstr "Utloggning lyckades.\n" #: openconnect-internal.h:1119 openconnect-internal.h:1127 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "FEL: %s() anropades med ogiltig UTF-8 för ”%s” argument\n" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "Misslyckades med att beräkna DTLS-kostnad för %s\n" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "Misslyckades med att skapa SSL_SESSION ASN.1 för OpenSSL: %s\n" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "OpenSSL misslyckades med att tolka SSL_SESSION ASN.1\n" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "Misslyckades med att initiera DTLSv1-session\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "PSK-återanrop\n" #: openssl-dtls.c:365 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Misslyckades med att initiera DTLSv1 CTX\n" #: openssl-dtls.c:378 msgid "Set DTLS CTX version failed\n" msgstr "Misslyckades med att ange DTLS CTX-version\n" #: openssl-dtls.c:395 msgid "Failed to generate DTLS key\n" msgstr "Misslyckades med att generera DTLS-nyckel\n" #: openssl-dtls.c:413 msgid "Set DTLS cipher list failed\n" msgstr "Misslyckades med att sätta DTLS chifferlista\n" #: openssl-dtls.c:439 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:460 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "SSL_set_session() misslyckades med gammal protokollversion 0x%x\n" "Använder du en version av OpenSSL äldre än 0.9.8m?\n" "Se http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Använd kommandoradsalternativet --no-dtls för att undvika detta meddelande\n" #: openssl-dtls.c:493 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:566 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "Etablerade DTLS-anslutning (använder OpenSSL). Ciphersuite %s.\n" #: openssl-dtls.c:603 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "Din OpenSSL är äldre än den du byggde mot, DTLS kan misslyckas!" #: openssl-dtls.c:654 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Det är antagligen för att din OpenSSL är trasig\n" "Se http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: openssl-dtls.c:661 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "DTLS-handskakning misslyckades: %d\n" #: openssl-esp.c:87 msgid "Failed to initialise ESP cipher:\n" msgstr "Misslyckades med att initiera ESP-chiffer:\n" #: openssl-esp.c:101 msgid "Failed to initialize ESP HMAC\n" msgstr "Misslyckades med att initiera ESP HMAC\n" #: openssl-esp.c:157 msgid "Failed to generate random keys for ESP:\n" msgstr "Misslyckades med att generera nycklar för ESP:\n" #: openssl-esp.c:202 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "Misslyckades med att ställa in dekryptering för ESP-paket:\n" #: openssl-esp.c:210 msgid "Failed to decrypt ESP packet:\n" msgstr "Misslyckades med att dekryptera ESP-paket:\n" #: openssl-esp.c:241 msgid "Failed to encrypt ESP packet:\n" msgstr "Misslyckades med att kryptera ESP-paket:\n" #: openssl-pkcs11.c:43 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "Misslyckades med att etablera libp11 PKCS#11-kontext:\n" #: openssl-pkcs11.c:49 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "Misslyckades med att läsa in PKCS#11-leverantörsmodul (%s):\n" #: openssl-pkcs11.c:269 msgid "PIN locked\n" msgstr "PIN-låst\n" #: openssl-pkcs11.c:272 msgid "PIN expired\n" msgstr "PIN-tidsgräns överskriden\n" #: openssl-pkcs11.c:275 msgid "Another user already logged in\n" msgstr "En annan användare är redan inloggad\n" #: openssl-pkcs11.c:279 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "Okänt fel vid inloggning till PKCS#11-token\n" #: openssl-pkcs11.c:286 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "Inloggad till PKCS#11-platsen ”%s”\n" #: openssl-pkcs11.c:300 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "Misslyckades med att räkna upp certifikat i PKCS#11-platsen ”%s”\n" #: openssl-pkcs11.c:306 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "Fann %d certifikat på plats ”%s”\n" #: openssl-pkcs11.c:342 openssl-pkcs11.c:565 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "Misslyckades med att tolka PKCS#11 URI ”%s”\n" #: openssl-pkcs11.c:349 openssl-pkcs11.c:575 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "Misslyckades med att räkna upp PKCS#11-platser\n" #: openssl-pkcs11.c:383 openssl-pkcs11.c:617 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "Loggar in till PKCS#11-platsen ”%s”\n" #: openssl-pkcs11.c:393 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "Misslyckades med att hitta PKCS#11-cert ”%s”\n" #: openssl-pkcs11.c:401 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "Certifikat X.509-innehåll hämtas inte med libp11\n" #: openssl-pkcs11.c:412 openssl.c:713 msgid "Failed to install certificate in OpenSSL context\n" msgstr "Misslyckades med att installera certifikat i OpenSSL-kontext\n" #: openssl-pkcs11.c:458 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "Misslyckades med att räkna upp nycklar i PKCS#11-platsen ”%s”\n" #: openssl-pkcs11.c:464 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "Fann %d nycklar på plats ”%s”\n" #: openssl-pkcs11.c:497 msgid "Certificate has no public key\n" msgstr "Certifikatet har inga öppna nycklar\n" #: openssl-pkcs11.c:503 openssl-pkcs11.c:526 msgid "Certificate does not match private key\n" msgstr "Certifikatet stämmer inte överens med privat nyckel\n" #: openssl-pkcs11.c:506 msgid "Checking EC key matches cert\n" msgstr "Kontrollerar att EC-nyckel stämmer överens med cert\n" #: openssl-pkcs11.c:510 msgid "Failed to allocate signature buffer\n" msgstr "Misslyckades med att allokera signaturbuffert\n" #: openssl-pkcs11.c:520 msgid "Failed to sign dummy data to validate EC key\n" msgstr "Misslyckades med att signera attrappdata för att validera EC-nyckel\n" #: openssl-pkcs11.c:638 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "Misslyckades med att hitta PKCS#11-nyckel ”%s”\n" #: openssl-pkcs11.c:649 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "Misslyckades med instansiera privat nyckel från PKCS#11\n" #: openssl-pkcs11.c:678 msgid "Add key from PKCS#11 failed\n" msgstr "Misslyckades med att lägga till nyckel från PKCS#11\n" #: openssl-pkcs11.c:710 openssl-pkcs11.c:716 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "Denna version av OpenConnect byggdes utan PKCS#11-stöd\n" #: openssl.c:147 msgid "Failed to write to SSL socket\n" msgstr "Misslyckades med att skriva till SSL-uttag (socket)\n" #: openssl.c:197 openssl.c:263 msgid "Failed to read from SSL socket\n" msgstr "Misslyckades med att läsa från SSL-uttag (socket)\n" #: openssl.c:292 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "SSL-läsfel %d (server stängde antagligen anslutning), återansluter.\n" #: openssl.c:317 #, c-format msgid "SSL_write failed: %d\n" msgstr "SSL_write misslyckades: %d\n" #: openssl.c:389 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "Ohanterad SSL UI-begärantyp %d\n" #: openssl.c:465 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "PEM-lösenord för långt (%d >= %d)\n" #: openssl.c:498 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Extra certifikat från %s: ”%s”\n" #: openssl.c:548 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Misslyckades med att tolka PKCS#12 (se fel ovan)\n" #: openssl.c:563 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS#12-filen innehöll inget certifikat!\n" #: openssl.c:572 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS#12 innehöll inga privata nycklar!\n" #: openssl.c:577 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:600 msgid "Can't load TPM engine.\n" msgstr "Kan inte läsa in TPM-motor.\n" #: openssl.c:606 msgid "Failed to init TPM engine\n" msgstr "Misslyckades med att initiera TPM-motor\n" #: openssl.c:616 msgid "Failed to set TPM SRK password\n" msgstr "Misslyckades med att sätta TPM SRK-lösenord\n" #: openssl.c:630 msgid "Failed to load TPM private key\n" msgstr "Misslyckades med att läsa in TPM-privat nyckel\n" #: openssl.c:636 msgid "Add key from TPM failed\n" msgstr "Misslyckades med att lägga till nyckel från TPM\n" #: openssl.c:687 openssl.c:835 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Misslyckades med att öppna certifikatfil %s: %s\n" #: openssl.c:697 msgid "Loading certificate failed\n" msgstr "Misslyckades med att läsa in certifikat\n" #: openssl.c:735 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "Misslyckades med att bearbeta certifikat som stöds. Försöker ändå…\n" #: openssl.c:748 msgid "PEM file" msgstr "PEM-fil" #: openssl.c:777 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Misslyckades med att skapa BIO för nyckellagringsobjektet ”%s”\n" #: openssl.c:802 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Misslyckades med att läsa in privat nyckel (fel lösenfras)\n" #: openssl.c:808 msgid "Loading private key failed (see above errors)\n" msgstr "Inläsning av privat nyckel misslyckades (se fel ovan)\n" #: openssl.c:858 msgid "Failed to load X509 certificate from keystore\n" msgstr "Misslyckades med att läsa in X509-certifikat från nyckellager\n" #: openssl.c:864 msgid "Failed to use X509 certificate from keystore\n" msgstr "Misslyckades med att använda X509-certifikat från nyckellager\n" #: openssl.c:896 msgid "Failed to use private key from keystore\n" msgstr "Misslyckades med att använda privat nyckel från nyckellager\n" #: openssl.c:912 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Misslyckades med att öppna privat nyckelfil %s: %s\n" #: openssl.c:936 openssl.c:951 openssl.c:972 openssl.c:1038 msgid "Loading private key failed\n" msgstr "Misslyckades med att läsa in privat nyckel\n" #: openssl.c:1032 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "Misslyckades med att konvertera PKCS#8 till OpenSSL EVP_PKEY\n" #: openssl.c:1049 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Misslyckades med att identifiera privat nyckeltyp i ”%s\n" #: openssl.c:1203 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Matchade DNS-altname ”%s”\n" #: openssl.c:1210 #, c-format msgid "No match for altname '%s'\n" msgstr "Ingen match för altname ”%s”\n" #: openssl.c:1224 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "Certifikat har GEN_IPADD altname med påhittad längd %d\n" #: openssl.c:1235 openssl.c:1381 #, c-format msgid "Matched %s address '%s'\n" msgstr "Matchade %s adress ”%s”\n" #: openssl.c:1242 #, c-format msgid "No match for %s address '%s'\n" msgstr "Ingen match för %s adress ”%s”\n" #: openssl.c:1284 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "URI ”%s” har icke-tom sökväg, ignorerar\n" #: openssl.c:1289 #, c-format msgid "Matched URI '%s'\n" msgstr "Matchade URI ”%s”\n" #: openssl.c:1300 #, c-format msgid "No match for URI '%s'\n" msgstr "Ingen match för URI ”%s”\n" #: openssl.c:1315 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "Inget altnamn i motparts certifikat matchade ”%s”\n" #: openssl.c:1323 msgid "No subject name in peer cert!\n" msgstr "Inget ämnesnamn i motparts certifikat!\n" #: openssl.c:1343 msgid "Failed to parse subject name in peer cert\n" msgstr "Misslyckades med att tolka ämnesnamn i motparts certifikat\n" #: openssl.c:1350 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Motparts certifikat matchar ej ('%s' != '%s')\n" #: openssl.c:1355 openssl.c:1389 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Matchade motparts certifikat ämnesnamn ”%s”\n" #: openssl.c:1451 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Extra certifikat från cafile: ”%s”\n" #: openssl.c:1589 msgid "Error in client cert notAfter field\n" msgstr "Fel i klientcertifikat notAfter-fält\n" #: openssl.c:1602 msgid "" msgstr "" #: openssl.c:1655 msgid "Create TLSv1 CTX failed\n" msgstr "Misslyckades med att skapa TLSv1 CTX\n" #: openssl.c:1674 msgid "SSL certificate and key do not match\n" msgstr "SSL-certifikat och nyckel stämmer inte överens\n" #: openssl.c:1719 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Misslyckades med att läsa certifikat från CA-fil ”%s”\n" #: openssl.c:1752 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Misslyckades med att öppna CA-filen ”%s”\n" #: openssl.c:1812 msgid "SSL connection failure\n" msgstr "SSL-anslutning misslyckades\n" #: openssl.c:1973 msgid "Failed to calculate OATH HMAC\n" msgstr "Misslyckades med att beräknaOATH HMAC\n" #: script.c:130 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Förkasta dålig delning inkluderande: ”%s”\n" #: script.c:134 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Förkasta dålig delning exkluderande: ”%s”\n" #: script.c:507 script.c:555 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Misslyckades med att generera skript ”%s” för %s: %s\n" #: script.c:562 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "Skriptet ”%s” avslutades onormalt (%x)\n" #: script.c:570 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Skriptet ”%s” returnerade fel %d\n" #: ssl.c:108 msgid "Socket connect cancelled\n" msgstr "Uttagsanslutning (socket connect) avbruten\n" #: ssl.c:217 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "Misslyckades med att återansluta till proxy %s: %s\n" #: ssl.c:221 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "Misslyckades med att återansluta till värd %s: %s\n" #: ssl.c:289 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Proxy från libproxy: %s://%s:%d/\n" #: ssl.c:317 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "getaddrinfo misslyckades med värd '%s': %s\n" #: ssl.c:326 ssl.c:451 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "Återansluter till DynDNS-server med tidigare cachad IP-adress\n" #: ssl.c:341 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Försöker att ansluta till proxy %s%s%s:%s\n" #: ssl.c:342 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Försöker att ansluta till server %s%s%s:%s\n" #: ssl.c:362 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "Ansluten till %s%s%s:%s\n" #: ssl.c:374 msgid "Failed to allocate sockaddr storage\n" msgstr "Misslyckades med att allokera sockaddr-lagring\n" #: ssl.c:416 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "Misslyckades med att ansluta till %s%s%s:%s: %s\n" #: ssl.c:434 msgid "Forgetting non-functional previous peer address\n" msgstr "Glömmer icke-fungerande tidigare motpartsadress\n" #: ssl.c:446 #, c-format msgid "Failed to connect to host %s\n" msgstr "Misslyckades med att ansluta till värd %s\n" #: ssl.c:465 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "Återansluter till proxy %s\n" #: ssl.c:536 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:564 msgid "Could not obtain file system ID for passphrase\n" msgstr "Kunde inte hämta filsystems-ID för lösenfras\n" #: ssl.c:575 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "Misslyckades med att öppna privata nyckelfilen ”%s”: %s\n" #: ssl.c:603 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:694 msgid "No error" msgstr "Inget fel" #: ssl.c:695 msgid "Keystore locked" msgstr "Nyckellager låst" #: ssl.c:696 msgid "Keystore uninitialized" msgstr "Nyckellager oinitierat" #: ssl.c:697 msgid "System error" msgstr "Systemfel" #: ssl.c:698 msgid "Protocol error" msgstr "Protokollfel" #: ssl.c:699 msgid "Permission denied" msgstr "Tillstånd nekat" #: ssl.c:700 msgid "Key not found" msgstr "Nyckel inte funnen" #: ssl.c:701 msgid "Value corrupted" msgstr "Värde korrupt" #: ssl.c:702 msgid "Undefined action" msgstr "Odefinierad åtgärd" #: ssl.c:706 msgid "Wrong password" msgstr "Fel lösenord" #: ssl.c:707 msgid "Unknown error" msgstr "Okänt fel" #: ssl.c:896 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "openconnect_fopen_utf8() används med läge ”%s” som inte stöds\n" #: ssl.c:931 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "Okänd protokollfamilj %d. Kan inte skapa UDP-serveradress\n" #: ssl.c:950 msgid "Open UDP socket" msgstr "Öppna UDP-uttag (socket)" #: ssl.c:981 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "Okänd protokollfamilj %d. Kan inte skapa UDP-transport\n" #: ssl.c:989 msgid "Bind UDP socket" msgstr "Bind UDP-uttag (socket)" #: ssl.c:996 msgid "Connect UDP socket\n" msgstr "Anslut UDP-uttag (socket)\n" #: ssl.c:1034 msgid "Cookie is no longer valid, ending session\n" msgstr "Kaka inte längre giltig, avslutar session\n" #: ssl.c:1038 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "sömn %ds, återstående tidsgräns %ds\n" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "SSPI-token för stor (%ld byte)\n" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "Skickar SSPI-token på %lu byte\n" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "Misslyckades med att skicka SSPI-autentiseringstoken till proxy: %s\n" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "Misslyckades med att ta emot SSPI-autentiseringstoken från proxy: %s\n" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "SOCKS-server rapporterade misslyckat SSPI-kontext\n" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "Okänd SAPI-status svar (0x%02x) från SOCKS-server\n" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "Erhöll SSPI-token på %lu byte: %02x %02x %02x %02x\n" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "QueryContextAttributes() misslyckades: %lx\n" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "EncryptMessage() misslyckades: %lx\n" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "EncryptMessage() resultat för stort (%lu + %lu + %lu)\n" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "Skickar SSPI-skyddsöverenskommelse på %u byte\n" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "Misslyckades med att skicka SSPI-skyddssvar till proxy: %s\n" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "Misslyckades med att erhålla SSPI-skyddssvar från proxy: %s\n" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "Erhöll SSPI-skyddssvar på %d byte: %02x %02x %02x %02x\n" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "DecryptMessage misslyckades: %lx\n" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "Ogiltig SSPI-skyddssvar från proxy (%lu byte)\n" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "Ange användaruppgifter för att låsa upp programvarutoken." #: stoken.c:82 msgid "Device ID:" msgstr "Enhets-ID:" #: stoken.c:89 msgid "Password:" msgstr "Lösenord:" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "Användare förbigången av programvarutoken.\n" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "Alla fält krävs, prova igen.\n" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "Allmänt fel i libstoken.\n" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "Fel enhets-ID eller lösenord, prova igen.\n" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "Programvarutokeninitiering lyckades.\n" #: stoken.c:185 msgid "Enter software token PIN." msgstr "Ange PIN för programvarutoken." #: stoken.c:189 msgid "PIN:" msgstr "PIN:" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "Ogiltigt PIN-format, prova igen.\n" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "Genererar RSA-tokenkod\n" #: tun-win32.c:76 msgid "Error accessing registry key for network adapters\n" msgstr "Fel vid åtkomst av registernyckel för nätverksadapters\n" #: tun-win32.c:139 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "Ignorerar ej matchande TAP-gränssnitt ”%s”\n" #: tun-win32.c:154 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "Inga Windows-TAP-adaptrar hittades. Är drivrutinen installerad?\n" #: tun-win32.c:186 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" "GetAdapterIndex() misslyckades: %s\n" "Faller tillbaka till GetAdaptersInfo()\n" #: tun-win32.c:200 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "GetAdaptersInfo() misslyckades: %s\n" #: tun-win32.c:231 #, c-format msgid "Failed to open %s\n" msgstr "Misslyckades med att öppna %s\n" #: tun-win32.c:236 #, c-format msgid "Opened tun device %s\n" msgstr "Öppnade tun-enhet %s\n" #: tun-win32.c:244 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Misslyckades med att erhålla TAP-drivrutin i version: %s\n" #: tun-win32.c:250 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "Fel: TAP-Windows drivrutin v9.9 eller större krävs (fann %ld.%ld)\n" #: tun-win32.c:271 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Misslyckades med att ange TAP IP-adress: %s\n" #: tun-win32.c:283 tun-win32.c:406 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Misslyckades med att sätta TAP mediastatus: %s\n" #: tun-win32.c:316 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "TAP-enhet avslutade anslutning. Kopplar från.\n" #: tun-win32.c:321 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Misslyckades med att läsa från TAP-enhet: %s\n" #: tun-win32.c:335 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Misslyckades med att läsa från TAP-enhet: %s\n" #: tun-win32.c:358 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "Skrev %ld byte till tun\n" #: tun-win32.c:368 msgid "Waiting for tun write...\n" msgstr "Väntar på tun-skrivning…\n" #: tun-win32.c:371 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "Skrev %ld byte till tun efter väntan\n" #: tun-win32.c:378 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Misslyckades med att skriva till TAP-enhet: %s\n" #: tun-win32.c:423 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "Att generera tunnelskript stöds ännu inte på Windows\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Kunde inte öppna /dev/tun för plumbing" #: tun.c:92 msgid "Can't push IP" msgstr "Kan inte trycka IP" #: tun.c:102 msgid "Can't set ifname" msgstr "Kan inte sätta ifname" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "Kan inte öppna %s: %s" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Kan inte plumb %s för IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "öppna /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Misslyckades med att skapa ny tun" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" "Misslyckades med att stoppa tun-fildeskriptor i förkasta-meddelande-läge" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "tun-enhet stöds ej på denna plattform\n" #: tun.c:205 msgid "open net" msgstr "öppna net" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Misslyckades med att öppna tun-enhet: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "Misslyckades med att binda lokal tun-enhet (TUNSETIFF): %s\n" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" "För att konfigurera lokalt nätverk måste openconnect köras som root\n" "Se http://www.infradead.org/openconnect/nonroot.html för mer information\n" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "Ogiltigt gränssnittsnamn '%s', måste matcha ”utun%%d” eller ”tun%%d”\n" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "Misslyckades med att öppna SYSPROTO_CONTROL-uttag (socket): %s\n" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "Misslyckades med att fråga utun control id: %s\n" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "Misslyckades med att allokera enhetsnamn för utun\n" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "Misslyckades med att ansluta enhet för utun: %s\n" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Ogiltigt gränssnittsnamn ”%s”, måste matcha ”tun%%d”\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Kan inte öppna ”%s”: %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:479 #, c-format msgid "socketpair failed: %s\n" msgstr "socketpair misslyckades: %s\n" #: tun.c:484 #, c-format msgid "fork failed: %s\n" msgstr "gren (fork) misslyckades: %s\n" #: tun.c:488 msgid "setpgid" msgstr "setpgid" #: tun.c:493 msgid "execl" msgstr "execl" #: tun.c:498 msgid "(script)" msgstr "(skript)" #: tun.c:566 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Misslyckades med att skriva inkommande paket: %s\n" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "Misslyckades med att öppna %s: %s\n" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "Misslyckades med fstat() %s: %s\n" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Misslyckades med att allokera %d byte för %s\n" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "Misslyckades med att läsa %s: %s\n" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Behandlar värd ”%s” som ett rått värdnamn\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Misslyckades med SHA1 på existerande fil\n" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "XML-konfigurationsfil SHA1: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Misslyckades med att tolka XML-konfigurationsfilen %s\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Värd ”%s” har adress ”%s”\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Värd ”%s” har UserGroup ”%s”\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "Värd ”%s” inte listad i konfiguration, behandlar som rått värdnamn\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "Misslyckades med att skicka ”%s” till miniprogrammet ykneo-oath: %s\n" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "Ogiltigt kort svar till %s från miniprogrammet ykneo-oath\n" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "Misslyckades med svar till ”%s”: %04x\n" #: yubikey.c:174 msgid "select applet command" msgstr "välj kommando för miniprogram" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "Okänt svar från miniprogrammet ykneo-oath\n" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "Hitta miniprogrammet ykneo-oath v%d.%d.%d.\n" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "PIN krävs för miniprogrammet Yubikey OATH" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "Yubikey PIN:" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "Misslyckades med att beräkna Yubikey olåst svar\n" #: yubikey.c:274 msgid "unlock command" msgstr "låsa upp-kommando" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "Provar teckentrunkerad PBKBF2-variant av Yubikey PIN\n" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "Misslyckades med att etablera PC/SC-kontext: %s\n" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "Etablerade PC/SC-kontext\n" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "Misslyckades med att fråga läslista: %s\n" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "Misslyckades med att ansluta till PC-/SC-läsare ”%s”: %s\n" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "Anslöt PC-/SC-läsare ”%s”\n" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "Misslyckades med att erhålla exklusiv åtkomst till läsaren ”%s”: %s\n" #: yubikey.c:412 msgid "list keys command" msgstr "lista nyckelkommando" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "Fann %s/%s nyckel ”%s” på ”%s”\n" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "Token ”%s” fanns inte på Yubikey ”%s”. Letar efter annan Yubikey…\n" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "Server förkastar Yubikey-token, växlar till manuellt angiven\n" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "Genererar Yubikey-tokenkod\n" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "Misslyckades med att erhålla exklusiv åtkomst till Yubi %s\n" #: yubikey.c:619 msgid "calculate command" msgstr "kommandot beräkna" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "Okänt svar från Yubikey under generering av tokenkod\n" openconnect-8.05/po/da.po0000664000076400007640000040217313470043037017107 0ustar00dwoodhoudwoodhou00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2019-05-18 10:44-0700\n" "PO-Revision-Date: 2011-09-22 22:31+0000\n" "Last-Translator: FULL NAME \n" "Language-Team: Danish (http://www.transifex.net/projects/p/meego/team/da/)\n" "Language: da\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1)\n" #: auth-globalprotect.c:108 #, c-format msgid "" "SAML login is required via %s to this URL:\n" "\t%s" msgstr "" "SAML-login er krævet via %s til denne URL:\n" "\t%s" #: auth-globalprotect.c:110 msgid "Please enter your username and password" msgstr "Indtast brugernavn og adgangskode" #: auth-globalprotect.c:119 msgid "Username" msgstr "Brugernavn" #: auth-globalprotect.c:134 msgid "Password" msgstr "Adgangskode" # Linket virker ikke, men mon ikke der er tale om dette: https://en.wikipedia.org/wiki/Challenge%E2%80%93response_authentication # Lader det være uoversat #: auth-globalprotect.c:181 msgid "Challenge: " msgstr "Challenge: " #: auth-globalprotect.c:260 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "GlobalProtect-login returnerede %s=%s (forventede %s)\n" #: auth-globalprotect.c:266 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "GlobalProtect-login returnerede tom eller manglende %s\n" #: auth-globalprotect.c:272 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "GlobalProtect-login returnerede %s=%s\n" #: auth-globalprotect.c:315 msgid "Please select GlobalProtect gateway." msgstr "Vælg GlobalProtect-gateway." #: auth-globalprotect.c:325 msgid "GATEWAY:" msgstr "GATEWAY:" #. each entry looks like Label #: auth-globalprotect.c:379 #, c-format msgid "%d gateway servers available:\n" msgstr "%d tilgængelige gatewayservere:\n" #: auth-globalprotect.c:400 #, c-format msgid " %s (%s)\n" msgstr " %s (%s)\n" #: auth-globalprotect.c:484 auth-juniper.c:730 auth.c:669 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "Kunne ikke danne OTP-symbolkode; deaktiverer symbol\n" #: auth-globalprotect.c:584 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "Serveren er hverken en GlobalProtect-portal eller -gateway.\n" #: auth-globalprotect.c:636 oncp.c:1266 msgid "Logout failed.\n" msgstr "Logout mislykkedes.\n" # Punktum i den tilsvarende med "mislykkedes" #: auth-globalprotect.c:638 msgid "Logout successful\n" msgstr "Logout lykkedes.\n" #: auth-juniper.c:142 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "Ignorerer ukendt indsend-element \"%s\" i formular\n" #: auth-juniper.c:153 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "Ignorerer ukendt inputtype \"%s\" i formular\n" #: auth-juniper.c:163 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "Kasserer duplikeret indstilling \"%s\"\n" #: auth-juniper.c:236 auth.c:408 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Kan ikke håndtere formularmetode=\"%s\", handling=\"%s\"\n" #: auth-juniper.c:267 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "Ukendt tekstområdefelt: \"%s\"\n" #: auth-juniper.c:337 msgid "TNCC support not implemented yet on Windows\n" msgstr "Understøttelse af TNCC i Windows er endnu ikke implementeret\n" #: auth-juniper.c:359 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "Ingen DSPREAUTH-cookie; forsøger ikke TNCC\n" #: auth-juniper.c:397 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "Kunne ikke køre TNCC-skript %s: %s\n" #: auth-juniper.c:411 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "Kunne ikke allokere hukommelse til kommunikation med TNCC\n" #: auth-juniper.c:418 msgid "Failed to send start command to TNCC\n" msgstr "Kunne ikke sende startkommando til TNCC\n" #: auth-juniper.c:425 msgid "Sent start; waiting for response from TNCC\n" msgstr "Sendte start; venter på svar fra TNCC\n" #: auth-juniper.c:432 msgid "Failed to read response from TNCC\n" msgstr "Kunne ikke læse svar fra TNCC\n" #: auth-juniper.c:439 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "Modtog mislykket %s-svar fra TNCC\n" #: auth-juniper.c:445 msgid "TNCC response 200 OK\n" msgstr "TNCC-svar 200 OK\n" #: auth-juniper.c:452 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "TNNC-svarets anden linje: “%s”\n" #: auth-juniper.c:461 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "Fik ny DSPREAUTH-cookie fra TNCC: %s\n" #: auth-juniper.c:474 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" "Uventet linje, som ikke er tom, fra TNNC efter DSPREAUTH-cookie: “%s”\n" #: auth-juniper.c:481 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:650 msgid "Failed to parse HTML document\n" msgstr "Kunne ikke fortolke HTML-dokument\n" #: auth-juniper.c:667 msgid "Failed to find or parse web form in login page\n" msgstr "Kunne ikke finde eller fortolke webformular på loginside\n" #: auth-juniper.c:675 msgid "Encountered form with no ID\n" msgstr "Stødte på formular uden ID\n" #: auth-juniper.c:713 #, c-format msgid "Unknown form ID '%s'\n" msgstr "Ukendt formular-ID \"%s\"\n" #: auth-juniper.c:716 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "Dumper ukendt HTML-formular:\n" #: auth.c:96 msgid "Form choice has no name\n" msgstr "Formularvalg har intet navn\n" #: auth.c:181 #, c-format msgid "name %s not input\n" msgstr "navnet %s er ikke input\n" #: auth.c:188 msgid "No input type in form\n" msgstr "Ingen inputtype i formular\n" #: auth.c:200 msgid "No input name in form\n" msgstr "Intet inputnavn i formular\n" #: auth.c:230 #, c-format msgid "Unknown input type %s in form\n" msgstr "Ukendt inputtype %s i formular\n" #: auth.c:540 gpst.c:214 msgid "Empty response from server\n" msgstr "Tomt svar fra serveren\n" #: auth.c:551 gpst.c:289 msgid "Failed to parse server response\n" msgstr "Kunne ikke fortolke serverens svar\n" #: auth.c:553 gpst.c:291 #, c-format msgid "Response was:%s\n" msgstr "Svaret var: %s\n" #: auth.c:575 msgid "Received when not expected.\n" msgstr "Modtog , selvom det ikke forventedes.\n" #: auth.c:603 msgid "XML response has no \"auth\" node\n" msgstr "XML-svar har ingen \"auth\"-knude\n" #: auth.c:636 msgid "Asked for password but '--no-passwd' set\n" msgstr "Bad om adgangskode, men \"--no-passwd\" angivet\n" #: auth.c:925 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "Downloader ikke XML-profil, fordi SHA1 allerede matcher\n" #: auth.c:931 cstp.c:335 http.c:916 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Kunne ikke åbne HTTPS-forbindelse til %s\n" #: auth.c:952 msgid "Failed to send GET request for new config\n" msgstr "Kunne ikke sende GET-forespørgsel for ny konfiguration\n" #: auth.c:976 msgid "Downloaded config file did not match intended SHA1\n" msgstr "Downloadet konfigurationsfil matchede ikke tilsigtet SHA1\n" #: auth.c:981 msgid "Downloaded new XML profile\n" msgstr "Downloadede ny XML-profil\n" #: auth.c:992 auth.c:1044 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" "Fejl: Kørsel af \"Cisco Secure Desktop trojan\" er endnu ikke understøttet " "på denne platform\n" #: auth.c:1003 mainloop.c:144 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "Kunne ikke indstille gid %ld: %s\n" #: auth.c:1010 mainloop.c:151 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "Kunne ikke angive grupper til %ld: %s\n" #: auth.c:1017 mainloop.c:158 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "Kunne ikke indstille uid %ld: %s\n" #: auth.c:1024 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "Ugyldigt bruger-uid=%ld: %s\n" #: auth.c:1031 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Kunne ikke skifte til CSD-hjemmemappe \"%s\": %s\n" #: auth.c:1053 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Fejl: Serveren bad os om at køre CSD-værtsskanning.\n" "Du skal angive et passende argument til --csd-wrapper.\n" #: auth.c:1060 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Fejl: Serveren bad os om at downloade og køre en \"Cisco Secure Desktop " "trojan\".\n" "Af sikkerhedsgrunde er denne funktion som standard deaktiveret, så du vil " "måske aktivere den.\n" #: auth.c:1067 msgid "Trying to run Linux CSD trojan script.\n" msgstr "Prøver at køre Linux CSD-trojanskript.\n" #: auth.c:1094 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "Den midlertidige mappe \"%s\" er skrivebeskyttet: %s\n" #: auth.c:1102 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Kunne ikke åbne midlertidig CSD-skriptfil: %s\n" #: auth.c:1111 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Kunne ikke skrive midlertidig CSD-skriptfil: %s\n" #: auth.c:1141 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Advarsel: Du kører usikker CSD-kode med administratorrettigheder (root)\n" "\t Brug kommandolinjetilvalget \"--csd-user\"\n" #: auth.c:1189 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Kunne ikke køre CSD-skriptet %s\n" #: auth.c:1221 msgid "Unknown response from server\n" msgstr "Ukendt svar fra serveren\n" #: auth.c:1342 msgid "Server requested SSL client certificate after one was provided\n" msgstr "Serveren bad om SSL-klientcertifikat, efter en var leveret \n" #: auth.c:1346 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" "Serveren bad om SSL-klientcertifikat; der var ikke konfigureret noget\n" #: auth.c:1362 msgid "XML POST enabled\n" msgstr "XML POST aktiveret\n" #: auth.c:1405 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Opdaterer %s efter 1 sekund ...\n" #: compat.c:207 #, c-format msgid "(error 0x%lx)" msgstr "(fejl 0x%lx)" #: compat.c:210 msgid "(Error while describing error!)" msgstr "(Der opstod en fejl under beskrivelsen af en anden fejl!)" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "FEJL: Kan ikke initialisere sokler\n" #: cstp.c:112 gpst.c:341 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:134 gpst.c:360 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:281 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" "KRITISK FEJL: DTLS-hovedhemmelighed er ikke initialiseret. Rapportér " "venligst dette.\n" #: cstp.c:312 msgid "Error creating HTTPS CONNECT request\n" msgstr "Der opstod en fejl under oprettelse af HTTPS CONNECT-forespørgsel\n" #: cstp.c:328 http.c:384 msgid "Error fetching HTTPS response\n" msgstr "Der opstod en fejl under indhentning af HTTPS-svar\n" #: cstp.c:355 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "VPN-tjeneste utilgængelig; årsag: %s\n" #: cstp.c:360 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Modtog upassende HTTP CONNECT-svar: %s\n" #: cstp.c:367 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Modtog CONNECT-svar: %s\n" #: cstp.c:396 cstp.c:404 msgid "No memory for options\n" msgstr "Ingen hukommelse til indstillinger\n" #: cstp.c:413 http.c:444 msgid "" msgstr "" #: cstp.c:433 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Session-ID er ikke 64 tegn; er: \"%s\"\n" #: cstp.c:450 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "X-DTLS-Session-ID er ugyldig; er: \"%s\"\n" #: cstp.c:468 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "Ukendt DTLS-Content-kodning %s\n" #: cstp.c:510 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Ukendt CSTP-Content-kodning %s\n" #: cstp.c:585 msgid "No MTU received. Aborting\n" msgstr "Ingen MTU modtaget. Afbryder\n" #: cstp.c:593 gpst.c:641 msgid "No IP address received. Aborting\n" msgstr "Ingen IP-adresse modtaget. Afbryder\n" #: cstp.c:599 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "IPv6-konfiguration modtaget, men MTU %d er for lille.\n" #: cstp.c:605 gpst.c:648 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "" "Genoprettelse af forbindelse gav en anden, forældet IP-adresse (%s != %s)\n" #: cstp.c:614 gpst.c:657 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" "Genoprettelse af forbindelse gav en anden, forældet IP-netmaske (%s != %s)\n" #: cstp.c:622 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Genoprettelse af forbindelse gav en anden IPv6-adresse (%s != %s)\n" #: cstp.c:630 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Genoprettelse af forbindelse gav en anden IPv6-netmaske (%s != %s)\n" #: cstp.c:638 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP forbundet. DPD %d, Keepalive %d\n" #: cstp.c:640 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "CSTP Ciphersuite: %s\n" #: cstp.c:702 msgid "Compression setup failed\n" msgstr "Opsætning af komprimering mislykkedes\n" #: cstp.c:719 msgid "Allocation of deflate buffer failed\n" msgstr "Tildeling af buffer til pakning mislykkedes\n" #: cstp.c:781 msgid "inflate failed\n" msgstr "udpakning mislykkedes\n" #: cstp.c:804 #, c-format msgid "LZS decompression failed: %s\n" msgstr "LZS-dekomprimering mislykkedes: %s\n" #: cstp.c:817 msgid "LZ4 decompression failed\n" msgstr "LZS-dekomprimering mislykkedes\n" #: cstp.c:824 #, c-format msgid "Unknown compression type %d\n" msgstr "Ukendt komprimeringstype %d\n" #: cstp.c:829 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "Modtog %s komprimeret datapakke på %d byte (var %d)\n" #: cstp.c:849 #, c-format msgid "deflate failed %d\n" msgstr "pakning mislykkedes %d\n" #: cstp.c:922 dtls.c:281 dtls.c:740 esp.c:129 gpst.c:1042 mainloop.c:69 #: oncp.c:914 msgid "Allocation failed\n" msgstr "Tildeling mislykkedes\n" #: cstp.c:933 gpst.c:1055 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "Kort pakke modtaget (%d byte)\n" #: cstp.c:946 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Uventet pakkelængde. SSL_read returnerede %d, men pakken er\n" #: cstp.c:960 msgid "Got CSTP DPD request\n" msgstr "Modtog CSTP DPD-forespørgsel\n" #: cstp.c:966 msgid "Got CSTP DPD response\n" msgstr "Modtog CSTP DPD-svar\n" #: cstp.c:971 msgid "Got CSTP Keepalive\n" msgstr "Modtog CSTP Keepalive\n" #: cstp.c:976 oncp.c:1003 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Modtog ukomprimeret datapakke på %d byte\n" #: cstp.c:993 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Modtog serverafbrydelse: %02x \"%s\"\n" #: cstp.c:996 msgid "Received server disconnect\n" msgstr "Modtog serverafbrydelse\n" #: cstp.c:1004 msgid "Compressed packet received in !deflate mode\n" msgstr "Komprimeret pakke modtaget i !deflate-tilstand\n" #: cstp.c:1013 msgid "received server terminate packet\n" msgstr "modtog serverafbrydelsespakke\n" #: cstp.c:1020 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Ukendt pakke %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1063 gpst.c:1142 oncp.c:1121 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL skrev for få byte! Bad om %d, sendte %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1091 oncp.c:1155 msgid "CSTP rekey due\n" msgstr "CSTP rekey forfalden\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1098 oncp.c:1162 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Genforhandling mislykkedes; forsøger ny-tunnel\n" #: cstp.c:1109 oncp.c:1173 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "CSTP Dead Peer Detection registrerede død peer!\n" #: cstp.c:1113 gpst.c:1166 oncp.c:1091 oncp.c:1177 msgid "Reconnect failed\n" msgstr "Genoprettelse af forbindelse mislykkedes\n" #: cstp.c:1129 oncp.c:1193 msgid "Send CSTP DPD\n" msgstr "Send CSTP DPD\n" #: cstp.c:1141 oncp.c:1204 msgid "Send CSTP Keepalive\n" msgstr "Send CSTP Keepalive\n" #: cstp.c:1166 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "Sender komprimeret datapakke på %d byte (var %d)\n" #: cstp.c:1177 oncp.c:1238 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Sender ukomprimeret datapakke på %d byte\n" #: cstp.c:1216 #, c-format msgid "Send BYE packet: %s\n" msgstr "Send BYE-pakke: %s\n" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "Forsøger Digest-godkendelse til proxy\n" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "Forsøger Digest-godkendelse til serveren \"%s\"\n" #: dtls.c:113 msgid "DTLS connection attempted with an existing fd\n" msgstr "DLTS-forbindelse forsøgt med en eksisterende fd\n" #: dtls.c:119 msgid "No DTLS address\n" msgstr "Ingen DTLS-adresse\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:126 msgid "Server offered no DTLS cipher option\n" msgstr "" "Serveren tilbød ingen mulighed for en DTLS-krypteringsalgoritme\n" "\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:133 msgid "No DTLS when connected via proxy\n" msgstr "Ingen DTLS når forbundet gennem proxy\n" #: dtls.c:200 #, c-format msgid "DTLS option %s : %s\n" msgstr "DTLS-indstilling %s : %s\n" #: dtls.c:239 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS initialiseret. DPD %d, Keepalive %d\n" #: dtls.c:265 msgid "Attempt new DTLS connection\n" msgstr "Forsøg ny DTLS-forbindelse\n" #: dtls.c:292 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Modtog DTLS-pakke 0x%02x på %d byte\n" #: dtls.c:306 msgid "Got DTLS DPD request\n" msgstr "Modtog DTLS DPD-forespørgsel\n" #: dtls.c:312 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Kunne ikke sende DPD-svar; forvent afbrydelse\n" #: dtls.c:316 msgid "Got DTLS DPD response\n" msgstr "Modtog DTLS DPD-svar\n" #: dtls.c:320 msgid "Got DTLS Keepalive\n" msgstr "Modtog DTLS Keepalive\n" #: dtls.c:326 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "Modtog komprimeret DTLS-pakke, selvom komprimering ikke er aktiveret\n" #: dtls.c:334 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Ukendt DTLS-pakketype %02x, længde %d\n" #: dtls.c:356 msgid "DTLS rekey due\n" msgstr "DTLS rekey forfalden\n" #: dtls.c:363 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "DTLS-genforhandling mislykkedes; genopretter forbindelse.\n" #: dtls.c:372 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "DTLS Dead Peer Detection registrerede død peer!\n" #: dtls.c:378 msgid "Send DTLS DPD\n" msgstr "Send DTLS DPD\n" #: dtls.c:383 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Kunne ikke sende DPD-forespørgsel; forvent afbrydelse\n" #: dtls.c:396 msgid "Send DTLS Keepalive\n" msgstr "Send DTLS Keepalive\n" #: dtls.c:401 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Kunne ikke sende keepalive-forespørgsel; forvent afbrydelse\n" #: dtls.c:432 tun.c:541 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Ukendt pakke (længde %d) modtaget: %02x %02x %02x %02x...\n" #: dtls.c:439 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "TOS denne: %d, TOS seneste: %d\n" #: dtls.c:443 msgid "UDP setsockopt" msgstr "UDP setsockopt" #: dtls.c:474 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "DTLS modtog skrivefejl %d. Vender tilbage til SSL\n" #: dtls.c:488 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "DTLS modtog skrivefejl: %s. Vender tilbage til SSL\n" #: dtls.c:503 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "Sendte DTLS-pakke på %d byte; DTLS-send returnerede %d\n" #: dtls.c:531 #, c-format msgid "Initiating IPv4 MTU detection (min=%d, max=%d)\n" msgstr "Påbegynder IPv4 MTU-registrering (min=%d, maks=%d)\n" #: dtls.c:551 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "For lang tid i MTU-opdagelsesløkke; antager forhandlet MTU.\n" #: dtls.c:555 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "For lang tid i MTU-opdagelsesløkke; MTU sat til %d.\n" #: dtls.c:564 #, c-format msgid "Sending MTU DPD probe (%u bytes, min=%u, max=%u)\n" msgstr "Sender MTU DPD-sonde (%u byte, min=%u, maks=%u)\n" #: dtls.c:568 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "Kunne ikke sende DPD-forespørgsel (%d %d)\n" #: dtls.c:582 dtls.c:690 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "Modtog uventet pakke (%.2x) i MTU-registrering; springer over.\n" #: dtls.c:594 #, c-format msgid "Timeout while waiting for DPD response; trying %d\n" msgstr "Tidsgrænse nået, mens der blev ventet på DPD-svar; prøver %d\n" #: dtls.c:601 dtls.c:682 msgid "Timeout while waiting for DPD response; resending probe.\n" msgstr "Tidsgrænse nået, mens der blev ventet på DPD-svar; gensender sonde.\n" #: dtls.c:608 dtls.c:709 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "Modtagelse af DPD-forespørgsel mislykkedes (%d)\n" #: dtls.c:613 #, c-format msgid "Received MTU DPD probe (%u bytes of %u)\n" msgstr "Modtog MTU DPD-sonde (%u byte of %u)\n" #: dtls.c:651 msgid "Initiating IPv6 MTU detection\n" msgstr "Påbegynder IPv6 MTU-registrering\n" #: dtls.c:666 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "Sender MTU DPD-sonde (%u byte)\n" #: dtls.c:670 #, c-format msgid "Failed to send DPD request (%d)\n" msgstr "Kunne ikke sende DPD-forespørgsel (%d)\n" #: dtls.c:695 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "Modtog MTU DPD-sonde (%u byte)\n" #: dtls.c:759 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "Opdagede MTU af %d byte (var %d)\n" #: dtls.c:762 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "Ingen ændring i MTU efter registrering (var %d)\n" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "Accepterer forventet ESP-pakke med sekvens %u\n" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" "Accepterer senere-end-forventet ESP-pakke med sekvens %u (forventede " "%)\n" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" "Forkaster gammel ESP-pakke med sekvens %u (forventede %)\n" "\n" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" "Tolererer gammel ESP-pakke med sekvens %u (forventede %)\n" "\n" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "Forkaster genafspillet ESP-pakke med sekvens %u\n" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "Tolererer genafspillet ESP-pakke med sekvens %u\n" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" "Accepterer ude-af-rækkefølge ESP-pakker med sekvens %u (forventede " "%)\n" #: esp.c:63 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "Parametre for %s ESP: SPI 0x%08x\n" #: esp.c:66 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "ESP-krypteringstype %s nøgle 0x%s\n" #: esp.c:69 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" "ESP-godkendelsestype %s nøgle 0x%s\n" "\n" #: esp.c:87 msgid "incoming" msgstr "indgående" #: esp.c:88 msgid "outgoing" msgstr "udgående" #: esp.c:90 esp.c:113 msgid "Send ESP probes\n" msgstr "Send ESP-sonder\n" #: esp.c:138 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "Modtog ESP-pakke på %d byte\n" #: esp.c:155 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "Modtog ESP-pakke fra gammel SPI 0x%x, sekvens %u\n" #: esp.c:161 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "Modtog ESP-pakke med ugyldig SPI 0x%08x\n" #: esp.c:174 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "Modtog ESP-pakke med ikke-genkendt nyttelasttype %02x\n" #: esp.c:181 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "Ugyldig udfyldningslængde %02x i ESP\n" #: esp.c:193 msgid "Invalid padding bytes in ESP\n" msgstr "Ugyldig udfyldningsbyte i ESP\n" #: esp.c:202 msgid "ESP session established with server\n" msgstr "ESP-session oprettet med server\n" #: esp.c:213 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "Kunne ikke allokere hukommelse til dekryptering af ESP-pakke\n" #: esp.c:219 msgid "LZO decompression of ESP packet failed\n" msgstr "LZO-dekomprimering af ESP-pakke mislykkedes\n" #: esp.c:225 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "LZO dekomprimerede %d byte til %d\n" #: esp.c:239 msgid "Rekey not implemented for ESP\n" msgstr "Rekey ikke implementeret for ESP\n" #: esp.c:243 msgid "ESP detected dead peer\n" msgstr "ESP opdagede død peer\n" #: esp.c:251 msgid "Send ESP probes for DPD\n" msgstr "Send ESP-sonde for DPD\n" #: esp.c:258 msgid "Keepalive not implemented for ESP\n" msgstr "Keepalive ikke implementeret for ESP\n" #: esp.c:278 #, c-format msgid "Failed to encrypt ESP packet: %d\n" msgstr "" #: esp.c:294 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:301 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "Kunne ikke sende ESP-pakke: %s\n" #: esp.c:307 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "Sendte ESP-pakke på %d byte\n" #: gnutls-dtls.c:190 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "Udskyder DTLS-genoptagelse, indtil CSTP genererer en PSK\n" #: gnutls-dtls.c:198 msgid "Failed to generate DTLS priority string\n" msgstr "Kunne ikke generere DTLS-prioritetsstreng\n" #: gnutls-dtls.c:207 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "Kunne ikke initialisere DTLS: %s\n" #: gnutls-dtls.c:216 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "Kunne ikke angive DTLS-prioritet: \"%s\": %s\n" #: gnutls-dtls.c:240 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "Kunne ikke allokere legitimationsoplysninger: %s\n" #: gnutls-dtls.c:253 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "Kunne ikke generere DTLS-nøgle: %s\n" #: gnutls-dtls.c:267 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "Kunne ikke angive DTLS-nøgle: %s\n" #: gnutls-dtls.c:275 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "Kunne ikke angive DTLS PSK-legitimationsoplysninger: %s\n" #: gnutls-dtls.c:309 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Ukendte DTLS-parametre til forespurgt CipherSuite \"%s\"\n" #: gnutls-dtls.c:324 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "Kunne ikke angive DTLS-prioritet: %s\n" #: gnutls-dtls.c:345 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Kunne ikke angive DTLS-sessionsparametre: %s\n" #: gnutls-dtls.c:373 openssl-dtls.c:534 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "Peer MTU %d for lille til at tillade DTLS\n" #: gnutls-dtls.c:382 openssl-dtls.c:545 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "DTLS MTU reduceret til %d\n" #: gnutls-dtls.c:392 openssl-dtls.c:554 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" "Genoptagelse af DTLS-session mislykkedes; muligt MITM-angreb. Deaktiverer " "DTLS.\n" #: gnutls-dtls.c:405 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Kunne ikke angive DTLS MTU: %s\n" #: gnutls-dtls.c:416 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "Etablerede DTLS-forbindelse (med brug af GnuTLS). Ciphersuite %s.\n" #: gnutls-dtls.c:422 openssl-dtls.c:572 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "DTLS-forbindelseskomprimering med brug af %s.\n" #: gnutls-dtls.c:437 openssl-dtls.c:653 openssl-dtls.c:657 msgid "DTLS handshake timed out\n" msgstr "DTLS-genforhandling overskred tidsgrænsen\n" #: gnutls-dtls.c:440 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "DTLS-forhandling mislykkedes: %s\n" #: gnutls-dtls.c:444 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(Forhindrer en firewall dig i at sende UDP-pakker?)\n" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "Kunne ikke initialisere ESP-krypteringsalgoritme: %s\n" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "Kunne ikke initialisere ESP HMAC: %s\n" #: gnutls-esp.c:121 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "Kunne ikke generere tilfældige nøgler til ESP: %s\n" #: gnutls-esp.c:132 msgid "Failed to generate ESP IV\n" msgstr "" #: gnutls-esp.c:161 gnutls-esp.c:217 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "Kunne ikke beregne ESP-pakkers HMAC: %s\n" #: gnutls-esp.c:168 openssl-esp.c:192 msgid "Received ESP packet with invalid HMAC\n" msgstr "Modtog ESP-pakke med ugyldig HMAC\n" #: gnutls-esp.c:180 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "Dekryptering af ESP-pakke mislykkedes: %s\n" #: gnutls-esp.c:209 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "Kunne ikke kryptere ESP-pakke: %s\n" #: gnutls.c:95 openssl.c:154 msgid "SSL write cancelled\n" msgstr "SSL-skrivning afbrudt\n" #: gnutls.c:99 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "Kunne ikke skrive til SSL-sokkel: %s\n" #: gnutls.c:145 gnutls.c:237 openssl.c:204 openssl.c:271 msgid "SSL read cancelled\n" msgstr "SSL-læsning afbrudt\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:158 msgid "SSL socket closed uncleanly\n" msgstr "SSL-sokkel lukkede ikke ordentligt\n" #: gnutls.c:168 gnutls.c:246 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "Kunne ikke læse fra SSL-sokkel: %s\n" #: gnutls.c:266 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "SSL-læsefejl: %s; genopretter forbindelse.\n" #: gnutls.c:302 #, c-format msgid "SSL send failed: %s\n" msgstr "SSL-send mislykkedes: %s\n" #: gnutls.c:315 msgid "Could not extract expiration time of certificate\n" msgstr "Kunne ikke uddrage certifikatets udløbstidspunkt\n" #: gnutls.c:320 openssl.c:1592 msgid "Client certificate has expired at" msgstr "Klientcertifikatet udløb den" #: gnutls.c:322 openssl.c:1597 msgid "Client certificate expires soon at" msgstr "Klientcertifikatet udløber snart den" #: gnutls.c:371 openssl.c:771 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Kunne ikke indlæse elementet \"%s\" fra nøglelageret: %s\n" #: gnutls.c:384 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Kunne ikke åbne nøgle-/certifikatfilen %s: %s\n" #: gnutls.c:391 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Kunne ikke køre stat på nøgle-/certifikatfilen %s: %s\n" #: gnutls.c:400 msgid "Failed to allocate certificate buffer\n" msgstr "Kunne ikke allokere certifikatbuffer\n" #: gnutls.c:408 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Kunne ikke indlæse certifikat i hukommelsen: %s\n" #: gnutls.c:439 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Kunne ikke indstille PKCS#12-datastruktur: %s\n" #: gnutls.c:462 openssl.c:534 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Kunne ikke dekryptere PKCS#12-certifikatfilen\n" #: gnutls.c:466 openssl.c:537 msgid "Enter PKCS#12 pass phrase:" msgstr "Indtast PKCS#12-adgangsfrase:" #: gnutls.c:489 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Kunne ikke behandle PKCS#12-fil: %s\n" #: gnutls.c:501 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Kunne ikke indlæse PKCS#12-certifikatet: %s\n" #: gnutls.c:584 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Import af X509-certifikatet mislykkedes: %s\n" #: gnutls.c:594 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Angivelse af PKCS#11-certifikatet mislykkedes: %s\n" #: gnutls.c:628 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Kunne ikke initialisere MD5-hash: %s\n" #: gnutls.c:638 #, c-format msgid "MD5 hash error: %s\n" msgstr "Fejl i MD5-hash: %s\n" #: gnutls.c:696 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "Manglende DEK-info: teksthoved fra OpenSSL-krypteret nøgle\n" #: gnutls.c:703 msgid "Cannot determine PEM encryption type\n" msgstr "Kan ikke bestemme PEM-krypteringstype\n" #: gnutls.c:716 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Ikke-understøttet PEM-krypteringstype: %s\n" #: gnutls.c:741 gnutls.c:754 msgid "Invalid salt in encrypted PEM file\n" msgstr "Ugyldig \"salt\" i krypteret PEM-fil\n" #: gnutls.c:778 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Der opstod en fejl under base64-afkodning af krypteret PEM-fil: %s\n" #: gnutls.c:786 msgid "Encrypted PEM file too short\n" msgstr "Den krypterede PEM-fil er for kort\n" #: gnutls.c:814 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" "Kunne ikke initialisere krypteringsalgoritme til dekryptering af PEM-fil: " "%s\n" #: gnutls.c:825 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Kunne ikke dekryptere PEM-nøgle: %s\n" #: gnutls.c:877 msgid "Decrypting PEM key failed\n" msgstr "Dekryptering af PEM-nøgle mislykkedes\n" #: gnutls.c:881 gnutls.c:1405 openssl.c:458 msgid "Enter PEM pass phrase:" msgstr "Indtast PEM-adgangsfrase:" #: gnutls.c:942 msgid "This binary built without system key support\n" msgstr "Denne binærfil er bygget uden understøttelse af systemnøgle\n" #: gnutls.c:949 msgid "This binary built without PKCS#11 support\n" msgstr "Denne binærfil er bygget uden understøttelse af PKCS#11\n" #: gnutls.c:993 openssl-pkcs11.c:407 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Anvender PKCS#11-certifikatet %s\n" # Bruger ikke velegnet, da det kan fortolkes som navneord (user) #: gnutls.c:994 #, c-format msgid "Using system certificate %s\n" msgstr "Anvender systemcertifikatet %s\n" #: gnutls.c:1012 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Der opstod en fejl under indlæsning af certifikat fra PKCS#11: %s\n" #: gnutls.c:1013 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Der opstod en fejl under indlæsning af systemcertifikat: %s\n" #: gnutls.c:1024 openssl.c:827 #, c-format msgid "Using certificate file %s\n" msgstr "Anvender certifikatfilen %s\n" #: gnutls.c:1052 msgid "PKCS#11 file contained no certificate\n" msgstr "PKCS#11-filen indeholdt ikke noget certifikat\n" #: gnutls.c:1078 msgid "No certificate found in file" msgstr "Fandt ikke et certifikat i filen" #: gnutls.c:1083 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Indlæsning af certifikat mislykkedes: %s\n" #: gnutls.c:1098 #, c-format msgid "Using system key %s\n" msgstr "Anvender systemnøglen %s\n" #: gnutls.c:1103 gnutls.c:1271 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "" "Der opstod en fejl under initialisering af den private nøgles struktur: %s\n" #: gnutls.c:1114 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Der opstod en fejl under import af systemnøglen %s: %s\n" #: gnutls.c:1125 gnutls.c:1219 gnutls.c:1247 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "Prøver PKCS#11-nøgles URL %s\n" #: gnutls.c:1130 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "" "Der opstod en fejl under initialisering af PKCS#11-nøglens struktur: %s\n" #: gnutls.c:1259 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Der opstod en fejl under import af PKCS#11's URL %s: %s\n" #: gnutls.c:1266 openssl-pkcs11.c:644 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Anvender PKCS#11-nøglen %s\n" #: gnutls.c:1281 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" "Der opstod en fejl under import af PKCS#11-nøgle ind i privat nøglestruktur: " "%s\n" #: gnutls.c:1299 #, c-format msgid "Using private key file %s\n" msgstr "Anvender privat nøglefil %s\n" #: gnutls.c:1310 openssl.c:651 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Denne version af OpenConnect blev bygget uden understøttelse af TPM\n" #: gnutls.c:1326 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "Denne version af OpenConnect blev bygget uden understøttelse af TPM2\n" #: gnutls.c:1347 msgid "Failed to interpret PEM file\n" msgstr "Kunne ikke fortolke PEM-fil\n" #: gnutls.c:1366 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Kunne ikke indlæse PKCS#11 privat nøgle: %s\n" #: gnutls.c:1379 gnutls.c:1393 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Kunne ikke indlæse privat nøgle som PKCS#8: %s\n" #: gnutls.c:1401 gnutls.c:1434 openssl.c:1002 openssl.c:1012 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Kunne ikke dekryptere PKCS#8-certifikatfil\n" #: gnutls.c:1426 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Kunne ikke bestemme typen af den private nøgle %s\n" #: gnutls.c:1438 openssl.c:1008 msgid "Enter PKCS#8 pass phrase:" msgstr "Indtast PKCS#8-adgangsfrase:" #: gnutls.c:1454 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Kunne ikke få nøgle-ID: %s\n" #: gnutls.c:1499 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Der opstod en fejl under signering af testdata med privat nøgle: %s\n" #: gnutls.c:1514 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Der opstod en fejl under validering af signatur mod certifikatet: %s\n" #: gnutls.c:1539 msgid "No SSL certificate found to match private key\n" msgstr "Fandt ikke et SSL-certifikat, der matcher privat nøgle\n" #: gnutls.c:1551 openssl.c:560 openssl.c:709 #, c-format msgid "Using client certificate '%s'\n" msgstr "Anvender klientcertifikatet \"%s\"\n" #: gnutls.c:1558 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "Angivelse af certikattilbagekaldelsesliste mislykkedes: %s\n" #: gnutls.c:1579 gnutls.c:1589 msgid "Failed to allocate memory for certificate\n" msgstr "Kunne ikke allokere hukommelse til certifikat\n" #: gnutls.c:1625 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" "ADVARSEL: GnuTLS returnerede ukorrekte udstedercertificeringer; godkendelse " "kan slå fejl!\n" #: gnutls.c:1648 msgid "Got no issuer from PKCS#11\n" msgstr "Fik ingen udsteder fra PKCS#11\n" # Mangler # på engelsk #: gnutls.c:1653 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "Fik næste CA \"%s\" fra PKCS#11\n" #: gnutls.c:1679 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Kunne ikke allokere hukommelse til understøttelse af certifikater\n" #: gnutls.c:1702 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Tilføjer understøttende CA \"%s\"\n" #: gnutls.c:1724 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" "Det lader ikke til, at den private nøgle understøtter RSA-PPS. Deaktiverer " "TLSv1.3\n" #: gnutls.c:1748 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Angivelse af certifikat mislykkedes: %s\n" #: gnutls.c:1941 msgid "Server presented no certificate\n" msgstr "Server anviste ikke et certifikat\n" #: gnutls.c:1949 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" "Der opstod en fejl under sammenligning af serverens certifikat ved " "genforhandling: %s\n" #: gnutls.c:1954 openssl.c:1515 msgid "Server presented different cert on rehandshake\n" msgstr "Server frembød forskellige certifikater ved genforhandling\n" #: gnutls.c:1959 openssl.c:1518 msgid "Server presented identical cert on rehandshake\n" msgstr "Server frembød ens certifikater ved genforhandling\n" #: gnutls.c:1965 msgid "Error initialising X509 cert structure\n" msgstr "Der opstod en fejl initialisering af X509-certifikatstrukturen\n" #: gnutls.c:1971 msgid "Error importing server's cert\n" msgstr "Der opstod en fejl under import af serverens certifikat\n" #: gnutls.c:1980 main.c:1794 msgid "Could not calculate hash of server's certificate\n" msgstr "Kunne ikke beregne servercertifikatets hash\n" #: gnutls.c:1985 msgid "Error checking server cert status\n" msgstr "Der opstod en fejl mens serverens certificeringsstatus blev tjekket\n" #: gnutls.c:1990 msgid "certificate revoked" msgstr "certifikat tilbagekaldt" #: gnutls.c:1992 msgid "signer not found" msgstr "underskriver ikke fundet" #: gnutls.c:1994 msgid "signer not a CA certificate" msgstr "underskriver ikke et CA-cerifikat" #: gnutls.c:1996 msgid "insecure algorithm" msgstr "usikker algoritme" #: gnutls.c:1998 msgid "certificate not yet activated" msgstr "certifikat endnu ikke aktiveret" #: gnutls.c:2000 msgid "certificate expired" msgstr "certifikat udløbet" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2005 msgid "signature verification failed" msgstr "bekræftelse af signatur mislykkedes" #: gnutls.c:2054 openssl.c:1399 openssl.c:1551 msgid "certificate does not match hostname" msgstr "certifikat matcher ikke værtsnavn" #: gnutls.c:2059 openssl.c:1398 openssl.c:1557 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Bekræftelse af servercertifikat mislykkedes: %s\n" #: gnutls.c:2126 msgid "Failed to allocate memory for cafile certs\n" msgstr "Kunne ikke allokere hukommelse til CA-filcertifikater\n" #: gnutls.c:2147 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Kunne ikke læse certifikater i CA-filen: %s\n" #: gnutls.c:2163 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Kunne ikke åbne CA-filen \"%s\": %s\n" #: gnutls.c:2176 openssl.c:1679 msgid "Loading certificate failed. Aborting.\n" msgstr "Indlæsning af certifikat mislykkedes. Afbryder.\n" #: gnutls.c:2237 #, c-format msgid "Failed to set TLS priority string (\"%s\"): %s\n" msgstr "Kunne ikke angive TLS-prioritetsstreng (\"%s\"): %s\n" #: gnutls.c:2249 openssl.c:1796 #, c-format msgid "SSL negotiation with %s\n" msgstr "SSL-forhandling med %s\n" #: gnutls.c:2296 openssl.c:1822 msgid "SSL connection cancelled\n" msgstr "SSL-forbindelse annulleret\n" #: gnutls.c:2303 #, c-format msgid "SSL connection failure: %s\n" msgstr "Fejl i SSL-forbindelse: %s\n" #: gnutls.c:2312 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "GnuTLS ikke-fatal returnering under forhandling: %s\n" #: gnutls.c:2318 openssl.c:1839 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "Forbundet til HTTPS som %s\n" #: gnutls.c:2321 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "Genforhandlede SSL på %s\n" #: gnutls.c:2483 openssl-pkcs11.c:199 #, c-format msgid "PIN required for %s" msgstr "PIN påkrævet til %s" #: gnutls.c:2487 openssl-pkcs11.c:202 msgid "Wrong PIN" msgstr "Forkert PIN" #: gnutls.c:2490 msgid "This is the final try before locking!" msgstr "Dette er sidste forsøg, før der låses!" #: gnutls.c:2492 msgid "Only a few tries left before locking!" msgstr "Kun nogle få forsøg tilbage, før der låses!" #: gnutls.c:2497 openssl-pkcs11.c:206 msgid "Enter PIN:" msgstr "Indtast PIN:" #: gnutls.c:2583 openssl.c:1967 msgid "Unsupported OATH HMAC algorithm\n" msgstr "OATH HMAC-algoritmen understøttes ikke\n" #: gnutls.c:2592 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "Kunne ikke beregne OATH HMAC: %s\n" #: gnutls_tpm.c:54 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "TPM-underskrivningsfunktion kaldet for %d byte.\n" #: gnutls_tpm.c:61 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Kunne ikke oprette TPM-hashelement: %s\n" #: gnutls_tpm.c:68 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Kunne ikke angive værdi i TPM-hashelement: %s\n" #: gnutls_tpm.c:78 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "TPM-hashsignatur mislykkedes: %s\n" #: gnutls_tpm.c:100 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Der opstod en fejl under afkodning af TSS-nøgleblob: %s\n" #: gnutls_tpm.c:108 gnutls_tpm.c:119 gnutls_tpm.c:132 msgid "Error in TSS key blob\n" msgstr "Fejl i TSS-nøgleblob: %s\n" #: gnutls_tpm.c:139 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Kunne ikke oprette TPM-kontekst: %s\n" #: gnutls_tpm.c:146 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Kunne ikke forbinde TPM-kontekst: %s\n" #: gnutls_tpm.c:154 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Kunne ikke indlæse TPM SRK-nøgle: %s\n" #: gnutls_tpm.c:161 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Kunne ikke indlæse TPM SRK-politikelement: %s\n" #: gnutls_tpm.c:182 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Kunne ikke angive TPM PIN: %s\n" #: gnutls_tpm.c:198 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Kunne ikke indlæse TPM-nøgleblob: %s\n" #: gnutls_tpm.c:205 msgid "Enter TPM SRK PIN:" msgstr "Indtast TPM SRK PIN:" #: gnutls_tpm.c:226 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Kunne ikke oprette nøglepolitikelement: %s\n" #: gnutls_tpm.c:234 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Kunne ikke tildele politik til nøgle: %s\n" #: gnutls_tpm.c:240 msgid "Enter TPM key PIN:" msgstr "Indtast TPM-nøgles PIN:" #: gnutls_tpm.c:251 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Kunne ikke angive nøgles PIN: %s\n" #: gnutls_tpm2.c:92 gnutls_tpm2_esys.c:474 gnutls_tpm2_ibm.c:419 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "Ukendt TPM2 EC-digeststørrelse %d\n" #: gnutls_tpm2.c:198 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "Der opstod en fejl under afkodning af TSS2-nøgleblob: %s\n" #: gnutls_tpm2.c:208 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "Kunne ikke oprette ASN.1-type for TPM2: %s\n" #: gnutls_tpm2.c:217 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "Kunne ikke afkode TPM2-nøgle ASN.1: %s\n" #: gnutls_tpm2.c:225 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "Kunne ikke fortolke OID for TPM2-nøgletype: %s\n" #: gnutls_tpm2.c:231 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "TPM2-nøgletypen har en ukendt OID %s og ikke %s\n" #: gnutls_tpm2.c:249 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "Kunne ikke fortolke TPM2-ophavsnøgle: %s\n" #: gnutls_tpm2.c:270 msgid "Failed to parse TPM2 pubkey element\n" msgstr "Kunne ikke fortolke element for offentlig TPM2-nøgle\n" #: gnutls_tpm2.c:275 msgid "Failed to parse TPM2 privkey element\n" msgstr "Kunne ikke fortolke element for privat TPM2-nøgle\n" #: gnutls_tpm2.c:280 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "Fortolkede TPM2-nøgle med ophavet %x, emptyauth %d\n" #: gnutls_tpm2.c:384 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "TPM2-digest for stort: %d > %d)\n" #: gnutls_tpm2_esys.c:173 msgid "TPM2 password too long; truncating\n" msgstr "TPM2-adgangskode for lang; afskærer\n" #: gnutls_tpm2_esys.c:189 msgid "owner" msgstr "ejer" #: gnutls_tpm2_esys.c:190 msgid "null" msgstr "null" # MS har godkendelse og påtegnelse #: gnutls_tpm2_esys.c:191 msgid "endorsement" msgstr "godkendelse" #: gnutls_tpm2_esys.c:192 msgid "platform" msgstr "platform" #: gnutls_tpm2_esys.c:196 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "Opretter primær nøgle under hierarkiet %s.\n" #: gnutls_tpm2_esys.c:201 gnutls_tpm2_ibm.c:262 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "Indtast adgangskode for TPM2-hierarkiet %s:" #: gnutls_tpm2_esys.c:209 gnutls_tpm2_esys.c:303 gnutls_tpm2_esys.c:374 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "TPM2 Esys_TR_SetAuth mislykkedes: 0x%x\n" #: gnutls_tpm2_esys.c:221 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "TPM2 Esys_CreatePrimary-ejergodkendelse mislykkedes\n" #: gnutls_tpm2_esys.c:226 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "TPM2 Esys_CreatePrimary mislykkedes: 0x%x\n" #: gnutls_tpm2_esys.c:245 msgid "Establishing connection with TPM.\n" msgstr "Etablerer forbindelse med TPM.\n" #: gnutls_tpm2_esys.c:250 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "TPM2 Esys_Initialize mislykkedes: 0x%x\n" #: gnutls_tpm2_esys.c:258 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" "TPM2 var allerede startet op. Derfor mislykkedes falsk positiv i tpm2tss-" "loggen.\n" #: gnutls_tpm2_esys.c:261 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "TPM2 Esys_Startup mislykkedes: 0x%x\n" #: gnutls_tpm2_esys.c:274 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "Esys_TR_FromTPMPublic mislykkedes for håndtaget 0x%x: 0x%x\n" #: gnutls_tpm2_esys.c:295 gnutls_tpm2_ibm.c:278 msgid "Enter TPM2 parent key password:" msgstr "Indtast adgangskode for TPM2-ophavsnøgle:" #: gnutls_tpm2_esys.c:309 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "Indlæser TPM2-nøgleblob, ophav %x.\n" #: gnutls_tpm2_esys.c:317 msgid "TPM2 Esys_Load auth failed\n" msgstr "TPM2 Esys_Load auth mislykkedes\n" #: gnutls_tpm2_esys.c:323 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "TPM2 Esys_Load mislykkedes: 0x%x\n" #: gnutls_tpm2_esys.c:333 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "TPM2 Esys_FlushContext for genereret primær mislykkedes: 0x%x\n" #: gnutls_tpm2_esys.c:363 gnutls_tpm2_ibm.c:363 gnutls_tpm2_ibm.c:450 msgid "Enter TPM2 key password:" msgstr "Indtast TPM2-nøgles adgangskode:" #: gnutls_tpm2_esys.c:395 #, c-format msgid "TPM2 RSA sign function called for %d bytes.\n" msgstr "TPM2 RSA-underskrivningsfunktion kaldet for %d byte.\n" #: gnutls_tpm2_esys.c:414 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "TPM2 Esys_RSA_Decrypt-godkendelse mislykkedes\n" #: gnutls_tpm2_esys.c:420 gnutls_tpm2_esys.c:500 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "TPM2 kunne ikke generere RSA-signatur: 0x%x\n" #: gnutls_tpm2_esys.c:464 gnutls_tpm2_ibm.c:405 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "TPM2 EC-underskrivningsfunktion kaldet for %d byte.\n" #: gnutls_tpm2_esys.c:494 msgid "TPM2 Esys_Sign auth failed\n" msgstr "TPM2 Esys_Sign-godkendelse mislykkedes\n" #: gnutls_tpm2_esys.c:532 gnutls_tpm2_ibm.c:485 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "Ugyldigt TPM2-ophavshåndtag 0x%08x\n" #: gnutls_tpm2_esys.c:546 gnutls_tpm2_ibm.c:502 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "Kunne ikke importere data for privat TPM2-nøgle: 0x%x\n" #: gnutls_tpm2_esys.c:555 gnutls_tpm2_ibm.c:512 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "Kunne ikke importere data for offentlig TPM2-nøgle: 0x%x\n" #: gnutls_tpm2_esys.c:569 gnutls_tpm2_ibm.c:523 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "Ikke-understøttet TPM2-nøgletype %d\n" #: gnutls_tpm2_ibm.c:54 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "TPM2-handlingen %s mislykkedes (%d): %s%s%s\n" #: gpst.c:226 #, c-format msgid "%s\n" msgstr "%s\n" #: gpst.c:229 #, c-format msgid "Challenge: %s\n" msgstr "Challenge: %s\n" #: gpst.c:417 #, c-format msgid "Unknown ESP %s algorithm: %s" msgstr "Ukendt ESP-%s-algoritme: %s" #: gpst.c:477 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "Ventetid er %d minutter.\n" #: gpst.c:483 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "Ikke en standardsti for SSL-tunnel: %s\n" #: gpst.c:487 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "Tunneltimeout (interval for ny tildeling af nøgle) er %d minutter.\n" #: gpst.c:498 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" "Gatewayadressen i konfigurations-XML'en (%s) afviger fra den eksterne " "gatewayadresse (%s).\n" #: gpst.c:551 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" "GlobalProtect-konfigurationen sendte ipsec-mode=%s (forventede esp-tunnel)\n" #: gpst.c:560 oncp.c:835 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" "Ignorerer ESP-nøgler, da understøttelse af ESP ikke er tilgængelig i denne " "build\n" #: gpst.c:627 msgid "ESP disabled" msgstr "ESP deaktiveret" #: gpst.c:629 msgid "No ESP keys received" msgstr "Ingen ESP-nøgler modtaget" #: gpst.c:631 msgid "ESP support not available in this build" msgstr "Understøttelse af ESP er ikke tilgængelig i denne build" #: gpst.c:635 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "Ingen MTU modtaget. Beregnede %d for %s%s\n" #: gpst.c:680 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "Forbinder til HTTPS-tunnelslutpunkt …\n" #: gpst.c:702 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "Der opstod en fejl under indhentning af HTTPS-svar fra GET-tunnel.\n" #: gpst.c:711 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "Gateway afbrudt umiddelbart efter GET-tunnelanmodning.\n" #: gpst.c:719 #, c-format msgid "Got inappropriate HTTP GET-tunnel response: %.*s\n" msgstr "Modtog upassende HTTP GET-tunnelsvar: %.*s\n" #: gpst.c:861 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" "VPN connectivity may be disabled or limited without HIP report submission.\n" "You need to provide a --csd-wrapper argument with the HIP report submission " "script.\n" msgstr "" "ADVARSEL: Serveren bad os om at indsende HIP-rapport med md5sum %s.\n" "VPN-forbindelsen kan måske være deaktiveret eller begrænset, hvis ikke HIP-" "rapporten indsendes.\n" "Du skal angive argumentet --csd-wrapper sammen med skriptet til indsendelse " "af HIP-rapporten.\n" #: gpst.c:871 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" "Fejl: Kørsel af “HIP-rapport”-skriptet er endnu ikke understøttet på denne " "platform\n" #: gpst.c:900 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "HIP-skriptet “%s” afsluttede unormalt\n" #: gpst.c:905 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "HIP-skriptet “%s” returnerede status forskellig fra nul:%d\n" #: gpst.c:911 msgid "HIP report submission failed.\n" msgstr "Indsendelse af HIP-rapporten mislykkedes.\n" #: gpst.c:913 msgid "HIP report submitted successfully.\n" msgstr "HIP-rapporten blev indsendt.\n" #: gpst.c:942 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "Kunne ikke køre HIP-skriptet %s\n" #: gpst.c:966 msgid "Gateway says HIP report submission is needed.\n" msgstr "Gatewayen oplyser, at indsendelse af HIP-rapporten er nødvendig.\n" #: gpst.c:972 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" "Gatewayen oplyser, at indsendelse af HIP-rapporten ikke er nødvendig.\n" #: gpst.c:999 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "ESP-tunnel forbundet. Afslutter HTTPS-hovedløkke.\n" #: gpst.c:1015 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "Kunne ikke tilslutte ESP-tunnel. Bruger HTTPS i stedet.\n" #: gpst.c:1051 #, c-format msgid "Packet receive error: %s\n" msgstr "Fejl ved modtagelse af pakke: %s\n" #: gpst.c:1072 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" "Uventet pakkelængde. SSL_read returnerede %d (inklusive 16 byte i header), " "men headers payload_len er %d\n" #: gpst.c:1082 msgid "Got GPST DPD/keepalive response\n" msgstr "Modtog GPST DPD/keepalive-svar\n" #: gpst.c:1086 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" "Forventede 0000000000000000 som de sidste 8 byte i DPD/keepalive-pakkens " "header, men fik:\n" #: gpst.c:1092 #, c-format msgid "Received data packet of %d bytes\n" msgstr "Modtog data-pakke på %d byte\n" #: gpst.c:1101 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" "Forventede 0100000000000000 som de sidste 8 byte i datapakkens header, men " "fik:\n" #: gpst.c:1109 msgid "Unknown packet. Header dump follows:\n" msgstr "Ukendt pakke. Headerdump følger:\n" #: gpst.c:1157 msgid "GlobalProtect rekey due\n" msgstr "GlobalProtect rekey forfalden\n" #: gpst.c:1162 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "GPST Dead Peer Detection registrerede død peer!\n" #: gpst.c:1182 msgid "Send GPST DPD/keepalive request\n" msgstr "Send GPST DPD/keepalive-anmodning\n" #: gpst.c:1202 #, c-format msgid "Sending data packet of %d bytes\n" msgstr "Sender datapakke på %d byte\n" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Der opstod en fejl under import af GSSAPI-navn til bekræftelse:\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "Der opstod en fejl under generering af GSSAPI-svar:\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "Forsøger GSSAPI-godkendelse til proxy\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "Forsøger GSSAPI-godkendelse til serveren \"%s\"\n" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "GSSAPI-godkendelse gennemført\n" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "GSSAPI-symbol for stort (%zd byte)\n" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "Sender GSSAPI-symbol på %zu byte\n" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "Kunne ikke sende GSSAPI-godkendelsessymbol til proxy: %s\n" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "Modtog ikke GSSAPI-godkendelsessymbol fra proxy: %s\n" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "SOCKS-server meldte om fejl i GSSAPI-kontekst\n" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "Ukendt GSSAPI-statussvar (0x%02x) fra SOCKS-server\n" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "Modtog GSSAPI-symbol på %zu byte: %02x %02x %02x %02x\n" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "Sender GSSAPI-beskyttelsesforhandling på %zu byte\n" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "Kunne ikke sende GSSAPI-beskyttelsessvar til proxy: %s\n" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "Modtog ikke GSSAPI-beskyttelsessvar fra proxy: %s\n" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "Modtog GSSAPI-beskyttelsessvar på %zu byte: %02x %02x %02x %02x\n" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "Ugyldigt GSSAPI-beskyttelsessvar fra proxy (%zu byte)\n" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "SOCKS-proxy kræver beskedintegritet, hvilket ikke understøttes\n" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "SOCKS-proxy kræver beskedfortrolighed, hvilket ikke understøttes\n" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "SOCKS-proxy kræver beskyttelse af ukendt type 0x%02x\n" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "Forsøger basal HTTP-godkendelse til proxy\n" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "Forsøger basal HTTP-godkendelse til serveren \"%s\"\n" #: http-auth.c:200 http.c:1165 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" "Denne version af OpenConnect blev bygget uden understøttelse af GSSAPI\n" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "Proxy kræver basal godkendelse, hvilket som standard er deaktiveret\n" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" "Serveren \"%s\" kræver basal godkendelse, hvilket som standard er " "deaktiveret\n" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "Der er ikke flere godkendelsesmetoder, som kan afprøves\n" #: http.c:319 msgid "No memory for allocating cookies\n" msgstr "Ingen hukommelse til allokering af cookier\n" #: http.c:394 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Kunne ikke fortolke HTTP-svaret \"%s\"\n" #: http.c:400 #, c-format msgid "Got HTTP response: %s\n" msgstr "Modtog HTTP-svar: %s\n" #: http.c:408 msgid "Error processing HTTP response\n" msgstr "Der opstod en fejl under behandling af HTTP-svar\n" #: http.c:415 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Ignorerer ukendt HTTP-svarlinje \"%s\"\n" #: http.c:435 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Ugyldig cookie tilbudt: %s\n" #: http.c:454 msgid "SSL certificate authentication failed\n" msgstr "Bekræftelse af SSL-certifikat mislykkedes\n" #: http.c:485 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Størrelsen på svarets indhold er negativt (%d)\n" #: http.c:496 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Ukendt overførselskodning: %s\n" #. Now the body, if there is one #: http.c:515 #, c-format msgid "HTTP body %s (%d)\n" msgstr "HTTP-indhold %s (%d)\n" #: http.c:529 http.c:556 msgid "Error reading HTTP response body\n" msgstr "Der opstod en fejl under læsning af HTTP-svarindhold\n" #: http.c:542 msgid "Error fetching chunk header\n" msgstr "Der opstod en fejl i forsøget på at hente fragmentteksthoved\n" #: http.c:566 msgid "Error fetching HTTP response body\n" msgstr "Der opstod en fejl under forsøget på at hente HTTP-svarets tekst\\n\n" #: http.c:569 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "" "Der opstod en fejl i den fragmenterede afkodning. Forventede \"\", fik: \"%s" "\"" #: http.c:581 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Kan ikke modtage HTTP 1.0-indhold uden afsluttende forbindelse\n" #: http.c:708 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Kunne ikke fortolke omdirigeret URL \"%s\": %s\n" #: http.c:732 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Kan ikke følge omdirigering til ikke-https-URL \"%s\"\n" #: http.c:760 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Allokering af ny sti til relativ omdirigering mislykkedes: %s\n" #: http.c:973 oncp.c:591 #, c-format msgid "Unexpected %d result from server\n" msgstr "Uventet %d resultat fra server\n" #: http.c:1021 msgid "request granted" msgstr "forespørgsel imødekommet" #: http.c:1022 msgid "general failure" msgstr "generel fejl" #: http.c:1023 msgid "connection not allowed by ruleset" msgstr "forbindelse ikke tilladt af regelsæt" #: http.c:1024 msgid "network unreachable" msgstr "netværket er utilgængeligt" #: http.c:1025 msgid "host unreachable" msgstr "værten er utilgængelig" #: http.c:1026 msgid "connection refused by destination host" msgstr "forbindelse nægtet af destinationsvært" #: http.c:1027 msgid "TTL expired" msgstr "TTL udløbet" #: http.c:1028 msgid "command not supported / protocol error" msgstr "kommando ikke understøttet / protokolfejl" #: http.c:1029 msgid "address type not supported" msgstr "adressetype ikke understøttet" #: http.c:1039 msgid "SOCKS server requested username/password but we have none\n" msgstr "SOSCKS-server bad om brugernavn/adgangskode, men vi har ikke nogen\n" #: http.c:1047 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "Brugernavn og adgangskode til SOCKS-godkendelse skal være < 255 byte\n" #: http.c:1062 http.c:1118 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" "Der opstod en fejl under skrivning af godkendelsesforespørgsel til SOCKS-" "proxy: %s\n" #: http.c:1070 http.c:1125 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" "Der opstod en fejl under læsning af godkendelsessvar fra SOCKS-proxy: %s\n" #: http.c:1077 http.c:1131 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Uventet godkendelsessvar fra SOCKS-proxy: %02x %02x\n" #: http.c:1083 msgid "Authenticated to SOCKS server using password\n" msgstr "Godkendt til SOCKS-server med brug af adgangskode\n" #: http.c:1087 msgid "Password authentication to SOCKS server failed\n" msgstr "Adgangskodegodkendelse til SOCKS-server mislykkedes\n" #: http.c:1143 http.c:1150 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "SOCKS-server bad om GSSAPI-godkendelse\n" #: http.c:1156 msgid "SOCKS server requested password authentication\n" msgstr "SOCKS-server bad om adgangskodegodkendelse\n" #: http.c:1163 msgid "SOCKS server requires authentication\n" msgstr "SOCKS-server kræver godkendelse\n" #: http.c:1170 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "SOCKS-server bad om ukendt godkendelsestype %02x\n" #: http.c:1176 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Beder om SOCKS-proxyforbindelse til %s:%d\n" #: http.c:1191 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" "Der opstod en fejl under skrivning af forbindelsesanmodning til SOCKS-proxy: " "%s\n" #: http.c:1199 http.c:1241 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "" "Der opstod en fejl under læsning af forbindelsesanmodning fra SOCKS-proxy: " "%s\n" #: http.c:1205 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Uventet forbindelsesanmodning fra SOCKS-proxy: %02x %02x...\n" #: http.c:1213 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "SOCKS-proxyfejl %02x: %s\n" #: http.c:1217 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "SOCKS-proxyfejl %02x\n" #: http.c:1234 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Uventet adressetype %02x i SOCKS-forbindelsessvar\n" #: http.c:1257 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Anmoder om HTTP-proxyforbindelse til %s: %d\n" #: http.c:1292 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Afsending af proxyanmodning mislykkedes: %s\n" #: http.c:1315 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "Proxy CONNECT-anmodning mislykkedes: %d\n" #: http.c:1334 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Ukendt proxytype \"%s\"\n" #: http.c:1383 msgid "Only http or socks(5) proxies supported\n" msgstr "Kun http- eller socks(5)-proxyer understøttes\n" #: library.c:112 msgid "Cisco AnyConnect or openconnect" msgstr "Cisco AnyConnect eller openconnect" #: library.c:113 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "Kompatibel med Cisco AnyConnect SSL VPN såvel som ocserv" #: library.c:129 msgid "Juniper Network Connect" msgstr "Juniper Network Connect" #: library.c:130 msgid "Compatible with Juniper Network Connect / Pulse Secure SSL VPN" msgstr "Kompatibel med Juniper Network Connect / Pulse Secure SSL VPN." #: library.c:148 msgid "Palo Alto Networks GlobalProtect" msgstr "Palo Alto Networks GlobalProtect" #: library.c:149 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "Kompatibel med Palo Alto Networks (PAN) GlobalProtect SSL VPN" #: library.c:211 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "Ukendt VPN-protokol \"%s\"\n" #: library.c:233 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Bygget mod SSL-bibliotek uden understøttelse af Cisco DTLS\n" #: library.c:656 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Kunne ikke fortolke server-URL \"%s\"\n" #: library.c:662 msgid "Only https:// permitted for server URL\n" msgstr "Kun https:// er tilladt til server-URL\n" #: library.c:1056 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "Ukendt certifikathash: %s.\n" #: library.c:1085 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" "Det angivne fingeraftryks størrelse er mindre end det mindst tilladelige " "(%u).\n" #: library.c:1146 msgid "No form handler; cannot authenticate.\n" msgstr "Ingen formularhåndtering; kan ikke godkende.\n" #: main.c:340 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "CommandLineToArgvW() mislykkedes: %s\n" #: main.c:353 #, c-format msgid "Fatal error in command line handling\n" msgstr "Fatal fejl i håndtering af kommandolinje\n" #: main.c:388 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "ReadConsole() mislykkedes: %s\n" #: main.c:401 #, c-format msgid "fgetws() failed: %s\n" msgstr "fgetws() mislykkedes: %s\n" #: main.c:416 main.c:429 #, c-format msgid "Error converting console input: %s\n" msgstr "Der opstod en fejl under konverteringen af konsolinput: %s\n" #: main.c:423 main.c:689 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Allokeringsfejl for streng fra stdin\n" #: main.c:584 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" "Hjælp til OpenConnect kan findes på hjemmesiden\n" " http://www.infradead.org/openconnect/mail.html\n" #: main.c:593 #, c-format msgid "Using OpenSSL. Features present:" msgstr "Med brug af OpenSSL. Tilgængelige funktioner:" #: main.c:595 #, c-format msgid "Using GnuTLS. Features present:" msgstr "Med brug af GnuTLS. Tilgængelige funktioner:" #: main.c:608 msgid "OpenSSL ENGINE not present" msgstr "OpenSSL-maskine ikke tilgængelig" #: main.c:647 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" "ADVARSEL: Denne binærfil mangler understøttelse af DTLS og/eller ESP. " "Ydeevnen vil være negativt påvirket.\n" #: main.c:657 #, c-format msgid "Supported protocols:" msgstr "Understøttede protokoller:" #: main.c:659 main.c:675 msgid " (default)" msgstr "(standard)" #: main.c:672 msgid "Set VPN protocol" msgstr "Angiv VPN-protokol" #: main.c:713 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:754 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Kan ikke behandle den eksekverbare sti \"%s\"" #: main.c:760 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "Allokering af vpnc-skriptsti mislykkedes\n" #: main.c:780 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "Tilsidesæt værtsnavn \"%s\" til \"%s\"\n" #: main.c:793 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Anvendelse: openconnect [tilvalg] \n" #: main.c:794 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" "Åben klient til flere VPN-protokoller, version %s\n" "\n" #: main.c:796 msgid "Read options from config file" msgstr "Læs tilvalg fra konfigurationsfil" #: main.c:797 msgid "Report version number" msgstr "Rapportér versionsnummer" #: main.c:798 msgid "Display help text" msgstr "Vis hjælptekst" #: main.c:802 msgid "Authentication" msgstr "Godkendelse" #: main.c:803 msgid "Set login username" msgstr "Angiv loginbrugernavn" #: main.c:804 msgid "Disable password/SecurID authentication" msgstr "Deaktivér godkendelse med adgangskode/SecurID" #: main.c:805 msgid "Do not expect user input; exit if it is required" msgstr "Forvent ikke brugerinput; afslut hvis det kræves" #: main.c:806 msgid "Read password from standard input" msgstr "Læs adgangskode fra standardinput" # selection? #: main.c:807 msgid "Choose authentication login selection" msgstr "Vælg godkendelsesloginudvælgelse" #: main.c:808 msgid "Provide authentication form responses" msgstr "Angiv svar til godkendelsesformular" #: main.c:809 msgid "Use SSL client certificate CERT" msgstr "Brug SSL-klientcertifikat CERT" #: main.c:810 msgid "Use SSL private key file KEY" msgstr "Brug SSL privat nøglefil NØGLE" #: main.c:811 msgid "Warn when certificate lifetime < DAYS" msgstr "Advar når certifikatlevetiden < DAGE" #: main.c:812 msgid "Set login usergroup" msgstr "Angiv loginbrugergruppe" #: main.c:813 msgid "Set key passphrase or TPM SRK PIN" msgstr "Angiv nøgleadgangsfrase eller TPM SRK PIN" #: main.c:814 msgid "Key passphrase is fsid of file system" msgstr "Nøgleadgangsfrase er filsystemets fsid" #: main.c:815 msgid "Software token type: rsa, totp or hotp" msgstr "Type af softwaresymbol: rsa, totp eller hotp" #: main.c:816 msgid "Software token secret" msgstr "Softwaresymbols hemmelighed" #: main.c:818 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "(BEMÆRK: libstoken (RSA SecurID) er deaktiveret i denne kompilering)" #: main.c:821 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(BEMÆRK: Yubikey OATH er deaktiveret i denne kompilering)" #: main.c:824 msgid "Server validation" msgstr "Servervalidering" #: main.c:825 msgid "Server's certificate SHA1 fingerprint" msgstr "Servercertifikatets SHA1-fingeraftryk" #: main.c:826 msgid "Do not require server SSL cert to be valid" msgstr "Kræv ikke, at serverens SSL-certifikat skal være gyldigt" #: main.c:827 msgid "Disable default system certificate authorities" msgstr "Deaktivér systemets standardcertifikatautoriteter" #: main.c:828 msgid "Cert file for server verification" msgstr "Certifikatfil til bekræftelse af serveren" #: main.c:830 msgid "Internet connectivity" msgstr "Internetforbindelse" #: main.c:831 msgid "Set proxy server" msgstr "Angiv proxyserver" #: main.c:832 msgid "Set proxy authentication methods" msgstr "Angiv proxys godkendelsesmetoder" #: main.c:833 msgid "Disable proxy" msgstr "Deaktivér proxy" #: main.c:834 msgid "Use libproxy to automatically configure proxy" msgstr "Brug libproxy til automatisk konfiguration af proxy" #: main.c:836 msgid "(NOTE: libproxy disabled in this build)" msgstr "(BEMÆRK: libproxy er deaktiveret i denne kompilering)" #: main.c:838 msgid "Connection retry timeout in seconds" msgstr "Tidsgrænse for forsøg på etablering af forbindelse igen (i sekunder)" #: main.c:839 msgid "Use IP when connecting to HOST" msgstr "Brug IP når der forbindes til VÆRT" #: main.c:840 msgid "copy TOS / TCLASS when using DTLS" msgstr "kopiér TOS/TCLASS, når DTLS anvendes" #: main.c:841 msgid "Set local port for DTLS and ESP datagrams" msgstr "Angiv lokalport for DTLS- og ESP-datagrammer" #: main.c:843 msgid "Authentication (two-phase)" msgstr "Godkendelse (to-trins)" #: main.c:844 msgid "Use authentication cookie COOKIE" msgstr "Brug godkendelsescookie COOKIE" #: main.c:845 msgid "Read cookie from standard input" msgstr "Læs cookie fra standardinput" #: main.c:846 msgid "Authenticate only and print login info" msgstr "Godkend kun og udskriv logininformation" #: main.c:847 msgid "Fetch and print cookie only; don't connect" msgstr "Hent og udskriv kun cookie; forbind ikke" #: main.c:848 msgid "Print cookie before connecting" msgstr "Udskriv cookie før forbindelse etableres" #: main.c:851 msgid "Process control" msgstr "Proceskontrol" #: main.c:852 msgid "Continue in background after startup" msgstr "Fortsæt i baggrunden efter opstart" #: main.c:853 msgid "Write the daemon's PID to this file" msgstr "Skriv dæmonens PID til denne fil" #: main.c:854 msgid "Drop privileges after connecting" msgstr "Drop rettigheder efter forbindelse er etableret" #: main.c:857 msgid "Logging (two-phase)" msgstr "Logger (to-trins)" #: main.c:859 msgid "Use syslog for progress messages" msgstr "Brug syslog til fremgangsbeskeder" #: main.c:861 msgid "More output" msgstr "Mere output" #: main.c:862 msgid "Less output" msgstr "Mindre output" #: main.c:863 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "Dump HTTP-godkendelsestrafik (forudsætter --verbose)" #: main.c:864 msgid "Prepend timestamp to progress messages" msgstr "Foranstil tidsstempel i fremgangsbeskeder" #: main.c:866 msgid "VPN configuration script" msgstr "VPN-konfigurationsskript" #: main.c:867 msgid "Use IFNAME for tunnel interface" msgstr "Brug IFNAME til tunnelgrænseflade" #: main.c:868 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" "Skalkommandolinje til anvendelse af et vpnc-kompatibelt konfigurationsskript" #: main.c:869 msgid "default" msgstr "standard" #: main.c:871 msgid "Pass traffic to 'script' program, not tun" msgstr "Videresend trafik til \"skriptprogram\" og ikke til tun" #: main.c:874 msgid "Tunnel control" msgstr "Tunnelkontrol" #: main.c:875 msgid "Do not ask for IPv6 connectivity" msgstr "Spørg ikke efter IPv6-forbindelse" #: main.c:876 msgid "XML config file" msgstr "XML-konfigurationsfil" #: main.c:877 msgid "Request MTU from server (legacy servers only)" msgstr "Bed om MTU fra server (kun ældre servere)" #: main.c:878 msgid "Indicate path MTU to/from server" msgstr "Indikér sti-MTU til/fra server" # https://www.ietf.org/rfc/rfc3749.txt #: main.c:879 msgid "Enable stateful compression (default is stateless only)" msgstr "Aktivér “stateful” komprimering (standard er kun “stateless”)" #: main.c:880 msgid "Disable all compression" msgstr "Deaktivér al komprimering" #: main.c:881 msgid "Set minimum Dead Peer Detection interval" msgstr "Angiv minimumsinterval for død peerregistrering" #: main.c:882 msgid "Require perfect forward secrecy" msgstr "Kræv perfekt videresendingshemmelighed" #: main.c:883 msgid "Disable DTLS and ESP" msgstr "Deaktivér DTLS og ESP" #: main.c:884 msgid "OpenSSL ciphers to support for DTLS" msgstr "OpenSSL-krypteringsalgoritme til understøttelse af DTLS" #: main.c:885 msgid "Set packet queue limit to LEN pkts" msgstr "Indstil grænse for pakkekø til LEN pkts" #: main.c:887 msgid "Local system information" msgstr "Information om lokalt system" #: main.c:888 msgid "HTTP header User-Agent: field" msgstr "HTTP-teksthoved User-Agent: felt" #: main.c:889 msgid "Local hostname to advertise to server" msgstr "Lokalt værtsnavn som skal annonceres til serveren" #: main.c:890 msgid "OS type (linux,linux-64,win,...) to report" msgstr "OS-type (linux,linux-64,win,...) som rapporteres" #: main.c:891 msgid "reported version string during authentication" msgstr "versionsstreng rapporteret under godkendelsen" #: main.c:892 msgid "default:" msgstr "standard:" #: main.c:895 msgid "Trojan binary (CSD) execution" msgstr "Udførsel af binærfil for trojaner (CSD)" #: main.c:896 msgid "Drop privileges during trojan execution" msgstr "Drop rettigheder under udførsel af trojaner" #: main.c:897 msgid "Run SCRIPT instead of trojan binary" msgstr "Kør SCRIPT i stedet for binærfil for trojaner" #: main.c:900 msgid "Server bugs" msgstr "Serverfejl" #: main.c:901 msgid "Disable HTTP connection re-use" msgstr "Deaktivér genbrug af HTTP-forbindelse" #: main.c:902 msgid "Do not attempt XML POST authentication" msgstr "Forsøg ikke XML POST-godkendelse" #: main.c:924 #, c-format msgid "Failed to allocate string\n" msgstr "Kunne ikke allokere streng\n" #: main.c:997 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Kunne ikke få linje fra konfigurationsfil: %s\n" #: main.c:1037 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Genkendte ikke tilvalget i linje %d: \"%s\"\n" #: main.c:1047 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Tilvalget \"%s\" tager ikke et argument i linje %d\n" #: main.c:1051 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Tilvalget \"%s\" kræver et argument i linje %d\n" #: main.c:1076 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "Ugyldig bruger \"%s\": %s\n" #: main.c:1086 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "Ugyldigt bruger-ID \"%d\": %s\n" #: main.c:1130 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "ADVARSEL: Kan ikke angive lokalitet: %s\n" #: main.c:1140 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "ADVARSEL: Denne version af openconnect blev bygget uden\n" " understøttelse af iconv, men det lader til, du bruger det\n" " forældede tegnsæt \"%s\". Forvent mærkværdigheder.\n" #: main.c:1147 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "ADVARSEL: Denne version af openconnect er %s,\n" " men biblioteket libopenconnect er %s\n" #: main.c:1157 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Kunne ikke allokere vpninfo-struktur\n" #: main.c:1215 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Kan ikke brug tilvalget \"config\" inde i konfigurationsfilen\n" #: main.c:1223 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Kan ikke åbne konfigurationsfilen \"%s\": %s\n" #: main.c:1239 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "Ugyldig komprimeringstilstand \"%s\"\n" #: main.c:1260 #, c-format msgid "Missing colon in resolve option\n" msgstr "Manglende kolon i tilvalget \"resolve\"\n" #: main.c:1265 #, c-format msgid "Failed to allocate memory\n" msgstr "Kunne ikke allokere hukommelse\n" #: main.c:1349 main.c:1358 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d for lille\n" #: main.c:1388 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Deaktiverer al genbrug af HTTP-forbindelse pga. tilvalget --no-http-" "keepalive.\n" "Hvis det hjælper, så rapportér det venligst til .\n" #: main.c:1394 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" "Tilvalget --no-cert-check var usikkert og er blevet fjernet.\n" "Fiks din servers certifikat eller brug --servercert for at have tillid til " "det.\n" #: main.c:1411 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Kølængden nul er ikke tilladt; bruger 1\n" #: main.c:1425 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect version %s\n" #: main.c:1463 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Ugyldig tilstand \"%s\" for softwaresymbol\n" #: main.c:1473 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "Ugyldig OS-identitet \"%s\"\n" #: main.c:1506 #, c-format msgid "Too many arguments on command line\n" msgstr "For mange argumenter på kommandolinjen\n" #: main.c:1509 #, c-format msgid "No server specified\n" msgstr "Server ikke angivet\n" #: main.c:1525 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" "Denne version af openconnect blev bygget uden understøttelse af libproxy\n" #: main.c:1555 #, c-format msgid "Error opening cmd pipe\n" msgstr "Der opstod en fejl under åbning af cmd-datakanal\n" #: main.c:1588 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "Kunne ikke få WebVPN-cookie\n" #: main.c:1609 #, c-format msgid "Creating SSL connection failed\n" msgstr "Oprettelse af SSL-forbindelse mislykkedes\n" #: main.c:1625 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "Opsætning af UDP mislykkedes; bruger SSL i stedet\n" #: main.c:1633 #, c-format msgid "Connected as %s%s%s, using SSL%s%s, with %s%s%s %s\n" msgstr "Forbundet som %s%s%s, bruger SSL%s%s med %s%s%s %s\n" #: main.c:1639 msgid "disabled" msgstr "deaktiveret" #: main.c:1639 msgid "in progress" msgstr "i gang" #: main.c:1643 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "Intet argument til --script angivet; DNS og routing er ikke konfigurerede\n" #: main.c:1645 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Se http://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:1658 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Kunne ikke åbne \"%s\" til skrivning: %s\n" #: main.c:1670 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Fortsætter i baggrunden; pid %d\n" #: main.c:1687 msgid "User requested reconnect\n" msgstr "Bruger anmodede om at genoprette forbindelsen\n" #: main.c:1695 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "Cookie blev afvist, da forbindelsen blev genoprettet; afslutter.\n" #: main.c:1699 msgid "Session terminated by server; exiting.\n" msgstr "Sessionen afsluttet af server; afslutter.\n" #: main.c:1703 msgid "User cancelled (SIGINT/SIGTERM); exiting.\n" msgstr "Bruger annullerede (SIGINT/SIGTERM); afslutter.\n" #: main.c:1707 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "Bruger løsrev sig fra sessionen (SIGHUP); afslutter.\n" #: main.c:1711 msgid "Unknown error; exiting.\n" msgstr "Ukendt fejl; afslutter.\n" #: main.c:1730 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Kunne ikke åbne %s til skrivning: %s\n" #: main.c:1738 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Kunne ikke skrive konfiguration til %s: %s\n" #: main.c:1797 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "Servers SSL-certifikat matchede ikke: %s\n" #: main.c:1816 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Certifikatet fra VPN-serveren \"%s\" kunne ikke bekræftes.\n" "Årsag: %s\n" #: main.c:1819 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" "Tilføj følgende til din kommandolinje for at have tillid til serveren i " "fremtiden:\n" #: main.c:1820 #, c-format msgid " --servercert %s\n" msgstr " --servercert %s\n" #: main.c:1825 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Indtast \"%s\" for at acceptere, \"%s\" for at afbryde eller alt andet for " "at vise: " #: main.c:1826 main.c:1844 msgid "no" msgstr "nej" #: main.c:1826 main.c:1832 msgid "yes" msgstr "ja" #: main.c:1853 #, c-format msgid "Server key hash: %s\n" msgstr "Servernøglens hash: %s\n" #: main.c:1887 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Godkendelsesvalget \"%s\" matcher flere muligheder\n" #: main.c:1890 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Godkendelsesvalget \"%s\" er ikke tilgængeligt\n" #: main.c:1911 msgid "User input required in non-interactive mode\n" msgstr "Input fra bruger nødvendig i ikke-interaktiv tilstand\n" #: main.c:2149 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Kunne ikke åbne symbolfil til skrivning: %s\n" #: main.c:2157 #, c-format msgid "Failed to write token: %s\n" msgstr "Kunne ikke skrive symbol: %s\n" #: main.c:2203 main.c:2224 #, c-format msgid "Soft token string is invalid\n" msgstr "Blød symbol-streng er ugyldig\n" #: main.c:2206 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Kan ikke åbne ~/.stokenrc-filen\n" #: main.c:2209 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "OpenConnect blev ikke bygget med understøttelse af libstoken\n" #: main.c:2212 #, c-format msgid "General failure in libstoken\n" msgstr "Generel fejl i libstoken\n" #: main.c:2227 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "OpenConnect blev ikke bygget med understøttelse af liboath\n" #: main.c:2230 #, c-format msgid "General failure in liboath\n" msgstr "Generel fejl i liboath\n" #: main.c:2241 #, c-format msgid "Yubikey token not found\n" msgstr "Yubikey-symbol blev ikke fundet\n" #: main.c:2244 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "OpenConnect blev ikke bygget med understøttelse af Yubikey\n" #: main.c:2247 #, c-format msgid "General Yubikey failure: %s\n" msgstr "Generel Yubikey-fejl: %s\n" #: mainloop.c:127 #, c-format msgid "Set up tun script failed\n" msgstr "Opsætning af tun-skript mislykkedes\n" #: mainloop.c:134 #, c-format msgid "Set up tun device failed\n" msgstr "Opsætning af tun-enhed mislykkedes\n" #: mainloop.c:265 msgid "Caller paused the connection\n" msgstr "Det, der foretog opkaldet, satte den på pause\n" #: mainloop.c:273 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Intet at lave; sover i %d ms …\n" #: mainloop.c:294 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "WaitForMultipleObjects mislykkedes: %s\n" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "InitializeSecurityContext() mislykkedes: %lx\n" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "AcquireCredentialsHandle() mislykkedes: %lx\n" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "Fejl i kommunikationen med ntlm_auth-hjælper\n" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "Forsøger HTTP NTLM-godkendelse til proxy (single-sign-on)\n" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "Forsøger HTTP NTLM-godkendelse til serveren \"%s\" (single-sign-on)\n" #: ntlm.c:978 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "Forsøger HTTP NTLMv%d-godkendelse til proxy\n" #: ntlm.c:982 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "Forsøger HTTP NTLMv%d-godkendelse til serveren \"%s\"\n" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "Ugyldig base32-symbolstreng\n" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "Kunne ikke allokere hukommelse til afkodning af OATH-hemmelighed\n" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "Denne version af OpenConnect blev bygget uden understøttelse af PSKC\n" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "OK til generering af INITIAL-symbolkode\n" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "OK til generering af NEXT-symbolkode\n" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "Server afviser det \"bløde\" symbol; skifter til manuel indtastning\n" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "Genererer OATH TOTP-symbolkode\n" #: oath.c:565 msgid "Generating OATH HOTP token code\n" msgstr "Genererer OATH HOTP-symbolkode\n" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "Ugyldig cookie \"%s\"\n" #: oncp.c:160 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "Uventet længde %d for TLV %d/%d\n" #: oncp.c:166 #, c-format msgid "Received MTU %d from server\n" msgstr "Modtog MTU %d fra server\n" #: oncp.c:175 #, c-format msgid "Received DNS server %s\n" msgstr "Modtog DNS-server %s\n" #: oncp.c:186 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "Modtog DNS-søgedomæne %.*s\n" #: oncp.c:201 #, c-format msgid "Received internal IP address %s\n" msgstr "Modtog intern IP-adresse %s\n" #: oncp.c:210 #, c-format msgid "Received netmask %s\n" msgstr "Modtog netmaske %s\n" #: oncp.c:219 #, c-format msgid "Received internal gateway address %s\n" msgstr "Modtog intern gatewayadresse %s\n" #: oncp.c:232 #, c-format msgid "Received split include route %s\n" msgstr "Modtog opdelt inkludér-rute %s\n" #: oncp.c:254 #, c-format msgid "Received split exclude route %s\n" msgstr "Modtog opdelt ekskludér-rute %s\n" #: oncp.c:274 #, c-format msgid "Received WINS server %s\n" msgstr "Modtog WINS-server %s\n" #: oncp.c:297 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "ESP -kryptering: 0x%02x (%s)\n" #: oncp.c:316 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "ESP HMAC: 0x%02x (%s)\n" #: oncp.c:327 #, c-format msgid "ESP compression: %d\n" msgstr "ESP-komprimering: %d\n" #: oncp.c:335 #, c-format msgid "ESP port: %d\n" msgstr "ESP-port: %d\n" #: oncp.c:342 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "ESP-nøglelevetid: %u byte\n" #: oncp.c:350 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "ESP-nøglelevetid: %u sekunder\n" #: oncp.c:358 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "ESP til SSL-reserve: %u sekunder\n" #: oncp.c:366 #, c-format msgid "ESP replay protection: %d\n" msgstr "ESP-genafspilningsbeskyttelse: %d\n" #: oncp.c:374 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "ESP SPI (udgående): %x\n" #: oncp.c:383 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "%d byte af ESP-hemmeligheder\n" #: oncp.c:395 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "Ukendt TLV-gruppe %d attribut %d længde %d:%s\n" #: oncp.c:473 msgid "Failed to parse KMP header\n" msgstr "Kunne ikke fortolke KMP-teksthoved\n" #: oncp.c:490 msgid "Failed to parse KMP message\n" msgstr "Kunne ikke fortolke KMP-besked\n" #: oncp.c:496 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "Fik KMP-besked %d med størrelsen %d\n" #: oncp.c:512 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "Modtog ikke-ESP TLV'er (gruppe %d) i ESP-forhandling KMP\n" #: oncp.c:577 oncp.c:609 oncp.c:747 msgid "Error creating oNCP negotiation request\n" msgstr "Der opstod en fejl under oprettelse af oNCP-forhandlingsforespørgsel\n" #: oncp.c:618 oncp.c:783 msgid "Short write in oNCP negotiation\n" msgstr "Kort skriv i oNCP-forhandling\n" #: oncp.c:631 oncp.c:666 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "Læste %d byte af SSL-post\n" #: oncp.c:636 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "Uventet svar af størrelse %d efter værtsnavnspakke\n" #: oncp.c:643 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "Serversvar til værtsnavnspakke er fejl 0x%02x\n" #: oncp.c:670 msgid "Invalid packet waiting for KMP 301\n" msgstr "Ugyldig pakke venter på KMP 301\n" #: oncp.c:683 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "Forventede KMP-besked 301 fra server, men fik %d\n" #: oncp.c:692 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "KMP-besked 301 fra server for stor (%d byte)\n" #: oncp.c:698 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "Fik KMP-besked 301 med længden %d\n" #: oncp.c:705 msgid "Failed to read continuation record length\n" msgstr "Kunne ikke læse fortsættelsespostens længde\n" #: oncp.c:711 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "Post på yderligere %d byte er for stor; ville lave %d\n" #: oncp.c:720 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "Kunne ikke læse fortsættelsesposten med længde %d\n" #: oncp.c:726 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "Læste yderligere %d byte af KMP 301-besked\n" #: oncp.c:767 msgid "Error negotiating ESP keys\n" msgstr "Der opstod en fejl under forhandling om ESP-nøgler\n" #: oncp.c:776 msgid "oNCP negotiation request outgoing:\n" msgstr "oNCP-forhandlingsforespørgsel udgående:\n" #: oncp.c:829 msgid "new incoming" msgstr "ny indgående" #: oncp.c:830 msgid "new outgoing" msgstr "ny udgående" #: oncp.c:855 msgid "Read only 1 byte of oNCP length field\n" msgstr "Læste kun 1 byte af oNCP-længdefeltet\n" #: oncp.c:864 msgid "Server terminated connection (session expired)\n" msgstr "Serveren afbrød forbindelsen (sessionen udløb)\n" #: oncp.c:868 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "Serveren afbrød forbindelsen (årsag: %d)\n" #: oncp.c:874 msgid "Server sent zero-length oNCP record\n" msgstr "Server sendte oNCP-post med længden nul\n" #: oncp.c:969 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "Indgående KMP-besked %d af størrelsen %d (fik %d)\n" #: oncp.c:972 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" "Fortsætter med at behandle KMP-besked %d, nu med størrelsen %d (fik %d)\n" #: oncp.c:991 msgid "Unrecognised data packet\n" msgstr "Ikke-genkendt datapakke\n" #: oncp.c:1053 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "Ukendt KMP-besked %d med størrelsen %d:\n" #: oncp.c:1058 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr ".... + %d flere byte ikke modtaget\n" #: oncp.c:1073 msgid "Packet outgoing:\n" msgstr "Pakke udgående:\n" #: oncp.c:1134 msgid "Sent ESP enable control packet\n" msgstr "Sendte kontrolpakke til aktivering af ESP\n" #: oncp.c:1268 msgid "Logout successful.\n" msgstr "Logout lykkedes.\n" #: openconnect-internal.h:1119 openconnect-internal.h:1127 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "FEJL: %s() kaldt med ugyldig UTF-8 for argumentet \"%s\"\n" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "Ude af stand til at beregne DTLS-belastningen for %s\n" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "Kunne ikke generere tilfældig nøgle\n" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "Kunne ikke oprette SSL_SESSION ASN.1 for OpenSSL: %s\n" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "OpenSSL kunne ikke fortolke SSL_SESSION ASN.1\n" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "Initialisering af DTLSv1-sessionen mislykkedes\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "Størrelsen på program-id er for stor\n" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "PSK-tilbagekald\n" #: openssl-dtls.c:365 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Initialisering af DTLSv1 CTX mislykkedes\n" #: openssl-dtls.c:378 msgid "Set DTLS CTX version failed\n" msgstr "Angivelse af DTLS CTX-version mislykkedes\n" #: openssl-dtls.c:395 msgid "Failed to generate DTLS key\n" msgstr "Kunne ikke oprette DTLS-nøgle\n" #: openssl-dtls.c:413 msgid "Set DTLS cipher list failed\n" msgstr "Angivelse af DTLS-krypteringsalgoritmeliste mislykkedes\n" #: openssl-dtls.c:439 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "DTLS-krypteringsalgoritmen “%s” kunne ikke findes\n" #: openssl-dtls.c:460 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "SSL_set_session() mislykkedes med gammel protokolversion 0x%x\n" "Bruger du en ældre version af OpenSSL end 0.9.8m?\n" "Se http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Brug kommandolinjetilvalget --no-dtls for at undgå denne meddelelse\n" #: openssl-dtls.c:493 msgid "SSL_set_session() failed\n" msgstr "SSL_set_session() mislykkedes\n" #: openssl-dtls.c:566 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "Etablerede DTLS-forbindelse (med brug af OpenSSL). Ciphersuite %s.\n" #: openssl-dtls.c:603 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "Din OpenSSL er ældre end den, du byggede mod, så DTLS kan fejle!" #: openssl-dtls.c:654 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Det er sandsynligvis fordi, din OpenSSL er i stykker\n" "Se http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: openssl-dtls.c:661 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "DTLS-forhandling mislykkedes: %d\n" #: openssl-esp.c:87 msgid "Failed to initialise ESP cipher:\n" msgstr "Kunne ikke initialisere ESP-krypteringsalgoritme:\n" #: openssl-esp.c:101 msgid "Failed to initialize ESP HMAC\n" msgstr "Kunne ikke initialisere ESP HMAC\n" #: openssl-esp.c:157 msgid "Failed to generate random keys for ESP:\n" msgstr "Kunne ikke generere tilfældige nøgler til ESP:\n" #: openssl-esp.c:202 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "Kunne ikke indstille dekrypteringskontekst for ESP-pakker:\n" #: openssl-esp.c:210 msgid "Failed to decrypt ESP packet:\n" msgstr "Kunne ikke dekryptere ESP-pakke:\n" #: openssl-esp.c:241 msgid "Failed to encrypt ESP packet:\n" msgstr "Kunne ikke kryptere ESP-pakke:\n" #: openssl-pkcs11.c:43 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "Kunne ikke etablere libp11 PKCS#11-kontekst:\n" #: openssl-pkcs11.c:49 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "Kunne ikke indlæse PKCS#11-leverandørmodul (%s):\n" #: openssl-pkcs11.c:269 msgid "PIN locked\n" msgstr "PIN låst\n" #: openssl-pkcs11.c:272 msgid "PIN expired\n" msgstr "PIN udløbet\n" #: openssl-pkcs11.c:275 msgid "Another user already logged in\n" msgstr "En anden bruger er allerede logget på\n" #: openssl-pkcs11.c:279 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "Ukendt fejl under login til PKCS#11-symbol\n" #: openssl-pkcs11.c:286 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "Logget på til PKCS#11-pladsen \"%s\"\n" #: openssl-pkcs11.c:300 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "Kunne ikke optælle certifikater i PKCS#11-pladsen \"%s\"\n" #: openssl-pkcs11.c:306 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "Fandt %d certifikater i pladsen \"%s\"\n" #: openssl-pkcs11.c:342 openssl-pkcs11.c:565 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "Kunne ikke fortolke PKCS#11-URI'en \"%s\"\n" #: openssl-pkcs11.c:349 openssl-pkcs11.c:575 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "Kunne ikke optælle PKCS#11-pladser\n" #: openssl-pkcs11.c:383 openssl-pkcs11.c:617 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "Logger på til PKCS#11-pladsen \"%s\"\n" #: openssl-pkcs11.c:393 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "Kunne ikke finde PKCS#11-certifikatet \"%s\"\n" #: openssl-pkcs11.c:401 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "Indholdet af X.509-certifikatet blev ikke hentet af libp11\n" #: openssl-pkcs11.c:412 openssl.c:713 msgid "Failed to install certificate in OpenSSL context\n" msgstr "Kunne ikke installere certifikatet i OpenSLL-kontekst\n" #: openssl-pkcs11.c:458 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "Kunne ikke optælle nøgler i PKCS#11-pladsen \"%s\"\n" #: openssl-pkcs11.c:464 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "Fandt %d nøgler i pladsen \"%s\"\n" #: openssl-pkcs11.c:497 msgid "Certificate has no public key\n" msgstr "Certifikatet har ingen offentlig nøgle\n" #: openssl-pkcs11.c:503 openssl-pkcs11.c:526 msgid "Certificate does not match private key\n" msgstr "Certifikatet matcher ikke den private nøgle\n" #: openssl-pkcs11.c:506 msgid "Checking EC key matches cert\n" msgstr "Tjekker at EC-nøgle matcher certifikatet\n" #: openssl-pkcs11.c:510 msgid "Failed to allocate signature buffer\n" msgstr "Kunne ikke allokere signaturbuffer\n" #: openssl-pkcs11.c:520 msgid "Failed to sign dummy data to validate EC key\n" msgstr "Kunne ikke underskrive eksempeldata til validering af EC-nøgle\n" #: openssl-pkcs11.c:638 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "Anvender PKCS#11-nøglen \"%s\"\n" # Google translate og microsoft har instantiere. Det er ikke i RO, men bruges inden for programmering og sprogteori (iflg. google-søgning). #: openssl-pkcs11.c:649 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "Kunne ikke instantiere privat nøgle fra PKCS#11\n" #: openssl-pkcs11.c:678 msgid "Add key from PKCS#11 failed\n" msgstr "Tilføjelse af nøgle fra PKCS#11 mislykkedes\n" #: openssl-pkcs11.c:710 openssl-pkcs11.c:716 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" "Denne version af OpenConnect blev bygget uden understøttelse af PKCS#11\n" #: openssl.c:147 msgid "Failed to write to SSL socket\n" msgstr "Kunne ikke skrive til SSL-sokkel\n" #: openssl.c:197 openssl.c:263 msgid "Failed to read from SSL socket\n" msgstr "Kunne ikke læse fra SSL-sokkel\n" #: openssl.c:292 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" "SSL-læsefejl %d (serveren lukkede sandsynligvis forbindelsen); genopretter " "forbindelse.\n" #: openssl.c:317 #, c-format msgid "SSL_write failed: %d\n" msgstr "SSL_write mislykkedes: %d\n" #: openssl.c:389 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "Uhåndteret SSL UI-forespørgselstype %d\n" #: openssl.c:465 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "PEM-adgangskode for lang (%d ≥ %d)\n" #: openssl.c:498 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Ekstra certifikat fra %s: \"%s\"\n" #: openssl.c:548 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Fortolkning af PKCS#12 mislykkedes (se ovenstående fejl)\n" #: openssl.c:563 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS#12 indeholdt intet certifikat!\n" #: openssl.c:572 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS#12 indeholdt ingen privat nøgle!\n" #: openssl.c:577 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:600 msgid "Can't load TPM engine.\n" msgstr "Kan ikke indlæse TPM-maskine.\n" #: openssl.c:606 msgid "Failed to init TPM engine\n" msgstr "Kunne ikke initialisere TPM-maskine\n" #: openssl.c:616 msgid "Failed to set TPM SRK password\n" msgstr "Kunne ikke indstille TPM SRK-adgangskode\n" #: openssl.c:630 msgid "Failed to load TPM private key\n" msgstr "Kunne ikke indlæse TPM privat nøgle\n" #: openssl.c:636 msgid "Add key from TPM failed\n" msgstr "Tilføjelse af nøgle fra TPM mislykkedes\n" #: openssl.c:687 openssl.c:835 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Kunne ikke åbne certifikatfilen %s: %s\n" #: openssl.c:697 msgid "Loading certificate failed\n" msgstr "Indlæsning af certifikat mislykkedes\n" #: openssl.c:735 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" "Kunne ikke behandle alle understøttende certifikater: Prøver alligevel …\n" #: openssl.c:748 msgid "PEM file" msgstr "PEM-fil" #: openssl.c:777 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Kunne ikke oprette BIO for nøglelagerelementet \"%s\"\n" #: openssl.c:802 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Indlæsning af privat nøgle mislykkedes (forkert adgangsfrase?)\n" #: openssl.c:808 msgid "Loading private key failed (see above errors)\n" msgstr "Indlæsning af privat nøgle mislykkedes (se ovenstående fejl)\n" #: openssl.c:858 msgid "Failed to load X509 certificate from keystore\n" msgstr "Kunne ikke indlæse X509-certifikat fra nøglelager\n" #: openssl.c:864 msgid "Failed to use X509 certificate from keystore\n" msgstr "Kunne ikke bruge X509-certifikat fra nøglelager\n" #: openssl.c:896 msgid "Failed to use private key from keystore\n" msgstr "Kunne ikke bruge privat nøgle fra nøglelager\n" #: openssl.c:912 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Kunne ikke åbne privat nøglefil %s: %s\n" #: openssl.c:936 openssl.c:951 openssl.c:972 openssl.c:1038 msgid "Loading private key failed\n" msgstr "Indlæsning af privat nøgle mislykkedes\n" #: openssl.c:1032 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "Kunne ikke konvertere PKCS#8 til OpenSSL EVP_PKEY\n" #: openssl.c:1049 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Kunne ikke bestemme privat nøgletype i \"%s\"\n" #: openssl.c:1203 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Matchede DNS-altnavn \"%s\"\n" #: openssl.c:1210 #, c-format msgid "No match for altname '%s'\n" msgstr "Intet match for DNS-altnavn \"%s\"\n" #: openssl.c:1224 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "Certifikatet har GEN_IPADD-altnavn med falsk længde %d\n" #: openssl.c:1235 openssl.c:1381 #, c-format msgid "Matched %s address '%s'\n" msgstr "Matchede %s-adresse \"%s\"\n" #: openssl.c:1242 #, c-format msgid "No match for %s address '%s'\n" msgstr "Intet match for %s-adresse \"%s\"\n" #: openssl.c:1284 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "URI'en \"%s\" har ikke-tom sti; ignorerer\n" #: openssl.c:1289 #, c-format msgid "Matched URI '%s'\n" msgstr "Matchede URI \"%s\"\n" #: openssl.c:1300 #, c-format msgid "No match for URI '%s'\n" msgstr "Intet match for URI \"%s\"\n" #: openssl.c:1315 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "Intet altnavn i peercertifikatet matchede \"%s\"\n" #: openssl.c:1323 msgid "No subject name in peer cert!\n" msgstr "Intet emnenavn i peercertifikat!\n" #: openssl.c:1343 msgid "Failed to parse subject name in peer cert\n" msgstr "Kunne ikke fortolke emnenavn i peercertifikat\n" #: openssl.c:1350 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Uoverensstemmelse i peercertifikats emnenavn ('%s' != '%s')\n" #: openssl.c:1355 openssl.c:1389 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Matchede peercertifikats emnenavn \"%s\"\n" #: openssl.c:1451 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Ekstra certifikat fra ca-fil: \"%s\"\n" #: openssl.c:1589 msgid "Error in client cert notAfter field\n" msgstr "Fejl i clientcertifikats notAfter-felt\n" #: openssl.c:1602 msgid "" msgstr "" #: openssl.c:1655 msgid "Create TLSv1 CTX failed\n" msgstr "Oprettelse af TLSv1 CTX mislykkedes\n" #: openssl.c:1674 msgid "SSL certificate and key do not match\n" msgstr "SSL-certifikat og nøgle passer ikke sammen\n" #: openssl.c:1719 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Kunne ikke læse certifikater fra CA-fil \"%s\"\n" #: openssl.c:1752 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Kunne ikke åbne CA-filen \"%s\"\n" #: openssl.c:1812 msgid "SSL connection failure\n" msgstr "SSL-forbindelsesfejl\n" #: openssl.c:1973 msgid "Failed to calculate OATH HMAC\n" msgstr "Kunne ikke beregne OATH HMAC\n" #: script.c:130 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Forkast ugyldigt opdelt inkludér: \"%s\"\n" #: script.c:134 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Forkast ugyldigt opdelt ekskludér: \"%s\"\n" #: script.c:507 script.c:555 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Kunne ikke kalde skriptet \"%s\" for %s: %s\n" #: script.c:562 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "Skriptet \"%s\" afsluttede unormalt (%x)\n" #: script.c:570 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Skriptet \"%s\" returnerede fejl %d\n" #: ssl.c:108 msgid "Socket connect cancelled\n" msgstr "Oprettelse af sokkelforbindelse annulleret\n" #: ssl.c:217 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "Kunne ikke genoprette forbindelse til proxyen %s: %s\n" #: ssl.c:221 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "Kunne ikke genoprette forbindelse til værten %s: %s\n" #: ssl.c:289 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Proxy fra libproxy: %s://%s:%d/\n" #: ssl.c:317 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "getaddrinfo mislykkedes for værten '%s': %s\n" #: ssl.c:326 ssl.c:451 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" "Genopretter forbindelse til DynDNS-server med brug af tidligere gemt IP-" "adresse\n" #: ssl.c:341 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Forsøger at oprette forbindelse til proxy %s%s%s:%s\n" #: ssl.c:342 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Forsøger at oprette forbindelse til server %s%s%s:%s\n" #: ssl.c:362 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "Forbundet til %s%s%s:%s\n" #: ssl.c:374 msgid "Failed to allocate sockaddr storage\n" msgstr "Kunne ikke allokere sockaddr-lager\n" #: ssl.c:416 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "Kunne ikke oprette forbindelse til %s%s%s:%s: %s\n" #: ssl.c:434 msgid "Forgetting non-functional previous peer address\n" msgstr "Glemmer ikke-funktionel tidligere peeradresse\n" #: ssl.c:446 #, c-format msgid "Failed to connect to host %s\n" msgstr "Kunne ikke oprette forbindelse til værten %s\n" #: ssl.c:465 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "Genopretter forbindelse til proxyen \"%s\"\n" #: ssl.c:536 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:564 msgid "Could not obtain file system ID for passphrase\n" msgstr "Kunne ikke opnå filsystem-ID for adgangsfrase\n" #: ssl.c:575 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "Kunne ikke åbne den private nøglefil \"%s\": %s\n" #: ssl.c:603 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:694 msgid "No error" msgstr "Ingen fejl" #: ssl.c:695 msgid "Keystore locked" msgstr "Nøglelager låst" #: ssl.c:696 msgid "Keystore uninitialized" msgstr "Nøglelager ikke initialiseret" #: ssl.c:697 msgid "System error" msgstr "Systemfejl" #: ssl.c:698 msgid "Protocol error" msgstr "Protokolfejl" #: ssl.c:699 msgid "Permission denied" msgstr "Tilladelse nægtet" #: ssl.c:700 msgid "Key not found" msgstr "Nøgle ikke fundet" #: ssl.c:701 msgid "Value corrupted" msgstr "Værdi beskadiget" #: ssl.c:702 msgid "Undefined action" msgstr "Udefineret handling" #: ssl.c:706 msgid "Wrong password" msgstr "Forkert adgangskode" #: ssl.c:707 msgid "Unknown error" msgstr "Ukendt fejl" #: ssl.c:896 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" "openconnect_fopen_utf8() anvendt med ikke-understøttet tilstand \"%s\"\n" #: ssl.c:931 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "Ukendt protokolfamilie %d. Kan ikke oprette UDP-serveradresse\n" #: ssl.c:950 msgid "Open UDP socket" msgstr "Åbn UDP-sokkel" #: ssl.c:981 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "Ukendt protokolfamilie %d. Kan ikke bruge UDP-transport\n" #: ssl.c:989 msgid "Bind UDP socket" msgstr "Tildel UDP-sokkel" #: ssl.c:996 msgid "Connect UDP socket\n" msgstr "Tilslut UDP-sokkel\n" #: ssl.c:1034 msgid "Cookie is no longer valid, ending session\n" msgstr "Cookie er ikke længere gyldig; afslutter session\n" #: ssl.c:1038 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "sov %ds, resterende tidsudløb %ds\n" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "SSPI-symbol for stor (%ld byte)\n" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "Sender SSPI-symbol på %lu byte\n" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "Kunne ikke sende SSPI-godkendelsessymbol til proxy: %s\n" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "Modtog ikke SSPI-godkendelsessymbol fra proxy: %s\n" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "SOCKS-server rapporterede SSPI-kontekstfejl\n" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "Ukendt SSPI-statussvar (0x%02x) fra SOCKS-server\n" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "Fik SSPI-symbol på %lu byte: %02x %02x %02x %02x\n" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "QueryContextAttributes() mislykkedes: %lx\n" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "EncryptMessage() mislykkedes: %lx\n" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "Resultat af EncryptMessage() for stort (%lu + %lu + %lu)\n" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "Sender SSPI-beskyttelsesforhandling på %u byte\n" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "Kunne ikke sende SSPI-beskyttelsessvar til proxy: %s\n" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" "Kunne ikke sende SSPI-beskyttelsessvar til proxy: %s\n" "\n" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "Modtog SSPI-beskyttelsessvar på %d bytes: %02x %02x %02x %02x\n" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "DecryptMessage mislykkedes: %lx\n" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "Ugyldigt SSPI-beskyttelsessvar fra proxy (%lu byte)\n" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "Indtast legitimationsoplysninger for at låse softwaresymbolet op." #: stoken.c:82 msgid "Device ID:" msgstr "Enheds-ID:" #: stoken.c:89 msgid "Password:" msgstr "Adgangskode:" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "Bruger omgik \"blødt\" symbol.\n" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "Alle felter er påkrævede; prøv igen.\n" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "Generel fejl i libstoken.\n" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "Ukorrekt enheds-ID eller adgangskode; prøv igen.\n" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "Initiering af \"blødt\" symbol lykkedes.\n" #: stoken.c:185 msgid "Enter software token PIN." msgstr "Indtast PIN for softwaresymbol." #: stoken.c:189 msgid "PIN:" msgstr "PIN:" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "Ugyldigt PIN-format; prøv igen.\n" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "Genererer RSA-symbolkode\n" #: tun-win32.c:76 msgid "Error accessing registry key for network adapters\n" msgstr "Fejl i forsøget på at tilgå netværkskortenes registernøgle\n" #: tun-win32.c:139 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "Ignorerer ikke-matchende TAP-grænseflade \"%s\"\n" #: tun-win32.c:154 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "Fandt ingen Windows-TAP-kort. Er driveren installeret?\n" #: tun-win32.c:186 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" "GetAdapterIndex() mislykkedes: %s\n" "Vender tilbage til GetAdaptersInfo()\n" #: tun-win32.c:200 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "GetAdapterInfo() mislykkedes: %s\n" #: tun-win32.c:231 #, c-format msgid "Failed to open %s\n" msgstr "Kunne ikke åbne %s\n" #: tun-win32.c:236 #, c-format msgid "Opened tun device %s\n" msgstr "Åbnede tun-enheden %s\n" #: tun-win32.c:244 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Kunne ikke indhente TAP-driverversion: %s\n" #: tun-win32.c:250 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "Fejl: TAP-Windowsdriver v9.9 eller større er krævet (fandt %ld.%ld)\n" #: tun-win32.c:271 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Kunne ikke indstille TAP IP-adresser: %s\n" #: tun-win32.c:283 tun-win32.c:406 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Kunne ikke indstille TAP-mediestatus: %s\n" #: tun-win32.c:316 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "TAP-enhed afbrød forbindelsen. Afbryder forbindelsen.\n" #: tun-win32.c:321 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Kunne ikke læse fra TAP-enhed: %s\n" #: tun-win32.c:335 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Kunne ikke færdiggøre aflæsning fra TAP-enhed: %s\n" #: tun-win32.c:358 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "Skrev %ld byte til tun\n" #: tun-win32.c:368 msgid "Waiting for tun write...\n" msgstr "Venter på at skrive til tun …\n" #: tun-win32.c:371 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "Skrev %ld byte til tun efter at have ventet\n" #: tun-win32.c:378 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Kunne ikke skrive til TAP-enhed: %s\n" #: tun-win32.c:423 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "Opsplitning af tunnelskripter er endnu ikke understøttet i Windows\n" # https://www.techopedia.com/definition/31509/plumbing ? #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Kunne ikke åbne /dev/tun for rørlægning (plumbing)" #: tun.c:92 msgid "Can't push IP" msgstr "Kan ikke skubbe IP" #: tun.c:102 msgid "Can't set ifname" msgstr "Kan ikke indstille ifname" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "Kan ikke åbne %s: %s" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Kan ikke lægge rør (plumb) for %s til IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "åbn /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Kunne ikke oprette ny tun" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "Kunne ikke placere tunfildeskriptor i \"message-discard\"-tilstand" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "tun-enhed understøttes ikke på denne platform\n" #: tun.c:205 msgid "open net" msgstr "åbn net" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Kunne ikke åbne tun-enhed: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "Kunne ikke tildele lokal tun-enhed (TUNSETIFF): %s\n" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" "For at konfigurere lokalt netværk skal openconnect køre som administrator " "(root)\n" "Se http://www.infradead.org/openconnect/nonroot.html for yderligere " "information\n" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" "Ugyldigt grænsefladenavn \"%s\"; skal matche \"utun%%d\" eller \"tun%%d\"\n" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "Kunne ikke åbne SYSPROTO_CONTROL-sokkel: %s\n" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "Kunne ikke forespørge om utun-kontrol-ID: %s\n" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "Kunne ikke allokere utun-enhedsnavn\n" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "Kunne ikke tilslutte utun-enhed: %s\n" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Ugyldigt grænsefladenavn \"%s\"; skal matche \"utun%%d\"\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Kan ikke åbne \"%s\": %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:479 #, c-format msgid "socketpair failed: %s\n" msgstr "socketpair mislykkedes: %s\n" #: tun.c:484 #, c-format msgid "fork failed: %s\n" msgstr "fork mislykkedes: %s\n" #: tun.c:488 msgid "setpgid" msgstr "setpgid" #: tun.c:493 msgid "execl" msgstr "execl" #: tun.c:498 msgid "(script)" msgstr "(skript)" #: tun.c:566 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Kunne ikke skrive indgående pakke: %s\n" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "Kunne ikke åbne %s: %s\n" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "Kunne ikke fstat() %s: %s\n" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Kunne ikke allokere %d byte til %s\n" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "Kunne ikke læse %s: %s\n" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Behandler værten \"%s\" som et råt (raw) værtsnavn\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Kunne ikke anvende SHA1 på eksisterende fil\n" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "SHA1 for XML-konfigurationsfil: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Kunne ikke fortolke XML-konfigurationsfilen %s\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Værten \"%s\" har adressen \"%s\"\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Værten \"%s\" har brugergruppen (UserGroup) \"%s\"\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "Værten \"%s\" er ikke opført i konfigurationen; betragter det som råt (raw) " "værtsnavn\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "Kunne ikke sende \"%s\" til ykneo-oath-applet: %s\n" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "Ugyldigt kort svar til \"%s\" fra ykneo-oath-applet\n" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "Fejlsvar til \"%s\": %04x\n" #: yubikey.c:174 msgid "select applet command" msgstr "vælg appletkommando" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "Genkendte ikke svaret fra ykneo-oath-applet\n" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "Fandt ykneo-oath-applet v%d.%d.%d.\n" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "PIN krævet til Yubikey OATH-applet" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "Yubikey-PIN:" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "Kunne ikke beregne Yubikey \"lås op\"-svar\n" #: yubikey.c:274 msgid "unlock command" msgstr "lås op-kommando" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "Prøver forkortet-tegn PBKBF2-variant af Yubikey-PIN\n" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "Kunne ikke oprette PS/SC-kontekst: %s\n" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "Oprettede PC/SC-kontekst\n" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "Kunne ikke søge i læserliste: %s\n" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "Kunne ikke forbinde til PC/SC-læseren \"%s\": %s\n" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "Forbundet til PC/SC-læseren \"%s\"\n" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "Kunne ikke opnå eksklusiv adgang til læseren \"%s\": %s\n" #: yubikey.c:412 msgid "list keys command" msgstr "vis nøglekommandoer" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "Fandt %s/%s-nøglen \"%s\" på \"%s\"\n" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" "Token \"%s\" blev ikke fundet på Yubikey \"%s\". Leder efter en anden " "Yubikey …\n" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "Server afviser Yubikey-symbol; skifter til manuel indtastning\n" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "Genererer Yubikey-symbolkode\n" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "Kunne ikke opnå eksklusiv adgang til Yubikey: %s\n" #: yubikey.c:619 msgid "calculate command" msgstr "beregn kommando" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "Svaret fra Yubikey, da symbolkoden blev oprettet, blev ikke genkendt\n" openconnect-8.05/po/hu.po0000664000076400007640000042623713536301641017147 0ustar00dwoodhoudwoodhou00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2019-09-11 14:49+0100\n" "PO-Revision-Date: 2011-09-22 22:31+0000\n" "Last-Translator: FULL NAME \n" "Language-Team: Hungarian (http://www.transifex.net/projects/p/meego/team/" "hu/)\n" "Language: hu\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1)\n" #: auth-globalprotect.c:124 #, c-format msgid "" "SAML login is required via %s to this URL:\n" "\t%s" msgstr "" "SAML bejelentkezés szükséges %s módszerrel a következő URL-en:\n" "\t%s" #: auth-globalprotect.c:126 msgid "Please enter your username and password" msgstr "Adja meg a felhasználónevét és jelszavát" #: auth-globalprotect.c:135 msgid "Username" msgstr "Felhasználónév" #: auth-globalprotect.c:150 msgid "Password" msgstr "Jelszó" #: auth-globalprotect.c:197 msgid "Challenge: " msgstr "Kihívás: " #: auth-globalprotect.c:276 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" "A GlobalProtect bejelentkezés a következőt adta vissza: %s=%s (várt: %s)\n" #: auth-globalprotect.c:282 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" "A GlobalProtect bejelentkezés üres vagy hiányzó %s értéket adott vissza\n" #: auth-globalprotect.c:288 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "A GlobalProtect bejelentkezés a következőt adta vissza: %s=%s\n" #: auth-globalprotect.c:331 msgid "Please select GlobalProtect gateway." msgstr "Válasszon egy GlobalProtect átjárót." #: auth-globalprotect.c:341 msgid "GATEWAY:" msgstr "ÁTJÁRÓ:" #. each entry looks like Label #: auth-globalprotect.c:395 #, c-format msgid "%d gateway servers available:\n" msgstr "%d átjáró kiszolgáló érhető el:\n" #: auth-globalprotect.c:416 #, c-format msgid " %s (%s)\n" msgstr " %s (%s)\n" #: auth-globalprotect.c:492 auth-juniper.c:730 auth.c:669 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "Nem sikerült az OTP tokenkód előállítása, a token letiltásra kerül\n" #: auth-globalprotect.c:588 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "A kiszolgáló nem GlobalProtect portál, sem átjáró.\n" #: auth-globalprotect.c:640 oncp.c:1267 msgid "Logout failed.\n" msgstr "Kijelentkezés meghiúsult.\n" #: auth-globalprotect.c:642 msgid "Logout successful\n" msgstr "Kijelentkezés sikeres\n" #: auth-juniper.c:142 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "Ismeretlen űrlap elküldési elem mellőzése: „%s”\n" #: auth-juniper.c:153 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "Ismeretlen űrlap beviteli típus mellőzése: „%s”\n" #: auth-juniper.c:163 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "Kettőzött kapcsoló eldobása: „%s”\n" #: auth-juniper.c:236 auth.c:408 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Nem kezelhetők az űrlap method='%s', action='%s' értékei\n" #: auth-juniper.c:267 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "Ismeretlen szövegterület mező: „%s”\n" #: auth-juniper.c:337 msgid "TNCC support not implemented yet on Windows\n" msgstr "A TNCC támogatás még nincs megvalósítva Windowson\n" #: auth-juniper.c:359 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "Nincs DSPREAUTH süti, TNCC nincs megpróbálva\n" #: auth-juniper.c:397 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "Nem sikerült végrehajtani a(z) %s TNCC parancsfájlt: %s\n" #: auth-juniper.c:411 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "Nem sikerült memóriát lefoglalni a TNCC-vel való kommunikációhoz\n" #: auth-juniper.c:418 msgid "Failed to send start command to TNCC\n" msgstr "Nem sikerült indítási parancsot küldeni a TNCC-nek\n" #: auth-juniper.c:425 msgid "Sent start; waiting for response from TNCC\n" msgstr "Indítás elküldve, várakozás a TNCC-től érkező válaszra\n" #: auth-juniper.c:432 msgid "Failed to read response from TNCC\n" msgstr "Nem sikerült a válasz olvasása a TNCC-től\n" #: auth-juniper.c:439 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "%s válasz sikertelenül érkezett a TNCC-től\n" #: auth-juniper.c:445 msgid "TNCC response 200 OK\n" msgstr "TNCC válasz: 200 OK\n" #: auth-juniper.c:452 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "TNCC válasz második sora: „%s”\n" #: auth-juniper.c:461 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "Új DSPREAUTH süti beszerezve a TNCC-től: %s\n" #: auth-juniper.c:474 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "Váratlan nem üres sor a TNCC-től a DSPREAUTH süti után: „%s”\n" #: auth-juniper.c:481 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "Túl sok nem üres sor a TNCC-től a DSPREAUTH süti után\n" #: auth-juniper.c:650 msgid "Failed to parse HTML document\n" msgstr "Nem sikerült feldolgozni a HTML dokumentumot\n" #: auth-juniper.c:667 msgid "Failed to find or parse web form in login page\n" msgstr "" "Nem sikerült megtalálni vagy feldolgozni a bejelentkező oldalon lévő webes " "űrlapot\n" #: auth-juniper.c:675 msgid "Encountered form with no ID\n" msgstr "Azonosító nélküli űrlap található\n" #: auth-juniper.c:713 #, c-format msgid "Unknown form ID '%s'\n" msgstr "Ismeretlen űrlap-azonosító: „%s”\n" #: auth-juniper.c:716 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "Ismeretlen HTML űrlap kiírása:\n" #: auth.c:96 msgid "Form choice has no name\n" msgstr "Az űrlap választásának nincs neve\n" #: auth.c:181 #, c-format msgid "name %s not input\n" msgstr "a(z) %s név nem bemenet\n" #: auth.c:188 msgid "No input type in form\n" msgstr "Nincs bemenettípus az űrlapon\n" #: auth.c:200 msgid "No input name in form\n" msgstr "Nincs bemenetnév az űrlapon\n" #: auth.c:230 #, c-format msgid "Unknown input type %s in form\n" msgstr "Ismeretlen %s bemenettípus az űrlapon\n" #: auth.c:540 gpst.c:214 msgid "Empty response from server\n" msgstr "Üres válasz a kiszolgálótól\n" #: auth.c:551 gpst.c:289 msgid "Failed to parse server response\n" msgstr "Nem sikerült a kiszolgáló válaszának feldolgozása\n" #: auth.c:553 gpst.c:291 #, c-format msgid "Response was:%s\n" msgstr "A válasz ez volt: %s\n" #: auth.c:575 msgid "Received when not expected.\n" msgstr " érkezett, amikor nem várták.\n" #: auth.c:603 msgid "XML response has no \"auth\" node\n" msgstr "Az XML válasznak nincs „auth” csomópontja\n" #: auth.c:636 msgid "Asked for password but '--no-passwd' set\n" msgstr "Jelszót kértek, de „--no-passwd” van beállítva\n" #: auth.c:925 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "Nem kerül letöltésre az XML profil, mert az SHA1 már egyezik\n" #: auth.c:931 cstp.c:335 http.c:944 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Nem sikerült a HTTPS kapcsolat megnyitása ehhez: %s\n" #: auth.c:952 msgid "Failed to send GET request for new config\n" msgstr "Nem sikerült GET kérést küldeni az új beállításhoz\n" #: auth.c:976 msgid "Downloaded config file did not match intended SHA1\n" msgstr "A letöltött beállítófájl nem egyezett a szándékolt SHA1-gyel\n" #: auth.c:981 msgid "Downloaded new XML profile\n" msgstr "Új XML profil letöltve\n" #: auth.c:992 auth.c:1044 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" "Hiba: A „Cisco Secure Desktop” trójai futtatása még nincs megvalósítva ezen " "a platformon.\n" #: auth.c:1003 mainloop.c:144 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "A(z) %ld gid beállítása nem sikerült: %s\n" #: auth.c:1010 mainloop.c:151 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "A csoportok beállítása nem sikerült erre: %ld: %s\n" #: auth.c:1017 mainloop.c:158 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "A(z) %ld uid beállítása nem sikerült: %s\n" #: auth.c:1024 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "Érvénytelen felhasználó uid=%ld: %s\n" #: auth.c:1031 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Nem sikerült átváltani a(z) „%s” CSD saját könyvtárra: %s\n" #: auth.c:1053 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Hiba: A kiszolgáló CSD gépkeresés futtatására kért minket.\n" "Meg kell adnia egy megfelelő --csd-wrapper argumentumot.\n" #: auth.c:1060 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Hiba: A kiszolgáló egy „Cisco Secure Desktop” trójai letöltésre és " "futtatására kért meg minket.\n" "Ez a szolgáltatás biztonsági okokból alapértelmezetten le van tiltva, ezért " "érdemes lenne engedélyeznie azt.\n" #: auth.c:1067 msgid "Trying to run Linux CSD trojan script.\n" msgstr "Linux CSD trójai parancsfájl futtatásának kísérlete.\n" #: auth.c:1094 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "A(z) „%s” átmeneti könyvtár nem írható: %s\n" #: auth.c:1102 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Nem sikerült megnyitni az átmeneti CSD parancsfájlt: %s\n" #: auth.c:1111 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Nem sikerült írni az átmeneti CSD parancsfájlt: %s\n" #: auth.c:1141 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Figyelem: nem biztonságos CSD kódot futtat rendszergazdai jogosultságokkal\n" "\t Használja a „--csd-user” parancssori kapcsolót\n" #: auth.c:1189 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Nem sikerült végrehajtani a következő CSD parancsfájlt: %s\n" #: auth.c:1221 msgid "Unknown response from server\n" msgstr "Érvénytelen válasz a kiszolgálótól\n" #: auth.c:1342 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" "A kiszolgáló azután kérte a kliens SSL tanúsítványát, miután meg lett adva " "egy\n" #: auth.c:1346 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" "A kiszolgáló a kliens SSL tanúsítványát kérte; egyik sem volt beállítva\n" #: auth.c:1362 msgid "XML POST enabled\n" msgstr "XML POST engedélyezve\n" #: auth.c:1405 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "%s frissítése 1 másodperc múlva…\n" #: compat.c:207 #, c-format msgid "(error 0x%lx)" msgstr "(hiba 0x%lx)" #: compat.c:210 msgid "(Error while describing error!)" msgstr "(Hiba történt a hiba leírása során!)" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "HIBA: Nem lehet előkészíteni a foglalatokat\n" #: cstp.c:112 gpst.c:341 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:134 gpst.c:360 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:281 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" "KRITIKUS HIBA: A DTLS mestertitok nincs előkészítve. Kérjük ezt jelentse.\n" #: cstp.c:312 msgid "Error creating HTTPS CONNECT request\n" msgstr "Hiba a HTTPS CONNECT kérés létrehozásakor\n" #: cstp.c:328 http.c:386 msgid "Error fetching HTTPS response\n" msgstr "Hiba a HTTPS válasz lekérésekor\n" #: cstp.c:355 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "A VPN szolgáltatás nem érhető el; ok: %s\n" #: cstp.c:360 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Nem megfelelő HTTP CONNECT válasz érkezett: %s\n" #: cstp.c:367 #, c-format msgid "Got CONNECT response: %s\n" msgstr "CONNECT válasz érkezett: %s\n" #: cstp.c:396 cstp.c:404 msgid "No memory for options\n" msgstr "Nincs memória a kapcsolókhoz\n" #: cstp.c:413 http.c:447 msgid "" msgstr "" #: cstp.c:433 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "Az X-DTLS-Session-ID nem 64 karakteres; értéke: „%s”\n" #: cstp.c:450 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "Az X-DTLS-Session-ID érvénytelen; értéke: „%s”\n" #: cstp.c:468 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "Ismeretlen DTLS tartalomkódolás: %s\n" #: cstp.c:510 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Ismeretlen CSTP tartalomkódolás: %s\n" #: cstp.c:586 msgid "No MTU received. Aborting\n" msgstr "Nem érkezett MTU. Megszakítás\n" #: cstp.c:594 gpst.c:670 msgid "No IP address received. Aborting\n" msgstr "Nem érkezett IP-cím. Megszakítás\n" #: cstp.c:600 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "IPv6 beállítás érkezett, de a(z) %d MTU túl kicsi.\n" #: cstp.c:606 gpst.c:677 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Az újracsatlakozás eltérő örökölt IP-címet adott (%s != %s)\n" #: cstp.c:615 gpst.c:686 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" "Az újracsatlakozás eltérő örökölt IP hálózati maszkot adott (%s != %s)\n" #: cstp.c:623 gpst.c:695 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Az újracsatlakozás eltérő IPv6-címet adott (%s != %s)\n" #: cstp.c:631 gpst.c:703 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Az újracsatlakozás eltérő IPv6 hálózati maszkot adott (%s != %s)\n" #: cstp.c:639 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP kapcsolódva. DPD %d, Keepalive %d\n" #: cstp.c:641 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "CSTP titkosító alkalmazáscsomag: %s\n" #: cstp.c:703 msgid "Compression setup failed\n" msgstr "Tömörítés beállítás sikertelen\n" #: cstp.c:720 msgid "Allocation of deflate buffer failed\n" msgstr "A deflate puffer lefoglalása meghiúsult\n" #: cstp.c:782 msgid "inflate failed\n" msgstr "inflate meghiúsult\n" #: cstp.c:805 #, c-format msgid "LZS decompression failed: %s\n" msgstr "Az LZS kibontás meghiúsult: %s\n" #: cstp.c:818 msgid "LZ4 decompression failed\n" msgstr "Az LZ4 kibontás meghiúsult\n" #: cstp.c:825 #, c-format msgid "Unknown compression type %d\n" msgstr "Ismeretlen tömörítési típus: %d\n" #: cstp.c:830 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "%s / %d bájt tömörített adatcsomag érkezett (%d volt)\n" #: cstp.c:850 #, c-format msgid "deflate failed %d\n" msgstr "deflate meghiúsult: %d\n" #: cstp.c:923 dtls.c:281 dtls.c:690 esp.c:163 gpst.c:1096 mainloop.c:69 #: oncp.c:914 pulse.c:2297 msgid "Allocation failed\n" msgstr "A lefoglalás meghiúsult\n" #: cstp.c:934 gpst.c:1109 pulse.c:2309 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "Rövid csomag érkezett (%d bájt)\n" #: cstp.c:947 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" "Váratlan csomaghossz. Az SSL_read visszatérési értéke %d, de a csomag\n" #: cstp.c:961 msgid "Got CSTP DPD request\n" msgstr "CSTP DPD kérés érkezett\n" #: cstp.c:967 msgid "Got CSTP DPD response\n" msgstr "CSTP DPD válasz érkezett\n" #: cstp.c:972 msgid "Got CSTP Keepalive\n" msgstr "CSTP Keepalive érkezett\n" #: cstp.c:977 oncp.c:1003 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "%d bájt tömörítetlen adatcsomag érkezett\n" #: cstp.c:994 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Kiszolgáló leválasztás érkezett: %02x „%s”\n" #: cstp.c:997 msgid "Received server disconnect\n" msgstr "Kiszolgáló leválasztás érkezett\n" #: cstp.c:1005 msgid "Compressed packet received in !deflate mode\n" msgstr "Tömörített csomag érkezett !deflate módban\n" #: cstp.c:1014 msgid "received server terminate packet\n" msgstr "kiszolgáló megszakítás csomag érkezett\n" #: cstp.c:1021 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Ismeretlen csomag: %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1064 gpst.c:1197 oncp.c:1121 pulse.c:2452 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "Az SSL túl kevés bájtot írt! %d volt a kérés, %d lett elküldve\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1092 oncp.c:1156 pulse.c:2479 msgid "CSTP rekey due\n" msgstr "CSTP kulcsmegújítás esedékes\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1099 oncp.c:1163 pulse.c:2486 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Újra kézfogás sikertelen, új alagút kísérlete\n" #: cstp.c:1110 oncp.c:1174 pulse.c:2497 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "A CSTP halott csomópont felderítés halott csomópontot észlelt!\n" #: cstp.c:1114 gpst.c:1221 oncp.c:1091 oncp.c:1178 pulse.c:2422 pulse.c:2502 msgid "Reconnect failed\n" msgstr "Újracsatlakozás sikertelen\n" #: cstp.c:1130 oncp.c:1194 pulse.c:2518 msgid "Send CSTP DPD\n" msgstr "CSTP DPD küldése\n" #: cstp.c:1142 oncp.c:1205 pulse.c:2530 msgid "Send CSTP Keepalive\n" msgstr "CSTP Keepalive küldése\n" #: cstp.c:1167 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "%d bájt tömörített adatcsomag küldése (%d volt)\n" #: cstp.c:1178 oncp.c:1239 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "%d bájt tömörítetlen adatcsomag küldése\n" #: cstp.c:1217 #, c-format msgid "Send BYE packet: %s\n" msgstr "BYE csomag küldése: %s\n" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "Digest hitelesítési kísérlet a proxyra\n" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "Digest hitelesítési kísérlet a kiszolgálóra: „%s”\n" #: dtls.c:113 msgid "DTLS connection attempted with an existing fd\n" msgstr "DTLS csatlakozási kísérlet egy meglévő fd-vel\n" #: dtls.c:119 msgid "No DTLS address\n" msgstr "Nincs DTLS cím\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:126 msgid "Server offered no DTLS cipher option\n" msgstr "A kiszolgáló nem ajánlott DTLS titkosító lehetőséget\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:133 msgid "No DTLS when connected via proxy\n" msgstr "Nincs DTLS proxy-n keresztüli csatlakozáskor\n" #: dtls.c:200 #, c-format msgid "DTLS option %s : %s\n" msgstr "DTLS kapcsoló: %s : %s\n" #: dtls.c:239 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS előkészítve. DPD %d, Keepalive %d\n" #: dtls.c:265 msgid "Attempt new DTLS connection\n" msgstr "Új DTLS csatlakozási kísérlet\n" #: dtls.c:292 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Fogadott DTLS csomag 0x%02x / %d bájt\n" #: dtls.c:306 msgid "Got DTLS DPD request\n" msgstr "DTLS DPD kérés érkezett\n" #: dtls.c:312 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Nem sikerült a DPD válasz küldése. Leválasztás várható\n" #: dtls.c:316 msgid "Got DTLS DPD response\n" msgstr "DTLS DPD válasz érkezett\n" #: dtls.c:320 msgid "Got DTLS Keepalive\n" msgstr "DTLS Keepalive érkezett\n" #: dtls.c:326 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" "Tömörített DTLS csomag érkezett, amikor a tömörítés nincs engedélyezve\n" #: dtls.c:334 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Ismeretlen DTLS csomagtípus: %02x, hossz: %d\n" #: dtls.c:356 msgid "DTLS rekey due\n" msgstr "DTLS kulcsmegújítás esedékes\n" #: dtls.c:363 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "DTLS újra kézfogás sikertelen, újracsatlakozás.\n" #: dtls.c:372 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "A DTLS halott csomópont felderítés halott csomópontot észlelt!\n" #: dtls.c:378 msgid "Send DTLS DPD\n" msgstr "DTLS DPD küldése\n" #: dtls.c:383 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Nem sikerült a DPD kérés küldése. Leválasztás várható\n" #: dtls.c:396 msgid "Send DTLS Keepalive\n" msgstr "DTLS Keepalive küldése\n" #: dtls.c:401 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Nem sikerült az életben tartás kérés küldése. Leválasztás várható\n" #: dtls.c:432 tun.c:541 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Ismeretlen csomag (hossz: %d) érkezett: %02x %02x %02x %02x…\n" #: dtls.c:439 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "TOS ez: %d, TOS utolsó: %d\n" #: dtls.c:443 msgid "UDP setsockopt" msgstr "UDP setsockopt" #: dtls.c:474 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "A DTLS írási hibát kapott: %d. Visszatérés SSL-re\n" #: dtls.c:488 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "A DTLS írási hibát kapott: %s. Visszatérés SSL-re\n" #: dtls.c:503 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "%d bájt DTLS csomag küldése; a DTLS küldés visszatérése: %d\n" #: dtls.c:551 #, c-format msgid "Initiating MTU detection (min=%d, max=%d)\n" msgstr "MTU észlelés előkészítése (min=%d, max=%d)\n" #: dtls.c:585 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "MTU DPD szonda küldése (%u bájt)\n" #: dtls.c:589 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "Nem sikerült a DPD kérés (%d %d) küldése\n" #: dtls.c:612 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" "Túl sok idő telt az MTU észlelési ciklusban; megbeszélt MTU feltételezése.\n" #: dtls.c:616 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" "Túl sok idő telt az MTU észlelési ciklusban; az MTU %d értékre beállítva.\n" #: dtls.c:633 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "Váratlan csomag (%.2x) érkezett az MTU észlelésnél; kihagyás.\n" #: dtls.c:640 #, c-format msgid "No response to size %u after %d tries; declare MTU is %u\n" msgstr "" #: dtls.c:647 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "Nem sikerült a DPD kérés (%d) fogadása\n" #: dtls.c:651 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "MTU DPD szonda fogadva (%u bájt)\n" #: dtls.c:701 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "%d bájtos MTU észlelve (%d volt)\n" #: dtls.c:704 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "Nincs változás az MTU-ban az észlelés után (%d volt)\n" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "A várt ESP csomag elfogadása %u sorszámmal\n" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" "A vártnál későbbi ESP csomag elfogadása %u sorszámmal (várt érték: " "%)\n" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "Régi ESP csomag eldobása %u sorszámmal (várt érték: %)\n" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "A(z) %u sorszámú régi ESP csomag eltűrése (várt érték: %)\n" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "Megismételt ESP csomag eldobása %u sorszámmal\n" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "A(z) %u sorszámú megismételt ESP csomag eltűrése\n" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" "Sorrenden kívüli ESP csomag elfogadása %u sorszámmal (várt érték: " "%)\n" #: esp.c:66 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "Paraméterek a(z) %s ESP-hez: SPI 0x%08x\n" #: esp.c:69 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "ESP titkosítási típus (%s) kulcs 0x%s\n" #: esp.c:72 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "ESP hitelesítési típus (%s) kulcs 0x%s\n" #: esp.c:90 msgid "incoming" msgstr "bejövő" #: esp.c:91 msgid "outgoing" msgstr "kimenő" #: esp.c:93 esp.c:147 msgid "Send ESP probes\n" msgstr "ESP szondák küldése\n" #: esp.c:172 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "%d bájt ESP csomag érkezett\n" #: esp.c:189 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "ESP csomag érkezett régi 0x%x SPI-vel, sorozatszám %u\n" #: esp.c:195 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "ESP csomag érkezett, érvénytelen 0x%08x SPI-vel\n" #: esp.c:208 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "ESP csomag érkezett, nem felismert %02x adattípussal\n" #: esp.c:215 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "Érvénytelen kitöltő hossz (%02x) az ESP-ben\n" #: esp.c:227 msgid "Invalid padding bytes in ESP\n" msgstr "Érvénytelen kitöltő bájtok az ESP-ben\n" #: esp.c:236 msgid "ESP session established with server\n" msgstr "ESP munkamenet létrehozva a kiszolgálóval\n" #: esp.c:247 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" "Nem sikerült memóriát lefoglalni az ESP csomag titkosításának feloldásához\n" #: esp.c:253 msgid "LZO decompression of ESP packet failed\n" msgstr "Az ESP csomag kibontása LZO-val sikertelen\n" #: esp.c:259 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "%d bájt kibontása LZO-val ide: %d\n" #: esp.c:273 msgid "Rekey not implemented for ESP\n" msgstr "Az újrabeírás nincs megvalósítva az ESP-khez\n" #: esp.c:277 msgid "ESP detected dead peer\n" msgstr "Az ESP halott csomópontot észlelt\n" #: esp.c:285 msgid "Send ESP probes for DPD\n" msgstr "ESP szondák küldése a DPD-hez\n" #: esp.c:292 msgid "Keepalive not implemented for ESP\n" msgstr "Az életben tartás nincs megvalósítva az ESP-khez\n" #: esp.c:346 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:353 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "Nem sikerült az ESP csomag küldése: %s\n" #: esp.c:359 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "%d bájtos ESP csomag elküldve\n" #: esp.c:430 msgid "Failed to generate random keys for ESP\n" msgstr "Nem sikerült a véletlenszerű kulcsok előállítása az ESP-hez\n" #: esp.c:437 msgid "Failed to generate initial IV for ESP\n" msgstr "Nem sikerült a kezdeti érték (IV) előállítása az ESP-hez\n" #: gnutls-dtls.c:190 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "DTLS folytatás késleltetése amíg a CSTP egy PSK-t generál\n" #: gnutls-dtls.c:198 msgid "Failed to generate DTLS priority string\n" msgstr "Nem sikerült a DTLS prioritás karakterlánc előállítása\n" #: gnutls-dtls.c:207 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "A DTLS előkészítése sikertelen: %s\n" #: gnutls-dtls.c:216 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "Nem sikerült a DTLS prioritás beállítása: „%s”: %s\n" #: gnutls-dtls.c:240 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "Nem sikerült a hitelesítő adatok lefoglalása: %s\n" #: gnutls-dtls.c:253 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "Nem sikerült a DTLS kulcs előállítása: %s\n" #: gnutls-dtls.c:267 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "Nem sikerült a DTLS kulcs beállítása: %s\n" #: gnutls-dtls.c:275 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "Nem sikerült a DTLS PSK hitelesítő adatok beállítása: %s\n" #: gnutls-dtls.c:309 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Ismeretlen DTLS paraméterek a kért „%s” CipherSuite esetén\n" #: gnutls-dtls.c:324 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "Nem sikerült a DTLS prioritás beállítása: %s\n" #: gnutls-dtls.c:345 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Nem sikerült a DTLS munkamenet paraméterek beállítása: %s\n" #: gnutls-dtls.c:373 openssl-dtls.c:574 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "A partner %d MTU-ja túl kicsi a DTLS működéséhez\n" #: gnutls-dtls.c:382 openssl-dtls.c:585 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "A DTLS MTU csökkentve erre: %d\n" #: gnutls-dtls.c:392 openssl-dtls.c:594 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" "A DTLS munkamenet folytatása nem sikerült; lehetséges beékelődéses támadás. " "A DTLS letiltása.\n" #: gnutls-dtls.c:405 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Nem sikerült a DTLS MTU beállítása: %s\n" #: gnutls-dtls.c:416 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" "DTLS kapcsolat kiépítve (GnuTLS használatával). Titkosító alkalmazáscsomag: " "%s.\n" #: gnutls-dtls.c:422 openssl-dtls.c:612 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "DTLS kapcsolattömörítés %s használatával.\n" #: gnutls-dtls.c:437 openssl-dtls.c:693 openssl-dtls.c:697 msgid "DTLS handshake timed out\n" msgstr "A DTLS kézfogás túllépte az időkorlátot\n" #: gnutls-dtls.c:440 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "A DTLS kézfogás meghiúsult: %s\n" #: gnutls-dtls.c:444 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(Egy tűzfal akadályozza az UDP csomagok küldését?)\n" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "Az ESP titkosító előkészítése sikertelen: %s\n" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "Az ESP HMAC előkészítése sikertelen: %s\n" #: gnutls-esp.c:128 gnutls-esp.c:171 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "Az ESP csomag HMAC kódjának kiszámítása sikertelen: %s\n" #: gnutls-esp.c:135 openssl-esp.c:166 msgid "Received ESP packet with invalid HMAC\n" msgstr "Érvénytelen HMAC kódú ESP csomag érkezett\n" #: gnutls-esp.c:147 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "Az ESP csomag titkosításának feloldása sikertelen: %s\n" #: gnutls-esp.c:163 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "Az ESP csomag titkosítása sikertelen: %s\n" #: gnutls.c:95 openssl.c:154 msgid "SSL write cancelled\n" msgstr "SSL írás megszakítva\n" #: gnutls.c:99 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "Nem sikerült írni az SSL foglalatba: %s\n" #: gnutls.c:145 gnutls.c:237 openssl.c:204 openssl.c:271 msgid "SSL read cancelled\n" msgstr "SSL olvasás megszakítva\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:158 msgid "SSL socket closed uncleanly\n" msgstr "Az SSL foglalat nem tisztán záródott be\n" #: gnutls.c:168 gnutls.c:246 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "Nem sikerült olvasni az SSL foglalatból: %s\n" #: gnutls.c:266 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "SSL olvasási hiba: %s; újracsatlakozás.\n" #: gnutls.c:302 #, c-format msgid "SSL send failed: %s\n" msgstr "SSL küldés sikertelen: %s\n" #: gnutls.c:315 msgid "Could not extract expiration time of certificate\n" msgstr "Nem sikerült kinyerni a tanúsítvány lejárati idejét\n" #: gnutls.c:320 openssl.c:1592 msgid "Client certificate has expired at" msgstr "A kliens tanúsítvány érvényessége lejárt" #: gnutls.c:322 openssl.c:1597 msgid "Client certificate expires soon at" msgstr "A kliens tanúsítvány hamarosan lejár" #: gnutls.c:371 openssl.c:771 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" "Nem sikerült betölteni a(z) „%s” elemet a következő kulcstartóról: %s\n" #: gnutls.c:384 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Nem sikerült a(z) %s kulcs/tanúsítvány fájl megnyitása: %s\n" #: gnutls.c:391 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Nem sikerült a(z) %s kulcs/tanúsítvány fájl elérése: %s\n" #: gnutls.c:400 msgid "Failed to allocate certificate buffer\n" msgstr "Nem sikerült lefoglalni a tanúsítvány puffert\n" #: gnutls.c:408 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Nem sikerült a tanúsítvány beolvasása a memóriába: %s\n" #: gnutls.c:439 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Nem sikerült beállítani a PKCS#12 adatszerkezetet: %s\n" #: gnutls.c:462 openssl.c:534 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Nem sikerült visszafejteni a PKCS#12 tanúsítvány fájlt\n" #: gnutls.c:466 openssl.c:537 msgid "Enter PKCS#12 pass phrase:" msgstr "PKCS#12 jelmondat megadása:" #: gnutls.c:489 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Nem sikerült feldolgozni a PKCS#12 fájlt: %s\n" #: gnutls.c:501 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Nem sikerült betölteni a PKCS#12 tanúsítványt: %s\n" #: gnutls.c:584 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Az X509 tanúsítvány importálása nem sikerült: %s\n" #: gnutls.c:594 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "A PKCS#11 tanúsítvány beállítása nem sikerült: %s\n" #: gnutls.c:628 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Nem sikerült az MD5 hash előkészítése: %s\n" #: gnutls.c:638 #, c-format msgid "MD5 hash error: %s\n" msgstr "MD5 hash hiba: %s\n" #: gnutls.c:696 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "Hiányzó DEK-Info: fejléc a titkosított OpenSSL kulcsból\n" #: gnutls.c:703 msgid "Cannot determine PEM encryption type\n" msgstr "Nem lehet meghatározni a PEM titkosítás típusát\n" #: gnutls.c:716 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Nem támogatott PEM titkosítási típus: %s\n" #: gnutls.c:741 gnutls.c:754 msgid "Invalid salt in encrypted PEM file\n" msgstr "Érvénytelen só a titkosított PEM fájlban\n" #: gnutls.c:778 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Hiba a base64 dekódolt titkosított PEM fájlban: %s\n" #: gnutls.c:786 msgid "Encrypted PEM file too short\n" msgstr "A titkosított PEM fájl túl rövid\n" #: gnutls.c:814 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" "Nem sikerült a titkosító előkészítése a PEM fájl visszafejtéséhez: %s\n" #: gnutls.c:825 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Nem sikerült visszafejteni a PEM kulcsot: %s\n" #: gnutls.c:877 msgid "Decrypting PEM key failed\n" msgstr "A PEM kulcs visszafejtése nem sikerült\n" #: gnutls.c:881 gnutls.c:1406 openssl.c:458 msgid "Enter PEM pass phrase:" msgstr "PEM jelmondat megadása:" #: gnutls.c:942 msgid "This binary built without system key support\n" msgstr "Ez a program rendszerkulcs támogatás nélkül készült\n" #: gnutls.c:949 msgid "This binary built without PKCS#11 support\n" msgstr "Ez a program PKCS#11 támogatás nélkül készült\n" #: gnutls.c:993 openssl-pkcs11.c:407 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "A következő PKCS#11 tanúsítvány használata: %s\n" #: gnutls.c:994 #, c-format msgid "Using system certificate %s\n" msgstr "Rendszertanúsítvány használata: %s\n" #: gnutls.c:1012 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Hiba a tanúsítvány betöltésekor a PKCS#11 fájlból: %s\n" #: gnutls.c:1013 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Hiba a rendszertanúsítvány betöltésekor: %s\n" #: gnutls.c:1024 openssl.c:827 #, c-format msgid "Using certificate file %s\n" msgstr "A következő tanúsítványfájl használata: %s\n" #: gnutls.c:1052 msgid "PKCS#11 file contained no certificate\n" msgstr "A PKCS#11 fájl nem tartalmazott tanúsítványt\n" #: gnutls.c:1078 msgid "No certificate found in file" msgstr "Nem található tanúsítvány a fájlban" #: gnutls.c:1083 #, c-format msgid "Loading certificate failed: %s\n" msgstr "A tanúsítvány betöltése nem sikerült: %s\n" #: gnutls.c:1099 #, c-format msgid "Using system key %s\n" msgstr "Rendszerkulcs használata: %s\n" #: gnutls.c:1104 gnutls.c:1272 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Hiba a személyes kulcs szerkezet előkészítésekor: %s\n" #: gnutls.c:1115 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Hiba a(z) %s rendszerkulcs importálásakor: %s\n" #: gnutls.c:1126 gnutls.c:1220 gnutls.c:1248 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "A(z) %s PKCS#11 kulcs URL próbája\n" #: gnutls.c:1131 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Hiba a PKCS#11 kulcs szerkezet előkészítésekor: %s\n" #: gnutls.c:1260 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Hiba a(z) %s PKCS#11 URL importálásakor: %s\n" #: gnutls.c:1267 openssl-pkcs11.c:644 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "A következő PKCS#11 kulcs használata: %s\n" #: gnutls.c:1282 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" "Hiba a PKCS#11 kulcs importálásakor a személyes kulcs szerkezetbe: %s\n" #: gnutls.c:1300 #, c-format msgid "Using private key file %s\n" msgstr "A következő személyes kulcs fájl használata: %s\n" #: gnutls.c:1311 openssl.c:651 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Az OpenConnect ezen verziója TPM támogatás nélkül készült\n" #: gnutls.c:1327 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "Az OpenConnect ezen verziója TPM2 támogatás nélkül készült\n" #: gnutls.c:1348 msgid "Failed to interpret PEM file\n" msgstr "Nem sikerült értelmezni a PEM fájlt\n" #: gnutls.c:1367 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Nem sikerült betölteni a PKCS#1 személyes kulcsot: %s\n" #: gnutls.c:1380 gnutls.c:1394 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Nem sikerült betölteni a személyes kulcsot PKCS#8-ként: %s\n" #: gnutls.c:1402 gnutls.c:1435 openssl.c:1002 openssl.c:1012 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Nem sikerült visszafejteni a PKCS#8 tanúsítvány fájlt\n" #: gnutls.c:1427 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Nem sikerült meghatározni a személyes kulcs típusát: %s\n" #: gnutls.c:1439 openssl.c:1008 msgid "Enter PKCS#8 pass phrase:" msgstr "PKCS#8 jelmondat megadása:" #: gnutls.c:1455 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Nem sikerült lekérni a kulcsazonosítót: %s\n" #: gnutls.c:1500 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Hiba a tesztadatok aláírásakor a személyes kulccsal: %s\n" #: gnutls.c:1515 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Hiba az aláírás hitelesítésekor a tanúsítvány ellenében: %s\n" #: gnutls.c:1540 msgid "No SSL certificate found to match private key\n" msgstr "Nem található SSL tanúsítvány a személyes kulcs egyezésére\n" #: gnutls.c:1552 openssl.c:560 openssl.c:709 #, c-format msgid "Using client certificate '%s'\n" msgstr "A következő klienstanúsítvány használata: „%s”\n" #: gnutls.c:1559 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "A tanúsítvány visszavonási lista beállítása nem sikerült: %s\n" #: gnutls.c:1580 gnutls.c:1590 msgid "Failed to allocate memory for certificate\n" msgstr "Nem sikerült memóriát lefoglalni a tanúsítványhoz\n" #: gnutls.c:1626 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" "FIGYELEM: a GnuTLS helytelen kibocsátó tanúsítványokkal tért vissza; a " "hitelesítés meghiúsulhat!\n" #: gnutls.c:1649 msgid "Got no issuer from PKCS#11\n" msgstr "Nem kapott kibocsátót a PKCS#11-ből\n" #: gnutls.c:1654 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "A következő „%s” CA lekérve a PKCS11-ből\n" #: gnutls.c:1680 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Nem sikerült memóriát lefoglalni a tanúsítványok támogatásához\n" #: gnutls.c:1703 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Támogatott CA hozzáadása: „%s”\n" #: gnutls.c:1725 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" "A privát kulcs úgy tűnik, hogy nem támogatja az RSA-PSS-t. A TLSv1.3 " "letiltása\n" #: gnutls.c:1749 #, c-format msgid "Setting certificate failed: %s\n" msgstr "A tanúsítvány beállítása nem sikerült: %s\n" #: gnutls.c:1942 msgid "Server presented no certificate\n" msgstr "A kiszolgáló nem mutatott be tanúsítványt\n" #: gnutls.c:1950 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" "Hiba a kiszolgáló tanúsítványának újbóli kézfogáskor történő " "összehasonlításakor: %s\n" #: gnutls.c:1955 openssl.c:1515 msgid "Server presented different cert on rehandshake\n" msgstr "" "A kiszolgáló különböző tanúsítványt mutatott be az újbóli kézfogáskor\n" #: gnutls.c:1960 openssl.c:1518 msgid "Server presented identical cert on rehandshake\n" msgstr "A kiszolgáló azonos tanúsítványt mutatott be az újbóli kézfogáskor\n" #: gnutls.c:1966 msgid "Error initialising X509 cert structure\n" msgstr "Hiba az X509 tanúsítvány szerkezet előkészítésekor\n" #: gnutls.c:1972 msgid "Error importing server's cert\n" msgstr "Hiba a kiszolgáló tanúsítványának importálásakor\n" #: gnutls.c:1981 main.c:1794 msgid "Could not calculate hash of server's certificate\n" msgstr "Nem sikerült kiszámolni a kiszolgáló tanúsítványának hash értékét\n" #: gnutls.c:1986 msgid "Error checking server cert status\n" msgstr "Hiba a kiszolgáló tanúsítványállapotának ellenőrzésekor\n" #: gnutls.c:1991 msgid "certificate revoked" msgstr "tanúsítvány visszavonva" #: gnutls.c:1993 msgid "signer not found" msgstr "aláíró nem található" #: gnutls.c:1995 msgid "signer not a CA certificate" msgstr "az aláíró nem hitelesítésszolgáltatói tanúsítvány" #: gnutls.c:1997 msgid "insecure algorithm" msgstr "nem biztonságos algoritmus" #: gnutls.c:1999 msgid "certificate not yet activated" msgstr "a tanúsítvány még nincs aktiválva" #: gnutls.c:2001 msgid "certificate expired" msgstr "a tanúsítvány lejárt" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2006 msgid "signature verification failed" msgstr "az aláírás ellenőrzése sikertelen" #: gnutls.c:2055 openssl.c:1399 openssl.c:1551 msgid "certificate does not match hostname" msgstr "a tanúsítvány nem egyezik a gépnévvel" #: gnutls.c:2060 openssl.c:1398 openssl.c:1557 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "A kiszolgáló tanúsítványának ellenőrzése meghiúsult: %s\n" #: gnutls.c:2127 msgid "Failed to allocate memory for cafile certs\n" msgstr "" "Nem sikerült memóriát lefoglalni a hitelesítés-szolgáltató fájl " "tanúsítványokhoz\n" #: gnutls.c:2148 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "" "Nem sikerült a tanúsítványok olvasása a hitelesítés-szolgáltató fájlból: " "„%s”\n" #: gnutls.c:2164 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Nem sikerült megnyitni a(z) „%s” CA fájlt: %s\n" #: gnutls.c:2177 openssl.c:1679 msgid "Loading certificate failed. Aborting.\n" msgstr "A tanúsítvány betöltése nem sikerült. Megszakítás.\n" #: gnutls.c:2238 #, c-format msgid "Failed to set TLS priority string (\"%s\"): %s\n" msgstr "A TLS prioritás szöveg („%s”) beállítása sikertelen: %s\n" #: gnutls.c:2250 openssl.c:1796 #, c-format msgid "SSL negotiation with %s\n" msgstr "SSL egyeztetés ezzel: %s\n" #: gnutls.c:2297 openssl.c:1822 msgid "SSL connection cancelled\n" msgstr "Az SSL kapcsolat megszakítva\n" #: gnutls.c:2304 #, c-format msgid "SSL connection failure: %s\n" msgstr "Az SSL kapcsolat meghiúsult: %s\n" #: gnutls.c:2313 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "Nem végzetes GnuTLS visszatérés a kézfogás közben: %s\n" #: gnutls.c:2319 openssl.c:1839 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "Kapcsolódva HTTPS-hez ezen: %s\n" #: gnutls.c:2322 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "SSL újraegyeztetés ezen: %s\n" #: gnutls.c:2484 openssl-pkcs11.c:199 #, c-format msgid "PIN required for %s" msgstr "PIN-kód szükséges ehhez: %s" #: gnutls.c:2488 openssl-pkcs11.c:202 msgid "Wrong PIN" msgstr "Hibás PIN-kód" #: gnutls.c:2491 msgid "This is the final try before locking!" msgstr "Ez az utolsó próbálkozás a zárolás előtt!" #: gnutls.c:2493 msgid "Only a few tries left before locking!" msgstr "Már csak néhány próbálkozás van a zárolás előtt!" #: gnutls.c:2498 openssl-pkcs11.c:206 msgid "Enter PIN:" msgstr "Adja meg a PIN-kódot:" #: gnutls.c:2584 openssl.c:1969 msgid "Unsupported OATH HMAC algorithm\n" msgstr "Nem támogatott OATH HMAC algoritmus\n" #: gnutls.c:2593 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "Nem sikerült az OATH HMAC kiszámítása: %s\n" #: gnutls.c:2607 #, c-format msgid "ttls_pull_timeout_func %dms\n" msgstr "ttls_pull_timeout_func %dms\n" #: gnutls.c:2650 openssl.c:2084 msgid "Established EAP-TTLS session\n" msgstr "EAP-TTLS munkamenet kiépítve\n" #: gnutls_tpm.c:54 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "TPM aláírás függvény meghívva %d bájthoz.\n" #: gnutls_tpm.c:61 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Nem sikerült a TPM hash objektum létrehozása: %s\n" #: gnutls_tpm.c:68 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Nem sikerült értéket beállítani a TPM hash objektumban: %s\n" #: gnutls_tpm.c:78 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "A TPM hash aláírás nem sikerült: %s\n" #: gnutls_tpm.c:100 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Hiba a TSS kulcs bináris visszafejtésekor: %s\n" #: gnutls_tpm.c:108 gnutls_tpm.c:119 gnutls_tpm.c:132 msgid "Error in TSS key blob\n" msgstr "Hiba a TSS kulcs binárisban\n" #: gnutls_tpm.c:139 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Nem sikerült a TPM környezet létrehozása: %s\n" #: gnutls_tpm.c:146 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Nem sikerült a TPM környezet csatlakoztatása: %s\n" #: gnutls_tpm.c:154 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Nem sikerült a TPM SRK kulcs betöltése: %s\n" #: gnutls_tpm.c:161 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Nem sikerült a TPM SRK házirendobjektum betöltése: %s\n" #: gnutls_tpm.c:182 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Nem sikerült a TPM PIN-kód beállítása: %s\n" #: gnutls_tpm.c:198 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Nem sikerült a TPM kulcs bináris betöltése: %s\n" #: gnutls_tpm.c:205 msgid "Enter TPM SRK PIN:" msgstr "Adja meg a TPM SRK PIN-kódját:" #: gnutls_tpm.c:226 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Nem sikerült a kulcsházirend objektum létrehozása: %s\n" #: gnutls_tpm.c:234 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Nem sikerült a házirend hozzárendelése a kulcshoz: %s\n" #: gnutls_tpm.c:240 msgid "Enter TPM key PIN:" msgstr "Adja meg a TPM kulcs PIN-kódját:" #: gnutls_tpm.c:251 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Nem sikerült a kulcs PIN-kódjának beállítása: %s\n" #: gnutls_tpm2.c:92 gnutls_tpm2_esys.c:474 gnutls_tpm2_ibm.c:419 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:198 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:208 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:217 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:225 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:231 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:249 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:270 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:275 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:384 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2_esys.c:173 msgid "TPM2 password too long; truncating\n" msgstr "A TPM2 jelszó túl hosszú; csonkolás\n" #: gnutls_tpm2_esys.c:189 msgid "owner" msgstr "tulajdonos" #: gnutls_tpm2_esys.c:190 msgid "null" msgstr "null" #: gnutls_tpm2_esys.c:191 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:192 msgid "platform" msgstr "platform" #: gnutls_tpm2_esys.c:196 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "Elsődleges kulcs létrehozása a(z) %s hierarchia alatt.\n" #: gnutls_tpm2_esys.c:201 gnutls_tpm2_ibm.c:262 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "Adja meg a(z) %s TPM2 hierarchia jelszavát:" #: gnutls_tpm2_esys.c:209 gnutls_tpm2_esys.c:303 gnutls_tpm2_esys.c:374 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "TPM2 Esys_TR_SetAuth sikertelen: 0x%x\n" #: gnutls_tpm2_esys.c:221 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "TPM2 Esys_CreatePrimary tulajdonos hitelesítése sikertelen\n" #: gnutls_tpm2_esys.c:226 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "TPM2 Esys_CreatePrimary sikertelen: 0x%x\n" #: gnutls_tpm2_esys.c:245 msgid "Establishing connection with TPM.\n" msgstr "Kapcsolat kiépítése a TPM-mel.\n" #: gnutls_tpm2_esys.c:250 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "TPM2 Esys_Initialize sikertelen: 0x%x\n" #: gnutls_tpm2_esys.c:258 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:261 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:274 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:295 gnutls_tpm2_ibm.c:278 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:309 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:317 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:323 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:333 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:363 gnutls_tpm2_ibm.c:363 gnutls_tpm2_ibm.c:450 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:395 #, c-format msgid "TPM2 RSA sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:414 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:420 gnutls_tpm2_esys.c:500 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:464 gnutls_tpm2_ibm.c:405 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:494 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:532 gnutls_tpm2_ibm.c:485 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:546 gnutls_tpm2_ibm.c:502 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:555 gnutls_tpm2_ibm.c:512 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:569 gnutls_tpm2_ibm.c:523 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:54 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:226 #, c-format msgid "%s\n" msgstr "" #: gpst.c:229 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:412 #, c-format msgid "Unknown ESP MAC algorithm: %s" msgstr "" #: gpst.c:420 #, c-format msgid "Unknown ESP encryption algorithm: %s" msgstr "Ismeretlen ESP titkosítási algoritmus: %s" #: gpst.c:486 #, c-format msgid "Session will expire after %d minutes.\n" msgstr "" #: gpst.c:489 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: gpst.c:495 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:499 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:510 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:564 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:573 oncp.c:835 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" "Az ESP kulcsok figyelmen kívül hagyása, mivel az ESP támogatás nem elérhető " "ebben a verzióban\n" #: gpst.c:591 #, c-format msgid "" "Potential IPv6-related GlobalProtect config tag <%s>: %s\n" "This build does not support GlobalProtect IPv6 due to a lack of\n" "of information on how it is configured. Please report this\n" "to .\n" msgstr "" #: gpst.c:596 #, c-format msgid "Unknown GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:655 msgid "ESP disabled" msgstr "" #: gpst.c:657 msgid "No ESP keys received" msgstr "" #: gpst.c:659 msgid "ESP support not available in this build" msgstr "" #: gpst.c:663 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:725 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:747 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:756 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:764 #, c-format msgid "Got inappropriate HTTP GET-tunnel response: %.*s\n" msgstr "" #: gpst.c:909 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" "VPN connectivity may be disabled or limited without HIP report submission.\n" "You need to provide a --csd-wrapper argument with the HIP report submission " "script.\n" msgstr "" #: gpst.c:919 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:948 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:953 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:959 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:961 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:996 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:1020 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:1026 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:1053 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1069 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1105 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1126 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1136 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1140 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1147 #, c-format msgid "Received IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1156 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1164 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1212 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1217 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1237 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1260 #, c-format msgid "Sending IPv%d data packet of %d bytes\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Hiba a GSSAPI név importálásakor a hitelesítéshez:\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "Hiba a GSSAPI válasz előállításakor:\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "GSSAPI hitelesítési kísérlet a proxyra\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "GSSAPI hitelesítési kísérlet a kiszolgálóra: „%s”\n" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "GSSAPI hitelesítés befejezve\n" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "A GSSAPI token túl nagy (%zd bájt)\n" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "%zu bájt GSSAPI token küldése\n" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "Nem sikerült elküldeni a GSSAPI hitelesítési tokent a proxynak: %s\n" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "Nem sikerült fogadni a GSSAPI hitelesítési tokent a proxytól: %s\n" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "A SOCKS kiszolgáló GSSAPI környezet hibát jelentett\n" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "Ismeretlen GSSAPI állapotválasz (0x%02x) a SOCKS kiszolgálótól\n" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "%zu bájt GSSAPI token érkezett: %02x %02x %02x %02x\n" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "%zu bájt GSSAPI védelemegyeztetés küldése\n" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "Nem sikerült elküldeni a GSSAPI védelem választ a proxynak: %s\n" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "Nem sikerült fogadni a GSSAPI védelem választ a proxytól: %s\n" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "%zu bájt GSSAPI védelem válasz érkezett: %02x %02x %02x %02x\n" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "Érvénytelen GSSAPI védelem válasz a proxytól (%zu bájt)\n" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "A SOCKS proxy üzenet sértetlenséget igényel, amely nem támogatott\n" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "A SOCKS proxy üzenet titoktartást igényel, amely nem támogatott\n" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "A SOCKS proxy ismeretlen 0x%02x típusú védelmet igényel\n" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "Alap HTML hitelesítési kísérlet a proxyra\n" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "Alap HTML hitelesítési kísérlet a kiszolgálóra: „%s”\n" #: http-auth.c:200 http.c:1201 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "Az OpenConnect ezen verziója GSSAPI támogatás nélkül készült\n" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" "A proxy Basic hitelesítést kért, amely alapértelmezetten le van tiltva\n" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" "A(z) „%s” kiszolgáló alap hitelesítést kért, amely alapértelmezetten le van " "tiltva\n" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "Nincs több kipróbálható hitelesítési eljárás\n" #: http.c:321 msgid "No memory for allocating cookies\n" msgstr "Nincs memória a sütik lefoglalásához\n" #: http.c:396 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Nem sikerült feldolgozni a következő HTTP választ: „%s”\n" #: http.c:402 #, c-format msgid "Got HTTP response: %s\n" msgstr "HTTP válasz érkezett: %s\n" #: http.c:410 msgid "Error processing HTTP response\n" msgstr "Hiba a HTTP válasz feldolgozásakor\n" #: http.c:417 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Ismeretlen HTTP válasz sor mellőzése: „%s”\n" #: http.c:437 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Érvénytelen sütit ajánlottak: %s\n" #: http.c:457 msgid "SSL certificate authentication failed\n" msgstr "Az SSL tanúsítvány hitelesítése nem sikerült\n" #: http.c:492 #, c-format msgid "Response body has negative size (%d)\n" msgstr "A választörzsnek negatív mérete van (%d)\n" #: http.c:503 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Ismeretlen átviteli kódolás: %s\n" #. Now the body, if there is one #: http.c:522 #, c-format msgid "HTTP body %s (%d)\n" msgstr "HTTP törzs %s (%d)\n" #: http.c:538 http.c:568 msgid "Error reading HTTP response body\n" msgstr "Hiba a HTTP válasz törzsének olvasásakor\n" #: http.c:551 msgid "Error fetching chunk header\n" msgstr "Hiba a fejléc darabjának lekérésekor\n" #: http.c:579 msgid "Error fetching HTTP response body\n" msgstr "Hiba a HTTP válasz törzsének lekérésekor\n" #: http.c:582 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "Hiba a darabolt dekódolásban. „” várt, „%s” érkezett" #: http.c:595 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Nem fogadható HTTP 1.0 törzs a kapcsolat lezárása nélkül\n" #: http.c:724 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Nem sikerült feldolgozni az átirányított „%s” URL-t: %s\n" #: http.c:748 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Nem követhető az átirányítás nem HTTPS URL-re: „%s”\n" #: http.c:776 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Új útvonal lefoglalása a relatív átirányításhoz nem sikerült: %s\n" #: http.c:1001 oncp.c:591 pulse.c:1292 #, c-format msgid "Unexpected %d result from server\n" msgstr "Váratlan %d eredmény a kiszolgálótól\n" #: http.c:1049 msgid "request granted" msgstr "kérés megadva" #: http.c:1050 msgid "general failure" msgstr "általános hiba" #: http.c:1051 msgid "connection not allowed by ruleset" msgstr "a kapcsolatot a szabálykészlet nem engedélyezi" #: http.c:1052 msgid "network unreachable" msgstr "a hálózat elérhetetlen" #: http.c:1053 msgid "host unreachable" msgstr "a gép elérhetetlen" #: http.c:1054 msgid "connection refused by destination host" msgstr "a célgép visszautasította a kapcsolatot" #: http.c:1055 msgid "TTL expired" msgstr "TTL lejárt" #: http.c:1056 msgid "command not supported / protocol error" msgstr "a parancs nem támogatott / protokollhiba" #: http.c:1057 msgid "address type not supported" msgstr "a címtípus nem támogatott" #: http.c:1067 msgid "SOCKS server requested username/password but we have none\n" msgstr "" "A SOCKS kiszolgáló felhasználónevet/jelszót kért, de nekünk nincs olyan\n" #: http.c:1075 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" "A SOCKS hitelesítés felhasználónevének és jelszavának < 255 bájtnak kell " "lennie\n" #: http.c:1090 http.c:1153 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Hiba a SOCKS proxy hitelesítési kérésének írásakor: %s\n" #: http.c:1098 http.c:1160 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Hiba a SOCKS proxy hitelesítési válaszának olvasásakor: %s\n" #: http.c:1105 http.c:1166 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Váratlan hitelesítési válasz a következő SOCKS proxy-tól: %02x %02x\n" #: http.c:1111 msgid "Authenticated to SOCKS server using password\n" msgstr "Hitelesítés a SOCKS kiszolgálóra jelszó használatával\n" #: http.c:1115 msgid "Password authentication to SOCKS server failed\n" msgstr "A jelszavas hitelesítés a SOCKS kiszolgálóra nem sikerült\n" #: http.c:1178 http.c:1185 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "A SOCKS kiszolgáló GSSAPI hitelesítést kért\n" #: http.c:1191 msgid "SOCKS server requested password authentication\n" msgstr "A SOCKS kiszolgáló jelszavas hitelesítést kért\n" #: http.c:1198 msgid "SOCKS server requires authentication\n" msgstr "A SOCKS kiszolgálóhoz hitelesítés szükséges\n" #: http.c:1207 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "A SOCKS kiszolgáló ismeretlen %02x hitelesítéstípust kért\n" #: http.c:1213 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "SOCKS proxy csatlakozási kérés ide: %s:%d\n" #: http.c:1228 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Hiba a SOCKS proxy csatlakozási kérésének írásakor: %s\n" #: http.c:1236 http.c:1278 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Hiba a SOCKS proxy csatlakozási válaszának olvasásakor: %s\n" #: http.c:1242 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Váratlan csatlakozási válasz a következő SOCKS proxy-tól: %02x %02x…\n" #: http.c:1250 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "SOCKS proxy hiba %02x: %s\n" #: http.c:1254 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "SOCKS proxy hiba %02x\n" #: http.c:1271 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Váratlan %02x címtípus a SOCKS proxy csatlakozási válaszában\n" #: http.c:1294 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "HTTP proxy csatlakozási kérés ide: %s:%d\n" #: http.c:1329 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "A proxy kérés küldése nem sikerült: %s\n" #: http.c:1352 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "A proxy CSATLAKOZÁS kérés nem sikerült: %d\n" #: http.c:1371 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Ismeretlen proxy típus: „%s”\n" #: http.c:1397 #, c-format msgid "Failed to parse proxy '%s'\n" msgstr "" #: http.c:1421 msgid "Only http or socks(5) proxies supported\n" msgstr "Csak http vagy socks(5) proxyk támogatottak\n" #: library.c:116 msgid "Cisco AnyConnect or openconnect" msgstr "Cisco AnyConnect vagy openconnect" #: library.c:117 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "" "Kompatibilis a Cisco AnyConnect SSL VPN-nel, valamint az ocserv kiszolgálóval" #: library.c:133 msgid "Juniper Network Connect" msgstr "Juniper hálózati csatlakozás" #: library.c:134 msgid "Compatible with Juniper Network Connect" msgstr "Kompatibilis a Juniper Network Connecttel" #: library.c:152 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:153 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:171 msgid "Pulse Connect Secure" msgstr "" #: library.c:172 msgid "Compatible with Pulse Connect Secure SSL VPN" msgstr "Kompatibilis a Pulse Connect Secure SSL VPN-nel" #: library.c:234 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "Ismeretlen VPN protokoll: „%s”\n" #: library.c:256 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "A Cisco DTLS támogatás nélküli SSL könyvtárral szemben készítve\n" #: library.c:683 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Nem sikerült a kiszolgáló URL feldolgozása: „%s”\n" #: library.c:689 msgid "Only https:// permitted for server URL\n" msgstr "Csak https:// engedélyezett a kiszolgáló URL-hez\n" #: library.c:1084 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "Ismeretlen tanúsítvány hash: %s.\n" #: library.c:1113 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" "A megadott ujjlenyomat hossza kisebb a minimálisan szükségesnél (%u).\n" #: library.c:1174 msgid "No form handler; cannot authenticate.\n" msgstr "Nincs űrlapkezelő, nem lehet hitelesíteni.\n" #: main.c:340 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "CommandLineToArgvW() sikertelen: %s\n" #: main.c:353 #, c-format msgid "Fatal error in command line handling\n" msgstr "Végzetes hiba a parancssor kezelésében\n" #: main.c:388 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "ReadConsole() sikertelen: %s\n" #: main.c:401 #, c-format msgid "fgetws() failed: %s\n" msgstr "fgetws() sikertelen: %s\n" #: main.c:416 main.c:429 #, c-format msgid "Error converting console input: %s\n" msgstr "Hiba a konzolbemenet átalakításakor: %s\n" #: main.c:423 main.c:689 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Lefoglalási hiba a szabványos bemenetről érkező szöveghez\n" #: main.c:584 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" "Ha segítségre van szüksége az OpenConnect programhoz, tekintse meg a\n" " http://www.infradead.org/openconnect/mail.html címen lévő oldalt.\n" #: main.c:593 #, c-format msgid "Using OpenSSL. Features present:" msgstr "OpenSSL használata. A következő jellemzői vannak:" #: main.c:595 #, c-format msgid "Using GnuTLS. Features present:" msgstr "GnuTLS használata. A következő jellemzői vannak:" #: main.c:608 msgid "OpenSSL ENGINE not present" msgstr "Az OpenSSL MOTOR nincs jelen" #: main.c:647 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" "FIGYELEM: Nincs DTLS és/vagy ESP támogatás ebben a binárisban. A " "teljesítmény alacsonyabb lesz.\n" #: main.c:657 #, c-format msgid "Supported protocols:" msgstr "Támogatott protokollok:" #: main.c:659 main.c:675 msgid " (default)" msgstr " (alapértelmezett)" #: main.c:672 msgid "Set VPN protocol" msgstr "" #: main.c:713 msgid "fgets (stdin)" msgstr "fgets (szabványos bemenet)" #: main.c:754 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Nem dolgozható fel ez a végrehajtható útvonal: „%s”" #: main.c:760 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "A vpnc-script útvonal lefoglalása nem sikerült\n" #: main.c:780 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "A(z) „%s” gépnév felülbírálása erre: „%s”\n" #: main.c:793 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Használat: openconnect [kapcsolók] \n" #: main.c:794 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" "Nyílt kliens több VPN protokollhoz, %s verzió\n" "\n" #: main.c:796 msgid "Read options from config file" msgstr "Beállítások olvasása a beállítófájlból" #: main.c:797 msgid "Report version number" msgstr "Verziószám jelentése" #: main.c:798 msgid "Display help text" msgstr "Súgószöveg megjelenítése" #: main.c:802 msgid "Authentication" msgstr "" #: main.c:803 msgid "Set login username" msgstr "Bejelentkező felhasználónév beállítása" #: main.c:804 msgid "Disable password/SecurID authentication" msgstr "Jelszavas/SecurID hitelesítés letiltása" #: main.c:805 msgid "Do not expect user input; exit if it is required" msgstr "Ne várjon felhasználói bemenetet; kilépés, ha azt megkövetelik" #: main.c:806 msgid "Read password from standard input" msgstr "Jelszó olvasása a szabványos bemenetről" #: main.c:807 msgid "Choose authentication login selection" msgstr "Hitelesítési bejelentkezés kijelölés kiválasztása" #: main.c:808 msgid "Provide authentication form responses" msgstr "" #: main.c:809 msgid "Use SSL client certificate CERT" msgstr "A CERT SSL kliens tanúsítvány használata" #: main.c:810 msgid "Use SSL private key file KEY" msgstr "A KEY SSL személyes kulcsfájl használata" #: main.c:811 msgid "Warn when certificate lifetime < DAYS" msgstr "Figyelmeztetés, ha a tanúsítvány élettartama < DAYS" #: main.c:812 msgid "Set login usergroup" msgstr "Bejelentkezési felhasználói csoport beállítása" #: main.c:813 msgid "Set key passphrase or TPM SRK PIN" msgstr "Kulcsjelszó vagy TPM SRK PIN beállítása" #: main.c:814 msgid "Key passphrase is fsid of file system" msgstr "A kulcs jelszava a fájlrendszer fsid értéke" #: main.c:815 msgid "Software token type: rsa, totp or hotp" msgstr "Szoftveres token típusa: rsa, totp vagy hotp" #: main.c:816 msgid "Software token secret" msgstr "Szoftveres token titok" #: main.c:818 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" "(MEGJEGYZÉS: a libstoken (RSA SecurID) le van tiltva ebben a verzióban)" #: main.c:821 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(MEGJEGYZÉS: a Yubikey OATH le van tiltva ebben a verzióban)" #: main.c:824 msgid "Server validation" msgstr "" #: main.c:825 msgid "Server's certificate SHA1 fingerprint" msgstr "A kiszolgáló tanúsítványának SHA1 ujjlenyomata" #: main.c:826 msgid "Do not require server SSL cert to be valid" msgstr "Ne követelje meg a kiszolgáló SSL tanúsítványának érvényességét" #: main.c:827 msgid "Disable default system certificate authorities" msgstr "Az alapértelmezett rendszertanúsítvány szolgáltatók letiltása" #: main.c:828 msgid "Cert file for server verification" msgstr "Tanúsítványfájl a kiszolgáló ellenőrzéséhez" #: main.c:830 msgid "Internet connectivity" msgstr "" #: main.c:831 msgid "Set proxy server" msgstr "Proxykiszolgáló beállítása" #: main.c:832 msgid "Set proxy authentication methods" msgstr "Proxy hitelesítési eljárások beállítása" #: main.c:833 msgid "Disable proxy" msgstr "Proxy letiltása" #: main.c:834 msgid "Use libproxy to automatically configure proxy" msgstr "A libproxy használata a proxy automatikus beállításához" #: main.c:836 msgid "(NOTE: libproxy disabled in this build)" msgstr "(MEGJEGYZÉS: a libproxy le van tiltva ebben a verzióban)" #: main.c:838 msgid "Connection retry timeout in seconds" msgstr "Csatlakozás újrapróbálkozási időkorlátja másodpercben" #: main.c:839 msgid "Use IP when connecting to HOST" msgstr "IP használata a GÉPHEZ való kapcsolódáskor" #: main.c:840 msgid "copy TOS / TCLASS when using DTLS" msgstr "TOS / TCLASS másolása DTLS használata esetén" #: main.c:841 msgid "Set local port for DTLS and ESP datagrams" msgstr "Helyi port beállítása a DTLS és ESP datagramokhoz" #: main.c:843 msgid "Authentication (two-phase)" msgstr "" #: main.c:844 msgid "Use authentication cookie COOKIE" msgstr "SÜTI hitelesítési süti használata" #: main.c:845 msgid "Read cookie from standard input" msgstr "Süti olvasása a szabványos bemenetről" #: main.c:846 msgid "Authenticate only and print login info" msgstr "Csak hitelesítés és bejelentkezési információk kiírása" #: main.c:847 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:848 msgid "Print cookie before connecting" msgstr "" #: main.c:851 msgid "Process control" msgstr "" #: main.c:852 msgid "Continue in background after startup" msgstr "Indítás után folytatás a háttérben" #: main.c:853 msgid "Write the daemon's PID to this file" msgstr "A démon PID értékének írása ebbe a fájlba" #: main.c:854 msgid "Drop privileges after connecting" msgstr "Jogosultságok eldobása csatlakozás után" #: main.c:857 msgid "Logging (two-phase)" msgstr "" #: main.c:859 msgid "Use syslog for progress messages" msgstr "A syslog használata folyamatüzenetekhez" #: main.c:861 msgid "More output" msgstr "Több kimenet" #: main.c:862 msgid "Less output" msgstr "Kevesebb kimenet" #: main.c:863 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "" "A HTTP hitelesítési forgalom kiírása (magába foglalja a --verbose kapcsolót)" #: main.c:864 msgid "Prepend timestamp to progress messages" msgstr "Időbélyeg eléfűzése az üzenetek múlásához" #: main.c:866 msgid "VPN configuration script" msgstr "" #: main.c:867 msgid "Use IFNAME for tunnel interface" msgstr "IFNAME használata az alagút csatolóhoz" #: main.c:868 msgid "Shell command line for using a vpnc-compatible config script" msgstr "Héj parancssor egy vpnc-kompatibilis beállítófájl használatához" #: main.c:869 msgid "default" msgstr "alapértelmezett" #: main.c:871 msgid "Pass traffic to 'script' program, not tun" msgstr "Forgalom átadása a „script” programnak, nem a tun-nak" #: main.c:874 msgid "Tunnel control" msgstr "" #: main.c:875 msgid "Do not ask for IPv6 connectivity" msgstr "Ne kérdje IPv6 kapcsolatnál" #: main.c:876 msgid "XML config file" msgstr "XML beállítófájl" #: main.c:877 msgid "Request MTU from server (legacy servers only)" msgstr "MTU kérése a kiszolgálótól (csak örökölt kiszolgálóknál)" #: main.c:878 msgid "Indicate path MTU to/from server" msgstr "Az MTU útvonal jelzése a kiszolgálóhoz/kiszolgálóról" #: main.c:879 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:880 msgid "Disable all compression" msgstr "" #: main.c:881 msgid "Set minimum Dead Peer Detection interval" msgstr "Legkisebb halott csomópont észlelési időköz beállítása" #: main.c:882 msgid "Require perfect forward secrecy" msgstr "Tökéletes továbbító titkosságot igényel" #: main.c:883 msgid "Disable DTLS and ESP" msgstr "" #: main.c:884 msgid "OpenSSL ciphers to support for DTLS" msgstr "OpenSSL titkosítók a DTLS támogatásához" #: main.c:885 msgid "Set packet queue limit to LEN pkts" msgstr "A csomag várakozási sor korlát beállítása LEN pkts értékre" #: main.c:887 msgid "Local system information" msgstr "" #: main.c:888 msgid "HTTP header User-Agent: field" msgstr "HTTP fejléc User-Agent: mező" #: main.c:889 msgid "Local hostname to advertise to server" msgstr "A kiszolgáló felé hirdetett helyi gépnév" #: main.c:890 msgid "OS type (linux,linux-64,win,...) to report" msgstr "A jelentendő operációs rendszer típus (linux,linux-64,win,…)" #: main.c:891 msgid "reported version string during authentication" msgstr "" #: main.c:892 msgid "default:" msgstr "" #: main.c:895 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:896 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:897 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:900 msgid "Server bugs" msgstr "" #: main.c:901 msgid "Disable HTTP connection re-use" msgstr "HTTP kapcsolat újrahasználatának letiltása" #: main.c:902 msgid "Do not attempt XML POST authentication" msgstr "Ne próbálkozzon XML POST hitelesítéssel" #: main.c:924 #, c-format msgid "Failed to allocate string\n" msgstr "Nem sikerült lefoglalni szöveget\n" #: main.c:997 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Nem sikerült a sor lekérése a beállítófájlból: %s\n" #: main.c:1037 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Ismeretlen kapcsoló a(z) %d. sorban: „%s”\n" #: main.c:1047 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "A(z) „%s” kapcsoló nem fogad el argumentumot a(z) %d. sorban\n" #: main.c:1051 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "A(z) „%s” kapcsolóhoz argumentum szükséges a(z) %d. sorban\n" #: main.c:1076 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "Érvénytelen felhasználó „%s”: %s\n" #: main.c:1086 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "Érvénytelen felhasználóazonosító „%d”: %s\n" #: main.c:1130 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "FIGYELMEZTETÉS: a területi beállítás nem adható meg: %s\n" #: main.c:1140 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "FIGYELEM: Az openconnect ezen verziója iconv támogatás nélkül\n" " készült, de úgy tűnik, hogy az örökölt „%s” karakterkészletet\n" " használja. Furcsaság várható.\n" #: main.c:1147 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "FIGYELEM: Az openconnect ezen verziója %s, de\n" " a libopenconnect függvénykönyvár %s\n" #: main.c:1157 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Nem sikerült lefoglalni a vpninfo szerkezetet\n" #: main.c:1215 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Nem használható a „config” kapcsoló a beállítófájlon belül\n" #: main.c:1223 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Nem sikerült a(z) „%s” beállítófájl megnyitása: %s\n" #: main.c:1239 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "Érvénytelen tömörítési mód: „%s”\n" #: main.c:1260 #, c-format msgid "Missing colon in resolve option\n" msgstr "Hiányzó kettőspont a feloldási kapcsolóban\n" #: main.c:1265 #, c-format msgid "Failed to allocate memory\n" msgstr "Nem sikerült memóriát lefoglalni\n" #: main.c:1349 main.c:1358 #, c-format msgid "MTU %d too small\n" msgstr "A(z) %d. MTU túl kicsi\n" #: main.c:1388 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Minden HTTP kapcsolat újrafelhasználás letiltása a --no-http-keepalive " "miatt.\n" "Ha ez segít, jelentse a címre.\n" #: main.c:1394 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" "A --no-cert-check kapcsoló nem volt biztonságos, és el lett távolítva.\n" "Hozza rendbe a kiszolgáló tanúsítványát, vagy használja a --servercert " "kapcsolót, ha megbízik benne.\n" #: main.c:1411 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "A nulla hosszú sor nem engedélyezett; 1 használata\n" #: main.c:1425 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect verzió: %s\n" #: main.c:1463 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Érvénytelen szoftveres token mód: „%s”\n" #: main.c:1473 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "Érvénytelen OS identitás: „%s”\n" #: main.c:1506 #, c-format msgid "Too many arguments on command line\n" msgstr "Túl sok argumentum a parancssorban\n" #: main.c:1509 #, c-format msgid "No server specified\n" msgstr "Nincs megadva kiszolgáló\n" #: main.c:1525 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "Az openconnect ezen verziója libproxy támogatás nélkül készült\n" #: main.c:1555 #, c-format msgid "Error opening cmd pipe\n" msgstr "Hiba a cmd cső megnyitásakor\n" #: main.c:1588 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "Nem sikerült megszerezni a WebVPN sütit\n" #: main.c:1609 #, c-format msgid "Creating SSL connection failed\n" msgstr "Az SSL kapcsolat létrehozása nem sikerült\n" #: main.c:1625 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:1633 #, c-format msgid "Connected as %s%s%s, using SSL%s%s, with %s%s%s %s\n" msgstr "" #: main.c:1639 msgid "disabled" msgstr "" #: main.c:1639 msgid "in progress" msgstr "" #: main.c:1643 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "Nincs --script argumentum megadva; a DNS és az útválasztás nincs beállítva\n" #: main.c:1645 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Lásd: http://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:1658 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Nem sikerült a(z) „%s” megnyitása írásra: %s\n" #: main.c:1670 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Folytatás a háttérben; pid %d\n" #: main.c:1687 msgid "User requested reconnect\n" msgstr "A felhasználó újracsatlakozást kért\n" #: main.c:1695 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "A sütit visszautasították az újracsatlakozáskor; kilépés.\n" #: main.c:1699 msgid "Session terminated by server; exiting.\n" msgstr "A kiszolgáló megszakította a munkamenetet; kilépés.\n" #: main.c:1703 msgid "User cancelled (SIGINT/SIGTERM); exiting.\n" msgstr "" #: main.c:1707 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "A felhasználó le lett választva a munkamenetről (SIGHUP); kilépés.\n" #: main.c:1711 msgid "Unknown error; exiting.\n" msgstr "Ismeretlen hiba, kilépés.\n" #: main.c:1730 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Nem sikerült a(z) „%s” megnyitása írásra: %s\n" #: main.c:1738 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Nem sikerült a beállítás írása ebbe: %s: %s\n" #: main.c:1797 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "A kiszolgáló SSL tanúsítványa nem egyezett: %s\n" #: main.c:1816 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "A(z) „%s” VPN-kiszolgáló által küldött tanúsítvány ellenőrzése nem " "sikerült.\n" "Ok: %s\n" #: main.c:1819 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" "Ha megbízik a kiszolgálóban a jövőben, akkor hozzáadhatja ezt a parancs " "sorához:\n" #: main.c:1820 #, c-format msgid " --servercert %s\n" msgstr " --servercert %s\n" #: main.c:1825 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "„%s” beírása az elfogadáshoz, „%s” a megszakításhoz; bármi más a " "megtekintéshez: " #: main.c:1826 main.c:1844 msgid "no" msgstr "nem" #: main.c:1826 main.c:1832 msgid "yes" msgstr "igen" #: main.c:1853 #, c-format msgid "Server key hash: %s\n" msgstr "Kiszolgáló kulcs hash: %s\n" #: main.c:1887 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "A(z) „%s” hitelesítés-választás több kapcsolóra illeszkedik\n" #: main.c:1890 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "A(z) „%s” hitelesítés-választás nem érhető el\n" #: main.c:1911 msgid "User input required in non-interactive mode\n" msgstr "Felhasználói bemenet szükséges nem interaktív módban\n" #: main.c:2149 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Nem sikerült megnyitni a tokenfájlt írásra: %s\n" #: main.c:2157 #, c-format msgid "Failed to write token: %s\n" msgstr "Nem sikerült a token írása: %s\n" #: main.c:2203 main.c:2224 #, c-format msgid "Soft token string is invalid\n" msgstr "A szoftveres token szöveg érvénytelen\n" #: main.c:2206 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Nem nyitható meg a ~/.stokenrc fájl\n" #: main.c:2209 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "Az OpenConnect nem libstoken támogatással készült\n" #: main.c:2212 #, c-format msgid "General failure in libstoken\n" msgstr "Általános hiba a libstoken könyvtárban\n" #: main.c:2227 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "Az OpenConnect nem liboath támogatással készült\n" #: main.c:2230 #, c-format msgid "General failure in liboath\n" msgstr "Általános hiba a liboath könyvtárban\n" #: main.c:2241 #, c-format msgid "Yubikey token not found\n" msgstr "Yubikey token nem található\n" #: main.c:2244 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "Az OpenConnect nem Yubikey támogatással készült\n" #: main.c:2247 #, c-format msgid "General Yubikey failure: %s\n" msgstr "Általános Yubikey hiba: %s\n" #: mainloop.c:127 #, c-format msgid "Set up tun script failed\n" msgstr "A tun parancsfájl beállítása nem sikerült\n" #: mainloop.c:134 #, c-format msgid "Set up tun device failed\n" msgstr "A tun eszköz beállítása nem sikerült\n" #: mainloop.c:265 msgid "Caller paused the connection\n" msgstr "A hívó szüneteltette a kapcsolatot\n" #: mainloop.c:273 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Nincs tennivalója; alvás %d ms-ra…\n" #: mainloop.c:294 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "WaitForMultipleObjects sikertelen: %s\n" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "InitializeSecurityContext() sikertelen: %lx\n" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "AcquireCredentialsHandle() sikertelen: %lx\n" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "Hiba az ntlm_auth segítővel való kommunikációkor\n" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "HTML NTLM hitelesítési kísérlet a proxyra (egyszeres bejelentkezés)\n" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" "HTTP NTLM hitelesítési kísérlet a(z) „%s” kiszolgálóra (egyszeres " "bejelentkezés)\n" #: ntlm.c:978 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "HTML NTLMv%d hitelesítési kísérlet a proxyra\n" #: ntlm.c:982 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "HTTP NTLMv%d hitelesítési kísérlet a kiszolgálóra: „%s”\n" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "Érvénytelen base32 token szöveg\n" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "Nem sikerült memóriát lefoglalni az OATH titok visszafejtéséhez\n" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "Az OpenConnect ezen verziója PSKC támogatás nélkül készült\n" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "OK a KEZDETI tokenkód előállításához\n" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "OK a KÖVETKEZŐ tokenkód előállításához\n" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" "A kiszolgáló visszautasította a szoftveres tokent; átváltás kézi bevitelre\n" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "OATH TOTP tokenkód előállítása\n" #: oath.c:565 msgid "Generating OATH HOTP token code\n" msgstr "OATH HOTP tokenkód előállítása\n" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "Érvénytelen süti: „%s”\n" #: oncp.c:160 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "Váratlan hossz (%d) ehhez: TLV %d/%d\n" #: oncp.c:166 pulse.c:402 #, c-format msgid "Received MTU %d from server\n" msgstr "%d. MTU érkezett a kiszolgálótól\n" #: oncp.c:175 pulse.c:285 pulse.c:343 #, c-format msgid "Received DNS server %s\n" msgstr "DNS-kiszolgáló érkezett: %s\n" #: oncp.c:186 pulse.c:411 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "DNS keresési tartomány érkezett: %.*s\n" #: oncp.c:201 #, c-format msgid "Received internal IP address %s\n" msgstr "Belső IP-cím érkezett: %s\n" #: oncp.c:210 pulse.c:276 #, c-format msgid "Received netmask %s\n" msgstr "Hálózati maszk érkezett: %s\n" #: oncp.c:219 pulse.c:426 #, c-format msgid "Received internal gateway address %s\n" msgstr "Belső átjárócím érkezett: %s\n" #: oncp.c:232 pulse.c:2001 #, c-format msgid "Received split include route %s\n" msgstr "Felosztott felvétel útvonal érkezett: %s\n" #: oncp.c:254 pulse.c:2014 #, c-format msgid "Received split exclude route %s\n" msgstr "Felosztott kizárás útvonal érkezett: %s\n" #: oncp.c:274 pulse.c:300 #, c-format msgid "Received WINS server %s\n" msgstr "WINS kiszolgáló érkezett: %s\n" #: oncp.c:297 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "ESP titkosítás: 0x%02x (%s)\n" #: oncp.c:316 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "ESP HMAC: 0x%02x (%s)\n" #: oncp.c:327 #, c-format msgid "ESP compression: %d\n" msgstr "ESP tömörítés: %d\n" #: oncp.c:335 pulse.c:506 #, c-format msgid "ESP port: %d\n" msgstr "ESP port: %d\n" #: oncp.c:342 pulse.c:489 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "ESP kulcs élettartam: %u bájt\n" #: oncp.c:350 pulse.c:481 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "ESP kulcs élettartam: %u másodperc\n" #: oncp.c:358 pulse.c:513 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "ESP az SSL tartalékhoz: %u másodperc\n" #: oncp.c:366 pulse.c:497 #, c-format msgid "ESP replay protection: %d\n" msgstr "ESP ismétlési védelem: %d\n" #: oncp.c:374 pulse.c:529 pulse.c:2115 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "ESP SPI (kimenő): %x\n" #: oncp.c:383 pulse.c:538 pulse.c:2103 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "Az ESP titkok %d bájtja\n" #: oncp.c:395 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "Ismeretlen TLV csoport: %d, attribútum: %d, hossz: %d:%s\n" #: oncp.c:473 msgid "Failed to parse KMP header\n" msgstr "Nem sikerült feldolgozni a KMP fejlécet\n" #: oncp.c:490 msgid "Failed to parse KMP message\n" msgstr "Nem sikerült feldolgozni a KMP üzenetet\n" #: oncp.c:496 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "%2$d méretű, %1$d KMP üzenet érkezett\n" #: oncp.c:512 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "Nem ESP TLV-k (%d. csoport) érkeztek az ESP egyeztetési KMP-ben\n" #: oncp.c:577 oncp.c:609 oncp.c:747 msgid "Error creating oNCP negotiation request\n" msgstr "Hiba az oNCP egyeztetési kérés létrehozásakor\n" #: oncp.c:618 oncp.c:783 msgid "Short write in oNCP negotiation\n" msgstr "Rövid írás az oCNP egyeztetésben\n" #: oncp.c:631 oncp.c:666 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "%d bájt kiolvasva az SSL rekordból\n" #: oncp.c:636 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "%d méretű ismeretlen válasz a gépnév csomag után\n" #: oncp.c:643 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "A kiszolgáló válasza a gépnév csomagra: 0x%02x hiba\n" #: oncp.c:670 msgid "Invalid packet waiting for KMP 301\n" msgstr "Érvénytelen várakozó csomag a KMP 301-hez\n" #: oncp.c:683 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "KMP 301 üzenet várva, de %d érkezett a kiszolgálótól\n" #: oncp.c:692 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "A szervertől érkező KMP 301 üzenet túl nagy (%d bájt)\n" #: oncp.c:698 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "%d hosszú KMP 301 üzenet érkezett\n" #: oncp.c:705 msgid "Failed to read continuation record length\n" msgstr "A folytatási rekord hosszának olvasása sikertelen\n" #: oncp.c:711 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "A további %d bájtos rekord túl nagy; %d lenne\n" #: oncp.c:720 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "A(z) %d hosszú folytatási rekord olvasása sikertelen\n" #: oncp.c:726 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "A KMP 301 üzenet további %d bájtja beolvasva\n" #: oncp.c:767 msgid "Error negotiating ESP keys\n" msgstr "Hiba az ESP kulcsok egyeztetésekor\n" #: oncp.c:776 msgid "oNCP negotiation request outgoing:\n" msgstr "oNCP egyeztetési kérés kimenő:\n" #: oncp.c:829 pulse.c:2372 msgid "new incoming" msgstr "új bejövő" #: oncp.c:830 pulse.c:2373 msgid "new outgoing" msgstr "új kimenő" #: oncp.c:855 msgid "Read only 1 byte of oNCP length field\n" msgstr "Az oNCP hossz mezőjének csak 1 bájtja olvasva\n" #: oncp.c:864 msgid "Server terminated connection (session expired)\n" msgstr "A kiszolgáló megszakította a kapcsolatot (munkamenet lejárt)\n" #: oncp.c:868 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "A kiszolgáló megszakította a kapcsolatot (ok: %d)\n" #: oncp.c:874 msgid "Server sent zero-length oNCP record\n" msgstr "A kiszolgáló nulla hosszú oNCP rekordot küldött\n" #: oncp.c:969 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "Bejövő, %2$d méretű, KMP %1$d. üzenet (kapott: %3$d)\n" #: oncp.c:972 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" "A KMP %d üzenet feldolgozásának folytatása, mérete most: %d (kapott: %d)\n" #: oncp.c:991 msgid "Unrecognised data packet\n" msgstr "Nem felismert adatcsomag\n" #: oncp.c:1053 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "Ismeretlen, %2$d méretű, KMP %1$d üzenet:\n" #: oncp.c:1058 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr ".... + %d további, nem fogadott bájt\n" #: oncp.c:1073 pulse.c:2404 msgid "Packet outgoing:\n" msgstr "Kimenő csomag:\n" #: oncp.c:1135 msgid "Sent ESP enable control packet\n" msgstr "ESP engedélyezési vezérlőcsomag elküldve\n" #: oncp.c:1269 msgid "Logout successful.\n" msgstr "Kijelentkezés sikeres.\n" #: openconnect-internal.h:1164 openconnect-internal.h:1172 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" "HIBA: %s() érvénytelen UTF-8 értékkel lett meghívva a(z) „%s” argumentumnál\n" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "Nem sikerült a DTLS ráhagyás kiszámítása ehhez: %s\n" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "Nem sikerült az SSL_SESSION ASN.1 létrehozása az OpenSSL-nél: %s\n" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "Az OpenSSL nem tudta feldolgozni: SSL_SESSION ASN.1\n" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "A DTLSv1 munkamenet előkészítése nem sikerült\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "PSK visszahívás\n" #: openssl-dtls.c:366 msgid "Initialise DTLSv1 CTX failed\n" msgstr "A DTLSv1 CTX előkészítése nem sikerült\n" #: openssl-dtls.c:376 msgid "Set DTLS CTX version failed\n" msgstr "A DTLS CTX verzió beállítása sikertelen\n" #: openssl-dtls.c:398 msgid "Failed to generate DTLS key\n" msgstr "Nem sikerült a DTLS kulcs előállítása\n" #: openssl-dtls.c:453 msgid "Set DTLS cipher list failed\n" msgstr "A DTLS titkosítólista beállítása nem sikerült\n" #: openssl-dtls.c:479 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:500 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "Az SSL_set_session() meghiúsult a régi 0x%x protokollverzióval\n" "Az OpenSSL 0.9.8m verziójánál régebbit használ?\n" "Nézze meg a http://rt.openssl.org/Ticket/Display.html?id=1751 oldalt\n" "Használja a --no-dtls parancssori kapcsolót ezen üzenet elkerüléséhez\n" #: openssl-dtls.c:533 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:606 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "" "DTLS kapcsolat kiépítve (OpenSSL használatával). Titkosító alkalmazáscsomag: " "%s.\n" #: openssl-dtls.c:643 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" "Az OpenSSL verziója régebbi, mint amellyel szemben kiépítette, így a DTLS " "meghiúsulhat!" #: openssl-dtls.c:694 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Ez valószínűleg azért lehet, mert az OpenSSL törött\n" "Nézze meg a http://rt.openssl.org/Ticket/Display.html?id=2984 oldalt\n" #: openssl-dtls.c:701 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "A DTLS kézfogás meghiúsult: %d\n" #: openssl-esp.c:86 msgid "Failed to initialise ESP cipher:\n" msgstr "Nem sikerült előkészíteni az ESP titkosítót:\n" #: openssl-esp.c:100 msgid "Failed to initialize ESP HMAC\n" msgstr "Nem sikerült előkészíteni az ESP HMAC kódot\n" #: openssl-esp.c:176 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" "Nem sikerült beállítani a titkosításfeloldási környezetet az ESP csomaghoz:\n" #: openssl-esp.c:184 msgid "Failed to decrypt ESP packet:\n" msgstr "Nem sikerült feloldani az ESP csomag titkosítását: %s\n" #: openssl-esp.c:200 msgid "Failed to encrypt ESP packet:\n" msgstr "Nem sikerült az ESP csomag titkosítása:\n" #: openssl-pkcs11.c:43 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "Nem sikerült libp11 PKCS#11 környezetet létesíteni:\n" #: openssl-pkcs11.c:49 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "Nem sikerült betölteni a PKCS#11-et biztosító modult (%s):\n" #: openssl-pkcs11.c:269 msgid "PIN locked\n" msgstr "PIN-kód zárolva\n" #: openssl-pkcs11.c:272 msgid "PIN expired\n" msgstr "PIN-kód lejárt\n" #: openssl-pkcs11.c:275 msgid "Another user already logged in\n" msgstr "Egy másik felhasználó már bejelentkezett\n" #: openssl-pkcs11.c:279 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "Ismeretlen hiba a PKCS#11 tokenbe való bejelentkezéskor\n" #: openssl-pkcs11.c:286 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "Bejelentkezve a következő PKCS#11 tárolóhelyre: „%s”\n" #: openssl-pkcs11.c:300 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" "Nem sikerült a tanúsítványok felsorolása a következő PKCS#11 tárolóhelyen: " "„%s”\n" #: openssl-pkcs11.c:306 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "%d tanúsítvány található a következő tárolóhelyen: „%s”\n" #: openssl-pkcs11.c:342 openssl-pkcs11.c:565 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "Nem sikerült a következő PKCS#11 URI feldolgozása: „%s”\n" #: openssl-pkcs11.c:349 openssl-pkcs11.c:575 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "Nem sikerült felsorolni a PKCS#11 tárolóhelyeket\n" #: openssl-pkcs11.c:383 openssl-pkcs11.c:617 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "Bejelentkezés a következő PKCS#11 tárolóhelyre: „%s”\n" #: openssl-pkcs11.c:393 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "Nem sikerült megtalálni a(z) „%s” PKCS#11 tanúsítványt\n" #: openssl-pkcs11.c:401 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "A tanúsítvány X.509 tartalmát nem kérte le a libp11\n" #: openssl-pkcs11.c:412 openssl.c:713 msgid "Failed to install certificate in OpenSSL context\n" msgstr "Nem sikerült a tanúsítvány telepítése az OpenSSL környezetben\n" #: openssl-pkcs11.c:458 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" "Nem sikerült a kulcsok felsorolása a következő PKCS#11 tárolóhelyen: „%s”\n" #: openssl-pkcs11.c:464 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "%d kulcs található a következő tárolóhelyen: „%s”\n" #: openssl-pkcs11.c:497 msgid "Certificate has no public key\n" msgstr "A tanúsítványban nincs nyilvános kulcs\n" #: openssl-pkcs11.c:503 openssl-pkcs11.c:526 msgid "Certificate does not match private key\n" msgstr "A tanúsítvány nem egyezik a titkos kulccsal\n" #: openssl-pkcs11.c:506 msgid "Checking EC key matches cert\n" msgstr "Az EC kulcsellenőrzés egyezik a tanúsítvánnyal\n" #: openssl-pkcs11.c:510 msgid "Failed to allocate signature buffer\n" msgstr "Nem sikerült lefoglalni a mintapuffert\n" #: openssl-pkcs11.c:520 msgid "Failed to sign dummy data to validate EC key\n" msgstr "Nem sikerült aláírni a látszatadatokat az EC kulcs ellenőrzéséhez\n" #: openssl-pkcs11.c:638 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "Nem sikerült megtalálni a(z) „%s” PKCS#11 kulcsot\n" #: openssl-pkcs11.c:649 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "Nem sikerült példányosítani a személyes kulcsot a PKCS#11-ből\n" #: openssl-pkcs11.c:678 msgid "Add key from PKCS#11 failed\n" msgstr "A kulcs hozzáadása nem sikerült a PKCS#11-ből\n" #: openssl-pkcs11.c:710 openssl-pkcs11.c:716 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "Az OpenConnect ezen verziója PKCS#11 támogatás nélkül készült\n" #: openssl.c:147 msgid "Failed to write to SSL socket\n" msgstr "Nem sikerült írni az SSL foglalatba\n" #: openssl.c:197 openssl.c:263 msgid "Failed to read from SSL socket\n" msgstr "Nem sikerült olvasni az SSL foglalatból\n" #: openssl.c:292 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" "SSL olvasási hiba: %d (a kiszolgáló valószínűleg lezárta a kapcsolatot); " "újracsatlakozás.\n" #: openssl.c:317 #, c-format msgid "SSL_write failed: %d\n" msgstr "SSL_write sikertelen: %d\n" #: openssl.c:389 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "Kezeletlen SSL UI kéréstípus: %d\n" #: openssl.c:465 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "A PEM jelszó túl hosszú (%d >= %d)\n" #: openssl.c:498 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "További tanúsítvány innen: %s: „%s”\n" #: openssl.c:548 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "A PKCS#12 feldolgozása nem sikerült (lásd a fenti hibákat)\n" #: openssl.c:563 msgid "PKCS#12 contained no certificate!\n" msgstr "A PKCS#12 nem tartalmazott tanúsítványt!\n" #: openssl.c:572 msgid "PKCS#12 contained no private key!\n" msgstr "A PKCS#12 nem tartalmazott személyes kulcsot!\n" #: openssl.c:577 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:600 msgid "Can't load TPM engine.\n" msgstr "Nem sikerült betölteni a TPM motort.\n" #: openssl.c:606 msgid "Failed to init TPM engine\n" msgstr "Nem sikerült előkészíteni a TPM motort\n" #: openssl.c:616 msgid "Failed to set TPM SRK password\n" msgstr "Nem sikerült beállítani a TPM SRK jelszót\n" #: openssl.c:630 msgid "Failed to load TPM private key\n" msgstr "Nem sikerült betölteni a TPM személyes kulcsot\n" #: openssl.c:636 msgid "Add key from TPM failed\n" msgstr "A kulcs hozzáadása nem sikerült a TPM-ből\n" #: openssl.c:687 openssl.c:835 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Nem sikerült a(z) %s tanúsítványfájl megnyitása: %s\n" #: openssl.c:697 msgid "Loading certificate failed\n" msgstr "A tanúsítvány betöltése nem sikerült\n" #: openssl.c:735 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" "Nem sikerült minden támogatott tanúsítvány feldolgozása. Azért megpróbálom…\n" #: openssl.c:748 msgid "PEM file" msgstr "PEM fájl" #: openssl.c:777 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Nem sikerült a BIO létrehozása a következő kulcstartó elemnél: „%s”\n" #: openssl.c:802 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "A személyes kulcs betöltése nem sikerült (rossz jelmondat?)\n" #: openssl.c:808 msgid "Loading private key failed (see above errors)\n" msgstr "A személyes kulcs betöltése nem sikerült (lásd a fenti hibákat)\n" #: openssl.c:858 msgid "Failed to load X509 certificate from keystore\n" msgstr "Nem sikerült betölteni az X509 tanúsítványt a kulcstartóról\n" #: openssl.c:864 msgid "Failed to use X509 certificate from keystore\n" msgstr "Nem sikerült az X509 tanúsítvány használata a kulcstartóról\n" #: openssl.c:896 msgid "Failed to use private key from keystore\n" msgstr "Nem sikerült a személyes kulcs használata a kulcstartóról\n" #: openssl.c:912 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "A(z) %s személyes kulcsfájl megnyitása nem sikerült: %s\n" #: openssl.c:936 openssl.c:951 openssl.c:972 openssl.c:1038 msgid "Loading private key failed\n" msgstr "A személyes kulcs betöltése nem sikerült\n" #: openssl.c:1032 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "A PKCS#8 átalakítása OpenSSL EVP_PKEY kulcsra sikertelen\n" #: openssl.c:1049 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Nem sikerült azonosítani a személyes kulcs típusát ebben: „%s”\n" #: openssl.c:1203 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Egyező DNS altname: „%s”\n" #: openssl.c:1210 #, c-format msgid "No match for altname '%s'\n" msgstr "Nincs egyezés a következő altname értékre: „%s”\n" #: openssl.c:1224 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "A tanúsítványnak GEN_IPADD altname értéke van hamis hosszal: %d\n" #: openssl.c:1235 openssl.c:1381 #, c-format msgid "Matched %s address '%s'\n" msgstr "Egyező %s cím: „%s”\n" #: openssl.c:1242 #, c-format msgid "No match for %s address '%s'\n" msgstr "Nincs egyezés a(z) %s címmel: „%s”\n" #: openssl.c:1284 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "A(z) „%s” URI nem üres útvonallal rendelkezik; mellőzés\n" #: openssl.c:1289 #, c-format msgid "Matched URI '%s'\n" msgstr "Egyező URI: „%s”\n" #: openssl.c:1300 #, c-format msgid "No match for URI '%s'\n" msgstr "Nincs egyezés a következő URI-ra: „%s”\n" #: openssl.c:1315 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" "Nincs altname érték a következőre illeszkedő csomópont tanúsítványában: " "„%s”\n" #: openssl.c:1323 msgid "No subject name in peer cert!\n" msgstr "Nincs tárgynév a csomópont tanúsítványában!\n" #: openssl.c:1343 msgid "Failed to parse subject name in peer cert\n" msgstr "Nem sikerült a tárgynév feldolgozása a csomópont tanúsítványában\n" #: openssl.c:1350 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "A csomópont tanúsítvány tárgya nem megfelelő („%s” != „%s”)\n" #: openssl.c:1355 openssl.c:1389 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Egyező csomópont tanúsítvány tárgynév: „%s”\n" #: openssl.c:1451 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "További tanúsítvány a hitelesítés-szolgáltató fájlból: „%s”\n" #: openssl.c:1589 msgid "Error in client cert notAfter field\n" msgstr "Hiba a kliens tanúsítvány notAfter mezőjében\n" #: openssl.c:1602 msgid "" msgstr "" #: openssl.c:1655 msgid "Create TLSv1 CTX failed\n" msgstr "TLSv1 CTX létrehozása sikertelen\n" #: openssl.c:1674 msgid "SSL certificate and key do not match\n" msgstr "Az SSL tanúsítvány és a kulcs nem egyezik\n" #: openssl.c:1719 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Nem sikerült a tanúsítványok olvasása a CA fájlból: „%s”\n" #: openssl.c:1752 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Nem sikerült megnyitni a CA fájlt: „%s”\n" #: openssl.c:1812 msgid "SSL connection failure\n" msgstr "Az SSL kapcsolat meghiúsult\n" #: openssl.c:1975 msgid "Failed to calculate OATH HMAC\n" msgstr "Nem sikerült kiszámítani a OATH HMAC kódot\n" #: openssl.c:2078 #, c-format msgid "EAP-TTLS negotiation with %s\n" msgstr "EAP-TTLS egyeztetés ezzel: %s\n" #: openssl.c:2089 #, c-format msgid "EAP-TTLS connection failure %d\n" msgstr "Az EAP-TTLS kapcsolat meghiúsult: %d\n" #: pulse.c:267 #, c-format msgid "Received internal Legacy IP address %s\n" msgstr "Belső örökölt IP-cím érkezett: %s\n" #: pulse.c:315 pulse.c:332 pulse.c:351 pulse.c:374 msgid "Failed to handle IPv6 address\n" msgstr "Nem sikerült kezelni az IPv6-címet\n" #: pulse.c:324 #, c-format msgid "Received internal IPv6 address %s\n" msgstr "Belső IPv6-cím érkezett: %s\n" #: pulse.c:366 #, c-format msgid "Received IPv6 split include %s\n" msgstr "" #: pulse.c:389 #, c-format msgid "Received IPv6 split exclude %s\n" msgstr "" #: pulse.c:396 #, c-format msgid "Unexpected length %d for attr 0x%x\n" msgstr "Váratlan hossz (%d) a 0x%x attribútumnál\n" #: pulse.c:447 #, c-format msgid "ESP encryption: 0x%04x (%s)\n" msgstr "ESP titkosítás: 0x%04x (%s)\n" #: pulse.c:471 #, c-format msgid "ESP HMAC: 0x%04x (%s)\n" msgstr "ESP HMAC: 0x%04x (%s)\n" #. Amusingly, this isn't enforced. It's client-only #: pulse.c:521 #, c-format msgid "ESP only: %d\n" msgstr "Csak ESP: %d\n" #: pulse.c:563 #, c-format msgid "Unknown attr 0x%x len %d:%s\n" msgstr "Ismeretlen attribútum: 0x%x, hossz: %d:%s\n" #: pulse.c:574 #, c-format msgid "Read %d bytes of IF-T/TLS record\n" msgstr "%d bájt kiolvasva az IF-T/TLS rekordból\n" #: pulse.c:591 msgid "Short write to IF-T/TLS\n" msgstr "" #: pulse.c:604 msgid "Error creating IF-T packet\n" msgstr "Hiba az IF-T csomag létrehozásakor\n" #: pulse.c:624 msgid "Error creating EAP packet\n" msgstr "Hiba az EAP csomag létrehozásakor\n" #: pulse.c:659 pulse.c:1358 pulse.c:1421 msgid "Unexpected IF-T/TLS authentication challenge:\n" msgstr "Váratlan IF-T/TLS hitelesítés kihívás:\n" #: pulse.c:677 msgid "Unexpected EAP-TTLS payload:\n" msgstr "Váratlan EAP-TTLS adat:\n" #: pulse.c:710 #, c-format msgid "AVP 0x%x/0x%x:%s\n" msgstr "AVP 0x%x/0x%x:%s\n" #: pulse.c:712 #, c-format msgid "AVP %d:%s\n" msgstr "AVP %d:%s\n" #: pulse.c:779 msgid "Enter Pulse user realm:" msgstr "" #: pulse.c:784 pulse.c:827 msgid "Realm:" msgstr "" #: pulse.c:822 msgid "Choose Pulse user realm:" msgstr "" #: pulse.c:838 pulse.c:1487 pulse.c:1556 msgid "Failed to parse AVP\n" msgstr "Nem sikerült feldolgozni az AVP-t\n" #: pulse.c:905 msgid "Session limit reached. Choose session to kill:\n" msgstr "Munkamenetkorlát elérve. Válasszon munkamenetet a kilövéshez:\n" #: pulse.c:910 msgid "Session:" msgstr "Munkamenet:" #: pulse.c:926 msgid "Failed to parse session list\n" msgstr "Nem sikerült feldolgozni a munkamenetlistát\n" #: pulse.c:1012 msgid "Enter secondary credentials:" msgstr "Másodlagos hitelesítési adatok megadása:" #. Point to password prompt in case that's all we use #: pulse.c:1012 msgid "Enter user credentials:" msgstr "Felhasználói hitelesítési adatok megadása:" #: pulse.c:1022 pulse.c:1115 msgid "Secondary username:" msgstr "Másodlagos felhasználónév:" #: pulse.c:1022 pulse.c:1115 msgid "Username:" msgstr "Felhasználónév:" #: pulse.c:1032 stoken.c:89 msgid "Password:" msgstr "Jelszó:" #: pulse.c:1032 msgid "Secondary password:" msgstr "Másodlagos jelszó:" #: pulse.c:1105 msgid "Token code request:" msgstr "Tokenkód kérés:" #: pulse.c:1129 msgid "Please enter response:" msgstr "Adja meg a választ:" #: pulse.c:1133 msgid "Please enter your passcode:" msgstr "Adja meg a jelkódját:" #: pulse.c:1135 msgid "Please enter your secondary token information:" msgstr "Adja meg a másodlagos token információját:" #: pulse.c:1275 msgid "Error creating Pulse connection request\n" msgstr "Hiba a Pulse kapcsolódási kérés létrehozásakor\n" #: pulse.c:1318 msgid "Unexpected response to IF-T/TLS version negotiation:\n" msgstr "Váratlan válasz az IF-T/TLS verzióegyeztetéshez:\n" #: pulse.c:1323 #, c-format msgid "IF-T/TLS version from server: %d\n" msgstr "IF-T/TLS verzió a kiszolgálóról: %d\n" #: pulse.c:1449 msgid "Failed to establish EAP-TTLS session\n" msgstr "Nem sikerült az EAP-TTLS munkamenet kiépítése\n" #: pulse.c:1568 msgid "Server certificate mismatch. Aborting due to suspected MITM attack\n" msgstr "" #: pulse.c:1583 msgid "Authentication failure: Account locked out\n" msgstr "" #: pulse.c:1586 #, c-format msgid "Authentication failure: Code 0x%02x\n" msgstr "Hitelesítési hiba: 0x%02x kód\n" #: pulse.c:1668 msgid "Unhandled Pulse authentication packet, or authentication failure\n" msgstr "" #: pulse.c:1684 msgid "Pulse authentication cookie not accepted\n" msgstr "Pulse hitelesítési süti nincs elfogadva\n" #: pulse.c:1690 msgid "Pulse realm entry\n" msgstr "" #: pulse.c:1696 msgid "Pulse realm choice\n" msgstr "" #: pulse.c:1703 #, c-format msgid "Pulse password auth request, code 0x%02x\n" msgstr "Pulse jelszó hitelesítési kérés, 0x%02x kód\n" #: pulse.c:1714 msgid "Pulse password general token code request\n" msgstr "Pulse jelszó általános tokenkód kérés\n" #: pulse.c:1725 #, c-format msgid "Pulse session limit, %d sessions\n" msgstr "" #: pulse.c:1734 msgid "Unhandled Pulse auth request\n" msgstr "Kezeletlen Pulse hitelesítési kérés\n" #: pulse.c:1771 msgid "Unexpected response instead of IF-T/TLS auth success:\n" msgstr "" #: pulse.c:1844 #, c-format msgid "Read %d bytes of IF-T/TLS EAP-TTLS record\n" msgstr "%d bájt kiolvasva az IF-T/TLS EAP-TTLS rekordból\n" #: pulse.c:1855 msgid "Bad EAP-TTLS packet\n" msgstr "Rossz EAP-TTLS csomag\n" #: pulse.c:1968 msgid "Unexpected Pulse config packet:\n" msgstr "Érvénytelen Pulse beállítási csomag:\n" #: pulse.c:2025 #, c-format msgid "Receive route of unknown type 0x%08x\n" msgstr "Ismeretlen 0x%08x típusú útvonal érkezett\n" #: pulse.c:2096 msgid "Invalid ESP config packet:\n" msgstr "Érvénytelen ESP beállítási csomag:\n" #: pulse.c:2108 msgid "Invalid ESP setup\n" msgstr "Érvénytelen ESP beállítás\n" #: pulse.c:2183 msgid "Bad IF-T/TLS packet when expecting configuration:\n" msgstr "" #: pulse.c:2191 msgid "Unexpected IF-T/TLS packet when expecting configuration.\n" msgstr "" #: pulse.c:2342 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: pulse.c:2364 msgid "ESP rekey failed\n" msgstr "ESP kulcsmegújítás sikertelen\n" #: pulse.c:2388 msgid "Unknown Pulse packet\n" msgstr "Ismeretlen Pulse csomag\n" #: pulse.c:2566 #, c-format msgid "Sending IF-T/TLS data packet of %d bytes\n" msgstr "" #: script.c:130 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Rossz felosztott felvétel eldobása: „%s”\n" #: script.c:134 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Rossz felosztott kizárás eldobása: „%s”\n" #: script.c:507 script.c:555 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Nem sikerült a(z) „%s” parancsfájl elindítása ehhez: %s: %s\n" #: script.c:562 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "A(z) „%s” parancsfájl nem megfelelő módon lépett ki (%x)\n" #: script.c:570 #, c-format msgid "Script '%s' returned error %d\n" msgstr "A(z) „%s” parancsfájl a következő hibakóddal tért vissza: %d\n" #: ssl.c:108 msgid "Socket connect cancelled\n" msgstr "Foglalat-csatlakozás megszakítva\n" #: ssl.c:217 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "Nem sikerült újracsatlakozni a(z) %s proxyhoz: %s\n" #: ssl.c:221 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "Nem sikerült újracsatlakozni a(z) %s géphez: %s\n" #: ssl.c:289 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Proxy a libproxy könyvtárból: %s://%s:%d/\n" #: ssl.c:317 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "A getaddrinfo meghiúsult a(z) „%s” gépnél: %s\n" #: ssl.c:326 ssl.c:451 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" "Újracsatlakozás a DynDNS kiszolgálóhoz az előzőleg gyorsítótárazott IP-cím " "használatával\n" #: ssl.c:341 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Kapcsolódási kísérlet a következő proxy-hoz: %s%s%s:%s\n" #: ssl.c:342 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Kapcsolódási kísérlet a következő kiszolgálóhoz: %s%s%s:%s\n" #: ssl.c:362 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "Csatlakozva ide: %s%s%s:%s\n" #: ssl.c:374 msgid "Failed to allocate sockaddr storage\n" msgstr "Nem sikerült lefoglalni a sockaddr tárolót\n" #: ssl.c:416 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "Nem sikerült ide kapcsolódni: %s%s%s:%s: %s\n" #: ssl.c:434 msgid "Forgetting non-functional previous peer address\n" msgstr "A nem funkcionális előző csomópont címének elfelejtése\n" #: ssl.c:446 #, c-format msgid "Failed to connect to host %s\n" msgstr "Nem sikerült kapcsolódni a következő géphez: %s\n" #: ssl.c:465 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "Újracsatlakozás a proxyhoz: „%s”\n" #: ssl.c:536 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:564 msgid "Could not obtain file system ID for passphrase\n" msgstr "Nem sikerült beszerezni a fájlrendszer azonosítót a jelszóhoz\n" #: ssl.c:575 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "A(z) „%s” személyes kulcsfájl megnyitása nem sikerült: %s\n" #: ssl.c:603 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:694 msgid "No error" msgstr "Nincs hiba" #: ssl.c:695 msgid "Keystore locked" msgstr "Kulcstároló zárolva" #: ssl.c:696 msgid "Keystore uninitialized" msgstr "Kulcstároló nincs előkészítve" #: ssl.c:697 msgid "System error" msgstr "Rendszerhiba" #: ssl.c:698 msgid "Protocol error" msgstr "Protokollhiba" #: ssl.c:699 msgid "Permission denied" msgstr "Hozzáférés megtagadva" #: ssl.c:700 msgid "Key not found" msgstr "Kulcs nem található" #: ssl.c:701 msgid "Value corrupted" msgstr "Sérült érték" #: ssl.c:702 msgid "Undefined action" msgstr "Meghatározatlan művelet" #: ssl.c:706 msgid "Wrong password" msgstr "Hibás jelszó" #: ssl.c:707 msgid "Unknown error" msgstr "Ismeretlen hiba" #: ssl.c:896 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" "Az openconnect_fopen_utf8() nem támogatott móddal lett használva: „%s”\n" #: ssl.c:931 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "Ismeretlen protokollcsalád: %d. Nem hozható létre UDP kiszolgálócím\n" #: ssl.c:950 msgid "Open UDP socket" msgstr "UDP foglalat megnyitása" #: ssl.c:981 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "Ismeretlen protokollcsalád: %d. Nem használható az UDP átvitel\n" #: ssl.c:989 msgid "Bind UDP socket" msgstr "UDP foglalat kötése" #: ssl.c:996 msgid "Connect UDP socket\n" msgstr "UDP foglalat kapcsolódása\n" #: ssl.c:1034 msgid "Cookie is no longer valid, ending session\n" msgstr "A süti nem érvényes többé, munkamenet befejezése\n" #: ssl.c:1038 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "alvás: %dmp, hátralévő időkorlát: %dmp\n" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "Az SSPI token túl nagy (%ld bájt)\n" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "%lu bájt SSPI token küldése\n" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "Nem sikerült elküldeni az SSPI hitelesítési tokent a proxynak: %s\n" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "Nem sikerült fogadni az SSPI hitelesítési tokent a proxytól: %s\n" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "A SOCKS kiszolgáló SSPI környezet hibát jelentett\n" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "Ismeretlen SSPI állapotválasz (0x%02x) a SOCKS kiszolgálótól\n" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "%lu bájt SSPI token érkezett: %02x %02x %02x %02x\n" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "QueryContextAttributes() sikertelen: %lx\n" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "EncryptMessage() sikertelen: %lx\n" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "Az EncryptMessage() eredménye túl nagy (%lu + %lu + %lu)\n" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "%u bájt SSPI védelemegyeztetés küldése\n" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "Nem sikerült elküldeni az SSPI védelem választ a proxynak: %s\n" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "Nem sikerült fogadni az SSPI védelem választ a proxytól: %s\n" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "%d bájt SSPI védelem válasz érkezett: %02x %02x %02x %02x\n" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "DecryptMessage sikertelen: %lx\n" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "Érvénytelen SSPI védelem válasz a proxytól (%lu bájt)\n" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "Adja meg a hitelesítési adatokat a szoftveres token feloldásához." #: stoken.c:82 msgid "Device ID:" msgstr "Eszközazonosító:" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "A felhasználó megkerülte a szoftveres tokent.\n" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "Minden mező kötelező, próbálja újra.\n" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "Általános hiba a libstoken könyvtárban.\n" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "Hibás eszközazonosító vagy jelszó, próbálja újra.\n" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "A szoftveres token előkészítése sikeres volt.\n" #: stoken.c:185 msgid "Enter software token PIN." msgstr "Adja meg a szoftveres token PIN-kódját." #: stoken.c:189 msgid "PIN:" msgstr "PIN:" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "Érvénytelen PIN-formátum, próbálja újra.\n" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "RSA tokenkód előállítása\n" #: tun-win32.c:76 msgid "Error accessing registry key for network adapters\n" msgstr "Hiba a hálózati adatperek rendszerleíró kulcsához való hozzáféréskor\n" #: tun-win32.c:139 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "Nem egyező „%s” TAP felület mellőzése\n" #: tun-win32.c:154 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" "Nem találhatók Windows-TAP adapterek. Telepítve van az illesztőprogram?\n" #: tun-win32.c:186 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" "GetAdapterIndex() sikertelen: %s\n" "Visszaállás a GetAdaptersInfo() függvényre\n" #: tun-win32.c:200 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "GetAdaptersInfo() sikertelen: %s\n" #: tun-win32.c:231 #, c-format msgid "Failed to open %s\n" msgstr "Nem sikerült megnyitni: %s\n" #: tun-win32.c:236 #, c-format msgid "Opened tun device %s\n" msgstr "Megnyitott tun eszköz: %s\n" #: tun-win32.c:244 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Nem sikerült megszerezni a TAP illesztőprogram verzióját: %s\n" #: tun-win32.c:250 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Hiba: TAP-Windows illesztőprogram v9.9 vagy újabb szükséges (%ld.%ld " "található)\n" #: tun-win32.c:271 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Nem sikerült beállítani a TAP IP-címeket: %s\n" #: tun-win32.c:283 tun-win32.c:406 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Nem sikerült beállítani a TAP médiaállapotot: %s\n" #: tun-win32.c:316 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "A TAP eszköz megszakította a kapcsolódási lehetőséget. Leválasztás.\n" #: tun-win32.c:321 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Nem sikerült olvasni a TAP eszközről: %s\n" #: tun-win32.c:335 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Nem sikerült befejezni az olvasást a TAP eszközről: %s\n" #: tun-win32.c:358 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "%ld bájt kiírva a tun eszközre\n" #: tun-win32.c:368 msgid "Waiting for tun write...\n" msgstr "Várakozás a tun írásra…\n" #: tun-win32.c:371 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "%ld bájt kiírva a tun eszközre a várakozás után\n" #: tun-win32.c:378 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Nem sikerült írni a TAP eszközre: %s\n" #: tun-win32.c:423 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "Alagút parancsfájlok indítása még nem támogatott Windows rendszeren\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Nem sikerült a /dev/tun megnyitása az átvizsgáláshoz" #: tun.c:92 msgid "Can't push IP" msgstr "Nem sikerült az IP küldése" #: tun.c:102 msgid "Can't set ifname" msgstr "Nem sikerült az ifname beállítása" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "Nem sikerült a(z) %s megnyitása: %s" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Nem sikerült a(z) %s átvizsgálása IPv%d esetén: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "/dev/tun megnyitása" #: tun.c:145 msgid "Failed to create new tun" msgstr "Nem sikerült az új tun létrehozása" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "Nem sikerült a tun fájlleíró átállítása message-discard módba" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "A tun eszköz nem támogatott ezen a platformon\n" #: tun.c:205 msgid "open net" msgstr "net megnyitása" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Nem sikerült megnyitni a tun eszközt: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "Nem sikerült kötni a helyi tun eszközt (TUNSETIFF): %s\n" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" "A helyi hálózatkezelés beállításához az openconnect programot " "rendszergazdaként kell futtatni\n" "További információkért nézze meg a következő oldalt:\n" "http://www.infradead.org/openconnect/nonroot.html oldalt\n" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" "Érvénytelen „%s” nevű csatoló; egyeznie kell ezzel: „utun%%d” vagy „tun%%d”\n" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "Nem sikerült megnyitni a SYSPROTO_CONTROL foglalatot: %s\n" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "Nem sikerült lekérdezni az utun vezérlő azonosítót: %s\n" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "Nem sikerült lefoglalni az utun eszköz nevét\n" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "Nem sikerült kapcsolódni az utun egységhez: %s\n" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Érvénytelen „%s” nevű csatoló; egyeznie kell ezzel: „tun%%d”\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "A(z) „%s” nem nyitható meg: %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:479 #, c-format msgid "socketpair failed: %s\n" msgstr "socketpair sikertelen: %s\n" #: tun.c:484 #, c-format msgid "fork failed: %s\n" msgstr "fork sikertelen: %s\n" #: tun.c:488 msgid "setpgid" msgstr "setpgid" #: tun.c:493 msgid "execl" msgstr "execl" #: tun.c:498 msgid "(script)" msgstr "(parancsfájl)" #: tun.c:566 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Nem sikerült a bejövő csomag írása: %s\n" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "Nem sikerült megnyitni: %s: %s\n" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "Nem sikerült az fstat() %s hívás: %s\n" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Nem sikerült %d bájtot lefoglalni ehhez: %s\n" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "Nem sikerült beolvasni: %s: %s\n" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "A(z) „%s” gép kezelése nyers gépnévként\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "A meglévő fájl SHA1 ellenőrzése nem sikerült\n" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "XML beállítófájl SHA1: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Nem sikerült feldolgozni az XML beállítófájlt: %s\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "A(z) „%s” gépnek „%s” címe van\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "A „%s” gépnek „%s” felhasználói csoportja van\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "A(z) „%s” gép nincs felsorolva a beállításban; nyers gépnévként lesz " "kezelve\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "Nem sikerült a(z) „%s” küldése a ykneo-oath kisalkalmazásnak: %s\n" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "Érvénytelen rövid válasz a ykneo-oath kisalkalmazástól ehhez: „%s”\n" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "Hibás válasz ehhez: „%s”: %04x\n" #: yubikey.c:174 msgid "select applet command" msgstr "kisalkalmazás parancs kiválasztása" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "Azonosítatlan válasz a ykneo-oath kisalkalmazástól\n" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "%d.%d.%d. verziójú ykneo-oath kisalkalmazás található\n" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "PIN-kód szükséges a Yubikey OATH kisalkalmazáshoz" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "Yubikey PIN-kód:" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "Nem sikerült kiszámítani a Yubikey feloldási választ\n" #: yubikey.c:274 msgid "unlock command" msgstr "feloldási parancs" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "A Yubikey PIN csonkolt karakteres PBKBF2 változatának kipróbálása\n" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "Nem sikerült PC/SC környezetet létesíteni: %s\n" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "PC/SC környezet kiépítve\n" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "Nem sikerült lekérdezni az olvasólistát: %s\n" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "Nem sikerült kapcsolódni a(z) „%s” PC/SC olvasóhoz: %s\n" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "Kapcsolódva a(z) „%s” PC/SC olvasóhoz\n" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" "Nem sikerült kizárólagos hozzáférést szerezni a(z) „%s” olvasóhoz: %s\n" #: yubikey.c:412 msgid "list keys command" msgstr "kulcsok listázása parancs" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "%s/%s „%s” kulcs található ezen: „%s”\n" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" "A(z) „%s” token nem található ezen a Yubikey-en: „%s”. Másik Yubikey " "keresése…\n" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" "A kiszolgáló visszautasította a Yubikey tokent; átváltás kézi bevitelre\n" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "Yubikey tokenkód előállítása\n" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "Nem sikerült kizárólagos hozzáférést szerezni a Yubikey-hez: %s\n" #: yubikey.c:619 msgid "calculate command" msgstr "kiszámítás parancs" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "Azonosítatlan válasz a Yubikey-től a tokenkód előállításakor\n" #~ msgid "Failed to generate random keys for ESP:\n" #~ msgstr "Nem sikerült a véletlenszerű kulcsok előállítása az ESP-hez:\n" #~ msgid "Compatible with Juniper Network Connect / Pulse Secure SSL VPN" #~ msgstr "" #~ "Kompatibilis a Juniper hálózati csatlakozás / Pulse Secure SSL VPN-nel" #~ msgid "Failed to generate random keys for ESP: %s\n" #~ msgstr "Nem sikerült a véletlen kulcsok előállítása az ESP-hez: %s\n" #~ msgid "Failed to send DPD request (%d)\n" #~ msgstr "Nem sikerült a DPD kérés (%d) küldése\n" #~ msgid "Initiating IPv6 MTU detection\n" #~ msgstr "IPv6 MTU észlelés előkészítése\n" #~ msgid "Received MTU DPD probe (%u bytes of %u)\n" #~ msgstr "MTU DPD szonda fogadva (%u bájt / %u)\n" #~ msgid "Timeout while waiting for DPD response; resending probe.\n" #~ msgstr "Időtúllépés a DPD válaszra várva; szonda újraküldése.\n" #~ msgid "Timeout while waiting for DPD response; trying %d\n" #~ msgstr "Időtúllépés a DPD válaszra várva; próbálkozás: %d\n" #~ msgid "Sending MTU DPD probe (%u bytes, min=%u, max=%u)\n" #~ msgstr "MTU DPD szonda küldése (%u bájt, min=%u, max=%u)\n" #~ msgid "Initiating IPv4 MTU detection (min=%d, max=%d)\n" #~ msgstr "IPv4 MTU észlelés előkészítése (min=%d, max=%d)\n" openconnect-8.05/po/sr@latin.po0000664000076400007640000037170613470043037020306 0ustar00dwoodhoudwoodhou00000000000000# Language network-manager-openconnect-master translations for F package. # Copyright (C) 2011 THE F'S COPYRIGHT HOLDER # This file is distributed under the same license as the F package. # Miroslav Nikolić , 2011. msgid "" msgstr "" "Project-Id-Version: F 677-CF0E\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2019-05-18 10:44-0700\n" "PO-Revision-Date: 2011-05-15 20:01+0200\n" "Last-Translator: Miroslav Nikolić \n" "Language-Team: Serbian \n" "Language: Serbian (sr)\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "X-Generator: Virtaal 0.5.2\n" #: auth-globalprotect.c:108 #, c-format msgid "" "SAML login is required via %s to this URL:\n" "\t%s" msgstr "" #: auth-globalprotect.c:110 msgid "Please enter your username and password" msgstr "" #: auth-globalprotect.c:119 msgid "Username" msgstr "" #: auth-globalprotect.c:134 msgid "Password" msgstr "" #: auth-globalprotect.c:181 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:260 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:266 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:272 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:315 msgid "Please select GlobalProtect gateway." msgstr "" #: auth-globalprotect.c:325 msgid "GATEWAY:" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:379 #, c-format msgid "%d gateway servers available:\n" msgstr "" #: auth-globalprotect.c:400 #, c-format msgid " %s (%s)\n" msgstr "" #: auth-globalprotect.c:484 auth-juniper.c:730 auth.c:669 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "Nisam uspeo da stvorim OTP kod modula; isključujem modul\n" #: auth-globalprotect.c:584 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" #: auth-globalprotect.c:636 oncp.c:1266 msgid "Logout failed.\n" msgstr "Odjavljivanje nije uspelo\n" #: auth-globalprotect.c:638 msgid "Logout successful\n" msgstr "" #: auth-juniper.c:142 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "Zanemarujem stavku predaje nepoznatog oblika „%s“\n" #: auth-juniper.c:153 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "Zanemarujem vrstu unosa nepoznatog oblika „%s“\n" #: auth-juniper.c:163 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "Odbacujem udvostručene opcije „%s“\n" #: auth-juniper.c:236 auth.c:408 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Ne mogu da radim sa načinom=„%s“ obrasca, radnja=„%s“\n" #: auth-juniper.c:267 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "Nepoznato polje tekstualne oblasti: „%s“\n" #: auth-juniper.c:337 msgid "TNCC support not implemented yet on Windows\n" msgstr "TNCC podrška još nije primenjena na Vindouzu\n" #: auth-juniper.c:359 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "Nema „DSPREAUTH“ kolačića; ne pokušavam TNCC\n" #: auth-juniper.c:397 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "Nisam uspeo da izvršim TNCC skriptu „%s“: %s\n" #: auth-juniper.c:411 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "Nisam uspeo da dodelim memoriju za komunikaciju sa TNCC-om\n" #: auth-juniper.c:418 msgid "Failed to send start command to TNCC\n" msgstr "Nisam uspeo da pošaljem naredbu TNCC-u\n" #: auth-juniper.c:425 msgid "Sent start; waiting for response from TNCC\n" msgstr "Poslah početak; čekam na odgovor od TNCC-a\n" #: auth-juniper.c:432 msgid "Failed to read response from TNCC\n" msgstr "Nisam uspeo da pročitam odgovor od TNCC-a\n" #: auth-juniper.c:439 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "Primih bezuspešan %s odgovor od TNCC-a\n" #: auth-juniper.c:445 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:452 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "Dobih novi „DSPREAUTH“ kolačić od TNCC-a: %s\n" #: auth-juniper.c:474 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:481 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:650 msgid "Failed to parse HTML document\n" msgstr "Nisam uspeo da obradim HTML dokument\n" #: auth-juniper.c:667 msgid "Failed to find or parse web form in login page\n" msgstr "" "Nisam uspeo da nađem ili da obradim obrazac veba na stranici prijavljivanja\n" #: auth-juniper.c:675 msgid "Encountered form with no ID\n" msgstr "Naiđoh na obrazac bez IB-a\n" #: auth-juniper.c:713 #, c-format msgid "Unknown form ID '%s'\n" msgstr "Nepoznati IB obrasca „%s“\n" #: auth-juniper.c:716 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "Izbacujem nepoznati HTML obrazac:\n" #: auth.c:96 msgid "Form choice has no name\n" msgstr "Izbor obrasca nema naziv\n" #: auth.c:181 #, c-format msgid "name %s not input\n" msgstr "naziv „%s“ nije ulaz\n" #: auth.c:188 msgid "No input type in form\n" msgstr "Nema vrste ulaza za obrazac\n" #: auth.c:200 msgid "No input name in form\n" msgstr "Nema naziva ulaza u obrascu\n" #: auth.c:230 #, c-format msgid "Unknown input type %s in form\n" msgstr "Nepoznata vrsta ulaza „%s“ u obrascu\n" #: auth.c:540 gpst.c:214 msgid "Empty response from server\n" msgstr "Prazan odgovor sa servera\n" #: auth.c:551 gpst.c:289 msgid "Failed to parse server response\n" msgstr "Nisam uspeo da obradim odgovor servera\n" #: auth.c:553 gpst.c:291 #, c-format msgid "Response was:%s\n" msgstr "Odgovor je bio:%s\n" #: auth.c:575 msgid "Received when not expected.\n" msgstr "Primih kada nije očekivan.\n" #: auth.c:603 msgid "XML response has no \"auth\" node\n" msgstr "IksML odgovor nema čvor „auth“\n" #: auth.c:636 msgid "Asked for password but '--no-passwd' set\n" msgstr "Zatražena mi je lozinka ali je postavljeno „--no-passwd“\n" #: auth.c:925 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "Ne preuzimam IksML profil jer SHA1 već odgovara\n" #: auth.c:931 cstp.c:335 http.c:916 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Nisam uspeo da otvorim HTTPS vezu sa „%s“\n" #: auth.c:952 msgid "Failed to send GET request for new config\n" msgstr "Nisam uspeo da pošaljem „GET“ zahtev za novo podešavanje\n" #: auth.c:976 msgid "Downloaded config file did not match intended SHA1\n" msgstr "Preuzeta datoteka podešavanja ne odgovara željenom SHA1\n" #: auth.c:981 msgid "Downloaded new XML profile\n" msgstr "Preuzet je novi IkML profil\n" #: auth.c:992 auth.c:1044 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" "Greška: Pokretanje trojanca „Cisko bezbedne radne površi“ na ovoj platformi " "još nije primenjeno.\n" #: auth.c:1003 mainloop.c:144 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "Nisam uspeo da podesim gib %ld: %s\n" #: auth.c:1010 mainloop.c:151 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "Nisam uspeo da podesim grupu na %ld: %s\n" #: auth.c:1017 mainloop.c:158 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "Nisam uspeo da podesim jib %ld: %s\n" #: auth.c:1024 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "Neispravan korisnički jib=%ld: %s\n" #: auth.c:1031 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Nisam uspeo da pređem u lični CSD direktorijum „%s“: %s\n" #: auth.c:1053 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Greška: Server je zatražio da pokrenemo CSD pregled domaćina.\n" "Morate da obezbedite odgovarajući „--csd-wrapper“ argument.\n" #: auth.c:1060 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Greška: Server je zatražio da preuzmemo i pokrenemo trojanca „Cisko bezbedne " "radne površi“.\n" "Ova okolnost je isključena po osnovi iz bezbednosnih razloga, tako da biste " "možda želeli da je uključite.\n" #: auth.c:1067 msgid "Trying to run Linux CSD trojan script.\n" msgstr "Pokušavam da pokrenem skriptu Linuksovog CSD trojanca.\n" #: auth.c:1094 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "Privremeni direktorijum „%s“ nije upisiv: %s\n" #: auth.c:1102 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Nisam uspeo da otvorim privremenu datoteku CSD skripte: %s\n" #: auth.c:1111 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Nisam uspeo da zapišem privremenu datoteku CSD skripte: %s\n" #: auth.c:1141 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Upozorenje: pokrenuli ste nebezbedni CSD kod sa administratorskim " "ovlašćenjima\n" "\t Koristite opciju „--csd-user“\n" #: auth.c:1189 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Nisam uspeo da izvršim CSD skriptu „%s“\n" #: auth.c:1221 msgid "Unknown response from server\n" msgstr "Nepoznat odgovor sa servera\n" #: auth.c:1342 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" "Server je zatražio uverenje SSL klijenta nakon što je dostavljeno jedno\n" #: auth.c:1346 msgid "Server requested SSL client certificate; none was configured\n" msgstr "Server je zatražio uverenje SSL klijenta; nijedno nije podešeno\n" #: auth.c:1362 msgid "XML POST enabled\n" msgstr "IksML POST je uključen\n" #: auth.c:1405 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Osvežavam „%s“ nakon 1 sekunde...\n" #: compat.c:207 #, c-format msgid "(error 0x%lx)" msgstr "(greška 0h%lx)" #: compat.c:210 msgid "(Error while describing error!)" msgstr "(Greška prilikom opisivanja greške!)" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "GREŠKA: Ne mogu da pokrenem priključnice\n" #: cstp.c:112 gpst.c:341 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO prim por %d, posl por %d, por ogl %d, pmtu %d\n" #: cstp.c:134 gpst.c:360 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAHSEG %d\n" #: cstp.c:281 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" "KRITIČNA GREŠKA: Glavna tajna DTLS-a nije pokrenuta. Izvestite o ovome.\n" #: cstp.c:312 msgid "Error creating HTTPS CONNECT request\n" msgstr "Greška stvaranja zahteva za HTTPS POVEZIVANJE\n" #: cstp.c:328 http.c:384 msgid "Error fetching HTTPS response\n" msgstr "Greška dovlačenja HTTPS odgovora\n" #: cstp.c:355 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "VPN usluga nije dostupna; razlog: %s\n" #: cstp.c:360 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Dobih neodgovarajući odgovor HTTP POVEZIVANJA: %s\n" #: cstp.c:367 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Dobih odgovor POVEZIVANJA: %s\n" #: cstp.c:396 cstp.c:404 msgid "No memory for options\n" msgstr "Nema memorije za opcije\n" #: cstp.c:413 http.c:444 msgid "" msgstr "" #: cstp.c:433 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "IB sesije H-DTLS-a nije 64 znaka; već: „%s“\n" #: cstp.c:450 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "IB sesije H-DTLS-a nije ispravan; već je: „%s“\n" #: cstp.c:468 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "Nepoznato kodiranje DTLS sadržaja %s\n" #: cstp.c:510 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Nepoznato kodiranje CSTP sadržaja %s\n" #: cstp.c:585 msgid "No MTU received. Aborting\n" msgstr "MTU nije primljen. Prekidam\n" #: cstp.c:593 gpst.c:641 msgid "No IP address received. Aborting\n" msgstr "Nije primljena IP adresa. Prekidam\n" #: cstp.c:599 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "Primljeno je IPv6 podešavanje ali MTU %d je premali.\n" #: cstp.c:605 gpst.c:648 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Ponovno povezivanje je dalo drugačiju Staru IP adresu (%s != %s)\n" #: cstp.c:614 gpst.c:657 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" "Ponovno povezivanje je dalo drugačiju Staru IP mrežnu masku (%s != %s)\n" #: cstp.c:622 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Ponovno povezivanje je dalo drugačiju IPv6 adresu (%s != %s)\n" #: cstp.c:630 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Ponovno povezivanje je dalo drugačiju IPv6 mrežnu masku (%s != %s)\n" #: cstp.c:638 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP je povezan. DPD %d, Održi živim %d\n" #: cstp.c:640 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "CSTP komplet šifrera: %s\n" #: cstp.c:702 msgid "Compression setup failed\n" msgstr "Podešavanje pakovanja nije uspelo\n" #: cstp.c:719 msgid "Allocation of deflate buffer failed\n" msgstr "Dodela međumemorije izduvavanja nije uspela\n" #: cstp.c:781 msgid "inflate failed\n" msgstr "naduvavanje nije uspelo\n" #: cstp.c:804 #, c-format msgid "LZS decompression failed: %s\n" msgstr "Nije uspelo LZS raspakivanje: %s\n" #: cstp.c:817 msgid "LZ4 decompression failed\n" msgstr "Nije uspelo LZ4 raspakivanje\n" #: cstp.c:824 #, c-format msgid "Unknown compression type %d\n" msgstr "Nepoznata vrsta pakovanja „%d“\n" #: cstp.c:829 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "Primih %s zapakovani paket podataka od %d bajta (beše %d)\n" #: cstp.c:849 #, c-format msgid "deflate failed %d\n" msgstr "izduvavanje nije uspelo %d\n" #: cstp.c:922 dtls.c:281 dtls.c:740 esp.c:129 gpst.c:1042 mainloop.c:69 #: oncp.c:914 msgid "Allocation failed\n" msgstr "Nije uspela raspodela\n" #: cstp.c:933 gpst.c:1055 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "Primljen je kratak paket (%d bajta)\n" #: cstp.c:946 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Neočekivana dužina paketa. SSL_čitanje je dalo %d ali paket je\n" #: cstp.c:960 msgid "Got CSTP DPD request\n" msgstr "Dobih CSTP DPD zahtev\n" #: cstp.c:966 msgid "Got CSTP DPD response\n" msgstr "Dobih CSTP DPD odgovor\n" #: cstp.c:971 msgid "Got CSTP Keepalive\n" msgstr "Dobih CSTP Održi živim\n" #: cstp.c:976 oncp.c:1003 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Primih paket nezapakovanih podataka od %d bajta\n" #: cstp.c:993 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Primih prekid veze sa servera: %02x „%s“\n" #: cstp.c:996 msgid "Received server disconnect\n" msgstr "Primih prekid veze sa servera\n" #: cstp.c:1004 msgid "Compressed packet received in !deflate mode\n" msgstr "Sažeti paket je primljen u „!deflate“ režimu\n" #: cstp.c:1013 msgid "received server terminate packet\n" msgstr "primljen je serverov paket okončavanja\n" #: cstp.c:1020 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Nepoznat paket %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1063 gpst.c:1142 oncp.c:1121 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL je zapisao premalo bajtova! Tražio je %d, poslao je %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1091 oncp.c:1155 msgid "CSTP rekey due\n" msgstr "Istek promene ključa CSTP-a\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1098 oncp.c:1162 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Ponovno rukovanje nije uspelo; pokušavam novi tunel\n" #: cstp.c:1109 oncp.c:1173 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "Otkrivanje mrtvog parnjaka CSTP-a je otkrilo mrtvog parnjaka!\n" #: cstp.c:1113 gpst.c:1166 oncp.c:1091 oncp.c:1177 msgid "Reconnect failed\n" msgstr "Ponovno povezivanje nije uspelo\n" #: cstp.c:1129 oncp.c:1193 msgid "Send CSTP DPD\n" msgstr "Poslah CSTP DPD\n" #: cstp.c:1141 oncp.c:1204 msgid "Send CSTP Keepalive\n" msgstr "Poslah CSTP Održi živim\n" #: cstp.c:1166 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "Šaljem paket zapakovanih podataka od %d bajta (beše %d)\n" #: cstp.c:1177 oncp.c:1238 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Šaljem paket nezapakovanih podataka od %d bajta\n" #: cstp.c:1216 #, c-format msgid "Send BYE packet: %s\n" msgstr "Poslah paket ODLSKA: %s\n" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "Pokušavam svarivanje potvrđivanja identiteta sa posrednikom\n" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "Pokušavam prihvatanje potvrđivanja identiteta na serveru „%s“\n" #: dtls.c:113 msgid "DTLS connection attempted with an existing fd\n" msgstr "DTLS veza je pokušana sa postojećim fd-om\n" #: dtls.c:119 msgid "No DTLS address\n" msgstr "Nema DTLS adrese\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:126 msgid "Server offered no DTLS cipher option\n" msgstr "Server je nije ponudio opciju DTLS šifrera\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:133 msgid "No DTLS when connected via proxy\n" msgstr "Nema DTLS-a kada ste povezani putem posrednika\n" #: dtls.c:200 #, c-format msgid "DTLS option %s : %s\n" msgstr "Opcija DTLS-a „%s“: %s\n" #: dtls.c:239 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS je pokrenut. DPD %d, Održi živim %d\n" #: dtls.c:265 msgid "Attempt new DTLS connection\n" msgstr "Pokušaj novu DTLS vezu\n" #: dtls.c:292 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Primljen je DTLS paket 0x%02x od %d bajta\n" #: dtls.c:306 msgid "Got DTLS DPD request\n" msgstr "Dobih DTLS DPD zahtev\n" #: dtls.c:312 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Nisam uspeo da pošaljem DPD odgovor. Očekujte prekid veze\n" #: dtls.c:316 msgid "Got DTLS DPD response\n" msgstr "Dobih DTLS DPD odgovor\n" #: dtls.c:320 msgid "Got DTLS Keepalive\n" msgstr "Dobih DTLS Održi živim\n" #: dtls.c:326 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "Zapakovani DTLS paket je primljen kada zapakivanje nije uključeno\n" #: dtls.c:334 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Nepoznata vrsta DTLS paketa %02x, dužina %d\n" #: dtls.c:356 msgid "DTLS rekey due\n" msgstr "Istek promene ključa DTLS-a\n" #: dtls.c:363 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "Nije uspelo ponovno DTLS rukovanje; pnovo se povezujem.\n" #: dtls.c:372 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "Otkrivanje mrtvog parnjaka DTLS-a je otkrilo mrtvog parnjaka!\n" #: dtls.c:378 msgid "Send DTLS DPD\n" msgstr "Poslah DTLS DPD\n" #: dtls.c:383 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Nisam uspeo da pošaljem DPD zahtev. Očekujte prekid veze\n" #: dtls.c:396 msgid "Send DTLS Keepalive\n" msgstr "Poslah DTLS Održi živim\n" #: dtls.c:401 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Nisam uspeo da pošaljem zahtev održi živim. Očekujte prekid veze\n" #: dtls.c:432 tun.c:541 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Primljen je nepoznat paket (dužine %d): %02x %02x %02x %02x...\n" #: dtls.c:439 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "TOS ovo: %d, TOS poslednje: %d\n" #: dtls.c:443 msgid "UDP setsockopt" msgstr "Podešava opcije priključnice UDP" #: dtls.c:474 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "DTLS je dobio grešku pisanja %d. Prebacujem se na SSL\n" #: dtls.c:488 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "DTLS je dobio grešku pisanja: %s. Prebacujem se na SSL\n" #: dtls.c:503 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "Poslao sam DTLS paket od %d bajta; DTLS-ovo slanje je dalo %d\n" #: dtls.c:531 #, c-format msgid "Initiating IPv4 MTU detection (min=%d, max=%d)\n" msgstr "Pokrećem IPv4 MTU otkrivanje (najm.=%d, najv.=%d)\n" #: dtls.c:551 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "Predugo vreme u petlji MTU otkrivanja; podrazumevam pregovoreni MTU.\n" #: dtls.c:555 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "Predugo vreme u petlji MTU otkrivanja; MTU je postavljen na %d.\n" #: dtls.c:564 #, c-format msgid "Sending MTU DPD probe (%u bytes, min=%u, max=%u)\n" msgstr "Šaljem MTU DPD probu (%u bajta, min=%u, max=%u)\n" #: dtls.c:568 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "Nisam uspeo da pošaljem DPD zahtev (%d %d)\n" #: dtls.c:582 dtls.c:690 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "Primih neočekivani paket (%.2x) u MTU otkrivanju; preskačem.\n" #: dtls.c:594 #, c-format msgid "Timeout while waiting for DPD response; trying %d\n" msgstr "Isteklo je vreme čekajući na DPD odgovor; pokušavam %d\n" #: dtls.c:601 dtls.c:682 msgid "Timeout while waiting for DPD response; resending probe.\n" msgstr "Isteklo je vreme čekajući na DPD odgovor; ponovo šaljem probu.\n" #: dtls.c:608 dtls.c:709 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "Nisam uspeo da primim DPD zahtev (%d)\n" #: dtls.c:613 #, c-format msgid "Received MTU DPD probe (%u bytes of %u)\n" msgstr "Primih MTU DPD probu (%u bajta od %u)\n" #: dtls.c:651 msgid "Initiating IPv6 MTU detection\n" msgstr "Pokrećem IPv4 MTU otkrivanje\n" #: dtls.c:666 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "Šaljem MTU DPD probu (%u bajta)\n" #: dtls.c:670 #, c-format msgid "Failed to send DPD request (%d)\n" msgstr "Nisam uspeo da pošaljem DPD zahtev (%d)\n" #: dtls.c:695 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "Primih MTU DPD probu (%u bajta)\n" #: dtls.c:759 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "Otrio sam MTU od %d bajta (beše %d)\n" #: dtls.c:762 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "Nema promene u MTU nakon otkrivanja (beše %d)\n" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "Prihvatam očekivani ESP paket sa nizom %u\n" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" "Prihvatam ESP paket kasnije-nego-očekivano sa nizom %u (očekivah %)\n" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "Odbacujem stari ESP paket sa nizom %u (očekivah %)\n" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "Odbacujem odgovoreni ESP paket sa nizom %u\n" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "Prihvatam ESP paket bez najave sa nizom %u (očekivah %)\n" #: esp.c:63 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "Parametri za %s ESP: SPI 0x%08x\n" #: esp.c:66 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "Vrsta „%s“ ESP šifrovanja ključ 0x%s\n" #: esp.c:69 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "Vrsta „%s“ ESP prijavljivanja ključ 0x%s\n" #: esp.c:87 msgid "incoming" msgstr "dolazno" #: esp.c:88 msgid "outgoing" msgstr "odlazno" #: esp.c:90 esp.c:113 msgid "Send ESP probes\n" msgstr "Poslah ESP probe\n" #: esp.c:138 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "Primih ESP paket od %d bajta\n" #: esp.c:155 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:161 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "Primih ESP paket sa neispravnim SPI-em 0x%08x\n" #: esp.c:174 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "Primih ESP paket sa nepoznatom vrstom utovara %02x\n" #: esp.c:181 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "Neispravna dužina popune %02x U ESP-u\n" #: esp.c:193 msgid "Invalid padding bytes in ESP\n" msgstr "Neispravni bitovi popune U ESP-u\n" #: esp.c:202 msgid "ESP session established with server\n" msgstr "ESP sesija je uspostavljena sa serverom\n" #: esp.c:213 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "Nisam uspeo da dodelim memoriju za dešifrovanje ESP paketa\n" #: esp.c:219 msgid "LZO decompression of ESP packet failed\n" msgstr "LZO raspakivanje ESP paketa nije uspelo\n" #: esp.c:225 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "LZO je raspakovao %d bajta u %d\n" #: esp.c:239 msgid "Rekey not implemented for ESP\n" msgstr "Ponovno stvaranje ključa nije primenjeno za ESP\n" #: esp.c:243 msgid "ESP detected dead peer\n" msgstr "ESP je otkrio mrtvog parnjaka\n" #: esp.c:251 msgid "Send ESP probes for DPD\n" msgstr "Poslah ESP probe za DPD\n" #: esp.c:258 msgid "Keepalive not implemented for ESP\n" msgstr "Održi živim nije primenjeno za ESP\n" #: esp.c:278 #, c-format msgid "Failed to encrypt ESP packet: %d\n" msgstr "" #: esp.c:294 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:301 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "Nisam uspeo da pošaljem ESP paket: %s\n" #: esp.c:307 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "Poslah ESP paket od %d bajta\n" #: gnutls-dtls.c:190 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "" #: gnutls-dtls.c:198 msgid "Failed to generate DTLS priority string\n" msgstr "Nisam uspeo da stvorim nisku hitnosti DTLS-a\n" #: gnutls-dtls.c:207 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "Nisam uspeo da pokrenem DTLS: %s\n" #: gnutls-dtls.c:216 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "Nisam uspeo da postavim hitnost DTLS-a: „%s“: %s\n" #: gnutls-dtls.c:240 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "Nisam uspeo da dodelim akreditive: %s\n" #: gnutls-dtls.c:253 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "Nisam uspeo da stvorim DTLS ključ: %s\n" #: gnutls-dtls.c:267 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "Nisam uspeo da postavim DTLS ključ: %s\n" #: gnutls-dtls.c:275 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "Nisam uspeo da postavim akreditive DTLS PSK-a: %s\n" #: gnutls-dtls.c:309 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Nepoznati DTLS parametri za zatraženi Komplet šifrera „%s“\n" #: gnutls-dtls.c:324 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "Nisam uspeo da postavim hitnost DTLS-a: %s\n" #: gnutls-dtls.c:345 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Nisam uspeo da postavim parametre DTLS sesije: %s\n" #: gnutls-dtls.c:373 openssl-dtls.c:534 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "MTU %d parnjaka je premalo da dozvoli DTLS\n" #: gnutls-dtls.c:382 openssl-dtls.c:545 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "DTLS MTU je smanjeno na %d\n" #: gnutls-dtls.c:392 openssl-dtls.c:554 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "Povraćaj DTLS sesije nije uspeo; moguć MITM napad. Isključujem DTLS.\n" #: gnutls-dtls.c:405 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Nisam uspeo da postavim DTLS MTU: %s\n" #: gnutls-dtls.c:416 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "Uspostavljena je DTLS veza (koristim GnuTLS). Komplet šifrera %s.\n" #: gnutls-dtls.c:422 openssl-dtls.c:572 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "Zapakivanje DTLS veze sa „%s“.\n" #: gnutls-dtls.c:437 openssl-dtls.c:653 openssl-dtls.c:657 msgid "DTLS handshake timed out\n" msgstr "Isteklo je vreme DTLS rukovanja\n" #: gnutls-dtls.c:440 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "Nije uspelo DTLS rukovanje: %s\n" #: gnutls-dtls.c:444 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(Da li vas mrežna barijera sprečava da pošaljete UDP pakete?)\n" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "Nisam uspeo da pokrenem ESP šifrera: %s\n" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "Nisam uspeo da pokrenem ESP HMAC: %s\n" #: gnutls-esp.c:121 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "Nisam uspeo da stvorim nasumične ključeve za ESP: %s\n" #: gnutls-esp.c:132 msgid "Failed to generate ESP IV\n" msgstr "" #: gnutls-esp.c:161 gnutls-esp.c:217 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "Nisam uspeo da izračunam HMAC za ESP paket: %s\n" #: gnutls-esp.c:168 openssl-esp.c:192 msgid "Received ESP packet with invalid HMAC\n" msgstr "Primih ESP paket sa neispravnim HMAC-om\n" #: gnutls-esp.c:180 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "Nije uspelo dešifrovanje ESP paketa: %s\n" #: gnutls-esp.c:209 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "Nisam uspeo da šifrujem ESP paket: %s\n" #: gnutls.c:95 openssl.c:154 msgid "SSL write cancelled\n" msgstr "Otkazano je SSL pisanje\n" #: gnutls.c:99 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "Nisam uspeo da pišem na SSL priključnicu: %s\n" #: gnutls.c:145 gnutls.c:237 openssl.c:204 openssl.c:271 msgid "SSL read cancelled\n" msgstr "Otkazano je SSL čitanje\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:158 msgid "SSL socket closed uncleanly\n" msgstr "SSL priključnica nije lepo zatvorena\n" #: gnutls.c:168 gnutls.c:246 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "Nisam uspeo da čitam sa SSL priključnice: %s\n" #: gnutls.c:266 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "Greška SSL čitanj: %s; ponovo se povezujem.\n" #: gnutls.c:302 #, c-format msgid "SSL send failed: %s\n" msgstr "Nije uspelo SSL slanje: %s\n" #: gnutls.c:315 msgid "Could not extract expiration time of certificate\n" msgstr "Ne mogu da izvučem vreme isteka uverenja\n" #: gnutls.c:320 openssl.c:1592 msgid "Client certificate has expired at" msgstr "Uverenje klijenta je isteklo u" #: gnutls.c:322 openssl.c:1597 msgid "Client certificate expires soon at" msgstr "Uverenje klijenta uskoro ističe" #: gnutls.c:371 openssl.c:771 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Nisam uspeo da učitam „%s“ iz smeštaja ključa: %s\n" #: gnutls.c:384 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Nisam uspeo da otvorim datoteku ključa/uverenja „%s“: %s\n" #: gnutls.c:391 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Nisam uspeo da dobavim podatke datoteke ključa/uverenja „%s“: %s\n" #: gnutls.c:400 msgid "Failed to allocate certificate buffer\n" msgstr "Nisam uspeo da dodelim međumemoriju uverenja\n" #: gnutls.c:408 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Nisam uspeo da učitam uverenje u memoriju: %s\n" #: gnutls.c:439 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Nisam uspeo da postavim strukturu PKCS#12 podataka: %s\n" #: gnutls.c:462 openssl.c:534 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Nisam uspeo da dešifrujem datoteku PKCS#12 uverenja\n" #: gnutls.c:466 openssl.c:537 msgid "Enter PKCS#12 pass phrase:" msgstr "Unesite PKCS#12 lozinku:" #: gnutls.c:489 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Nisam uspeo da obradim PKCS#12 datoteku: %s\n" #: gnutls.c:501 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Nisam uspeo da učitam PKCS#12 uverenje: %s\n" #: gnutls.c:584 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Nisam uspeo da uvezem H509 uverenje: %s\n" #: gnutls.c:594 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Nisam uspeo da postavim PKCS#11 uverenje: %s\n" #: gnutls.c:628 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Ne mogu da pokrenem MD5 heš: %s\n" #: gnutls.c:638 #, c-format msgid "MD5 hash error: %s\n" msgstr "Greška MD5 heša: %s\n" #: gnutls.c:696 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" "Nedostaje zaglavlje „DEK-Info:“ iz ključa šifrovanog Otvorenim SSl-om\n" #: gnutls.c:703 msgid "Cannot determine PEM encryption type\n" msgstr "Ne mogu da odredim vrstu PEM šifrovanja\n" #: gnutls.c:716 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Nepodržana vrsta PEM šifrovanja: %s\n" #: gnutls.c:741 gnutls.c:754 msgid "Invalid salt in encrypted PEM file\n" msgstr "Neispravan prisolak u šifrovanoj PEM datoteci\n" #: gnutls.c:778 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Greška šifrovane PEM datoteke osnove64-dekodiranja: %s\n" #: gnutls.c:786 msgid "Encrypted PEM file too short\n" msgstr "Šifrovana PEM datoteka je prekratka\n" #: gnutls.c:814 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "Nisam uspeo da pokrenem šifrera za dešifrovanje PEM datoteke: %s\n" #: gnutls.c:825 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Nisam uspeo da dešifrujem PEM ključ: %s\n" #: gnutls.c:877 msgid "Decrypting PEM key failed\n" msgstr "Nije uspelo dešifrovanje PEM ključa\n" #: gnutls.c:881 gnutls.c:1405 openssl.c:458 msgid "Enter PEM pass phrase:" msgstr "Unesite PEM lozinku:" #: gnutls.c:942 msgid "This binary built without system key support\n" msgstr "Ova izvršna je izgrađena bez podrške ključa sistema\n" #: gnutls.c:949 msgid "This binary built without PKCS#11 support\n" msgstr "Ova izvršna je izgrađena bez podrške PKCS#11\n" #: gnutls.c:993 openssl-pkcs11.c:407 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Koristim PKCS#11 uverenje „%s“\n" #: gnutls.c:994 #, c-format msgid "Using system certificate %s\n" msgstr "Koristim sistemsko uverenje „%s“\n" #: gnutls.c:1012 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Greška učitavanja uverenja iz PKCS#11: %s\n" #: gnutls.c:1013 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Greška učitavanja sistemskog uverenja: %s\n" #: gnutls.c:1024 openssl.c:827 #, c-format msgid "Using certificate file %s\n" msgstr "Koristim datoteku uverenja „%s“\n" #: gnutls.c:1052 msgid "PKCS#11 file contained no certificate\n" msgstr "PKCS#11 datoteka ne sadrži uverenje\n" #: gnutls.c:1078 msgid "No certificate found in file" msgstr "Nisam pronašao uverenje u datoteci" #: gnutls.c:1083 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Nisam uspeo da uvezem uverenje: %s\n" #: gnutls.c:1098 #, c-format msgid "Using system key %s\n" msgstr "Koristim sistemski ključ „%s“\n" #: gnutls.c:1103 gnutls.c:1271 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Greška pokretanja strukture ličnog ključa: %s\n" #: gnutls.c:1114 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Greška uvoza sistemskog ključa „%s“: %s\n" #: gnutls.c:1125 gnutls.c:1219 gnutls.c:1247 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "Pokušavam adresu PKCS#11 ključa „%s“\n" #: gnutls.c:1130 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Greška pokretanja strukture PKCS#11 ključa: %s\n" #: gnutls.c:1259 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Greška uvoza PKCS#11 adrese „%s“: %s\n" #: gnutls.c:1266 openssl-pkcs11.c:644 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Koristim PKCS#11 ključ „%s“\n" #: gnutls.c:1281 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "Greška uvoza PKCS#11 ključa u strukturu ličnog ključa: %s\n" #: gnutls.c:1299 #, c-format msgid "Using private key file %s\n" msgstr "Koristim datoteku ličnog ključa „%s“\n" #: gnutls.c:1310 openssl.c:651 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Ovo izdanje Otvorenog povezivanja je izgrađeno bez TPM podrške\n" #: gnutls.c:1326 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1347 msgid "Failed to interpret PEM file\n" msgstr "Nisam uspeo da protumačim PEM datoteku\n" #: gnutls.c:1366 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Nisam uspeo da učitam PKCS#1 lični ključ: %s\n" #: gnutls.c:1379 gnutls.c:1393 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Nisam uspeo da učitam lični ključ kao PKCS#8: %s\n" #: gnutls.c:1401 gnutls.c:1434 openssl.c:1002 openssl.c:1012 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Nisam uspeo da dešifrujem datoteku PKCS#8 uverenja\n" #: gnutls.c:1426 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Nisam uspeo da odredim vrstu ličnog ključa „%s“\n" #: gnutls.c:1438 openssl.c:1008 msgid "Enter PKCS#8 pass phrase:" msgstr "Unesite PKCS#8 lozinku:" #: gnutls.c:1454 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Nisam uspeo da dobavim IB ključa: %s\n" #: gnutls.c:1499 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Greška potpisivanja probnih podataka ličnim ključem: %s\n" #: gnutls.c:1514 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Greška potvrđivanja potpisa naspram uverenja: %s\n" #: gnutls.c:1539 msgid "No SSL certificate found to match private key\n" msgstr "Nisam našao SSL uverenje koje odgovara ličnom ključu\n" #: gnutls.c:1551 openssl.c:560 openssl.c:709 #, c-format msgid "Using client certificate '%s'\n" msgstr "Koristim uverenje klijenta „%s“\n" #: gnutls.c:1558 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "Podešavanje spiska oporavka uverenja nije uspelo: %s\n" #: gnutls.c:1579 gnutls.c:1589 msgid "Failed to allocate memory for certificate\n" msgstr "Nisam uspeo da dodelim memoriju za uverenje\n" #: gnutls.c:1625 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" "UPOZORENJE: GnuTLS je vratio netačno uverenje izdavača; potvrđivanje " "identiteta možda neće uspeti!\n" #: gnutls.c:1648 msgid "Got no issuer from PKCS#11\n" msgstr "Nisam dobio izdavača iz PKCS#11\n" #: gnutls.c:1653 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "Dobih sledećeg izdavača uverenja „%s“ iz PKCS11\n" #: gnutls.c:1679 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Nisam uspeo da dodelim memoriju za podržavanje uverenja\n" #: gnutls.c:1702 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Dodajem podržavajuće „%s“ izdavača uverenja\n" #: gnutls.c:1724 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1748 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Nisam uspeo da podesim uverenje: %s\n" #: gnutls.c:1941 msgid "Server presented no certificate\n" msgstr "Server nije predstavio nijedno uverenje\n" #: gnutls.c:1949 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "Greška upoređivanja uverenja servera pri ponovnom rukovanju: %s\n" #: gnutls.c:1954 openssl.c:1515 msgid "Server presented different cert on rehandshake\n" msgstr "Server je predstavio drugačije uverenje pri ponovnom rukovanju\n" #: gnutls.c:1959 openssl.c:1518 msgid "Server presented identical cert on rehandshake\n" msgstr "Server je predstavio isto uverenje pri ponovnom rukovanju\n" #: gnutls.c:1965 msgid "Error initialising X509 cert structure\n" msgstr "Greška pokretanja strukture X509 uverenja\n" #: gnutls.c:1971 msgid "Error importing server's cert\n" msgstr "Greška uvoza serverskog uverenja\n" #: gnutls.c:1980 main.c:1794 msgid "Could not calculate hash of server's certificate\n" msgstr "Ne mogu da izračunam heš serverskog uverenja\n" #: gnutls.c:1985 msgid "Error checking server cert status\n" msgstr "Greška provere stanja uverenja servera\n" #: gnutls.c:1990 msgid "certificate revoked" msgstr "uverenje je opozvano" #: gnutls.c:1992 msgid "signer not found" msgstr "potpisnik nije pronađen" #: gnutls.c:1994 msgid "signer not a CA certificate" msgstr "potpisnik nije uverenje izdavača uverenja" #: gnutls.c:1996 msgid "insecure algorithm" msgstr "nebezbedni algoritam" #: gnutls.c:1998 msgid "certificate not yet activated" msgstr "uverenje još nije aktivirano" #: gnutls.c:2000 msgid "certificate expired" msgstr "uverenje je isteklo" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2005 msgid "signature verification failed" msgstr "provera potpisa nije uspela" #: gnutls.c:2054 openssl.c:1399 openssl.c:1551 msgid "certificate does not match hostname" msgstr "uverenje ne odgovara nazivu domaćina" #: gnutls.c:2059 openssl.c:1398 openssl.c:1557 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Nije uspela provera uverenja servera: %s\n" #: gnutls.c:2126 msgid "Failed to allocate memory for cafile certs\n" msgstr "" "Nisam uspeo da dodelim memoriju za uverenja datoteke izdavača uverenja\n" #: gnutls.c:2147 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Nisam uspeo da pročitam uverenja iz datoteke izdavača uverenja: %s\n" #: gnutls.c:2163 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Nisam uspeo da otvorim datoteku izdavača uverenja „%s“: %s\n" #: gnutls.c:2176 openssl.c:1679 msgid "Loading certificate failed. Aborting.\n" msgstr "Nisam uspeo da učitam uverenje. Prekidam.\n" #: gnutls.c:2237 #, c-format msgid "Failed to set TLS priority string (\"%s\"): %s\n" msgstr "Nisam uspeo da postavim nisku hitnosti TLS-a (%s): %s\n" #: gnutls.c:2249 openssl.c:1796 #, c-format msgid "SSL negotiation with %s\n" msgstr "SSL pregovaranje sa „%s“\n" #: gnutls.c:2296 openssl.c:1822 msgid "SSL connection cancelled\n" msgstr "SSL veza je otkazana\n" #: gnutls.c:2303 #, c-format msgid "SSL connection failure: %s\n" msgstr "Neuspeh SSL veze: %s\n" #: gnutls.c:2312 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "Ne-kobni rezultat GnuTLS-a za vreme rukovanja: %s\n" #: gnutls.c:2318 openssl.c:1839 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "Povezani ste na HTTPS sa „%s“\n" #: gnutls.c:2321 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "Ponovo je dogovoren SSL na „%s“\n" #: gnutls.c:2483 openssl-pkcs11.c:199 #, c-format msgid "PIN required for %s" msgstr "Potreban je PIN za %s“" #: gnutls.c:2487 openssl-pkcs11.c:202 msgid "Wrong PIN" msgstr "Pogrešan PIN" #: gnutls.c:2490 msgid "This is the final try before locking!" msgstr "Ovo je poslednji pokušaj pre zaključavanja!" #: gnutls.c:2492 msgid "Only a few tries left before locking!" msgstr "Ostalo je samo nekoliko pokušaja pre zaključavanja!" #: gnutls.c:2497 openssl-pkcs11.c:206 msgid "Enter PIN:" msgstr "Unesite PIN:" #: gnutls.c:2583 openssl.c:1967 msgid "Unsupported OATH HMAC algorithm\n" msgstr "Nepodržani OATH HMAC algoritam\n" #: gnutls.c:2592 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "Nisam uspeo da izračunam OATH HMAC: %s\n" #: gnutls_tpm.c:54 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "Funkcija TPM znaka je pozvana za %d bajta.\n" #: gnutls_tpm.c:61 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Nisam uspeo da napravim TPM heš objekat: %s\n" #: gnutls_tpm.c:68 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Nisam uspeo da podesim TPM heš objekat: %s\n" #: gnutls_tpm.c:78 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "Nije uspeo TPM heš potpis: %s\n" #: gnutls_tpm.c:100 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Greška dekodiranja bloba TSS ključa: %s\n" #: gnutls_tpm.c:108 gnutls_tpm.c:119 gnutls_tpm.c:132 msgid "Error in TSS key blob\n" msgstr "Greška u blobu TSS ključa\n" #: gnutls_tpm.c:139 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Nisam uspeo da napravim TPM kontekst: %s\n" #: gnutls_tpm.c:146 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Nisam uspeo da povežem TPM kontekst: %s\n" #: gnutls_tpm.c:154 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Nisam uspeo da učitam TPM SRK ključ: %s\n" #: gnutls_tpm.c:161 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Nisam uspeo da učitam objekt TPM SRK politike: %s\n" #: gnutls_tpm.c:182 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Nisam uspeo da podesim TPM PIN: %s\n" #: gnutls_tpm.c:198 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Nisam uspeo da učitam blob TPM ključa: %s\n" #: gnutls_tpm.c:205 msgid "Enter TPM SRK PIN:" msgstr "Unesite TPM SRK PIN:" #: gnutls_tpm.c:226 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Nisam uspeo da napravim objekat politike ključa: %s\n" #: gnutls_tpm.c:234 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Nisam uspeo da dodelim politiku ključu: %s\n" #: gnutls_tpm.c:240 msgid "Enter TPM key PIN:" msgstr "Unesite PIN TPM ključa:" #: gnutls_tpm.c:251 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Nisam uspeo da podesim PIN ključa: %s\n" #: gnutls_tpm2.c:92 gnutls_tpm2_esys.c:474 gnutls_tpm2_ibm.c:419 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:198 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:208 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:217 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:225 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:231 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:249 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:270 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:275 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:384 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2_esys.c:173 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:189 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:190 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:191 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:192 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:196 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:201 gnutls_tpm2_ibm.c:262 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:209 gnutls_tpm2_esys.c:303 gnutls_tpm2_esys.c:374 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:221 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:226 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:245 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:250 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:258 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:261 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:274 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:295 gnutls_tpm2_ibm.c:278 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:309 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:317 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:323 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:333 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:363 gnutls_tpm2_ibm.c:363 gnutls_tpm2_ibm.c:450 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:395 #, c-format msgid "TPM2 RSA sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:414 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:420 gnutls_tpm2_esys.c:500 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:464 gnutls_tpm2_ibm.c:405 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:494 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:532 gnutls_tpm2_ibm.c:485 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:546 gnutls_tpm2_ibm.c:502 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:555 gnutls_tpm2_ibm.c:512 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:569 gnutls_tpm2_ibm.c:523 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:54 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:226 #, c-format msgid "%s\n" msgstr "" #: gpst.c:229 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:417 #, c-format msgid "Unknown ESP %s algorithm: %s" msgstr "" #: gpst.c:477 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: gpst.c:483 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:487 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:498 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:551 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:560 oncp.c:835 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" "Zanemarujem ESP ključeve pošto ESP podrška nije dostupna u ovom izdanju\n" #: gpst.c:627 msgid "ESP disabled" msgstr "" #: gpst.c:629 msgid "No ESP keys received" msgstr "" #: gpst.c:631 msgid "ESP support not available in this build" msgstr "" #: gpst.c:635 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:680 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:702 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:711 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:719 #, c-format msgid "Got inappropriate HTTP GET-tunnel response: %.*s\n" msgstr "" #: gpst.c:861 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" "VPN connectivity may be disabled or limited without HIP report submission.\n" "You need to provide a --csd-wrapper argument with the HIP report submission " "script.\n" msgstr "" #: gpst.c:871 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:900 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:905 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:911 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:913 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:942 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:966 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:972 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:999 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1015 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1051 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1072 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1082 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1086 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1092 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: gpst.c:1101 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1109 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1157 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1162 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1182 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1202 #, c-format msgid "Sending data packet of %d bytes\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Greška uvoza GSSAPI naziva za potvrđivanje identiteta:\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "Greška stvaranja GSSAPI odgovora:\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "Pokušavam GSSAPI potvrđivanje identiteta sa posrednikom\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "Pokušavam GSSAPI potvrđivanje identiteta sa serverom „%s“\n" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "GSSAPI potvrđivanje identiteta je obavljeno\n" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "GSSAPI modul je prevelik (%zd bajta)\n" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "Šaljem GSSAPI modul od %zu bajta\n" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" "Nisam uspeo da pošaljem GSSAPI modul potvrđivanja identiteta posredniku: %s\n" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" "Nisam uspeo da primim GSSAPI modul potvrđivanja identiteta od posrednika: " "%s\n" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "SOCKS server je izvestio o neuspehu GSSAPI konteksta\n" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "Nepoznat odgovor GSSAPI stanja (0h%02x) sa SOCKS servera\n" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "Dobih GSSAPI modul od %zu bajta: %02x %02x %02x %02x\n" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "Šaljem pregovor GSSAPI zaštite od %zu bajta\n" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "Nisam uspeo da pošaljem odgovor GSSAPI zaštite posredniku: %s\n" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "Nisam uspeo da primim odgovor GSSAPI zaštite od posrednika: %s\n" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "Dobih odgovor GSSAPI zaštite od %zu bajta: %02x %02x %02x %02x\n" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "Neispravan odgovor GSSAPI zaštite sa posrednika (%zu bajta)\n" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "SOCKS posrednik traži celovitost poruke, što nije podržano\n" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "SOCKS posrednik traži poverljivost poruke, što nije podržano\n" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "SOCKS posrednik traži nepoznatu vrstu zaštite 0h%02x\n" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "Pokušavam HTTP Osnovno potvrđivanje identiteta sa posrednikom\n" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "Pokušavam HTTP Osnovno potvrđivanje identiteta sa serverom „%s“\n" #: http-auth.c:200 http.c:1165 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "Ovo izdanje Otvorenog povezivanja je izgrađeno bez GSSAPI podrške\n" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" "Posrednik zahteva Osnovno potvrđivanje identiteta koje je po osnovi " "isključeno\n" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" "Server „%s“ zahteva Osnovno potvrđivanje identiteta koje je po osnovi " "isključeno\n" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "Nema više načina potvrđivanja identiteta\n" #: http.c:319 msgid "No memory for allocating cookies\n" msgstr "Nema memorije za dodelu kolačića\n" #: http.c:394 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Nisam uspeo da obradim HTTP odgovor „%s“\n" #: http.c:400 #, c-format msgid "Got HTTP response: %s\n" msgstr "Dobih HTTP odgovor: %s\n" #: http.c:408 msgid "Error processing HTTP response\n" msgstr "Greška obrade HTTP odgovora\n" #: http.c:415 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Zanemarujem nepoznati red HTTP odgovora „%s“\n" #: http.c:435 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Ponuđen je neispravan kolačić: %s\n" #: http.c:454 msgid "SSL certificate authentication failed\n" msgstr "Nije uspelo potvrđivanje identiteta SSL uverenja\n" #: http.c:485 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Telo odgovora ima negativnu veličinu (%d)\n" #: http.c:496 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Nepoznato prenosno-kodiranje: %s\n" #. Now the body, if there is one #: http.c:515 #, c-format msgid "HTTP body %s (%d)\n" msgstr "HTTP telo %s (%d)\n" #: http.c:529 http.c:556 msgid "Error reading HTTP response body\n" msgstr "Greška čitanja tela HTTP odgovora\n" #: http.c:542 msgid "Error fetching chunk header\n" msgstr "Greška dovlačenja zaglavlja delića\n" #: http.c:566 msgid "Error fetching HTTP response body\n" msgstr "Greška dovlačenja tela HTTP odgovora\n" #: http.c:569 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "Greška u iskomadanom dekodiranju. Očekivah „“, dobih: „%s“" #: http.c:581 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Ne mogu da primim HTTP 1.0 telo bez zatvaranja veze\n" #: http.c:708 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Nisam uspeo da obradim preusmerenu adresu „%s“: %s\n" #: http.c:732 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Ne mogu da pratim preusmerenje na ne-https adrese „%s“\n" #: http.c:760 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Nije uspelo dodeljivanje nove putanje za relativno preusmerenje: %s\n" #: http.c:973 oncp.c:591 #, c-format msgid "Unexpected %d result from server\n" msgstr "Neočekivan %d rezultat sa servera\n" #: http.c:1021 msgid "request granted" msgstr "zahtev je odobren" #: http.c:1022 msgid "general failure" msgstr "opšti neuspeh" #: http.c:1023 msgid "connection not allowed by ruleset" msgstr "veza nije dozvoljena skupom pravila" #: http.c:1024 msgid "network unreachable" msgstr "mreža je nedostižna" #: http.c:1025 msgid "host unreachable" msgstr "domaćin je nedostižan" #: http.c:1026 msgid "connection refused by destination host" msgstr "vezu je odbio odredišni domaćin" #: http.c:1027 msgid "TTL expired" msgstr "TTL je isteklo" #: http.c:1028 msgid "command not supported / protocol error" msgstr "naredba nije podržana / greška protokola" #: http.c:1029 msgid "address type not supported" msgstr "vrsta adrese nije podržana" #: http.c:1039 msgid "SOCKS server requested username/password but we have none\n" msgstr "" "SOCKS server je zatražio korisničko ime/lozinku ali mi nemamo nijedno\n" #: http.c:1047 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" "Korisničko ime i lozinka za SOCKS potvrđivanje identiteta moraju biti < 255 " "bajta\n" #: http.c:1062 http.c:1118 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" "Greška pisanja zahteva potvrđivanja identiteta na SOCKS posredniku: %s\n" #: http.c:1070 http.c:1125 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" "Greška čitanja zahteva potvrđivanja identiteta sa SOCKS posrednika: %s\n" #: http.c:1077 http.c:1131 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" "Neočekivan odgovor potvrđivanja identiteta sa SOCKS posrednika: %02x %02x\n" #: http.c:1083 msgid "Authenticated to SOCKS server using password\n" msgstr "Potvrdili ste identitet na SOCKS posredniku koristeći lozinku\n" #: http.c:1087 msgid "Password authentication to SOCKS server failed\n" msgstr "Nije uspelo potvrđivanje identiteta lozinkom na SOCKS serveru\n" #: http.c:1143 http.c:1150 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "SOCKS server zahteva GSSAPI potvrđivanje identiteta\n" #: http.c:1156 msgid "SOCKS server requested password authentication\n" msgstr "SOCKS server zahteva potvrđivanje identiteta lozinkom\n" #: http.c:1163 msgid "SOCKS server requires authentication\n" msgstr "SOCKS server zahteva potvrđivanje identiteta\n" #: http.c:1170 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "SOCKS server zahteva nepoznatu vrstu potvrđivanja identiteta %02x\n" #: http.c:1176 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Zahtevam vezu SOCKS posrednika sa %s:%d\n" #: http.c:1191 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Greška pisanja zahteva povezivanja sa SOCKS posrednikom: %s\n" #: http.c:1199 http.c:1241 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Greška čitanja odgovora veze sa SOCKS posrednika: %s\n" #: http.c:1205 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Neočekivan odgovor veze sa SOCKS posrednika: %02x %02x...\n" #: http.c:1213 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "Greška SOCKS posrednika %02x: %s\n" #: http.c:1217 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "Greška SOCKS posrednika %02x\n" #: http.c:1234 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Neočekivana vrsta adrese %02x u odgovoru SOCKS veze\n" #: http.c:1257 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Zahtevam vezu HTTP posrednika sa %s:%d\n" #: http.c:1292 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Nisam uspeo da pošaljem zahtev posrednika: %s\n" #: http.c:1315 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "Zahtev POVEZIVANJA posrednika nije uspeo: %d\n" #: http.c:1334 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Nepoznata vrsta posrednika „%s“\n" #: http.c:1383 msgid "Only http or socks(5) proxies supported\n" msgstr "Podržani su samo http ili socks(5) posrednici\n" #: library.c:112 msgid "Cisco AnyConnect or openconnect" msgstr "Cisko Eni Konekt ili openkonekt" #: library.c:113 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "Saglasno sa SSL VPN-om Cisko Eni Konekta, kao i sa „ocserv“-om" #: library.c:129 msgid "Juniper Network Connect" msgstr "Povezivanje Džaniper mreže" #: library.c:130 msgid "Compatible with Juniper Network Connect / Pulse Secure SSL VPN" msgstr "Saglasno sa povezivanjem Džaniper mreže / Puls bezbedni SSL VPN" #: library.c:148 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:149 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:211 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "Nepoznati VPN protokol „%s“\n" #: library.c:233 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Izgrađeno je SSL bibliotekom bez Cisko DTLS podrške\n" #: library.c:656 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Nisam uspeo da obradim adresu servera „%s“\n" #: library.c:662 msgid "Only https:// permitted for server URL\n" msgstr "Dozvoljeno je samo „https://“ za adresu servera\n" #: library.c:1056 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "Nepoznat heš uverenja: %s.\n" #: library.c:1085 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "Veličina dostavljenog otiska je manja od potrebnog minimuma (%u).\n" #: library.c:1146 msgid "No form handler; cannot authenticate.\n" msgstr "Nema rukovaoca obrascem; ne mogu da potvrdim identitet.\n" #: main.c:340 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "Nije uspela funkcija linije naredbi u argument: %s\n" #: main.c:353 #, c-format msgid "Fatal error in command line handling\n" msgstr "Kobna greška u radu sa linijom naredbi\n" #: main.c:388 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "Nije uspela funkcija čitanja konzole: %s\n" #: main.c:401 #, c-format msgid "fgetws() failed: %s\n" msgstr "" #: main.c:416 main.c:429 #, c-format msgid "Error converting console input: %s\n" msgstr "Greška pretvaranja ulaza konzole: %s\n" #: main.c:423 main.c:689 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Neuspeh dodeljvanja za nisku sa standardnog ulaza\n" #: main.c:584 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" "Za ispomoć sa Otvorenim povezivanjem, pogledajte veb stranicu na\n" " „http://www.infradead.org/openconnect/mail.html“\n" #: main.c:593 #, c-format msgid "Using OpenSSL. Features present:" msgstr "Koristim OpenSSL. Prisutne funkcije:" #: main.c:595 #, c-format msgid "Using GnuTLS. Features present:" msgstr "Koristim GnuTLS. Prisutne funkcije:" #: main.c:608 msgid "OpenSSL ENGINE not present" msgstr "Nije prisutan POGON OtvorenogSSL-a" #: main.c:647 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" "UPOZORENJE: Nema DTLS i/ili ESP podrške u ovoj izvršnoj. Delotvornost će " "biti umanjena.\n" #: main.c:657 #, c-format msgid "Supported protocols:" msgstr "Podržani protokoli:" #: main.c:659 main.c:675 msgid " (default)" msgstr " (osnovno)" #: main.c:672 msgid "Set VPN protocol" msgstr "" #: main.c:713 msgid "fgets (stdin)" msgstr "fgets (stdul)" #: main.c:754 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Ne mogu da obradim putanju ove izvršne „%s“" #: main.c:760 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "Dodela za putanju vpnc-skripte nije uspela\n" #: main.c:780 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "Prepisuje naziv domaćina „%s“ sa „%s“\n" #: main.c:793 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Upotreba: openconnect [opcije] \n" #: main.c:794 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" "Otvoreni klijent za više VPN protokola, izdanje %s\n" "\n" #: main.c:796 msgid "Read options from config file" msgstr "Čita opcije iz datoteke podešavanja" #: main.c:797 msgid "Report version number" msgstr "Izveštava o broju izdanja" #: main.c:798 msgid "Display help text" msgstr "Prikazuje tekst pomoći" #: main.c:802 msgid "Authentication" msgstr "" #: main.c:803 msgid "Set login username" msgstr "Podešava korisničko ime prijavljivanja" #: main.c:804 msgid "Disable password/SecurID authentication" msgstr "Isključuje potvrđivanje identiteta lozinkom/Bezbednim IB-om" #: main.c:805 msgid "Do not expect user input; exit if it is required" msgstr "Ne očekuje korisnički unos; izlazi ako je zatražen" #: main.c:806 msgid "Read password from standard input" msgstr "Čita lozinku sa standardnog ulaza" #: main.c:807 msgid "Choose authentication login selection" msgstr "Bira izbor prijave potvrđivanja identiteta" #: main.c:808 msgid "Provide authentication form responses" msgstr "" #: main.c:809 msgid "Use SSL client certificate CERT" msgstr "Koristi uverenje UVER SSL klijenta" #: main.c:810 msgid "Use SSL private key file KEY" msgstr "Koristi KLJUČ datoteke ličnog ključa SSL-a" #: main.c:811 msgid "Warn when certificate lifetime < DAYS" msgstr "Upozorava kada je životni vek uverenja < DANA" #: main.c:812 msgid "Set login usergroup" msgstr "Podešava korisničku grupu prijavljivanja" #: main.c:813 msgid "Set key passphrase or TPM SRK PIN" msgstr "Podešava lozinku ključa ili TPM SRK PIN" #: main.c:814 msgid "Key passphrase is fsid of file system" msgstr "Lozinka ključa je ib sistema datoteka ili sistem datoteka" #: main.c:815 msgid "Software token type: rsa, totp or hotp" msgstr "Vrsta softverskog modula: „rsa“, „totp“ ili „hotp“" #: main.c:816 msgid "Software token secret" msgstr "Tajna softverskog modula" #: main.c:818 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" "(NAPOMENA: „libstoken“ (RSA Bezbedni IB) je isključena u ovoj izgradnji)" #: main.c:821 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(NAPOMENA: „Yubikey“ OATH je isključen u ovoj izgradnji)" #: main.c:824 msgid "Server validation" msgstr "" #: main.c:825 msgid "Server's certificate SHA1 fingerprint" msgstr "SHA1 otisak serverskog uverenja" #: main.c:826 msgid "Do not require server SSL cert to be valid" msgstr "Ne zahteva da SSL uverenje servera bude ispravno" #: main.c:827 msgid "Disable default system certificate authorities" msgstr "Isključuje osnovne sistemske izdavače uverenja" #: main.c:828 msgid "Cert file for server verification" msgstr "Datoteka uverenja za proveru servera" #: main.c:830 msgid "Internet connectivity" msgstr "" #: main.c:831 msgid "Set proxy server" msgstr "Podešava posrednički server" #: main.c:832 msgid "Set proxy authentication methods" msgstr "Podešava načine potvrđivanja identiteta posrednika" #: main.c:833 msgid "Disable proxy" msgstr "Isključuje posrednika" #: main.c:834 msgid "Use libproxy to automatically configure proxy" msgstr "Koristi „libproxy“ da samostalno podesi posrednika" #: main.c:836 msgid "(NOTE: libproxy disabled in this build)" msgstr "(NAPOMENA: „libproxy“ je isključena u ovoj izgradnji)" #: main.c:838 msgid "Connection retry timeout in seconds" msgstr "Vremenski rok ponovnog povezivanja u sekundama" #: main.c:839 msgid "Use IP when connecting to HOST" msgstr "Koristi IP prilikom povezivanja sa DOMAĆINOM" #: main.c:840 msgid "copy TOS / TCLASS when using DTLS" msgstr "Umnožava TOS / TKLASU kada koristi DTLS" #: main.c:841 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:843 msgid "Authentication (two-phase)" msgstr "" #: main.c:844 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:845 msgid "Read cookie from standard input" msgstr "Čita kolačić sa standardnog ulaza" #: main.c:846 msgid "Authenticate only and print login info" msgstr "Samo potvrđuje identitet i ispisuje podatke o prijavi" #: main.c:847 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:848 msgid "Print cookie before connecting" msgstr "" #: main.c:851 msgid "Process control" msgstr "" #: main.c:852 msgid "Continue in background after startup" msgstr "Nastavlja u pozadini nakon pokretanja" #: main.c:853 msgid "Write the daemon's PID to this file" msgstr "Piše PIB pozadinca u ovu datoteku" #: main.c:854 msgid "Drop privileges after connecting" msgstr "Odbacuje ovlašćenja nakon povezivanja" #: main.c:857 msgid "Logging (two-phase)" msgstr "" #: main.c:859 msgid "Use syslog for progress messages" msgstr "Koristi sistemski dnevnik za poruke napredovanja" #: main.c:861 msgid "More output" msgstr "Više izlaza" #: main.c:862 msgid "Less output" msgstr "Manje izlaza" #: main.c:863 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "" "Ispisuje saobraćaj HTTP potvrđivanja identiteta (podrazumeva „--verbose“)" #: main.c:864 msgid "Prepend timestamp to progress messages" msgstr "Dodaje datum i vreme porukama napredovanja" #: main.c:866 msgid "VPN configuration script" msgstr "" #: main.c:867 msgid "Use IFNAME for tunnel interface" msgstr "Koristi AKONAZIV za uređaj tunela" #: main.c:868 msgid "Shell command line for using a vpnc-compatible config script" msgstr "Linija naredbe školjke za korišćenje vpnc-saglasne skripte podešavanja" #: main.c:869 msgid "default" msgstr "osnovno" #: main.c:871 msgid "Pass traffic to 'script' program, not tun" msgstr "Prosleđujem saobraćaj programu „script“, a ne tunu" #: main.c:874 msgid "Tunnel control" msgstr "" #: main.c:875 msgid "Do not ask for IPv6 connectivity" msgstr "Ne traži IPv6 povezivost" #: main.c:876 msgid "XML config file" msgstr "IksML datoteka podešavanja" #: main.c:877 msgid "Request MTU from server (legacy servers only)" msgstr "Zahteva MTU sa servera (samo stari serveri)" #: main.c:878 msgid "Indicate path MTU to/from server" msgstr "Ukazuje na MTU putanju do/od servera" #: main.c:879 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:880 msgid "Disable all compression" msgstr "" #: main.c:881 msgid "Set minimum Dead Peer Detection interval" msgstr "Podešava najmanji period otkrivanja neaktivnih parnjaka" #: main.c:882 msgid "Require perfect forward secrecy" msgstr "Zahteva savršenu tajnost prosleđivanja" #: main.c:883 msgid "Disable DTLS and ESP" msgstr "" #: main.c:884 msgid "OpenSSL ciphers to support for DTLS" msgstr "Šifreri OtvorenogSSL-a za podršku DTLS-a" #: main.c:885 msgid "Set packet queue limit to LEN pkts" msgstr "Podešava ograničenje reda paketa na DUŽINU paketa" #: main.c:887 msgid "Local system information" msgstr "" #: main.c:888 msgid "HTTP header User-Agent: field" msgstr "Korisnik-Agent HTTP zaglavlja: nije uspelo" #: main.c:889 msgid "Local hostname to advertise to server" msgstr "Naziv domaćina za obaveštavanje servera" #: main.c:890 msgid "OS type (linux,linux-64,win,...) to report" msgstr "Vrsta operativnog sistema (linux,linux-64,win,...) za izveštavanje" #: main.c:891 msgid "reported version string during authentication" msgstr "" #: main.c:892 msgid "default:" msgstr "" #: main.c:895 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:896 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:897 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:900 msgid "Server bugs" msgstr "" #: main.c:901 msgid "Disable HTTP connection re-use" msgstr "Isključuje ponovno korišćenje HTTP veze" #: main.c:902 msgid "Do not attempt XML POST authentication" msgstr "Ne pokušava IksML POST potvrđivanje identiteta" #: main.c:924 #, c-format msgid "Failed to allocate string\n" msgstr "Nisam uspeo da dodelim nisku\n" #: main.c:997 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Nisam uspeo da dobavim red iz datoteke podešavanja: %s\n" #: main.c:1037 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Nepoznata opcija u %d. redu: „%s“\n" #: main.c:1047 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Opcija „%s“ ne uzima argument u %d. redu\n" #: main.c:1051 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Opcija „%s“ zahteva argument u %d. redu\n" #: main.c:1076 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "Neispravan korisnik „%s“: %s\n" #: main.c:1086 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "Neispravan IB korisnika „%d“: %s\n" #: main.c:1130 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "" #: main.c:1140 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "UPOZORENJE: Ovo izdanje otvorenog povezivanja je izgrađeno bez ikonv\n" " podrške ali izgleda da koristite nasleđeni znak\n" " podesite „%s“. Očekujte neočekivano.\n" #: main.c:1147 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "UPOZORENJE: Ovo izdanje „openconnect“-a je %s ali\n" " biblioteka „libopenconnect“ je %s\n" #: main.c:1157 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Nisam uspeo da dodelim strukturu vpnpodataka\n" #: main.c:1215 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Ne možete koristiti opciju „config“ unutar datoteke podešavanja\n" #: main.c:1223 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Ne mogu da otvorim datoteku podešavanja „%s“: %s\n" #: main.c:1239 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "Neispravan režim zapakivanja „%s“\n" #: main.c:1260 #, c-format msgid "Missing colon in resolve option\n" msgstr "Nedostaje dvotačka u opciji rešavanja\n" #: main.c:1265 #, c-format msgid "Failed to allocate memory\n" msgstr "Nisam uspeo da dodelim memoriju\n" #: main.c:1349 main.c:1358 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d je premalo\n" #: main.c:1388 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Isključujem ponovno korišćenje svih HTTP veza zbog opcije „--no-http-" "keepalive“.\n" "Ako ovo pomogne, izvestite o tome na „“.\n" #: main.c:1394 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" "Opcija „--no-cert-check“ nije bila bezbedna i uklonjena je.\n" "Ispravite vaše uverenje servera ili koristite „--servercert“ da mu " "verujete.\n" #: main.c:1411 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Nulta dužina reda nije dozvoljena; koristim 1\n" #: main.c:1425 #, c-format msgid "OpenConnect version %s\n" msgstr "Otvoreno povezivanje izdanje %s\n" #: main.c:1463 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Neispravan režim softverskog modula „%s“\n" #: main.c:1473 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "Neispravan odrednik OS-a „%s“\n" #: main.c:1506 #, c-format msgid "Too many arguments on command line\n" msgstr "Previše argumenata na liniji naredbi\n" #: main.c:1509 #, c-format msgid "No server specified\n" msgstr "Nije naveden server\n" #: main.c:1525 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" "Ovo izdanje otvorenog povezivanja je izgrađeno bez podrške biblioteke " "posrednika\n" #: main.c:1555 #, c-format msgid "Error opening cmd pipe\n" msgstr "Greška otvaranja spojke naredbe\n" #: main.c:1588 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "Nisam uspeo da dobijem VebVPN kolačić\n" #: main.c:1609 #, c-format msgid "Creating SSL connection failed\n" msgstr "Nije uspelo stvaranje SSL veze\n" #: main.c:1625 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:1633 #, c-format msgid "Connected as %s%s%s, using SSL%s%s, with %s%s%s %s\n" msgstr "" #: main.c:1639 msgid "disabled" msgstr "" #: main.c:1639 msgid "in progress" msgstr "" #: main.c:1643 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "Nije dostavljen argument „--script“; DNS i upućivanje nisu podešeni\n" #: main.c:1645 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Pogledajte „http://www.infradead.org/openconnect/vpnc-script.html“\n" #: main.c:1658 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Nisam uspeo da otvorim „%s“ radi upisa: %s\n" #: main.c:1670 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Nastavljam rad u pozadini, pib %d\n" #: main.c:1687 msgid "User requested reconnect\n" msgstr "Korisnik je zatražio ponovno povezivanje\n" #: main.c:1695 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "Kolačić je odbačen pri ponovnom povezivanju; izlazim.\n" #: main.c:1699 msgid "Session terminated by server; exiting.\n" msgstr "Server je okončao sesiju; izlazim.\n" #: main.c:1703 msgid "User cancelled (SIGINT/SIGTERM); exiting.\n" msgstr "" #: main.c:1707 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "Korisnik se otkačio sa sesije (SIGHUP); izlazim.\n" #: main.c:1711 msgid "Unknown error; exiting.\n" msgstr "Nepoznata greška; izlazim.\n" #: main.c:1730 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Nisam uspeo da otvorim „%s“ radi upisa: %s\n" #: main.c:1738 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Nisam uspeo da upišem podešavanja u „%s“: %s\n" #: main.c:1797 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "Serversko SSL uverenje ne odgovara: %s\n" #: main.c:1816 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Nije uspelo potvrđivanje uverenja sa VPN servera „%s“.\n" "Razlog: %s\n" #: main.c:1819 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "Da i dalje verujete ovom serveru, dodajte ovo na liniju naredbi:\n" #: main.c:1820 #, c-format msgid " --servercert %s\n" msgstr " --servercert %s\n" #: main.c:1825 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Unesite „%s“ da prihvatite, „%s“ da prekinete; bilo šta drugo da pregledate: " #: main.c:1826 main.c:1844 msgid "no" msgstr "ne" #: main.c:1826 main.c:1832 msgid "yes" msgstr "da" #: main.c:1853 #, c-format msgid "Server key hash: %s\n" msgstr "Heš serverskog ključa: %s\n" #: main.c:1887 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Izbor potvrđivanja identiteta „%s“ se poklapa sa više opcija\n" #: main.c:1890 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Izbor potvrđivanja „%s“ nije dostupan\n" #: main.c:1911 msgid "User input required in non-interactive mode\n" msgstr "Korisnički ulaz je zatražen u nemeđudejstvenom režimu\n" #: main.c:2149 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Nisam uspeo da otvorim datoteku modula radi upisa: %s\n" #: main.c:2157 #, c-format msgid "Failed to write token: %s\n" msgstr "Nisam uspeo da zapišem modul: %s\n" #: main.c:2203 main.c:2224 #, c-format msgid "Soft token string is invalid\n" msgstr "Niska softverskog modula je neispravna\n" #: main.c:2206 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Ne mogu da otvorim datoteku „~/.stokenrc“\n" #: main.c:2209 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "Otvoreno povezivanje nije izgrađeno sa podrškom „libstoken“-a\n" #: main.c:2212 #, c-format msgid "General failure in libstoken\n" msgstr "Opšti neuspeh u „libstoken“-u\n" #: main.c:2227 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "Otvoreno povezivanje nije izgrađeno sa podrškom „liboath“-a\n" #: main.c:2230 #, c-format msgid "General failure in liboath\n" msgstr "Opšti neuspeh u „liboath“-u\n" #: main.c:2241 #, c-format msgid "Yubikey token not found\n" msgstr "Nisam našao modul Jubi ključa\n" #: main.c:2244 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "Otvoreno povezivanje nije izgrađeno sa podrškom Jubi ključa\n" #: main.c:2247 #, c-format msgid "General Yubikey failure: %s\n" msgstr "Opšti neuspeh Jubi ključa: %s\n" #: mainloop.c:127 #, c-format msgid "Set up tun script failed\n" msgstr "Podešavanje tun skripte nije uspelo\n" #: mainloop.c:134 #, c-format msgid "Set up tun device failed\n" msgstr "Podešavanje tun uređaja nije uspelo\n" #: mainloop.c:265 msgid "Caller paused the connection\n" msgstr "Pozivnik je pauzirao vezu\n" #: mainloop.c:273 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Besposlen sam; odspavaću %d ms...\n" #: mainloop.c:294 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "Čekanje na više objekata nije uspelo: %s\n" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "Pokretanje konteksta bezbednosti nije uspelo: %lx\n" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "Rukovanje nabavkom uverenja nije uspelo: %lx\n" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "Greška u razgovoru sa „ntlm_auth“ pomoćnikom\n" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" "Pokušavam HTTP NTML potvrđivanje identiteta sa posrednikom (jedna-prijava)\n" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" "Pokušavam HTTP NTML potvrđivanje identiteta sa serverom „%s“ (jedna-" "prijava)\n" #: ntlm.c:978 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "Pokušavam HTTP NTLMv%d potvrđivanje identiteta sa posrednikom\n" #: ntlm.c:982 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "Pokušavam HTTP NTLMv%d potvrđivanje identiteta sa serverom „%s“\n" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "Neispravna niska modula osnove32\n" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "Nisam uspeo da dodelim memoriju za dekodiranje OATH tajne\n" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "Ovo izdanje Otvorenog povezivanja je izgrađeno bez PSKC podrške\n" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "Moguće je stvaranje POČETNOG koda modula\n" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "Moguće je stvaranje SLEDEĆEG koda modula\n" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "Server odbija softverski modul; prelazim na ručni unos\n" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "Stvaram kod OATH TOTP modula\n" #: oath.c:565 msgid "Generating OATH HOTP token code\n" msgstr "Stvaram kod OATH HOTP modula\n" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "Neispravan kolačić „%s“\n" #: oncp.c:160 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "Neočekivana dužina %d za TLV %d/%d\n" #: oncp.c:166 #, c-format msgid "Received MTU %d from server\n" msgstr "Primih MTU %d sa servera\n" #: oncp.c:175 #, c-format msgid "Received DNS server %s\n" msgstr "Primih DNS server „%s“\n" #: oncp.c:186 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "Primih DNS domen pretrage %.*s\n" #: oncp.c:201 #, c-format msgid "Received internal IP address %s\n" msgstr "Primih unutrašnju IP adresu %s\n" #: oncp.c:210 #, c-format msgid "Received netmask %s\n" msgstr "Primih mrežnu masku %s\n" #: oncp.c:219 #, c-format msgid "Received internal gateway address %s\n" msgstr "Primih unutrašnju adresu mrežnog prolaza %s\n" #: oncp.c:232 #, c-format msgid "Received split include route %s\n" msgstr "Primih podelu obuhvatanja rute %s\n" #: oncp.c:254 #, c-format msgid "Received split exclude route %s\n" msgstr "Primih podelu odbacivanja rute %s\n" #: oncp.c:274 #, c-format msgid "Received WINS server %s\n" msgstr "Primih VINS server „%s“\n" #: oncp.c:297 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "ESP šifrovanje: 0x%02x (%s)\n" #: oncp.c:316 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "ESP HMAC: 0x%02x (%s)\n" #: oncp.c:327 #, c-format msgid "ESP compression: %d\n" msgstr "ESP zapakivanje: %d\n" #: oncp.c:335 #, c-format msgid "ESP port: %d\n" msgstr "ESP priključnik: %d\n" #: oncp.c:342 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "Vreme života ESP ključa: %u bajta\n" #: oncp.c:350 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "Vreme života ESP ključa: %u sekunde\n" #: oncp.c:358 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "Vraćanje sa ESP-a na SSL: %u sekunde\n" #: oncp.c:366 #, c-format msgid "ESP replay protection: %d\n" msgstr "Zaštita ESP odgovora: %d\n" #: oncp.c:374 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "ESP SPI (odlazeće): %x\n" #: oncp.c:383 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "%d bajta ESP tajni\n" #: oncp.c:395 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "Nepoznata TLV grupa %d atr. %d duž. %d:%s\n" #: oncp.c:473 msgid "Failed to parse KMP header\n" msgstr "Nisam uspeo da obradim KMP zaglavlje\n" #: oncp.c:490 msgid "Failed to parse KMP message\n" msgstr "Nisam uspeo da obradim KMP poruku\n" #: oncp.c:496 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "Dobih KMP poruku %d veličine %d\n" #: oncp.c:512 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "Primih ne-ESP TLV-a (grupa %d) u ESP pregovora KMP\n" #: oncp.c:577 oncp.c:609 oncp.c:747 msgid "Error creating oNCP negotiation request\n" msgstr "Greška stvaranja zahteva oNCP pregovaranja\n" #: oncp.c:618 oncp.c:783 msgid "Short write in oNCP negotiation\n" msgstr "Kratko pisanje u oNCP pregovaranju\n" #: oncp.c:631 oncp.c:666 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "Čitam %d bajta SSL zapisa\n" #: oncp.c:636 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "Neočekivani odgovor veličine %d nakon paketa naziva domaćina\n" #: oncp.c:643 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "Odgovor servera paketu naziva domaćina je greška 0x%02x\n" #: oncp.c:670 msgid "Invalid packet waiting for KMP 301\n" msgstr "Neispravan paket čeka na KMP 301\n" #: oncp.c:683 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "Očekivah KMP poruku 301 sa servera ali dobih %d\n" #: oncp.c:692 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "KMP poruka 301 sa servera je prevelika (%d bajta)\n" #: oncp.c:698 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "Dobih KMP poruku 301 veličine %d\n" #: oncp.c:705 msgid "Failed to read continuation record length\n" msgstr "Nisam uspeo da pročitam dužinu zapisa nastavka\n" #: oncp.c:711 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "Zapis dodatna %d bajta je prevelik; napraviću %d\n" #: oncp.c:720 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "Nisam uspeo da pročitam zapis nastavka dužine %d\n" #: oncp.c:726 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "Čitam dodatna %d bajta KMP 301 poruke\n" #: oncp.c:767 msgid "Error negotiating ESP keys\n" msgstr "Greška pregovaranja ESP ključa\n" #: oncp.c:776 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:829 msgid "new incoming" msgstr "novo dolazno" #: oncp.c:830 msgid "new outgoing" msgstr "novo odlazno" #: oncp.c:855 msgid "Read only 1 byte of oNCP length field\n" msgstr "Čitam samo 1 bajt oNCP dužine polja\n" #: oncp.c:864 msgid "Server terminated connection (session expired)\n" msgstr "Server je okončao vezu (sesija je istekla)\n" #: oncp.c:868 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "Server je okončao vezu (razlog: %d)\n" #: oncp.c:874 msgid "Server sent zero-length oNCP record\n" msgstr "Server je poslao oNCP zapis nulte dužine\n" #: oncp.c:969 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "Dolazna KMP poruka %d veličine %d (dobih %d)\n" #: oncp.c:972 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "Nastavljam da obrađujem KMP poruku %d sada veličine %d (dobih %d)\n" #: oncp.c:991 msgid "Unrecognised data packet\n" msgstr "Nepoznati paket podataka\n" #: oncp.c:1053 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "Nepoznata KMP poruka %d veličine %d:\n" #: oncp.c:1058 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr ".... + %d bajtova neprimljenih\n" #: oncp.c:1073 msgid "Packet outgoing:\n" msgstr "Odlazni paket:\n" #: oncp.c:1134 msgid "Sent ESP enable control packet\n" msgstr "Poslah kontrolni paket ESP uključivanja\n" #: oncp.c:1268 msgid "Logout successful.\n" msgstr "Odjavljivanje je uspelo.\n" #: openconnect-internal.h:1119 openconnect-internal.h:1127 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "GREŠKA: „%s()“ je pozvano sa neispravnim UTF-8 za argument „%s“\n" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "Ne mogu da izračunam DTLS prekoračenje za „%s“\n" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "Nisam uspeo da napravim „SSL_SESSION ASN.1“ za OpenSSL: %s\n" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "Open SSL nije uspeo da obradi „SSL_SESSION ASN.1“\n" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "Nije uspelo pokretanje DTLSv1 sesije\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "PSK povratni poziv\n" #: openssl-dtls.c:365 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Nije uspelo pokretanje DTLSv1 CTH-a\n" #: openssl-dtls.c:378 msgid "Set DTLS CTX version failed\n" msgstr "Podešavanje DTLS CTIks izdanja nije uspelo\n" #: openssl-dtls.c:395 msgid "Failed to generate DTLS key\n" msgstr "Nisam uspeo da stvorim DTLS ključ\n" #: openssl-dtls.c:413 msgid "Set DTLS cipher list failed\n" msgstr "Nije uspelo postavljanje spiska DTLS šifrera\n" #: openssl-dtls.c:439 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:460 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "Funkcija „SSL_set_session()“ nije uspela sa starim izdanjem protokola 0x%x\n" "Da li koristite izdanje OpenSSL-a starije od 0.9.8m?\n" "Vidite “http://rt.openssl.org/Ticket/Display.html?id=1751“\n" "Koristite opciju „--no-dtls“ da izbegnete ovu poruku\n" #: openssl-dtls.c:493 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:566 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "" "Uspostavljena je DTLS veza (koristim Otvoreni SSL). Komplet šifrera %s.\n" #: openssl-dtls.c:603 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" "Vaš Otvoreni SSL je stariji od onog koji ste izgradili s njim, tako da DTLS " "možda neće uspeti!" #: openssl-dtls.c:654 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Verovatno zato što je oštećen vaš Otvoreni SSL\n" "Vidite „http://rt.openssl.org/Ticket/Display.html?id=2984“\n" #: openssl-dtls.c:661 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "Nije uspelo DTLS rukovanje: %d\n" #: openssl-esp.c:87 msgid "Failed to initialise ESP cipher:\n" msgstr "Nisam uspeo da pokrenem ESP šifrera:\n" #: openssl-esp.c:101 msgid "Failed to initialize ESP HMAC\n" msgstr "Nisam uspeo da pokrenem ESP HMAC\n" #: openssl-esp.c:157 msgid "Failed to generate random keys for ESP:\n" msgstr "Nisam uspeo da stvorim nasumične ključeve za ESP:\n" #: openssl-esp.c:202 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "Nisam uspeo da podesim kontekst dešifrovanja za ESP paket:\n" #: openssl-esp.c:210 msgid "Failed to decrypt ESP packet:\n" msgstr "Nisam uspeo da dešifrujem ESP paket:\n" #: openssl-esp.c:241 msgid "Failed to encrypt ESP packet:\n" msgstr "Nisam uspeo da šifrujem ESP paket:\n" #: openssl-pkcs11.c:43 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "Nisam uspeo da uspostavim libp11 PKCS#11 kontekst:\n" #: openssl-pkcs11.c:49 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "Nisam uspeo da učitam modul PKCS#11 dostavljača (%s):\n" #: openssl-pkcs11.c:269 msgid "PIN locked\n" msgstr "PIN je zaključan\n" #: openssl-pkcs11.c:272 msgid "PIN expired\n" msgstr "PIN je istekao\n" #: openssl-pkcs11.c:275 msgid "Another user already logged in\n" msgstr "Drugi korisnik je već prijavljen\n" #: openssl-pkcs11.c:279 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "Nepoznata greška prijavljivanja na PKCS#11 modul\n" #: openssl-pkcs11.c:286 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "Prijavljen sam na PKCS#11 priključak „%s“\n" #: openssl-pkcs11.c:300 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "Nisam uspeo da nabrojim uverenja u PKCS#11 priključku „%s“\n" #: openssl-pkcs11.c:306 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "Nađoh %d uverenja u priključku „%s“\n" #: openssl-pkcs11.c:342 openssl-pkcs11.c:565 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "Nisam uspeo da obradim PKCS#11 putanju „%s“\n" #: openssl-pkcs11.c:349 openssl-pkcs11.c:575 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "Nisam uspeo da nabrojim PKCS#11 priključke\n" #: openssl-pkcs11.c:383 openssl-pkcs11.c:617 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "Prijavljujem se na PKCS#11 priključak „%s“\n" #: openssl-pkcs11.c:393 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "Nisam uspeo da nađem PKCS#11 uverenje „%s“\n" #: openssl-pkcs11.c:401 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "libp11 nije dovukla sadržaj H.509 uverenja\n" #: openssl-pkcs11.c:412 openssl.c:713 msgid "Failed to install certificate in OpenSSL context\n" msgstr "Nisam uspeo da instaliram uverenje u OpenSSL kontekst\n" #: openssl-pkcs11.c:458 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "Nisam uspeo da nabrojim ključeve u PKCS#11 priključku „%s“\n" #: openssl-pkcs11.c:464 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "Nađoh %d ključa u priključku „%s“\n" #: openssl-pkcs11.c:497 msgid "Certificate has no public key\n" msgstr "Uverenje nema javni ključ\n" #: openssl-pkcs11.c:503 openssl-pkcs11.c:526 msgid "Certificate does not match private key\n" msgstr "Uverenje ne odgovara ličnom ključu\n" #: openssl-pkcs11.c:506 msgid "Checking EC key matches cert\n" msgstr "Provera EC ključa odgovara uverenju\n" #: openssl-pkcs11.c:510 msgid "Failed to allocate signature buffer\n" msgstr "Nisam uspeo da dodelim međumemoriju potpisa\n" #: openssl-pkcs11.c:520 msgid "Failed to sign dummy data to validate EC key\n" msgstr "Nisam uspeo da potpišem lažne podatke da bih potvrdio EC ključ\n" #: openssl-pkcs11.c:638 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "Nisam uspeo da nađem PKCS#11 ključ „%s“\n" #: openssl-pkcs11.c:649 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "Nisam uspeo da napravim primerak ličnog ključa iz PKCS#11\n" #: openssl-pkcs11.c:678 msgid "Add key from PKCS#11 failed\n" msgstr "Dodavanje ključa iz PKCS#11 nije uspelo\n" #: openssl-pkcs11.c:710 openssl-pkcs11.c:716 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "Ovo izdanje Otvorenog povezivanja je izgrađeno bez PKCS#11 podrške\n" #: openssl.c:147 msgid "Failed to write to SSL socket\n" msgstr "Nisam uspeo da pišem na SSL priključnicu\n" #: openssl.c:197 openssl.c:263 msgid "Failed to read from SSL socket\n" msgstr "Nisam uspeo da čitam sa SSL priključnice\n" #: openssl.c:292 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" "Greška SSL čitanja %d (server je verovatno zatvorio vezu); ponovo se " "povezujem.\n" #: openssl.c:317 #, c-format msgid "SSL_write failed: %d\n" msgstr "Nije uspelo SSL_pisanje: %d\n" #: openssl.c:389 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "Nepoznata vrsta zahteva KS SSL-a %d\n" #: openssl.c:465 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "PEM lozinka je preduga (%d >= %d)\n" #: openssl.c:498 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Dodatno uverenje iz „%s“: %s\n" #: openssl.c:548 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Nije uspela obrada PKCS#12 (vidite greške iznad)\n" #: openssl.c:563 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS#12 ne sadrži uverenje!\n" #: openssl.c:572 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS#12 ne sadrži lični ključ!\n" #: openssl.c:577 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:600 msgid "Can't load TPM engine.\n" msgstr "Ne mogu da učitam TPM pogon.\n" #: openssl.c:606 msgid "Failed to init TPM engine\n" msgstr "Nisam uspeo da pokrenem TPM pogon\n" #: openssl.c:616 msgid "Failed to set TPM SRK password\n" msgstr "Nisam uspeo da podesim TPM SRK lozinku\n" #: openssl.c:630 msgid "Failed to load TPM private key\n" msgstr "Nisam uspeo da učitam TPM lični ključ\n" #: openssl.c:636 msgid "Add key from TPM failed\n" msgstr "Dodavanje ključa iz TPM-a nije uspelo\n" #: openssl.c:687 openssl.c:835 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Nisam uspeo da otvorim datoteku uverenja „%s“: %s\n" #: openssl.c:697 msgid "Loading certificate failed\n" msgstr "Nisam uspeo da učitam uverenje\n" #: openssl.c:735 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "Nisam uspeo da obradim sva podržavajuća uverenja. Ipak pokušavam...\n" #: openssl.c:748 msgid "PEM file" msgstr "PEM datoteka" #: openssl.c:777 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Nisam uspeo da napravim BIO za stavku smeštaja ključeva „%s“\n" #: openssl.c:802 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Učitavanje ličnog ključa nije uspelo (pogrešna lozinka?)\n" #: openssl.c:808 msgid "Loading private key failed (see above errors)\n" msgstr "Učitavanje ličnog ključa nije uspelo (vidite greške iznad)\n" #: openssl.c:858 msgid "Failed to load X509 certificate from keystore\n" msgstr "Nisam uspeo da učitam H509 uverenje iz smeštaja ključa\n" #: openssl.c:864 msgid "Failed to use X509 certificate from keystore\n" msgstr "Nisam uspeo da koristim H509 uverenje iz smeštaja ključa\n" #: openssl.c:896 msgid "Failed to use private key from keystore\n" msgstr "Nisam uspeo da koristim lični ključ iz smeštaja ključa\n" #: openssl.c:912 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Nisam uspeo da otvorim datoteku ličnog ključa „%s“: %s\n" #: openssl.c:936 openssl.c:951 openssl.c:972 openssl.c:1038 msgid "Loading private key failed\n" msgstr "Učitavanje ličnog ključa nije uspelo\n" #: openssl.c:1032 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "Nisam uspeo da pretvorim PKCS#8 u OpenSSL EVP_PKLJUČ\n" #: openssl.c:1049 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Nisam uspeo da odredim vrstu ličnog ključa u „%s“\n" #: openssl.c:1203 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Poklopih DNS zamenski naziv „%s“\n" #: openssl.c:1210 #, c-format msgid "No match for altname '%s'\n" msgstr "Nema poklapanja za zamenski naziv „%s“\n" #: openssl.c:1224 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "Uverenje ima zamenski naziv „GEN_IPADD“ sa prividnom dužinom %d\n" #: openssl.c:1235 openssl.c:1381 #, c-format msgid "Matched %s address '%s'\n" msgstr "Poklopljena je %s adresa „%s“\n" #: openssl.c:1242 #, c-format msgid "No match for %s address '%s'\n" msgstr "Nema poklapanja za %s adresu „%s“\n" #: openssl.c:1284 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "Putanja „%s“ ima ne-praznu putanju; zanemarujem\n" #: openssl.c:1289 #, c-format msgid "Matched URI '%s'\n" msgstr "Odgovarajuća putanja „%s“\n" #: openssl.c:1300 #, c-format msgid "No match for URI '%s'\n" msgstr "Nema poklapanja za putanju „%s“\n" #: openssl.c:1315 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "Nema odgovarajućeg zamenskog naziva u uverenju parnjaka „%s“\n" #: openssl.c:1323 msgid "No subject name in peer cert!\n" msgstr "Nema naziva teme u uverenju parnjaka!\n" #: openssl.c:1343 msgid "Failed to parse subject name in peer cert\n" msgstr "Nisam uspeo da obradim naziv teme u uverenju parnjaka\n" #: openssl.c:1350 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Tema uverenja parnjaka ne odgovara ('%s' != '%s')\n" #: openssl.c:1355 openssl.c:1389 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Odgovarajući naziv teme uverenja parnjaka „%s“\n" #: openssl.c:1451 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Dodatno uverenje iz datoteke izdavača uverenja: %s\n" #: openssl.c:1589 msgid "Error in client cert notAfter field\n" msgstr "Greška u polju nije_nakon u uverenju klijenta\n" #: openssl.c:1602 msgid "" msgstr "" #: openssl.c:1655 msgid "Create TLSv1 CTX failed\n" msgstr "Stvaranje TLSv1 CTIks-a nije uspelo\n" #: openssl.c:1674 msgid "SSL certificate and key do not match\n" msgstr "SSL uverenje i ključ se ne podudaraju\n" #: openssl.c:1719 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Nisam uspeo da pročitam uverenja iz datoteke izdavača uverenja „%s“\n" #: openssl.c:1752 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Nisam uspeo da otvorim datoteku izdavača uverenja „%s“\n" #: openssl.c:1812 msgid "SSL connection failure\n" msgstr "Neuspeh SSL veze\n" #: openssl.c:1973 msgid "Failed to calculate OATH HMAC\n" msgstr "Nisam uspeo da izračunam OATH HMAC\n" #: script.c:130 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Odbacujem uključivanja loše podele: „%s“\n" #: script.c:134 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Odbacujem isključivanja loše podele: „%s“\n" #: script.c:507 script.c:555 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Nisam uspeo da izrodim skriptu „%s“ za %s: %s\n" #: script.c:562 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "Skripta „%s“ je izašla neispravno (%x)\n" #: script.c:570 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Skripta „%s“ je dala grešku %d\n" #: ssl.c:108 msgid "Socket connect cancelled\n" msgstr "Povezivanje priključnice je otkazano\n" #: ssl.c:217 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "Nisam uspeo ponovo da se povežem sa posrednikom „%s“: %s\n" #: ssl.c:221 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "Nisam uspeo ponovo da se povežem sa domaćinom „%s“: %s\n" #: ssl.c:289 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Posrednik iz biblioteke posrednika: %s://%s:%d/\n" #: ssl.c:317 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "Dobavljanje podataka adrese nije uspelo za domaćina „%s“: %s\n" #: ssl.c:326 ssl.c:451 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" "Ponovo se povezujem na DinDNS server koristeći prethodno pričuvanu IP " "adresu\n" #: ssl.c:341 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Pokušavam da se povežem sa posrednikom %s%s%s:%s\n" #: ssl.c:342 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Pokušavam da se povežem sa serverom %s%s%s:%s\n" #: ssl.c:362 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "Povezan sam sa %s%s%s:%s\n" #: ssl.c:374 msgid "Failed to allocate sockaddr storage\n" msgstr "Nisam uspeo da dodelim smeštaj adrese priključnice\n" #: ssl.c:416 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "Nisam uspeo da se povežem na %s%s%s:%s: %s\n" #: ssl.c:434 msgid "Forgetting non-functional previous peer address\n" msgstr "Zaboravljam ne-delotvornu adresu prehodnog parnjaka\n" #: ssl.c:446 #, c-format msgid "Failed to connect to host %s\n" msgstr "Nisam uspeo da se povežem sa domaćinom „%s“\n" #: ssl.c:465 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "Ponovo se povezujem sa posrednikom „%s“\n" #: ssl.c:536 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:564 msgid "Could not obtain file system ID for passphrase\n" msgstr "Ne mogu da dobijem IB sistema datoteka za lozinku\n" #: ssl.c:575 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "Nisam uspeo da otvorim datoteku ličnog ključa „%s“: %s\n" #: ssl.c:603 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:694 msgid "No error" msgstr "Nema greške" #: ssl.c:695 msgid "Keystore locked" msgstr "Smeštaj ključa je zaključan" #: ssl.c:696 msgid "Keystore uninitialized" msgstr "Smeštaj ključa nije pokrenut" #: ssl.c:697 msgid "System error" msgstr "Greška sistema" #: ssl.c:698 msgid "Protocol error" msgstr "Greška protokola" #: ssl.c:699 msgid "Permission denied" msgstr "Pristup je odbijen" #: ssl.c:700 msgid "Key not found" msgstr "Nisam našao ključ" #: ssl.c:701 msgid "Value corrupted" msgstr "Vrednost je oštećena" #: ssl.c:702 msgid "Undefined action" msgstr "Neodređena radnja" #: ssl.c:706 msgid "Wrong password" msgstr "Pogrešna lozinka" #: ssl.c:707 msgid "Unknown error" msgstr "Nepoznata greška" #: ssl.c:896 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "„openconnect_fopen_utf8()“ je korišćeno sa nepodržanim režimom „%s“\n" #: ssl.c:931 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" "Nepoznata porodica protokola %d. Ne mogu da napravim adresu UDP servera\n" #: ssl.c:950 msgid "Open UDP socket" msgstr "Otvaram UDP priključnicu" #: ssl.c:981 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "Nepoznata porodica protokola %d. Ne mogu da koristim UDP prenos\n" #: ssl.c:989 msgid "Bind UDP socket" msgstr "Svezujem UDP priključnicu" #: ssl.c:996 msgid "Connect UDP socket\n" msgstr "Povezujem UDP priključnicu\n" #: ssl.c:1034 msgid "Cookie is no longer valid, ending session\n" msgstr "Kolačić nije više ispravan, završavam sesiju\n" #: ssl.c:1038 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "spavam %d sek., preostalo vreme isteka %d sek.\n" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "SSPI modul je prevelik (%ld bajta)\n" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "Šaljem SSPI modul od %lu bajta\n" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" "Nisam uspeo da pošaljem SSPI modul potvrđivanja identiteta posredniku: %s\n" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" "Nisam uspeo da primim SSPI modul potvrđivanja identiteta od posrednika: %s\n" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "SOCKS server je izvestio o neuspehu SSPI konteksta\n" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "Nepoznat odgovor SSPI stanja (0h%02x) sa SOCKS servera\n" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "Dobih SSPI modul od %lu bajta: %02x %02x %02x %02x\n" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "Propitivanje kontekstnih atributa nije uspelo: %lx\n" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "Šifrovanje poruke nije uspelo: %lx\n" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "Rezultat šifrovane poruke je prevelik (%lu + %lu + %lu)\n" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "Šaljem pregovor SSPI zaštite od %u bajta\n" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "Nisam uspeo da pošaljem odgovor SSPI zaštite posredniku: %s\n" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "Nisam uspeo da primim odgovor SSPI zaštite od posrednika: %s\n" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "Dobih odgovor SSPI zaštite od %d bajta: %02x %02x %02x %02x\n" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "Dešifrovanje poruke nije uspelo: %lx\n" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "Neispravan odgovor SSPI zaštite sa posrednika (%lu bajta)\n" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "Unesite uverenja za otključavanje softverskog modula." #: stoken.c:82 msgid "Device ID:" msgstr "IB uređaja:" #: stoken.c:89 msgid "Password:" msgstr "Lozinka:" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "Korisnik je zaobišao softverski modul.\n" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "Sva polja su obavezna; pokušajte opet.\n" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "Opšti neuspeh u „libstoken“-u.\n" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "Neispravan IB uređaja ili lozinka; pokušajte ponovo.\n" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "Pokretanje softverskog modula je uspelo.\n" #: stoken.c:185 msgid "Enter software token PIN." msgstr "Unesite PIN softverskog modula." #: stoken.c:189 msgid "PIN:" msgstr "PIN:" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "Neispravan zapis PIN-a; pokušajte ponovo.\n" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "Stvaram kod RSA modula\n" #: tun-win32.c:76 msgid "Error accessing registry key for network adapters\n" msgstr "Greška pristupa ključu registra za mrežnim prilagođivačima\n" #: tun-win32.c:139 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "Zanemarujem ne-podudarajući TAP uređaj „%s“\n" #: tun-win32.c:154 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" "Nisam našao Vindouz-TAP prilagođivače. Da li je instaliran upravljački " "program?\n" #: tun-win32.c:186 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" "Nije uspelo „GetAdapterIndex()“: %s\n" "Prebacujem se na „GetAdaptersInfo()“\n" #: tun-win32.c:200 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "Nije uspelo „GetAdaptersInfo()“: %s\n" #: tun-win32.c:231 #, c-format msgid "Failed to open %s\n" msgstr "Nisam uspeo da otvorim „%s“\n" #: tun-win32.c:236 #, c-format msgid "Opened tun device %s\n" msgstr "Otvorio sam tun uređaj „%s“\n" #: tun-win32.c:244 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Nisam uspeo da dobijem izdanje TAP upravljačkog programa: %s\n" #: tun-win32.c:250 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Greška: Potreban je upravljački program TAP-Vindouza v9.9 ili veći (nađoh " "%ld.%ld)\n" #: tun-win32.c:271 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Nisam uspeo da podesim TAP IP adrese: %s\n" #: tun-win32.c:283 tun-win32.c:406 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Nisam uspeo da podesim stanje TAP medija: %s\n" #: tun-win32.c:316 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "TAP uređaj je prekinuo povezivost. Prekidam vezu.\n" #: tun-win32.c:321 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Nisam uspeo da čitam sa TAP uređaja: %s\n" #: tun-win32.c:335 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Nisam uspeo da dovršim čitanje sa TAP uređaja: %s\n" #: tun-win32.c:358 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "Zapisah %ld bajta na tunu\n" #: tun-win32.c:368 msgid "Waiting for tun write...\n" msgstr "Čekam na zapisivanje tuna...\n" #: tun-win32.c:371 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "Zapisah %ld bajta na tunu nakon čekanja\n" #: tun-win32.c:378 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Nisam uspeo da pišem na TAP uređaj: %s\n" #: tun-win32.c:423 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "Izrađanje tunelskih skripti još nije podržano na Vindouzu\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Ne mogu da otvorim „/dev/tun“ za omreženje" #: tun.c:92 msgid "Can't push IP" msgstr "Ne mogu da poguram IP" #: tun.c:102 msgid "Can't set ifname" msgstr "Ne mogu da podesim „ifname“" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "Ne mogu da otvorim „%s“: %s" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Ne mogu da omrežim „%s“ za IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "otvaram „/dev/tun“" #: tun.c:145 msgid "Failed to create new tun" msgstr "Nisam uspeo da napravim novi tun" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "Nisam uspeo da stavim opisnik tun datoteke u režim odbacivanja poruke" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "tun uređaj nije podržan na ovoj platformi\n" #: tun.c:205 msgid "open net" msgstr "otvaram mrežu" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Ne mogu da otvorim tun uređaj: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "Nisam uspeo da svežem mesni tun uređaj (TUNSETIFF): %s\n" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" "Za podešavanje mesnog umrežavanja, openkonekt mora biti pokrenut kao " "administrator\n" "Vidite „http://www.infradead.org/openconnect/nonroot.html“ za više podataka\n" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "Neispravan naziv uređaja „%s“; mora da bude „utun%%d“ ili „tun%%d“\n" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "Nisam uspeo da otvorim „SYSPROTO_CONTROL“ priključnicu: %s\n" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "Nisam uspeo da propitam ib kontrole utuna: %s\n" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "Nisam uspeo da dodelim naziv utun uređaja\n" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "Nisam uspeo da povežem utun jedinicu: %s\n" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Neispravan naziv uređaja „%s“; mora da bude „tun%%d“\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Ne mogu da otvorim „%s“: %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:479 #, c-format msgid "socketpair failed: %s\n" msgstr "Nije uspelo uparivanje utičnice: %s\n" #: tun.c:484 #, c-format msgid "fork failed: %s\n" msgstr "iscepljivanje nije uspelo: %s\n" #: tun.c:488 msgid "setpgid" msgstr "setpgid" #: tun.c:493 msgid "execl" msgstr "execl" #: tun.c:498 msgid "(script)" msgstr "(skripta)" #: tun.c:566 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Nisam uspeo da zapišem pristigli paket: %s\n" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "Nisam uspeo da otvorim „%s“: %s\n" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "Ne mogu da dobijem podatke o „%s“: %s\n" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Nisam uspeo da dodelim %d bajta za „%s“\n" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "Nisam uspeo da pročitam „%s“: %s\n" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Smatram domaćina „%s“ za sirovi naziv domaćina\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Nisam uspeo da SHA1 postojeću datoteku\n" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "SHA1 datoteke IksML podešavanja: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Nisam uspeo da obradim datoteku IksML podešavanja „%s“\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Domaćin „%s“ ima adresu „%s“\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Domaćin „%s“ ima korisničku grupu „%s“\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "Domaćin „%s“ nije naveden u podešavanjima; smatram ga sirovim nazivom " "domaćina\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "Nisam uspeo da pošaljem „%s“ do programčeta „ykneo-oath“: %s\n" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "Neispravan kratak odgovor za „%s“ od programčeta „ykneo-oath“\n" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "Neuspeli odgovor za „%s“: %04x\n" #: yubikey.c:174 msgid "select applet command" msgstr "izaberi naredbu programčeta" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "Nepoznat odgovor od programčeta „ykneo-oath“\n" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "Našao sam programče „ykneo-oath“ i%d.%d.%d.\n" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "Potreban je PIN za OATH programče Jubi ključa" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "PIN Jubi ključa:" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "Nisam uspeo da izračunam odgovor otključavanja Jubi ključa\n" #: yubikey.c:274 msgid "unlock command" msgstr "naredba otključavanja" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "Pokušavam PBKBF2 varijantu skraćenog-znaka Jubiki PIN-a\n" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "Nisam uspeo da uspostavim PC/SC kontekst: %s\n" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "PC/SC kontekst je upsostavljen\n" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "Nisam uspeo da propitam spisak čitača: %s\n" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "Nisam uspeo da se povežem sa PC/SC čitačem „%s“: %s\n" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "Povezan je PC/SC čitač „%s“\n" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "Nisam uspeo da dobijem isključivi pristup čitaču „%s“: %s\n" #: yubikey.c:412 msgid "list keys command" msgstr "naredba spiska ključeva" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "Nađoh %s/%s kljzč „%s“ na „%s“\n" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" "Nisam našao modul „%s“ na Jubi ključu „%s“. Tražim drugi Jubi ključ...\n" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "Server odbija modul Jubi ključa; prelazim na ručni unos\n" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "Stvaram kod modula Jubi ključa\n" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "Nisam uspeo da dobijem isključivi pristup Jubi ključu: %s\n" #: yubikey.c:619 msgid "calculate command" msgstr "naredba izračunavanja" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "Nepoznat odgovor sa Jubi ključa prilikom stvaranja koda modula\n" openconnect-8.05/po/Makefile.am0000664000076400007640000000165412727726520020227 0ustar00dwoodhoudwoodhou00000000000000 LINGUAS = @LINGUAS@ MOFILES = $(LINGUAS:%=%.mo) POFILES = $(LINGUAS:%=%.po) noinst_DATA = $(MOFILES) SUFFIXES = .mo .po.mo: rm -f && $(MSGFMT) -o $@ $< clean-local: rm -f $(MOFILES) install-data-hook: all linguas="$(LINGUAS)"; \ for l in $$linguas; do \ dir="$(DESTDIR)$(localedir)/$$l/LC_MESSAGES"; \ $(mkdir_p) $$dir; \ echo Installing $$l.mo to $$dir/$(PACKAGE).mo ; \ $(INSTALL_DATA) $$l.mo $$dir/$(PACKAGE).mo; \ done uninstall-hook: linguas="$(LINGUAS)"; \ for l in $$linguas; do \ file="$(DESTDIR)$(localedir)/$$l/LC_MESSAGES/$(PACKAGE).mo"; \ if [ -r "$$file" ]; then \ echo "Removing $$file"; rm -f "$$file"; \ fi ; \ done # $(PACKAGE).pot is built by a rule in the parent directory Makefile # This rule isn't needed but is here for convenience if manually invoked .PHONY: $(PACKAGE).pot $(PACKAGE).pot: $(MAKE) -C .. po/$@ EXTRA_DIST = $(POFILES) LINGUAS DISTCLEANFILES=$(PACKAGE).pot openconnect-8.05/po/tr.po0000664000076400007640000034461613470043037017157 0ustar00dwoodhoudwoodhou00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2019-05-18 10:44-0700\n" "PO-Revision-Date: 2011-09-22 22:31+0000\n" "Last-Translator: FULL NAME \n" "Language-Team: Turkish (http://www.transifex.net/projects/p/meego/team/tr/)\n" "Language: tr\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=1; plural=0\n" #: auth-globalprotect.c:108 #, c-format msgid "" "SAML login is required via %s to this URL:\n" "\t%s" msgstr "" #: auth-globalprotect.c:110 msgid "Please enter your username and password" msgstr "" #: auth-globalprotect.c:119 msgid "Username" msgstr "" #: auth-globalprotect.c:134 msgid "Password" msgstr "" #: auth-globalprotect.c:181 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:260 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:266 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:272 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:315 msgid "Please select GlobalProtect gateway." msgstr "" #: auth-globalprotect.c:325 msgid "GATEWAY:" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:379 #, c-format msgid "%d gateway servers available:\n" msgstr "" #: auth-globalprotect.c:400 #, c-format msgid " %s (%s)\n" msgstr "" #: auth-globalprotect.c:484 auth-juniper.c:730 auth.c:669 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "OTP tokencode oluşturulamadı; jeton devredışı bırakılıyor\n" #: auth-globalprotect.c:584 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" #: auth-globalprotect.c:636 oncp.c:1266 msgid "Logout failed.\n" msgstr "" #: auth-globalprotect.c:638 msgid "Logout successful\n" msgstr "" #: auth-juniper.c:142 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:153 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:163 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:236 auth.c:408 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Form yöntemi='%s', eylem='%s' işlenemiyor\n" #: auth-juniper.c:267 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "" #: auth-juniper.c:337 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:359 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:397 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:411 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:418 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:425 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:432 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:439 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:445 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:452 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:481 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:650 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:667 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:675 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:713 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:716 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth.c:96 msgid "Form choice has no name\n" msgstr "Form seçiminin adı yok\n" #: auth.c:181 #, c-format msgid "name %s not input\n" msgstr "ad %s girdi değil\n" #: auth.c:188 msgid "No input type in form\n" msgstr "Formda girdi türü yok\n" #: auth.c:200 msgid "No input name in form\n" msgstr "Formda girdi adı yok\n" #: auth.c:230 #, c-format msgid "Unknown input type %s in form\n" msgstr "Formda bilinmeyen girdi türü %s\n" #: auth.c:540 gpst.c:214 msgid "Empty response from server\n" msgstr "Sunucudan boş yanıt\n" #: auth.c:551 gpst.c:289 msgid "Failed to parse server response\n" msgstr "Sunucu yanıtı ayrıştırılamadı\n" #: auth.c:553 gpst.c:291 #, c-format msgid "Response was:%s\n" msgstr "Yanıt:%s\n" #: auth.c:575 msgid "Received when not expected.\n" msgstr "Beklenmeyen alındı.\n" #: auth.c:603 msgid "XML response has no \"auth\" node\n" msgstr "XML yanıtı hiçbir \"auth\" düğümü içermiyor\n" #: auth.c:636 msgid "Asked for password but '--no-passwd' set\n" msgstr "Parola soruluyor ama '--no-passwd' ayarlanmış\n" #: auth.c:925 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "SHA1 özeti zaten eşleştiğinden dolayı XML profili indirilemiyor\n" #: auth.c:931 cstp.c:335 http.c:916 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "%s hedefine HTTPS bağlantısı açılamadı\n" #: auth.c:952 msgid "Failed to send GET request for new config\n" msgstr "Yeni yapılandırma için GET isteği gönderme başarısız\n" #: auth.c:976 msgid "Downloaded config file did not match intended SHA1\n" msgstr "İndirilen yapılandırma dosyası istenilen SHA1 özeti ile eşleşmedi\n" #: auth.c:981 msgid "Downloaded new XML profile\n" msgstr "Yeni XML profili indirildi\n" #: auth.c:992 auth.c:1044 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" #: auth.c:1003 mainloop.c:144 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "" #: auth.c:1010 mainloop.c:151 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "" #: auth.c:1017 mainloop.c:158 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "" #: auth.c:1024 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "" #: auth.c:1031 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "CSD ev dizinini '%s' değiştirme başarısız: %s\n" #: auth.c:1053 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Hata: Sunucu CSD hostscan çalıştırmak istedi.\n" "Uygun bir --csd-wrapper değişkeni sunmalısınız.\n" #: auth.c:1060 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Hata: Sunucu 'Cisco Secure Desktop' truva atını indirmek ve çalıştırmak " "istedi.\n" "Bu özellik, güvenlik nedeniyle varsayılan olarak devre dışıdır, bu yüzden " "bunu etkinleştirmek isteyebilirsiniz.\n" #: auth.c:1067 msgid "Trying to run Linux CSD trojan script.\n" msgstr "Linux CSD truva atı betiği çalıştırma deneniyor.\n" #: auth.c:1094 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "Geçici dizin '%s' yazılabilir değildir: %s\n" #: auth.c:1102 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Geçici CSD betik dosyası açılamadı: %s\n" #: auth.c:1111 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Geçici CSD betik dosyası yazılamadı: %s\n" #: auth.c:1141 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Uyarı: güvenli olmayan CSD kodunu root haklarıyla çalıştırıyorsunuz\n" "\t \"--csd-user\" komut satırı seçeneğini kullan\n" #: auth.c:1189 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "CSD betik %s çalıştırma başarısız oldu\n" #: auth.c:1221 msgid "Unknown response from server\n" msgstr "Sunucudan bilinmeyen yanıt\n" #: auth.c:1342 msgid "Server requested SSL client certificate after one was provided\n" msgstr "Biri girildikten sonra sunucu SSL istemci sertifikası istedi\n" #: auth.c:1346 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" "Sunucu SSL istemci sertifikası istedi; ama yapılandırılmış bir sertifika " "yok\n" #: auth.c:1362 msgid "XML POST enabled\n" msgstr "XML POST etkinleştirildi\n" #: auth.c:1405 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "1 saniye sonra %s tazelenecek...\n" #: compat.c:207 #, c-format msgid "(error 0x%lx)" msgstr "(hata 0x%lx)" #: compat.c:210 msgid "(Error while describing error!)" msgstr "(Hata tanımlama sırasında hata!)" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "HATA: Soketler başlatılamıyor\n" #: cstp.c:112 gpst.c:341 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:134 gpst.c:360 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:281 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:312 msgid "Error creating HTTPS CONNECT request\n" msgstr "HTTPS CONNECT isteği oluşturmada hata\n" #: cstp.c:328 http.c:384 msgid "Error fetching HTTPS response\n" msgstr "HTTPS cevabı getirilirken hata\n" #: cstp.c:355 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "VPN hizmeti kullanılamıyor; nedeni: %s\n" #: cstp.c:360 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Uygun olmayan HTTP CONNECT yanıtı alındı: %s\n" #: cstp.c:367 #, c-format msgid "Got CONNECT response: %s\n" msgstr "CONNECT yanıtı alındı: %s\n" #: cstp.c:396 cstp.c:404 msgid "No memory for options\n" msgstr "Seçenekler için bellek yok\n" #: cstp.c:413 http.c:444 msgid "" msgstr "" #: cstp.c:433 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Session-ID, 64 karakter değil, uzunluğu: \"%s\"\n" #: cstp.c:450 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "" #: cstp.c:468 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "Bilinmeyen DTLS-Content-Encoding %s\n" #: cstp.c:510 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Bilinmeyen CSTP-Content-Encoding %s\n" #: cstp.c:585 msgid "No MTU received. Aborting\n" msgstr "Hiçbir MTU alınamadı. Durduruluyor\n" #: cstp.c:593 gpst.c:641 msgid "No IP address received. Aborting\n" msgstr "Hiçbir IP adresi alınamadı. Durduruluyor\n" #: cstp.c:599 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "IPv6 yapılandırması alındı fakat MTU %d çok küçük.\n" #: cstp.c:605 gpst.c:648 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Yeniden bağlantı farklı eski bir IP adresi getirdi (%s != %s)\n" #: cstp.c:614 gpst.c:657 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "Yeniden bağlantı eski bir IP ağ maskesi getirdi (%s != %s)\n" #: cstp.c:622 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Yeniden bağlantı farklı IPv6 adresi getirdi (%s != %s)\n" #: cstp.c:630 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Yeniden bağlantı farklı bir IPv6 ağ maskesi getirdi (%s != %s)\n" #: cstp.c:638 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP bağlandı. DPD %d, Keepalive %d\n" #: cstp.c:640 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "CSTP Şifreleme: %s\n" #: cstp.c:702 msgid "Compression setup failed\n" msgstr "Sıkıştırma kurulumu başarısız oldu\n" #: cstp.c:719 msgid "Allocation of deflate buffer failed\n" msgstr "Sıkıştırılmış tampon ayırma başarısız\n" #: cstp.c:781 msgid "inflate failed\n" msgstr "şişirmek başarısız\n" #: cstp.c:804 #, c-format msgid "LZS decompression failed: %s\n" msgstr "LZS açma işlemi başarısız oldu: %s\n" #: cstp.c:817 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:824 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:829 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "%s bayt %d sıkıştırılmış veri paketi alındı (%d idi)\n" #: cstp.c:849 #, c-format msgid "deflate failed %d\n" msgstr "sıkıştırma başarısız %d\n" #: cstp.c:922 dtls.c:281 dtls.c:740 esp.c:129 gpst.c:1042 mainloop.c:69 #: oncp.c:914 msgid "Allocation failed\n" msgstr "Yer ayırma başarısız oldu\n" #: cstp.c:933 gpst.c:1055 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "Kısa paket alındı (%d bayt)\n" #: cstp.c:946 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Beklenmeyen paket uzunluğu. SSL_read %d döndü fakat paket\n" #: cstp.c:960 msgid "Got CSTP DPD request\n" msgstr "CSTP DPD isteği alındı\n" #: cstp.c:966 msgid "Got CSTP DPD response\n" msgstr "CSTP DPD yanıtı alındı\n" #: cstp.c:971 msgid "Got CSTP Keepalive\n" msgstr "CSTP Keepalive alındı\n" #: cstp.c:976 oncp.c:1003 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "%d bayt sıkıştırılmamış veri paketi alındı\n" #: cstp.c:993 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Sunucu bağlantı kesimi: %02x '%s'\n" #: cstp.c:996 msgid "Received server disconnect\n" msgstr "" #: cstp.c:1004 msgid "Compressed packet received in !deflate mode\n" msgstr "!deflate kipinde sıkıştırılmış paket alındı\n" #: cstp.c:1013 msgid "received server terminate packet\n" msgstr "sunucu kapatma paketi alındı\n" #: cstp.c:1020 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Bilinmeyen paket %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1063 gpst.c:1142 oncp.c:1121 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL çok az bayt yazdı! İstenen %d, gönderilen %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1091 oncp.c:1155 msgid "CSTP rekey due\n" msgstr "CSTP yeniden anahtarlama zamanı\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1098 oncp.c:1162 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Yeniden elsıkışma başarısız oldu; yeni-tünel deneniyor\n" #: cstp.c:1109 oncp.c:1173 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "CTSP Ölü Uç Tespiti ölü uç tespit etti!\n" #: cstp.c:1113 gpst.c:1166 oncp.c:1091 oncp.c:1177 msgid "Reconnect failed\n" msgstr "Yeniden bağlanılamadı\n" #: cstp.c:1129 oncp.c:1193 msgid "Send CSTP DPD\n" msgstr "CSTP DPD gönder\n" #: cstp.c:1141 oncp.c:1204 msgid "Send CSTP Keepalive\n" msgstr "CSTP Keepalive Gönder\n" #: cstp.c:1166 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1177 oncp.c:1238 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "%d bayt sıkıştırılmamış veri paketi gönderiliyor\n" #: cstp.c:1216 #, c-format msgid "Send BYE packet: %s\n" msgstr "BYE paketi gönder: %s\n" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "Vekil sunucusuna Digest kimlik doğrulaması deneniyor\n" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:113 msgid "DTLS connection attempted with an existing fd\n" msgstr "DTLS bağlantısı var olan bir fd ile denendi\n" #: dtls.c:119 msgid "No DTLS address\n" msgstr "DTLS adresi yok\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:126 msgid "Server offered no DTLS cipher option\n" msgstr "Sunucu hiçbir DTLS şifreleme seçeneği sunmadı\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:133 msgid "No DTLS when connected via proxy\n" msgstr "Vekil sunucu yolu ile bağlandığında DTSL yok\n" #: dtls.c:200 #, c-format msgid "DTLS option %s : %s\n" msgstr "DTLS seçeneği %s : %s\n" #: dtls.c:239 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS sıfırlandı. DPD %d, Keepalive %d\n" #: dtls.c:265 msgid "Attempt new DTLS connection\n" msgstr "Yeni DTLS bağlantısı girişimi\n" #: dtls.c:292 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "DTLS paketinin 0x%02x / %d kadarı alındı\n" #: dtls.c:306 msgid "Got DTLS DPD request\n" msgstr "DTLS DPD isteği alındı\n" #: dtls.c:312 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "DPD yanıtı gönderimi başarısız. Bağlantının kesilmesi bekleniyor\n" #: dtls.c:316 msgid "Got DTLS DPD response\n" msgstr "DTLS DPD yanıtı alındı\n" #: dtls.c:320 msgid "Got DTLS Keepalive\n" msgstr "DTLS Keepalive alındı\n" #: dtls.c:326 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "Sıkıştırma etkin değilken sıkıştırılmış DTLS paketi alındı\n" #: dtls.c:334 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Bilinmeyen DTLS paket türü %02x, uzunluğu %d\n" #: dtls.c:356 msgid "DTLS rekey due\n" msgstr "DTLS yeniden anahtarlama zamanı\n" #: dtls.c:363 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "DTLS Elsıkışması başarısız; yeniden bağlanılıyor.\n" #: dtls.c:372 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "DTLS Ölü Uç Tespiti ölü bir uç tespit etti!\n" #: dtls.c:378 msgid "Send DTLS DPD\n" msgstr "DTLS DPD Gönder\n" #: dtls.c:383 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "DPD istek gönderimi başarısız. Bağlantı kesilebilir\n" #: dtls.c:396 msgid "Send DTLS Keepalive\n" msgstr "DTLS Keepalive gönder\n" #: dtls.c:401 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Keepalive isteği gönderimi başarısız. Bağlantı kesilebilir\n" #: dtls.c:432 tun.c:541 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Bilinmeyen paket (uzunluk %d) alındı: %02x %02x %02x %02x...\n" #: dtls.c:439 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "" #: dtls.c:443 msgid "UDP setsockopt" msgstr "" #: dtls.c:474 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "DTLS %d yazma hatası aldı. Bağlantı SSL'e düşürülüyor\n" #: dtls.c:488 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "DTLS yazma hatası aldı: %s. Bağlantı SSL'e düşürülüyor\n" #: dtls.c:503 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "%d bayt DTLS paketi gönderildi; DTLS %d döndürdü\n" #: dtls.c:531 #, c-format msgid "Initiating IPv4 MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:551 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" #: dtls.c:555 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" #: dtls.c:564 #, c-format msgid "Sending MTU DPD probe (%u bytes, min=%u, max=%u)\n" msgstr "" #: dtls.c:568 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "" #: dtls.c:582 dtls.c:690 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" #: dtls.c:594 #, c-format msgid "Timeout while waiting for DPD response; trying %d\n" msgstr "" #: dtls.c:601 dtls.c:682 msgid "Timeout while waiting for DPD response; resending probe.\n" msgstr "" #: dtls.c:608 dtls.c:709 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "" #: dtls.c:613 #, c-format msgid "Received MTU DPD probe (%u bytes of %u)\n" msgstr "" #: dtls.c:651 msgid "Initiating IPv6 MTU detection\n" msgstr "" #: dtls.c:666 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:670 #, c-format msgid "Failed to send DPD request (%d)\n" msgstr "" #: dtls.c:695 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:759 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "" #: dtls.c:762 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" #: esp.c:63 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:66 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:69 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:87 msgid "incoming" msgstr "" #: esp.c:88 msgid "outgoing" msgstr "" #: esp.c:90 esp.c:113 msgid "Send ESP probes\n" msgstr "" #: esp.c:138 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:155 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:161 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:174 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:181 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:193 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:202 msgid "ESP session established with server\n" msgstr "" #: esp.c:213 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:219 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:225 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:239 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:243 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:251 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:258 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:278 #, c-format msgid "Failed to encrypt ESP packet: %d\n" msgstr "" #: esp.c:294 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:301 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:307 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-dtls.c:190 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "" #: gnutls-dtls.c:198 msgid "Failed to generate DTLS priority string\n" msgstr "" #: gnutls-dtls.c:207 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "" #: gnutls-dtls.c:216 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "" #: gnutls-dtls.c:240 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "" #: gnutls-dtls.c:253 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:267 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:275 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "" #: gnutls-dtls.c:309 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "" "Sunucudan istenen Şifreleme Listesi '%s' için bilinmeyen DTLS parametreleri\n" #: gnutls-dtls.c:324 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "DTLS önceliği ayarlanamadı: %s\n" #: gnutls-dtls.c:345 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "DTLS oturum parametreleri ayarlanamadı: %s\n" #: gnutls-dtls.c:373 openssl-dtls.c:534 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "" #: gnutls-dtls.c:382 openssl-dtls.c:545 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "" #: gnutls-dtls.c:392 openssl-dtls.c:554 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" #: gnutls-dtls.c:405 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "DTLS MTU ayarlanamadı: %s\n" #: gnutls-dtls.c:416 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "DTLS bağlantısı kuruldu (GnuTLS kullanarak). Şifreleme %s.\n" #: gnutls-dtls.c:422 openssl-dtls.c:572 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "" #: gnutls-dtls.c:437 openssl-dtls.c:653 openssl-dtls.c:657 msgid "DTLS handshake timed out\n" msgstr "DTLS elsıkışması zaman aşımına uğradı\n" #: gnutls-dtls.c:440 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "DTLS elsıkışması başarısız oldu: %s\n" #: gnutls-dtls.c:444 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(Güvenlik duvarı UDP paketi göndermenizi engelliyor mu?)\n" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:121 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:132 msgid "Failed to generate ESP IV\n" msgstr "" #: gnutls-esp.c:161 gnutls-esp.c:217 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:168 openssl-esp.c:192 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:180 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:209 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:95 openssl.c:154 msgid "SSL write cancelled\n" msgstr "SSL yazması iptal edildi\n" #: gnutls.c:99 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "SSL soketine yazılamadı: %s\n" #: gnutls.c:145 gnutls.c:237 openssl.c:204 openssl.c:271 msgid "SSL read cancelled\n" msgstr "SSL okuma iptal edildi\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:158 msgid "SSL socket closed uncleanly\n" msgstr "SSL soket temiz olmayan bir şekilde kapattı\n" #: gnutls.c:168 gnutls.c:246 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "SSL soketten okunamadı: %s\n" #: gnutls.c:266 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "SSL okuma hatası: %s; yeniden bağlanılıyor.\n" #: gnutls.c:302 #, c-format msgid "SSL send failed: %s\n" msgstr "SSL gönder başarısız oldu: %s\n" #: gnutls.c:315 msgid "Could not extract expiration time of certificate\n" msgstr "Sertifikanın sona erme tarihi alınamadı\n" #: gnutls.c:320 openssl.c:1592 msgid "Client certificate has expired at" msgstr "İstemci sertifikasının süresi doldu" #: gnutls.c:322 openssl.c:1597 msgid "Client certificate expires soon at" msgstr "İstemci sertifikası yakında sona erecek" #: gnutls.c:371 openssl.c:771 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Anahtar deposundan '%s' ögesi yüklenemedi: %s\n" #: gnutls.c:384 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Anahtar/sertifika dosyası %s açılamadı: %s\n" #: gnutls.c:391 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "%s anahtarının/sertifika dosyasının konumu belirlenemedi: %s\n" #: gnutls.c:400 msgid "Failed to allocate certificate buffer\n" msgstr "Sertifika tampon belleği ayrılamadı\n" #: gnutls.c:408 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Bellekteki sertifika okunamadı: %s\n" #: gnutls.c:439 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "PKCS#12 veri yapısı kurulamadı: %s\n" #: gnutls.c:462 openssl.c:534 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "PKCS#12 sertifika dosyasının şifresi açılamadı\n" #: gnutls.c:466 openssl.c:537 msgid "Enter PKCS#12 pass phrase:" msgstr "PKCS#12 anahtar parolası girin:" #: gnutls.c:489 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "PKCS#12 dosyası işletilemedi: %s\n" #: gnutls.c:501 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "PKCS#12 sertifika yüklemesi başarısız oldu: %s\n" #: gnutls.c:584 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "X509 sertifika içeri aktarma işlemi başarısız: %s\n" #: gnutls.c:594 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "PKCS#11 sertifika ayarlanması başarısız oldu: %s\n" #: gnutls.c:628 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "MD5 özeti başlatılamadı: %s\n" #: gnutls.c:638 #, c-format msgid "MD5 hash error: %s\n" msgstr "MD5 özet hatası: %s\n" #: gnutls.c:696 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "Eksik DEK-Bilgisi: OpenSSL şifrelenmiş anahtardan bir başlık\n" #: gnutls.c:703 msgid "Cannot determine PEM encryption type\n" msgstr "PEM şifreleme türü tespit edilemiyor\n" #: gnutls.c:716 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Desteklenmeyen PEM şifreleme türü: %s\n" #: gnutls.c:741 gnutls.c:754 msgid "Invalid salt in encrypted PEM file\n" msgstr "" #: gnutls.c:778 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Şifrelenmiş PEM dosyasında base64-decoding hatası: %s\n" #: gnutls.c:786 msgid "Encrypted PEM file too short\n" msgstr "Şifrelenmiş PEM dosyası çok kısa\n" #: gnutls.c:814 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "PEM dosyası şifresini açmak için şifre oluşturma başarısız oldu: %s\n" #: gnutls.c:825 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "PEM anahtar şifresi açılamadı: %s\n" #: gnutls.c:877 msgid "Decrypting PEM key failed\n" msgstr "PEM anahtar şifresi açma işlemi başarısız\n" #: gnutls.c:881 gnutls.c:1405 openssl.c:458 msgid "Enter PEM pass phrase:" msgstr "PEM parolası girin:" #: gnutls.c:942 msgid "This binary built without system key support\n" msgstr "Bu ikili dosya sistem anahtar desteği olmadan derlenmiş\n" #: gnutls.c:949 msgid "This binary built without PKCS#11 support\n" msgstr "Bu ikili dosya PKCS#11 desteği olmadan derlendi\n" #: gnutls.c:993 openssl-pkcs11.c:407 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "PKCS#11 sertifikası %s kullanılıyor\n" #: gnutls.c:994 #, c-format msgid "Using system certificate %s\n" msgstr "Sistem sertifikası %s kullanılıyor\n" #: gnutls.c:1012 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "PKCS#11'den sertifika yüklenirken hata: %s\n" #: gnutls.c:1013 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Sistem sertifikası yüklenirken hata: %s\n" #: gnutls.c:1024 openssl.c:827 #, c-format msgid "Using certificate file %s\n" msgstr "%s sertifika dosyası kullanılıyor\n" #: gnutls.c:1052 msgid "PKCS#11 file contained no certificate\n" msgstr "PKCS#11 dosyası hiçbir sertifika içermiyor\n" #: gnutls.c:1078 msgid "No certificate found in file" msgstr "Dosyada hiçbir sertifika bulunamadı" #: gnutls.c:1083 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Sertifika yüklenirken başarısız oldu: %s\n" #: gnutls.c:1098 #, c-format msgid "Using system key %s\n" msgstr "Sistem anahtarı %s kullanılıyor\n" #: gnutls.c:1103 gnutls.c:1271 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Özel anahtar yapısı oluşturulurken hata: %s\n" #: gnutls.c:1114 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Sistem anahtarı %s içeri aktarılırken hata: %s\n" #: gnutls.c:1125 gnutls.c:1219 gnutls.c:1247 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "PKCS#11 anahtar URL'i %s deneniyor\n" #: gnutls.c:1130 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "PKCS#11 anahtar yapısı oluşturulurken hata: %s\n" #: gnutls.c:1259 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "PKCS#11 URL %s içeri aktarılırken hata: %s\n" #: gnutls.c:1266 openssl-pkcs11.c:644 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "PKCS#11 anahtarı %s kullanılıyor\n" #: gnutls.c:1281 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" "Özel anahtar yapısındaki PKCS#11 anahtarı içeri aktarılırken hata: %s\n" #: gnutls.c:1299 #, c-format msgid "Using private key file %s\n" msgstr "Özel anahtar dosyası %s kullanılıyor\n" #: gnutls.c:1310 openssl.c:651 msgid "This version of OpenConnect was built without TPM support\n" msgstr "OpenConnect'in bu sürümü TPM desteği olmadan derlendi\n" #: gnutls.c:1326 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1347 msgid "Failed to interpret PEM file\n" msgstr "PEM dosyası yorumlanamadı\n" #: gnutls.c:1366 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "PKCS#11 özel anahtarı yüklenemedi: %s\n" #: gnutls.c:1379 gnutls.c:1393 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Özel anahtar PKCS#8 olarak yüklenemedi: %s\n" #: gnutls.c:1401 gnutls.c:1434 openssl.c:1002 openssl.c:1012 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "PKCS#8 sertifika dosyasının şifresi açılamadı\n" #: gnutls.c:1426 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "%s özel anahtarının türü tespit edilemedi\n" #: gnutls.c:1438 openssl.c:1008 msgid "Enter PKCS#8 pass phrase:" msgstr "PKCS#8 anahtar parolası girin:" #: gnutls.c:1454 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Anahtar kimliği alımı başarısız oldu: %s\n" #: gnutls.c:1499 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Test verisi özel anahtar ile imzalanırken hata: %s\n" #: gnutls.c:1514 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Sertifika imzası onaylanırken hata: %s\n" #: gnutls.c:1539 msgid "No SSL certificate found to match private key\n" msgstr "Özel anahtar ile eşleşen sertifika bulunamadı\n" #: gnutls.c:1551 openssl.c:560 openssl.c:709 #, c-format msgid "Using client certificate '%s'\n" msgstr "İstemci sertifikası '%s' kullanılıyor\n" #: gnutls.c:1558 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "" #: gnutls.c:1579 gnutls.c:1589 msgid "Failed to allocate memory for certificate\n" msgstr "Sertifika için bellek ayrılamadı\n" #: gnutls.c:1625 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" "UYARI: GnuTLS hatalı sertifika sağlayıcı bilgisi dönüyor; kimlik doğrulama " "işlemi başarısız sonuçlanabilir!\n" #: gnutls.c:1648 msgid "Got no issuer from PKCS#11\n" msgstr "" #: gnutls.c:1653 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "PKCS11'dan sonraki CA '%s' alındı\n" #: gnutls.c:1679 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Desteklenen sertifikalar için bellek ayrılamadı\n" #: gnutls.c:1702 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Desteklenen CA '%s' ekleniyor\n" #: gnutls.c:1724 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1748 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Sertifika ayarlama başarısız: %s\n" #: gnutls.c:1941 msgid "Server presented no certificate\n" msgstr "Sunucu hiçbir sertifika sunamadı\n" #: gnutls.c:1949 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" #: gnutls.c:1954 openssl.c:1515 msgid "Server presented different cert on rehandshake\n" msgstr "" #: gnutls.c:1959 openssl.c:1518 msgid "Server presented identical cert on rehandshake\n" msgstr "" #: gnutls.c:1965 msgid "Error initialising X509 cert structure\n" msgstr "X509 sertifika yapısı oluşturulurken hata\n" #: gnutls.c:1971 msgid "Error importing server's cert\n" msgstr "Sunucunun sertifikası içeri aktarılırken hata\n" #: gnutls.c:1980 main.c:1794 msgid "Could not calculate hash of server's certificate\n" msgstr "Sunucunun sertifikasının özeti hesaplanamadı\n" #: gnutls.c:1985 msgid "Error checking server cert status\n" msgstr "Sunucu sertifika durumu kontrol edilirken hata\n" #: gnutls.c:1990 msgid "certificate revoked" msgstr "sertifika iptal edildi" #: gnutls.c:1992 msgid "signer not found" msgstr "imza sahibi bulunamadı" #: gnutls.c:1994 msgid "signer not a CA certificate" msgstr "imza sahibi bir CA sertifikası değil" #: gnutls.c:1996 msgid "insecure algorithm" msgstr "güvensiz algoritma" #: gnutls.c:1998 msgid "certificate not yet activated" msgstr "sertifika henüz etkinleştirilmemiş" #: gnutls.c:2000 msgid "certificate expired" msgstr "sertifikanın süresi dolmuş" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2005 msgid "signature verification failed" msgstr "imza doğrulama başarısız" #: gnutls.c:2054 openssl.c:1399 openssl.c:1551 msgid "certificate does not match hostname" msgstr "sertifika ana bilgisayar adı ile eşleşmiyor" #: gnutls.c:2059 openssl.c:1398 openssl.c:1557 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Sunucu sertifika doğrulaması başarısız oldu: %s\n" #: gnutls.c:2126 msgid "Failed to allocate memory for cafile certs\n" msgstr "cafile sertifikaları için bellek ayırma başarısız\n" #: gnutls.c:2147 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "cafile üzerinden sertifika okuma başarısız: %s\n" #: gnutls.c:2163 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "CA dosyası '%s' açma başarısız: %s\n" #: gnutls.c:2176 openssl.c:1679 msgid "Loading certificate failed. Aborting.\n" msgstr "Sertifika yükleme başarısız oldu. Durduruluyor.\n" #: gnutls.c:2237 #, c-format msgid "Failed to set TLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2249 openssl.c:1796 #, c-format msgid "SSL negotiation with %s\n" msgstr "%s ile SSL anlaşması\n" #: gnutls.c:2296 openssl.c:1822 msgid "SSL connection cancelled\n" msgstr "SSL bağlantısı iptal edildi\n" #: gnutls.c:2303 #, c-format msgid "SSL connection failure: %s\n" msgstr "SSL bağlantı hatası: %s\n" #: gnutls.c:2312 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "GnuTLS el sıkışma sırasında ölümcül olmayan bir hata döndürdü: %s\n" #: gnutls.c:2318 openssl.c:1839 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "%s üzerinden HTTPS bağlanıldı\n" #: gnutls.c:2321 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "%s üzerindeki SSL yeniden değerlendirildi\n" #: gnutls.c:2483 openssl-pkcs11.c:199 #, c-format msgid "PIN required for %s" msgstr "%s için PIN gerekli" #: gnutls.c:2487 openssl-pkcs11.c:202 msgid "Wrong PIN" msgstr "Yanlış PIN" #: gnutls.c:2490 msgid "This is the final try before locking!" msgstr "Bu kilitlemeden önce son deneme hakkınızdır!" #: gnutls.c:2492 msgid "Only a few tries left before locking!" msgstr "Kilitlemeden önce sadece birkaç deneme hakkınız kaldı!" #: gnutls.c:2497 openssl-pkcs11.c:206 msgid "Enter PIN:" msgstr "PIN Girin:" #: gnutls.c:2583 openssl.c:1967 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2592 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:54 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "%d bayt için TPM imza fonksiyonu çağrıldı.\n" #: gnutls_tpm.c:61 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "TPM özet nesnesi oluşturma başarısız: %s\n" #: gnutls_tpm.c:68 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "TPM özet nesnesinde değer ayarlama başarısız: %s\n" #: gnutls_tpm.c:78 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "TPM özet imzası başarısız: %s\n" #: gnutls_tpm.c:100 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "TSS anahtar damlası şifresi açılırken hata: %s\n" #: gnutls_tpm.c:108 gnutls_tpm.c:119 gnutls_tpm.c:132 msgid "Error in TSS key blob\n" msgstr "TSS anahtar damlasında hata\n" #: gnutls_tpm.c:139 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "TPM içeriği oluşturulamadı: %s\n" #: gnutls_tpm.c:146 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "TPM içeriğine bağlanılamadı: %s\n" #: gnutls_tpm.c:154 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "TPM SRK anahtarı yüklenemedi: %s\n" #: gnutls_tpm.c:161 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "TPM SRK politika nesnesi yükleme başarısız: %s\n" #: gnutls_tpm.c:182 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "TPM PIN ayarlanamadı: %s\n" #: gnutls_tpm.c:198 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "TPM anahtar damlası yükleme başarısız: %s\n" #: gnutls_tpm.c:205 msgid "Enter TPM SRK PIN:" msgstr "TPM SRK PIN girin:" #: gnutls_tpm.c:226 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Anahtar politika nesnesi oluşturma başarısız: %s\n" #: gnutls_tpm.c:234 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Anahtara politika ataması başarısız: %s\n" #: gnutls_tpm.c:240 msgid "Enter TPM key PIN:" msgstr "TPM anahtar PIN girin:" #: gnutls_tpm.c:251 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Anahtar PIN ayarlanamadı: %s\n" #: gnutls_tpm2.c:92 gnutls_tpm2_esys.c:474 gnutls_tpm2_ibm.c:419 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:198 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:208 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:217 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:225 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:231 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:249 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:270 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:275 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:384 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2_esys.c:173 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:189 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:190 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:191 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:192 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:196 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:201 gnutls_tpm2_ibm.c:262 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:209 gnutls_tpm2_esys.c:303 gnutls_tpm2_esys.c:374 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:221 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:226 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:245 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:250 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:258 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:261 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:274 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:295 gnutls_tpm2_ibm.c:278 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:309 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:317 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:323 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:333 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:363 gnutls_tpm2_ibm.c:363 gnutls_tpm2_ibm.c:450 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:395 #, c-format msgid "TPM2 RSA sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:414 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:420 gnutls_tpm2_esys.c:500 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:464 gnutls_tpm2_ibm.c:405 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:494 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:532 gnutls_tpm2_ibm.c:485 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:546 gnutls_tpm2_ibm.c:502 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:555 gnutls_tpm2_ibm.c:512 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:569 gnutls_tpm2_ibm.c:523 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:54 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:226 #, c-format msgid "%s\n" msgstr "" #: gpst.c:229 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:417 #, c-format msgid "Unknown ESP %s algorithm: %s" msgstr "" #: gpst.c:477 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: gpst.c:483 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:487 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:498 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:551 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:560 oncp.c:835 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: gpst.c:627 msgid "ESP disabled" msgstr "" #: gpst.c:629 msgid "No ESP keys received" msgstr "" #: gpst.c:631 msgid "ESP support not available in this build" msgstr "" #: gpst.c:635 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:680 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:702 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:711 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:719 #, c-format msgid "Got inappropriate HTTP GET-tunnel response: %.*s\n" msgstr "" #: gpst.c:861 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" "VPN connectivity may be disabled or limited without HIP report submission.\n" "You need to provide a --csd-wrapper argument with the HIP report submission " "script.\n" msgstr "" #: gpst.c:871 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:900 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:905 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:911 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:913 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:942 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:966 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:972 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:999 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1015 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1051 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1072 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1082 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1086 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1092 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: gpst.c:1101 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1109 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1157 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1162 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1182 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1202 #, c-format msgid "Sending data packet of %d bytes\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Kimlik doğrulama için GSSAPI adı içeri aktarılırken hata:\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "GSSAPI yanıtı üretilirken hata:\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "Vekil sunucusuna GSSAPI kimlik doğrulaması deneniyor\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "GSSAPI kimlik doğrulaması tamamlandı\n" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "GSSAPI jetonu çok büyük (%zd bayt)\n" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "%zu bayt GSSAPI jetonu gönderiliyor\n" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" "Vekil sunucusuna GSSAPI kimlik doğrulama jetonu gönderimi başarısız oldu: " "%s\n" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "Vekilden GSSAPI kimlik doğrulama jetonu alma başarısız: %s\n" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "SOCKS sunucusu GSSAPI içerik hatası raporladı\n" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "SOCKS sunucusundan bilinmeyen GSSAPI durumu cevabı (0x%02x)\n" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "%zu bayt GSSAPI jetonu alındı: %02x %02x %02x %02x\n" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "%zu bayt GSSAPI koruma uzlaşması gönderiliyor\n" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "Vekile GSSAPI koruma yanıtı gönderme başarısız: %s\n" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "Vekilden GSSAPI koruma yanıtı alma başarısız: %s\n" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "%zu bayt GSSAPI koruma yanıtı alındı: %02x %02x %02x %02x\n" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "Vekil sunucudan geçersiz GSSAPI koruma yanıtı (%zu bayt)\n" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "SOCKS vekil sunucusu desteklenmeyen ileti bütünlüğü ister\n" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "SOCKS vekil sunucusu desteklenmeyen ileti gizliliği ister\n" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "SOCKS vekil sunucusu bilinmeyen koruma türü 0x%02x ister\n" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "Vekile HTTP Temel kimlik doğrulaması deneniyor\n" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1165 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "OpenConnect'in bu sürümü GSSAPI desteği olmadan derlendi\n" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" "Vekil, öntanımlı olarak devredışı olan Temel kimlik doğrulaması istedi\n" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "Denenecek kimlik doğrulama yöntemi kalmadı\n" #: http.c:319 msgid "No memory for allocating cookies\n" msgstr "Çerezlere ayrılacak bellek yok\n" #: http.c:394 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "HTTP yanıtı '%s' ayrıştırılamadı\n" #: http.c:400 #, c-format msgid "Got HTTP response: %s\n" msgstr "HTTP yanıtı alındı: %s\n" #: http.c:408 msgid "Error processing HTTP response\n" msgstr "HTTP yanıtı işlenirken hata\n" #: http.c:415 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Bilinmeyen HTTP yanıt satırı '%s' yoksayılıyor\n" #: http.c:435 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Geçersiz çerez verildi: %s\n" #: http.c:454 msgid "SSL certificate authentication failed\n" msgstr "SSL sertifikası kimlik doğrulama hatası\n" #: http.c:485 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Yanıt gövdesi sıfırdan küçük bir boyutta (%d)\n" #: http.c:496 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Bilinmeyen Transfer-Encoding: %s\n" #. Now the body, if there is one #: http.c:515 #, c-format msgid "HTTP body %s (%d)\n" msgstr "HTTP gövde %s (%d)\n" #: http.c:529 http.c:556 msgid "Error reading HTTP response body\n" msgstr "HTTP yanıt gövdesi okunurken hata\n" #: http.c:542 msgid "Error fetching chunk header\n" msgstr "Yığın başlık getirilirken hata\n" #: http.c:566 msgid "Error fetching HTTP response body\n" msgstr "HTTP yanıt gövdesi getirilirken hata\n" #: http.c:569 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "Yığın halinde çözmede hata. Beklenen \", alınan: '%s'" #: http.c:581 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Bağlantı kapatılmadan HTTP 1.0 gövdesi alınamıyor\n" #: http.c:708 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Yeniden yönlendirme URL'i '%s' ayrıştırması başarısız: %s\n" #: http.c:732 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "https-olmayan yönlendirme adresi '%s' takip edilemez\n" #: http.c:760 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "İlgili yeniden yönlendirme için yeni yol tahsisi başarısız: %s\n" #: http.c:973 oncp.c:591 #, c-format msgid "Unexpected %d result from server\n" msgstr "Sunucudan beklenmeyen %d sonucu\n" #: http.c:1021 msgid "request granted" msgstr "istek kabul edildi" #: http.c:1022 msgid "general failure" msgstr "genel hata" #: http.c:1023 msgid "connection not allowed by ruleset" msgstr "kural kümesine göre bağlantıya izin verilmiyor" #: http.c:1024 msgid "network unreachable" msgstr "ağ erişilemez durumda" #: http.c:1025 msgid "host unreachable" msgstr "makine erişilemez durumda" #: http.c:1026 msgid "connection refused by destination host" msgstr "bağlantı hedef makine tarafından reddedildi" #: http.c:1027 msgid "TTL expired" msgstr "TTL süresi doldu" #: http.c:1028 msgid "command not supported / protocol error" msgstr "komut desteklenmiyor / protokol hatası" #: http.c:1029 msgid "address type not supported" msgstr "adres türü desteklenmiyor" #: http.c:1039 msgid "SOCKS server requested username/password but we have none\n" msgstr "" "SOCKS sunucusu kullanıcı adı/parola istedi fakat hiçbiri mevcut değil\n" #: http.c:1047 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" "SOCKS kimlik doğrulaması için kullanıcı adı ve parola < 255 bayt olmalıdır\n" #: http.c:1062 http.c:1118 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "SOCKS vekil sunucusuna kimlik doğrulama isteği yazılırken hata: %s\n" #: http.c:1070 http.c:1125 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "SOCKS vekilinden kimlik doğrulama yanıtı okunurken hata: %s\n" #: http.c:1077 http.c:1131 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "SOCKS vekilinden beklenmeyen kimlik doğrulama yanıtı: %02x %02x\n" #: http.c:1083 msgid "Authenticated to SOCKS server using password\n" msgstr "SOCKS sunucusuna parola kullanılarak kimlik doğrulandı\n" #: http.c:1087 msgid "Password authentication to SOCKS server failed\n" msgstr "SOCKS sunucusuna parola kimlik doğrulaması başarısız oldu\n" #: http.c:1143 http.c:1150 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "SOCKS sunucusu GSSAPI kimlik doğrulaması istedi\n" #: http.c:1156 msgid "SOCKS server requested password authentication\n" msgstr "SOCKS sunucusu parola kimlik doğrulaması istedi\n" #: http.c:1163 msgid "SOCKS server requires authentication\n" msgstr "SOCKS sunucusu kimlik doğrulama gerektirir\n" #: http.c:1170 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "SOCKS sunucusu bilinmeyen %02x kimlik doğrulama türünü ister\n" #: http.c:1176 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Şuradan SOCKS vekil bağlantısı isteniyor %s:%d\n" #: http.c:1191 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "SOCKS vekiline bağlantı isteği yazarken hata: %s\n" #: http.c:1199 http.c:1241 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "SOCKS vekilinden bağlantı yanıtı okunurken hata: %s\n" #: http.c:1205 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "SOCKS vekilinden beklenmeyen bağlantı yanıtı: %02x %02x...\n" #: http.c:1213 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "SOCKS vekil hatası %02x: %s\n" #: http.c:1217 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "SOCKS vekil hatası %02x\n" #: http.c:1234 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "SOCKS bağlantı adresinde beklenmeyen adres türü %02x\n" #: http.c:1257 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "%s sunucusuna HTTP vekil bağlantısı isteniyor:%d\n" #: http.c:1292 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Vekil sunucu isteği gönderme başarısız oldu: %s\n" #: http.c:1315 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "Vekil sunucu CONNECT isteği başarısız oldu: %d\n" #: http.c:1334 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Bilinmeyen vekil sunucu türü '%s'\n" #: http.c:1383 msgid "Only http or socks(5) proxies supported\n" msgstr "Sadece http ya da socks(5) vekilleri destekleniyor\n" #: library.c:112 msgid "Cisco AnyConnect or openconnect" msgstr "" #: library.c:113 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "" #: library.c:129 msgid "Juniper Network Connect" msgstr "" #: library.c:130 msgid "Compatible with Juniper Network Connect / Pulse Secure SSL VPN" msgstr "" #: library.c:148 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:149 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:211 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:233 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "SSL kütüphanesini Cisco DTLS desteği olmadan derle\n" #: library.c:656 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Sunucu URL'i '%s' ayrıştırma işlemi başarısız oldu\n" #: library.c:662 msgid "Only https:// permitted for server URL\n" msgstr "Sunucu URL'i için sadece https:// izinli\n" #: library.c:1056 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "" #: library.c:1085 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" #: library.c:1146 msgid "No form handler; cannot authenticate.\n" msgstr "Form işleyicisi yok; kimlik doğrulanamıyor.\n" #: main.c:340 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "CommandLineToArgvW() başarısız oldu: %s\n" #: main.c:353 #, c-format msgid "Fatal error in command line handling\n" msgstr "Komut satırı işlemede önemli hata\n" #: main.c:388 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "ReadConsole() başarısız oldu: %s\n" #: main.c:401 #, c-format msgid "fgetws() failed: %s\n" msgstr "" #: main.c:416 main.c:429 #, c-format msgid "Error converting console input: %s\n" msgstr "Konsol girdisi dönüştürülürken hata: %s\n" #: main.c:423 main.c:689 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "stdin'den gelen karakter dizisi için yer tahsis etme hatası\n" #: main.c:584 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" "OpenConnect konusunda yardım için, lütfen\n" " http://www.infradead.org/openconnect/mail.html adresindeki web\n" "sayfasına bakın\n" #: main.c:593 #, c-format msgid "Using OpenSSL. Features present:" msgstr "OpenSSL kullanılıyor. Mevcut özellikler:" #: main.c:595 #, c-format msgid "Using GnuTLS. Features present:" msgstr "GnuTLS kullanılıyor. Mevcut özellikler:" #: main.c:608 msgid "OpenSSL ENGINE not present" msgstr "OpenSSL MOTORU mevcut değil" #: main.c:647 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" #: main.c:657 #, c-format msgid "Supported protocols:" msgstr "" #: main.c:659 main.c:675 msgid " (default)" msgstr "" #: main.c:672 msgid "Set VPN protocol" msgstr "" #: main.c:713 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:754 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Bu çalıştırılabilir yol \"%s\" işlenemiyor" #: main.c:760 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "vpnc betik yolu için yer ayırma başarısız\n" #: main.c:780 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "" #: main.c:793 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Kullanım: openconnect [seçenekler]\n" #: main.c:794 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" #: main.c:796 msgid "Read options from config file" msgstr "Yapılandırma dosyasından seçenekleri oku" #: main.c:797 msgid "Report version number" msgstr "Sürüm numarasını raporla" #: main.c:798 msgid "Display help text" msgstr "Yardım metnini göster" #: main.c:802 msgid "Authentication" msgstr "" #: main.c:803 msgid "Set login username" msgstr "Giriş kullanıcı adı ayarla" #: main.c:804 msgid "Disable password/SecurID authentication" msgstr "Parola/SecurID kimlik doğrulamasını devre dışı bırak" #: main.c:805 msgid "Do not expect user input; exit if it is required" msgstr "Kullanıcı girdisi bekleme; gerekirse çık" #: main.c:806 msgid "Read password from standard input" msgstr "Standart girdiden parola oku" #: main.c:807 msgid "Choose authentication login selection" msgstr "Kimlik doğrulama giriş seçimini seç" #: main.c:808 msgid "Provide authentication form responses" msgstr "" #: main.c:809 msgid "Use SSL client certificate CERT" msgstr "SSL istemci sertifikası CERT kullan" #: main.c:810 msgid "Use SSL private key file KEY" msgstr "SSL özel anahtar dosyası KEY kullan" #: main.c:811 msgid "Warn when certificate lifetime < DAYS" msgstr "Sertifika ömrü < DAYS durumuna geldiğinde uyar" #: main.c:812 msgid "Set login usergroup" msgstr "Giriş kullanıcı grubu ayarla" #: main.c:813 msgid "Set key passphrase or TPM SRK PIN" msgstr "Anahtar parolası ya da TPM SRK PIN ayarla" #: main.c:814 msgid "Key passphrase is fsid of file system" msgstr "Anahtar parolası dosya sisteminin fsid'sidir" #: main.c:815 msgid "Software token type: rsa, totp or hotp" msgstr "Yazılım jeton türü: rsa, totp ya da hotp" #: main.c:816 msgid "Software token secret" msgstr "Yazılım jeton sırrı" #: main.c:818 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "(NOT: Bu derlemede libstoken (RSA SecurID) devre dışı bırakıldı)" #: main.c:821 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(NOT: Bu derlemede Yubikey OATH devre dışı bırakıldı)" #: main.c:824 msgid "Server validation" msgstr "" #: main.c:825 msgid "Server's certificate SHA1 fingerprint" msgstr "Sunucunun sertifika SHA1 parmakizi" #: main.c:826 msgid "Do not require server SSL cert to be valid" msgstr "Geçerli olması için SSL sertifikasına ihtiyaç yok" #: main.c:827 msgid "Disable default system certificate authorities" msgstr "Öntanımlı sistem sertifika yetkilileri kapatıldı" #: main.c:828 msgid "Cert file for server verification" msgstr "Sunucu doğrulama için sertifika dosyası" #: main.c:830 msgid "Internet connectivity" msgstr "" #: main.c:831 msgid "Set proxy server" msgstr "Vekil sunucu ayarla" #: main.c:832 msgid "Set proxy authentication methods" msgstr "Vekil sunucu kimlik doğrulama yöntemlerini ayarla" #: main.c:833 msgid "Disable proxy" msgstr "Vekili kapat" #: main.c:834 msgid "Use libproxy to automatically configure proxy" msgstr "Vekili otomatik yapılandırmak için libproxy kullan" #: main.c:836 msgid "(NOTE: libproxy disabled in this build)" msgstr "(NOTE: Bu derlemede libproxy devredışı bırakıldı)" #: main.c:838 msgid "Connection retry timeout in seconds" msgstr "Bağlantı yeniden deneme zaman aşımının saniye cinsinden değeri" #: main.c:839 msgid "Use IP when connecting to HOST" msgstr "" #: main.c:840 msgid "copy TOS / TCLASS when using DTLS" msgstr "" #: main.c:841 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:843 msgid "Authentication (two-phase)" msgstr "" #: main.c:844 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:845 msgid "Read cookie from standard input" msgstr "Standart girdiden çerez oku" #: main.c:846 msgid "Authenticate only and print login info" msgstr "Sadece kimlik doğrula ve giriş bilgisini yazdır" #: main.c:847 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:848 msgid "Print cookie before connecting" msgstr "" #: main.c:851 msgid "Process control" msgstr "" #: main.c:852 msgid "Continue in background after startup" msgstr "Başlangıçtan sonra arkaplanda devam et" #: main.c:853 msgid "Write the daemon's PID to this file" msgstr "Artalan işlemin PID bilgisini bu dosyaya yaz" #: main.c:854 msgid "Drop privileges after connecting" msgstr "Bağlandıktan sonra ayrıcalıkları bırak" #: main.c:857 msgid "Logging (two-phase)" msgstr "" #: main.c:859 msgid "Use syslog for progress messages" msgstr "İlerleme mesajları için syslog'u kullan" #: main.c:861 msgid "More output" msgstr "Daha fazla çıktı" #: main.c:862 msgid "Less output" msgstr "Daha az çıktı" #: main.c:863 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "HTTP kimlik doğrulama trafiğini dök (--verbose ayrıntılı)" #: main.c:864 msgid "Prepend timestamp to progress messages" msgstr "İlerleme mesajları için zaman damgasını başa ekle" #: main.c:866 msgid "VPN configuration script" msgstr "" #: main.c:867 msgid "Use IFNAME for tunnel interface" msgstr "Tünel arayüzü için IFNAME kullan" #: main.c:868 msgid "Shell command line for using a vpnc-compatible config script" msgstr "vpnc uyumlu yapılandırma betiği kullanmak için kabuk komut satırı" #: main.c:869 msgid "default" msgstr "öntanımlı" #: main.c:871 msgid "Pass traffic to 'script' program, not tun" msgstr "Trafiği tun yerine 'betik' programından geçir" #: main.c:874 msgid "Tunnel control" msgstr "" #: main.c:875 msgid "Do not ask for IPv6 connectivity" msgstr "IPv6 bağlantısı isteme" #: main.c:876 msgid "XML config file" msgstr "XML yapılandırma dosyası" #: main.c:877 msgid "Request MTU from server (legacy servers only)" msgstr "" #: main.c:878 msgid "Indicate path MTU to/from server" msgstr "Sunucudan/sunucuya MTU yolu belirtin" #: main.c:879 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:880 msgid "Disable all compression" msgstr "" #: main.c:881 msgid "Set minimum Dead Peer Detection interval" msgstr "Asgari Ölü Uç Tespit aralığı ayarla" #: main.c:882 msgid "Require perfect forward secrecy" msgstr "Mükemmel ileri gizlilik iste" #: main.c:883 msgid "Disable DTLS and ESP" msgstr "" #: main.c:884 msgid "OpenSSL ciphers to support for DTLS" msgstr "DTLS desteği için OpenSSL şifreleri" #: main.c:885 msgid "Set packet queue limit to LEN pkts" msgstr "LEN pkts için paket kuyruk sınırı ayarla" #: main.c:887 msgid "Local system information" msgstr "" #: main.c:888 msgid "HTTP header User-Agent: field" msgstr "HTTP başlığı User-Agent: alan" #: main.c:889 msgid "Local hostname to advertise to server" msgstr "" #: main.c:890 msgid "OS type (linux,linux-64,win,...) to report" msgstr "Bildirilecek işletim sistemi (linux, linux-64,win,...) türü" #: main.c:891 msgid "reported version string during authentication" msgstr "" #: main.c:892 msgid "default:" msgstr "" #: main.c:895 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:896 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:897 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:900 msgid "Server bugs" msgstr "" #: main.c:901 msgid "Disable HTTP connection re-use" msgstr "HTTP bağlantısı yeniden-kullanımı devre dışı bırak" #: main.c:902 msgid "Do not attempt XML POST authentication" msgstr "XML POST kimlik doğrulaması girişimi yok" #: main.c:924 #, c-format msgid "Failed to allocate string\n" msgstr "Karakter dizisi ayırma başarısız\n" #: main.c:997 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Yapılandırma dosyasından satır alma başarısız: %s\n" #: main.c:1037 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "%d satırında tanınmayan seçenek: '%s'\n" #: main.c:1047 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "'%s' seçeneği %d satırında bağımsız değişken almaz\n" #: main.c:1051 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "'%s' seçeneği %d satırında bir değişken ister\n" #: main.c:1076 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "" #: main.c:1086 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "" #: main.c:1130 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "" #: main.c:1140 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "UYARI: Openconnect uygulamasının bu sürümü iconv desteği olmadan\n" " derlendi fakat \"%s\" eski karakter kümesini kullanıyor " "görünüyorsunuz.\n" " Garip davranışlara hazır olun.\n" #: main.c:1147 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "UYARI: Openconnect sürümü %s fakat\n" " libopenconnect kütüphanesi %s'dir\n" #: main.c:1157 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Vpninfo yapısı ayrılırken başarısız olundu\n" #: main.c:1215 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Yapılandırma dosyası içindeki 'yapılandırma' seçeneği kullanılamıyor\n" #: main.c:1223 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Yapılandırma dosyası '%s' açılamıyor: %s\n" #: main.c:1239 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1260 #, c-format msgid "Missing colon in resolve option\n" msgstr "" #: main.c:1265 #, c-format msgid "Failed to allocate memory\n" msgstr "" #: main.c:1349 main.c:1358 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d çok küçük\n" #: main.c:1388 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "--no-http-keepalive seçeneğinden dolayı HTTP bağlantılarının yeniden " "kullanılması devre dışı.\n" "Eğer bu yardımcı olursa, lütfen " "adresine eposta atın.\n" #: main.c:1394 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" #: main.c:1411 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Kuyruk uzunluğu olarak sıfıra izin verilmiyor; 1 kullanılacak\n" #: main.c:1425 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect sürümü %s\n" #: main.c:1463 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Geçersiz yazılım jeton kipi \"%s\"\n" #: main.c:1473 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "Geçersiz OS kimliği \"%s\"\n" #: main.c:1506 #, c-format msgid "Too many arguments on command line\n" msgstr "Komut satırında çok fazla değişken\n" #: main.c:1509 #, c-format msgid "No server specified\n" msgstr "Sunucu belirtilmemiş\n" #: main.c:1525 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "Openconnect'in bu sürümü libproxy desteği olmadan derlendi\n" #: main.c:1555 #, c-format msgid "Error opening cmd pipe\n" msgstr "cmd yolu açılırken hata\n" #: main.c:1588 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "WebVPN çerezi alma işlemi başarısız oldu\n" #: main.c:1609 #, c-format msgid "Creating SSL connection failed\n" msgstr "SSL bağlantısı oluşturma işlemi başarısız oldu\n" #: main.c:1625 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:1633 #, c-format msgid "Connected as %s%s%s, using SSL%s%s, with %s%s%s %s\n" msgstr "" #: main.c:1639 msgid "disabled" msgstr "" #: main.c:1639 msgid "in progress" msgstr "" #: main.c:1643 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "Hiçbir --script değişkeni verilmemiş; DNS ve yönlendirme yapılandırılmamış\n" #: main.c:1645 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "http://www.infradead.org/openconnect/vpnc-script.html adresine bakın\n" #: main.c:1658 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "'%s' yazmak için açılamadı: %s\n" #: main.c:1670 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Arkaplanda devam ediyor; pid %d\n" #: main.c:1687 msgid "User requested reconnect\n" msgstr "Kullanıcı yeniden bağlantı istedi\n" #: main.c:1695 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "Yeniden bağlantı sırasında çerez reddedildi; çıkılıyor.\n" #: main.c:1699 msgid "Session terminated by server; exiting.\n" msgstr "Oturum sunucu tarafından sonlandırıldı; çıkılıyor.\n" #: main.c:1703 msgid "User cancelled (SIGINT/SIGTERM); exiting.\n" msgstr "" #: main.c:1707 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "Kullanıcı oturumdan ayrıldı (SIGHUP); çıkılıyor.\n" #: main.c:1711 msgid "Unknown error; exiting.\n" msgstr "Bilinmeyen hata; çıkılıyor.\n" #: main.c:1730 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Yazmak için %s açılırken başarısız olundu: %s\n" #: main.c:1738 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "%s konumuna yapılandırma yazma başarısız: %s\n" #: main.c:1797 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "Sunucu SSL sertifikası uyuşmadı: %s\n" #: main.c:1816 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "\"%s\" VPN sunucusundan alınan sertifika doğrulanamadı.\n" "Neden: %s\n" #: main.c:1819 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" #: main.c:1820 #, c-format msgid " --servercert %s\n" msgstr "" #: main.c:1825 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Kabul etmek için '%s', iptal etmek için '%s'; görüntülemek için başka " "herhangi bir şey girin: " #: main.c:1826 main.c:1844 msgid "no" msgstr "hayır" #: main.c:1826 main.c:1832 msgid "yes" msgstr "evet" #: main.c:1853 #, c-format msgid "Server key hash: %s\n" msgstr "Sunucu anahtar özeti: %s\n" #: main.c:1887 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Kimlik doğrulama seçeneği \"%s\" birden fazla seçenek ile eşleşiyor\n" #: main.c:1890 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Kimlik doğrulama seçeneği \"%s\" kullanılabilir değil\n" #: main.c:1911 msgid "User input required in non-interactive mode\n" msgstr "Etkileşimli olmayan kipte kullanıcı girdisi istedi\n" #: main.c:2149 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Yazmak için jeton dosyası açma başarısız oldu: %s\n" #: main.c:2157 #, c-format msgid "Failed to write token: %s\n" msgstr "Jetona yazma başarısız: %s\n" #: main.c:2203 main.c:2224 #, c-format msgid "Soft token string is invalid\n" msgstr "Yazılım jeton katarı geçersiz\n" #: main.c:2206 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "~/.stokenrc dosyası açılamıyor\n" #: main.c:2209 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "OpenConnect libstoken desteğiyle derlendi\n" #: main.c:2212 #, c-format msgid "General failure in libstoken\n" msgstr "Genel libstoken eksikliği\n" #: main.c:2227 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "OpenConnect liboath desteğiyle derlendi\n" #: main.c:2230 #, c-format msgid "General failure in liboath\n" msgstr "Genel liboath eksikliği\n" #: main.c:2241 #, c-format msgid "Yubikey token not found\n" msgstr "Yubikey jetonu bulunamadı\n" #: main.c:2244 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "OpenConnect Yubikey desteğiyle derlendi\n" #: main.c:2247 #, c-format msgid "General Yubikey failure: %s\n" msgstr "Genel Yubikey hatası: %s\n" #: mainloop.c:127 #, c-format msgid "Set up tun script failed\n" msgstr "tun aygıtı ayarlama başarısız oldu\n" #: mainloop.c:134 #, c-format msgid "Set up tun device failed\n" msgstr "tun aygıtı ayarlama başarısız oldu\n" #: mainloop.c:265 msgid "Caller paused the connection\n" msgstr "Arayan bağlantısı durduruldu\n" #: mainloop.c:273 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Yapılacak iş yok; %d ms'dir bekliyor...\n" #: mainloop.c:294 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "WaitForMultipleObjects başarısız oldu: %s\n" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "InitializeSecurityContext() başarısız oldu: %lx\n" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "AcquireCredentialsHandle() başarısız oldu: %lx\n" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "ntlm_auth yardımcısı ile iletişim sırasında hata\n" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "Vekile HTTP NTLM kimlik doğrulaması deneniyor (tek oturum açma)\n" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:978 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "Vekile HTTP NTLMv%d kimlik doğrulaması deneniyor\n" #: ntlm.c:982 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "OpenConnect'in bu sürümü PSKC desteği olmadan derlendi\n" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "INITIAL jeton kodu oluşturmak için OK basın\n" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "NEXT jeton kodu oluşturmak için OK basın\n" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "Sunucu yazılım jetonunu reddediyor; manuel giriş için değiştiriliyor\n" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "OATH TOTP jeton kodu oluşturuluyor\n" #: oath.c:565 msgid "Generating OATH HOTP token code\n" msgstr "OATH HOTP jeton kodu oluşturuluyor\n" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:160 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:166 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:175 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:186 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:201 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:210 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:219 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:232 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:254 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:274 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:297 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:316 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:327 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:335 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:342 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:350 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:358 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:366 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:374 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:383 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:395 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:473 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:490 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:496 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:512 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:577 oncp.c:609 oncp.c:747 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:618 oncp.c:783 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:631 oncp.c:666 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:636 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:643 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:670 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:683 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:692 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "" #: oncp.c:698 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "" #: oncp.c:705 msgid "Failed to read continuation record length\n" msgstr "" #: oncp.c:711 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "" #: oncp.c:720 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "" #: oncp.c:726 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "" #: oncp.c:767 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:776 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:829 msgid "new incoming" msgstr "" #: oncp.c:830 msgid "new outgoing" msgstr "" #: oncp.c:855 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:864 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:868 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:874 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:969 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:972 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:991 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1053 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1058 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1073 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1134 msgid "Sent ESP enable control packet\n" msgstr "" #: oncp.c:1268 msgid "Logout successful.\n" msgstr "" #: openconnect-internal.h:1119 openconnect-internal.h:1127 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "HATA: %s() '%s' değişkeni için geçersiz UTF-8 ile çağrıldı\n" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "DTLSv1 oturumu başlatma başarısız\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "" #: openssl-dtls.c:365 msgid "Initialise DTLSv1 CTX failed\n" msgstr "DTLSv1 CTX başlatma başarısız\n" #: openssl-dtls.c:378 msgid "Set DTLS CTX version failed\n" msgstr "" #: openssl-dtls.c:395 msgid "Failed to generate DTLS key\n" msgstr "" #: openssl-dtls.c:413 msgid "Set DTLS cipher list failed\n" msgstr "DTLS şifre listesi ayarlama başarısız\n" #: openssl-dtls.c:439 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:460 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "Eski protokol sürümü 0x%x ile SSL_set_session() başarısız oldu\n" "OpenSSL'in 0.9.8m'den daha eski bir sürümünü mü kullanıyorsunuz?\n" "http://rt.openssl.org/Ticket/Display.html?id=1751 adresine bakın\n" "Bu iletiyi engellemek için --no-dtls komut satırı seçeneğini kullan\n" #: openssl-dtls.c:493 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:566 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "DTLS bağlantısı sağlandı (OpenSSL kullanarak). Ciphersuite %s.\n" #: openssl-dtls.c:603 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" "OpenSSL'iniz derlediklerinizden daha eski, bu yüzden DTLS hata alabilir!" #: openssl-dtls.c:654 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Bu muhtemelen OpenSSL'inizin bozulmasından dolayıdır\n" "http://rt.openssl.org/Ticket/Display.html?id=2984 adresine bakın\n" #: openssl-dtls.c:661 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "DTLS elsıkışması başarısız oldu: %d\n" #: openssl-esp.c:87 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:101 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:157 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:202 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:210 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:241 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:43 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "libp11 PKCS#11 bağlamı sağlama başarısız oldu:\n" #: openssl-pkcs11.c:49 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "PKCS#11 sağlayıcı modül yüklemesi başarısız (%s):\n" #: openssl-pkcs11.c:269 msgid "PIN locked\n" msgstr "PIN kilitlendi\n" #: openssl-pkcs11.c:272 msgid "PIN expired\n" msgstr "PIN süresi doldu\n" #: openssl-pkcs11.c:275 msgid "Another user already logged in\n" msgstr "Başka kullanıcı zaten giriş yapmış\n" #: openssl-pkcs11.c:279 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "PKCS#11 belirteci için bilinmeyen hata günlüğü\n" #: openssl-pkcs11.c:286 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "PKCS#11 '%s' yuvasına giriş yapıldı\n" #: openssl-pkcs11.c:300 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "PKCS#11 '%s' yuvasındaki sertifikaların sıralaması başarısız\n" #: openssl-pkcs11.c:306 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "%d yuvasında '%s' sertifika bulundu\n" #: openssl-pkcs11.c:342 openssl-pkcs11.c:565 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "PKCS#11 URI '%s' ayrıştırma başarısız oldu\n" #: openssl-pkcs11.c:349 openssl-pkcs11.c:575 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "PKCS#11 yuvaları numaralandırma işlemi başarısız\n" #: openssl-pkcs11.c:383 openssl-pkcs11.c:617 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "PKCS#11 '%s' yuvasına giriş yapılıyor\n" #: openssl-pkcs11.c:393 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "" #: openssl-pkcs11.c:401 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "X.509 sertifika içeriği libp11 ile getirilemedi\n" #: openssl-pkcs11.c:412 openssl.c:713 msgid "Failed to install certificate in OpenSSL context\n" msgstr "OpenSSL bağlamında sertifika yükleme başarısız oldu\n" #: openssl-pkcs11.c:458 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "PKCS#11 '%s' yuvasındaki anahtarların sıralaması başarısız\n" #: openssl-pkcs11.c:464 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "%d yuvasında '%s' anahtarları bulundu\n" #: openssl-pkcs11.c:497 msgid "Certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:503 openssl-pkcs11.c:526 msgid "Certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:506 msgid "Checking EC key matches cert\n" msgstr "" #: openssl-pkcs11.c:510 msgid "Failed to allocate signature buffer\n" msgstr "" #: openssl-pkcs11.c:520 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" #: openssl-pkcs11.c:638 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "" #: openssl-pkcs11.c:649 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "PKCS#11'den özel anahtar örnekleme başarısız\n" #: openssl-pkcs11.c:678 msgid "Add key from PKCS#11 failed\n" msgstr "PKCS#11'den anahtar ekleme başarısız oldu\n" #: openssl-pkcs11.c:710 openssl-pkcs11.c:716 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "OpenConnect'in bu sürümü PKCS#11 desteği olmadan derlendi\n" #: openssl.c:147 msgid "Failed to write to SSL socket\n" msgstr "SSL sokete yazma işlemi başarısız oldu\n" #: openssl.c:197 openssl.c:263 msgid "Failed to read from SSL socket\n" msgstr "SSL soketten okuma işlemi başarısız oldu\n" #: openssl.c:292 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" "SSL okuma hatası %d (sunucu muhtemelen bağlantıyı kapattı); yeniden " "bağlanılıyor.\n" #: openssl.c:317 #, c-format msgid "SSL_write failed: %d\n" msgstr "SSL_write başarısız oldu: %d\n" #: openssl.c:389 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "İşlenmeyen SSL UI istek türü %d\n" #: openssl.c:465 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "PEM parolası çok uzun (%d >= %d)\n" #: openssl.c:498 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "%s'den fazladan sertifika: '%s'\n" #: openssl.c:548 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "PKCS#12 ayrıştırma başarısız oldu (yukarıdaki hataları bakın)\n" #: openssl.c:563 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS#12 sertifika içermiyor!\n" #: openssl.c:572 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS#12 hiçbir özel anahtar içermiyor!\n" #: openssl.c:577 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:600 msgid "Can't load TPM engine.\n" msgstr "TPM motoru yüklenemiyor.\n" #: openssl.c:606 msgid "Failed to init TPM engine\n" msgstr "TPM motoru başlatma işlemi başarısız oldu\n" #: openssl.c:616 msgid "Failed to set TPM SRK password\n" msgstr "TPM SRK parolası ayarlama işlemi başarısız oldu\n" #: openssl.c:630 msgid "Failed to load TPM private key\n" msgstr "TPM özel anahtar yükleme işlemi başarısız oldu\n" #: openssl.c:636 msgid "Add key from TPM failed\n" msgstr "TPM'den anahtar ekleme başarısız oldu\n" #: openssl.c:687 openssl.c:835 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "%s sertifika dosyası açma işlemi başarısız oldu: %s\n" #: openssl.c:697 msgid "Loading certificate failed\n" msgstr "Sertifika yükleme başarısız oldu\n" #: openssl.c:735 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" "Desteklenen tüm sertifikaların işlenmesi başarısız oldu. Yine de " "deneniyor...\n" #: openssl.c:748 msgid "PEM file" msgstr "PEM dosyası" #: openssl.c:777 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Anahtar depo ögesi '%s' için BIO oluşturma başarısız oldu\n" #: openssl.c:802 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Özel anahtar yükleme başarısız oldu (hatalı anahtar parolası mı?)\n" #: openssl.c:808 msgid "Loading private key failed (see above errors)\n" msgstr "Özel anahtar yükleme başarısız oldu (yukarıdaki hatalara bakın)\n" #: openssl.c:858 msgid "Failed to load X509 certificate from keystore\n" msgstr "Anahtar deposundan X509 sertifika yükleme işlemi başarısız\n" #: openssl.c:864 msgid "Failed to use X509 certificate from keystore\n" msgstr "Anahtar deposundan X509 sertifikası kullanma başarısız oldu\n" #: openssl.c:896 msgid "Failed to use private key from keystore\n" msgstr "Anahtar deposundan özel anahtar kullanma başarısız\n" #: openssl.c:912 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "%s özel anahtarı açma başarısız: %s\n" #: openssl.c:936 openssl.c:951 openssl.c:972 openssl.c:1038 msgid "Loading private key failed\n" msgstr "Özel anahtar yükleme başarısız\n" #: openssl.c:1032 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1049 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "'%s' konumunda özel anahtar türü tanımlama başarısız\n" #: openssl.c:1203 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Eşleşmiş DNS diğer ismi '%s'\n" #: openssl.c:1210 #, c-format msgid "No match for altname '%s'\n" msgstr "Diğer isim '%s' için eşleşme yok\n" #: openssl.c:1224 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "Sertifika %d sahte uzunluklu GEN_IPADD diğer adına sahip\n" #: openssl.c:1235 openssl.c:1381 #, c-format msgid "Matched %s address '%s'\n" msgstr "%s adresi '%s' ile eşleşti\n" #: openssl.c:1242 #, c-format msgid "No match for %s address '%s'\n" msgstr "%s adresi ile '%s' için eşleşme yok\n" #: openssl.c:1284 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "URI '%s' boş olmayan yola sahip; yoksayılıyor\n" #: openssl.c:1289 #, c-format msgid "Matched URI '%s'\n" msgstr "Eşleşen URI '%s'\n" #: openssl.c:1300 #, c-format msgid "No match for URI '%s'\n" msgstr "URI '%s' için eşleşme yok\n" #: openssl.c:1315 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "Uç sertifikasında '%s' ile eşleşen diğer bir isim yok\n" #: openssl.c:1323 msgid "No subject name in peer cert!\n" msgstr "Uç sertifikada başlık adı yok!\n" #: openssl.c:1343 msgid "Failed to parse subject name in peer cert\n" msgstr "Eş sertifikada başlık adı ayrıştırma başarısız\n" #: openssl.c:1350 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Uç sertifika başlığı eşleşmiyor ('%s' != '%s')\n" #: openssl.c:1355 openssl.c:1389 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Eşleşmiş uç sertifika başlık adı '%s'\n" #: openssl.c:1451 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "cafile'dan yedek sertifika: '%s'\n" #: openssl.c:1589 msgid "Error in client cert notAfter field\n" msgstr "İstemci sertifikasında notAfter alan hatası\n" #: openssl.c:1602 msgid "" msgstr "" #: openssl.c:1655 msgid "Create TLSv1 CTX failed\n" msgstr "" #: openssl.c:1674 msgid "SSL certificate and key do not match\n" msgstr "" #: openssl.c:1719 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "'%s' CA dosyasından sertifikaları okuma başarısız\n" #: openssl.c:1752 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "CA dosyası '%s' açma başarısız oldu\n" #: openssl.c:1812 msgid "SSL connection failure\n" msgstr "SSL bağlantı hatası\n" #: openssl.c:1973 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:130 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "\"%s\" dahil kötü bölmeyi çıkar\n" #: script.c:134 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "\"%s\" hariç kötü bölmeyi çıkar\n" #: script.c:507 script.c:555 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "%s için '%s' betiği oluşturma başarısız: %s\n" #: script.c:562 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "'%s' betiğinden anormal çıkıldı (%x)\n" #: script.c:570 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Betik '%s' %d hatasını döndü\n" #: ssl.c:108 msgid "Socket connect cancelled\n" msgstr "Soket bağlantısı iptal edildi\n" #: ssl.c:217 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "" #: ssl.c:221 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "" #: ssl.c:289 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "libproxy kütüphanesinden vekil: %s://%s:%d/\n" #: ssl.c:317 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "'%s' sunucusu için getaddrinfo başarısız: %s\n" #: ssl.c:326 ssl.c:451 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" "Önceden önbellekte tutulan IP adresi kullanılarak DynDNS sunucusuna yeniden " "bağlanılıyor\n" #: ssl.c:341 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "%s%s%s vekiline bağlantı deneniyor:%s\n" #: ssl.c:342 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "%s%s%s sunucusuna bağlantı deneniyor:%s\n" #: ssl.c:362 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "" #: ssl.c:374 msgid "Failed to allocate sockaddr storage\n" msgstr "sockaddr depolama ayırma başarısız\n" #: ssl.c:416 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "" #: ssl.c:434 msgid "Forgetting non-functional previous peer address\n" msgstr "İşlevsel olmayan önceki uç adres unutuluyor\n" #: ssl.c:446 #, c-format msgid "Failed to connect to host %s\n" msgstr "%s makinesine bağlanılamadı\n" #: ssl.c:465 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "%s vekil sunucusuna yeniden bağlanılıyor\n" #: ssl.c:536 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:564 msgid "Could not obtain file system ID for passphrase\n" msgstr "Anahtar parolası için dosya sistem numarası alınamadı\n" #: ssl.c:575 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "Özel anahtar dosyası '%s' açılamadı: %s\n" #: ssl.c:603 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:694 msgid "No error" msgstr "Hata yok" #: ssl.c:695 msgid "Keystore locked" msgstr "Anahtar deposu kilitlendi" #: ssl.c:696 msgid "Keystore uninitialized" msgstr "Anahtar deposu başlatılmamış" #: ssl.c:697 msgid "System error" msgstr "Sistem hatası" #: ssl.c:698 msgid "Protocol error" msgstr "Protokol hatası" #: ssl.c:699 msgid "Permission denied" msgstr "Erişim engellendi" #: ssl.c:700 msgid "Key not found" msgstr "Anahtar bulunamadı" #: ssl.c:701 msgid "Value corrupted" msgstr "Değer bozulmuş" #: ssl.c:702 msgid "Undefined action" msgstr "Tanımlanmamış eylem" #: ssl.c:706 msgid "Wrong password" msgstr "Hatalı parola" #: ssl.c:707 msgid "Unknown error" msgstr "Bilinmeyen hata" #: ssl.c:896 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "openconnect_fopen_utf8() desteklenmeyen '%s' kipini kullandı\n" #: ssl.c:931 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:950 msgid "Open UDP socket" msgstr "" #: ssl.c:981 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:989 msgid "Bind UDP socket" msgstr "" #: ssl.c:996 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:1034 msgid "Cookie is no longer valid, ending session\n" msgstr "Çerez artık geçerli değil, oturum sonlandırılıyor\n" #: ssl.c:1038 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "%ds beklemeye geç, zaman aşımına kalan zaman %ds\n" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "SSPI belirteci çok büyük (%ld bayt)\n" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "%lu bayt SSPI jetonu gönderiliyor\n" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "Vekile SSPI kimlik doğrulama jetonu gönderme başarısız: %s\n" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "Vekilden SSPI kimlik doğrulama jetonu alma başarısız: %s\n" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "SOCKS sunucusu SSPI içerik hatasını raporladı\n" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "SOCKS sunucusundan bilinmeyen SSPI durum yanıtı (0x%02x)\n" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "%lu bayt SSPI jetonu alındı: %02x %02x %02x %02x\n" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "QueryContextAttributes() başarısız: %lx\n" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "EncryptMessage() başarısız: %lx\n" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "EncryptMessage() sonucu çok büyük (%lu + %lu + %lu)\n" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "%u bayt SSPI koruma uzlaşması gönderiliyor\n" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "Vekile SSPI koruma yanıtı gönderme başarısız: %s\n" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "Vekilden SSPI koruma yanıtı alma başarısız: %s\n" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "%d bayt SSPI koruma yanıtı alındı: %02x %02x %02x %02x\n" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "DecryptMessage başarısız oldu: %lx\n" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "Vekil sunucusundan geçersiz SSPI koruma yanıtı (%lu bayt)\n" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "Yazılım belirtecinin kilidini kaldırmak için kimlik bilgileri girin." #: stoken.c:82 msgid "Device ID:" msgstr "Aygıt Kimliği:" #: stoken.c:89 msgid "Password:" msgstr "Parola:" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "Kullanıcı yazılım jetonunu atladı.\n" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "Bütün alanların girilmesi zorunludur; tekrar deneyin.\n" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "libstoken kütüphanesinde genel hata.\n" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "Hatalı aygıt kimliği ya da parolası; tekrar deneyin.\n" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "Yazılım jetonu başarıyla başlatıldı.\n" #: stoken.c:185 msgid "Enter software token PIN." msgstr "Yazılım jeton PIN'i girin." #: stoken.c:189 msgid "PIN:" msgstr "PIN:" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "Geçersiz PIN biçemi; tekrar deneyin.\n" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "RSA belirteç kodu oluşturuluyor\n" #: tun-win32.c:76 msgid "Error accessing registry key for network adapters\n" msgstr "Ağ bağdaştırıcıları için kayıt yeri anahtarı erişim hatası\n" #: tun-win32.c:139 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "Eşleşmeyen TAP arayüzü \"%s\" yok sayılıyor\n" #: tun-win32.c:154 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "Windows-TAP bağdaştırıcısı bulunamadı. Sürücü kurulu mu?\n" #: tun-win32.c:186 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" #: tun-win32.c:200 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "" #: tun-win32.c:231 #, c-format msgid "Failed to open %s\n" msgstr "%s açılamadı\n" #: tun-win32.c:236 #, c-format msgid "Opened tun device %s\n" msgstr "Tun aygıtı %s açıldı\n" #: tun-win32.c:244 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "TAP sürücü sürümü alınamadı: %s\n" #: tun-win32.c:250 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Hata: TAP-Windows sürücüsü için v9.9 ya da daha büyük sürüm gerekli (bulunan " "sürüm %ld.%ld)\n" #: tun-win32.c:271 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "TAP IP adresleri ayarlanamadı: %s\n" #: tun-win32.c:283 tun-win32.c:406 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "TAP ortam durumu ayarlama başarısız: %s\n" #: tun-win32.c:316 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "TAP aygıtı bağlantıyı durdurdu. Bağlantı kesiliyor.\n" #: tun-win32.c:321 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "TAP aygıtından okuma başarısız: %s\n" #: tun-win32.c:335 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "TAP aygıtından okuma işlemi tamamlanamadı: %s\n" #: tun-win32.c:358 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "%ld bayt tun'a yazıldı\n" #: tun-win32.c:368 msgid "Waiting for tun write...\n" msgstr "Tun yazma için bekleniyor...\n" #: tun-win32.c:371 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "Bekleme sonrası tun için %ld bayt yazıldı\n" #: tun-win32.c:378 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "TAP aygıtına yazılamadı: %s\n" #: tun-win32.c:423 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "Tünel betiği oluşturma henüz Windows için desteklenmiyor\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Akış için /dev/tun açılamadı" #: tun.c:92 msgid "Can't push IP" msgstr "IP gönderilemiyor" #: tun.c:102 msgid "Can't set ifname" msgstr "Ifname ayarlanamıyor" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "%s açılamıyor: %s" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "%s IPv%d için boşaltılamıyor: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "/dev/tun aç" #: tun.c:145 msgid "Failed to create new tun" msgstr "Yeni tun oluşturma başarısız" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "message-discard kipine tun dosyası tanımlayıcısı koyma başarısız" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "" #: tun.c:205 msgid "open net" msgstr "open net" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Tun aygıtı açma başarısız: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "Geçersiz arayüz adı '%s'; 'utun%%d' ya da 'tun%%d' eşleşmeli\n" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "SYSPROTO_CONTROL soketi açma işlemi başarısız: %s\n" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "utun kontrol kimliği sorgulanamadı: %s\n" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "utun aygıt adı tahsis edilemedi\n" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "utun birimine bağlanılamadı: %s\n" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Geçersiz arayüz adı '%s'; 'tun%%d' ile eşleşmeli\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "'%s' açılamıyor: %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:479 #, c-format msgid "socketpair failed: %s\n" msgstr "socketpair başarısız oldu: %s\n" #: tun.c:484 #, c-format msgid "fork failed: %s\n" msgstr "çatallama başarısız oldu: %s\n" #: tun.c:488 msgid "setpgid" msgstr "setpgid" #: tun.c:493 msgid "execl" msgstr "execl" #: tun.c:498 msgid "(script)" msgstr "(betik)" #: tun.c:566 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Gelen paketi yazma başarısız: %s\n" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "%s açma başarısız: %s\n" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "fstat() %s başarısız oldu: %s\n" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "%d bayt %s için ayrılamadı\n" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "%s okunamadı: %s\n" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "\"%s\" istemcisi ham makine adı olarak işleniyor\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Mevcut dosyanın SHA1 özeti alınamadı\n" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "XML yapılandırma dosyası SHA1: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "XML yapılandırma dosyası %s ayrıştırılamadı\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Sunucu \"%s\" \"%s\" adresine sahip\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Sunucu \"%s\" \"%s\" KullanıcıGrubuna sahip\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "\"%s\" makinesi yapılandırmada listelenmiyor; ham makine adı olarak " "işleniyor\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "\"%s\" ykneo-oath uygulama programına gönderme başarısız: %s\n" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "Ykneo-oath uygulama programından \"%s\" konumuna geçersiz kısa yanıt\n" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "\"%s\" yanıt verme başarısız: %04x\n" #: yubikey.c:174 msgid "select applet command" msgstr "uygulama programı komutunu seç" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "Ykneo-oath uygulama programından tanınmayan yanıt\n" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "ykneo-oat uygulama programı v%d.%d.%d bulundu.\n" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "Yubikey OATH uygulaması için PIN gerekiyor" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "Yubikey PIN:" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "Yubikey kilit kaldırma yanıtı hesaplanamadı\n" #: yubikey.c:274 msgid "unlock command" msgstr "kilit kaldırma komutu" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "PC/SC içeriği belirlenemedi: %s\n" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "PC/SC içeriği belirlendi\n" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "Okuyucu listesi sorgulanamadı: %s\n" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "PC/SC '%s' okuyucusuna bağlanılamadı: %s\n" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "PC/SC '%s' okuyucusuna bağlanıldı\n" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "'%s' okuyucusuna özel erişim alınamadı: %s\n" #: yubikey.c:412 msgid "list keys command" msgstr "anahtar listeleme komutu" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "'%s' üzerinde %s/%s anahtar '%s' bulundu\n" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" "Yubikey '%s' üzerinde '%s' jetonu bulunamadı. Başka Yubikey aranıyor...\n" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "Sunucu Yubikey jetonunu reddediyor; elle giriş için değiştiriliyor\n" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "Yubikey jeton kodu oluşturuluyor\n" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "Yubikey'e ayrıcalıklı erişim alma başarısız: %s\n" #: yubikey.c:619 msgid "calculate command" msgstr "hesapla komutu" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "Tokencode oluşturulurken Yubikey'den gelen tanınmayan yanıt\n" openconnect-8.05/po/ChangeLog0000664000076400007640000000146212424411475017734 0ustar00dwoodhoudwoodhou000000000000002014-10-30 gettextize * Makefile.in.in: New file, from gettext-0.19.2. * Rules-quot: Upgrade to gettext-0.19.2. * POTFILES.in: New file. 2011-10-31 gettextize * Makefile.in.in: Upgrade to gettext-0.18.1. 2011-10-31 gettextize * Makefile.in.in: New file, from gettext-0.18.1. 2011-10-31 gettextize * Makefile.in.in: Upgrade to gettext-0.18.1. * boldquot.sed: New file, from gettext-0.18.1. * en@boldquot.header: New file, from gettext-0.18.1. * en@quot.header: New file, from gettext-0.18.1. * insert-header.sin: New file, from gettext-0.18.1. * quot.sed: New file, from gettext-0.18.1. * remove-potcdate.sin: New file, from gettext-0.18.1. * Rules-quot: New file, from gettext-0.18.1. openconnect-8.05/po/eu.po0000664000076400007640000032601113470043037017130 0ustar00dwoodhoudwoodhou00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2019-05-18 10:44-0700\n" "PO-Revision-Date: 2012-06-20 08:43+0000\n" "Last-Translator: David Woodhouse \n" "Language-Team: Basque (http://www.transifex.net/projects/p/meego/language/" "eu/)\n" "Language: eu\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1)\n" #: auth-globalprotect.c:108 #, c-format msgid "" "SAML login is required via %s to this URL:\n" "\t%s" msgstr "" #: auth-globalprotect.c:110 msgid "Please enter your username and password" msgstr "" #: auth-globalprotect.c:119 msgid "Username" msgstr "" #: auth-globalprotect.c:134 msgid "Password" msgstr "" #: auth-globalprotect.c:181 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:260 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:266 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:272 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:315 msgid "Please select GlobalProtect gateway." msgstr "" #: auth-globalprotect.c:325 msgid "GATEWAY:" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:379 #, c-format msgid "%d gateway servers available:\n" msgstr "" #: auth-globalprotect.c:400 #, c-format msgid " %s (%s)\n" msgstr "" #: auth-globalprotect.c:484 auth-juniper.c:730 auth.c:669 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth-globalprotect.c:584 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" #: auth-globalprotect.c:636 oncp.c:1266 msgid "Logout failed.\n" msgstr "" #: auth-globalprotect.c:638 msgid "Logout successful\n" msgstr "" #: auth-juniper.c:142 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:153 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:163 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:236 auth.c:408 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Ezin da inprimakiaren metodoa='%s', ekintza='%s' kudeatu\n" #: auth-juniper.c:267 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "" #: auth-juniper.c:337 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:359 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:397 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:411 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:418 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:425 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:432 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:439 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:445 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:452 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:481 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:650 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:667 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:675 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:713 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:716 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth.c:96 msgid "Form choice has no name\n" msgstr "Inprimakiaren aukerak ez dauka izenik\n" #: auth.c:181 #, c-format msgid "name %s not input\n" msgstr "'%s izena ez da sarrera\n" #: auth.c:188 msgid "No input type in form\n" msgstr "Ez dago sarrera motarik inprimakian\n" #: auth.c:200 msgid "No input name in form\n" msgstr "Ez dago sarreraren izenik inprimakian\n" #: auth.c:230 #, c-format msgid "Unknown input type %s in form\n" msgstr "'%s' sarrera mota ezezaguna inprimakian\n" #: auth.c:540 gpst.c:214 msgid "Empty response from server\n" msgstr "Erantzun hutsa zerbitzaritik\n" #: auth.c:551 gpst.c:289 msgid "Failed to parse server response\n" msgstr "Huts egin du zerbitzariaren erantzuna analizatzean\n" #: auth.c:553 gpst.c:291 #, c-format msgid "Response was:%s\n" msgstr "Erantzuna: %s\n" #: auth.c:575 msgid "Received when not expected.\n" msgstr "Espero ez zen jasota.\n" #: auth.c:603 msgid "XML response has no \"auth\" node\n" msgstr "XML erantzunak ez du 'auth' nodorik\n" #: auth.c:636 msgid "Asked for password but '--no-passwd' set\n" msgstr "Pasahitza eskatu da baina '--no-passwd' ezarri da\n" #: auth.c:925 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:931 cstp.c:335 http.c:916 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Huts egin du '%s'(r)ekin HTTPS konexioa irekitzean\n" #: auth.c:952 msgid "Failed to send GET request for new config\n" msgstr "Huts egin du konfigurazio berriaren GET eskaera bidaltzean\n" #: auth.c:976 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" "Deskargatutako konfigurazio-fitxategia ez dator bat dagokion SHA1-ekin\n" #: auth.c:981 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:992 auth.c:1044 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" #: auth.c:1003 mainloop.c:144 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "" #: auth.c:1010 mainloop.c:151 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "" #: auth.c:1017 mainloop.c:158 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "" #: auth.c:1024 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "" #: auth.c:1031 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Huts egin du CSD-ren '%s' karpeta nagusira aldatzean: %s\n" #: auth.c:1053 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Errorea: zerbitzariak CSD hostscan exekutatzea eskatu du.\n" "--csd-wrapper argumentu egoki bat eman beharko duzu.\n" #: auth.c:1060 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Errorea: zerbitzariak 'Cisco Secure Desktop' troianoa deskargatzeko eta " "exekutatzeko eskatu du\n" "Desgaituta dago segurtasunaren arrazoiak direla eta, agian gaitzea nahiko " "duzu.\n" #: auth.c:1067 msgid "Trying to run Linux CSD trojan script.\n" msgstr "Linux CSD troianoaren script-a exekutatzen saiatzen.\n" #: auth.c:1094 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1102 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Huts egin du CSD script-aren aldi baterako fitxategia irekitzean: %s\n" #: auth.c:1111 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Huts egin du CSD script-aren aldi baterako fitxategia idaztean: %s\n" #: auth.c:1141 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Abisua: CSD kode ez-segurua exekutatzen ari zara 'root'-aren pribilegioekin\n" "\t Erabili komando-lerroko '--csd-user' aukera\n" #: auth.c:1189 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Huts gin du '%s' CSD script-a exekutatzean\n" #: auth.c:1221 msgid "Unknown response from server\n" msgstr "Zerbitzariaren erantzuna ezezaguna\n" #: auth.c:1342 msgid "Server requested SSL client certificate after one was provided\n" msgstr "Zerbitzariak SSL bezeroaren ziurtagiria eskatu du bat eman ondoren\n" #: auth.c:1346 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" "Zerbitzariak SSL bezeroaren ziurtagiria eskatu du: bat ere ez dago " "konfiguratuta\n" #: auth.c:1362 msgid "XML POST enabled\n" msgstr "XML POST gaituta\n" #: auth.c:1405 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "'%s' freskatzen segundo 1en ondoren...\n" #: compat.c:207 #, c-format msgid "(error 0x%lx)" msgstr "" #: compat.c:210 msgid "(Error while describing error!)" msgstr "" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "Errorea: ezin dira socket-ak hasieratu\n" #: cstp.c:112 gpst.c:341 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO %d rcv_mss, %d snd_mss, %d advmss, %d pmtu\n" #: cstp.c:134 gpst.c:360 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG: %d\n" #: cstp.c:281 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:312 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:328 http.c:384 msgid "Error fetching HTTPS response\n" msgstr "Errorea HTTPS erantzuna jasotzean\n" #: cstp.c:355 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "VPN zerbitzua ez dago erabilgarri. Zergatia: %s\n" #: cstp.c:360 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "HTTP CONNECT erantzun desegokia jasota: %s\n" #: cstp.c:367 #, c-format msgid "Got CONNECT response: %s\n" msgstr "CONNECT erantzuna jasota: %s\n" #: cstp.c:396 cstp.c:404 msgid "No memory for options\n" msgstr "Ez dago memoriarik aukerentzako\n" #: cstp.c:413 http.c:444 msgid "" msgstr "" #: cstp.c:433 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "'X-DTLS-Session-ID'-ak ez ditu 64 karaktere. Hau du: \"%s\"\n" #: cstp.c:450 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "" #: cstp.c:468 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:510 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "%s CSTP-Content-Encoding ezezaguna\n" #: cstp.c:585 msgid "No MTU received. Aborting\n" msgstr "Ez da MTU jaso. Abortatzen\n" #: cstp.c:593 gpst.c:641 msgid "No IP address received. Aborting\n" msgstr "Ez da IP helbiderik jaso. Abortatzen\n" #: cstp.c:599 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: cstp.c:605 gpst.c:648 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Birkonektatzeak IP helbide zahar desberdina eman du (%s != %s)\n" #: cstp.c:614 gpst.c:657 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" "Birkonektatzeak IP sareko maskara zahar desberdina eman du (%s != %s)\n" #: cstp.c:622 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Birkonektatzeak IPv6 helbide desberdina eman du (%s != %s)\n" #: cstp.c:630 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Birkonektatzeak IPv6 sareko maskara desberdina eman du (%s != %s)\n" #: cstp.c:638 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP konektatuta. %d DPD, %d Keepalive\n" #: cstp.c:640 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "" #: cstp.c:702 msgid "Compression setup failed\n" msgstr "Huts egin du konpresioa konfiguratzean\n" #: cstp.c:719 msgid "Allocation of deflate buffer failed\n" msgstr "Huts egin du bufferraren hustuketa esleitzean\n" #: cstp.c:781 msgid "inflate failed\n" msgstr "huts egin du puztean\n" #: cstp.c:804 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:817 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:824 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:829 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:849 #, c-format msgid "deflate failed %d\n" msgstr "Huts egin du %d hustean\n" #: cstp.c:922 dtls.c:281 dtls.c:740 esp.c:129 gpst.c:1042 mainloop.c:69 #: oncp.c:914 msgid "Allocation failed\n" msgstr "" #: cstp.c:933 gpst.c:1055 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: cstp.c:946 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" "Paketearen ustekabeko luzera. 'SSL_read'-ek %d itzuli du, baina paketea hau " "da:\n" #: cstp.c:960 msgid "Got CSTP DPD request\n" msgstr "CSTP DPD eskaera jasota\n" #: cstp.c:966 msgid "Got CSTP DPD response\n" msgstr "CSTP DPD erantzuna jasota\n" #: cstp.c:971 msgid "Got CSTP Keepalive\n" msgstr "CSTP Keepalive jasota\n" #: cstp.c:976 oncp.c:1003 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Konprimitu gabeko datuen paketea (%d byte) jasota\n" #: cstp.c:993 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Zerbitzariaren deskonexioa jasota: %02x '%s'\n" #: cstp.c:996 msgid "Received server disconnect\n" msgstr "" #: cstp.c:1004 msgid "Compressed packet received in !deflate mode\n" msgstr "Konprimitutako paketea !hustu (!deflate) moduan jasota\n" #: cstp.c:1013 msgid "received server terminate packet\n" msgstr "zerbitzariaren amaierako paketea jasota\n" #: cstp.c:1020 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Pakete ezezaguna: %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1063 gpst.c:1142 oncp.c:1121 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL-ek byte gutxiegi idatzita. %d eskatu ziren, %d bidalita\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1091 oncp.c:1155 msgid "CSTP rekey due\n" msgstr "CSTP gakoa birnegoziatzeko zain\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1098 oncp.c:1162 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Huts egin du berriro negoziatzean. Tunel berriarekin saiatzen\n" #: cstp.c:1109 oncp.c:1173 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "CSTPren DPDak hildako parekoa atzeman du\n" #: cstp.c:1113 gpst.c:1166 oncp.c:1091 oncp.c:1177 msgid "Reconnect failed\n" msgstr "Huts egin du birkonektatzean\n" #: cstp.c:1129 oncp.c:1193 msgid "Send CSTP DPD\n" msgstr "Bidali CSTP DPD\n" #: cstp.c:1141 oncp.c:1204 msgid "Send CSTP Keepalive\n" msgstr "Bidali CSTP Keepalive\n" #: cstp.c:1166 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1177 oncp.c:1238 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Konprimitu gabeko datuen paketea (%d byte) bidaltzen\n" #: cstp.c:1216 #, c-format msgid "Send BYE packet: %s\n" msgstr "Bidali BYE paketea: %s\n" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:113 msgid "DTLS connection attempted with an existing fd\n" msgstr "DTLS konexioaren saiakera existitzen den deskriptore batekin\n" #: dtls.c:119 msgid "No DTLS address\n" msgstr "DTLS helbiderik gabe\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:126 msgid "Server offered no DTLS cipher option\n" msgstr "Zerbitzariak ez du DTLS zifraketaren aukerarik eskaini\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:133 msgid "No DTLS when connected via proxy\n" msgstr "DTLSrik gabe proxy bidez konektatzean\n" #: dtls.c:200 #, c-format msgid "DTLS option %s : %s\n" msgstr "DTLSren '%s : %s' aukera\n" #: dtls.c:239 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS hasieratuta. %d DPD, %d Keepalive\n" #: dtls.c:265 msgid "Attempt new DTLS connection\n" msgstr "DTLS konexio berriaren saiakera\n" #: dtls.c:292 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "DTLSren 0x%02x paketea (%d byte) jasota\n" #: dtls.c:306 msgid "Got DTLS DPD request\n" msgstr "DTLS DPD eskaera lortuta\n" #: dtls.c:312 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Huts egin du DPD erantzuna bidaltzean. Deskonektatzea espero da\n" #: dtls.c:316 msgid "Got DTLS DPD response\n" msgstr "DTLS DPD erantzuna jasota\n" #: dtls.c:320 msgid "Got DTLS Keepalive\n" msgstr "DTLS Keepalive jasota\n" #: dtls.c:326 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:334 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "%02x DTLS pakete mota ezezaguna, %d luzera\n" #: dtls.c:356 msgid "DTLS rekey due\n" msgstr "DTLSren gakoa birnegoziatzeko zain\n" #: dtls.c:363 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "Huts egin du DTLS berriro negoziatzean. Birkonektatzen.\n" #: dtls.c:372 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "DTLSren DPDak hildako parekoa atzeman du\n" #: dtls.c:378 msgid "Send DTLS DPD\n" msgstr "Bidali DTLS DPD\n" #: dtls.c:383 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Huts egin du DPD eskaera bidaltzean. Deskonektatzea espero da\n" #: dtls.c:396 msgid "Send DTLS Keepalive\n" msgstr "Bidali DTLS Keepalive\n" #: dtls.c:401 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Huts egin du Keepalive eskaera bidaltzean. Deskonektatzea espero da\n" #: dtls.c:432 tun.c:541 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Pakete ezezaguna (%d luzerakoa) jasota: %02x %02x %02x %02x...\n" #: dtls.c:439 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "" #: dtls.c:443 msgid "UDP setsockopt" msgstr "" #: dtls.c:474 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "DTLSek idazketaren %d errorea jaso du. SSLra itzultzen\n" #: dtls.c:488 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "DTLSek idazketaren errorea jaso du: %s. SSLra itzultzen\n" #: dtls.c:503 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "DTLS paketea bidalita (%d byte). DTLSren bidalketak %d itzuli du\n" #: dtls.c:531 #, c-format msgid "Initiating IPv4 MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:551 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" #: dtls.c:555 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" #: dtls.c:564 #, c-format msgid "Sending MTU DPD probe (%u bytes, min=%u, max=%u)\n" msgstr "" #: dtls.c:568 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "" #: dtls.c:582 dtls.c:690 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" #: dtls.c:594 #, c-format msgid "Timeout while waiting for DPD response; trying %d\n" msgstr "" #: dtls.c:601 dtls.c:682 msgid "Timeout while waiting for DPD response; resending probe.\n" msgstr "" #: dtls.c:608 dtls.c:709 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "" #: dtls.c:613 #, c-format msgid "Received MTU DPD probe (%u bytes of %u)\n" msgstr "" #: dtls.c:651 msgid "Initiating IPv6 MTU detection\n" msgstr "" #: dtls.c:666 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:670 #, c-format msgid "Failed to send DPD request (%d)\n" msgstr "" #: dtls.c:695 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:759 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "" #: dtls.c:762 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" #: esp.c:63 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:66 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:69 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:87 msgid "incoming" msgstr "" #: esp.c:88 msgid "outgoing" msgstr "" #: esp.c:90 esp.c:113 msgid "Send ESP probes\n" msgstr "" #: esp.c:138 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:155 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:161 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:174 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:181 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:193 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:202 msgid "ESP session established with server\n" msgstr "" #: esp.c:213 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:219 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:225 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:239 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:243 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:251 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:258 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:278 #, c-format msgid "Failed to encrypt ESP packet: %d\n" msgstr "" #: esp.c:294 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:301 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:307 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-dtls.c:190 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "" #: gnutls-dtls.c:198 msgid "Failed to generate DTLS priority string\n" msgstr "" #: gnutls-dtls.c:207 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "" #: gnutls-dtls.c:216 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "" #: gnutls-dtls.c:240 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "" #: gnutls-dtls.c:253 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:267 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:275 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "" #: gnutls-dtls.c:309 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "'%s' CipherSuite eskaeraren DTLS parametro ezezagunak\n" #: gnutls-dtls.c:324 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "Huts egin du DTLSren lehentasuna ezartzean: %s\n" #: gnutls-dtls.c:345 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Huts egin du DTLS saioaren parametroak ezartzean: %s\n" #: gnutls-dtls.c:373 openssl-dtls.c:534 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "" #: gnutls-dtls.c:382 openssl-dtls.c:545 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "" #: gnutls-dtls.c:392 openssl-dtls.c:554 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" #: gnutls-dtls.c:405 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Huts egin du DTLS MUT ezartzean: %s\n" #: gnutls-dtls.c:416 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "DTLS konexioa ezarrita (GnuTLS erabiliz). '%s' Ciphersuite\n" #: gnutls-dtls.c:422 openssl-dtls.c:572 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "" #: gnutls-dtls.c:437 openssl-dtls.c:653 openssl-dtls.c:657 msgid "DTLS handshake timed out\n" msgstr "DTLS negoziazioaren denbora iraungituta\n" #: gnutls-dtls.c:440 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "Huts egin du DTLS negoziatzean: %s\n" #: gnutls-dtls.c:444 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:121 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:132 msgid "Failed to generate ESP IV\n" msgstr "" #: gnutls-esp.c:161 gnutls-esp.c:217 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:168 openssl-esp.c:192 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:180 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:209 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:95 openssl.c:154 msgid "SSL write cancelled\n" msgstr "SSL-ren idazketa bertan behera utzi da\n" #: gnutls.c:99 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "Huts egin du SSL socket-ean idaztean: %s\n" #: gnutls.c:145 gnutls.c:237 openssl.c:204 openssl.c:271 msgid "SSL read cancelled\n" msgstr "SSL-ren irakurketa bertan behera utzi da\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:158 msgid "SSL socket closed uncleanly\n" msgstr "SSL socket-a ez da ongi itxi\n" #: gnutls.c:168 gnutls.c:246 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "Huts egin du SSL socket-etik irakurtzean: %s\n" #: gnutls.c:266 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "Errorea SSL irakurketan: %s. Birkonektatzen.\n" #: gnutls.c:302 #, c-format msgid "SSL send failed: %s\n" msgstr "Huts egin du SSL bidaltzean: %s\n" #: gnutls.c:315 msgid "Could not extract expiration time of certificate\n" msgstr "Ezin izan da ziurtagiritik iraungitze-data erauzi\n" #: gnutls.c:320 openssl.c:1592 msgid "Client certificate has expired at" msgstr "Bezeroaren ziurtagiria iraungituta: " #: gnutls.c:322 openssl.c:1597 msgid "Client certificate expires soon at" msgstr "Bezeroaren ziurtagiria iraungitze-data laster: " #: gnutls.c:371 openssl.c:771 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Huts egin du '%s' elementua gako-biltegitik kargatzean: %s\n" #: gnutls.c:384 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Huts egin du '%s' gako-/ziurtagiri-fitxategia ireki: %s\n" #: gnutls.c:391 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" "Huts egin du '%s' gako-/ziurtagiri-fitxategiaren estatistikak lantzean: %s\n" #: gnutls.c:400 msgid "Failed to allocate certificate buffer\n" msgstr "Huts egin du ziurtagiriaren bufferra esleitzean\n" #: gnutls.c:408 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Huts egin du ziurtagiria memorian irakurtzean: %s\n" #: gnutls.c:439 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Huts egin du PKCS#12 datuen egitura konfiguratzean: %s\n" #: gnutls.c:462 openssl.c:534 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Huts egin du PKCS#12 ziurtagiri-fitxategia desenkriptatzean\n" #: gnutls.c:466 openssl.c:537 msgid "Enter PKCS#12 pass phrase:" msgstr "Sartu PKCS#12 pasaesaldia:" #: gnutls.c:489 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Huts egin du PKCS#12 fitxategia prozesatzean: %s\n" #: gnutls.c:501 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Huts egin du PKCS#12 ziurtagiria kargatzean: %s\n" #: gnutls.c:584 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Huts egin du X509 ziurtagiria inportatzean: %s\n" #: gnutls.c:594 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Huts egin du PKCS#11 ziurtagiria ezartzean: %s\n" #: gnutls.c:628 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Ezin izan da MD5 hash-a hasieratu: %s\n" #: gnutls.c:638 #, c-format msgid "MD5 hash error: %s\n" msgstr "MD5 hash-aren errorea: %s\n" #: gnutls.c:696 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "Enkriptatutako gakoaren OpenSSL 'DEK-Info:' goiburua falta da\n" #: gnutls.c:703 msgid "Cannot determine PEM encryption type\n" msgstr "Ezin da PEM enkriptatze mota zehaztu\n" #: gnutls.c:716 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Onartu gabeko PEM enkriptatze mota: %s\n" #: gnutls.c:741 gnutls.c:754 msgid "Invalid salt in encrypted PEM file\n" msgstr "Baliogabeko hazia enkriptatutako PEM fitxategian\n" #: gnutls.c:778 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Errorea enkriptatutako PEM fitxategia base64 moduan deskodetzean: %s\n" #: gnutls.c:786 msgid "Encrypted PEM file too short\n" msgstr "Enkriptatutako PEM fitxategia laburregia\n" #: gnutls.c:814 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" "Huts egin du desenkriptatutako PEM fitxategia zifratzeko hasieratzean: %s\n" #: gnutls.c:825 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Huts egin du PEM gakoa desenkriptatzean: %s\n" #: gnutls.c:877 msgid "Decrypting PEM key failed\n" msgstr "Huts egin du PEM gakoa desenkriptatzean\n" #: gnutls.c:881 gnutls.c:1405 openssl.c:458 msgid "Enter PEM pass phrase:" msgstr "Sartu PEM pasaesaldia:" #: gnutls.c:942 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:949 msgid "This binary built without PKCS#11 support\n" msgstr "Bitar hau PKCS#11 euskarririk gabe eraikita dago\n" #: gnutls.c:993 openssl-pkcs11.c:407 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "'%s' PKCS#11 ziurtagiria erabiltzen\n" #: gnutls.c:994 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1012 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Errorea PKCS#11-tik ziurtagiria kargatzean: %s\n" #: gnutls.c:1013 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1024 openssl.c:827 #, c-format msgid "Using certificate file %s\n" msgstr "'%s' ziurtagiri-fitxategia erabiltzen\n" #: gnutls.c:1052 msgid "PKCS#11 file contained no certificate\n" msgstr "PKCS#11 fitxategiak ez dauka ziurtagiririk\n" #: gnutls.c:1078 msgid "No certificate found in file" msgstr "Ez da ziurtagiririk aurkitu fitxategian" #: gnutls.c:1083 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Huts egin du ziurtagiria kargatzean: %s\n" #: gnutls.c:1098 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1103 gnutls.c:1271 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Errorea gako pribatuaren egitura hasieratzean: %s\n" #: gnutls.c:1114 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1125 gnutls.c:1219 gnutls.c:1247 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1130 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Errorea PKCS#12 gako-egitura hasieratzean: %s\n" #: gnutls.c:1259 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Errorea '%s' PKCS#11 URLa inportatzean: %s\n" #: gnutls.c:1266 openssl-pkcs11.c:644 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "'%s' PKCS#11 gakoa erabiltzen\n" #: gnutls.c:1281 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "Errorea PKCS#11 gakoa gako pribatuaren egiturara inportatzean: %s\n" #: gnutls.c:1299 #, c-format msgid "Using private key file %s\n" msgstr "'%s' gako pribatuaren fitxategia erabiltzen\n" #: gnutls.c:1310 openssl.c:651 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Openconnect-en bertsio hau 'TPM' euskarririk gabe konpilatuta\n" #: gnutls.c:1326 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1347 msgid "Failed to interpret PEM file\n" msgstr "Huts egin du PEM fitxategia interpretatzean\n" #: gnutls.c:1366 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Huts egin du PKCS#1 gako pribatua kargatzean: %s\n" #: gnutls.c:1379 gnutls.c:1393 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Huts egin du gako pribatua PKCS#8 gisa kargatzean: %s\n" #: gnutls.c:1401 gnutls.c:1434 openssl.c:1002 openssl.c:1012 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Huts egin du PKCS#8 ziurtagiriaren fitxategia desenkriptatzean\n" #: gnutls.c:1426 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Huts egin du '%s' gako pribatuaren mota zehaztean\n" #: gnutls.c:1438 openssl.c:1008 msgid "Enter PKCS#8 pass phrase:" msgstr "Sartu PKCS#8 pasaesaldia:" #: gnutls.c:1454 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Huts egin du ID gakoa eskuratzean: %s\n" #: gnutls.c:1499 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Errorea probako datuak gako pribatuarekin sinatzean: %s\n" #: gnutls.c:1514 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Errorea ziurtagiriaren aurka sinadura egiaztatzean: %s\n" #: gnutls.c:1539 msgid "No SSL certificate found to match private key\n" msgstr "Ez da gako pribatuarekin bat datorren SSL ziurtagiririk aurkitu\n" #: gnutls.c:1551 openssl.c:560 openssl.c:709 #, c-format msgid "Using client certificate '%s'\n" msgstr "'%s' ziurtagiriaren bezeroa erabiltzen\n" #: gnutls.c:1558 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "Huts egin du ziurtagiriaren errebokazio-zerrenda ezartzean: %s\n" #: gnutls.c:1579 gnutls.c:1589 msgid "Failed to allocate memory for certificate\n" msgstr "Huts egin du memoria esleitzean ziurtagiriarentzako\n" #: gnutls.c:1625 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" "Abisua: GNUTLS-ek ziurtagirien okerreko jaulkitzailea itzuli du. " "Autentifikazioak huts egin lezake\n" #: gnutls.c:1648 msgid "Got no issuer from PKCS#11\n" msgstr "" #: gnutls.c:1653 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "'%s' ZE hau lortu da PKCS#11-tik\n" #: gnutls.c:1679 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Huts egin du ziurtagiriak onartzeko memoria esleitzean\n" #: gnutls.c:1702 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "'%s' ZE euskarria gehitzen\n" #: gnutls.c:1724 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1748 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Huts egin du ziurtagiriaren ezarpenak: %s\n" #: gnutls.c:1941 msgid "Server presented no certificate\n" msgstr "Zerbitzariak ez du ziurtagiririk aurkeztu\n" #: gnutls.c:1949 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" #: gnutls.c:1954 openssl.c:1515 msgid "Server presented different cert on rehandshake\n" msgstr "" #: gnutls.c:1959 openssl.c:1518 msgid "Server presented identical cert on rehandshake\n" msgstr "" #: gnutls.c:1965 msgid "Error initialising X509 cert structure\n" msgstr "Errorea X509 ziurtagiriaren egitura hasieratzean\n" #: gnutls.c:1971 msgid "Error importing server's cert\n" msgstr "Errorea zerbitzariaren ziurtagiria inportatzean\n" #: gnutls.c:1980 main.c:1794 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:1985 msgid "Error checking server cert status\n" msgstr "Errorea zerbitzariaren ziurtagiriaren egoera aztertzean\n" #: gnutls.c:1990 msgid "certificate revoked" msgstr "ziurtagiria errebokatuta" #: gnutls.c:1992 msgid "signer not found" msgstr "ez da sinatzailerik aurkitu" #: gnutls.c:1994 msgid "signer not a CA certificate" msgstr "sinatzailea ez da ZE-ren ziurtagiri bat" #: gnutls.c:1996 msgid "insecure algorithm" msgstr "algoritmo ez-segurua" #: gnutls.c:1998 msgid "certificate not yet activated" msgstr "ziurtagiria ez da oraindik aktibatu" #: gnutls.c:2000 msgid "certificate expired" msgstr "ziurtagiria iraungituta" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2005 msgid "signature verification failed" msgstr "huts egin du sinadura egiaztatzean" #: gnutls.c:2054 openssl.c:1399 openssl.c:1551 msgid "certificate does not match hostname" msgstr "ziurtagiria ez dator bat ostalari-izenarekin" #: gnutls.c:2059 openssl.c:1398 openssl.c:1557 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Huts egin du zerbitzariaren ziurtagiria egiaztatzean: %s\n" #: gnutls.c:2126 msgid "Failed to allocate memory for cafile certs\n" msgstr "Huts egin du cafile ziurtagirientzako memoria esleitzean\n" #: gnutls.c:2147 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Huts egin du cafile-tik ziurtagiriak irakurtzean: %s\n" #: gnutls.c:2163 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Huts egin du '%s' ZE fitxategia irekitzean: %s\n" #: gnutls.c:2176 openssl.c:1679 msgid "Loading certificate failed. Aborting.\n" msgstr "Huts egin du ziurtagiria kargatzean. Bertan behera uzten.\n" #: gnutls.c:2237 #, c-format msgid "Failed to set TLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2249 openssl.c:1796 #, c-format msgid "SSL negotiation with %s\n" msgstr "SSL '%s'(r)ekin negoziatzen\n" #: gnutls.c:2296 openssl.c:1822 msgid "SSL connection cancelled\n" msgstr "SSL konexioa bertan behera utzita\n" #: gnutls.c:2303 #, c-format msgid "SSL connection failure: %s\n" msgstr "SSL konexioaren hutsegitea: %s\n" #: gnutls.c:2312 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "GnuTLS-ren itzulera ez-larria negoziazioan: %s\n" #: gnutls.c:2318 openssl.c:1839 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "HTTPSra konektatuta '%s'(e)n\n" #: gnutls.c:2321 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "SSL berriro negoziatuta %s(e)n\n" #: gnutls.c:2483 openssl-pkcs11.c:199 #, c-format msgid "PIN required for %s" msgstr "'%s'(r)en PINa behar da" #: gnutls.c:2487 openssl-pkcs11.c:202 msgid "Wrong PIN" msgstr "Okerreko PINa" #: gnutls.c:2490 msgid "This is the final try before locking!" msgstr "Azken saiakera da blokeatu aurretik." #: gnutls.c:2492 msgid "Only a few tries left before locking!" msgstr "Saiakera gutxi batzuk falta dira blokeatu aurretik." #: gnutls.c:2497 openssl-pkcs11.c:206 msgid "Enter PIN:" msgstr "Sartu PINa:" #: gnutls.c:2583 openssl.c:1967 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2592 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:54 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "TPM seinalearen funtzioari deituta %d byte-ntzako.\n" #: gnutls_tpm.c:61 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Huts egin du TPM hash-aren objektua sortzean: %s\n" #: gnutls_tpm.c:68 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Huts egin du TPM-ren hash objektuan balioa ezartzean: %s\n" #: gnutls_tpm.c:78 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "Huts egin du TPM hash-a sinatzean: %s\n" #: gnutls_tpm.c:100 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Errorea TSS gakoaren blob-a deskodetzean: %s\n" #: gnutls_tpm.c:108 gnutls_tpm.c:119 gnutls_tpm.c:132 msgid "Error in TSS key blob\n" msgstr "Errorea TSS gakoaren blob-ean\n" #: gnutls_tpm.c:139 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Huts egin du TPM-ren testuingurua sortzean: %s\n" #: gnutls_tpm.c:146 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Huts egin du TPM testuingurua konektatzean: %s\n" #: gnutls_tpm.c:154 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Huts egin du TPM SRK gakoa kargatzean: %s\n" #: gnutls_tpm.c:161 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Huts egin du TPM SRK arauen objektua kargatzean: %s\n" #: gnutls_tpm.c:182 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Huts egin du TPM-ren PINa ezartzean: %s\n" #: gnutls_tpm.c:198 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Huts egin du TPM gakoren blob-a kargatzean: %s\n" #: gnutls_tpm.c:205 msgid "Enter TPM SRK PIN:" msgstr "Sartu TPM SRK-ren PINa:" #: gnutls_tpm.c:226 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Huts egin du gakoaren arauen objektua sortzean: %s\n" #: gnutls_tpm.c:234 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Huts egin du araua gakoari esleitzean: %s\n" #: gnutls_tpm.c:240 msgid "Enter TPM key PIN:" msgstr "Sartu TPM-ren gakoaren PINa:" #: gnutls_tpm.c:251 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Huts egin du gakoaren PINa ezartzean: %s\n" #: gnutls_tpm2.c:92 gnutls_tpm2_esys.c:474 gnutls_tpm2_ibm.c:419 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:198 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:208 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:217 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:225 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:231 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:249 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:270 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:275 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:384 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2_esys.c:173 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:189 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:190 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:191 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:192 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:196 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:201 gnutls_tpm2_ibm.c:262 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:209 gnutls_tpm2_esys.c:303 gnutls_tpm2_esys.c:374 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:221 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:226 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:245 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:250 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:258 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:261 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:274 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:295 gnutls_tpm2_ibm.c:278 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:309 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:317 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:323 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:333 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:363 gnutls_tpm2_ibm.c:363 gnutls_tpm2_ibm.c:450 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:395 #, c-format msgid "TPM2 RSA sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:414 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:420 gnutls_tpm2_esys.c:500 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:464 gnutls_tpm2_ibm.c:405 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:494 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:532 gnutls_tpm2_ibm.c:485 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:546 gnutls_tpm2_ibm.c:502 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:555 gnutls_tpm2_ibm.c:512 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:569 gnutls_tpm2_ibm.c:523 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:54 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:226 #, c-format msgid "%s\n" msgstr "" #: gpst.c:229 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:417 #, c-format msgid "Unknown ESP %s algorithm: %s" msgstr "" #: gpst.c:477 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: gpst.c:483 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:487 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:498 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:551 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:560 oncp.c:835 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: gpst.c:627 msgid "ESP disabled" msgstr "" #: gpst.c:629 msgid "No ESP keys received" msgstr "" #: gpst.c:631 msgid "ESP support not available in this build" msgstr "" #: gpst.c:635 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:680 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:702 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:711 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:719 #, c-format msgid "Got inappropriate HTTP GET-tunnel response: %.*s\n" msgstr "" #: gpst.c:861 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" "VPN connectivity may be disabled or limited without HIP report submission.\n" "You need to provide a --csd-wrapper argument with the HIP report submission " "script.\n" msgstr "" #: gpst.c:871 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:900 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:905 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:911 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:913 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:942 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:966 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:972 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:999 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1015 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1051 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1072 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1082 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1086 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1092 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: gpst.c:1101 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1109 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1157 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1162 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1182 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1202 #, c-format msgid "Sending data packet of %d bytes\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1165 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "" #: http.c:319 msgid "No memory for allocating cookies\n" msgstr "Ez dago memoriarik cookie-ak esleitzeko\n" #: http.c:394 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Huts egin du '%s' HTTParen erantzuna analizatzean\n" #: http.c:400 #, c-format msgid "Got HTTP response: %s\n" msgstr "HTTParen erantzun hau lortu da: %s\n" #: http.c:408 msgid "Error processing HTTP response\n" msgstr "Errorea HTTParen erantzuna prozesatzean\n" #: http.c:415 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "HTTParen erantzunaren '%s' lerroari ez ikusi egiten\n" #: http.c:435 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Baliogabeko cookie-a eskaini da: %s\n" #: http.c:454 msgid "SSL certificate authentication failed\n" msgstr "Huts egin du SSL ziurtagiria autentifikatzean\n" #: http.c:485 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Erantzunaren gorputzak tamaina negatiboa du (%d)\n" #: http.c:496 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Transferentziaren kodeketa ezezaguna: %s\n" #. Now the body, if there is one #: http.c:515 #, c-format msgid "HTTP body %s (%d)\n" msgstr "'%s' HTTParen gorputza (%d)\n" #: http.c:529 http.c:556 msgid "Error reading HTTP response body\n" msgstr "Errorea HTTParen erantzunaren gorputza irakurtzean\n" #: http.c:542 msgid "Error fetching chunk header\n" msgstr "Errorea zatiaren goiburua eskuratzean\n" #: http.c:566 msgid "Error fetching HTTP response body\n" msgstr "Errorea HTTParen erantzunaren gorputza eskuratzean\n" #: http.c:569 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "Errorea deskodeketaren zatian. '' espero zen, bana hau lortu da: '%s'" #: http.c:581 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Ezin da HTTP 1.0-ren gorputza eskuratu konexioa itxi gabe\n" #: http.c:708 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Huts egin du birbideratutako '%s' URLa analizatzean: %s\n" #: http.c:732 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Ezin da https ez den '%s' URLaren birbideraketara jarraipenik egin\n" #: http.c:760 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "" "Huts egin du birbideraketa erlatiboaren bide-izen berria esleitzean: %s\n" #: http.c:973 oncp.c:591 #, c-format msgid "Unexpected %d result from server\n" msgstr "Ustekabeko %d emaitz zerbitzaritik\n" #: http.c:1021 msgid "request granted" msgstr "eskaera baimenduta" #: http.c:1022 msgid "general failure" msgstr "hutsegite orokorra" #: http.c:1023 msgid "connection not allowed by ruleset" msgstr "arau-multzoak ez du konexioa baimendu" #: http.c:1024 msgid "network unreachable" msgstr "sarea atziezina" #: http.c:1025 msgid "host unreachable" msgstr "ostalaria atziezina" #: http.c:1026 msgid "connection refused by destination host" msgstr "helburuko ostalariak konexioa ukatu du" #: http.c:1027 msgid "TTL expired" msgstr "TTL iraungituta" #: http.c:1028 msgid "command not supported / protocol error" msgstr "komandoa ez dago onartuta / protokoloaren errorea" #: http.c:1029 msgid "address type not supported" msgstr "helbide mota ez dago onartuta" #: http.c:1039 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1047 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1062 http.c:1118 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Errorea autentifikazioaren eskaera SOCKS proxy-an idaztean: %s\n" #: http.c:1070 http.c:1125 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Errorea autentifikazioaren erantzuna SOCKS proxy-tik irakurtzean: %s\n" #: http.c:1077 http.c:1131 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Ustekabeko autentifikazioaren eskaera SOCKS proxy-tik: %02x %02x\n" #: http.c:1083 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1087 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1143 http.c:1150 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1156 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1163 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1170 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1176 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "SOCKS proxy-aren '%s:%d'(r)ekiko konexioa eskatzen\n" #: http.c:1191 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Errorea konexioaren eskaera SOCKS proxyan idaztean: %s\n" #: http.c:1199 http.c:1241 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Errorea SOCKS proxytik konexioaren erantzuna irakurtzean: %s\n" #: http.c:1205 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Ustekabeko SOCKS proxyaren konexioaren erantzuna: %02x %02x...\n" #: http.c:1213 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "SOCKS proxy-aren '%02x' errorea: %s\n" #: http.c:1217 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "SOCKS proxy-aren '%02x' errorea\n" #: http.c:1234 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Ustekabeko %02x helbide mota SOCKS konexioaren erantzunean\n" #: http.c:1257 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "HTTP proxy konexioa '%s:%d'(r)i eskatzen\n" #: http.c:1292 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Huts egin du proxy eskaera bidaltzean: %s\n" #: http.c:1315 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1334 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "'%s' proxy mota ezezaguna\n" #: http.c:1383 msgid "Only http or socks(5) proxies supported\n" msgstr "Soilik HTTP edo socks(5) proxyak onartzen dira\n" #: library.c:112 msgid "Cisco AnyConnect or openconnect" msgstr "" #: library.c:113 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "" #: library.c:129 msgid "Juniper Network Connect" msgstr "" #: library.c:130 msgid "Compatible with Juniper Network Connect / Pulse Secure SSL VPN" msgstr "" #: library.c:148 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:149 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:211 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:233 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "SSL liburutegiarekin eraikita, Cisco-ren DTLS euskarririk gabe.\n" #: library.c:656 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Huts egin du '%s' zerbitzariaren URLa analizatzean\n" #: library.c:662 msgid "Only https:// permitted for server URL\n" msgstr "Soilik 'https://' baimentzen da zerbitzariaren URLan\n" #: library.c:1056 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "" #: library.c:1085 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" #: library.c:1146 msgid "No form handler; cannot authenticate.\n" msgstr "Ez dago inprimakiaren kudeatzailerik: ezin da autentifikatu.\n" #: main.c:340 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:353 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:388 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:401 #, c-format msgid "fgetws() failed: %s\n" msgstr "" #: main.c:416 main.c:429 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:423 main.c:689 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Huts egin du katea sarrera estandarretik esleitzean\n" #: main.c:584 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:593 #, c-format msgid "Using OpenSSL. Features present:" msgstr "OpenSSL erabiltzen. Dituen eginbideak:" #: main.c:595 #, c-format msgid "Using GnuTLS. Features present:" msgstr "GnuTLS erabiltzen. Dituen eginbideak:" #: main.c:608 msgid "OpenSSL ENGINE not present" msgstr "Ez dago OpenSSL motorra" #: main.c:647 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" #: main.c:657 #, c-format msgid "Supported protocols:" msgstr "" #: main.c:659 main.c:675 msgid " (default)" msgstr "" #: main.c:672 msgid "Set VPN protocol" msgstr "" #: main.c:713 msgid "fgets (stdin)" msgstr "fgets (sarrera_estandarra)" #: main.c:754 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Ezin da '%s' bide-izen exekutagarria prozesatu" #: main.c:760 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "Huts egin du vpnc-script bide-izenaren esleipenak\n" #: main.c:780 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "" #: main.c:793 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Erabilera: openconnect [aukerak] \n" #: main.c:794 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" #: main.c:796 msgid "Read options from config file" msgstr "Irakurri aukerak konfigurazio-fitxategitik" #: main.c:797 msgid "Report version number" msgstr "Eman bertsio-zenbakiaren berri" #: main.c:798 msgid "Display help text" msgstr "Bistaratu laguntzaren testua" #: main.c:802 msgid "Authentication" msgstr "" #: main.c:803 msgid "Set login username" msgstr "Ezarri erabiltzaile-izena" #: main.c:804 msgid "Disable password/SecurID authentication" msgstr "Desgaitu pasahitzaren/SecurID-ren autentifikazioa" #: main.c:805 msgid "Do not expect user input; exit if it is required" msgstr "Ez itxaron erabiltzailearen sarrerarik; irten beharrezkoa izanez gero" #: main.c:806 msgid "Read password from standard input" msgstr "Irakurri pasahitza sarrera estandarretik" #: main.c:807 msgid "Choose authentication login selection" msgstr "Aukeratu autentifikazioaren saio-hasieraren hautapena" #: main.c:808 msgid "Provide authentication form responses" msgstr "" #: main.c:809 msgid "Use SSL client certificate CERT" msgstr "Erabili SSL bezeroaren CERT ziurtagiria" #: main.c:810 msgid "Use SSL private key file KEY" msgstr "Erabili SSL-ren gako pribatuaren KEY fitxategia" #: main.c:811 msgid "Warn when certificate lifetime < DAYS" msgstr "Abisatu ziurtagiriaren bizi-iraupena < EGUN denean" #: main.c:812 msgid "Set login usergroup" msgstr "Ezarri saio-hasieraren erabiltzaile-taldea" #: main.c:813 msgid "Set key passphrase or TPM SRK PIN" msgstr "Ezarri pasaesaldia edo TPM SRK PINa" #: main.c:814 msgid "Key passphrase is fsid of file system" msgstr "Gakoaren pasaesaldia fitxategi-sistemaren fsid-a da" #: main.c:815 msgid "Software token type: rsa, totp or hotp" msgstr "Softwarearen token mota: 'rsa', 'totp' edo 'hotp'" #: main.c:816 msgid "Software token secret" msgstr "Softwarearen ezkutuko token-a" #: main.c:818 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "(Oharra: 'libstoken' (RSA SecurID) desgaituta bertsio honetan)" #: main.c:821 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:824 msgid "Server validation" msgstr "" #: main.c:825 msgid "Server's certificate SHA1 fingerprint" msgstr "Zerbitzariaren ziurtagiriaren SHA1 hatz-maraka" #: main.c:826 msgid "Do not require server SSL cert to be valid" msgstr "Ez eskatu zerbitzariaren SSLaren ziurtagiria egiaztatzeko " #: main.c:827 msgid "Disable default system certificate authorities" msgstr "" #: main.c:828 msgid "Cert file for server verification" msgstr "Ziurtagiriaren fitxategia zerbitzaria egiaztatzeko" #: main.c:830 msgid "Internet connectivity" msgstr "" #: main.c:831 msgid "Set proxy server" msgstr "Ezarri proxy zerbitzaria" #: main.c:832 msgid "Set proxy authentication methods" msgstr "" #: main.c:833 msgid "Disable proxy" msgstr "Desgaitu proxy-a" #: main.c:834 msgid "Use libproxy to automatically configure proxy" msgstr "Erabili 'libproxy' proxy-a automatikoki konfiguratzeko" #: main.c:836 msgid "(NOTE: libproxy disabled in this build)" msgstr "(OHARRA: 'libproxy' desgaituta bertsio honetan)" #: main.c:838 msgid "Connection retry timeout in seconds" msgstr "Berriro konektatzeko saiakeraren denbora (segundotan)" #: main.c:839 msgid "Use IP when connecting to HOST" msgstr "" #: main.c:840 msgid "copy TOS / TCLASS when using DTLS" msgstr "" #: main.c:841 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:843 msgid "Authentication (two-phase)" msgstr "" #: main.c:844 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:845 msgid "Read cookie from standard input" msgstr "Irakurri cookie-a sarrera estandarretik" #: main.c:846 msgid "Authenticate only and print login info" msgstr "Autentifikatu soilik eta erakutsi saio-hasieraren informazioa" #: main.c:847 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:848 msgid "Print cookie before connecting" msgstr "" #: main.c:851 msgid "Process control" msgstr "" #: main.c:852 msgid "Continue in background after startup" msgstr "Jarraitu atzeko planoan abiatu ondoren" #: main.c:853 msgid "Write the daemon's PID to this file" msgstr "Idatzi daemon-aren PIDa fitxategi honetan" #: main.c:854 msgid "Drop privileges after connecting" msgstr "Jaregin pribilegioak konektatu ondoren" #: main.c:857 msgid "Logging (two-phase)" msgstr "" #: main.c:859 msgid "Use syslog for progress messages" msgstr "Erabili sistemaren egunkaria (syslog) aurrerapenen mezuentzako" #: main.c:861 msgid "More output" msgstr "Irteera xehatuagoa" #: main.c:862 msgid "Less output" msgstr "Irteera laburragoa" #: main.c:863 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "Irauli HTTP autentifikazioaren trafikoa (--verbose inplikatzen du)" #: main.c:864 msgid "Prepend timestamp to progress messages" msgstr "Atxikitu denbora-zigilua aurretik aurrerapenen mezuei" #: main.c:866 msgid "VPN configuration script" msgstr "" #: main.c:867 msgid "Use IFNAME for tunnel interface" msgstr "Erabili IFNAME tunelaren interfazearentzako" #: main.c:868 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" "Komando-lerroa vpnc-compatible konfigurazioaren script bat erabiltzeko" #: main.c:869 msgid "default" msgstr "lehenetsia" #: main.c:871 msgid "Pass traffic to 'script' program, not tun" msgstr "Igorri trafikoa 'script' programari, ez TUN-ari" #: main.c:874 msgid "Tunnel control" msgstr "" #: main.c:875 msgid "Do not ask for IPv6 connectivity" msgstr "Ez eskatu IPv6 konektagarritasuna" #: main.c:876 msgid "XML config file" msgstr "XML konfigurazio-fitxategia" #: main.c:877 msgid "Request MTU from server (legacy servers only)" msgstr "" #: main.c:878 msgid "Indicate path MTU to/from server" msgstr "Adierazi MTUren bide-izena zerbitzariari/zerbitzaritik" #: main.c:879 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:880 msgid "Disable all compression" msgstr "" #: main.c:881 msgid "Set minimum Dead Peer Detection interval" msgstr "Ezarri Hildako _Parekoen Detekzioaren (DPD) bitartea" #: main.c:882 msgid "Require perfect forward secrecy" msgstr "Konfidentzialtasun iraunkorra (PFS) behar da" #: main.c:883 msgid "Disable DTLS and ESP" msgstr "" #: main.c:884 msgid "OpenSSL ciphers to support for DTLS" msgstr "OpenSSL zifraketak DTLS onartzeko" #: main.c:885 msgid "Set packet queue limit to LEN pkts" msgstr "Mugatu paketeen ilara LEN (luzera) paketetara" #: main.c:887 msgid "Local system information" msgstr "" #: main.c:888 msgid "HTTP header User-Agent: field" msgstr "HTTP goiburuaren 'User-Agent': eremua" #: main.c:889 msgid "Local hostname to advertise to server" msgstr "" #: main.c:890 msgid "OS type (linux,linux-64,win,...) to report" msgstr "SE mota (linux,linux-64,win,...) berri emateko" #: main.c:891 msgid "reported version string during authentication" msgstr "" #: main.c:892 msgid "default:" msgstr "" #: main.c:895 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:896 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:897 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:900 msgid "Server bugs" msgstr "" #: main.c:901 msgid "Disable HTTP connection re-use" msgstr "Desgaitu HTTP konexioa berrerabiltzea" #: main.c:902 msgid "Do not attempt XML POST authentication" msgstr "Ez saiatu XML POST-en autentifikazioa" #: main.c:924 #, c-format msgid "Failed to allocate string\n" msgstr "Huts egin du katea esleitzean\n" #: main.c:997 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Huts egin du konfigurazio-fitxategitik lerroa eskuratzean: %s\n" #: main.c:1037 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Aukera ezezaguna %d. lerroan: '%s'\n" #: main.c:1047 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "'%s' aukerak ez du argumentu bat hartzen %d. lerroan\n" #: main.c:1051 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "'%s' aukerak argumentu bat behar du %d. lerroan\n" #: main.c:1076 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "" #: main.c:1086 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "" #: main.c:1130 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "" #: main.c:1140 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:1147 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:1157 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Huts egin du vpninfo egitura esleitzean\n" #: main.c:1215 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Ezin da 'config' aukera erabili konfigurazio-fitxategi barruan\n" #: main.c:1223 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Ezin da '%s' konfigurazio-fitxategia ireki: %s\n" #: main.c:1239 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1260 #, c-format msgid "Missing colon in resolve option\n" msgstr "" #: main.c:1265 #, c-format msgid "Failed to allocate memory\n" msgstr "" #: main.c:1349 main.c:1358 #, c-format msgid "MTU %d too small\n" msgstr "%d MTU txikiegia da\n" #: main.c:1388 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "HTTPren konexio guztiak berrerabiltzea desgaitzen '--no-http-keepalive' " "aukera dela eta.\n" "Honek lagun badezake, bidali honi buruzkoak helbide honetara: \n" "\n" #: main.c:1394 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" #: main.c:1411 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Ezin da ilararen luzera zero izan: 1 erabiltzen\n" #: main.c:1425 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect '%s' bertsioa\n" #: main.c:1463 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Baliogabeko softwarearen '%s' token modua\n" #: main.c:1473 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "Baliogabeko '%s' SE-aren identitatea\n" #: main.c:1506 #, c-format msgid "Too many arguments on command line\n" msgstr "Argumentu gehiegi komando-lerroan\n" #: main.c:1509 #, c-format msgid "No server specified\n" msgstr "Ez da zerbitzaririk zehaztu\n" #: main.c:1525 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "Openconnect-en bertsio hau 'libproxy' euskarririk gabe konpilatuta\n" #: main.c:1555 #, c-format msgid "Error opening cmd pipe\n" msgstr "Errorea 'cmd'-ren kanalizazioa irekitzean\n" #: main.c:1588 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "Huts egin du WebVPN cookie-a eskuratzean\n" #: main.c:1609 #, c-format msgid "Creating SSL connection failed\n" msgstr "Huts egin du SSL konexioa sortzean\n" #: main.c:1625 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:1633 #, c-format msgid "Connected as %s%s%s, using SSL%s%s, with %s%s%s %s\n" msgstr "" #: main.c:1639 msgid "disabled" msgstr "" #: main.c:1639 msgid "in progress" msgstr "" #: main.c:1643 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "Ez da --script argumenturik eman. DNSa eta bideratzea ez daude " "konfiguratuta.\n" #: main.c:1645 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Ikus http://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:1658 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Huts egin du '%s' idazteko irekitzean: %s\n" #: main.c:1670 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Atzeko planoan jarraitzen du: %d PIDa\n" #: main.c:1687 msgid "User requested reconnect\n" msgstr "" #: main.c:1695 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "" #: main.c:1699 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:1703 msgid "User cancelled (SIGINT/SIGTERM); exiting.\n" msgstr "" #: main.c:1707 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "" #: main.c:1711 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:1730 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Huts egin du '%s' idazteko irekitzean: %s\n" #: main.c:1738 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Huts egin du konfigurazioa '%s'(e)n idaztean: %s\n" #: main.c:1797 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "SSL zerbitzariaren ziurtagiria ez dator bat: %s\n" #: main.c:1816 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Huts egin du '%s' VPN zerbitzariaren ziurtagiria egiaztatzean.\n" "Zergatia: %s\n" #: main.c:1819 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" #: main.c:1820 #, c-format msgid " --servercert %s\n" msgstr "" #: main.c:1825 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Sartu '%s' onartzeko, '%s' bertan behera uzteko; beste edozer hau ikusteko:" #: main.c:1826 main.c:1844 msgid "no" msgstr "ez" #: main.c:1826 main.c:1832 msgid "yes" msgstr "bai" #: main.c:1853 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:1887 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Autentifikazioaren '%s' aukera hainbat aukerekin bat dator\n" #: main.c:1890 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Autentifikazioaren '%s' aukera ez dago erabilgarri\n" #: main.c:1911 msgid "User input required in non-interactive mode\n" msgstr "Erabiltzailearen sarrera behar da modu ez-elkarreragilean\n" #: main.c:2149 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:2157 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:2203 main.c:2224 #, c-format msgid "Soft token string is invalid\n" msgstr "Softwarearen tokenaren katea baliogabea da\n" #: main.c:2206 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Ezin da ~/.stokenrc fitxategia ireki\n" #: main.c:2209 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "OpenConnect ez zen 'libstoken' euskarriarekin konpilatu\n" #: main.c:2212 #, c-format msgid "General failure in libstoken\n" msgstr "Hutsegite orokorra 'libstoken' liburutegian\n" #: main.c:2227 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "OpenConnect ez zen 'liboath' euskarriarekin konpilatu\n" #: main.c:2230 #, c-format msgid "General failure in liboath\n" msgstr "Hutsegite orokorra 'liboath' liburutegian\n" #: main.c:2241 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2244 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2247 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: mainloop.c:127 #, c-format msgid "Set up tun script failed\n" msgstr "Huts egin du 'tun' script-a konfiguratzean\n" #: mainloop.c:134 #, c-format msgid "Set up tun device failed\n" msgstr "Huts egin du TUN gailua konfiguratzean\n" #: mainloop.c:265 msgid "Caller paused the connection\n" msgstr "Deitzaileak konexioa pausatu du\n" #: mainloop.c:273 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Lanik ez egiteko. %d ms lotan...\n" #: mainloop.c:294 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "'WaitForMultipleObjects'-ek huts egin du: %s\n" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:978 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:982 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "Ados INITIAL tokencode-a sortzeko\n" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "Ados NEXT tokencode-a sortzeko\n" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" "Zerbitzaria softwarearen tokena ukatzen ari da. Eskuzko sarrerara aldatzen\n" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "OATH TOTP tokenaren kodea sortzen\n" #: oath.c:565 msgid "Generating OATH HOTP token code\n" msgstr "OATH HOTP tokenaren kodea sortzen\n" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:160 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:166 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:175 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:186 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:201 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:210 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:219 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:232 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:254 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:274 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:297 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:316 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:327 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:335 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:342 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:350 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:358 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:366 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:374 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:383 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:395 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:473 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:490 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:496 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:512 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:577 oncp.c:609 oncp.c:747 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:618 oncp.c:783 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:631 oncp.c:666 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:636 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:643 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:670 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:683 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:692 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "" #: oncp.c:698 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "" #: oncp.c:705 msgid "Failed to read continuation record length\n" msgstr "" #: oncp.c:711 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "" #: oncp.c:720 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "" #: oncp.c:726 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "" #: oncp.c:767 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:776 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:829 msgid "new incoming" msgstr "" #: oncp.c:830 msgid "new outgoing" msgstr "" #: oncp.c:855 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:864 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:868 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:874 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:969 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:972 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:991 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1053 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1058 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1073 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1134 msgid "Sent ESP enable control packet\n" msgstr "" #: oncp.c:1268 msgid "Logout successful.\n" msgstr "" #: openconnect-internal.h:1119 openconnect-internal.h:1127 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "Huts egin du DTLSv1 saioa hasieratzean\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "" #: openssl-dtls.c:365 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Huts egin du DTLSv1 CTX hasieratzean\n" #: openssl-dtls.c:378 msgid "Set DTLS CTX version failed\n" msgstr "" #: openssl-dtls.c:395 msgid "Failed to generate DTLS key\n" msgstr "" #: openssl-dtls.c:413 msgid "Set DTLS cipher list failed\n" msgstr "Huts egin du DTLS zifraketaren zerrenda ezartzean\n" #: openssl-dtls.c:439 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:460 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "SSL_set_session() funtzioak huts egin du 0x%x bertsioko protokolo " "zaharrarekin\n" "0.9.8m baino zaharragoa den OpenSSL-ren bertsioa erabiltzen ari zara?Ikus " "http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Erabili komando-lerroaren '--no-dtls' aukera mezu hau saihesteko\n" #: openssl-dtls.c:493 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:566 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "DTLS konexioa ezarrita (OPenSSL erabiliz). Ciphersuite %s.\n" #: openssl-dtls.c:603 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" "Sistemako OpenSSL konpilatzean erabilitakoa baino zaharragoa da, DTLS-ek " "huts egin dezake." #: openssl-dtls.c:654 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Baliteke sistemako OpenSSL-a hautsita egotea\n" "Ikus http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: openssl-dtls.c:661 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "Huts egin du DTLS negoziatzean: %d\n" #: openssl-esp.c:87 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:101 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:157 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:202 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:210 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:241 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:43 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:49 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "" #: openssl-pkcs11.c:269 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:272 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:275 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:279 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:286 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:300 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:306 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:342 openssl-pkcs11.c:565 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:349 openssl-pkcs11.c:575 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:383 openssl-pkcs11.c:617 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:393 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "" #: openssl-pkcs11.c:401 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:412 openssl.c:713 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl-pkcs11.c:458 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:464 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:497 msgid "Certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:503 openssl-pkcs11.c:526 msgid "Certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:506 msgid "Checking EC key matches cert\n" msgstr "" #: openssl-pkcs11.c:510 msgid "Failed to allocate signature buffer\n" msgstr "" #: openssl-pkcs11.c:520 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" #: openssl-pkcs11.c:638 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "" #: openssl-pkcs11.c:649 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:678 msgid "Add key from PKCS#11 failed\n" msgstr "" #: openssl-pkcs11.c:710 openssl-pkcs11.c:716 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:147 msgid "Failed to write to SSL socket\n" msgstr "Huts egin du SSL socket-ean idaztean\n" #: openssl.c:197 openssl.c:263 msgid "Failed to read from SSL socket\n" msgstr "Huts egin du SSL socket-etik irakurtzean\n" #: openssl.c:292 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" "SSL irakurketaren %d errorea (baliteke zerbitzariak konexioa ixtea). " "Birkonektatzen.\n" #: openssl.c:317 #, c-format msgid "SSL_write failed: %d\n" msgstr "'SSL_write'-k huts egin du: %d\n" #: openssl.c:389 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:465 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "PEM pasahitza luzeegia da (%d >= %d)\n" #: openssl.c:498 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "%s-ren ziurtagiri gehigarria: '%s'\n" #: openssl.c:548 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Huts egin du PKCS#12 analizatzean (ikus gaineko errorak)\n" #: openssl.c:563 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS#12 ez dauka ziurtagiririk.\n" #: openssl.c:572 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS#12 ez dauka gako pribaturik.\n" #: openssl.c:577 msgid "PKCS#12" msgstr "" #: openssl.c:600 msgid "Can't load TPM engine.\n" msgstr "Ezin da TPM motorra kargatu.\n" #: openssl.c:606 msgid "Failed to init TPM engine\n" msgstr "Huts egin du TPM motorra hasieratzean\n" #: openssl.c:616 msgid "Failed to set TPM SRK password\n" msgstr "Huts egin du TPM SRK pasahitza ezartzean\n" #: openssl.c:630 msgid "Failed to load TPM private key\n" msgstr "Huts egin du TPMren gako probatua kargatzean\n" #: openssl.c:636 msgid "Add key from TPM failed\n" msgstr "Huts egin du TPMtik gakoa gehitzean\n" #: openssl.c:687 openssl.c:835 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Huts egin du '%s' ziurtagiri-fitxategia irekitzean: %s\n" #: openssl.c:697 msgid "Loading certificate failed\n" msgstr "Huts egin du ziurtagiria kargatzean\n" #: openssl.c:735 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:748 msgid "PEM file" msgstr "" #: openssl.c:777 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Huts egin du gako-biltegiko '%s' elementuaren BIO-a sortzean\n" #: openssl.c:802 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Huts egin du gako pribatua kargatzean (okerreko pasaesaldia?)\n" #: openssl.c:808 msgid "Loading private key failed (see above errors)\n" msgstr "Huts egin du gako pribatua kargatzean (ikus goiko erroreak)\n" #: openssl.c:858 msgid "Failed to load X509 certificate from keystore\n" msgstr "Huts egin du X509 ziurtagiria gakoen biltegitik kargatzean\n" #: openssl.c:864 msgid "Failed to use X509 certificate from keystore\n" msgstr "Huts egin du X509 ziurtagiria gakoen biltegitik erabiltzean\n" #: openssl.c:896 msgid "Failed to use private key from keystore\n" msgstr "Huts egin du gako pribatua gakoen biltegitik erabiltzean\n" #: openssl.c:912 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Huts egin du gako pribatuaren '%s' fitxategia irekitzean: %s\n" #: openssl.c:936 openssl.c:951 openssl.c:972 openssl.c:1038 msgid "Loading private key failed\n" msgstr "" #: openssl.c:1032 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1049 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Huts egin du gako pribatuaren mota identifikatzean '%s'(e)n\n" #: openssl.c:1203 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "'%s' DNS ordezko izenarekin bat dator\n" #: openssl.c:1210 #, c-format msgid "No match for altname '%s'\n" msgstr "Ez dago '%s' DNS ordezko izenarekin bat datorrenik\n" #: openssl.c:1224 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "Ziurtagiriak ordezko GEN_IPADD izena du okerreko %d luzerarekin\n" #: openssl.c:1235 openssl.c:1381 #, c-format msgid "Matched %s address '%s'\n" msgstr "%s helbide bat datoz '%s'(r)ekin\n" #: openssl.c:1242 #, c-format msgid "No match for %s address '%s'\n" msgstr "Ez dago bat datorrenik %s '%s' helbideekin\n" #: openssl.c:1284 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "'%s' URIak ez du hutsak ez diren bide-izenik. Ez ikusi egiten\n" #: openssl.c:1289 #, c-format msgid "Matched URI '%s'\n" msgstr "'%s' URIarekin bat dator\n" #: openssl.c:1300 #, c-format msgid "No match for URI '%s'\n" msgstr "Ez dago '%s' URIarekin bat datorrenik\n" #: openssl.c:1315 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" "Ez dago '%s'(r)ekin bat datorren ordezko izenik parekoaren ziurtagirian\n" #: openssl.c:1323 msgid "No subject name in peer cert!\n" msgstr "Parekoaren ziurtagiriak ez du subjektuaren izenik\n" #: openssl.c:1343 msgid "Failed to parse subject name in peer cert\n" msgstr "Huts egin du parekoaren ziurtagirian subjektuaren izena analizatzean\n" #: openssl.c:1350 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Parekoaren ziurtagiriaren subjektua falta da ('%s' != '%s')\n" #: openssl.c:1355 openssl.c:1389 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Parekoaren ziurtagiriaren '%s' subjektuaren izena bat dator\n" #: openssl.c:1451 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "cafile-ren ziurtagiri gehigarria: '%s'\n" #: openssl.c:1589 msgid "Error in client cert notAfter field\n" msgstr "Errorea bezeroaren ziurtagiriko 'notAfter' eremuan\n" #: openssl.c:1602 msgid "" msgstr "" #: openssl.c:1655 msgid "Create TLSv1 CTX failed\n" msgstr "" #: openssl.c:1674 msgid "SSL certificate and key do not match\n" msgstr "" #: openssl.c:1719 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Huts egin du '%s' ZE fitxategitik ziurtagiriak irakurtzean\n" #: openssl.c:1752 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Huts egin du '%s' ZE fitxategia irekitzean\n" #: openssl.c:1812 msgid "SSL connection failure\n" msgstr "SSL konexioaren hutsegitea\n" #: openssl.c:1973 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:130 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Okerreko zatitzea baztertzeak hau dauka: '%s'\n" #: script.c:134 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Okerreko zatitzea baztertzeak ez dauka hau: '%s'\n" #: script.c:507 script.c:555 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Huts egin du '%2$s'(r)en '%1$s' scripta sortzean: %3$s\n" #: script.c:562 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "'%s' scripta ustekabean amaitu da (%x)\n" #: script.c:570 #, c-format msgid "Script '%s' returned error %d\n" msgstr "'%s' script-ak %d errorea itzuli du\n" #: ssl.c:108 msgid "Socket connect cancelled\n" msgstr "Socket-aren konexioa bertan behera utzita\n" #: ssl.c:217 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "" #: ssl.c:221 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "" #: ssl.c:289 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "'libproxy'-ren proxy-a: %s://%s:%d/\n" #: ssl.c:317 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "Huts egin du '%s' ostalariaren getaddrinfo() funtzioak: %s\n" #: ssl.c:326 ssl.c:451 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:341 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "'%s%s%s:%s' proxy-arekin konektatzen saiatzen\n" #: ssl.c:342 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "'%s%s%s:%s' zerbitzariarekin konektatzen saiatzen\n" #: ssl.c:362 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "" #: ssl.c:374 msgid "Failed to allocate sockaddr storage\n" msgstr "Huts egin du biltegiaren socketaren helbidea (sockaddr) esleitzean\n" #: ssl.c:416 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "" #: ssl.c:434 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:446 #, c-format msgid "Failed to connect to host %s\n" msgstr "Huts egin du '%s' ostalariarekin konektatzean\n" #: ssl.c:465 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:536 #, c-format msgid "statvfs: %s\n" msgstr "vfs-ren estatistikak: %s\n" #: ssl.c:564 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:575 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:603 #, c-format msgid "statfs: %s\n" msgstr "fs-ren estatistikak: %s\n" #: ssl.c:694 msgid "No error" msgstr "Errorerik ez" #: ssl.c:695 msgid "Keystore locked" msgstr "Gako-biltegia blokeatuta" #: ssl.c:696 msgid "Keystore uninitialized" msgstr "Gako-biltegia hasieratu gabe" #: ssl.c:697 msgid "System error" msgstr "Sistemaren errorea" #: ssl.c:698 msgid "Protocol error" msgstr "Protokoloaren errorea" #: ssl.c:699 msgid "Permission denied" msgstr "Baimena ukatuta" #: ssl.c:700 msgid "Key not found" msgstr "Ez da gakoa aurkitu" #: ssl.c:701 msgid "Value corrupted" msgstr "Balioa hondatuta" #: ssl.c:702 msgid "Undefined action" msgstr "Zehaztu gabeko ekintza" #: ssl.c:706 msgid "Wrong password" msgstr "Okerreko pasahitza" #: ssl.c:707 msgid "Unknown error" msgstr "Errore ezezaguna" #: ssl.c:896 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:931 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:950 msgid "Open UDP socket" msgstr "" #: ssl.c:981 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:989 msgid "Bind UDP socket" msgstr "" #: ssl.c:996 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:1034 msgid "Cookie is no longer valid, ending session\n" msgstr "Cookie-a ez da gehiago baliozkoa izango, saioa amaitzen\n" #: ssl.c:1038 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "lo: %ds; iraungitze-denbora: %ds\n" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "Sartu kredentzialak softwarearen tokena desblokeatzeko." #: stoken.c:82 msgid "Device ID:" msgstr "Gailuaren IDa:" #: stoken.c:89 msgid "Password:" msgstr "Pasahitza:" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "Erabiltzaileak softwarearen tokena saihestu du.\n" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "Eremu guztiak beharrezkoak dira. Saiatu berriro.\n" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "Hutsegite orokorra 'libstoken' liburutegian.\n" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "Okerreko gailuaren IDa edo pasahitza. Saiatu berriro.\n" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "Softwarearen tokena ongi hasieratu da.\n" #: stoken.c:185 msgid "Enter software token PIN." msgstr "" #: stoken.c:189 msgid "PIN:" msgstr "PINa:" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "PINaren formatua baliogabea. Saiatu berriro.\n" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "RSA tokenaren kodea sortzen\n" #: tun-win32.c:76 msgid "Error accessing registry key for network adapters\n" msgstr "Errorea sareko moldagailuentzako erregistroaren gakoa atzitzean\n" #: tun-win32.c:139 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "" #: tun-win32.c:154 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" "Ez da Windows-TAP moldagailurik aurkitu. Kontrolatzailea instalatuta dago?\n" #: tun-win32.c:186 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" #: tun-win32.c:200 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "" #: tun-win32.c:231 #, c-format msgid "Failed to open %s\n" msgstr "Huts egin du '%s' irekitzean\n" #: tun-win32.c:236 #, c-format msgid "Opened tun device %s\n" msgstr "'%s' tun gailua irekita\n" #: tun-win32.c:244 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Huts egin du TAP kontrolatzailearen bertsioa eskuratzean: %s\n" #: tun-win32.c:250 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Errorea: TAP-Windows v9.9 or handiagoa den kontrolatzailea behar da. " "Aurkitutakoa: %ld.%ld\n" #: tun-win32.c:271 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Huts egin du TAP IP helbideak ezartzean: %s\n" #: tun-win32.c:283 tun-win32.c:406 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Huts egin du TAP euskarriaren egoera ezartzean: %s\n" #: tun-win32.c:316 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:321 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Huts egin du TAP gailutik irakurtzean: %s\n" #: tun-win32.c:335 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Huts egin du TAP gailutik erabat irakurtzean: %s\n" #: tun-win32.c:358 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "%ld byte 'tun'-en idatzita\n" #: tun-win32.c:368 msgid "Waiting for tun write...\n" msgstr "'tun'-ek idatzi zain...\n" #: tun-win32.c:371 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "'tun'-en %ld byte idatzita zain egon ondoren\n" #: tun-win32.c:378 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Huts gin du TAP gailuan idaztean: %s\n" #: tun-win32.c:423 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "Tunelaren script-ak sortzea ez dago oraindik onartuta Windows-en\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Ezin izan da /dev/tun ireki zundatzeko" #: tun.c:92 msgid "Can't push IP" msgstr "Ezin da IPa bultzatu" #: tun.c:102 msgid "Can't set ifname" msgstr "Ezin da ifname ezarri" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "Ezin da '%s' ireki: %s" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Ezin da IPv%2$d-ren '%1$s' zundatu: %3$s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "ireki /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Huts egin d 'tun' berria sortzean" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" "Huts egin du 'tun' fitxategiaren deskriptorea 'baztertu mezua' moduan " "jartzean" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "" #: tun.c:205 msgid "open net" msgstr "ireki sarea" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Huts egin du 'tun' gailua irekitzean: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "" "'%s' interfazearen izena baliogabea. 'tun%%d'-(r)ekin bat etorri behar du\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Ezin da '%s' ireki: %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:479 #, c-format msgid "socketpair failed: %s\n" msgstr "'socketpair'-ek huts egin du: %s\n" #: tun.c:484 #, c-format msgid "fork failed: %s\n" msgstr "huts egin du sardetzean: %s\n" #: tun.c:488 msgid "setpgid" msgstr "setpgid" #: tun.c:493 msgid "execl" msgstr "execl" #: tun.c:498 msgid "(script)" msgstr "(script-a)" #: tun.c:566 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Huts egin du sarrerako paketea idaztean: %s\n" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "'%s' ostalaria ostalari-izen gordin gisa tratatzen\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Huts egin du existitzen den fitxategiaren SHA1 kalkulatzean\n" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "XML konfigurazio-fitxategiaren SHA1: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Huts egin du XML konfigurazio-fitxategia analizatzean: %s\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "'%s' ostalariak '%s' helbidea du\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "'%s' ostalariak '%s' erabiltzaile-taldea du\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "'%s' ostalaria ez dago konfigurazioan zerrendatuta; ostalari-izen gordin " "gisa erabiltzen\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:174 msgid "select applet command" msgstr "" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:274 msgid "unlock command" msgstr "" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:412 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:619 msgid "calculate command" msgstr "" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-8.05/po/Makefile.in0000664000076400007640000003702613536301674020240 0ustar00dwoodhoudwoodhou00000000000000# Makefile.in generated by automake 1.16.1 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2018 Free Software Foundation, Inc. # This Makefile.in is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY, to the extent permitted by law; without # even the implied warranty of MERCHANTABILITY or FITNESS FOR A # PARTICULAR PURPOSE. @SET_MAKE@ VPATH = @srcdir@ am__is_gnu_make = { \ if test -z '$(MAKELEVEL)'; then \ false; \ elif test -n '$(MAKE_HOST)'; then \ true; \ elif test -n '$(MAKE_VERSION)' && test -n '$(CURDIR)'; then \ true; \ else \ false; \ fi; \ } am__make_running_with_option = \ case $${target_option-} in \ ?) ;; \ *) echo "am__make_running_with_option: internal error: invalid" \ "target option '$${target_option-}' specified" >&2; \ exit 1;; \ esac; \ has_opt=no; \ sane_makeflags=$$MAKEFLAGS; \ if $(am__is_gnu_make); then \ sane_makeflags=$$MFLAGS; \ else \ case $$MAKEFLAGS in \ *\\[\ \ ]*) \ bs=\\; \ sane_makeflags=`printf '%s\n' "$$MAKEFLAGS" \ | sed "s/$$bs$$bs[$$bs $$bs ]*//g"`;; \ esac; \ fi; \ skip_next=no; \ strip_trailopt () \ { \ flg=`printf '%s\n' "$$flg" | sed "s/$$1.*$$//"`; \ }; \ for flg in $$sane_makeflags; do \ test $$skip_next = yes && { skip_next=no; continue; }; \ case $$flg in \ *=*|--*) continue;; \ -*I) strip_trailopt 'I'; skip_next=yes;; \ -*I?*) strip_trailopt 'I';; \ -*O) strip_trailopt 'O'; skip_next=yes;; \ -*O?*) strip_trailopt 'O';; \ -*l) strip_trailopt 'l'; skip_next=yes;; \ -*l?*) strip_trailopt 'l';; \ -[dEDm]) skip_next=yes;; \ -[JT]) skip_next=yes;; \ esac; \ case $$flg in \ *$$target_option*) has_opt=yes; break;; \ esac; \ done; \ test $$has_opt = yes am__make_dryrun = (target_option=n; $(am__make_running_with_option)) am__make_keepgoing = (target_option=k; $(am__make_running_with_option)) pkgdatadir = $(datadir)/@PACKAGE@ pkgincludedir = $(includedir)/@PACKAGE@ pkglibdir = $(libdir)/@PACKAGE@ pkglibexecdir = $(libexecdir)/@PACKAGE@ am__cd = CDPATH="$${ZSH_VERSION+.}$(PATH_SEPARATOR)" && cd install_sh_DATA = $(install_sh) -c -m 644 install_sh_PROGRAM = $(install_sh) -c install_sh_SCRIPT = $(install_sh) -c INSTALL_HEADER = $(INSTALL_DATA) transform = $(program_transform_name) NORMAL_INSTALL = : PRE_INSTALL = : POST_INSTALL = : NORMAL_UNINSTALL = : PRE_UNINSTALL = : POST_UNINSTALL = : build_triplet = @build@ host_triplet = @host@ subdir = po ACLOCAL_M4 = $(top_srcdir)/aclocal.m4 am__aclocal_m4_deps = $(top_srcdir)/m4/ax_check_vscript.m4 \ $(top_srcdir)/m4/iconv.m4 $(top_srcdir)/m4/lib-ld.m4 \ $(top_srcdir)/m4/lib-link.m4 $(top_srcdir)/m4/lib-prefix.m4 \ $(top_srcdir)/m4/libtool.m4 $(top_srcdir)/m4/ltoptions.m4 \ $(top_srcdir)/m4/ltsugar.m4 $(top_srcdir)/m4/ltversion.m4 \ $(top_srcdir)/m4/lt~obsolete.m4 $(top_srcdir)/acinclude.m4 \ $(top_srcdir)/configure.ac am__configure_deps = $(am__aclocal_m4_deps) $(CONFIGURE_DEPENDENCIES) \ $(ACLOCAL_M4) DIST_COMMON = $(srcdir)/Makefile.am $(am__DIST_COMMON) mkinstalldirs = $(install_sh) -d CONFIG_HEADER = $(top_builddir)/config.h CONFIG_CLEAN_FILES = CONFIG_CLEAN_VPATH_FILES = AM_V_P = $(am__v_P_@AM_V@) am__v_P_ = $(am__v_P_@AM_DEFAULT_V@) am__v_P_0 = false am__v_P_1 = : AM_V_GEN = $(am__v_GEN_@AM_V@) am__v_GEN_ = $(am__v_GEN_@AM_DEFAULT_V@) am__v_GEN_0 = @echo " GEN " $@; am__v_GEN_1 = AM_V_at = $(am__v_at_@AM_V@) am__v_at_ = $(am__v_at_@AM_DEFAULT_V@) am__v_at_0 = @ am__v_at_1 = SOURCES = DIST_SOURCES = am__can_run_installinfo = \ case $$AM_UPDATE_INFO_DIR in \ n|no|NO) false;; \ *) (install-info --version) >/dev/null 2>&1;; \ esac DATA = $(noinst_DATA) am__tagged_files = $(HEADERS) $(SOURCES) $(TAGS_FILES) $(LISP) am__DIST_COMMON = $(srcdir)/Makefile.in ChangeLog DISTFILES = $(DIST_COMMON) $(DIST_SOURCES) $(TEXINFOS) $(EXTRA_DIST) ACLOCAL = @ACLOCAL@ AMTAR = @AMTAR@ AM_DEFAULT_VERBOSITY = @AM_DEFAULT_VERBOSITY@ APIMAJOR = @APIMAJOR@ APIMINOR = @APIMINOR@ AR = @AR@ AUTOCONF = @AUTOCONF@ AUTOHEADER = @AUTOHEADER@ AUTOMAKE = @AUTOMAKE@ AWK = @AWK@ CC = @CC@ CCDEPMODE = @CCDEPMODE@ CFLAGS = @CFLAGS@ CONFIG_STATUS_DEPENDENCIES = @CONFIG_STATUS_DEPENDENCIES@ CPP = @CPP@ CPPFLAGS = @CPPFLAGS@ CWRAP_CFLAGS = @CWRAP_CFLAGS@ CWRAP_LIBS = @CWRAP_LIBS@ CYGPATH_W = @CYGPATH_W@ DEFAULT_VPNCSCRIPT = @DEFAULT_VPNCSCRIPT@ DEFS = @DEFS@ DEPDIR = @DEPDIR@ DLLTOOL = @DLLTOOL@ DSYMUTIL = @DSYMUTIL@ DUMPBIN = @DUMPBIN@ ECHO_C = @ECHO_C@ ECHO_N = @ECHO_N@ ECHO_T = @ECHO_T@ EGREP = @EGREP@ EXEEXT = @EXEEXT@ FGREP = @FGREP@ GITVERSIONDEPS = @GITVERSIONDEPS@ GNUTLS_CFLAGS = @GNUTLS_CFLAGS@ GNUTLS_LIBS = @GNUTLS_LIBS@ GREP = @GREP@ GROFF = @GROFF@ GSSAPI_CFLAGS = @GSSAPI_CFLAGS@ GSSAPI_LIBS = @GSSAPI_LIBS@ ICONV_CFLAGS = @ICONV_CFLAGS@ ICONV_LIBS = @ICONV_LIBS@ INSTALL = @INSTALL@ INSTALL_DATA = @INSTALL_DATA@ INSTALL_PROGRAM = @INSTALL_PROGRAM@ INSTALL_SCRIPT = @INSTALL_SCRIPT@ INSTALL_STRIP_PROGRAM = @INSTALL_STRIP_PROGRAM@ INTL_CFLAGS = @INTL_CFLAGS@ INTL_LIBS = @INTL_LIBS@ IP = @IP@ JNI_CFLAGS = @JNI_CFLAGS@ KRB5_CONFIG = @KRB5_CONFIG@ LD = @LD@ LDFLAGS = @LDFLAGS@ LIBICONV = @LIBICONV@ LIBLZ4_CFLAGS = @LIBLZ4_CFLAGS@ LIBLZ4_LIBS = @LIBLZ4_LIBS@ LIBLZ4_PC = @LIBLZ4_PC@ LIBOBJS = @LIBOBJS@ LIBP11_CFLAGS = @LIBP11_CFLAGS@ LIBP11_LIBS = @LIBP11_LIBS@ LIBPCSCLITE_CFLAGS = @LIBPCSCLITE_CFLAGS@ LIBPCSCLITE_LIBS = @LIBPCSCLITE_LIBS@ LIBPCSCLITE_PC = @LIBPCSCLITE_PC@ LIBPROXY_CFLAGS = @LIBPROXY_CFLAGS@ LIBPROXY_LIBS = @LIBPROXY_LIBS@ LIBPROXY_PC = @LIBPROXY_PC@ LIBPSKC_CFLAGS = @LIBPSKC_CFLAGS@ LIBPSKC_LIBS = @LIBPSKC_LIBS@ LIBPSKC_PC = @LIBPSKC_PC@ LIBS = @LIBS@ LIBSTOKEN_CFLAGS = @LIBSTOKEN_CFLAGS@ LIBSTOKEN_LIBS = @LIBSTOKEN_LIBS@ LIBSTOKEN_PC = @LIBSTOKEN_PC@ LIBTOOL = @LIBTOOL@ LIBXML2_CFLAGS = @LIBXML2_CFLAGS@ LIBXML2_LIBS = @LIBXML2_LIBS@ LINGUAS = @LINGUAS@ LIPO = @LIPO@ LN_S = @LN_S@ LTLIBICONV = @LTLIBICONV@ LTLIBOBJS = @LTLIBOBJS@ LT_SYS_LIBRARY_PATH = @LT_SYS_LIBRARY_PATH@ MAINT = @MAINT@ MAKEINFO = @MAKEINFO@ MANIFEST_TOOL = @MANIFEST_TOOL@ MKDIR_P = @MKDIR_P@ MSGFMT = @MSGFMT@ NM = @NM@ NMEDIT = @NMEDIT@ NUTTCP = @NUTTCP@ OBJDUMP = @OBJDUMP@ OBJEXT = @OBJEXT@ OCSERV_GROUP = @OCSERV_GROUP@ OCSERV_USER = @OCSERV_USER@ OPENSSL_CFLAGS = @OPENSSL_CFLAGS@ OPENSSL_LIBS = @OPENSSL_LIBS@ OTOOL = @OTOOL@ OTOOL64 = @OTOOL64@ P11KIT_CFLAGS = @P11KIT_CFLAGS@ P11KIT_LIBS = @P11KIT_LIBS@ P11KIT_PC = @P11KIT_PC@ PACKAGE = @PACKAGE@ PACKAGE_BUGREPORT = @PACKAGE_BUGREPORT@ PACKAGE_NAME = @PACKAGE_NAME@ PACKAGE_STRING = @PACKAGE_STRING@ PACKAGE_TARNAME = @PACKAGE_TARNAME@ PACKAGE_URL = @PACKAGE_URL@ PACKAGE_VERSION = @PACKAGE_VERSION@ PATH_SEPARATOR = @PATH_SEPARATOR@ PKG_CONFIG = @PKG_CONFIG@ PKG_CONFIG_LIBDIR = @PKG_CONFIG_LIBDIR@ PKG_CONFIG_PATH = @PKG_CONFIG_PATH@ PYTHON = @PYTHON@ RANLIB = @RANLIB@ SED = @SED@ SET_MAKE = @SET_MAKE@ SHELL = @SHELL@ SSL_CFLAGS = @SSL_CFLAGS@ SSL_LIBS = @SSL_LIBS@ SSL_PC = @SSL_PC@ STRIP = @STRIP@ SYMVER_ASPRINTF = @SYMVER_ASPRINTF@ SYMVER_GETLINE = @SYMVER_GETLINE@ SYMVER_JAVA = @SYMVER_JAVA@ SYMVER_TIME = @SYMVER_TIME@ SYMVER_VASPRINTF = @SYMVER_VASPRINTF@ SYMVER_WIN32_STRERROR = @SYMVER_WIN32_STRERROR@ TASN1_CFLAGS = @TASN1_CFLAGS@ TASN1_LIBS = @TASN1_LIBS@ TPM2_CFLAGS = @TPM2_CFLAGS@ TPM2_LIBS = @TPM2_LIBS@ TSS2_ESYS_CFLAGS = @TSS2_ESYS_CFLAGS@ TSS2_ESYS_LIBS = @TSS2_ESYS_LIBS@ TSS2_LIBS = @TSS2_LIBS@ TSS_CFLAGS = @TSS_CFLAGS@ TSS_LIBS = @TSS_LIBS@ VERSION = @VERSION@ VSCRIPT_LDFLAGS = @VSCRIPT_LDFLAGS@ WFLAGS = @WFLAGS@ WINDRES = @WINDRES@ ZLIB_CFLAGS = @ZLIB_CFLAGS@ ZLIB_LIBS = @ZLIB_LIBS@ ZLIB_PC = @ZLIB_PC@ _ACJNI_JAVAC = @_ACJNI_JAVAC@ abs_builddir = @abs_builddir@ abs_srcdir = @abs_srcdir@ abs_top_builddir = @abs_top_builddir@ abs_top_srcdir = @abs_top_srcdir@ ac_ct_AR = @ac_ct_AR@ ac_ct_CC = @ac_ct_CC@ ac_ct_DUMPBIN = @ac_ct_DUMPBIN@ am__include = @am__include@ am__leading_dot = @am__leading_dot@ am__quote = @am__quote@ am__tar = @am__tar@ am__untar = @am__untar@ bindir = @bindir@ build = @build@ build_alias = @build_alias@ build_cpu = @build_cpu@ build_os = @build_os@ build_vendor = @build_vendor@ builddir = @builddir@ datadir = @datadir@ datarootdir = @datarootdir@ docdir = @docdir@ dvidir = @dvidir@ exec_prefix = @exec_prefix@ host = @host@ host_alias = @host_alias@ host_cpu = @host_cpu@ host_os = @host_os@ host_vendor = @host_vendor@ htmldir = @htmldir@ includedir = @includedir@ infodir = @infodir@ install_sh = @install_sh@ libdir = @libdir@ libexecdir = @libexecdir@ localedir = @localedir@ localstatedir = @localstatedir@ mandir = @mandir@ mkdir_p = @mkdir_p@ oldincludedir = @oldincludedir@ openssl_pc_libs = @openssl_pc_libs@ pdfdir = @pdfdir@ pkgconfigdir = @pkgconfigdir@ prefix = @prefix@ program_transform_name = @program_transform_name@ psdir = @psdir@ sbindir = @sbindir@ sharedstatedir = @sharedstatedir@ srcdir = @srcdir@ sysconfdir = @sysconfdir@ system_pcsc_libs = @system_pcsc_libs@ target_alias = @target_alias@ test_pkcs11 = @test_pkcs11@ top_build_prefix = @top_build_prefix@ top_builddir = @top_builddir@ top_srcdir = @top_srcdir@ MOFILES = $(LINGUAS:%=%.mo) POFILES = $(LINGUAS:%=%.po) noinst_DATA = $(MOFILES) SUFFIXES = .mo EXTRA_DIST = $(POFILES) LINGUAS DISTCLEANFILES = $(PACKAGE).pot all: all-am .SUFFIXES: .SUFFIXES: .mo .po $(srcdir)/Makefile.in: @MAINTAINER_MODE_TRUE@ $(srcdir)/Makefile.am $(am__configure_deps) @for dep in $?; do \ case '$(am__configure_deps)' in \ *$$dep*) \ ( cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh ) \ && { if test -f $@; then exit 0; else break; fi; }; \ exit 1;; \ esac; \ done; \ echo ' cd $(top_srcdir) && $(AUTOMAKE) --foreign po/Makefile'; \ $(am__cd) $(top_srcdir) && \ $(AUTOMAKE) --foreign po/Makefile Makefile: $(srcdir)/Makefile.in $(top_builddir)/config.status @case '$?' in \ *config.status*) \ cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh;; \ *) \ echo ' cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__maybe_remake_depfiles)'; \ cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__maybe_remake_depfiles);; \ esac; $(top_builddir)/config.status: $(top_srcdir)/configure $(CONFIG_STATUS_DEPENDENCIES) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(top_srcdir)/configure: @MAINTAINER_MODE_TRUE@ $(am__configure_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(ACLOCAL_M4): @MAINTAINER_MODE_TRUE@ $(am__aclocal_m4_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(am__aclocal_m4_deps): mostlyclean-libtool: -rm -f *.lo clean-libtool: -rm -rf .libs _libs tags TAGS: ctags CTAGS: cscope cscopelist: distdir: $(BUILT_SOURCES) $(MAKE) $(AM_MAKEFLAGS) distdir-am distdir-am: $(DISTFILES) @srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ topsrcdirstrip=`echo "$(top_srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ list='$(DISTFILES)'; \ dist_files=`for file in $$list; do echo $$file; done | \ sed -e "s|^$$srcdirstrip/||;t" \ -e "s|^$$topsrcdirstrip/|$(top_builddir)/|;t"`; \ case $$dist_files in \ */*) $(MKDIR_P) `echo "$$dist_files" | \ sed '/\//!d;s|^|$(distdir)/|;s,/[^/]*$$,,' | \ sort -u` ;; \ esac; \ for file in $$dist_files; do \ if test -f $$file || test -d $$file; then d=.; else d=$(srcdir); fi; \ if test -d $$d/$$file; then \ dir=`echo "/$$file" | sed -e 's,/[^/]*$$,,'`; \ if test -d "$(distdir)/$$file"; then \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ if test -d $(srcdir)/$$file && test $$d != $(srcdir); then \ cp -fpR $(srcdir)/$$file "$(distdir)$$dir" || exit 1; \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ cp -fpR $$d/$$file "$(distdir)$$dir" || exit 1; \ else \ test -f "$(distdir)/$$file" \ || cp -p $$d/$$file "$(distdir)/$$file" \ || exit 1; \ fi; \ done check-am: all-am check: check-am all-am: Makefile $(DATA) installdirs: install: install-am install-exec: install-exec-am install-data: install-data-am uninstall: uninstall-am install-am: all-am @$(MAKE) $(AM_MAKEFLAGS) install-exec-am install-data-am installcheck: installcheck-am install-strip: if test -z '$(STRIP)'; then \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ install; \ else \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ "INSTALL_PROGRAM_ENV=STRIPPROG='$(STRIP)'" install; \ fi mostlyclean-generic: clean-generic: distclean-generic: -test -z "$(CONFIG_CLEAN_FILES)" || rm -f $(CONFIG_CLEAN_FILES) -test . = "$(srcdir)" || test -z "$(CONFIG_CLEAN_VPATH_FILES)" || rm -f $(CONFIG_CLEAN_VPATH_FILES) -test -z "$(DISTCLEANFILES)" || rm -f $(DISTCLEANFILES) maintainer-clean-generic: @echo "This command is intended for maintainers to use" @echo "it deletes files that may require special tools to rebuild." clean: clean-am clean-am: clean-generic clean-libtool clean-local mostlyclean-am distclean: distclean-am -rm -f Makefile distclean-am: clean-am distclean-generic dvi: dvi-am dvi-am: html: html-am html-am: info: info-am info-am: install-data-am: @$(NORMAL_INSTALL) $(MAKE) $(AM_MAKEFLAGS) install-data-hook install-dvi: install-dvi-am install-dvi-am: install-exec-am: install-html: install-html-am install-html-am: install-info: install-info-am install-info-am: install-man: install-pdf: install-pdf-am install-pdf-am: install-ps: install-ps-am install-ps-am: installcheck-am: maintainer-clean: maintainer-clean-am -rm -f Makefile maintainer-clean-am: distclean-am maintainer-clean-generic mostlyclean: mostlyclean-am mostlyclean-am: mostlyclean-generic mostlyclean-libtool pdf: pdf-am pdf-am: ps: ps-am ps-am: uninstall-am: @$(NORMAL_INSTALL) $(MAKE) $(AM_MAKEFLAGS) uninstall-hook .MAKE: install-am install-data-am install-strip uninstall-am .PHONY: all all-am check check-am clean clean-generic clean-libtool \ clean-local cscopelist-am ctags-am distclean distclean-generic \ distclean-libtool distdir dvi dvi-am html html-am info info-am \ install install-am install-data install-data-am \ install-data-hook install-dvi install-dvi-am install-exec \ install-exec-am install-html install-html-am install-info \ install-info-am install-man install-pdf install-pdf-am \ install-ps install-ps-am install-strip installcheck \ installcheck-am installdirs maintainer-clean \ maintainer-clean-generic mostlyclean mostlyclean-generic \ mostlyclean-libtool pdf pdf-am ps ps-am tags-am uninstall \ uninstall-am uninstall-hook .PRECIOUS: Makefile .po.mo: rm -f && $(MSGFMT) -o $@ $< clean-local: rm -f $(MOFILES) install-data-hook: all linguas="$(LINGUAS)"; \ for l in $$linguas; do \ dir="$(DESTDIR)$(localedir)/$$l/LC_MESSAGES"; \ $(mkdir_p) $$dir; \ echo Installing $$l.mo to $$dir/$(PACKAGE).mo ; \ $(INSTALL_DATA) $$l.mo $$dir/$(PACKAGE).mo; \ done uninstall-hook: linguas="$(LINGUAS)"; \ for l in $$linguas; do \ file="$(DESTDIR)$(localedir)/$$l/LC_MESSAGES/$(PACKAGE).mo"; \ if [ -r "$$file" ]; then \ echo "Removing $$file"; rm -f "$$file"; \ fi ; \ done # $(PACKAGE).pot is built by a rule in the parent directory Makefile # This rule isn't needed but is here for convenience if manually invoked .PHONY: $(PACKAGE).pot $(PACKAGE).pot: $(MAKE) -C .. po/$@ # Tell versions [3.59,3.63) of GNU make to not export all variables. # Otherwise a system limit (for SysV at least) may be exceeded. .NOEXPORT: openconnect-8.05/po/ug.po0000664000076400007640000033577213470043037017150 0ustar00dwoodhoudwoodhou00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: # Abduqadir Abliz , 2012. msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2019-05-18 10:44-0700\n" "PO-Revision-Date: 2012-11-15 08:31+0000\n" "Last-Translator: Abduqadir Abliz \n" "Language-Team: Uighur (http://www.transifex.com/projects/p/meego/language/" "ug/)\n" "Language: ug\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=1; plural=0;\n" #: auth-globalprotect.c:108 #, c-format msgid "" "SAML login is required via %s to this URL:\n" "\t%s" msgstr "" #: auth-globalprotect.c:110 msgid "Please enter your username and password" msgstr "" #: auth-globalprotect.c:119 msgid "Username" msgstr "" #: auth-globalprotect.c:134 msgid "Password" msgstr "" #: auth-globalprotect.c:181 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:260 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:266 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:272 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:315 msgid "Please select GlobalProtect gateway." msgstr "" #: auth-globalprotect.c:325 msgid "GATEWAY:" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:379 #, c-format msgid "%d gateway servers available:\n" msgstr "" #: auth-globalprotect.c:400 #, c-format msgid " %s (%s)\n" msgstr "" #: auth-globalprotect.c:484 auth-juniper.c:730 auth.c:669 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth-globalprotect.c:584 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" #: auth-globalprotect.c:636 oncp.c:1266 msgid "Logout failed.\n" msgstr "" #: auth-globalprotect.c:638 msgid "Logout successful\n" msgstr "" #: auth-juniper.c:142 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:153 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:163 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:236 auth.c:408 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "كۆنەكنى بىر تەرەپ قىلالمايدۇ ئۇسۇلى='%s'، مەشغۇلات='%s'\n" #: auth-juniper.c:267 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "" #: auth-juniper.c:337 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:359 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:397 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:411 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:418 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:425 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:432 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:439 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:445 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:452 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:481 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:650 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:667 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:675 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:713 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:716 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth.c:96 msgid "Form choice has no name\n" msgstr "كۆزنەك تاللاشنىڭ ئاتى يوق\n" #: auth.c:181 #, c-format msgid "name %s not input\n" msgstr "%s ئات كىرگۈزۈلمىگەن\n" #: auth.c:188 msgid "No input type in form\n" msgstr "كۆزنەكتە كىرگۈزۈش تىپى يوق\n" #: auth.c:200 msgid "No input name in form\n" msgstr "كۆزنەكتە كىرگۈزۈش ئاتى يوق\n" #: auth.c:230 #, c-format msgid "Unknown input type %s in form\n" msgstr "كۆزنەكتىكى يوچۇن كىرگۈزۈش تىپى %s\n" #: auth.c:540 gpst.c:214 msgid "Empty response from server\n" msgstr "" #: auth.c:551 gpst.c:289 msgid "Failed to parse server response\n" msgstr "مۇلازىمېتىر ئىنكاسىنى تەھلىل قىلالمىدى\n" #: auth.c:553 gpst.c:291 #, c-format msgid "Response was:%s\n" msgstr "ئىنكاسى: %s\n" #: auth.c:575 msgid "Received when not expected.\n" msgstr "" #: auth.c:603 msgid "XML response has no \"auth\" node\n" msgstr "" #: auth.c:636 msgid "Asked for password but '--no-passwd' set\n" msgstr "ئىم سورالدى ئەمما '--no-passwd' تەڭشەلگەن\n" #: auth.c:925 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:931 cstp.c:335 http.c:916 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "%s غىچە HTTPS باغلىنىشىنى ئاچالمىدى\n" #: auth.c:952 msgid "Failed to send GET request for new config\n" msgstr "يېڭى سەپلىمە ئۈچۈن GET ئىلتىماسىنى يوللىيالمىدى\n" #: auth.c:976 msgid "Downloaded config file did not match intended SHA1\n" msgstr "چۈشۈرگەن سەپلىمە ھۆججەت مۆلچەرلىگەن SHA1 بىلەن ماسلاشمىدى\n" #: auth.c:981 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:992 auth.c:1044 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" #: auth.c:1003 mainloop.c:144 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "" #: auth.c:1010 mainloop.c:151 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "" #: auth.c:1017 mainloop.c:158 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "" #: auth.c:1024 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "" #: auth.c:1031 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "CSD ماكان مۇندەرىجە '%s' نى ئۆزگەرتەلمىدى: %s\n" #: auth.c:1053 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:1060 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "خاتالىق: مۇلازىمېتىر بىزدىن 'Cisco Secure Desktop' تىروياننى چۈشۈرۈپ ئىجرا " "قىلىشنى سورىدى.\n" "كۆڭۈلدىكى ئەھۋالدا بىخەتەرلىكنى چىقىش قىلىپ بۇ چەكلەندى، شۇڭلاشقا ئۇنى " "قوزغىتامسىز.\n" #: auth.c:1067 msgid "Trying to run Linux CSD trojan script.\n" msgstr "Linux CSD تىرويان قوليازمىنى ئىجرا قىلىشنى سىناۋاتىدۇ.\n" #: auth.c:1094 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1102 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "ۋاقىتلىق CSD قوليازما ھۆججەتنى ئاچالمىدى: %s\n" #: auth.c:1111 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "ۋاقىتلىق CSD قوليازما ھۆججەتنى يازالمىدى: %s\n" #: auth.c:1141 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "ئاگاھلاندۇرۇش: سىز بىخەتەر بولمىغان CSD كودىنى root ھوقۇقىدا ئىجرا " "قىلىۋاتىسىز\n" "\"--csd-user\" بۇيرۇق قۇرى تاللانمىسىنى ئىشلىتىڭ\n" #: auth.c:1189 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "CSD قوليازما %s نى ئىجرا قىلالمىدى\n" #: auth.c:1221 msgid "Unknown response from server\n" msgstr "مۇلازىمېتىرنىڭ يوچۇن ئىنكاسى\n" #: auth.c:1342 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1346 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" #: auth.c:1362 msgid "XML POST enabled\n" msgstr "" #: auth.c:1405 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "1 سېكۇنتتىن كېيىن %s يېڭىلايدۇ\n" #: compat.c:207 #, c-format msgid "(error 0x%lx)" msgstr "" #: compat.c:210 msgid "(Error while describing error!)" msgstr "" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:112 gpst.c:341 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:134 gpst.c:360 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:281 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:312 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:328 http.c:384 msgid "Error fetching HTTPS response\n" msgstr "HTTPS ئىنكاسىغا ئېرىشىشتە خاتالىق كۆرۈلدى\n" #: cstp.c:355 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "VPN مۇلازىمىتىنى ئىشلەتكىلى بولمايدۇ؛ سەۋەبى: %s\n" #: cstp.c:360 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "خاتا HTTP CONNECT ئىنكاسىغا ئېرىشتى: %s\n" #: cstp.c:367 #, c-format msgid "Got CONNECT response: %s\n" msgstr "CONNECT ئىنكاسىغا ئېرىشتى: %s\n" #: cstp.c:396 cstp.c:404 msgid "No memory for options\n" msgstr "تاللانمىلار ئۈچۈن ئەسلەك يوق\n" #: cstp.c:413 http.c:444 msgid "" msgstr "" #: cstp.c:433 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Session-ID بولسا 64 ھەرپ ئەمەس؛ بۇ: \"%s\"\n" #: cstp.c:450 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "" #: cstp.c:468 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:510 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "يوچۇن CSTP-Content-Encoding %s\n" #: cstp.c:585 msgid "No MTU received. Aborting\n" msgstr "ھېچقانداق MTU قوبۇللىمىدى. چېكىنىۋاتىدۇ\n" #: cstp.c:593 gpst.c:641 msgid "No IP address received. Aborting\n" msgstr "ھېچقانداق IP ئادرېس قوبۇللىمىدى. چېكىنىۋاتىدۇ\n" #: cstp.c:599 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: cstp.c:605 gpst.c:648 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "قايتا باغلىنىش پەرقلىق كونا IP ئادرېس بەردى (%s != %s)\n" #: cstp.c:614 gpst.c:657 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "قايتا باغلىنىش پەرقلىق كونا IP تور ماسكىسى بەردى (%s != %s)\n" #: cstp.c:622 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "قايتا باغلىنىش پەرقلىق IPv6 ئادرېس بەردى (%s != %s)\n" #: cstp.c:630 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "قايتا باغلىنىش پەرقلىق IPv6 تور ماسكىسى بەردى (%s != %s)\n" #: cstp.c:638 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP باغلاندى. DPD %d, Keepalive %d\n" #: cstp.c:640 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "" #: cstp.c:702 msgid "Compression setup failed\n" msgstr "پىرىسلاشنى تەڭشىيەلمىدى\n" #: cstp.c:719 msgid "Allocation of deflate buffer failed\n" msgstr "كىچىكلىتىلگەن يىغلەكنى تەقسىملىيەلمىدى\n" #: cstp.c:781 msgid "inflate failed\n" msgstr "كىچىكلىتەلمىدى\n" #: cstp.c:804 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:817 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:824 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:829 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:849 #, c-format msgid "deflate failed %d\n" msgstr "%d كىچىكلىتەلمىدى\n" #: cstp.c:922 dtls.c:281 dtls.c:740 esp.c:129 gpst.c:1042 mainloop.c:69 #: oncp.c:914 msgid "Allocation failed\n" msgstr "" #: cstp.c:933 gpst.c:1055 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: cstp.c:946 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "بوغچا ئۇزۇنلۇقى توغرا ئەمەس. SSL_read %d نى قايتۇردى ئەمما بوغچا \n" #: cstp.c:960 msgid "Got CSTP DPD request\n" msgstr "CSTP DPD ئىلتىماسىغا ئېرىشتى\n" #: cstp.c:966 msgid "Got CSTP DPD response\n" msgstr "CSTP DPD ئىنكاسىغا ئېرىشتى\n" #: cstp.c:971 msgid "Got CSTP Keepalive\n" msgstr "CSTP Keepalive غا ئېرىشتى\n" #: cstp.c:976 oncp.c:1003 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "%d بايتلىق پىرىسلانمىغان سانلىق مەلۇمات بوغچىسى تاپشۇرۇۋالدى\n" #: cstp.c:993 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "مۇلازىمېتىر ئۈزۈلۈشىنى تاپشۇرۇۋالدى: %02x '%s'\n" #: cstp.c:996 msgid "Received server disconnect\n" msgstr "" #: cstp.c:1004 msgid "Compressed packet received in !deflate mode\n" msgstr "!deflate ھالەتتە پىرىسلانغان بوغچا تاپشۇرۇۋالدى\n" #: cstp.c:1013 msgid "received server terminate packet\n" msgstr "مۇلازىمېتىر ئاخىرلاشتۇرۇش بوغچىسىنى تاپشۇرۇۋالدى\n" #: cstp.c:1020 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "يوچۇن بوغچا %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1063 gpst.c:1142 oncp.c:1121 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL يازغان بايت سانى بەك ئاز! ئىلتىماس قىلغىنى %d، يوللىغىنى %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1091 oncp.c:1155 msgid "CSTP rekey due\n" msgstr "CSTP ئاچقۇچ يېڭىلاش سەۋەبى\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1098 oncp.c:1162 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: cstp.c:1109 oncp.c:1173 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "" #: cstp.c:1113 gpst.c:1166 oncp.c:1091 oncp.c:1177 msgid "Reconnect failed\n" msgstr "قايتا باغلىنالمىدى\n" #: cstp.c:1129 oncp.c:1193 msgid "Send CSTP DPD\n" msgstr "CSTP DPD يوللا\n" #: cstp.c:1141 oncp.c:1204 msgid "Send CSTP Keepalive\n" msgstr "CSTP Keepalive يوللا\n" #: cstp.c:1166 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1177 oncp.c:1238 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "%d بايتلىق پىرىسلانمىغان سانلىق مەلۇمات بوغچىسى يوللاۋاتىدۇ\n" #: cstp.c:1216 #, c-format msgid "Send BYE packet: %s\n" msgstr "يوللىغان BYE بوغچا: %s\n" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:113 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:119 msgid "No DTLS address\n" msgstr "DTLS ئادرېس يوق\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:126 msgid "Server offered no DTLS cipher option\n" msgstr "مۇلازىمېتىر DTLS شىفىر تاللانمىسى تەمىنلىمىگەن\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:133 msgid "No DTLS when connected via proxy\n" msgstr "ۋاكالەتچى بىلەن باغلانغاندا DTLS يوق\n" #: dtls.c:200 #, c-format msgid "DTLS option %s : %s\n" msgstr "DTLS تاللانما %s : %s\n" #: dtls.c:239 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:265 msgid "Attempt new DTLS connection\n" msgstr "يېڭى DTLS باغلىنىشىنى سىناۋاتىدۇ\n" #: dtls.c:292 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "DTLS بوغچىسى 0x%02x نى تاپشۇرۇۋالدى %d بايت\n" #: dtls.c:306 msgid "Got DTLS DPD request\n" msgstr "DTLS DPD ئىلتىماسىغا ئېرىشتى\n" #: dtls.c:312 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "DPD ئىنكاسىنى يوللىيالمىدى. ئۈزۈلۈشى مۇمكىن\n" #: dtls.c:316 msgid "Got DTLS DPD response\n" msgstr "DTLS DPD ئىنكاسىغا ئېرىشتى\n" #: dtls.c:320 msgid "Got DTLS Keepalive\n" msgstr "DTLS Keepalive غا ئېرىشتى\n" #: dtls.c:326 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:334 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "يوچۇن DTLS بوغچا تىپى %02x، ئۇزۇنلۇقى %d\n" #: dtls.c:356 msgid "DTLS rekey due\n" msgstr "DTLS ئاچقۇچ يېڭىلاش سەۋەبى\n" #: dtls.c:363 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: dtls.c:372 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "" #: dtls.c:378 msgid "Send DTLS DPD\n" msgstr "DTLS DPD يوللا\n" #: dtls.c:383 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "DPD ئىلتىماسىنى يوللىيالمىدى. ئۈزۈلۈشى مۇمكىن\n" #: dtls.c:396 msgid "Send DTLS Keepalive\n" msgstr "DTLS Keepalive يوللا\n" #: dtls.c:401 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "keepalive ئىلتىماسىنى يوللىيالمىدى. ئۈزۈلۈشى مۇمكىن\n" #: dtls.c:432 tun.c:541 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "يوچۇن بوغچا (len %d) تاپشۇرۇۋالدى: %02x %02x %02x %02x...\n" #: dtls.c:439 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "" #: dtls.c:443 msgid "UDP setsockopt" msgstr "" #: dtls.c:474 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "DTLS يېزىش خاتالىقى %d غا ئېرىشتى. SSL گە قايتىدۇ\n" #: dtls.c:488 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "DTLS يېزىش خاتالىقى %s غا ئېرىشتى. SSL گە قايتىدۇ\n" #: dtls.c:503 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "%d بايتلىق DTLS بوغچىسى يوللىدى؛ DTLS يوللاش %d قايتۇردى\n" #: dtls.c:531 #, c-format msgid "Initiating IPv4 MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:551 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" #: dtls.c:555 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" #: dtls.c:564 #, c-format msgid "Sending MTU DPD probe (%u bytes, min=%u, max=%u)\n" msgstr "" #: dtls.c:568 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "" #: dtls.c:582 dtls.c:690 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" #: dtls.c:594 #, c-format msgid "Timeout while waiting for DPD response; trying %d\n" msgstr "" #: dtls.c:601 dtls.c:682 msgid "Timeout while waiting for DPD response; resending probe.\n" msgstr "" #: dtls.c:608 dtls.c:709 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "" #: dtls.c:613 #, c-format msgid "Received MTU DPD probe (%u bytes of %u)\n" msgstr "" #: dtls.c:651 msgid "Initiating IPv6 MTU detection\n" msgstr "" #: dtls.c:666 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:670 #, c-format msgid "Failed to send DPD request (%d)\n" msgstr "" #: dtls.c:695 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:759 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "" #: dtls.c:762 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" #: esp.c:63 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:66 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:69 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:87 msgid "incoming" msgstr "" #: esp.c:88 msgid "outgoing" msgstr "" #: esp.c:90 esp.c:113 msgid "Send ESP probes\n" msgstr "" #: esp.c:138 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:155 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:161 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:174 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:181 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:193 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:202 msgid "ESP session established with server\n" msgstr "" #: esp.c:213 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:219 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:225 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:239 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:243 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:251 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:258 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:278 #, c-format msgid "Failed to encrypt ESP packet: %d\n" msgstr "" #: esp.c:294 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:301 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:307 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-dtls.c:190 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "" #: gnutls-dtls.c:198 msgid "Failed to generate DTLS priority string\n" msgstr "" #: gnutls-dtls.c:207 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "" #: gnutls-dtls.c:216 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "" #: gnutls-dtls.c:240 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "" #: gnutls-dtls.c:253 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:267 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:275 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "" #: gnutls-dtls.c:309 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "ئىلتىماس قىلىنغان شىفىر يۈرۈشلۈكى '%s' نىڭ يوچۇن DTLS پارامېتىرلىرى\n" #: gnutls-dtls.c:324 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "DTLS ئالدىنلىقىنى تەڭشىيەلمىدى: %s\n" #: gnutls-dtls.c:345 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "DTLS سۆزلىشىش پارامېتىرلىرىنى تەڭشىيەلمىدى: %s\n" #: gnutls-dtls.c:373 openssl-dtls.c:534 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "" #: gnutls-dtls.c:382 openssl-dtls.c:545 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "" #: gnutls-dtls.c:392 openssl-dtls.c:554 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" #: gnutls-dtls.c:405 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "DTLS MTU نى تەڭشىيەلمىدى: %s\n" #: gnutls-dtls.c:416 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: gnutls-dtls.c:422 openssl-dtls.c:572 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "" #: gnutls-dtls.c:437 openssl-dtls.c:653 openssl-dtls.c:657 msgid "DTLS handshake timed out\n" msgstr "DTLS قول ئېلىشىش ۋاقىت ھالقىدى\n" #: gnutls-dtls.c:440 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "DTLS قول ئېلىشالمىدى: %s\n" #: gnutls-dtls.c:444 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:121 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:132 msgid "Failed to generate ESP IV\n" msgstr "" #: gnutls-esp.c:161 gnutls-esp.c:217 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:168 openssl-esp.c:192 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:180 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:209 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:95 openssl.c:154 msgid "SSL write cancelled\n" msgstr "SSL يېزىشتىن ۋاز كەچتى\n" #: gnutls.c:99 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "SSL socket نى يازالمىدى: %s\n" #: gnutls.c:145 gnutls.c:237 openssl.c:204 openssl.c:271 msgid "SSL read cancelled\n" msgstr "SSL ئوقۇشتىن ۋاز كەچتى\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:158 msgid "SSL socket closed uncleanly\n" msgstr "" #: gnutls.c:168 gnutls.c:246 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "SSL socket تىن ئوقۇيالمىدى: %s\n" #: gnutls.c:266 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "SSL ئوقۇش خاتالىقى: %s؛ قايتا باغلىنىۋاتىدۇ.\n" #: gnutls.c:302 #, c-format msgid "SSL send failed: %s\n" msgstr "SSL يوللىيالمىدى: %s\n" #: gnutls.c:315 msgid "Could not extract expiration time of certificate\n" msgstr "گۇۋاھنامىنىڭ توشىدىغان قەرەلىنى ئوقۇيالمىدى\n" #: gnutls.c:320 openssl.c:1592 msgid "Client certificate has expired at" msgstr "خېرىدار گۇۋاھنامىسىنىڭ قەرەلى ئۆتىدىغان ۋاقىت" #: gnutls.c:322 openssl.c:1597 msgid "Client certificate expires soon at" msgstr "خېرىدار گۇۋاھنامىسىنىڭ قەرەلى توشىدىغان ۋاقىت" #: gnutls.c:371 openssl.c:771 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "ئاچقۇچ ئامبىرىدىن '%s' تۈرنى يۈكلىيەلمىدى: %s\n" #: gnutls.c:384 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "ئاچقۇچ/گۇۋاھنامە ھۆججىتى %s نى ئاچالمىدى: %s\n" #: gnutls.c:391 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "ئاچقۇچ/گۇۋاھنامە ھۆججىتى %s نى سىتاتىستىكا قىلالمىدى: %s\n" #: gnutls.c:400 msgid "Failed to allocate certificate buffer\n" msgstr "گۇۋاھنامە يىغلەكنى تەقسىملىيەلمىدى\n" #: gnutls.c:408 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "گۇۋاھنامىنى ئەسلەككە ئوقۇيالمىدى: %s\n" #: gnutls.c:439 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "PKCS#12 سانلىق مەلۇمات قۇرۇلمىسىنى تەڭشىيەلمىدى: %s\n" #: gnutls.c:462 openssl.c:534 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "PKCS#12 گۇۋاھنامە ھۆججەت شىفىرىنى يېشەلمىدى\n" #: gnutls.c:466 openssl.c:537 msgid "Enter PKCS#12 pass phrase:" msgstr "PKCS#12 ئىم جۈملىسى كىرگۈزۈڭ:" #: gnutls.c:489 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "PKCS#12 ھۆججەتنى بىر تەرەپ قىلالمىدى: %s\n" #: gnutls.c:501 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "PKCS#12 ھۆججەتنى يۈكلىيەلمىدى: %s\n" #: gnutls.c:584 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "X509 گۇۋاھنامىنى ئەكىرەلمىدى: %s\n" #: gnutls.c:594 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "PKCS#11 گۇۋاھنامىنى تەڭشىيەلمىدى: %s\n" #: gnutls.c:628 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "MD5 hash نى دەسلەپلەشتۈرەلمىدى: %s\n" #: gnutls.c:638 #, c-format msgid "MD5 hash error: %s\n" msgstr "MD5 hash خاتالىقى: %s\n" #: gnutls.c:696 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" #: gnutls.c:703 msgid "Cannot determine PEM encryption type\n" msgstr "PEM شىفىرلاش تىپىنى جەزملىيەلمىدى\n" #: gnutls.c:716 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "قوللىمايدىغان PEM شىفىرلاش تىپى: %s\n" #: gnutls.c:741 gnutls.c:754 msgid "Invalid salt in encrypted PEM file\n" msgstr "" #: gnutls.c:778 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "base64 كود يەشكۈچتە PEM ھۆججەتنى شىېفىرلىغاندا خاتالىق كۆرۈلدى: %s\n" #: gnutls.c:786 msgid "Encrypted PEM file too short\n" msgstr "شىفىرلانغان PEM ھۆججەت بەك قىسقا\n" #: gnutls.c:814 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "PEM ھۆججەت شىفىرىنى يېشىش ئۈچۈن شىفىرنى دەسلەپلەشتۈرەلمىدى: %s\n" #: gnutls.c:825 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "PEM ئاچقۇچ شىفىرىنى يېشەلمىدى: %s\n" #: gnutls.c:877 msgid "Decrypting PEM key failed\n" msgstr "PEM ئاچقۇچ شىفىرىنى يېشەلمىدى\n" #: gnutls.c:881 gnutls.c:1405 openssl.c:458 msgid "Enter PEM pass phrase:" msgstr "PEM ئىم جۈملىسى كىرگۈزۈڭ:" #: gnutls.c:942 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:949 msgid "This binary built without PKCS#11 support\n" msgstr "بۇ ئىككىلىك نەشرى PKCS#11 نى قوللىمايدۇ\n" #: gnutls.c:993 openssl-pkcs11.c:407 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "PKCS#11 گۇۋاھنامە %s ئىشلىتىدۇ\n" #: gnutls.c:994 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1012 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "PKCS#11 دىن گۇۋاھنامە يۈكلىيەلمىدى: %s\n" #: gnutls.c:1013 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1024 openssl.c:827 #, c-format msgid "Using certificate file %s\n" msgstr "گۇۋاھنامە ھۆججىتى %s نى ئىشلىتىۋاتىدۇ\n" #: gnutls.c:1052 msgid "PKCS#11 file contained no certificate\n" msgstr "PKCS#11 ھۆججەتتە گۇۋاھنامە يوق\n" #: gnutls.c:1078 msgid "No certificate found in file" msgstr "ھۆججەتتە گۇۋاھنامە يوق" #: gnutls.c:1083 #, c-format msgid "Loading certificate failed: %s\n" msgstr "گۇۋاھنامىنى يۈكلىيەلمىدى: %s\n" #: gnutls.c:1098 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1103 gnutls.c:1271 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "شەخسىي ئاچقۇچ قۇرۇلمىسىنى دەسلەپلەشتۈرۈۋاتقاندا خاتالىق كۆرۈلدى: %s\n" #: gnutls.c:1114 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1125 gnutls.c:1219 gnutls.c:1247 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1130 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "PKCS#11 ئاچقۇچ قۇرۇلمىسىنى دەسلەپلەشتۈرۈۋاتقاندا خاتالىق كۆرۈلدى: %s\n" #: gnutls.c:1259 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "PKCS#11 URL %s نى ئەكىرىۋاتقاندا خاتالىق كۆرۈلدى: %s\n" #: gnutls.c:1266 openssl-pkcs11.c:644 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "PKCS#11 ئاچقۇچ %s ئىشلىتىدۇ\n" #: gnutls.c:1281 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" "PKCS#11 ئاچقۇچنى شەخسىي ئاچقۇچ قۇرۇلمىسىغا ئەكىرىۋاتقاندا خاتالىق كۆرۈلدى: " "%s\n" #: gnutls.c:1299 #, c-format msgid "Using private key file %s\n" msgstr "شەخسىي ئاچقۇچ ھۆججەت %s نى ئىشلىتىدۇ\n" #: gnutls.c:1310 openssl.c:651 msgid "This version of OpenConnect was built without TPM support\n" msgstr "بۇ OpenConnect نەشرى TPM نى قوللىمايدۇ\n" #: gnutls.c:1326 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1347 msgid "Failed to interpret PEM file\n" msgstr "PEM ھۆججەتنى چۈشەندۈرەلمىدى\n" #: gnutls.c:1366 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "PKCS#1 شەخسىي ئاچقۇچنى يۈكلىيەلمىدى: %s\n" #: gnutls.c:1379 gnutls.c:1393 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "شەخسىي ئاچقۇچنى PKCS#8 سۈپىتىدە يۈكلىيەلمىدى: %s\n" #: gnutls.c:1401 gnutls.c:1434 openssl.c:1002 openssl.c:1012 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "PKCS#8 گۇۋاھنامە ھۆججەت شىفىرىنى يېشەلمىدى\n" #: gnutls.c:1426 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "شەخسىي ئاچقۇچ %s نىڭ تىپىنى جەزملىيەلمىدى\n" #: gnutls.c:1438 openssl.c:1008 msgid "Enter PKCS#8 pass phrase:" msgstr "PKCS#8 ئىم جۈملىسى كىرگۈزۈڭ:" #: gnutls.c:1454 #, c-format msgid "Failed to get key ID: %s\n" msgstr "ئاچقۇچ ID غا ئېرىشەلمىدى: %s\n" #: gnutls.c:1499 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "" "شەخسىي ئاچقۇچ بىلەن سىناق سانلىق مەلۇماتتا تىزىمغا كىرىۋاتقاندا خاتالىق " "كۆرۈلدى: %s\n" #: gnutls.c:1514 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "" "گۇۋاھنامە ئىمزاسىغا نىسبەتەن دەلىللەش ئېلىپ بېرىۋاتقاندا خاتالىق كۆرۈلدى: " "%s\n" #: gnutls.c:1539 msgid "No SSL certificate found to match private key\n" msgstr "شەخسىي ئاچقۇچقا ماس كېلىدىغان ھېچقانداق SSL گۇۋاھنامە تېپىلمىدى\n" #: gnutls.c:1551 openssl.c:560 openssl.c:709 #, c-format msgid "Using client certificate '%s'\n" msgstr "خېرىدار گۇۋاھنامىسى '%s' نى ئىشلىتىدۇ\n" #: gnutls.c:1558 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "گۇۋاھنامە كۈچتىن قېلىش تىزىمىنى تەڭشەۋاتقاندا خاتالىق كۆرۈلدى: %s\n" #: gnutls.c:1579 gnutls.c:1589 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1625 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" "ئاگاھلاندۇرۇش: GnuTLS خاتا تارقىتىلغان گۇۋاھنامە قايتۇردى؛ دەلىللەش مەغلۇپ " "بولۇشى مۇمكىن!\n" #: gnutls.c:1648 msgid "Got no issuer from PKCS#11\n" msgstr "" #: gnutls.c:1653 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "" #: gnutls.c:1679 msgid "Failed to allocate memory for supporting certificates\n" msgstr "قوللايدىغان گۇۋاھنامىلەر ئۈچۈن ئەسلەك تەقسىملىيەلمىدى\n" #: gnutls.c:1702 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "قوللايدىغان CA '%s' قوشۇۋاتىدۇ\n" #: gnutls.c:1724 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1748 #, c-format msgid "Setting certificate failed: %s\n" msgstr "گۇۋاھنامىنى تەڭشىيەلمىدى: %s\n" #: gnutls.c:1941 msgid "Server presented no certificate\n" msgstr "مۇلازىمېتىر تارقىتىدىغان گۇۋاھنامە يوق\n" #: gnutls.c:1949 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" #: gnutls.c:1954 openssl.c:1515 msgid "Server presented different cert on rehandshake\n" msgstr "" #: gnutls.c:1959 openssl.c:1518 msgid "Server presented identical cert on rehandshake\n" msgstr "" #: gnutls.c:1965 msgid "Error initialising X509 cert structure\n" msgstr "X509 گۇۋاھنامە قۇرۇلمىسىنى دەسلەپلەشتۈرەلمىدى\n" #: gnutls.c:1971 msgid "Error importing server's cert\n" msgstr "مۇلازىمېتىرنىڭ گۇۋاھنامىسىنى ئەكىرىۋاتقاندا خاتالىق كۆرۈلدى\n" #: gnutls.c:1980 main.c:1794 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:1985 msgid "Error checking server cert status\n" msgstr "مۇلازىمېتىر گۇۋاھنامە ھالىتىنى تەكشۈرۈۋاتقاندا خاتالىق كۆرۈلدى\n" #: gnutls.c:1990 msgid "certificate revoked" msgstr "گۇۋاھنامە كۈچتىن قالدى" #: gnutls.c:1992 msgid "signer not found" msgstr "ئىمزا قويغۇچى تېپىلمىدى" #: gnutls.c:1994 msgid "signer not a CA certificate" msgstr "ئىمزا قويغۇچى بىر CA گۇۋاھنامىسى ئەمەس" #: gnutls.c:1996 msgid "insecure algorithm" msgstr "بىخەتەر بولمىغان ھېسابلاش ئۇسۇلى" #: gnutls.c:1998 msgid "certificate not yet activated" msgstr "گۇۋاھنامە تېخى ئاكتىپلانمىغان" #: gnutls.c:2000 msgid "certificate expired" msgstr "گۇۋاھنامىنىڭ ۋاقتى ئۆتكەن" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2005 msgid "signature verification failed" msgstr "ئىمزا دەلىللىيەلمىدى" #: gnutls.c:2054 openssl.c:1399 openssl.c:1551 msgid "certificate does not match hostname" msgstr "گۇۋاھنامە ماشىنا ئاتىغا ماس كەلمىدى" #: gnutls.c:2059 openssl.c:1398 openssl.c:1557 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "مۇلازىمېتىر گۇۋاھنامىسىنى دەلىللىيەلمىدى: %s\n" #: gnutls.c:2126 msgid "Failed to allocate memory for cafile certs\n" msgstr "CA ھۆججەت گۇۋاھنامىسى ئۈچۈن ئەسلەك تەقسىملىيەلمىدى\n" #: gnutls.c:2147 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "CA ھۆججەتتىن گۇۋاھنامە ئوقۇيالمىدى: %s\n" #: gnutls.c:2163 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "CA ھۆججەت '%s' تىن گۇۋاھنامە ئاچالمىدى: %s\n" #: gnutls.c:2176 openssl.c:1679 msgid "Loading certificate failed. Aborting.\n" msgstr "گۇۋاھنامىنى يۈكلىيەلمىدى. چېكىنىۋاتىدۇ.\n" #: gnutls.c:2237 #, c-format msgid "Failed to set TLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2249 openssl.c:1796 #, c-format msgid "SSL negotiation with %s\n" msgstr "%s بىلەن SSL كېڭىشى\n" #: gnutls.c:2296 openssl.c:1822 msgid "SSL connection cancelled\n" msgstr "SSL باغلىنىشتىن ۋاز كەچتى\n" #: gnutls.c:2303 #, c-format msgid "SSL connection failure: %s\n" msgstr "SSL باغلىنالمىدى: %s\n" #: gnutls.c:2312 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "قول ئېلىشىۋاتقاندا GnuTLS ئەجەللىك بولمىغان قايتۇرۇش: %s\n" #: gnutls.c:2318 openssl.c:1839 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "%s دا HTTPS غا باغلاندى\n" #: gnutls.c:2321 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "" #: gnutls.c:2483 openssl-pkcs11.c:199 #, c-format msgid "PIN required for %s" msgstr "%s ئۈچۈن PIN زۆرۈر" #: gnutls.c:2487 openssl-pkcs11.c:202 msgid "Wrong PIN" msgstr "PIN خاتا" #: gnutls.c:2490 msgid "This is the final try before locking!" msgstr "بۇ قۇلۇپلاشتىن ئىلگىرىكى ئاخىرقى سىناق!" #: gnutls.c:2492 msgid "Only a few tries left before locking!" msgstr "قۇلۇپلاشتىن ئىلگىرى بىر قانچە قېتىملىق سىناقلا قالدى!" #: gnutls.c:2497 openssl-pkcs11.c:206 msgid "Enter PIN:" msgstr "PIN نى كىرگۈزۈڭ" #: gnutls.c:2583 openssl.c:1967 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2592 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:54 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "%d بايتلىق TPM ئىمزا فونكسىيەسىنى چاقىردى.\n" #: gnutls_tpm.c:61 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "TPM hash نەڭ قۇرالمىدى: %s\n" #: gnutls_tpm.c:68 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "TPM hash نەڭدە قىممەتنى تەڭشىيەلمىدى: %s\n" #: gnutls_tpm.c:78 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "TPM hash ئىمزالىيالمىدى: %s\n" #: gnutls_tpm.c:100 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "TSS key blob نى كود يېشىۋاتقاندا خاتالىق كۆرۈلدى: %s\n" #: gnutls_tpm.c:108 gnutls_tpm.c:119 gnutls_tpm.c:132 msgid "Error in TSS key blob\n" msgstr "TSS key blob خاتالىقى\n" #: gnutls_tpm.c:139 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "TPM تىل مۇھىتى قۇرالمىدى: %s\n" #: gnutls_tpm.c:146 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "TPM تىل مۇھىتىغا باغلىنالمىدى: %s\n" #: gnutls_tpm.c:154 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "TPM SRK ئاچقۇچىنى يۈكلىيەلمىدى: %s\n" #: gnutls_tpm.c:161 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "TPM SRK بىخەتەرلىك نەڭنى يۈكلىيەلمىدى: %s\n" #: gnutls_tpm.c:182 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "TPM PIN نى تەڭشىيەلمىدى: %s\n" #: gnutls_tpm.c:198 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "TPM key blob نى يۈكلىيەلمىدى: %s\n" #: gnutls_tpm.c:205 msgid "Enter TPM SRK PIN:" msgstr "TPM SRK PIN كىرگۈزۈڭ:" #: gnutls_tpm.c:226 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "ئاچقۇچ بىخەتەرلىك نەڭ قۇرالمىدى: %s\n" #: gnutls_tpm.c:234 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "بىخەتەرلىك ئاچقۇچىنى تەقسىملىيەلمىدى: %s\n" #: gnutls_tpm.c:240 msgid "Enter TPM key PIN:" msgstr "TPM key PIN كىرگۈزۈڭ:" #: gnutls_tpm.c:251 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "ئاچقۇچ PIN نى تەڭشىيەلمىدى: %s\n" #: gnutls_tpm2.c:92 gnutls_tpm2_esys.c:474 gnutls_tpm2_ibm.c:419 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:198 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:208 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:217 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:225 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:231 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:249 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:270 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:275 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:384 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2_esys.c:173 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:189 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:190 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:191 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:192 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:196 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:201 gnutls_tpm2_ibm.c:262 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:209 gnutls_tpm2_esys.c:303 gnutls_tpm2_esys.c:374 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:221 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:226 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:245 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:250 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:258 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:261 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:274 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:295 gnutls_tpm2_ibm.c:278 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:309 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:317 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:323 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:333 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:363 gnutls_tpm2_ibm.c:363 gnutls_tpm2_ibm.c:450 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:395 #, c-format msgid "TPM2 RSA sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:414 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:420 gnutls_tpm2_esys.c:500 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:464 gnutls_tpm2_ibm.c:405 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:494 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:532 gnutls_tpm2_ibm.c:485 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:546 gnutls_tpm2_ibm.c:502 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:555 gnutls_tpm2_ibm.c:512 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:569 gnutls_tpm2_ibm.c:523 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:54 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:226 #, c-format msgid "%s\n" msgstr "" #: gpst.c:229 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:417 #, c-format msgid "Unknown ESP %s algorithm: %s" msgstr "" #: gpst.c:477 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: gpst.c:483 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:487 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:498 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:551 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:560 oncp.c:835 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: gpst.c:627 msgid "ESP disabled" msgstr "" #: gpst.c:629 msgid "No ESP keys received" msgstr "" #: gpst.c:631 msgid "ESP support not available in this build" msgstr "" #: gpst.c:635 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:680 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:702 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:711 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:719 #, c-format msgid "Got inappropriate HTTP GET-tunnel response: %.*s\n" msgstr "" #: gpst.c:861 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" "VPN connectivity may be disabled or limited without HIP report submission.\n" "You need to provide a --csd-wrapper argument with the HIP report submission " "script.\n" msgstr "" #: gpst.c:871 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:900 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:905 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:911 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:913 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:942 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:966 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:972 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:999 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1015 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1051 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1072 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1082 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1086 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1092 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: gpst.c:1101 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1109 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1157 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1162 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1182 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1202 #, c-format msgid "Sending data packet of %d bytes\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1165 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "" #: http.c:319 msgid "No memory for allocating cookies\n" msgstr "cookies تەقسىملەيدىغان ئەسلەك يوق\n" #: http.c:394 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "HTTP ئىنكاسى '%s' نى تەھلىل قىلالمىدى\n" #: http.c:400 #, c-format msgid "Got HTTP response: %s\n" msgstr "HTTP ئىنكاسىغا ئېرىشتى: %s\n" #: http.c:408 msgid "Error processing HTTP response\n" msgstr "HTTPS ئىنكاسىنى بىر تەرەپ قىلىۋاتقاندا خاتالىق كۆرۈلدى\n" #: http.c:415 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "يوچۇن HTTP ئىنكاس قۇرى '%s' غا پەرۋا قىلمايۋاتىدۇ\n" #: http.c:435 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "ئىناۋەتسىز cookie تەمىنلىگەن: %s\n" #: http.c:454 msgid "SSL certificate authentication failed\n" msgstr "SSL گۇۋاھنامە دەلىللىيەلمىدى\n" #: http.c:485 #, c-format msgid "Response body has negative size (%d)\n" msgstr "ئىنكاس گەۋدىسى مەنپىي چوڭلۇقتا (%d)\n" #: http.c:496 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "يوچۇن يوللاش كودلىنىشى: %s\n" #. Now the body, if there is one #: http.c:515 #, c-format msgid "HTTP body %s (%d)\n" msgstr "HTTP گەۋدىسى %s (%d)\n" #: http.c:529 http.c:556 msgid "Error reading HTTP response body\n" msgstr "HTTP ئىنكاس گەۋدىسىنى ئوقۇش خاتالىقى\n" #: http.c:542 msgid "Error fetching chunk header\n" msgstr "بۆلەك بېشىغا ئېرىشىش خاتالىقى\n" #: http.c:566 msgid "Error fetching HTTP response body\n" msgstr "" "ۋاكالەتچى ئىنكاسىغا ئېرىشىشتە خاتالىق كۆرۈلدىHTTP ئىنكاس گەۋدىسىگە ئېرىشىش " "خاتالىقى\n" #: http.c:569 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "بۆلەك كۆد يېشىش خاتالىقى. مۆلچەرلىگىنى ''، ئېرىشكىنى: '%s'" #: http.c:581 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "باشلىنىش يېپىلمىغان HTTP 1.0 گەۋدىسىنى قوبۇل قىلالمايدۇ\n" #: http.c:708 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "قايتا نىشانلايدىغان URL '%s' نى تەھلىل قىلالمىدى: %s\n" #: http.c:732 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "قايتا نىشانلايدىغان https ئەمەس URL '%s' غا ئەگىشەلمىدى\n" #: http.c:760 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "مۇناسىۋەتلىك قايتا نىشانلاش ئۈچۈن يېڭى يولنى تەقسىملىيەلمىدى: %s\n" #: http.c:973 oncp.c:591 #, c-format msgid "Unexpected %d result from server\n" msgstr "مۇلازىمېتىرنىڭ ئويلىشىلمىغان %d نەتىجىسى\n" #: http.c:1021 msgid "request granted" msgstr "ئىجازەت ئىلتىماسى" #: http.c:1022 msgid "general failure" msgstr "ئادەتتىكى مەغلۇبىيەت" #: http.c:1023 msgid "connection not allowed by ruleset" msgstr "قائىدە توپلىمى باغلىنىشقا يول قويمىدى" #: http.c:1024 msgid "network unreachable" msgstr "تورغا يېتەلمەيدۇ" #: http.c:1025 msgid "host unreachable" msgstr "ماشىنىغا يېتەلمەيدۇ" #: http.c:1026 msgid "connection refused by destination host" msgstr "نىشان ماشىنا باغلىنىشنى رەت قىلدى" #: http.c:1027 msgid "TTL expired" msgstr "TTL ۋاقتى ئۆتتى" #: http.c:1028 msgid "command not supported / protocol error" msgstr "بۇيرۇقنى قوللىمايدۇ/كېلىشىم خاتالىقى" #: http.c:1029 msgid "address type not supported" msgstr "ئادرېس تىپىنى قوللىمايدۇ" #: http.c:1039 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1047 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1062 http.c:1118 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "دەلىللەش ئىلتىماسىنى SOCKS ۋاكالەتچىگە يېزىش خاتالىقى: %s\n" #: http.c:1070 http.c:1125 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "دەلىللەش ئىنكاسىنى SOCKS ۋاكالەتچىدىن ئوقۇش خاتالىقى: %s\n" #: http.c:1077 http.c:1131 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "SOCKS ۋاكالەتچىنىڭ ئويلاشمىغان دەلىللەش ئىنكاسى: %02x %02x\n" #: http.c:1083 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1087 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1143 http.c:1150 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1156 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1163 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1170 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1176 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "%s غا SOCKS ۋاكالەتچى باغلىنىش ئىلتىماسى: %d\n" #: http.c:1191 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" "باغلىنىش ئىلتىماسىنى SOCKS ۋاكالەتچىگە يېزىۋاتقاندا خاتالىق كۆرۈلدى: %s\n" #: http.c:1199 http.c:1241 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "باغلىنىش ئىنكاسىنى SOCKS ۋاكالەتچىدىن ئوقۇش خاتالىقى: %s\n" #: http.c:1205 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "SOCKS ۋاكالەتچىدىن كەلگەن ئويلاشمىغان باغلىنىش ئىنكاسى: %02x %02x...\n" #: http.c:1213 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "SOCKS ۋاكالەتچى خاتالىقى %02x: %s\n" #: http.c:1217 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "SOCKS ۋاكالەتچى خاتالىقى %02x\n" #: http.c:1234 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "SOCKS باغلىنىش ئىنكاسىدىكى ئويلاشمىغان ئادرېس تىپى %02x\n" #: http.c:1257 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "%s غا HTTP ۋاكالەتچى باغلىنىش ئىلتىماسى: %d\n" #: http.c:1292 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "ۋاكالەتچى ئىلتىماسىنى يوللىيالمىدى: %s\n" #: http.c:1315 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "ۋاكالەتچى CONNECT ئىلتىماسى مەغلۇپ بولدى: %d\n" #: http.c:1334 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "يوچۇن ۋاكالەتچى خاتالىقى '%s'\n" #: http.c:1383 msgid "Only http or socks(5) proxies supported\n" msgstr "پەقەت http ياكى socks(5) نىلا قوللايدۇ\n" #: library.c:112 msgid "Cisco AnyConnect or openconnect" msgstr "" #: library.c:113 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "" #: library.c:129 msgid "Juniper Network Connect" msgstr "" #: library.c:130 msgid "Compatible with Juniper Network Connect / Pulse Secure SSL VPN" msgstr "" #: library.c:148 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:149 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:211 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:233 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "ئىچكى SSL ئامبار نەشرىدە Cisco DTLS نى قوللىمايدۇ\n" #: library.c:656 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "مۇلازىمېتىر URL '%s' نى تەھلىل قىلالمىدى\n" #: library.c:662 msgid "Only https:// permitted for server URL\n" msgstr "مۇلازىمېتىر URL پەقەت https:// غىلا يول قويىدۇ\n" #: library.c:1056 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "" #: library.c:1085 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" #: library.c:1146 msgid "No form handler; cannot authenticate.\n" msgstr "كۆزنەك بىر تەرەپ قىلغۇچ يوق؛ دەلىللىيەلمەيدۇ\n" #: main.c:340 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:353 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:388 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:401 #, c-format msgid "fgetws() failed: %s\n" msgstr "" #: main.c:416 main.c:429 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:423 main.c:689 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "stdin دىن ھەرپ تىزىقىنى تەقسىملىيەلمىدى\n" #: main.c:584 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" "OpenConnect ھەققىدىكى ياردەمنى تۆۋەندىكى تورتۇرادىن كۆرۈڭ\n" "http://www.infradead.org/openconnect/mail.html\n" #: main.c:593 #, c-format msgid "Using OpenSSL. Features present:" msgstr "OpenSSL. ئىشلىتىش ئىقتىدار تونۇشتۇرۇش:" #: main.c:595 #, c-format msgid "Using GnuTLS. Features present:" msgstr "GnuTLS. ئىشلىتىش ئىقتىدار تونۇشتۇرۇش:" #: main.c:608 msgid "OpenSSL ENGINE not present" msgstr "OpenSSL موتورى مەۋجۇت ئەمەس" #: main.c:647 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" #: main.c:657 #, c-format msgid "Supported protocols:" msgstr "" #: main.c:659 main.c:675 msgid " (default)" msgstr "" #: main.c:672 msgid "Set VPN protocol" msgstr "" #: main.c:713 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:754 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:760 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:780 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "" #: main.c:793 #, c-format msgid "Usage: openconnect [options] \n" msgstr "ئىشلىتىلىشى: openconnect [options] \n" #: main.c:794 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" #: main.c:796 msgid "Read options from config file" msgstr "سەپلىمە ھۆججەتتىن تاللانمىلارنى ئوقۇ" #: main.c:797 msgid "Report version number" msgstr "دوكلات نەشر نومۇرى" #: main.c:798 msgid "Display help text" msgstr "ياردەم مەتىننى كۆرسەت" #: main.c:802 msgid "Authentication" msgstr "" #: main.c:803 msgid "Set login username" msgstr "تىزىمغا كىرىدىغان ئىشلەتكۈچى ئاتى تەڭشىكى" #: main.c:804 msgid "Disable password/SecurID authentication" msgstr "ئىم/SecurID دەلىللەشنى چەكلە" #: main.c:805 msgid "Do not expect user input; exit if it is required" msgstr "ئىشلەتكۈچى كىرگۈزۈشنى ئۈمىد قىلما؛ زۆرۈر بولسا چېكىن" #: main.c:806 msgid "Read password from standard input" msgstr "ئۆلچەملىك كىرگۈزۈشتىن ئىم ئوقۇ" #: main.c:807 msgid "Choose authentication login selection" msgstr "دەلىللەپ تىزىمغا كىرىش تاللانمىسىنى تاللاڭ" #: main.c:808 msgid "Provide authentication form responses" msgstr "" #: main.c:809 msgid "Use SSL client certificate CERT" msgstr "SSL خېرىدار گۇۋاھنامىسى CERT نى ئىشلەت" #: main.c:810 msgid "Use SSL private key file KEY" msgstr "SSL شەخسىي ئاچقۇچ ھۆججەت ئاچقۇچىنى ئىشلەت" #: main.c:811 msgid "Warn when certificate lifetime < DAYS" msgstr "گۇۋاھنامىنىڭ ئىناۋەتلىك ۋاقتىنى ئاگاھلاندۇر < DAYS" #: main.c:812 msgid "Set login usergroup" msgstr "usergroup تىزىمغا كىرىش تەڭشىكى" #: main.c:813 msgid "Set key passphrase or TPM SRK PIN" msgstr "ئاچقۇچ ئىم جۈملىسى ياكى TPM SRK PIN تەڭشىكى" #: main.c:814 msgid "Key passphrase is fsid of file system" msgstr "ھۆججەت سىستېمىسىنىڭ ھالقىلىق ئىم جۈملىسى fsid" #: main.c:815 msgid "Software token type: rsa, totp or hotp" msgstr "" #: main.c:816 msgid "Software token secret" msgstr "" #: main.c:818 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" #: main.c:821 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:824 msgid "Server validation" msgstr "" #: main.c:825 msgid "Server's certificate SHA1 fingerprint" msgstr "مۇلازىمېتىرنىڭ گۇۋاھنامە SHA1 بارماق ئىزى" #: main.c:826 msgid "Do not require server SSL cert to be valid" msgstr "مۇلازىمېتىر SSL گۇۋاھنامىسى زۆرۈر بولماسلىق ئىناۋەتلىك" #: main.c:827 msgid "Disable default system certificate authorities" msgstr "" #: main.c:828 msgid "Cert file for server verification" msgstr "مۇلازىمېتىر دەلىللەش ئۈچۈن گۇۋاھنامە ھۆججەت" #: main.c:830 msgid "Internet connectivity" msgstr "" #: main.c:831 msgid "Set proxy server" msgstr "ۋاكالەتچى مۇلازىمېتىر تەڭشەك" #: main.c:832 msgid "Set proxy authentication methods" msgstr "" #: main.c:833 msgid "Disable proxy" msgstr "ۋاكالەتچىنى چەكلە" #: main.c:834 msgid "Use libproxy to automatically configure proxy" msgstr "ئۆزلۈكىدىن سەپلىنىدىغان ۋاكالەتچى libproxy نى ئىشلەت" #: main.c:836 msgid "(NOTE: libproxy disabled in this build)" msgstr "(دىققەت: libproxy بۇ نەشرىدە چەكلەنگەن)" #: main.c:838 msgid "Connection retry timeout in seconds" msgstr "سېكۇنت بىلەن ئىپادىلەنگەن باغلىنىشنى قايتا سىناش مۆھلىتى" #: main.c:839 msgid "Use IP when connecting to HOST" msgstr "" #: main.c:840 msgid "copy TOS / TCLASS when using DTLS" msgstr "" #: main.c:841 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:843 msgid "Authentication (two-phase)" msgstr "" #: main.c:844 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:845 msgid "Read cookie from standard input" msgstr "ئۆلچەملىك كىرگۈزۈشتىن cookie ئوقۇ" #: main.c:846 msgid "Authenticate only and print login info" msgstr "پەقەت دەلىللەش ۋە باسىدىغان تىزىمغا كىرىش ئۇچۇرى بار" #: main.c:847 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:848 msgid "Print cookie before connecting" msgstr "" #: main.c:851 msgid "Process control" msgstr "" #: main.c:852 msgid "Continue in background after startup" msgstr "قوزغالغاندىن كېيىن ئارقا سۇپىدا داۋاملاشتۇر" #: main.c:853 msgid "Write the daemon's PID to this file" msgstr "نازارەتچىنىڭ PID نى بۇ ھۆججەتكە ياز" #: main.c:854 msgid "Drop privileges after connecting" msgstr "باغلانغاندىن كېيىن ئالدىنلىقنى تاشلا" #: main.c:857 msgid "Logging (two-phase)" msgstr "" #: main.c:859 msgid "Use syslog for progress messages" msgstr "سۈرئەت ئۇچۇرى ئۈچۈن syslog ئىشلەت" #: main.c:861 msgid "More output" msgstr "تېخىمۇ كۆپ چىقىرىش" #: main.c:862 msgid "Less output" msgstr "ئازراق چىقىرىش" #: main.c:863 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "" #: main.c:864 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:866 msgid "VPN configuration script" msgstr "" #: main.c:867 msgid "Use IFNAME for tunnel interface" msgstr "تونىل ئېغىزى ئۈچۈن IFNAME ئىشلەت" #: main.c:868 msgid "Shell command line for using a vpnc-compatible config script" msgstr "vpnc ماسلىشىشچان سەپلىمە قوليازمىسىنىڭ Shell بۇيرۇقى قۇرى" #: main.c:869 msgid "default" msgstr "كۆڭۈلدىكى" #: main.c:871 msgid "Pass traffic to 'script' program, not tun" msgstr "" #: main.c:874 msgid "Tunnel control" msgstr "" #: main.c:875 msgid "Do not ask for IPv6 connectivity" msgstr "IPv6 باغلىنىشىنى سورىما" #: main.c:876 msgid "XML config file" msgstr "XML سەپلىمە ھۆججەت" #: main.c:877 msgid "Request MTU from server (legacy servers only)" msgstr "" #: main.c:878 msgid "Indicate path MTU to/from server" msgstr "مۇلازىمېتىرغا/دىن MTU يولىنى كۆرسەت" #: main.c:879 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:880 msgid "Disable all compression" msgstr "" #: main.c:881 msgid "Set minimum Dead Peer Detection interval" msgstr "" #: main.c:882 msgid "Require perfect forward secrecy" msgstr "" #: main.c:883 msgid "Disable DTLS and ESP" msgstr "" #: main.c:884 msgid "OpenSSL ciphers to support for DTLS" msgstr "DTLS نى قوللايدىغان OpenSSL شىفىر" #: main.c:885 msgid "Set packet queue limit to LEN pkts" msgstr "بوغچا قاتار چېكىنى LEN pkts غا تەڭشە" #: main.c:887 msgid "Local system information" msgstr "" #: main.c:888 msgid "HTTP header User-Agent: field" msgstr "HTTP بېشىنىڭ ئىشلەتكۈچى ۋاكالەتچىسى: سۆز بۆلىكى" #: main.c:889 msgid "Local hostname to advertise to server" msgstr "" #: main.c:890 msgid "OS type (linux,linux-64,win,...) to report" msgstr "" #: main.c:891 msgid "reported version string during authentication" msgstr "" #: main.c:892 msgid "default:" msgstr "" #: main.c:895 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:896 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:897 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:900 msgid "Server bugs" msgstr "" #: main.c:901 msgid "Disable HTTP connection re-use" msgstr "HTTP باغلىنىشىنى قايتا ئىشلىتىشنى چەكلە" #: main.c:902 msgid "Do not attempt XML POST authentication" msgstr "" #: main.c:924 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:997 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "سەپلىمە ھۆججەتتىن قۇرغا ئېرىشەلمىدى: %s\n" #: main.c:1037 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "%d قۇردىكى تونۇيالمايدىغان تاللانما: '%s'\n" #: main.c:1047 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "'%s' تاللانما %d قۇردىكى ئۆزگەرگۈچىگە ئېرىشەلمىدى\n" #: main.c:1051 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "'%s' تاللانما %d قۇردىكى ئۆزگەرگۈچىنى ئىلتىماس قىلدى\n" #: main.c:1076 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "" #: main.c:1086 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "" #: main.c:1130 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "" #: main.c:1140 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:1147 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "ئاگاھلاندۇرۇش: بۇ نەشرىدىكى openconnect بولسا %s ئەمما libopenconnect " "ئامبىرى %s\n" #: main.c:1157 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "vpninfo قۇرۇلمىسىنى تەقسىملىيەلمىدى\n" #: main.c:1215 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "سەپلىمە ھۆججەتتە 'config' تاللانمىسىنى ئىشلىتەلمەىدى\n" #: main.c:1223 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "سەپلىمە ھۆججەت «%s»نى ئاچالمىدى: %s\n" #: main.c:1239 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1260 #, c-format msgid "Missing colon in resolve option\n" msgstr "" #: main.c:1265 #, c-format msgid "Failed to allocate memory\n" msgstr "" #: main.c:1349 main.c:1358 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d بەك كىچىك\n" #: main.c:1388 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "تاللانما -no-http-keepalive نى قايتا ئىشلىتىش سەۋەبىدىن بارلىق HTTP باغلىنىش " "چەكلەندى.\n" "ئەگەر بۇنىڭ ياردىمى بولسا غا دوكلات " "قىلىڭ.\n" #: main.c:1394 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" #: main.c:1411 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "قاتار ئۇزۇنلۇقىنىڭ نۆل بولۇشىغا يول قويۇلمايدۇ؛ 1 نى ئىشلىتىڭ\n" #: main.c:1425 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect نەشرى %s\n" #: main.c:1463 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "" #: main.c:1473 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "" #: main.c:1506 #, c-format msgid "Too many arguments on command line\n" msgstr "بۇيرۇق قۇرىدا ئۆزگەرگۈچى بەك كۆپ\n" #: main.c:1509 #, c-format msgid "No server specified\n" msgstr "مۇلازىمېتىر بەلگىلەنمىگەن\n" #: main.c:1525 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "openconnect نىڭ بۇ نەشرى libproxy نى قوللىمايدۇ \n" #: main.c:1555 #, c-format msgid "Error opening cmd pipe\n" msgstr "" #: main.c:1588 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "WebVPN cookie غا ئېرىشەلمىدى\n" #: main.c:1609 #, c-format msgid "Creating SSL connection failed\n" msgstr "SSL باغلىنىشى قۇرالمىدى\n" #: main.c:1625 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:1633 #, c-format msgid "Connected as %s%s%s, using SSL%s%s, with %s%s%s %s\n" msgstr "" #: main.c:1639 msgid "disabled" msgstr "" #: main.c:1639 msgid "in progress" msgstr "" #: main.c:1643 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "ھېچقانداق --script ئۆزگەرگۈچى تەمىنلەنمىگەن؛ DNS ۋە يېتەكلىگۈچ سەپلەنمىگەن\n" #: main.c:1645 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "http://www.infradead.org/openconnect/vpnc-script.html نى كۆرۈڭ\n" #: main.c:1658 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "يېزىش ئۈچۈن «%s»نى ئاچالمىدى: %s\n" #: main.c:1670 #, c-format msgid "Continuing in background; pid %d\n" msgstr "ئارقا سۇپىدا داۋاملاشتۇر؛ pid %d\n" #: main.c:1687 msgid "User requested reconnect\n" msgstr "" #: main.c:1695 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "" #: main.c:1699 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:1703 msgid "User cancelled (SIGINT/SIGTERM); exiting.\n" msgstr "" #: main.c:1707 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "" #: main.c:1711 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:1730 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "يېزىش ئۈچۈن %s نى ئاچالمىدى: %s\n" #: main.c:1738 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "سەپلىمىنى %s غا يازالمىدى: %s\n" #: main.c:1797 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "مۇلازىمېتىر SSL گۇۋاھنامىسى ماسلاشمىدى: %s\n" #: main.c:1816 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "VPN مۇلازىمىتىر «%s» دىن گۇۋاھنامە دەلىللىيەلمىدى.\n" "سەۋەبى: %s\n" #: main.c:1819 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" #: main.c:1820 #, c-format msgid " --servercert %s\n" msgstr "" #: main.c:1825 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "«%s» كىرگۈزۈلسە قوشۇلىدۇ، «%s» چېكىنىدۇ؛ ئۇنداق بولمىسا كۆرسىتىدۇ: " #: main.c:1826 main.c:1844 msgid "no" msgstr "ياق" #: main.c:1826 main.c:1832 msgid "yes" msgstr "ھەئە" #: main.c:1853 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:1887 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:1890 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "دەلىللەشكە «%s»نى تاللاپ ئىشلەتكىلى بولمايدۇ\n" #: main.c:1911 msgid "User input required in non-interactive mode\n" msgstr "تەسىرلەشمەيدىغان ھالەتتە ئىشلەتكۈچى كىرگۈزۈشى زۆرۈر\n" #: main.c:2149 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:2157 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:2203 main.c:2224 #, c-format msgid "Soft token string is invalid\n" msgstr "" #: main.c:2206 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "" #: main.c:2209 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "" #: main.c:2212 #, c-format msgid "General failure in libstoken\n" msgstr "" #: main.c:2227 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "" #: main.c:2230 #, c-format msgid "General failure in liboath\n" msgstr "" #: main.c:2241 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2244 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2247 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: mainloop.c:127 #, c-format msgid "Set up tun script failed\n" msgstr "" #: mainloop.c:134 #, c-format msgid "Set up tun device failed\n" msgstr "tun ئۈسكۈنىسىنى تەڭشىيەلمىدى\n" #: mainloop.c:265 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:273 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "ھېچقانداق ئىش يوق؛ %dms ئۇخلايدۇ…\n" #: mainloop.c:294 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:978 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:982 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:565 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:160 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:166 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:175 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:186 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:201 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:210 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:219 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:232 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:254 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:274 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:297 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:316 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:327 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:335 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:342 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:350 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:358 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:366 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:374 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:383 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:395 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:473 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:490 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:496 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:512 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:577 oncp.c:609 oncp.c:747 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:618 oncp.c:783 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:631 oncp.c:666 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:636 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:643 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:670 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:683 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:692 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "" #: oncp.c:698 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "" #: oncp.c:705 msgid "Failed to read continuation record length\n" msgstr "" #: oncp.c:711 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "" #: oncp.c:720 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "" #: oncp.c:726 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "" #: oncp.c:767 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:776 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:829 msgid "new incoming" msgstr "" #: oncp.c:830 msgid "new outgoing" msgstr "" #: oncp.c:855 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:864 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:868 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:874 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:969 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:972 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:991 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1053 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1058 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1073 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1134 msgid "Sent ESP enable control packet\n" msgstr "" #: oncp.c:1268 msgid "Logout successful.\n" msgstr "" #: openconnect-internal.h:1119 openconnect-internal.h:1127 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "DTLSv1 سۆزلىشىشنى دەسلەپلەشتۈرەلمىدى\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "" #: openssl-dtls.c:365 msgid "Initialise DTLSv1 CTX failed\n" msgstr "DTLSv1 CTX نى دەسلەپلەشتۈرەلمىدى\n" #: openssl-dtls.c:378 msgid "Set DTLS CTX version failed\n" msgstr "" #: openssl-dtls.c:395 msgid "Failed to generate DTLS key\n" msgstr "" #: openssl-dtls.c:413 msgid "Set DTLS cipher list failed\n" msgstr "DTLS شىفىر تىزىمىنى تەڭشىيەلمىدى\n" #: openssl-dtls.c:439 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:460 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "كونا كېلىشىم نەشرى 0x%x دا SSL_set_session() مەغلۇپ بولدى\n" "OpenSSL نىڭ 0.9.8m دىن كونا نەشرىنى ئىشلىتەمسىز؟\n" "http://rt.openssl.org/Ticket/Display.html?id=1751 نى كۆرۈڭ\n" "--no-dtls بۇيرۇق قۇرى تاللانمىسى ئىشلىتىلسە بۇ ئۇچۇردىن ساقلانغىلى بولىدۇ\n" #: openssl-dtls.c:493 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:566 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "" #: openssl-dtls.c:603 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" "OpenSSL سىزنىڭ نەشرىڭىزدىن كونا ئىكەن، شۇڭلاشقا DTLS مەغلۇپ بولۇشى مۇمكىن!" #: openssl-dtls.c:654 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" #: openssl-dtls.c:661 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "DTLS قول ئېلىشالمىدى: %d\n" #: openssl-esp.c:87 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:101 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:157 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:202 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:210 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:241 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:43 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:49 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "" #: openssl-pkcs11.c:269 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:272 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:275 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:279 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:286 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:300 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:306 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:342 openssl-pkcs11.c:565 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:349 openssl-pkcs11.c:575 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:383 openssl-pkcs11.c:617 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:393 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "" #: openssl-pkcs11.c:401 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:412 openssl.c:713 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl-pkcs11.c:458 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:464 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:497 msgid "Certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:503 openssl-pkcs11.c:526 msgid "Certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:506 msgid "Checking EC key matches cert\n" msgstr "" #: openssl-pkcs11.c:510 msgid "Failed to allocate signature buffer\n" msgstr "" #: openssl-pkcs11.c:520 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" #: openssl-pkcs11.c:638 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "" #: openssl-pkcs11.c:649 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:678 msgid "Add key from PKCS#11 failed\n" msgstr "" #: openssl-pkcs11.c:710 openssl-pkcs11.c:716 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:147 msgid "Failed to write to SSL socket\n" msgstr "SSL socket نى يازالمىدى\n" #: openssl.c:197 openssl.c:263 msgid "Failed to read from SSL socket\n" msgstr "SSL socket تىن ئوقۇيالمىدى\n" #: openssl.c:292 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" "SSL ئوقۇش خاتالىقى %d (مۇلازىمېتىر باغلىنىشنى تاقىشى مۇمكىن)؛ قايتا " "باغلىنىۋاتىدۇ.\n" #: openssl.c:317 #, c-format msgid "SSL_write failed: %d\n" msgstr "SSL_write مەغلۇپ بولدى: %d\n" #: openssl.c:389 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:465 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "PEM ئىم جۈملىسى بەك ئۇزۇن (%d >= %d)\n" #: openssl.c:498 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "%s نىڭ زىيادە گۇۋاھنامىسى: '%s'\n" #: openssl.c:548 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "PKCS#12 نى تەھلىل قىلالمىدى (ئۈستىدىكى خاتالىقلارنى كۆرۈڭ)\n" #: openssl.c:563 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS#12 دا گۇۋاھنامە يوق!\n" #: openssl.c:572 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS#12 دا شەخسىي ئاچقۇچ يوق!\n" #: openssl.c:577 msgid "PKCS#12" msgstr "" #: openssl.c:600 msgid "Can't load TPM engine.\n" msgstr "TPM موتۇرنى يۈكلىيەلمىدى.\n" #: openssl.c:606 msgid "Failed to init TPM engine\n" msgstr "TPM موتۇرنى دەسلەپلەشتۈرەلمىدى\n" #: openssl.c:616 msgid "Failed to set TPM SRK password\n" msgstr "TPM SRK ئىمنى تەڭشىيەلمىدى\n" #: openssl.c:630 msgid "Failed to load TPM private key\n" msgstr "TPM شەخسىي ئاچقۇچنى يۈكلىيەلمىدى\n" #: openssl.c:636 msgid "Add key from TPM failed\n" msgstr "TPM دىن ئاچقۇچ قوشالمىدى\n" #: openssl.c:687 openssl.c:835 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "گۇۋاھنامە ھۆججىتى %s نى ئاچالمىدى: %s\n" #: openssl.c:697 msgid "Loading certificate failed\n" msgstr "گۇۋاھنامىنى يۈكلىيەلمىدى\n" #: openssl.c:735 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:748 msgid "PEM file" msgstr "" #: openssl.c:777 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "ئاچقۇچ ئامبار تۈرى '%s' دىن BIO نى قۇرالمىدى\n" #: openssl.c:802 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "شەخسىي ئاچقۇچنى يۈكلىيەلمىدى (ئىم جۈملىسى خاتا؟)\n" #: openssl.c:808 msgid "Loading private key failed (see above errors)\n" msgstr "شەخسىي ئاچقۇچنى يۈكلىيەلمىدى (ئۈستىدىكى خاتالىقلارنى كۆرۈڭ)\n" #: openssl.c:858 msgid "Failed to load X509 certificate from keystore\n" msgstr "ئاچقۇچ ئامبىرىدىن X509 گۇۋاھنامىنى يۈكلىيەلمىدى\n" #: openssl.c:864 msgid "Failed to use X509 certificate from keystore\n" msgstr "ئاچقۇچ ئامبىرىدىن X509 گۇۋاھنامىنى ئىشلىتەلمىدى\n" #: openssl.c:896 msgid "Failed to use private key from keystore\n" msgstr "ئاچقۇچ ئامبىرىدىن شەخسىي ئاچقۇچنى ئىشلىتەلمىدى\n" #: openssl.c:912 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "شەخسىي ئاچقۇچ ھۆججىتى %s نى ئاچالمىدى: %s\n" #: openssl.c:936 openssl.c:951 openssl.c:972 openssl.c:1038 msgid "Loading private key failed\n" msgstr "" #: openssl.c:1032 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1049 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "شەخسىي ئاچقۇچ ھۆججىتى %s نى تونۇيالمىدى\n" #: openssl.c:1203 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "DNS altname '%s' ماسلاشتى\n" #: openssl.c:1210 #, c-format msgid "No match for altname '%s'\n" msgstr "altname '%s' ماس كېلىدىغىنى يوق\n" #: openssl.c:1224 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" #: openssl.c:1235 openssl.c:1381 #, c-format msgid "Matched %s address '%s'\n" msgstr "ماسلاشقىنى %s ئادرېس '%s'\n" #: openssl.c:1242 #, c-format msgid "No match for %s address '%s'\n" msgstr "'%s' ئۈچۈن ماس كېلىدىغىنى يوق ئادرېس '%s'\n" #: openssl.c:1284 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "URI '%s' نىڭ بوش ئەمەس يولى بار؛ پەرۋا قىلمايۋاتىدۇ\n" #: openssl.c:1289 #, c-format msgid "Matched URI '%s'\n" msgstr "ماس كەلگەن URI '%s'\n" #: openssl.c:1300 #, c-format msgid "No match for URI '%s'\n" msgstr "URI '%s' ئۈچۈن ماس كەلگىنى يوق\n" #: openssl.c:1315 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" #: openssl.c:1323 msgid "No subject name in peer cert!\n" msgstr "" #: openssl.c:1343 msgid "Failed to parse subject name in peer cert\n" msgstr "" #: openssl.c:1350 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "" #: openssl.c:1355 openssl.c:1389 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "" #: openssl.c:1451 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "cafile دىن زىيادە گۇۋاھنامە: '%s'\n" #: openssl.c:1589 msgid "Error in client cert notAfter field\n" msgstr "خېرىدار گۇۋاھنامەدىكى notAfter سۆز بۆلەك خاتالىقى\n" #: openssl.c:1602 msgid "" msgstr "<خاتالىق>" #: openssl.c:1655 msgid "Create TLSv1 CTX failed\n" msgstr "" #: openssl.c:1674 msgid "SSL certificate and key do not match\n" msgstr "" #: openssl.c:1719 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "CA ھۆججەت '%s' تىن گۇۋاھنامە ئوقۇش خاتالىقى\n" #: openssl.c:1752 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "CA ھۆججەت '%s' تىن ئوقۇيالمىدى\n" #: openssl.c:1812 msgid "SSL connection failure\n" msgstr "SSL باغلىنالمىدى\n" #: openssl.c:1973 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:130 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "" #: script.c:134 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "" #: script.c:507 script.c:555 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "" #: script.c:562 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "" #: script.c:570 #, c-format msgid "Script '%s' returned error %d\n" msgstr "" #: ssl.c:108 msgid "Socket connect cancelled\n" msgstr "Socket باغلىنىشتىن ۋاز كەچتى\n" #: ssl.c:217 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "" #: ssl.c:221 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "" #: ssl.c:289 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "libproxy دىن كەلگەن ۋاكالەتچى: %s://%s:%d/\n" #: ssl.c:317 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "ماشىنا '%s' نىڭ getaddrinfo مەغلۇپ بولدى: %s\n" #: ssl.c:326 ssl.c:451 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:341 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "" #: ssl.c:342 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "" #: ssl.c:362 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "" #: ssl.c:374 msgid "Failed to allocate sockaddr storage\n" msgstr "sockaddr ساقلىغۇچنى تەقسىملىيەلمىدى\n" #: ssl.c:416 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "" #: ssl.c:434 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:446 #, c-format msgid "Failed to connect to host %s\n" msgstr "ماشىنا %s غا باغلىنالمىدى\n" #: ssl.c:465 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:536 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:564 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:575 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:603 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:694 msgid "No error" msgstr "خاتالىق يوق" #: ssl.c:695 msgid "Keystore locked" msgstr "" #: ssl.c:696 msgid "Keystore uninitialized" msgstr "ئاچقۇچ ئامبىرى دەسلەپلەشتۈرۈلمىگەن" #: ssl.c:697 msgid "System error" msgstr "سىستېما خاتالىقى" #: ssl.c:698 msgid "Protocol error" msgstr "كېلىشىم خاتالىقى" #: ssl.c:699 msgid "Permission denied" msgstr "ھوقۇقى رەت قىلىندى" #: ssl.c:700 msgid "Key not found" msgstr "ئاچقۇچ تېپىلمىدى" #: ssl.c:701 msgid "Value corrupted" msgstr "قىممەت بۇزۇلغان" #: ssl.c:702 msgid "Undefined action" msgstr "بەلگىلەنمىگەن مەشغۇلات" #: ssl.c:706 msgid "Wrong password" msgstr "ئىم خاتا" #: ssl.c:707 msgid "Unknown error" msgstr "يوچۇن خاتالىق" #: ssl.c:896 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:931 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:950 msgid "Open UDP socket" msgstr "" #: ssl.c:981 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:989 msgid "Bind UDP socket" msgstr "" #: ssl.c:996 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:1034 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:1038 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "ئۇخلاش %ds، قالغان مۆھلىتى %ds\n" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "" #: stoken.c:82 msgid "Device ID:" msgstr "ئۈسكۈنە كىملىكى:" #: stoken.c:89 msgid "Password:" msgstr "ئىم:" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "ئۈسكۈنە كىملىكى ياكى ئىم خاتا؛ قايتا سىناڭ.\n" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "" #: stoken.c:185 msgid "Enter software token PIN." msgstr "" #: stoken.c:189 msgid "PIN:" msgstr "PIN:" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "ئىناۋەتسىز PIN پىچىمى، قايتا سىناڭ.\n" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "" #: tun-win32.c:76 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:139 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "" #: tun-win32.c:154 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" #: tun-win32.c:186 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" #: tun-win32.c:200 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "" #: tun-win32.c:231 #, c-format msgid "Failed to open %s\n" msgstr "" #: tun-win32.c:236 #, c-format msgid "Opened tun device %s\n" msgstr "" #: tun-win32.c:244 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:250 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:271 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:283 tun-win32.c:406 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:316 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:321 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:335 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:358 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:368 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:371 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:423 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "" #: tun.c:92 msgid "Can't push IP" msgstr "IP نى ئىتتىرەلمىدى" #: tun.c:102 msgid "Can't set ifname" msgstr "ifname نى تەڭشىيەلمىدى" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "%s ئاچالمايدۇ: %s" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "" #: tun.c:139 msgid "open /dev/tun" msgstr "/dev/tun ئاچ" #: tun.c:145 msgid "Failed to create new tun" msgstr "يېڭى tun قۇرالمىدى" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "" #: tun.c:205 msgid "open net" msgstr "ئوچۇق تور" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "tun ئۈسكۈنىسىنى ئاچالمىدى: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "ئىناۋەتسىز ئېغىز ئاتى '%s'؛ 'tun%%d' غا ماسلىشىش كېرەك\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "'%s' ئاچالمىدى: %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:479 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:484 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:488 msgid "setpgid" msgstr "" #: tun.c:493 msgid "execl" msgstr "execl" #: tun.c:498 msgid "(script)" msgstr "(قوليازما)" #: tun.c:566 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "كەلگەن بوغچىنى يازالمىدى: %s\n" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "«%s» ماشىنىنى raw ماشىنا سۈپىتىدە بىر تەرەپ قىلىدۇ\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "XML سەپلىمە ھۆججەت SHA1: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "XML سەپلىمە ھۆججىتى «%s» نى تەھلىل قىلالمىدى\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "«%s» ماشىنىنىڭ ئادرېسى «%s»\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "«%s» ماشىنىنىڭ UserGroup «%s»\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "«%s» ماشىنا سەپلىمە تىزىمىدا يوق؛ raw ماشىنا سۈپىتىدە بىر تەرەپ قىلىدۇ\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:174 msgid "select applet command" msgstr "" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:274 msgid "unlock command" msgstr "" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:412 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:619 msgid "calculate command" msgstr "" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-8.05/po/tg.po0000664000076400007640000025212113470043037017131 0ustar00dwoodhoudwoodhou00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2019-05-18 10:44-0700\n" "PO-Revision-Date: 2012-06-21 09:22+0000\n" "Last-Translator: David Woodhouse \n" "Language-Team: Tajik (http://www.transifex.net/projects/p/meego/language/" "tg/)\n" "Language: tg\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1)\n" #: auth-globalprotect.c:108 #, c-format msgid "" "SAML login is required via %s to this URL:\n" "\t%s" msgstr "" #: auth-globalprotect.c:110 msgid "Please enter your username and password" msgstr "" #: auth-globalprotect.c:119 msgid "Username" msgstr "" #: auth-globalprotect.c:134 msgid "Password" msgstr "" #: auth-globalprotect.c:181 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:260 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:266 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:272 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:315 msgid "Please select GlobalProtect gateway." msgstr "" #: auth-globalprotect.c:325 msgid "GATEWAY:" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:379 #, c-format msgid "%d gateway servers available:\n" msgstr "" #: auth-globalprotect.c:400 #, c-format msgid " %s (%s)\n" msgstr "" #: auth-globalprotect.c:484 auth-juniper.c:730 auth.c:669 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth-globalprotect.c:584 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" #: auth-globalprotect.c:636 oncp.c:1266 msgid "Logout failed.\n" msgstr "" #: auth-globalprotect.c:638 msgid "Logout successful\n" msgstr "" #: auth-juniper.c:142 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:153 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:163 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:236 auth.c:408 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "" #: auth-juniper.c:267 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "" #: auth-juniper.c:337 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:359 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:397 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:411 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:418 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:425 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:432 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:439 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:445 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:452 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:481 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:650 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:667 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:675 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:713 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:716 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth.c:96 msgid "Form choice has no name\n" msgstr "" #: auth.c:181 #, c-format msgid "name %s not input\n" msgstr "" #: auth.c:188 msgid "No input type in form\n" msgstr "" #: auth.c:200 msgid "No input name in form\n" msgstr "" #: auth.c:230 #, c-format msgid "Unknown input type %s in form\n" msgstr "" #: auth.c:540 gpst.c:214 msgid "Empty response from server\n" msgstr "" #: auth.c:551 gpst.c:289 msgid "Failed to parse server response\n" msgstr "" #: auth.c:553 gpst.c:291 #, c-format msgid "Response was:%s\n" msgstr "" #: auth.c:575 msgid "Received when not expected.\n" msgstr "" #: auth.c:603 msgid "XML response has no \"auth\" node\n" msgstr "" #: auth.c:636 msgid "Asked for password but '--no-passwd' set\n" msgstr "" #: auth.c:925 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:931 cstp.c:335 http.c:916 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "" #: auth.c:952 msgid "Failed to send GET request for new config\n" msgstr "" #: auth.c:976 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" #: auth.c:981 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:992 auth.c:1044 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" #: auth.c:1003 mainloop.c:144 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "" #: auth.c:1010 mainloop.c:151 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "" #: auth.c:1017 mainloop.c:158 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "" #: auth.c:1024 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "" #: auth.c:1031 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "" #: auth.c:1053 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:1060 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" #: auth.c:1067 msgid "Trying to run Linux CSD trojan script.\n" msgstr "" #: auth.c:1094 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1102 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "" #: auth.c:1111 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "" #: auth.c:1141 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" #: auth.c:1189 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "" #: auth.c:1221 msgid "Unknown response from server\n" msgstr "" #: auth.c:1342 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1346 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" #: auth.c:1362 msgid "XML POST enabled\n" msgstr "" #: auth.c:1405 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "" #: compat.c:207 #, c-format msgid "(error 0x%lx)" msgstr "" #: compat.c:210 msgid "(Error while describing error!)" msgstr "" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:112 gpst.c:341 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "" #: cstp.c:134 gpst.c:360 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "" #: cstp.c:281 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:312 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:328 http.c:384 msgid "Error fetching HTTPS response\n" msgstr "" #: cstp.c:355 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "" #: cstp.c:360 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "" #: cstp.c:367 #, c-format msgid "Got CONNECT response: %s\n" msgstr "" #: cstp.c:396 cstp.c:404 msgid "No memory for options\n" msgstr "" #: cstp.c:413 http.c:444 msgid "" msgstr "" #: cstp.c:433 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "" #: cstp.c:450 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "" #: cstp.c:468 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:510 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "" #: cstp.c:585 msgid "No MTU received. Aborting\n" msgstr "" #: cstp.c:593 gpst.c:641 msgid "No IP address received. Aborting\n" msgstr "" #: cstp.c:599 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: cstp.c:605 gpst.c:648 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "" #: cstp.c:614 gpst.c:657 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" #: cstp.c:622 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "" #: cstp.c:630 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "" #: cstp.c:638 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "" #: cstp.c:640 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "" #: cstp.c:702 msgid "Compression setup failed\n" msgstr "" #: cstp.c:719 msgid "Allocation of deflate buffer failed\n" msgstr "" #: cstp.c:781 msgid "inflate failed\n" msgstr "" #: cstp.c:804 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:817 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:824 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:829 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:849 #, c-format msgid "deflate failed %d\n" msgstr "" #: cstp.c:922 dtls.c:281 dtls.c:740 esp.c:129 gpst.c:1042 mainloop.c:69 #: oncp.c:914 msgid "Allocation failed\n" msgstr "" #: cstp.c:933 gpst.c:1055 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: cstp.c:946 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" #: cstp.c:960 msgid "Got CSTP DPD request\n" msgstr "" #: cstp.c:966 msgid "Got CSTP DPD response\n" msgstr "" #: cstp.c:971 msgid "Got CSTP Keepalive\n" msgstr "" #: cstp.c:976 oncp.c:1003 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:993 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "" #: cstp.c:996 msgid "Received server disconnect\n" msgstr "" #: cstp.c:1004 msgid "Compressed packet received in !deflate mode\n" msgstr "" #: cstp.c:1013 msgid "received server terminate packet\n" msgstr "" #: cstp.c:1020 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "" #: cstp.c:1063 gpst.c:1142 oncp.c:1121 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1091 oncp.c:1155 msgid "CSTP rekey due\n" msgstr "" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1098 oncp.c:1162 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: cstp.c:1109 oncp.c:1173 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "" #: cstp.c:1113 gpst.c:1166 oncp.c:1091 oncp.c:1177 msgid "Reconnect failed\n" msgstr "" #: cstp.c:1129 oncp.c:1193 msgid "Send CSTP DPD\n" msgstr "" #: cstp.c:1141 oncp.c:1204 msgid "Send CSTP Keepalive\n" msgstr "" #: cstp.c:1166 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1177 oncp.c:1238 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:1216 #, c-format msgid "Send BYE packet: %s\n" msgstr "" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:113 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:119 msgid "No DTLS address\n" msgstr "" #. We probably didn't offer it any ciphers it liked #: dtls.c:126 msgid "Server offered no DTLS cipher option\n" msgstr "" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:133 msgid "No DTLS when connected via proxy\n" msgstr "" #: dtls.c:200 #, c-format msgid "DTLS option %s : %s\n" msgstr "" #: dtls.c:239 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:265 msgid "Attempt new DTLS connection\n" msgstr "" #: dtls.c:292 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "" #: dtls.c:306 msgid "Got DTLS DPD request\n" msgstr "" #: dtls.c:312 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "" #: dtls.c:316 msgid "Got DTLS DPD response\n" msgstr "" #: dtls.c:320 msgid "Got DTLS Keepalive\n" msgstr "" #: dtls.c:326 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:334 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "" #: dtls.c:356 msgid "DTLS rekey due\n" msgstr "" #: dtls.c:363 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: dtls.c:372 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "" #: dtls.c:378 msgid "Send DTLS DPD\n" msgstr "" #: dtls.c:383 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "" #: dtls.c:396 msgid "Send DTLS Keepalive\n" msgstr "" #: dtls.c:401 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" #: dtls.c:432 tun.c:541 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "" #: dtls.c:439 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "" #: dtls.c:443 msgid "UDP setsockopt" msgstr "" #: dtls.c:474 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "" #: dtls.c:488 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "" #: dtls.c:503 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "" #: dtls.c:531 #, c-format msgid "Initiating IPv4 MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:551 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" #: dtls.c:555 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" #: dtls.c:564 #, c-format msgid "Sending MTU DPD probe (%u bytes, min=%u, max=%u)\n" msgstr "" #: dtls.c:568 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "" #: dtls.c:582 dtls.c:690 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" #: dtls.c:594 #, c-format msgid "Timeout while waiting for DPD response; trying %d\n" msgstr "" #: dtls.c:601 dtls.c:682 msgid "Timeout while waiting for DPD response; resending probe.\n" msgstr "" #: dtls.c:608 dtls.c:709 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "" #: dtls.c:613 #, c-format msgid "Received MTU DPD probe (%u bytes of %u)\n" msgstr "" #: dtls.c:651 msgid "Initiating IPv6 MTU detection\n" msgstr "" #: dtls.c:666 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:670 #, c-format msgid "Failed to send DPD request (%d)\n" msgstr "" #: dtls.c:695 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:759 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "" #: dtls.c:762 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" #: esp.c:63 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:66 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:69 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:87 msgid "incoming" msgstr "" #: esp.c:88 msgid "outgoing" msgstr "" #: esp.c:90 esp.c:113 msgid "Send ESP probes\n" msgstr "" #: esp.c:138 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:155 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:161 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:174 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:181 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:193 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:202 msgid "ESP session established with server\n" msgstr "" #: esp.c:213 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:219 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:225 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:239 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:243 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:251 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:258 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:278 #, c-format msgid "Failed to encrypt ESP packet: %d\n" msgstr "" #: esp.c:294 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:301 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:307 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-dtls.c:190 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "" #: gnutls-dtls.c:198 msgid "Failed to generate DTLS priority string\n" msgstr "" #: gnutls-dtls.c:207 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "" #: gnutls-dtls.c:216 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "" #: gnutls-dtls.c:240 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "" #: gnutls-dtls.c:253 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:267 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:275 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "" #: gnutls-dtls.c:309 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "" #: gnutls-dtls.c:324 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "" #: gnutls-dtls.c:345 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "" #: gnutls-dtls.c:373 openssl-dtls.c:534 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "" #: gnutls-dtls.c:382 openssl-dtls.c:545 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "" #: gnutls-dtls.c:392 openssl-dtls.c:554 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" #: gnutls-dtls.c:405 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "" #: gnutls-dtls.c:416 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: gnutls-dtls.c:422 openssl-dtls.c:572 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "" #: gnutls-dtls.c:437 openssl-dtls.c:653 openssl-dtls.c:657 msgid "DTLS handshake timed out\n" msgstr "" #: gnutls-dtls.c:440 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "" #: gnutls-dtls.c:444 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:121 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:132 msgid "Failed to generate ESP IV\n" msgstr "" #: gnutls-esp.c:161 gnutls-esp.c:217 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:168 openssl-esp.c:192 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:180 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:209 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:95 openssl.c:154 msgid "SSL write cancelled\n" msgstr "" #: gnutls.c:99 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "" #: gnutls.c:145 gnutls.c:237 openssl.c:204 openssl.c:271 msgid "SSL read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:158 msgid "SSL socket closed uncleanly\n" msgstr "" #: gnutls.c:168 gnutls.c:246 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "" #: gnutls.c:266 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "" #: gnutls.c:302 #, c-format msgid "SSL send failed: %s\n" msgstr "" #: gnutls.c:315 msgid "Could not extract expiration time of certificate\n" msgstr "" #: gnutls.c:320 openssl.c:1592 msgid "Client certificate has expired at" msgstr "" #: gnutls.c:322 openssl.c:1597 msgid "Client certificate expires soon at" msgstr "" #: gnutls.c:371 openssl.c:771 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" #: gnutls.c:384 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "" #: gnutls.c:391 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" #: gnutls.c:400 msgid "Failed to allocate certificate buffer\n" msgstr "" #: gnutls.c:408 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "" #: gnutls.c:439 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "" #: gnutls.c:462 openssl.c:534 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "" #: gnutls.c:466 openssl.c:537 msgid "Enter PKCS#12 pass phrase:" msgstr "" #: gnutls.c:489 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "" #: gnutls.c:501 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:584 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "" #: gnutls.c:594 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "" #: gnutls.c:628 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "" #: gnutls.c:638 #, c-format msgid "MD5 hash error: %s\n" msgstr "" #: gnutls.c:696 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" #: gnutls.c:703 msgid "Cannot determine PEM encryption type\n" msgstr "" #: gnutls.c:716 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "" #: gnutls.c:741 gnutls.c:754 msgid "Invalid salt in encrypted PEM file\n" msgstr "" #: gnutls.c:778 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "" #: gnutls.c:786 msgid "Encrypted PEM file too short\n" msgstr "" #: gnutls.c:814 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" #: gnutls.c:825 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "" #: gnutls.c:877 msgid "Decrypting PEM key failed\n" msgstr "" #: gnutls.c:881 gnutls.c:1405 openssl.c:458 msgid "Enter PEM pass phrase:" msgstr "" #: gnutls.c:942 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:949 msgid "This binary built without PKCS#11 support\n" msgstr "" #: gnutls.c:993 openssl-pkcs11.c:407 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "" #: gnutls.c:994 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1012 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "" #: gnutls.c:1013 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1024 openssl.c:827 #, c-format msgid "Using certificate file %s\n" msgstr "" #: gnutls.c:1052 msgid "PKCS#11 file contained no certificate\n" msgstr "" #: gnutls.c:1078 msgid "No certificate found in file" msgstr "" #: gnutls.c:1083 #, c-format msgid "Loading certificate failed: %s\n" msgstr "" #: gnutls.c:1098 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1103 gnutls.c:1271 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "" #: gnutls.c:1114 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1125 gnutls.c:1219 gnutls.c:1247 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1130 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "" #: gnutls.c:1259 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "" #: gnutls.c:1266 openssl-pkcs11.c:644 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "" #: gnutls.c:1281 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" #: gnutls.c:1299 #, c-format msgid "Using private key file %s\n" msgstr "" #: gnutls.c:1310 openssl.c:651 msgid "This version of OpenConnect was built without TPM support\n" msgstr "" #: gnutls.c:1326 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1347 msgid "Failed to interpret PEM file\n" msgstr "" #: gnutls.c:1366 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "" #: gnutls.c:1379 gnutls.c:1393 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "" #: gnutls.c:1401 gnutls.c:1434 openssl.c:1002 openssl.c:1012 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "" #: gnutls.c:1426 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "" #: gnutls.c:1438 openssl.c:1008 msgid "Enter PKCS#8 pass phrase:" msgstr "" #: gnutls.c:1454 #, c-format msgid "Failed to get key ID: %s\n" msgstr "" #: gnutls.c:1499 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "" #: gnutls.c:1514 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "" #: gnutls.c:1539 msgid "No SSL certificate found to match private key\n" msgstr "" #: gnutls.c:1551 openssl.c:560 openssl.c:709 #, c-format msgid "Using client certificate '%s'\n" msgstr "" #: gnutls.c:1558 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "" #: gnutls.c:1579 gnutls.c:1589 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1625 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" #: gnutls.c:1648 msgid "Got no issuer from PKCS#11\n" msgstr "" #: gnutls.c:1653 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "" #: gnutls.c:1679 msgid "Failed to allocate memory for supporting certificates\n" msgstr "" #: gnutls.c:1702 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "" #: gnutls.c:1724 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1748 #, c-format msgid "Setting certificate failed: %s\n" msgstr "" #: gnutls.c:1941 msgid "Server presented no certificate\n" msgstr "" #: gnutls.c:1949 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" #: gnutls.c:1954 openssl.c:1515 msgid "Server presented different cert on rehandshake\n" msgstr "" #: gnutls.c:1959 openssl.c:1518 msgid "Server presented identical cert on rehandshake\n" msgstr "" #: gnutls.c:1965 msgid "Error initialising X509 cert structure\n" msgstr "" #: gnutls.c:1971 msgid "Error importing server's cert\n" msgstr "" #: gnutls.c:1980 main.c:1794 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:1985 msgid "Error checking server cert status\n" msgstr "" #: gnutls.c:1990 msgid "certificate revoked" msgstr "" #: gnutls.c:1992 msgid "signer not found" msgstr "" #: gnutls.c:1994 msgid "signer not a CA certificate" msgstr "" #: gnutls.c:1996 msgid "insecure algorithm" msgstr "" #: gnutls.c:1998 msgid "certificate not yet activated" msgstr "" #: gnutls.c:2000 msgid "certificate expired" msgstr "" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2005 msgid "signature verification failed" msgstr "" #: gnutls.c:2054 openssl.c:1399 openssl.c:1551 msgid "certificate does not match hostname" msgstr "" #: gnutls.c:2059 openssl.c:1398 openssl.c:1557 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "" #: gnutls.c:2126 msgid "Failed to allocate memory for cafile certs\n" msgstr "" #: gnutls.c:2147 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "" #: gnutls.c:2163 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "" #: gnutls.c:2176 openssl.c:1679 msgid "Loading certificate failed. Aborting.\n" msgstr "" #: gnutls.c:2237 #, c-format msgid "Failed to set TLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2249 openssl.c:1796 #, c-format msgid "SSL negotiation with %s\n" msgstr "" #: gnutls.c:2296 openssl.c:1822 msgid "SSL connection cancelled\n" msgstr "" #: gnutls.c:2303 #, c-format msgid "SSL connection failure: %s\n" msgstr "" #: gnutls.c:2312 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "" #: gnutls.c:2318 openssl.c:1839 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "" #: gnutls.c:2321 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "" #: gnutls.c:2483 openssl-pkcs11.c:199 #, c-format msgid "PIN required for %s" msgstr "" #: gnutls.c:2487 openssl-pkcs11.c:202 msgid "Wrong PIN" msgstr "" #: gnutls.c:2490 msgid "This is the final try before locking!" msgstr "" #: gnutls.c:2492 msgid "Only a few tries left before locking!" msgstr "" #: gnutls.c:2497 openssl-pkcs11.c:206 msgid "Enter PIN:" msgstr "" #: gnutls.c:2583 openssl.c:1967 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2592 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:54 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm.c:61 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:68 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:78 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "" #: gnutls_tpm.c:100 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "" #: gnutls_tpm.c:108 gnutls_tpm.c:119 gnutls_tpm.c:132 msgid "Error in TSS key blob\n" msgstr "" #: gnutls_tpm.c:139 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "" #: gnutls_tpm.c:146 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "" #: gnutls_tpm.c:154 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "" #: gnutls_tpm.c:161 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "" #: gnutls_tpm.c:182 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "" #: gnutls_tpm.c:198 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "" #: gnutls_tpm.c:205 msgid "Enter TPM SRK PIN:" msgstr "" #: gnutls_tpm.c:226 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "" #: gnutls_tpm.c:234 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "" #: gnutls_tpm.c:240 msgid "Enter TPM key PIN:" msgstr "" #: gnutls_tpm.c:251 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "" #: gnutls_tpm2.c:92 gnutls_tpm2_esys.c:474 gnutls_tpm2_ibm.c:419 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:198 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:208 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:217 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:225 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:231 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:249 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:270 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:275 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:384 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2_esys.c:173 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:189 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:190 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:191 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:192 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:196 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:201 gnutls_tpm2_ibm.c:262 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:209 gnutls_tpm2_esys.c:303 gnutls_tpm2_esys.c:374 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:221 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:226 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:245 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:250 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:258 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:261 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:274 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:295 gnutls_tpm2_ibm.c:278 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:309 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:317 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:323 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:333 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:363 gnutls_tpm2_ibm.c:363 gnutls_tpm2_ibm.c:450 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:395 #, c-format msgid "TPM2 RSA sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:414 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:420 gnutls_tpm2_esys.c:500 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:464 gnutls_tpm2_ibm.c:405 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:494 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:532 gnutls_tpm2_ibm.c:485 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:546 gnutls_tpm2_ibm.c:502 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:555 gnutls_tpm2_ibm.c:512 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:569 gnutls_tpm2_ibm.c:523 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:54 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:226 #, c-format msgid "%s\n" msgstr "" #: gpst.c:229 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:417 #, c-format msgid "Unknown ESP %s algorithm: %s" msgstr "" #: gpst.c:477 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: gpst.c:483 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:487 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:498 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:551 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:560 oncp.c:835 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: gpst.c:627 msgid "ESP disabled" msgstr "" #: gpst.c:629 msgid "No ESP keys received" msgstr "" #: gpst.c:631 msgid "ESP support not available in this build" msgstr "" #: gpst.c:635 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:680 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:702 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:711 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:719 #, c-format msgid "Got inappropriate HTTP GET-tunnel response: %.*s\n" msgstr "" #: gpst.c:861 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" "VPN connectivity may be disabled or limited without HIP report submission.\n" "You need to provide a --csd-wrapper argument with the HIP report submission " "script.\n" msgstr "" #: gpst.c:871 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:900 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:905 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:911 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:913 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:942 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:966 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:972 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:999 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1015 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1051 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1072 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1082 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1086 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1092 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: gpst.c:1101 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1109 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1157 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1162 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1182 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1202 #, c-format msgid "Sending data packet of %d bytes\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1165 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "" #: http.c:319 msgid "No memory for allocating cookies\n" msgstr "" #: http.c:394 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "" #: http.c:400 #, c-format msgid "Got HTTP response: %s\n" msgstr "" #: http.c:408 msgid "Error processing HTTP response\n" msgstr "" #: http.c:415 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "" #: http.c:435 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "" #: http.c:454 msgid "SSL certificate authentication failed\n" msgstr "" #: http.c:485 #, c-format msgid "Response body has negative size (%d)\n" msgstr "" #: http.c:496 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "" #. Now the body, if there is one #: http.c:515 #, c-format msgid "HTTP body %s (%d)\n" msgstr "" #: http.c:529 http.c:556 msgid "Error reading HTTP response body\n" msgstr "" #: http.c:542 msgid "Error fetching chunk header\n" msgstr "" #: http.c:566 msgid "Error fetching HTTP response body\n" msgstr "" #: http.c:569 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "" #: http.c:581 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "" #: http.c:708 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "" #: http.c:732 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "" #: http.c:760 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "" #: http.c:973 oncp.c:591 #, c-format msgid "Unexpected %d result from server\n" msgstr "" #: http.c:1021 msgid "request granted" msgstr "" #: http.c:1022 msgid "general failure" msgstr "" #: http.c:1023 msgid "connection not allowed by ruleset" msgstr "" #: http.c:1024 msgid "network unreachable" msgstr "" #: http.c:1025 msgid "host unreachable" msgstr "" #: http.c:1026 msgid "connection refused by destination host" msgstr "" #: http.c:1027 msgid "TTL expired" msgstr "" #: http.c:1028 msgid "command not supported / protocol error" msgstr "" #: http.c:1029 msgid "address type not supported" msgstr "" #: http.c:1039 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1047 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1062 http.c:1118 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" #: http.c:1070 http.c:1125 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" #: http.c:1077 http.c:1131 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" #: http.c:1083 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1087 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1143 http.c:1150 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1156 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1163 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1170 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1176 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "" #: http.c:1191 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" #: http.c:1199 http.c:1241 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "" #: http.c:1205 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "" #: http.c:1213 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "" #: http.c:1217 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "" #: http.c:1234 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "" #: http.c:1257 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "" #: http.c:1292 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "" #: http.c:1315 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1334 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "" #: http.c:1383 msgid "Only http or socks(5) proxies supported\n" msgstr "" #: library.c:112 msgid "Cisco AnyConnect or openconnect" msgstr "" #: library.c:113 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "" #: library.c:129 msgid "Juniper Network Connect" msgstr "" #: library.c:130 msgid "Compatible with Juniper Network Connect / Pulse Secure SSL VPN" msgstr "" #: library.c:148 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:149 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:211 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:233 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "" #: library.c:656 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "" #: library.c:662 msgid "Only https:// permitted for server URL\n" msgstr "" #: library.c:1056 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "" #: library.c:1085 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" #: library.c:1146 msgid "No form handler; cannot authenticate.\n" msgstr "" #: main.c:340 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:353 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:388 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:401 #, c-format msgid "fgetws() failed: %s\n" msgstr "" #: main.c:416 main.c:429 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:423 main.c:689 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "" #: main.c:584 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:593 #, c-format msgid "Using OpenSSL. Features present:" msgstr "" #: main.c:595 #, c-format msgid "Using GnuTLS. Features present:" msgstr "" #: main.c:608 msgid "OpenSSL ENGINE not present" msgstr "" #: main.c:647 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" #: main.c:657 #, c-format msgid "Supported protocols:" msgstr "" #: main.c:659 main.c:675 msgid " (default)" msgstr "" #: main.c:672 msgid "Set VPN protocol" msgstr "" #: main.c:713 msgid "fgets (stdin)" msgstr "" #: main.c:754 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:760 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:780 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "" #: main.c:793 #, c-format msgid "Usage: openconnect [options] \n" msgstr "" #: main.c:794 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" #: main.c:796 msgid "Read options from config file" msgstr "" #: main.c:797 msgid "Report version number" msgstr "" #: main.c:798 msgid "Display help text" msgstr "" #: main.c:802 msgid "Authentication" msgstr "" #: main.c:803 msgid "Set login username" msgstr "" #: main.c:804 msgid "Disable password/SecurID authentication" msgstr "" #: main.c:805 msgid "Do not expect user input; exit if it is required" msgstr "" #: main.c:806 msgid "Read password from standard input" msgstr "" #: main.c:807 msgid "Choose authentication login selection" msgstr "" #: main.c:808 msgid "Provide authentication form responses" msgstr "" #: main.c:809 msgid "Use SSL client certificate CERT" msgstr "" #: main.c:810 msgid "Use SSL private key file KEY" msgstr "" #: main.c:811 msgid "Warn when certificate lifetime < DAYS" msgstr "" #: main.c:812 msgid "Set login usergroup" msgstr "" #: main.c:813 msgid "Set key passphrase or TPM SRK PIN" msgstr "" #: main.c:814 msgid "Key passphrase is fsid of file system" msgstr "" #: main.c:815 msgid "Software token type: rsa, totp or hotp" msgstr "" #: main.c:816 msgid "Software token secret" msgstr "" #: main.c:818 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" #: main.c:821 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:824 msgid "Server validation" msgstr "" #: main.c:825 msgid "Server's certificate SHA1 fingerprint" msgstr "" #: main.c:826 msgid "Do not require server SSL cert to be valid" msgstr "" #: main.c:827 msgid "Disable default system certificate authorities" msgstr "" #: main.c:828 msgid "Cert file for server verification" msgstr "" #: main.c:830 msgid "Internet connectivity" msgstr "" #: main.c:831 msgid "Set proxy server" msgstr "" #: main.c:832 msgid "Set proxy authentication methods" msgstr "" #: main.c:833 msgid "Disable proxy" msgstr "" #: main.c:834 msgid "Use libproxy to automatically configure proxy" msgstr "" #: main.c:836 msgid "(NOTE: libproxy disabled in this build)" msgstr "" #: main.c:838 msgid "Connection retry timeout in seconds" msgstr "" #: main.c:839 msgid "Use IP when connecting to HOST" msgstr "" #: main.c:840 msgid "copy TOS / TCLASS when using DTLS" msgstr "" #: main.c:841 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:843 msgid "Authentication (two-phase)" msgstr "" #: main.c:844 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:845 msgid "Read cookie from standard input" msgstr "" #: main.c:846 msgid "Authenticate only and print login info" msgstr "" #: main.c:847 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:848 msgid "Print cookie before connecting" msgstr "" #: main.c:851 msgid "Process control" msgstr "" #: main.c:852 msgid "Continue in background after startup" msgstr "" #: main.c:853 msgid "Write the daemon's PID to this file" msgstr "" #: main.c:854 msgid "Drop privileges after connecting" msgstr "" #: main.c:857 msgid "Logging (two-phase)" msgstr "" #: main.c:859 msgid "Use syslog for progress messages" msgstr "" #: main.c:861 msgid "More output" msgstr "" #: main.c:862 msgid "Less output" msgstr "" #: main.c:863 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "" #: main.c:864 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:866 msgid "VPN configuration script" msgstr "" #: main.c:867 msgid "Use IFNAME for tunnel interface" msgstr "" #: main.c:868 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" #: main.c:869 msgid "default" msgstr "" #: main.c:871 msgid "Pass traffic to 'script' program, not tun" msgstr "" #: main.c:874 msgid "Tunnel control" msgstr "" #: main.c:875 msgid "Do not ask for IPv6 connectivity" msgstr "" #: main.c:876 msgid "XML config file" msgstr "" #: main.c:877 msgid "Request MTU from server (legacy servers only)" msgstr "" #: main.c:878 msgid "Indicate path MTU to/from server" msgstr "" #: main.c:879 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:880 msgid "Disable all compression" msgstr "" #: main.c:881 msgid "Set minimum Dead Peer Detection interval" msgstr "" #: main.c:882 msgid "Require perfect forward secrecy" msgstr "" #: main.c:883 msgid "Disable DTLS and ESP" msgstr "" #: main.c:884 msgid "OpenSSL ciphers to support for DTLS" msgstr "" #: main.c:885 msgid "Set packet queue limit to LEN pkts" msgstr "" #: main.c:887 msgid "Local system information" msgstr "" #: main.c:888 msgid "HTTP header User-Agent: field" msgstr "" #: main.c:889 msgid "Local hostname to advertise to server" msgstr "" #: main.c:890 msgid "OS type (linux,linux-64,win,...) to report" msgstr "" #: main.c:891 msgid "reported version string during authentication" msgstr "" #: main.c:892 msgid "default:" msgstr "" #: main.c:895 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:896 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:897 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:900 msgid "Server bugs" msgstr "" #: main.c:901 msgid "Disable HTTP connection re-use" msgstr "" #: main.c:902 msgid "Do not attempt XML POST authentication" msgstr "" #: main.c:924 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:997 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "" #: main.c:1037 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "" #: main.c:1047 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "" #: main.c:1051 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "" #: main.c:1076 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "" #: main.c:1086 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "" #: main.c:1130 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "" #: main.c:1140 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:1147 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:1157 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "" #: main.c:1215 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" #: main.c:1223 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "" #: main.c:1239 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1260 #, c-format msgid "Missing colon in resolve option\n" msgstr "" #: main.c:1265 #, c-format msgid "Failed to allocate memory\n" msgstr "" #: main.c:1349 main.c:1358 #, c-format msgid "MTU %d too small\n" msgstr "" #: main.c:1388 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" #: main.c:1394 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" #: main.c:1411 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "" #: main.c:1425 #, c-format msgid "OpenConnect version %s\n" msgstr "" #: main.c:1463 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "" #: main.c:1473 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "" #: main.c:1506 #, c-format msgid "Too many arguments on command line\n" msgstr "" #: main.c:1509 #, c-format msgid "No server specified\n" msgstr "" #: main.c:1525 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" #: main.c:1555 #, c-format msgid "Error opening cmd pipe\n" msgstr "" #: main.c:1588 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "" #: main.c:1609 #, c-format msgid "Creating SSL connection failed\n" msgstr "" #: main.c:1625 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:1633 #, c-format msgid "Connected as %s%s%s, using SSL%s%s, with %s%s%s %s\n" msgstr "" #: main.c:1639 msgid "disabled" msgstr "" #: main.c:1639 msgid "in progress" msgstr "" #: main.c:1643 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" #: main.c:1645 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "" #: main.c:1658 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "" #: main.c:1670 #, c-format msgid "Continuing in background; pid %d\n" msgstr "" #: main.c:1687 msgid "User requested reconnect\n" msgstr "" #: main.c:1695 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "" #: main.c:1699 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:1703 msgid "User cancelled (SIGINT/SIGTERM); exiting.\n" msgstr "" #: main.c:1707 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "" #: main.c:1711 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:1730 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "" #: main.c:1738 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "" #: main.c:1797 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "" #: main.c:1816 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" #: main.c:1819 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" #: main.c:1820 #, c-format msgid " --servercert %s\n" msgstr "" #: main.c:1825 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" #: main.c:1826 main.c:1844 msgid "no" msgstr "" #: main.c:1826 main.c:1832 msgid "yes" msgstr "" #: main.c:1853 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:1887 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:1890 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "" #: main.c:1911 msgid "User input required in non-interactive mode\n" msgstr "" #: main.c:2149 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:2157 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:2203 main.c:2224 #, c-format msgid "Soft token string is invalid\n" msgstr "" #: main.c:2206 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "" #: main.c:2209 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "" #: main.c:2212 #, c-format msgid "General failure in libstoken\n" msgstr "" #: main.c:2227 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "" #: main.c:2230 #, c-format msgid "General failure in liboath\n" msgstr "" #: main.c:2241 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2244 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2247 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: mainloop.c:127 #, c-format msgid "Set up tun script failed\n" msgstr "" #: mainloop.c:134 #, c-format msgid "Set up tun device failed\n" msgstr "" #: mainloop.c:265 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:273 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "" #: mainloop.c:294 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:978 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:982 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:565 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:160 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:166 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:175 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:186 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:201 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:210 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:219 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:232 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:254 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:274 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:297 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:316 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:327 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:335 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:342 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:350 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:358 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:366 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:374 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:383 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:395 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:473 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:490 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:496 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:512 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:577 oncp.c:609 oncp.c:747 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:618 oncp.c:783 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:631 oncp.c:666 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:636 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:643 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:670 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:683 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:692 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "" #: oncp.c:698 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "" #: oncp.c:705 msgid "Failed to read continuation record length\n" msgstr "" #: oncp.c:711 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "" #: oncp.c:720 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "" #: oncp.c:726 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "" #: oncp.c:767 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:776 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:829 msgid "new incoming" msgstr "" #: oncp.c:830 msgid "new outgoing" msgstr "" #: oncp.c:855 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:864 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:868 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:874 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:969 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:972 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:991 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1053 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1058 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1073 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1134 msgid "Sent ESP enable control packet\n" msgstr "" #: oncp.c:1268 msgid "Logout successful.\n" msgstr "" #: openconnect-internal.h:1119 openconnect-internal.h:1127 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "" #: openssl-dtls.c:365 msgid "Initialise DTLSv1 CTX failed\n" msgstr "" #: openssl-dtls.c:378 msgid "Set DTLS CTX version failed\n" msgstr "" #: openssl-dtls.c:395 msgid "Failed to generate DTLS key\n" msgstr "" #: openssl-dtls.c:413 msgid "Set DTLS cipher list failed\n" msgstr "" #: openssl-dtls.c:439 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:460 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: openssl-dtls.c:493 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:566 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "" #: openssl-dtls.c:603 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" #: openssl-dtls.c:654 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" #: openssl-dtls.c:661 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "" #: openssl-esp.c:87 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:101 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:157 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:202 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:210 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:241 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:43 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:49 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "" #: openssl-pkcs11.c:269 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:272 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:275 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:279 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:286 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:300 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:306 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:342 openssl-pkcs11.c:565 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:349 openssl-pkcs11.c:575 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:383 openssl-pkcs11.c:617 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:393 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "" #: openssl-pkcs11.c:401 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:412 openssl.c:713 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl-pkcs11.c:458 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:464 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:497 msgid "Certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:503 openssl-pkcs11.c:526 msgid "Certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:506 msgid "Checking EC key matches cert\n" msgstr "" #: openssl-pkcs11.c:510 msgid "Failed to allocate signature buffer\n" msgstr "" #: openssl-pkcs11.c:520 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" #: openssl-pkcs11.c:638 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "" #: openssl-pkcs11.c:649 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:678 msgid "Add key from PKCS#11 failed\n" msgstr "" #: openssl-pkcs11.c:710 openssl-pkcs11.c:716 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:147 msgid "Failed to write to SSL socket\n" msgstr "" #: openssl.c:197 openssl.c:263 msgid "Failed to read from SSL socket\n" msgstr "" #: openssl.c:292 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" #: openssl.c:317 #, c-format msgid "SSL_write failed: %d\n" msgstr "" #: openssl.c:389 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:465 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "" #: openssl.c:498 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "" #: openssl.c:548 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:563 msgid "PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:572 msgid "PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:577 msgid "PKCS#12" msgstr "" #: openssl.c:600 msgid "Can't load TPM engine.\n" msgstr "" #: openssl.c:606 msgid "Failed to init TPM engine\n" msgstr "" #: openssl.c:616 msgid "Failed to set TPM SRK password\n" msgstr "" #: openssl.c:630 msgid "Failed to load TPM private key\n" msgstr "" #: openssl.c:636 msgid "Add key from TPM failed\n" msgstr "" #: openssl.c:687 openssl.c:835 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "" #: openssl.c:697 msgid "Loading certificate failed\n" msgstr "" #: openssl.c:735 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:748 msgid "PEM file" msgstr "" #: openssl.c:777 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "" #: openssl.c:802 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:808 msgid "Loading private key failed (see above errors)\n" msgstr "" #: openssl.c:858 msgid "Failed to load X509 certificate from keystore\n" msgstr "" #: openssl.c:864 msgid "Failed to use X509 certificate from keystore\n" msgstr "" #: openssl.c:896 msgid "Failed to use private key from keystore\n" msgstr "" #: openssl.c:912 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "" #: openssl.c:936 openssl.c:951 openssl.c:972 openssl.c:1038 msgid "Loading private key failed\n" msgstr "" #: openssl.c:1032 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1049 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "" #: openssl.c:1203 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "" #: openssl.c:1210 #, c-format msgid "No match for altname '%s'\n" msgstr "" #: openssl.c:1224 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" #: openssl.c:1235 openssl.c:1381 #, c-format msgid "Matched %s address '%s'\n" msgstr "" #: openssl.c:1242 #, c-format msgid "No match for %s address '%s'\n" msgstr "" #: openssl.c:1284 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "" #: openssl.c:1289 #, c-format msgid "Matched URI '%s'\n" msgstr "" #: openssl.c:1300 #, c-format msgid "No match for URI '%s'\n" msgstr "" #: openssl.c:1315 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" #: openssl.c:1323 msgid "No subject name in peer cert!\n" msgstr "" #: openssl.c:1343 msgid "Failed to parse subject name in peer cert\n" msgstr "" #: openssl.c:1350 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "" #: openssl.c:1355 openssl.c:1389 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "" #: openssl.c:1451 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "" #: openssl.c:1589 msgid "Error in client cert notAfter field\n" msgstr "" #: openssl.c:1602 msgid "" msgstr "" #: openssl.c:1655 msgid "Create TLSv1 CTX failed\n" msgstr "" #: openssl.c:1674 msgid "SSL certificate and key do not match\n" msgstr "" #: openssl.c:1719 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "" #: openssl.c:1752 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "" #: openssl.c:1812 msgid "SSL connection failure\n" msgstr "" #: openssl.c:1973 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:130 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "" #: script.c:134 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "" #: script.c:507 script.c:555 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "" #: script.c:562 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "" #: script.c:570 #, c-format msgid "Script '%s' returned error %d\n" msgstr "" #: ssl.c:108 msgid "Socket connect cancelled\n" msgstr "" #: ssl.c:217 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "" #: ssl.c:221 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "" #: ssl.c:289 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "" #: ssl.c:317 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "" #: ssl.c:326 ssl.c:451 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:341 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "" #: ssl.c:342 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "" #: ssl.c:362 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "" #: ssl.c:374 msgid "Failed to allocate sockaddr storage\n" msgstr "" #: ssl.c:416 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "" #: ssl.c:434 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:446 #, c-format msgid "Failed to connect to host %s\n" msgstr "" #: ssl.c:465 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:536 #, c-format msgid "statvfs: %s\n" msgstr "" #: ssl.c:564 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:575 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:603 #, c-format msgid "statfs: %s\n" msgstr "" #: ssl.c:694 msgid "No error" msgstr "" #: ssl.c:695 msgid "Keystore locked" msgstr "" #: ssl.c:696 msgid "Keystore uninitialized" msgstr "" #: ssl.c:697 msgid "System error" msgstr "Хатои системавӣ" #: ssl.c:698 msgid "Protocol error" msgstr "" #: ssl.c:699 msgid "Permission denied" msgstr "" #: ssl.c:700 msgid "Key not found" msgstr "" #: ssl.c:701 msgid "Value corrupted" msgstr "" #: ssl.c:702 msgid "Undefined action" msgstr "" #: ssl.c:706 msgid "Wrong password" msgstr "Пароли нодуруст" #: ssl.c:707 msgid "Unknown error" msgstr "Хатои номаълум" #: ssl.c:896 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:931 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:950 msgid "Open UDP socket" msgstr "" #: ssl.c:981 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:989 msgid "Bind UDP socket" msgstr "" #: ssl.c:996 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:1034 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:1038 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "" #: stoken.c:82 msgid "Device ID:" msgstr "ID-и дастгоҳ:" #: stoken.c:89 msgid "Password:" msgstr "Парол:" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "" #: stoken.c:185 msgid "Enter software token PIN." msgstr "" #: stoken.c:189 msgid "PIN:" msgstr "PIN:" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "" #: tun-win32.c:76 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:139 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "" #: tun-win32.c:154 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" #: tun-win32.c:186 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" #: tun-win32.c:200 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "" #: tun-win32.c:231 #, c-format msgid "Failed to open %s\n" msgstr "" #: tun-win32.c:236 #, c-format msgid "Opened tun device %s\n" msgstr "" #: tun-win32.c:244 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:250 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:271 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:283 tun-win32.c:406 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:316 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:321 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:335 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:358 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:368 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:371 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:423 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "" #: tun.c:92 msgid "Can't push IP" msgstr "" #: tun.c:102 msgid "Can't set ifname" msgstr "" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "" #: tun.c:139 msgid "open /dev/tun" msgstr "" #: tun.c:145 msgid "Failed to create new tun" msgstr "" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "" #: tun.c:205 msgid "open net" msgstr "" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "" #: tun.c:479 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:484 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:488 msgid "setpgid" msgstr "" #: tun.c:493 msgid "execl" msgstr "" #: tun.c:498 msgid "(script)" msgstr "" #: tun.c:566 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:174 msgid "select applet command" msgstr "" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:274 msgid "unlock command" msgstr "" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:412 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:619 msgid "calculate command" msgstr "" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-8.05/po/sk.po0000664000076400007640000025224213470043037017140 0ustar00dwoodhoudwoodhou00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: # Peter Janosik , 2011. msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2019-05-18 10:44-0700\n" "PO-Revision-Date: 2012-06-20 08:43+0000\n" "Last-Translator: David Woodhouse \n" "Language-Team: Slovak (http://www.transifex.net/projects/p/meego/language/" "sk/)\n" "Language: sk\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=3; plural=(n==1) ? 0 : (n>=2 && n<=4) ? 1 : 2\n" #: auth-globalprotect.c:108 #, c-format msgid "" "SAML login is required via %s to this URL:\n" "\t%s" msgstr "" #: auth-globalprotect.c:110 msgid "Please enter your username and password" msgstr "" #: auth-globalprotect.c:119 msgid "Username" msgstr "" #: auth-globalprotect.c:134 msgid "Password" msgstr "" #: auth-globalprotect.c:181 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:260 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:266 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:272 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:315 msgid "Please select GlobalProtect gateway." msgstr "" #: auth-globalprotect.c:325 msgid "GATEWAY:" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:379 #, c-format msgid "%d gateway servers available:\n" msgstr "" #: auth-globalprotect.c:400 #, c-format msgid " %s (%s)\n" msgstr "" #: auth-globalprotect.c:484 auth-juniper.c:730 auth.c:669 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth-globalprotect.c:584 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" #: auth-globalprotect.c:636 oncp.c:1266 msgid "Logout failed.\n" msgstr "" #: auth-globalprotect.c:638 msgid "Logout successful\n" msgstr "" #: auth-juniper.c:142 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:153 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:163 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:236 auth.c:408 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "" #: auth-juniper.c:267 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "" #: auth-juniper.c:337 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:359 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:397 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:411 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:418 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:425 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:432 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:439 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:445 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:452 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:481 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:650 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:667 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:675 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:713 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:716 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth.c:96 msgid "Form choice has no name\n" msgstr "Výber vo formulári nemá meno\n" #: auth.c:181 #, c-format msgid "name %s not input\n" msgstr "meno %s nebolo zadané\n" #: auth.c:188 msgid "No input type in form\n" msgstr "Formulár nemá typ vstupu\n" #: auth.c:200 msgid "No input name in form\n" msgstr "" #: auth.c:230 #, c-format msgid "Unknown input type %s in form\n" msgstr "" #: auth.c:540 gpst.c:214 msgid "Empty response from server\n" msgstr "" #: auth.c:551 gpst.c:289 msgid "Failed to parse server response\n" msgstr "" #: auth.c:553 gpst.c:291 #, c-format msgid "Response was:%s\n" msgstr "" #: auth.c:575 msgid "Received when not expected.\n" msgstr "" #: auth.c:603 msgid "XML response has no \"auth\" node\n" msgstr "" #: auth.c:636 msgid "Asked for password but '--no-passwd' set\n" msgstr "" #: auth.c:925 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:931 cstp.c:335 http.c:916 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "" #: auth.c:952 msgid "Failed to send GET request for new config\n" msgstr "" #: auth.c:976 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" #: auth.c:981 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:992 auth.c:1044 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" #: auth.c:1003 mainloop.c:144 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "" #: auth.c:1010 mainloop.c:151 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "" #: auth.c:1017 mainloop.c:158 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "" #: auth.c:1024 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "" #: auth.c:1031 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "" #: auth.c:1053 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:1060 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" #: auth.c:1067 msgid "Trying to run Linux CSD trojan script.\n" msgstr "" #: auth.c:1094 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1102 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "" #: auth.c:1111 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "" #: auth.c:1141 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" #: auth.c:1189 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "" #: auth.c:1221 msgid "Unknown response from server\n" msgstr "" #: auth.c:1342 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1346 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" #: auth.c:1362 msgid "XML POST enabled\n" msgstr "" #: auth.c:1405 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "" #: compat.c:207 #, c-format msgid "(error 0x%lx)" msgstr "" #: compat.c:210 msgid "(Error while describing error!)" msgstr "" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:112 gpst.c:341 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "" #: cstp.c:134 gpst.c:360 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "" #: cstp.c:281 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:312 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:328 http.c:384 msgid "Error fetching HTTPS response\n" msgstr "" #: cstp.c:355 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "" #: cstp.c:360 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "" #: cstp.c:367 #, c-format msgid "Got CONNECT response: %s\n" msgstr "" #: cstp.c:396 cstp.c:404 msgid "No memory for options\n" msgstr "" #: cstp.c:413 http.c:444 msgid "" msgstr "" #: cstp.c:433 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "" #: cstp.c:450 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "" #: cstp.c:468 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:510 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "" #: cstp.c:585 msgid "No MTU received. Aborting\n" msgstr "" #: cstp.c:593 gpst.c:641 msgid "No IP address received. Aborting\n" msgstr "Nebola prijatá žiadna IP adresa. Končím\n" #: cstp.c:599 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: cstp.c:605 gpst.c:648 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "" #: cstp.c:614 gpst.c:657 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" #: cstp.c:622 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "" #: cstp.c:630 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "" #: cstp.c:638 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "" #: cstp.c:640 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "" #: cstp.c:702 msgid "Compression setup failed\n" msgstr "" #: cstp.c:719 msgid "Allocation of deflate buffer failed\n" msgstr "" #: cstp.c:781 msgid "inflate failed\n" msgstr "" #: cstp.c:804 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:817 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:824 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:829 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:849 #, c-format msgid "deflate failed %d\n" msgstr "" #: cstp.c:922 dtls.c:281 dtls.c:740 esp.c:129 gpst.c:1042 mainloop.c:69 #: oncp.c:914 msgid "Allocation failed\n" msgstr "" #: cstp.c:933 gpst.c:1055 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: cstp.c:946 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" #: cstp.c:960 msgid "Got CSTP DPD request\n" msgstr "" #: cstp.c:966 msgid "Got CSTP DPD response\n" msgstr "" #: cstp.c:971 msgid "Got CSTP Keepalive\n" msgstr "" #: cstp.c:976 oncp.c:1003 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:993 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "" #: cstp.c:996 msgid "Received server disconnect\n" msgstr "" #: cstp.c:1004 msgid "Compressed packet received in !deflate mode\n" msgstr "" #: cstp.c:1013 msgid "received server terminate packet\n" msgstr "" #: cstp.c:1020 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "" #: cstp.c:1063 gpst.c:1142 oncp.c:1121 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1091 oncp.c:1155 msgid "CSTP rekey due\n" msgstr "" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1098 oncp.c:1162 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: cstp.c:1109 oncp.c:1173 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "" #: cstp.c:1113 gpst.c:1166 oncp.c:1091 oncp.c:1177 msgid "Reconnect failed\n" msgstr "" #: cstp.c:1129 oncp.c:1193 msgid "Send CSTP DPD\n" msgstr "" #: cstp.c:1141 oncp.c:1204 msgid "Send CSTP Keepalive\n" msgstr "" #: cstp.c:1166 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1177 oncp.c:1238 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:1216 #, c-format msgid "Send BYE packet: %s\n" msgstr "" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:113 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:119 msgid "No DTLS address\n" msgstr "" #. We probably didn't offer it any ciphers it liked #: dtls.c:126 msgid "Server offered no DTLS cipher option\n" msgstr "" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:133 msgid "No DTLS when connected via proxy\n" msgstr "" #: dtls.c:200 #, c-format msgid "DTLS option %s : %s\n" msgstr "" #: dtls.c:239 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:265 msgid "Attempt new DTLS connection\n" msgstr "" #: dtls.c:292 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "" #: dtls.c:306 msgid "Got DTLS DPD request\n" msgstr "" #: dtls.c:312 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "" #: dtls.c:316 msgid "Got DTLS DPD response\n" msgstr "" #: dtls.c:320 msgid "Got DTLS Keepalive\n" msgstr "" #: dtls.c:326 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:334 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "" #: dtls.c:356 msgid "DTLS rekey due\n" msgstr "" #: dtls.c:363 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: dtls.c:372 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "" #: dtls.c:378 msgid "Send DTLS DPD\n" msgstr "" #: dtls.c:383 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "" #: dtls.c:396 msgid "Send DTLS Keepalive\n" msgstr "" #: dtls.c:401 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" #: dtls.c:432 tun.c:541 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "" #: dtls.c:439 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "" #: dtls.c:443 msgid "UDP setsockopt" msgstr "" #: dtls.c:474 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "" #: dtls.c:488 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "" #: dtls.c:503 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "" #: dtls.c:531 #, c-format msgid "Initiating IPv4 MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:551 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" #: dtls.c:555 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" #: dtls.c:564 #, c-format msgid "Sending MTU DPD probe (%u bytes, min=%u, max=%u)\n" msgstr "" #: dtls.c:568 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "" #: dtls.c:582 dtls.c:690 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" #: dtls.c:594 #, c-format msgid "Timeout while waiting for DPD response; trying %d\n" msgstr "" #: dtls.c:601 dtls.c:682 msgid "Timeout while waiting for DPD response; resending probe.\n" msgstr "" #: dtls.c:608 dtls.c:709 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "" #: dtls.c:613 #, c-format msgid "Received MTU DPD probe (%u bytes of %u)\n" msgstr "" #: dtls.c:651 msgid "Initiating IPv6 MTU detection\n" msgstr "" #: dtls.c:666 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:670 #, c-format msgid "Failed to send DPD request (%d)\n" msgstr "" #: dtls.c:695 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:759 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "" #: dtls.c:762 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" #: esp.c:63 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:66 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:69 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:87 msgid "incoming" msgstr "" #: esp.c:88 msgid "outgoing" msgstr "" #: esp.c:90 esp.c:113 msgid "Send ESP probes\n" msgstr "" #: esp.c:138 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:155 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:161 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:174 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:181 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:193 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:202 msgid "ESP session established with server\n" msgstr "" #: esp.c:213 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:219 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:225 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:239 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:243 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:251 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:258 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:278 #, c-format msgid "Failed to encrypt ESP packet: %d\n" msgstr "" #: esp.c:294 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:301 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:307 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-dtls.c:190 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "" #: gnutls-dtls.c:198 msgid "Failed to generate DTLS priority string\n" msgstr "" #: gnutls-dtls.c:207 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "" #: gnutls-dtls.c:216 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "" #: gnutls-dtls.c:240 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "" #: gnutls-dtls.c:253 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:267 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:275 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "" #: gnutls-dtls.c:309 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "" #: gnutls-dtls.c:324 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "" #: gnutls-dtls.c:345 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "" #: gnutls-dtls.c:373 openssl-dtls.c:534 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "" #: gnutls-dtls.c:382 openssl-dtls.c:545 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "" #: gnutls-dtls.c:392 openssl-dtls.c:554 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" #: gnutls-dtls.c:405 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "" #: gnutls-dtls.c:416 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: gnutls-dtls.c:422 openssl-dtls.c:572 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "" #: gnutls-dtls.c:437 openssl-dtls.c:653 openssl-dtls.c:657 msgid "DTLS handshake timed out\n" msgstr "" #: gnutls-dtls.c:440 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "" #: gnutls-dtls.c:444 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:121 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:132 msgid "Failed to generate ESP IV\n" msgstr "" #: gnutls-esp.c:161 gnutls-esp.c:217 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:168 openssl-esp.c:192 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:180 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:209 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:95 openssl.c:154 msgid "SSL write cancelled\n" msgstr "" #: gnutls.c:99 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "" #: gnutls.c:145 gnutls.c:237 openssl.c:204 openssl.c:271 msgid "SSL read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:158 msgid "SSL socket closed uncleanly\n" msgstr "" #: gnutls.c:168 gnutls.c:246 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "" #: gnutls.c:266 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "" #: gnutls.c:302 #, c-format msgid "SSL send failed: %s\n" msgstr "" #: gnutls.c:315 msgid "Could not extract expiration time of certificate\n" msgstr "" #: gnutls.c:320 openssl.c:1592 msgid "Client certificate has expired at" msgstr "" #: gnutls.c:322 openssl.c:1597 msgid "Client certificate expires soon at" msgstr "" #: gnutls.c:371 openssl.c:771 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" #: gnutls.c:384 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "" #: gnutls.c:391 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" #: gnutls.c:400 msgid "Failed to allocate certificate buffer\n" msgstr "" #: gnutls.c:408 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "" #: gnutls.c:439 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "" #: gnutls.c:462 openssl.c:534 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "" #: gnutls.c:466 openssl.c:537 msgid "Enter PKCS#12 pass phrase:" msgstr "" #: gnutls.c:489 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "" #: gnutls.c:501 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:584 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "" #: gnutls.c:594 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "" #: gnutls.c:628 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "" #: gnutls.c:638 #, c-format msgid "MD5 hash error: %s\n" msgstr "" #: gnutls.c:696 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" #: gnutls.c:703 msgid "Cannot determine PEM encryption type\n" msgstr "" #: gnutls.c:716 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "" #: gnutls.c:741 gnutls.c:754 msgid "Invalid salt in encrypted PEM file\n" msgstr "" #: gnutls.c:778 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "" #: gnutls.c:786 msgid "Encrypted PEM file too short\n" msgstr "" #: gnutls.c:814 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" #: gnutls.c:825 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "" #: gnutls.c:877 msgid "Decrypting PEM key failed\n" msgstr "" #: gnutls.c:881 gnutls.c:1405 openssl.c:458 msgid "Enter PEM pass phrase:" msgstr "" #: gnutls.c:942 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:949 msgid "This binary built without PKCS#11 support\n" msgstr "" #: gnutls.c:993 openssl-pkcs11.c:407 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "" #: gnutls.c:994 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1012 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "" #: gnutls.c:1013 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1024 openssl.c:827 #, c-format msgid "Using certificate file %s\n" msgstr "" #: gnutls.c:1052 msgid "PKCS#11 file contained no certificate\n" msgstr "" #: gnutls.c:1078 msgid "No certificate found in file" msgstr "" #: gnutls.c:1083 #, c-format msgid "Loading certificate failed: %s\n" msgstr "" #: gnutls.c:1098 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1103 gnutls.c:1271 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "" #: gnutls.c:1114 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1125 gnutls.c:1219 gnutls.c:1247 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1130 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "" #: gnutls.c:1259 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "" #: gnutls.c:1266 openssl-pkcs11.c:644 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "" #: gnutls.c:1281 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" #: gnutls.c:1299 #, c-format msgid "Using private key file %s\n" msgstr "" #: gnutls.c:1310 openssl.c:651 msgid "This version of OpenConnect was built without TPM support\n" msgstr "" #: gnutls.c:1326 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1347 msgid "Failed to interpret PEM file\n" msgstr "" #: gnutls.c:1366 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "" #: gnutls.c:1379 gnutls.c:1393 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "" #: gnutls.c:1401 gnutls.c:1434 openssl.c:1002 openssl.c:1012 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "" #: gnutls.c:1426 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "" #: gnutls.c:1438 openssl.c:1008 msgid "Enter PKCS#8 pass phrase:" msgstr "" #: gnutls.c:1454 #, c-format msgid "Failed to get key ID: %s\n" msgstr "" #: gnutls.c:1499 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "" #: gnutls.c:1514 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "" #: gnutls.c:1539 msgid "No SSL certificate found to match private key\n" msgstr "" #: gnutls.c:1551 openssl.c:560 openssl.c:709 #, c-format msgid "Using client certificate '%s'\n" msgstr "" #: gnutls.c:1558 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "" #: gnutls.c:1579 gnutls.c:1589 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1625 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" #: gnutls.c:1648 msgid "Got no issuer from PKCS#11\n" msgstr "" #: gnutls.c:1653 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "" #: gnutls.c:1679 msgid "Failed to allocate memory for supporting certificates\n" msgstr "" #: gnutls.c:1702 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "" #: gnutls.c:1724 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1748 #, c-format msgid "Setting certificate failed: %s\n" msgstr "" #: gnutls.c:1941 msgid "Server presented no certificate\n" msgstr "" #: gnutls.c:1949 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" #: gnutls.c:1954 openssl.c:1515 msgid "Server presented different cert on rehandshake\n" msgstr "" #: gnutls.c:1959 openssl.c:1518 msgid "Server presented identical cert on rehandshake\n" msgstr "" #: gnutls.c:1965 msgid "Error initialising X509 cert structure\n" msgstr "" #: gnutls.c:1971 msgid "Error importing server's cert\n" msgstr "" #: gnutls.c:1980 main.c:1794 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:1985 msgid "Error checking server cert status\n" msgstr "" #: gnutls.c:1990 msgid "certificate revoked" msgstr "" #: gnutls.c:1992 msgid "signer not found" msgstr "" #: gnutls.c:1994 msgid "signer not a CA certificate" msgstr "" #: gnutls.c:1996 msgid "insecure algorithm" msgstr "" #: gnutls.c:1998 msgid "certificate not yet activated" msgstr "" #: gnutls.c:2000 msgid "certificate expired" msgstr "" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2005 msgid "signature verification failed" msgstr "" #: gnutls.c:2054 openssl.c:1399 openssl.c:1551 msgid "certificate does not match hostname" msgstr "" #: gnutls.c:2059 openssl.c:1398 openssl.c:1557 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "" #: gnutls.c:2126 msgid "Failed to allocate memory for cafile certs\n" msgstr "" #: gnutls.c:2147 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "" #: gnutls.c:2163 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "" #: gnutls.c:2176 openssl.c:1679 msgid "Loading certificate failed. Aborting.\n" msgstr "" #: gnutls.c:2237 #, c-format msgid "Failed to set TLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2249 openssl.c:1796 #, c-format msgid "SSL negotiation with %s\n" msgstr "" #: gnutls.c:2296 openssl.c:1822 msgid "SSL connection cancelled\n" msgstr "" #: gnutls.c:2303 #, c-format msgid "SSL connection failure: %s\n" msgstr "" #: gnutls.c:2312 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "" #: gnutls.c:2318 openssl.c:1839 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "" #: gnutls.c:2321 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "" #: gnutls.c:2483 openssl-pkcs11.c:199 #, c-format msgid "PIN required for %s" msgstr "" #: gnutls.c:2487 openssl-pkcs11.c:202 msgid "Wrong PIN" msgstr "" #: gnutls.c:2490 msgid "This is the final try before locking!" msgstr "" #: gnutls.c:2492 msgid "Only a few tries left before locking!" msgstr "" #: gnutls.c:2497 openssl-pkcs11.c:206 msgid "Enter PIN:" msgstr "" #: gnutls.c:2583 openssl.c:1967 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2592 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:54 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm.c:61 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:68 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:78 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "" #: gnutls_tpm.c:100 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "" #: gnutls_tpm.c:108 gnutls_tpm.c:119 gnutls_tpm.c:132 msgid "Error in TSS key blob\n" msgstr "" #: gnutls_tpm.c:139 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "" #: gnutls_tpm.c:146 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "" #: gnutls_tpm.c:154 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "" #: gnutls_tpm.c:161 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "" #: gnutls_tpm.c:182 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "" #: gnutls_tpm.c:198 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "" #: gnutls_tpm.c:205 msgid "Enter TPM SRK PIN:" msgstr "" #: gnutls_tpm.c:226 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "" #: gnutls_tpm.c:234 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "" #: gnutls_tpm.c:240 msgid "Enter TPM key PIN:" msgstr "" #: gnutls_tpm.c:251 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "" #: gnutls_tpm2.c:92 gnutls_tpm2_esys.c:474 gnutls_tpm2_ibm.c:419 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:198 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:208 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:217 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:225 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:231 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:249 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:270 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:275 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:384 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2_esys.c:173 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:189 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:190 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:191 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:192 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:196 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:201 gnutls_tpm2_ibm.c:262 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:209 gnutls_tpm2_esys.c:303 gnutls_tpm2_esys.c:374 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:221 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:226 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:245 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:250 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:258 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:261 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:274 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:295 gnutls_tpm2_ibm.c:278 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:309 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:317 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:323 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:333 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:363 gnutls_tpm2_ibm.c:363 gnutls_tpm2_ibm.c:450 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:395 #, c-format msgid "TPM2 RSA sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:414 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:420 gnutls_tpm2_esys.c:500 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:464 gnutls_tpm2_ibm.c:405 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:494 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:532 gnutls_tpm2_ibm.c:485 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:546 gnutls_tpm2_ibm.c:502 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:555 gnutls_tpm2_ibm.c:512 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:569 gnutls_tpm2_ibm.c:523 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:54 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:226 #, c-format msgid "%s\n" msgstr "" #: gpst.c:229 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:417 #, c-format msgid "Unknown ESP %s algorithm: %s" msgstr "" #: gpst.c:477 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: gpst.c:483 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:487 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:498 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:551 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:560 oncp.c:835 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: gpst.c:627 msgid "ESP disabled" msgstr "" #: gpst.c:629 msgid "No ESP keys received" msgstr "" #: gpst.c:631 msgid "ESP support not available in this build" msgstr "" #: gpst.c:635 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:680 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:702 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:711 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:719 #, c-format msgid "Got inappropriate HTTP GET-tunnel response: %.*s\n" msgstr "" #: gpst.c:861 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" "VPN connectivity may be disabled or limited without HIP report submission.\n" "You need to provide a --csd-wrapper argument with the HIP report submission " "script.\n" msgstr "" #: gpst.c:871 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:900 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:905 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:911 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:913 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:942 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:966 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:972 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:999 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1015 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1051 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1072 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1082 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1086 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1092 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: gpst.c:1101 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1109 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1157 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1162 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1182 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1202 #, c-format msgid "Sending data packet of %d bytes\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1165 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "" #: http.c:319 msgid "No memory for allocating cookies\n" msgstr "" #: http.c:394 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "" #: http.c:400 #, c-format msgid "Got HTTP response: %s\n" msgstr "" #: http.c:408 msgid "Error processing HTTP response\n" msgstr "" #: http.c:415 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "" #: http.c:435 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "" #: http.c:454 msgid "SSL certificate authentication failed\n" msgstr "" #: http.c:485 #, c-format msgid "Response body has negative size (%d)\n" msgstr "" #: http.c:496 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "" #. Now the body, if there is one #: http.c:515 #, c-format msgid "HTTP body %s (%d)\n" msgstr "" #: http.c:529 http.c:556 msgid "Error reading HTTP response body\n" msgstr "" #: http.c:542 msgid "Error fetching chunk header\n" msgstr "" #: http.c:566 msgid "Error fetching HTTP response body\n" msgstr "" #: http.c:569 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "" #: http.c:581 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "" #: http.c:708 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "" #: http.c:732 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "" #: http.c:760 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "" #: http.c:973 oncp.c:591 #, c-format msgid "Unexpected %d result from server\n" msgstr "" #: http.c:1021 msgid "request granted" msgstr "" #: http.c:1022 msgid "general failure" msgstr "" #: http.c:1023 msgid "connection not allowed by ruleset" msgstr "" #: http.c:1024 msgid "network unreachable" msgstr "" #: http.c:1025 msgid "host unreachable" msgstr "" #: http.c:1026 msgid "connection refused by destination host" msgstr "" #: http.c:1027 msgid "TTL expired" msgstr "" #: http.c:1028 msgid "command not supported / protocol error" msgstr "" #: http.c:1029 msgid "address type not supported" msgstr "" #: http.c:1039 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1047 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1062 http.c:1118 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" #: http.c:1070 http.c:1125 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" #: http.c:1077 http.c:1131 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" #: http.c:1083 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1087 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1143 http.c:1150 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1156 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1163 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1170 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1176 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "" #: http.c:1191 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" #: http.c:1199 http.c:1241 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "" #: http.c:1205 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "" #: http.c:1213 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "" #: http.c:1217 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "" #: http.c:1234 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "" #: http.c:1257 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "" #: http.c:1292 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "" #: http.c:1315 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1334 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "" #: http.c:1383 msgid "Only http or socks(5) proxies supported\n" msgstr "" #: library.c:112 msgid "Cisco AnyConnect or openconnect" msgstr "" #: library.c:113 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "" #: library.c:129 msgid "Juniper Network Connect" msgstr "" #: library.c:130 msgid "Compatible with Juniper Network Connect / Pulse Secure SSL VPN" msgstr "" #: library.c:148 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:149 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:211 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:233 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "" #: library.c:656 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "" #: library.c:662 msgid "Only https:// permitted for server URL\n" msgstr "" #: library.c:1056 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "" #: library.c:1085 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" #: library.c:1146 msgid "No form handler; cannot authenticate.\n" msgstr "" #: main.c:340 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:353 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:388 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:401 #, c-format msgid "fgetws() failed: %s\n" msgstr "" #: main.c:416 main.c:429 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:423 main.c:689 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "" #: main.c:584 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:593 #, c-format msgid "Using OpenSSL. Features present:" msgstr "" #: main.c:595 #, c-format msgid "Using GnuTLS. Features present:" msgstr "" #: main.c:608 msgid "OpenSSL ENGINE not present" msgstr "" #: main.c:647 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" #: main.c:657 #, c-format msgid "Supported protocols:" msgstr "" #: main.c:659 main.c:675 msgid " (default)" msgstr "" #: main.c:672 msgid "Set VPN protocol" msgstr "" #: main.c:713 msgid "fgets (stdin)" msgstr "" #: main.c:754 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:760 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:780 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "" #: main.c:793 #, c-format msgid "Usage: openconnect [options] \n" msgstr "" #: main.c:794 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" #: main.c:796 msgid "Read options from config file" msgstr "" #: main.c:797 msgid "Report version number" msgstr "" #: main.c:798 msgid "Display help text" msgstr "" #: main.c:802 msgid "Authentication" msgstr "" #: main.c:803 msgid "Set login username" msgstr "" #: main.c:804 msgid "Disable password/SecurID authentication" msgstr "" #: main.c:805 msgid "Do not expect user input; exit if it is required" msgstr "" #: main.c:806 msgid "Read password from standard input" msgstr "" #: main.c:807 msgid "Choose authentication login selection" msgstr "" #: main.c:808 msgid "Provide authentication form responses" msgstr "" #: main.c:809 msgid "Use SSL client certificate CERT" msgstr "" #: main.c:810 msgid "Use SSL private key file KEY" msgstr "" #: main.c:811 msgid "Warn when certificate lifetime < DAYS" msgstr "" #: main.c:812 msgid "Set login usergroup" msgstr "" #: main.c:813 msgid "Set key passphrase or TPM SRK PIN" msgstr "" #: main.c:814 msgid "Key passphrase is fsid of file system" msgstr "" #: main.c:815 msgid "Software token type: rsa, totp or hotp" msgstr "" #: main.c:816 msgid "Software token secret" msgstr "" #: main.c:818 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" #: main.c:821 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:824 msgid "Server validation" msgstr "" #: main.c:825 msgid "Server's certificate SHA1 fingerprint" msgstr "" #: main.c:826 msgid "Do not require server SSL cert to be valid" msgstr "" #: main.c:827 msgid "Disable default system certificate authorities" msgstr "" #: main.c:828 msgid "Cert file for server verification" msgstr "" #: main.c:830 msgid "Internet connectivity" msgstr "" #: main.c:831 msgid "Set proxy server" msgstr "" #: main.c:832 msgid "Set proxy authentication methods" msgstr "" #: main.c:833 msgid "Disable proxy" msgstr "" #: main.c:834 msgid "Use libproxy to automatically configure proxy" msgstr "" #: main.c:836 msgid "(NOTE: libproxy disabled in this build)" msgstr "" #: main.c:838 msgid "Connection retry timeout in seconds" msgstr "" #: main.c:839 msgid "Use IP when connecting to HOST" msgstr "" #: main.c:840 msgid "copy TOS / TCLASS when using DTLS" msgstr "" #: main.c:841 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:843 msgid "Authentication (two-phase)" msgstr "" #: main.c:844 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:845 msgid "Read cookie from standard input" msgstr "" #: main.c:846 msgid "Authenticate only and print login info" msgstr "" #: main.c:847 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:848 msgid "Print cookie before connecting" msgstr "" #: main.c:851 msgid "Process control" msgstr "" #: main.c:852 msgid "Continue in background after startup" msgstr "" #: main.c:853 msgid "Write the daemon's PID to this file" msgstr "" #: main.c:854 msgid "Drop privileges after connecting" msgstr "" #: main.c:857 msgid "Logging (two-phase)" msgstr "" #: main.c:859 msgid "Use syslog for progress messages" msgstr "" #: main.c:861 msgid "More output" msgstr "" #: main.c:862 msgid "Less output" msgstr "" #: main.c:863 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "" #: main.c:864 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:866 msgid "VPN configuration script" msgstr "" #: main.c:867 msgid "Use IFNAME for tunnel interface" msgstr "" #: main.c:868 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" #: main.c:869 msgid "default" msgstr "" #: main.c:871 msgid "Pass traffic to 'script' program, not tun" msgstr "" #: main.c:874 msgid "Tunnel control" msgstr "" #: main.c:875 msgid "Do not ask for IPv6 connectivity" msgstr "" #: main.c:876 msgid "XML config file" msgstr "" #: main.c:877 msgid "Request MTU from server (legacy servers only)" msgstr "" #: main.c:878 msgid "Indicate path MTU to/from server" msgstr "" #: main.c:879 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:880 msgid "Disable all compression" msgstr "" #: main.c:881 msgid "Set minimum Dead Peer Detection interval" msgstr "" #: main.c:882 msgid "Require perfect forward secrecy" msgstr "" #: main.c:883 msgid "Disable DTLS and ESP" msgstr "" #: main.c:884 msgid "OpenSSL ciphers to support for DTLS" msgstr "" #: main.c:885 msgid "Set packet queue limit to LEN pkts" msgstr "" #: main.c:887 msgid "Local system information" msgstr "" #: main.c:888 msgid "HTTP header User-Agent: field" msgstr "" #: main.c:889 msgid "Local hostname to advertise to server" msgstr "" #: main.c:890 msgid "OS type (linux,linux-64,win,...) to report" msgstr "" #: main.c:891 msgid "reported version string during authentication" msgstr "" #: main.c:892 msgid "default:" msgstr "" #: main.c:895 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:896 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:897 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:900 msgid "Server bugs" msgstr "" #: main.c:901 msgid "Disable HTTP connection re-use" msgstr "" #: main.c:902 msgid "Do not attempt XML POST authentication" msgstr "" #: main.c:924 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:997 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "" #: main.c:1037 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "" #: main.c:1047 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "" #: main.c:1051 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "" #: main.c:1076 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "" #: main.c:1086 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "" #: main.c:1130 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "" #: main.c:1140 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:1147 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:1157 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "" #: main.c:1215 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" #: main.c:1223 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "" #: main.c:1239 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1260 #, c-format msgid "Missing colon in resolve option\n" msgstr "" #: main.c:1265 #, c-format msgid "Failed to allocate memory\n" msgstr "" #: main.c:1349 main.c:1358 #, c-format msgid "MTU %d too small\n" msgstr "" #: main.c:1388 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" #: main.c:1394 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" #: main.c:1411 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "" #: main.c:1425 #, c-format msgid "OpenConnect version %s\n" msgstr "" #: main.c:1463 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "" #: main.c:1473 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "" #: main.c:1506 #, c-format msgid "Too many arguments on command line\n" msgstr "" #: main.c:1509 #, c-format msgid "No server specified\n" msgstr "" #: main.c:1525 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" #: main.c:1555 #, c-format msgid "Error opening cmd pipe\n" msgstr "" #: main.c:1588 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "" #: main.c:1609 #, c-format msgid "Creating SSL connection failed\n" msgstr "" #: main.c:1625 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:1633 #, c-format msgid "Connected as %s%s%s, using SSL%s%s, with %s%s%s %s\n" msgstr "" #: main.c:1639 msgid "disabled" msgstr "" #: main.c:1639 msgid "in progress" msgstr "" #: main.c:1643 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" #: main.c:1645 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "" #: main.c:1658 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "" #: main.c:1670 #, c-format msgid "Continuing in background; pid %d\n" msgstr "" #: main.c:1687 msgid "User requested reconnect\n" msgstr "" #: main.c:1695 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "" #: main.c:1699 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:1703 msgid "User cancelled (SIGINT/SIGTERM); exiting.\n" msgstr "" #: main.c:1707 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "" #: main.c:1711 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:1730 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "" #: main.c:1738 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "" #: main.c:1797 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "" #: main.c:1816 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" #: main.c:1819 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" #: main.c:1820 #, c-format msgid " --servercert %s\n" msgstr "" #: main.c:1825 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" #: main.c:1826 main.c:1844 msgid "no" msgstr "" #: main.c:1826 main.c:1832 msgid "yes" msgstr "" #: main.c:1853 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:1887 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:1890 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "" #: main.c:1911 msgid "User input required in non-interactive mode\n" msgstr "" #: main.c:2149 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:2157 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:2203 main.c:2224 #, c-format msgid "Soft token string is invalid\n" msgstr "" #: main.c:2206 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "" #: main.c:2209 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "" #: main.c:2212 #, c-format msgid "General failure in libstoken\n" msgstr "" #: main.c:2227 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "" #: main.c:2230 #, c-format msgid "General failure in liboath\n" msgstr "" #: main.c:2241 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2244 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2247 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: mainloop.c:127 #, c-format msgid "Set up tun script failed\n" msgstr "" #: mainloop.c:134 #, c-format msgid "Set up tun device failed\n" msgstr "" #: mainloop.c:265 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:273 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "" #: mainloop.c:294 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:978 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:982 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:565 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:160 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:166 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:175 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:186 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:201 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:210 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:219 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:232 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:254 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:274 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:297 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:316 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:327 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:335 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:342 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:350 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:358 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:366 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:374 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:383 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:395 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:473 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:490 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:496 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:512 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:577 oncp.c:609 oncp.c:747 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:618 oncp.c:783 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:631 oncp.c:666 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:636 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:643 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:670 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:683 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:692 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "" #: oncp.c:698 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "" #: oncp.c:705 msgid "Failed to read continuation record length\n" msgstr "" #: oncp.c:711 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "" #: oncp.c:720 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "" #: oncp.c:726 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "" #: oncp.c:767 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:776 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:829 msgid "new incoming" msgstr "" #: oncp.c:830 msgid "new outgoing" msgstr "" #: oncp.c:855 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:864 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:868 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:874 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:969 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:972 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:991 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1053 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1058 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1073 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1134 msgid "Sent ESP enable control packet\n" msgstr "" #: oncp.c:1268 msgid "Logout successful.\n" msgstr "" #: openconnect-internal.h:1119 openconnect-internal.h:1127 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "" #: openssl-dtls.c:365 msgid "Initialise DTLSv1 CTX failed\n" msgstr "" #: openssl-dtls.c:378 msgid "Set DTLS CTX version failed\n" msgstr "" #: openssl-dtls.c:395 msgid "Failed to generate DTLS key\n" msgstr "" #: openssl-dtls.c:413 msgid "Set DTLS cipher list failed\n" msgstr "" #: openssl-dtls.c:439 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:460 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: openssl-dtls.c:493 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:566 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "" #: openssl-dtls.c:603 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" #: openssl-dtls.c:654 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" #: openssl-dtls.c:661 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "" #: openssl-esp.c:87 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:101 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:157 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:202 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:210 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:241 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:43 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:49 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "" #: openssl-pkcs11.c:269 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:272 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:275 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:279 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:286 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:300 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:306 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:342 openssl-pkcs11.c:565 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:349 openssl-pkcs11.c:575 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:383 openssl-pkcs11.c:617 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:393 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "" #: openssl-pkcs11.c:401 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:412 openssl.c:713 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl-pkcs11.c:458 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:464 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:497 msgid "Certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:503 openssl-pkcs11.c:526 msgid "Certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:506 msgid "Checking EC key matches cert\n" msgstr "" #: openssl-pkcs11.c:510 msgid "Failed to allocate signature buffer\n" msgstr "" #: openssl-pkcs11.c:520 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" #: openssl-pkcs11.c:638 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "" #: openssl-pkcs11.c:649 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:678 msgid "Add key from PKCS#11 failed\n" msgstr "" #: openssl-pkcs11.c:710 openssl-pkcs11.c:716 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:147 msgid "Failed to write to SSL socket\n" msgstr "" #: openssl.c:197 openssl.c:263 msgid "Failed to read from SSL socket\n" msgstr "" #: openssl.c:292 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" #: openssl.c:317 #, c-format msgid "SSL_write failed: %d\n" msgstr "" #: openssl.c:389 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:465 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "" #: openssl.c:498 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "" #: openssl.c:548 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:563 msgid "PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:572 msgid "PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:577 msgid "PKCS#12" msgstr "" #: openssl.c:600 msgid "Can't load TPM engine.\n" msgstr "" #: openssl.c:606 msgid "Failed to init TPM engine\n" msgstr "" #: openssl.c:616 msgid "Failed to set TPM SRK password\n" msgstr "" #: openssl.c:630 msgid "Failed to load TPM private key\n" msgstr "" #: openssl.c:636 msgid "Add key from TPM failed\n" msgstr "" #: openssl.c:687 openssl.c:835 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "" #: openssl.c:697 msgid "Loading certificate failed\n" msgstr "" #: openssl.c:735 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:748 msgid "PEM file" msgstr "" #: openssl.c:777 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "" #: openssl.c:802 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:808 msgid "Loading private key failed (see above errors)\n" msgstr "" #: openssl.c:858 msgid "Failed to load X509 certificate from keystore\n" msgstr "" #: openssl.c:864 msgid "Failed to use X509 certificate from keystore\n" msgstr "" #: openssl.c:896 msgid "Failed to use private key from keystore\n" msgstr "" #: openssl.c:912 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "" #: openssl.c:936 openssl.c:951 openssl.c:972 openssl.c:1038 msgid "Loading private key failed\n" msgstr "" #: openssl.c:1032 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1049 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "" #: openssl.c:1203 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "" #: openssl.c:1210 #, c-format msgid "No match for altname '%s'\n" msgstr "" #: openssl.c:1224 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" #: openssl.c:1235 openssl.c:1381 #, c-format msgid "Matched %s address '%s'\n" msgstr "" #: openssl.c:1242 #, c-format msgid "No match for %s address '%s'\n" msgstr "" #: openssl.c:1284 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "" #: openssl.c:1289 #, c-format msgid "Matched URI '%s'\n" msgstr "" #: openssl.c:1300 #, c-format msgid "No match for URI '%s'\n" msgstr "" #: openssl.c:1315 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" #: openssl.c:1323 msgid "No subject name in peer cert!\n" msgstr "" #: openssl.c:1343 msgid "Failed to parse subject name in peer cert\n" msgstr "" #: openssl.c:1350 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "" #: openssl.c:1355 openssl.c:1389 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "" #: openssl.c:1451 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "" #: openssl.c:1589 msgid "Error in client cert notAfter field\n" msgstr "" #: openssl.c:1602 msgid "" msgstr "" #: openssl.c:1655 msgid "Create TLSv1 CTX failed\n" msgstr "" #: openssl.c:1674 msgid "SSL certificate and key do not match\n" msgstr "" #: openssl.c:1719 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "" #: openssl.c:1752 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "" #: openssl.c:1812 msgid "SSL connection failure\n" msgstr "" #: openssl.c:1973 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:130 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "" #: script.c:134 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "" #: script.c:507 script.c:555 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "" #: script.c:562 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "" #: script.c:570 #, c-format msgid "Script '%s' returned error %d\n" msgstr "" #: ssl.c:108 msgid "Socket connect cancelled\n" msgstr "" #: ssl.c:217 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "" #: ssl.c:221 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "" #: ssl.c:289 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "" #: ssl.c:317 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "" #: ssl.c:326 ssl.c:451 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:341 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "" #: ssl.c:342 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "" #: ssl.c:362 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "" #: ssl.c:374 msgid "Failed to allocate sockaddr storage\n" msgstr "" #: ssl.c:416 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "" #: ssl.c:434 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:446 #, c-format msgid "Failed to connect to host %s\n" msgstr "" #: ssl.c:465 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:536 #, c-format msgid "statvfs: %s\n" msgstr "" #: ssl.c:564 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:575 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:603 #, c-format msgid "statfs: %s\n" msgstr "" #: ssl.c:694 msgid "No error" msgstr "" #: ssl.c:695 msgid "Keystore locked" msgstr "" #: ssl.c:696 msgid "Keystore uninitialized" msgstr "" #: ssl.c:697 msgid "System error" msgstr "" #: ssl.c:698 msgid "Protocol error" msgstr "" #: ssl.c:699 msgid "Permission denied" msgstr "" #: ssl.c:700 msgid "Key not found" msgstr "" #: ssl.c:701 msgid "Value corrupted" msgstr "" #: ssl.c:702 msgid "Undefined action" msgstr "" #: ssl.c:706 msgid "Wrong password" msgstr "" #: ssl.c:707 msgid "Unknown error" msgstr "" #: ssl.c:896 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:931 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:950 msgid "Open UDP socket" msgstr "" #: ssl.c:981 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:989 msgid "Bind UDP socket" msgstr "" #: ssl.c:996 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:1034 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:1038 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "" #: stoken.c:82 msgid "Device ID:" msgstr "" #: stoken.c:89 msgid "Password:" msgstr "" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "" #: stoken.c:185 msgid "Enter software token PIN." msgstr "" #: stoken.c:189 msgid "PIN:" msgstr "" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "" #: tun-win32.c:76 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:139 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "" #: tun-win32.c:154 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" #: tun-win32.c:186 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" #: tun-win32.c:200 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "" #: tun-win32.c:231 #, c-format msgid "Failed to open %s\n" msgstr "" #: tun-win32.c:236 #, c-format msgid "Opened tun device %s\n" msgstr "" #: tun-win32.c:244 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:250 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:271 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:283 tun-win32.c:406 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:316 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:321 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:335 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:358 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:368 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:371 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:423 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "" #: tun.c:92 msgid "Can't push IP" msgstr "" #: tun.c:102 msgid "Can't set ifname" msgstr "" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "" #: tun.c:139 msgid "open /dev/tun" msgstr "" #: tun.c:145 msgid "Failed to create new tun" msgstr "" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "" #: tun.c:205 msgid "open net" msgstr "" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "" #: tun.c:479 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:484 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:488 msgid "setpgid" msgstr "" #: tun.c:493 msgid "execl" msgstr "" #: tun.c:498 msgid "(script)" msgstr "" #: tun.c:566 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:174 msgid "select applet command" msgstr "" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:274 msgid "unlock command" msgstr "" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:412 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:619 msgid "calculate command" msgstr "" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-8.05/po/en_US.po0000664000076400007640000027447013470043037017543 0ustar00dwoodhoudwoodhou00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: # Margie Foster , 2011, 2012. msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2019-05-18 10:44-0700\n" "PO-Revision-Date: 2012-11-15 08:31+0000\n" "Last-Translator: David Woodhouse \n" "Language-Team: English (United States) (http://www.transifex.com/projects/p/" "meego/language/en_US/)\n" "Language: en_US\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: auth-globalprotect.c:108 #, c-format msgid "" "SAML login is required via %s to this URL:\n" "\t%s" msgstr "" #: auth-globalprotect.c:110 msgid "Please enter your username and password" msgstr "" #: auth-globalprotect.c:119 msgid "Username" msgstr "" #: auth-globalprotect.c:134 msgid "Password" msgstr "" #: auth-globalprotect.c:181 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:260 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:266 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:272 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:315 msgid "Please select GlobalProtect gateway." msgstr "" #: auth-globalprotect.c:325 msgid "GATEWAY:" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:379 #, c-format msgid "%d gateway servers available:\n" msgstr "" #: auth-globalprotect.c:400 #, c-format msgid " %s (%s)\n" msgstr "" #: auth-globalprotect.c:484 auth-juniper.c:730 auth.c:669 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth-globalprotect.c:584 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" #: auth-globalprotect.c:636 oncp.c:1266 msgid "Logout failed.\n" msgstr "" #: auth-globalprotect.c:638 msgid "Logout successful\n" msgstr "" #: auth-juniper.c:142 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:153 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:163 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:236 auth.c:408 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Cannot handle form method='%s', action='%s'\n" #: auth-juniper.c:267 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "" #: auth-juniper.c:337 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:359 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:397 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:411 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:418 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:425 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:432 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:439 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:445 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:452 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:481 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:650 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:667 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:675 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:713 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:716 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth.c:96 msgid "Form choice has no name\n" msgstr "Form choice has no name\n" #: auth.c:181 #, c-format msgid "name %s not input\n" msgstr "name %s not input\n" #: auth.c:188 msgid "No input type in form\n" msgstr "No input type in form\n" #: auth.c:200 msgid "No input name in form\n" msgstr "No input name in form\n" #: auth.c:230 #, c-format msgid "Unknown input type %s in form\n" msgstr "Unknown input type %s in form\n" #: auth.c:540 gpst.c:214 msgid "Empty response from server\n" msgstr "" #: auth.c:551 gpst.c:289 msgid "Failed to parse server response\n" msgstr "Failed to parse server response\n" #: auth.c:553 gpst.c:291 #, c-format msgid "Response was:%s\n" msgstr "Response was:%s\n" #: auth.c:575 msgid "Received when not expected.\n" msgstr "" #: auth.c:603 msgid "XML response has no \"auth\" node\n" msgstr "" #: auth.c:636 msgid "Asked for password but '--no-passwd' set\n" msgstr "Asked for password but '--no-passwd' set\n" #: auth.c:925 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:931 cstp.c:335 http.c:916 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Failed to open HTTPS connection to %s\n" #: auth.c:952 msgid "Failed to send GET request for new config\n" msgstr "" #: auth.c:976 msgid "Downloaded config file did not match intended SHA1\n" msgstr "Downloaded config file did not match intended SHA1\n" #: auth.c:981 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:992 auth.c:1044 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" #: auth.c:1003 mainloop.c:144 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "" #: auth.c:1010 mainloop.c:151 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "" #: auth.c:1017 mainloop.c:158 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "" #: auth.c:1024 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "" #: auth.c:1031 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Failed to change to CSD home directory '%s': %s\n" #: auth.c:1053 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:1060 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" #: auth.c:1067 msgid "Trying to run Linux CSD trojan script.\n" msgstr "Trying to run Linux CSD trojan script.\n" #: auth.c:1094 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1102 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Failed to open temporary CSD script file: %s\n" #: auth.c:1111 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Failed to write temporary CSD script file: %s\n" #: auth.c:1141 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" #: auth.c:1189 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Failed to exec CSD script %s\n" #: auth.c:1221 msgid "Unknown response from server\n" msgstr "Unknown response from server\n" #: auth.c:1342 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1346 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" #: auth.c:1362 msgid "XML POST enabled\n" msgstr "" #: auth.c:1405 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Refreshing %s after 1 second...\n" #: compat.c:207 #, c-format msgid "(error 0x%lx)" msgstr "" #: compat.c:210 msgid "(Error while describing error!)" msgstr "" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:112 gpst.c:341 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "" #: cstp.c:134 gpst.c:360 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "" #: cstp.c:281 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:312 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:328 http.c:384 msgid "Error fetching HTTPS response\n" msgstr "Error fetching HTTPS response\n" #: cstp.c:355 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "VPN service unavailable; reason: %s\n" #: cstp.c:360 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Got inappropriate HTTP CONNECT response: %s\n" #: cstp.c:367 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Got CONNECT response: %s\n" #: cstp.c:396 cstp.c:404 msgid "No memory for options\n" msgstr "No memory for options\n" #: cstp.c:413 http.c:444 msgid "" msgstr "" #: cstp.c:433 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" #: cstp.c:450 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "" #: cstp.c:468 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:510 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Unknown CSTP-Content-Encoding %s\n" #: cstp.c:585 msgid "No MTU received. Aborting\n" msgstr "" #: cstp.c:593 gpst.c:641 msgid "No IP address received. Aborting\n" msgstr "No IP address received. Aborting\n" #: cstp.c:599 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: cstp.c:605 gpst.c:648 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Reconnect gave different Legacy IP address (%s != %s)\n" #: cstp.c:614 gpst.c:657 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "Reconnect gave different Legacy IP netmask (%s != %s)\n" #: cstp.c:622 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Reconnect gave different IPv6 address (%s != %s)\n" #: cstp.c:630 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Reconnect gave different IPv6 netmask (%s != %s)\n" #: cstp.c:638 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP connected. DPD %d, Keepalive %d\n" #: cstp.c:640 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "" #: cstp.c:702 msgid "Compression setup failed\n" msgstr "Compression setup failed\n" #: cstp.c:719 msgid "Allocation of deflate buffer failed\n" msgstr "Allocation of deflate buffer failed\n" #: cstp.c:781 msgid "inflate failed\n" msgstr "inflate failed\n" #: cstp.c:804 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:817 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:824 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:829 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:849 #, c-format msgid "deflate failed %d\n" msgstr "deflate failed %d\n" #: cstp.c:922 dtls.c:281 dtls.c:740 esp.c:129 gpst.c:1042 mainloop.c:69 #: oncp.c:914 msgid "Allocation failed\n" msgstr "" #: cstp.c:933 gpst.c:1055 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: cstp.c:946 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Unexpected packet length. SSL_read returned %d but packet is\n" #: cstp.c:960 msgid "Got CSTP DPD request\n" msgstr "Got CSTP DPD request\n" #: cstp.c:966 msgid "Got CSTP DPD response\n" msgstr "Got CSTP DPD response\n" #: cstp.c:971 msgid "Got CSTP Keepalive\n" msgstr "Got CSTP Keepalive\n" #: cstp.c:976 oncp.c:1003 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Received uncompressed data packet of %d bytes\n" #: cstp.c:993 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Received server disconnect: %02x '%s'\n" #: cstp.c:996 msgid "Received server disconnect\n" msgstr "" #: cstp.c:1004 msgid "Compressed packet received in !deflate mode\n" msgstr "Compressed packet received in !deflate mode\n" #: cstp.c:1013 msgid "received server terminate packet\n" msgstr "received server terminate packet\n" #: cstp.c:1020 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1063 gpst.c:1142 oncp.c:1121 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL wrote too few bytes! Asked for %d, sent %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1091 oncp.c:1155 msgid "CSTP rekey due\n" msgstr "CSTP rekey due\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1098 oncp.c:1162 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: cstp.c:1109 oncp.c:1173 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "CSTP Dead Peer Detection detected dead peer!\n" #: cstp.c:1113 gpst.c:1166 oncp.c:1091 oncp.c:1177 msgid "Reconnect failed\n" msgstr "Reconnect failed\n" #: cstp.c:1129 oncp.c:1193 msgid "Send CSTP DPD\n" msgstr "Send CSTP DPD\n" #: cstp.c:1141 oncp.c:1204 msgid "Send CSTP Keepalive\n" msgstr "Send CSTP Keepalive\n" #: cstp.c:1166 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1177 oncp.c:1238 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Sending uncompressed data packet of %d bytes\n" #: cstp.c:1216 #, c-format msgid "Send BYE packet: %s\n" msgstr "Send BYE packet: %s\n" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:113 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:119 msgid "No DTLS address\n" msgstr "No DTLS address\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:126 msgid "Server offered no DTLS cipher option\n" msgstr "Server offered no DTLS cipher option\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:133 msgid "No DTLS when connected via proxy\n" msgstr "No DTLS when connected via proxy\n" #: dtls.c:200 #, c-format msgid "DTLS option %s : %s\n" msgstr "DTLS option %s : %s\n" #: dtls.c:239 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:265 msgid "Attempt new DTLS connection\n" msgstr "Attempt new DTLS connection\n" #: dtls.c:292 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Received DTLS packet 0x%02x of %d bytes\n" #: dtls.c:306 msgid "Got DTLS DPD request\n" msgstr "Got DTLS DPD request\n" #: dtls.c:312 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Failed to send DPD response. Expect disconnect\n" #: dtls.c:316 msgid "Got DTLS DPD response\n" msgstr "Got DTLS DPD response\n" #: dtls.c:320 msgid "Got DTLS Keepalive\n" msgstr "Got DTLS Keepalive\n" #: dtls.c:326 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:334 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Unknown DTLS packet type %02x, len %d\n" #: dtls.c:356 msgid "DTLS rekey due\n" msgstr "DTLS rekey due\n" #: dtls.c:363 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: dtls.c:372 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "DTLS Dead Peer Detection detected dead peer!\n" #: dtls.c:378 msgid "Send DTLS DPD\n" msgstr "Send DTLS DPD\n" #: dtls.c:383 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "" #: dtls.c:396 msgid "Send DTLS Keepalive\n" msgstr "Send DTLS Keepalive\n" #: dtls.c:401 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" #: dtls.c:432 tun.c:541 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" #: dtls.c:439 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "" #: dtls.c:443 msgid "UDP setsockopt" msgstr "" #: dtls.c:474 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "DTLS got write error %d. Falling back to SSL\n" #: dtls.c:488 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "" #: dtls.c:503 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "" #: dtls.c:531 #, c-format msgid "Initiating IPv4 MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:551 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" #: dtls.c:555 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" #: dtls.c:564 #, c-format msgid "Sending MTU DPD probe (%u bytes, min=%u, max=%u)\n" msgstr "" #: dtls.c:568 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "" #: dtls.c:582 dtls.c:690 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" #: dtls.c:594 #, c-format msgid "Timeout while waiting for DPD response; trying %d\n" msgstr "" #: dtls.c:601 dtls.c:682 msgid "Timeout while waiting for DPD response; resending probe.\n" msgstr "" #: dtls.c:608 dtls.c:709 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "" #: dtls.c:613 #, c-format msgid "Received MTU DPD probe (%u bytes of %u)\n" msgstr "" #: dtls.c:651 msgid "Initiating IPv6 MTU detection\n" msgstr "" #: dtls.c:666 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:670 #, c-format msgid "Failed to send DPD request (%d)\n" msgstr "" #: dtls.c:695 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:759 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "" #: dtls.c:762 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" #: esp.c:63 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:66 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:69 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:87 msgid "incoming" msgstr "" #: esp.c:88 msgid "outgoing" msgstr "" #: esp.c:90 esp.c:113 msgid "Send ESP probes\n" msgstr "" #: esp.c:138 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:155 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:161 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:174 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:181 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:193 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:202 msgid "ESP session established with server\n" msgstr "" #: esp.c:213 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:219 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:225 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:239 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:243 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:251 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:258 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:278 #, c-format msgid "Failed to encrypt ESP packet: %d\n" msgstr "" #: esp.c:294 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:301 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:307 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-dtls.c:190 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "" #: gnutls-dtls.c:198 msgid "Failed to generate DTLS priority string\n" msgstr "" #: gnutls-dtls.c:207 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "" #: gnutls-dtls.c:216 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "" #: gnutls-dtls.c:240 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "" #: gnutls-dtls.c:253 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:267 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:275 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "" #: gnutls-dtls.c:309 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "" #: gnutls-dtls.c:324 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "" #: gnutls-dtls.c:345 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "" #: gnutls-dtls.c:373 openssl-dtls.c:534 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "" #: gnutls-dtls.c:382 openssl-dtls.c:545 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "" #: gnutls-dtls.c:392 openssl-dtls.c:554 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" #: gnutls-dtls.c:405 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "" #: gnutls-dtls.c:416 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: gnutls-dtls.c:422 openssl-dtls.c:572 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "" #: gnutls-dtls.c:437 openssl-dtls.c:653 openssl-dtls.c:657 msgid "DTLS handshake timed out\n" msgstr "DTLS handshake timed out\n" #: gnutls-dtls.c:440 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "" #: gnutls-dtls.c:444 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:121 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:132 msgid "Failed to generate ESP IV\n" msgstr "" #: gnutls-esp.c:161 gnutls-esp.c:217 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:168 openssl-esp.c:192 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:180 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:209 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:95 openssl.c:154 msgid "SSL write cancelled\n" msgstr "SSL write canceled\n" #: gnutls.c:99 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "" #: gnutls.c:145 gnutls.c:237 openssl.c:204 openssl.c:271 msgid "SSL read cancelled\n" msgstr "SSL read canceled\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:158 msgid "SSL socket closed uncleanly\n" msgstr "" #: gnutls.c:168 gnutls.c:246 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "" #: gnutls.c:266 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "" #: gnutls.c:302 #, c-format msgid "SSL send failed: %s\n" msgstr "" #: gnutls.c:315 msgid "Could not extract expiration time of certificate\n" msgstr "" #: gnutls.c:320 openssl.c:1592 msgid "Client certificate has expired at" msgstr "Client certificate has expired at" #: gnutls.c:322 openssl.c:1597 msgid "Client certificate expires soon at" msgstr "Client certificate expires soon at" #: gnutls.c:371 openssl.c:771 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" #: gnutls.c:384 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "" #: gnutls.c:391 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" #: gnutls.c:400 msgid "Failed to allocate certificate buffer\n" msgstr "" #: gnutls.c:408 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "" #: gnutls.c:439 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "" #: gnutls.c:462 openssl.c:534 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "" #: gnutls.c:466 openssl.c:537 msgid "Enter PKCS#12 pass phrase:" msgstr "" #: gnutls.c:489 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "" #: gnutls.c:501 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:584 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "" #: gnutls.c:594 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "" #: gnutls.c:628 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "" #: gnutls.c:638 #, c-format msgid "MD5 hash error: %s\n" msgstr "" #: gnutls.c:696 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" #: gnutls.c:703 msgid "Cannot determine PEM encryption type\n" msgstr "" #: gnutls.c:716 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "" #: gnutls.c:741 gnutls.c:754 msgid "Invalid salt in encrypted PEM file\n" msgstr "" #: gnutls.c:778 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "" #: gnutls.c:786 msgid "Encrypted PEM file too short\n" msgstr "" #: gnutls.c:814 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" #: gnutls.c:825 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "" #: gnutls.c:877 msgid "Decrypting PEM key failed\n" msgstr "" #: gnutls.c:881 gnutls.c:1405 openssl.c:458 msgid "Enter PEM pass phrase:" msgstr "" #: gnutls.c:942 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:949 msgid "This binary built without PKCS#11 support\n" msgstr "" #: gnutls.c:993 openssl-pkcs11.c:407 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "" #: gnutls.c:994 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1012 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "" #: gnutls.c:1013 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1024 openssl.c:827 #, c-format msgid "Using certificate file %s\n" msgstr "Using certificate file %s\n" #: gnutls.c:1052 msgid "PKCS#11 file contained no certificate\n" msgstr "" #: gnutls.c:1078 msgid "No certificate found in file" msgstr "" #: gnutls.c:1083 #, c-format msgid "Loading certificate failed: %s\n" msgstr "" #: gnutls.c:1098 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1103 gnutls.c:1271 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "" #: gnutls.c:1114 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1125 gnutls.c:1219 gnutls.c:1247 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1130 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "" #: gnutls.c:1259 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "" #: gnutls.c:1266 openssl-pkcs11.c:644 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "" #: gnutls.c:1281 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" #: gnutls.c:1299 #, c-format msgid "Using private key file %s\n" msgstr "" #: gnutls.c:1310 openssl.c:651 msgid "This version of OpenConnect was built without TPM support\n" msgstr "This version of OpenConnect was built without TPM support\n" #: gnutls.c:1326 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1347 msgid "Failed to interpret PEM file\n" msgstr "" #: gnutls.c:1366 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "" #: gnutls.c:1379 gnutls.c:1393 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "" #: gnutls.c:1401 gnutls.c:1434 openssl.c:1002 openssl.c:1012 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "" #: gnutls.c:1426 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "" #: gnutls.c:1438 openssl.c:1008 msgid "Enter PKCS#8 pass phrase:" msgstr "" #: gnutls.c:1454 #, c-format msgid "Failed to get key ID: %s\n" msgstr "" #: gnutls.c:1499 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "" #: gnutls.c:1514 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "" #: gnutls.c:1539 msgid "No SSL certificate found to match private key\n" msgstr "" #: gnutls.c:1551 openssl.c:560 openssl.c:709 #, c-format msgid "Using client certificate '%s'\n" msgstr "" #: gnutls.c:1558 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "" #: gnutls.c:1579 gnutls.c:1589 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1625 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" #: gnutls.c:1648 msgid "Got no issuer from PKCS#11\n" msgstr "" #: gnutls.c:1653 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "" #: gnutls.c:1679 msgid "Failed to allocate memory for supporting certificates\n" msgstr "" #: gnutls.c:1702 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "" #: gnutls.c:1724 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1748 #, c-format msgid "Setting certificate failed: %s\n" msgstr "" #: gnutls.c:1941 msgid "Server presented no certificate\n" msgstr "" #: gnutls.c:1949 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" #: gnutls.c:1954 openssl.c:1515 msgid "Server presented different cert on rehandshake\n" msgstr "" #: gnutls.c:1959 openssl.c:1518 msgid "Server presented identical cert on rehandshake\n" msgstr "" #: gnutls.c:1965 msgid "Error initialising X509 cert structure\n" msgstr "" #: gnutls.c:1971 msgid "Error importing server's cert\n" msgstr "" #: gnutls.c:1980 main.c:1794 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:1985 msgid "Error checking server cert status\n" msgstr "" #: gnutls.c:1990 msgid "certificate revoked" msgstr "" #: gnutls.c:1992 msgid "signer not found" msgstr "" #: gnutls.c:1994 msgid "signer not a CA certificate" msgstr "" #: gnutls.c:1996 msgid "insecure algorithm" msgstr "" #: gnutls.c:1998 msgid "certificate not yet activated" msgstr "" #: gnutls.c:2000 msgid "certificate expired" msgstr "" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2005 msgid "signature verification failed" msgstr "" #: gnutls.c:2054 openssl.c:1399 openssl.c:1551 msgid "certificate does not match hostname" msgstr "certificate does not match hostname" #: gnutls.c:2059 openssl.c:1398 openssl.c:1557 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Server certificate verify failed: %s\n" #: gnutls.c:2126 msgid "Failed to allocate memory for cafile certs\n" msgstr "" #: gnutls.c:2147 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "" #: gnutls.c:2163 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "" #: gnutls.c:2176 openssl.c:1679 msgid "Loading certificate failed. Aborting.\n" msgstr "Loading certificate failed. Aborting.\n" #: gnutls.c:2237 #, c-format msgid "Failed to set TLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2249 openssl.c:1796 #, c-format msgid "SSL negotiation with %s\n" msgstr "SSL negotiation with %s\n" #: gnutls.c:2296 openssl.c:1822 msgid "SSL connection cancelled\n" msgstr "SSL connection canceled\n" #: gnutls.c:2303 #, c-format msgid "SSL connection failure: %s\n" msgstr "" #: gnutls.c:2312 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "" #: gnutls.c:2318 openssl.c:1839 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "Connected to HTTPS on %s\n" #: gnutls.c:2321 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "" #: gnutls.c:2483 openssl-pkcs11.c:199 #, c-format msgid "PIN required for %s" msgstr "" #: gnutls.c:2487 openssl-pkcs11.c:202 msgid "Wrong PIN" msgstr "" #: gnutls.c:2490 msgid "This is the final try before locking!" msgstr "" #: gnutls.c:2492 msgid "Only a few tries left before locking!" msgstr "" #: gnutls.c:2497 openssl-pkcs11.c:206 msgid "Enter PIN:" msgstr "" #: gnutls.c:2583 openssl.c:1967 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2592 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:54 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm.c:61 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:68 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:78 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "" #: gnutls_tpm.c:100 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "" #: gnutls_tpm.c:108 gnutls_tpm.c:119 gnutls_tpm.c:132 msgid "Error in TSS key blob\n" msgstr "" #: gnutls_tpm.c:139 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "" #: gnutls_tpm.c:146 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "" #: gnutls_tpm.c:154 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "" #: gnutls_tpm.c:161 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "" #: gnutls_tpm.c:182 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "" #: gnutls_tpm.c:198 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "" #: gnutls_tpm.c:205 msgid "Enter TPM SRK PIN:" msgstr "" #: gnutls_tpm.c:226 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "" #: gnutls_tpm.c:234 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "" #: gnutls_tpm.c:240 msgid "Enter TPM key PIN:" msgstr "" #: gnutls_tpm.c:251 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "" #: gnutls_tpm2.c:92 gnutls_tpm2_esys.c:474 gnutls_tpm2_ibm.c:419 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:198 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:208 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:217 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:225 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:231 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:249 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:270 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:275 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:384 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2_esys.c:173 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:189 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:190 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:191 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:192 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:196 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:201 gnutls_tpm2_ibm.c:262 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:209 gnutls_tpm2_esys.c:303 gnutls_tpm2_esys.c:374 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:221 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:226 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:245 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:250 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:258 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:261 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:274 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:295 gnutls_tpm2_ibm.c:278 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:309 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:317 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:323 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:333 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:363 gnutls_tpm2_ibm.c:363 gnutls_tpm2_ibm.c:450 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:395 #, c-format msgid "TPM2 RSA sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:414 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:420 gnutls_tpm2_esys.c:500 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:464 gnutls_tpm2_ibm.c:405 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:494 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:532 gnutls_tpm2_ibm.c:485 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:546 gnutls_tpm2_ibm.c:502 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:555 gnutls_tpm2_ibm.c:512 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:569 gnutls_tpm2_ibm.c:523 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:54 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:226 #, c-format msgid "%s\n" msgstr "" #: gpst.c:229 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:417 #, c-format msgid "Unknown ESP %s algorithm: %s" msgstr "" #: gpst.c:477 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: gpst.c:483 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:487 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:498 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:551 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:560 oncp.c:835 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: gpst.c:627 msgid "ESP disabled" msgstr "" #: gpst.c:629 msgid "No ESP keys received" msgstr "" #: gpst.c:631 msgid "ESP support not available in this build" msgstr "" #: gpst.c:635 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:680 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:702 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:711 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:719 #, c-format msgid "Got inappropriate HTTP GET-tunnel response: %.*s\n" msgstr "" #: gpst.c:861 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" "VPN connectivity may be disabled or limited without HIP report submission.\n" "You need to provide a --csd-wrapper argument with the HIP report submission " "script.\n" msgstr "" #: gpst.c:871 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:900 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:905 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:911 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:913 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:942 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:966 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:972 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:999 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1015 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1051 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1072 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1082 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1086 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1092 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: gpst.c:1101 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1109 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1157 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1162 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1182 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1202 #, c-format msgid "Sending data packet of %d bytes\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1165 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "" #: http.c:319 msgid "No memory for allocating cookies\n" msgstr "No memory for allocating cookies\n" #: http.c:394 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Failed to parse HTTP response '%s'\n" #: http.c:400 #, c-format msgid "Got HTTP response: %s\n" msgstr "Got HTTP response: %s\n" #: http.c:408 msgid "Error processing HTTP response\n" msgstr "Error processing HTTP response\n" #: http.c:415 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Ignoring unknown HTTP response line '%s'\n" #: http.c:435 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Invalid cookie offered: %s\n" #: http.c:454 msgid "SSL certificate authentication failed\n" msgstr "SSL certificate authentication failed\n" #: http.c:485 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Response body has negative size (%d)\n" #: http.c:496 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Unknown Transfer-Encoding: %s\n" #. Now the body, if there is one #: http.c:515 #, c-format msgid "HTTP body %s (%d)\n" msgstr "HTTP body %s (%d)\n" #: http.c:529 http.c:556 msgid "Error reading HTTP response body\n" msgstr "Error reading HTTP response body\n" #: http.c:542 msgid "Error fetching chunk header\n" msgstr "Error fetching chunk header\n" #: http.c:566 msgid "Error fetching HTTP response body\n" msgstr "Error fetching HTTP response body\n" #: http.c:569 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "Error in chunked decoding. Expected '', got: '%s'" #: http.c:581 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Cannot receive HTTP 1.0 body without closing connection\n" #: http.c:708 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Failed to parse redirected URL '%s': %s\n" #: http.c:732 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "" #: http.c:760 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Allocating new path for relative redirect failed: %s\n" #: http.c:973 oncp.c:591 #, c-format msgid "Unexpected %d result from server\n" msgstr "Unexpected %d result from server\n" #: http.c:1021 msgid "request granted" msgstr "request granted" #: http.c:1022 msgid "general failure" msgstr "general failure" #: http.c:1023 msgid "connection not allowed by ruleset" msgstr "connection not allowed by ruleset" #: http.c:1024 msgid "network unreachable" msgstr "network unreachable" #: http.c:1025 msgid "host unreachable" msgstr "host unreachable" #: http.c:1026 msgid "connection refused by destination host" msgstr "connection refused by destination host" #: http.c:1027 msgid "TTL expired" msgstr "TTL expired" #: http.c:1028 msgid "command not supported / protocol error" msgstr "command not supported / protocol error" #: http.c:1029 msgid "address type not supported" msgstr "address type not supported" #: http.c:1039 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1047 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1062 http.c:1118 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Error writing auth request to SOCKS proxy: %s\n" #: http.c:1070 http.c:1125 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Error reading auth response from SOCKS proxy: %s\n" #: http.c:1077 http.c:1131 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Unexpected auth response from SOCKS proxy: %02x %02x\n" #: http.c:1083 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1087 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1143 http.c:1150 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1156 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1163 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1170 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1176 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Requesting SOCKS proxy connection to %s:%d\n" #: http.c:1191 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Error writing connect request to SOCKS proxy: %s\n" #: http.c:1199 http.c:1241 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Error reading connect response from SOCKS proxy: %s\n" #: http.c:1205 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Unexpected connect response from SOCKS proxy: %02x %02x...\n" #: http.c:1213 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "SOCKS proxy error %02x: %s\n" #: http.c:1217 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "SOCKS proxy error %02x\n" #: http.c:1234 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Unexpected address type %02x in SOCKS connect response\n" #: http.c:1257 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Requesting HTTP proxy connection to %s:%d\n" #: http.c:1292 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Sending proxy request failed: %s\n" #: http.c:1315 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1334 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Unknown proxy type '%s'\n" #: http.c:1383 msgid "Only http or socks(5) proxies supported\n" msgstr "Only http or socks(5) proxies supported\n" #: library.c:112 msgid "Cisco AnyConnect or openconnect" msgstr "" #: library.c:113 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "" #: library.c:129 msgid "Juniper Network Connect" msgstr "" #: library.c:130 msgid "Compatible with Juniper Network Connect / Pulse Secure SSL VPN" msgstr "" #: library.c:148 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:149 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:211 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:233 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "" #: library.c:656 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Failed to parse server URL '%s'\n" #: library.c:662 msgid "Only https:// permitted for server URL\n" msgstr "Only https:// permitted for server URL\n" #: library.c:1056 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "" #: library.c:1085 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" #: library.c:1146 msgid "No form handler; cannot authenticate.\n" msgstr "" #: main.c:340 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:353 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:388 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:401 #, c-format msgid "fgetws() failed: %s\n" msgstr "" #: main.c:416 main.c:429 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:423 main.c:689 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Allocation failure for string from stdin\n" #: main.c:584 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" #: main.c:593 #, c-format msgid "Using OpenSSL. Features present:" msgstr "" #: main.c:595 #, c-format msgid "Using GnuTLS. Features present:" msgstr "" #: main.c:608 msgid "OpenSSL ENGINE not present" msgstr "" #: main.c:647 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" #: main.c:657 #, c-format msgid "Supported protocols:" msgstr "" #: main.c:659 main.c:675 msgid " (default)" msgstr "" #: main.c:672 msgid "Set VPN protocol" msgstr "" #: main.c:713 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:754 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:760 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:780 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "" #: main.c:793 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Usage: openconnect [options] \n" #: main.c:794 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" #: main.c:796 msgid "Read options from config file" msgstr "" #: main.c:797 msgid "Report version number" msgstr "Report version number" #: main.c:798 msgid "Display help text" msgstr "Display help text" #: main.c:802 msgid "Authentication" msgstr "" #: main.c:803 msgid "Set login username" msgstr "Set login username" #: main.c:804 msgid "Disable password/SecurID authentication" msgstr "Disable password/SecurID authentication" #: main.c:805 msgid "Do not expect user input; exit if it is required" msgstr "Do not expect user input; exit if it is required" #: main.c:806 msgid "Read password from standard input" msgstr "Read password from standard input" #: main.c:807 msgid "Choose authentication login selection" msgstr "Choose authentication login selection" #: main.c:808 msgid "Provide authentication form responses" msgstr "" #: main.c:809 msgid "Use SSL client certificate CERT" msgstr "Use SSL client certificate CERT" #: main.c:810 msgid "Use SSL private key file KEY" msgstr "Use SSL private key file KEY" #: main.c:811 msgid "Warn when certificate lifetime < DAYS" msgstr "Warn when certificate lifetime < DAYS" #: main.c:812 msgid "Set login usergroup" msgstr "Set login usergroup" #: main.c:813 msgid "Set key passphrase or TPM SRK PIN" msgstr "Set key passphrase or TPM SRK PIN" #: main.c:814 msgid "Key passphrase is fsid of file system" msgstr "Key passphrase is fsid of file system" #: main.c:815 msgid "Software token type: rsa, totp or hotp" msgstr "" #: main.c:816 msgid "Software token secret" msgstr "" #: main.c:818 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" #: main.c:821 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:824 msgid "Server validation" msgstr "" #: main.c:825 msgid "Server's certificate SHA1 fingerprint" msgstr "Server's certificate SHA1 fingerprint" #: main.c:826 msgid "Do not require server SSL cert to be valid" msgstr "Do not require server SSL cert to be valid" #: main.c:827 msgid "Disable default system certificate authorities" msgstr "" #: main.c:828 msgid "Cert file for server verification" msgstr "Cert file for server verification" #: main.c:830 msgid "Internet connectivity" msgstr "" #: main.c:831 msgid "Set proxy server" msgstr "Set proxy server" #: main.c:832 msgid "Set proxy authentication methods" msgstr "" #: main.c:833 msgid "Disable proxy" msgstr "Disable proxy" #: main.c:834 msgid "Use libproxy to automatically configure proxy" msgstr "Use libproxy to automatically configure proxy" #: main.c:836 msgid "(NOTE: libproxy disabled in this build)" msgstr "(NOTE: libproxy disabled in this build)" #: main.c:838 msgid "Connection retry timeout in seconds" msgstr "Connection retry timeout in seconds" #: main.c:839 msgid "Use IP when connecting to HOST" msgstr "" #: main.c:840 msgid "copy TOS / TCLASS when using DTLS" msgstr "" #: main.c:841 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:843 msgid "Authentication (two-phase)" msgstr "" #: main.c:844 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:845 msgid "Read cookie from standard input" msgstr "Read cookie from standard input" #: main.c:846 msgid "Authenticate only and print login info" msgstr "" #: main.c:847 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:848 msgid "Print cookie before connecting" msgstr "" #: main.c:851 msgid "Process control" msgstr "" #: main.c:852 msgid "Continue in background after startup" msgstr "Continue in background after startup" #: main.c:853 msgid "Write the daemon's PID to this file" msgstr "Write the daemon's PID to this file" #: main.c:854 msgid "Drop privileges after connecting" msgstr "Drop privileges after connecting" #: main.c:857 msgid "Logging (two-phase)" msgstr "" #: main.c:859 msgid "Use syslog for progress messages" msgstr "Use syslog for progress messages" #: main.c:861 msgid "More output" msgstr "More output" #: main.c:862 msgid "Less output" msgstr "Less output" #: main.c:863 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "" #: main.c:864 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:866 msgid "VPN configuration script" msgstr "" #: main.c:867 msgid "Use IFNAME for tunnel interface" msgstr "Use IFNAME for tunnel interface" #: main.c:868 msgid "Shell command line for using a vpnc-compatible config script" msgstr "Shell command line for using a vpnc-compatible config script" #: main.c:869 msgid "default" msgstr "" #: main.c:871 msgid "Pass traffic to 'script' program, not tun" msgstr "Pass traffic to 'script' program, not tun" #: main.c:874 msgid "Tunnel control" msgstr "" #: main.c:875 msgid "Do not ask for IPv6 connectivity" msgstr "Do not ask for IPv6 connectivity" #: main.c:876 msgid "XML config file" msgstr "XML config file" #: main.c:877 msgid "Request MTU from server (legacy servers only)" msgstr "" #: main.c:878 msgid "Indicate path MTU to/from server" msgstr "" #: main.c:879 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:880 msgid "Disable all compression" msgstr "" #: main.c:881 msgid "Set minimum Dead Peer Detection interval" msgstr "Set minimum Dead Peer Detection interval" #: main.c:882 msgid "Require perfect forward secrecy" msgstr "" #: main.c:883 msgid "Disable DTLS and ESP" msgstr "" #: main.c:884 msgid "OpenSSL ciphers to support for DTLS" msgstr "OpenSSL ciphers to support for DTLS" #: main.c:885 msgid "Set packet queue limit to LEN pkts" msgstr "Set packet queue limit to LEN pkts" #: main.c:887 msgid "Local system information" msgstr "" #: main.c:888 msgid "HTTP header User-Agent: field" msgstr "HTTP header User-Agent: field" #: main.c:889 msgid "Local hostname to advertise to server" msgstr "" #: main.c:890 msgid "OS type (linux,linux-64,win,...) to report" msgstr "" #: main.c:891 msgid "reported version string during authentication" msgstr "" #: main.c:892 msgid "default:" msgstr "" #: main.c:895 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:896 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:897 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:900 msgid "Server bugs" msgstr "" #: main.c:901 msgid "Disable HTTP connection re-use" msgstr "Disable HTTP connection re-use" #: main.c:902 msgid "Do not attempt XML POST authentication" msgstr "" #: main.c:924 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:997 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "" #: main.c:1037 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "" #: main.c:1047 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "" #: main.c:1051 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "" #: main.c:1076 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "" #: main.c:1086 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "" #: main.c:1130 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "" #: main.c:1140 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:1147 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" #: main.c:1157 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Failed to allocate vpninfo structure\n" #: main.c:1215 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" #: main.c:1223 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "" #: main.c:1239 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1260 #, c-format msgid "Missing colon in resolve option\n" msgstr "" #: main.c:1265 #, c-format msgid "Failed to allocate memory\n" msgstr "" #: main.c:1349 main.c:1358 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d too small\n" #: main.c:1388 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" #: main.c:1394 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" #: main.c:1411 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Queue length zero not permitted; using 1\n" #: main.c:1425 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect version %s\n" #: main.c:1463 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "" #: main.c:1473 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "" #: main.c:1506 #, c-format msgid "Too many arguments on command line\n" msgstr "" #: main.c:1509 #, c-format msgid "No server specified\n" msgstr "No server specified\n" #: main.c:1525 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "This version of openconnect was built without libproxy support\n" #: main.c:1555 #, c-format msgid "Error opening cmd pipe\n" msgstr "" #: main.c:1588 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "Failed to obtain WebVPN cookie\n" #: main.c:1609 #, c-format msgid "Creating SSL connection failed\n" msgstr "Creating SSL connection failed\n" #: main.c:1625 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:1633 #, c-format msgid "Connected as %s%s%s, using SSL%s%s, with %s%s%s %s\n" msgstr "" #: main.c:1639 msgid "disabled" msgstr "" #: main.c:1639 msgid "in progress" msgstr "" #: main.c:1643 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "No --script argument provided; DNS and routing are not configured\n" #: main.c:1645 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "See http://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:1658 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Failed to open '%s' for write: %s\n" #: main.c:1670 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Continuing in background; pid %d\n" #: main.c:1687 msgid "User requested reconnect\n" msgstr "" #: main.c:1695 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "" #: main.c:1699 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:1703 msgid "User cancelled (SIGINT/SIGTERM); exiting.\n" msgstr "" #: main.c:1707 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "" #: main.c:1711 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:1730 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Failed to open %s for write: %s\n" #: main.c:1738 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Failed to write config to %s: %s\n" #: main.c:1797 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "Server SSL certificate didn't match: %s\n" #: main.c:1816 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" #: main.c:1819 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" #: main.c:1820 #, c-format msgid " --servercert %s\n" msgstr "" #: main.c:1825 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" #: main.c:1826 main.c:1844 msgid "no" msgstr "no" #: main.c:1826 main.c:1832 msgid "yes" msgstr "yes" #: main.c:1853 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:1887 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:1890 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Auth choice \"%s\" not available\n" #: main.c:1911 msgid "User input required in non-interactive mode\n" msgstr "" #: main.c:2149 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:2157 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:2203 main.c:2224 #, c-format msgid "Soft token string is invalid\n" msgstr "" #: main.c:2206 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "" #: main.c:2209 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "" #: main.c:2212 #, c-format msgid "General failure in libstoken\n" msgstr "" #: main.c:2227 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "" #: main.c:2230 #, c-format msgid "General failure in liboath\n" msgstr "" #: main.c:2241 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2244 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2247 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: mainloop.c:127 #, c-format msgid "Set up tun script failed\n" msgstr "" #: mainloop.c:134 #, c-format msgid "Set up tun device failed\n" msgstr "Set up tun device failed\n" #: mainloop.c:265 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:273 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "No work to do; sleeping for %d ms...\n" #: mainloop.c:294 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:978 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:982 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:565 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:160 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:166 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:175 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:186 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:201 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:210 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:219 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:232 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:254 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:274 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:297 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:316 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:327 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:335 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:342 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:350 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:358 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:366 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:374 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:383 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:395 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:473 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:490 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:496 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:512 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:577 oncp.c:609 oncp.c:747 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:618 oncp.c:783 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:631 oncp.c:666 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:636 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:643 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:670 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:683 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:692 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "" #: oncp.c:698 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "" #: oncp.c:705 msgid "Failed to read continuation record length\n" msgstr "" #: oncp.c:711 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "" #: oncp.c:720 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "" #: oncp.c:726 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "" #: oncp.c:767 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:776 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:829 msgid "new incoming" msgstr "" #: oncp.c:830 msgid "new outgoing" msgstr "" #: oncp.c:855 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:864 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:868 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:874 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:969 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:972 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:991 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1053 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1058 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1073 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1134 msgid "Sent ESP enable control packet\n" msgstr "" #: oncp.c:1268 msgid "Logout successful.\n" msgstr "" #: openconnect-internal.h:1119 openconnect-internal.h:1127 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "Initialize DTLSv1 session failed\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "" #: openssl-dtls.c:365 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Initialize DTLSv1 CTX failed\n" #: openssl-dtls.c:378 msgid "Set DTLS CTX version failed\n" msgstr "" #: openssl-dtls.c:395 msgid "Failed to generate DTLS key\n" msgstr "" #: openssl-dtls.c:413 msgid "Set DTLS cipher list failed\n" msgstr "Set DTLS cipher list failed\n" #: openssl-dtls.c:439 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:460 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" #: openssl-dtls.c:493 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:566 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "" #: openssl-dtls.c:603 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" "Your OpenSSL is older than the one you built against, so DTLS may fail!" #: openssl-dtls.c:654 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" #: openssl-dtls.c:661 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "DTLS handshake failed: %d\n" #: openssl-esp.c:87 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:101 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:157 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:202 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:210 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:241 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:43 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:49 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "" #: openssl-pkcs11.c:269 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:272 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:275 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:279 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:286 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:300 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:306 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:342 openssl-pkcs11.c:565 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:349 openssl-pkcs11.c:575 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:383 openssl-pkcs11.c:617 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:393 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "" #: openssl-pkcs11.c:401 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:412 openssl.c:713 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl-pkcs11.c:458 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:464 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:497 msgid "Certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:503 openssl-pkcs11.c:526 msgid "Certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:506 msgid "Checking EC key matches cert\n" msgstr "" #: openssl-pkcs11.c:510 msgid "Failed to allocate signature buffer\n" msgstr "" #: openssl-pkcs11.c:520 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" #: openssl-pkcs11.c:638 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "" #: openssl-pkcs11.c:649 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:678 msgid "Add key from PKCS#11 failed\n" msgstr "" #: openssl-pkcs11.c:710 openssl-pkcs11.c:716 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:147 msgid "Failed to write to SSL socket\n" msgstr "" #: openssl.c:197 openssl.c:263 msgid "Failed to read from SSL socket\n" msgstr "" #: openssl.c:292 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "SSL read error %d (server probably closed connection); reconnecting.\n" #: openssl.c:317 #, c-format msgid "SSL_write failed: %d\n" msgstr "SSL_write failed: %d\n" #: openssl.c:389 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:465 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "" #: openssl.c:498 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Extra cert from %s: '%s'\n" #: openssl.c:548 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Parse PKCS#12 failed (see above errors)\n" #: openssl.c:563 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS#12 contained no certificate!\n" #: openssl.c:572 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS#12 contained no private key!\n" #: openssl.c:577 msgid "PKCS#12" msgstr "" #: openssl.c:600 msgid "Can't load TPM engine.\n" msgstr "Can't load TPM engine.\n" #: openssl.c:606 msgid "Failed to init TPM engine\n" msgstr "Failed to init TPM engine\n" #: openssl.c:616 msgid "Failed to set TPM SRK password\n" msgstr "Failed to set TPM SRK password\n" #: openssl.c:630 msgid "Failed to load TPM private key\n" msgstr "Failed to load TPM private key\n" #: openssl.c:636 msgid "Add key from TPM failed\n" msgstr "Add key from TPM failed\n" #: openssl.c:687 openssl.c:835 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Failed to open certificate file %s: %s\n" #: openssl.c:697 msgid "Loading certificate failed\n" msgstr "Loading certificate failed\n" #: openssl.c:735 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:748 msgid "PEM file" msgstr "" #: openssl.c:777 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "" #: openssl.c:802 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Loading private key failed (wrong passphrase?)\n" #: openssl.c:808 msgid "Loading private key failed (see above errors)\n" msgstr "Loading private key failed (see above errors)\n" #: openssl.c:858 msgid "Failed to load X509 certificate from keystore\n" msgstr "" #: openssl.c:864 msgid "Failed to use X509 certificate from keystore\n" msgstr "" #: openssl.c:896 msgid "Failed to use private key from keystore\n" msgstr "" #: openssl.c:912 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Failed to open private key file %s: %s\n" #: openssl.c:936 openssl.c:951 openssl.c:972 openssl.c:1038 msgid "Loading private key failed\n" msgstr "" #: openssl.c:1032 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1049 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Failed to identify private key type in '%s'\n" #: openssl.c:1203 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Matched DNS altname '%s'\n" #: openssl.c:1210 #, c-format msgid "No match for altname '%s'\n" msgstr "No match for altname '%s'\n" #: openssl.c:1224 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "Certificate has GEN_IPADD altname with bogus length %d\n" #: openssl.c:1235 openssl.c:1381 #, c-format msgid "Matched %s address '%s'\n" msgstr "Matched %s address '%s'\n" #: openssl.c:1242 #, c-format msgid "No match for %s address '%s'\n" msgstr "No match for %s address '%s'\n" #: openssl.c:1284 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "URI '%s' has non-empty path; ignoring\n" #: openssl.c:1289 #, c-format msgid "Matched URI '%s'\n" msgstr "Matched URI '%s'\n" #: openssl.c:1300 #, c-format msgid "No match for URI '%s'\n" msgstr "No match for URI '%s'\n" #: openssl.c:1315 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "No altname in peer cert matched '%s'\n" #: openssl.c:1323 msgid "No subject name in peer cert!\n" msgstr "No subject name in peer cert!\n" #: openssl.c:1343 msgid "Failed to parse subject name in peer cert\n" msgstr "Failed to parse subject name in peer cert\n" #: openssl.c:1350 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Peer cert subject mismatch ('%s' != '%s')\n" #: openssl.c:1355 openssl.c:1389 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Matched peer certificate subject name '%s'\n" #: openssl.c:1451 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Extra cert from cafile: '%s'\n" #: openssl.c:1589 msgid "Error in client cert notAfter field\n" msgstr "Error in client cert notAfter field\n" #: openssl.c:1602 msgid "" msgstr "" #: openssl.c:1655 msgid "Create TLSv1 CTX failed\n" msgstr "" #: openssl.c:1674 msgid "SSL certificate and key do not match\n" msgstr "" #: openssl.c:1719 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "" #: openssl.c:1752 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Failed to open CA file '%s'\n" #: openssl.c:1812 msgid "SSL connection failure\n" msgstr "SSL connection failure\n" #: openssl.c:1973 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:130 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Discard bad split include: \"%s\"\n" #: script.c:134 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Discard bad split exclude: \"%s\"\n" #: script.c:507 script.c:555 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Failed to spawn script '%s' for %s: %s\n" #: script.c:562 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "" #: script.c:570 #, c-format msgid "Script '%s' returned error %d\n" msgstr "" #: ssl.c:108 msgid "Socket connect cancelled\n" msgstr "Socket connect canceled\n" #: ssl.c:217 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "" #: ssl.c:221 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "" #: ssl.c:289 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Proxy from libproxy: %s://%s:%d/\n" #: ssl.c:317 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "getaddrinfo failed for host '%s': %s\n" #: ssl.c:326 ssl.c:451 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:341 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "" #: ssl.c:342 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "" #: ssl.c:362 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "" #: ssl.c:374 msgid "Failed to allocate sockaddr storage\n" msgstr "Failed to allocate sockaddr storage\n" #: ssl.c:416 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "" #: ssl.c:434 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:446 #, c-format msgid "Failed to connect to host %s\n" msgstr "Failed to connect to host %s\n" #: ssl.c:465 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:536 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:564 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:575 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:603 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:694 msgid "No error" msgstr "" #: ssl.c:695 msgid "Keystore locked" msgstr "" #: ssl.c:696 msgid "Keystore uninitialized" msgstr "" #: ssl.c:697 msgid "System error" msgstr "" #: ssl.c:698 msgid "Protocol error" msgstr "" #: ssl.c:699 msgid "Permission denied" msgstr "" #: ssl.c:700 msgid "Key not found" msgstr "" #: ssl.c:701 msgid "Value corrupted" msgstr "" #: ssl.c:702 msgid "Undefined action" msgstr "" #: ssl.c:706 msgid "Wrong password" msgstr "" #: ssl.c:707 msgid "Unknown error" msgstr "" #: ssl.c:896 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:931 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:950 msgid "Open UDP socket" msgstr "" #: ssl.c:981 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:989 msgid "Bind UDP socket" msgstr "" #: ssl.c:996 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:1034 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:1038 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "sleep %ds, remaining timeout %ds\n" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "" #: stoken.c:82 msgid "Device ID:" msgstr "" #: stoken.c:89 msgid "Password:" msgstr "" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "" #: stoken.c:185 msgid "Enter software token PIN." msgstr "" #: stoken.c:189 msgid "PIN:" msgstr "" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "" #: tun-win32.c:76 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:139 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "" #: tun-win32.c:154 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" #: tun-win32.c:186 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" #: tun-win32.c:200 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "" #: tun-win32.c:231 #, c-format msgid "Failed to open %s\n" msgstr "" #: tun-win32.c:236 #, c-format msgid "Opened tun device %s\n" msgstr "" #: tun-win32.c:244 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:250 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:271 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:283 tun-win32.c:406 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:316 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:321 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:335 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:358 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:368 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:371 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:423 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "" #: tun.c:92 msgid "Can't push IP" msgstr "Can't push IP" #: tun.c:102 msgid "Can't set ifname" msgstr "Can't set ifname" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "Can't open %s: %s" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Can't plumb %s for IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "open /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Failed to create new tun" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "Failed to put tun file descriptor into message-discard mode" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "" #: tun.c:205 msgid "open net" msgstr "open net" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Failed to open tun device: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:479 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:484 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:488 msgid "setpgid" msgstr "" #: tun.c:493 msgid "execl" msgstr "execl" #: tun.c:498 msgid "(script)" msgstr "(script)" #: tun.c:566 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Failed to write incoming packet: %s\n" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Treating host \"%s\" as a raw hostname\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "XML config file SHA1: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Failed to parse XML config file %s\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Host \"%s\" has address \"%s\"\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Host \"%s\" has UserGroup \"%s\"\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "Host \"%s\" not listed in config; treating as raw hostname\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:174 msgid "select applet command" msgstr "" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:274 msgid "unlock command" msgstr "" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:412 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:619 msgid "calculate command" msgstr "" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-8.05/po/pa.po0000664000076400007640000026137013470043037017125 0ustar00dwoodhoudwoodhou00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2019-05-18 10:44-0700\n" "PO-Revision-Date: 2011-09-22 22:31+0000\n" "Last-Translator: FULL NAME \n" "Language-Team: Panjabi (Punjabi) \n" "Language: pa\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1)\n" #: auth-globalprotect.c:108 #, c-format msgid "" "SAML login is required via %s to this URL:\n" "\t%s" msgstr "" #: auth-globalprotect.c:110 msgid "Please enter your username and password" msgstr "" #: auth-globalprotect.c:119 msgid "Username" msgstr "" #: auth-globalprotect.c:134 msgid "Password" msgstr "" #: auth-globalprotect.c:181 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:260 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:266 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:272 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:315 msgid "Please select GlobalProtect gateway." msgstr "" #: auth-globalprotect.c:325 msgid "GATEWAY:" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:379 #, c-format msgid "%d gateway servers available:\n" msgstr "" #: auth-globalprotect.c:400 #, c-format msgid " %s (%s)\n" msgstr "" #: auth-globalprotect.c:484 auth-juniper.c:730 auth.c:669 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth-globalprotect.c:584 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" #: auth-globalprotect.c:636 oncp.c:1266 msgid "Logout failed.\n" msgstr "" #: auth-globalprotect.c:638 msgid "Logout successful\n" msgstr "" #: auth-juniper.c:142 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:153 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:163 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:236 auth.c:408 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "" #: auth-juniper.c:267 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "" #: auth-juniper.c:337 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:359 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:397 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:411 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:418 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:425 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:432 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:439 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:445 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:452 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:481 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:650 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:667 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:675 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:713 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:716 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth.c:96 msgid "Form choice has no name\n" msgstr "" #: auth.c:181 #, c-format msgid "name %s not input\n" msgstr "ਨਾਂ %s ਇੰਪੁੱਟ ਨਹੀਂ\n" #: auth.c:188 msgid "No input type in form\n" msgstr "" #: auth.c:200 msgid "No input name in form\n" msgstr "" #: auth.c:230 #, c-format msgid "Unknown input type %s in form\n" msgstr "" #: auth.c:540 gpst.c:214 msgid "Empty response from server\n" msgstr "" #: auth.c:551 gpst.c:289 msgid "Failed to parse server response\n" msgstr "" #: auth.c:553 gpst.c:291 #, c-format msgid "Response was:%s\n" msgstr "ਜਵਾਬ ਸੀ: %s\n" #: auth.c:575 msgid "Received when not expected.\n" msgstr "" #: auth.c:603 msgid "XML response has no \"auth\" node\n" msgstr "" #: auth.c:636 msgid "Asked for password but '--no-passwd' set\n" msgstr "" #: auth.c:925 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:931 cstp.c:335 http.c:916 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "" #: auth.c:952 msgid "Failed to send GET request for new config\n" msgstr "" #: auth.c:976 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" #: auth.c:981 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:992 auth.c:1044 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" #: auth.c:1003 mainloop.c:144 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "" #: auth.c:1010 mainloop.c:151 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "" #: auth.c:1017 mainloop.c:158 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "" #: auth.c:1024 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "" #: auth.c:1031 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "" #: auth.c:1053 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:1060 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" #: auth.c:1067 msgid "Trying to run Linux CSD trojan script.\n" msgstr "" #: auth.c:1094 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1102 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "" #: auth.c:1111 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "" #: auth.c:1141 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" #: auth.c:1189 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "" #: auth.c:1221 msgid "Unknown response from server\n" msgstr "ਸਰਵਰ ਤੋਂ ਅਣਜਾਣ ਜਵਾਬ\n" #: auth.c:1342 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1346 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" #: auth.c:1362 msgid "XML POST enabled\n" msgstr "" #: auth.c:1405 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "1 ਸਕਿੰਟ ਦੇ ਬਾਅਦ %s ਤਾਜ਼ਾ ਕੀਤਾ ਜਾ ਰਿਹਾ ਹੈ...\n" #: compat.c:207 #, c-format msgid "(error 0x%lx)" msgstr "" #: compat.c:210 msgid "(Error while describing error!)" msgstr "" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:112 gpst.c:341 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "" #: cstp.c:134 gpst.c:360 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "" #: cstp.c:281 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:312 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:328 http.c:384 msgid "Error fetching HTTPS response\n" msgstr "" #: cstp.c:355 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "" #: cstp.c:360 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "" #: cstp.c:367 #, c-format msgid "Got CONNECT response: %s\n" msgstr "" #: cstp.c:396 cstp.c:404 msgid "No memory for options\n" msgstr "" #: cstp.c:413 http.c:444 msgid "" msgstr "" #: cstp.c:433 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "" #: cstp.c:450 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "" #: cstp.c:468 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:510 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "" #: cstp.c:585 msgid "No MTU received. Aborting\n" msgstr "" #: cstp.c:593 gpst.c:641 msgid "No IP address received. Aborting\n" msgstr "" #: cstp.c:599 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: cstp.c:605 gpst.c:648 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "" #: cstp.c:614 gpst.c:657 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" #: cstp.c:622 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "" #: cstp.c:630 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "" #: cstp.c:638 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "" #: cstp.c:640 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "" #: cstp.c:702 msgid "Compression setup failed\n" msgstr "" #: cstp.c:719 msgid "Allocation of deflate buffer failed\n" msgstr "" #: cstp.c:781 msgid "inflate failed\n" msgstr "" #: cstp.c:804 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:817 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:824 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:829 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:849 #, c-format msgid "deflate failed %d\n" msgstr "" #: cstp.c:922 dtls.c:281 dtls.c:740 esp.c:129 gpst.c:1042 mainloop.c:69 #: oncp.c:914 msgid "Allocation failed\n" msgstr "" #: cstp.c:933 gpst.c:1055 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: cstp.c:946 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" #: cstp.c:960 msgid "Got CSTP DPD request\n" msgstr "" #: cstp.c:966 msgid "Got CSTP DPD response\n" msgstr "" #: cstp.c:971 msgid "Got CSTP Keepalive\n" msgstr "" #: cstp.c:976 oncp.c:1003 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:993 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "" #: cstp.c:996 msgid "Received server disconnect\n" msgstr "" #: cstp.c:1004 msgid "Compressed packet received in !deflate mode\n" msgstr "" #: cstp.c:1013 msgid "received server terminate packet\n" msgstr "" #: cstp.c:1020 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "" #: cstp.c:1063 gpst.c:1142 oncp.c:1121 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1091 oncp.c:1155 msgid "CSTP rekey due\n" msgstr "" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1098 oncp.c:1162 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: cstp.c:1109 oncp.c:1173 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "" #: cstp.c:1113 gpst.c:1166 oncp.c:1091 oncp.c:1177 msgid "Reconnect failed\n" msgstr "" #: cstp.c:1129 oncp.c:1193 msgid "Send CSTP DPD\n" msgstr "" #: cstp.c:1141 oncp.c:1204 msgid "Send CSTP Keepalive\n" msgstr "" #: cstp.c:1166 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1177 oncp.c:1238 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:1216 #, c-format msgid "Send BYE packet: %s\n" msgstr "" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:113 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:119 msgid "No DTLS address\n" msgstr "" #. We probably didn't offer it any ciphers it liked #: dtls.c:126 msgid "Server offered no DTLS cipher option\n" msgstr "" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:133 msgid "No DTLS when connected via proxy\n" msgstr "" #: dtls.c:200 #, c-format msgid "DTLS option %s : %s\n" msgstr "" #: dtls.c:239 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:265 msgid "Attempt new DTLS connection\n" msgstr "" #: dtls.c:292 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "" #: dtls.c:306 msgid "Got DTLS DPD request\n" msgstr "" #: dtls.c:312 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "" #: dtls.c:316 msgid "Got DTLS DPD response\n" msgstr "" #: dtls.c:320 msgid "Got DTLS Keepalive\n" msgstr "" #: dtls.c:326 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:334 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "" #: dtls.c:356 msgid "DTLS rekey due\n" msgstr "" #: dtls.c:363 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: dtls.c:372 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "" #: dtls.c:378 msgid "Send DTLS DPD\n" msgstr "" #: dtls.c:383 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "" #: dtls.c:396 msgid "Send DTLS Keepalive\n" msgstr "" #: dtls.c:401 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" #: dtls.c:432 tun.c:541 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "" #: dtls.c:439 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "" #: dtls.c:443 msgid "UDP setsockopt" msgstr "" #: dtls.c:474 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "" #: dtls.c:488 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "" #: dtls.c:503 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "" #: dtls.c:531 #, c-format msgid "Initiating IPv4 MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:551 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" #: dtls.c:555 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" #: dtls.c:564 #, c-format msgid "Sending MTU DPD probe (%u bytes, min=%u, max=%u)\n" msgstr "" #: dtls.c:568 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "" #: dtls.c:582 dtls.c:690 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" #: dtls.c:594 #, c-format msgid "Timeout while waiting for DPD response; trying %d\n" msgstr "" #: dtls.c:601 dtls.c:682 msgid "Timeout while waiting for DPD response; resending probe.\n" msgstr "" #: dtls.c:608 dtls.c:709 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "" #: dtls.c:613 #, c-format msgid "Received MTU DPD probe (%u bytes of %u)\n" msgstr "" #: dtls.c:651 msgid "Initiating IPv6 MTU detection\n" msgstr "" #: dtls.c:666 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:670 #, c-format msgid "Failed to send DPD request (%d)\n" msgstr "" #: dtls.c:695 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:759 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "" #: dtls.c:762 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" #: esp.c:63 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:66 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:69 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:87 msgid "incoming" msgstr "" #: esp.c:88 msgid "outgoing" msgstr "" #: esp.c:90 esp.c:113 msgid "Send ESP probes\n" msgstr "" #: esp.c:138 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:155 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:161 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:174 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:181 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:193 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:202 msgid "ESP session established with server\n" msgstr "" #: esp.c:213 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:219 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:225 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:239 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:243 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:251 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:258 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:278 #, c-format msgid "Failed to encrypt ESP packet: %d\n" msgstr "" #: esp.c:294 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:301 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:307 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-dtls.c:190 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "" #: gnutls-dtls.c:198 msgid "Failed to generate DTLS priority string\n" msgstr "" #: gnutls-dtls.c:207 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "" #: gnutls-dtls.c:216 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "" #: gnutls-dtls.c:240 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "" #: gnutls-dtls.c:253 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:267 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:275 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "" #: gnutls-dtls.c:309 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "" #: gnutls-dtls.c:324 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "" #: gnutls-dtls.c:345 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "" #: gnutls-dtls.c:373 openssl-dtls.c:534 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "" #: gnutls-dtls.c:382 openssl-dtls.c:545 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "" #: gnutls-dtls.c:392 openssl-dtls.c:554 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" #: gnutls-dtls.c:405 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "" #: gnutls-dtls.c:416 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: gnutls-dtls.c:422 openssl-dtls.c:572 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "" #: gnutls-dtls.c:437 openssl-dtls.c:653 openssl-dtls.c:657 msgid "DTLS handshake timed out\n" msgstr "" #: gnutls-dtls.c:440 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "" #: gnutls-dtls.c:444 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:121 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:132 msgid "Failed to generate ESP IV\n" msgstr "" #: gnutls-esp.c:161 gnutls-esp.c:217 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:168 openssl-esp.c:192 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:180 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:209 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:95 openssl.c:154 msgid "SSL write cancelled\n" msgstr "" #: gnutls.c:99 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "" #: gnutls.c:145 gnutls.c:237 openssl.c:204 openssl.c:271 msgid "SSL read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:158 msgid "SSL socket closed uncleanly\n" msgstr "" #: gnutls.c:168 gnutls.c:246 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "" #: gnutls.c:266 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "" #: gnutls.c:302 #, c-format msgid "SSL send failed: %s\n" msgstr "" #: gnutls.c:315 msgid "Could not extract expiration time of certificate\n" msgstr "" #: gnutls.c:320 openssl.c:1592 msgid "Client certificate has expired at" msgstr "" #: gnutls.c:322 openssl.c:1597 msgid "Client certificate expires soon at" msgstr "" #: gnutls.c:371 openssl.c:771 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" #: gnutls.c:384 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "" #: gnutls.c:391 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" #: gnutls.c:400 msgid "Failed to allocate certificate buffer\n" msgstr "" #: gnutls.c:408 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "" #: gnutls.c:439 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "" #: gnutls.c:462 openssl.c:534 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "" #: gnutls.c:466 openssl.c:537 msgid "Enter PKCS#12 pass phrase:" msgstr "" #: gnutls.c:489 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "" #: gnutls.c:501 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:584 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "" #: gnutls.c:594 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "" #: gnutls.c:628 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "" #: gnutls.c:638 #, c-format msgid "MD5 hash error: %s\n" msgstr "" #: gnutls.c:696 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" #: gnutls.c:703 msgid "Cannot determine PEM encryption type\n" msgstr "" #: gnutls.c:716 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "" #: gnutls.c:741 gnutls.c:754 msgid "Invalid salt in encrypted PEM file\n" msgstr "" #: gnutls.c:778 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "" #: gnutls.c:786 msgid "Encrypted PEM file too short\n" msgstr "" #: gnutls.c:814 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" #: gnutls.c:825 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "" #: gnutls.c:877 msgid "Decrypting PEM key failed\n" msgstr "" #: gnutls.c:881 gnutls.c:1405 openssl.c:458 msgid "Enter PEM pass phrase:" msgstr "" #: gnutls.c:942 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:949 msgid "This binary built without PKCS#11 support\n" msgstr "" #: gnutls.c:993 openssl-pkcs11.c:407 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "" #: gnutls.c:994 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1012 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "" #: gnutls.c:1013 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1024 openssl.c:827 #, c-format msgid "Using certificate file %s\n" msgstr "" #: gnutls.c:1052 msgid "PKCS#11 file contained no certificate\n" msgstr "" #: gnutls.c:1078 msgid "No certificate found in file" msgstr "" #: gnutls.c:1083 #, c-format msgid "Loading certificate failed: %s\n" msgstr "" #: gnutls.c:1098 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1103 gnutls.c:1271 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "" #: gnutls.c:1114 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1125 gnutls.c:1219 gnutls.c:1247 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1130 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "" #: gnutls.c:1259 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "" #: gnutls.c:1266 openssl-pkcs11.c:644 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "" #: gnutls.c:1281 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" #: gnutls.c:1299 #, c-format msgid "Using private key file %s\n" msgstr "" #: gnutls.c:1310 openssl.c:651 msgid "This version of OpenConnect was built without TPM support\n" msgstr "" #: gnutls.c:1326 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1347 msgid "Failed to interpret PEM file\n" msgstr "" #: gnutls.c:1366 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "" #: gnutls.c:1379 gnutls.c:1393 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "" #: gnutls.c:1401 gnutls.c:1434 openssl.c:1002 openssl.c:1012 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "" #: gnutls.c:1426 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "" #: gnutls.c:1438 openssl.c:1008 msgid "Enter PKCS#8 pass phrase:" msgstr "" #: gnutls.c:1454 #, c-format msgid "Failed to get key ID: %s\n" msgstr "" #: gnutls.c:1499 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "" #: gnutls.c:1514 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "" #: gnutls.c:1539 msgid "No SSL certificate found to match private key\n" msgstr "" #: gnutls.c:1551 openssl.c:560 openssl.c:709 #, c-format msgid "Using client certificate '%s'\n" msgstr "" #: gnutls.c:1558 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "" #: gnutls.c:1579 gnutls.c:1589 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1625 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" #: gnutls.c:1648 msgid "Got no issuer from PKCS#11\n" msgstr "" #: gnutls.c:1653 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "" #: gnutls.c:1679 msgid "Failed to allocate memory for supporting certificates\n" msgstr "" #: gnutls.c:1702 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "" #: gnutls.c:1724 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1748 #, c-format msgid "Setting certificate failed: %s\n" msgstr "ਸਰਟੀਫਿਕੇਟ ਸੈੱਟ ਕਰਨ ਲਈ ਫੇਲ੍ਹ: %s\n" #: gnutls.c:1941 msgid "Server presented no certificate\n" msgstr "" #: gnutls.c:1949 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" #: gnutls.c:1954 openssl.c:1515 msgid "Server presented different cert on rehandshake\n" msgstr "" #: gnutls.c:1959 openssl.c:1518 msgid "Server presented identical cert on rehandshake\n" msgstr "" #: gnutls.c:1965 msgid "Error initialising X509 cert structure\n" msgstr "" #: gnutls.c:1971 msgid "Error importing server's cert\n" msgstr "" #: gnutls.c:1980 main.c:1794 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:1985 msgid "Error checking server cert status\n" msgstr "" #: gnutls.c:1990 msgid "certificate revoked" msgstr "ਸਰਟੀਫਿਕੇਟ ਵਾਪਸ ਲਿਆ" #: gnutls.c:1992 msgid "signer not found" msgstr "ਦਸਤਖਤੀ ਨਹੀਂ ਲੱਭਿਆ" #: gnutls.c:1994 msgid "signer not a CA certificate" msgstr "" #: gnutls.c:1996 msgid "insecure algorithm" msgstr "ਅਸੁਰੱਖਿਅਤ ਐਲੋਗਰਿਥਮ" #: gnutls.c:1998 msgid "certificate not yet activated" msgstr "ਸਰਟੀਫਿਕੇਟ ਹਾਲੇ ਐਕਟੀਵੇਟ ਨਹੀਂ ਹੈ" #: gnutls.c:2000 msgid "certificate expired" msgstr "ਸਰਟੀਫਿਕੇਟ ਮਿਆਦ ਪੁੱਗੀ" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2005 msgid "signature verification failed" msgstr "ਦਸਤਖਤ ਜਾਂਚ ਫੇਲ੍ਹ ਹੋਈ" #: gnutls.c:2054 openssl.c:1399 openssl.c:1551 msgid "certificate does not match hostname" msgstr "" #: gnutls.c:2059 openssl.c:1398 openssl.c:1557 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "" #: gnutls.c:2126 msgid "Failed to allocate memory for cafile certs\n" msgstr "" #: gnutls.c:2147 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "" #: gnutls.c:2163 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "" #: gnutls.c:2176 openssl.c:1679 msgid "Loading certificate failed. Aborting.\n" msgstr "" #: gnutls.c:2237 #, c-format msgid "Failed to set TLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2249 openssl.c:1796 #, c-format msgid "SSL negotiation with %s\n" msgstr "" #: gnutls.c:2296 openssl.c:1822 msgid "SSL connection cancelled\n" msgstr "" #: gnutls.c:2303 #, c-format msgid "SSL connection failure: %s\n" msgstr "SSL ਕੁਨੈਕਸ਼ਨ ਫੇਲ੍ਹ ਹੋਇਆ: %s\n" #: gnutls.c:2312 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "" #: gnutls.c:2318 openssl.c:1839 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "" #: gnutls.c:2321 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "" #: gnutls.c:2483 openssl-pkcs11.c:199 #, c-format msgid "PIN required for %s" msgstr "%s ਲਈ ਪਿੰਨ ਚਾਹੀਦਾ ਹੈ" #: gnutls.c:2487 openssl-pkcs11.c:202 msgid "Wrong PIN" msgstr "ਗਲਤ ਪਿੰਨ" #: gnutls.c:2490 msgid "This is the final try before locking!" msgstr "" #: gnutls.c:2492 msgid "Only a few tries left before locking!" msgstr "" #: gnutls.c:2497 openssl-pkcs11.c:206 msgid "Enter PIN:" msgstr "PIN ਦਿਓ:" #: gnutls.c:2583 openssl.c:1967 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2592 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:54 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm.c:61 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:68 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:78 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "" #: gnutls_tpm.c:100 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "" #: gnutls_tpm.c:108 gnutls_tpm.c:119 gnutls_tpm.c:132 msgid "Error in TSS key blob\n" msgstr "" #: gnutls_tpm.c:139 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "" #: gnutls_tpm.c:146 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "" #: gnutls_tpm.c:154 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "" #: gnutls_tpm.c:161 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "" #: gnutls_tpm.c:182 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "" #: gnutls_tpm.c:198 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "" #: gnutls_tpm.c:205 msgid "Enter TPM SRK PIN:" msgstr "TPM SRK PIN ਦਿਓ:" #: gnutls_tpm.c:226 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "" #: gnutls_tpm.c:234 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "" #: gnutls_tpm.c:240 msgid "Enter TPM key PIN:" msgstr "" #: gnutls_tpm.c:251 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "" #: gnutls_tpm2.c:92 gnutls_tpm2_esys.c:474 gnutls_tpm2_ibm.c:419 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:198 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:208 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:217 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:225 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:231 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:249 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:270 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:275 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:384 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2_esys.c:173 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:189 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:190 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:191 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:192 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:196 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:201 gnutls_tpm2_ibm.c:262 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:209 gnutls_tpm2_esys.c:303 gnutls_tpm2_esys.c:374 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:221 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:226 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:245 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:250 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:258 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:261 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:274 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:295 gnutls_tpm2_ibm.c:278 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:309 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:317 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:323 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:333 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:363 gnutls_tpm2_ibm.c:363 gnutls_tpm2_ibm.c:450 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:395 #, c-format msgid "TPM2 RSA sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:414 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:420 gnutls_tpm2_esys.c:500 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:464 gnutls_tpm2_ibm.c:405 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:494 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:532 gnutls_tpm2_ibm.c:485 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:546 gnutls_tpm2_ibm.c:502 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:555 gnutls_tpm2_ibm.c:512 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:569 gnutls_tpm2_ibm.c:523 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:54 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:226 #, c-format msgid "%s\n" msgstr "" #: gpst.c:229 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:417 #, c-format msgid "Unknown ESP %s algorithm: %s" msgstr "" #: gpst.c:477 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: gpst.c:483 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:487 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:498 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:551 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:560 oncp.c:835 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: gpst.c:627 msgid "ESP disabled" msgstr "" #: gpst.c:629 msgid "No ESP keys received" msgstr "" #: gpst.c:631 msgid "ESP support not available in this build" msgstr "" #: gpst.c:635 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:680 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:702 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:711 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:719 #, c-format msgid "Got inappropriate HTTP GET-tunnel response: %.*s\n" msgstr "" #: gpst.c:861 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" "VPN connectivity may be disabled or limited without HIP report submission.\n" "You need to provide a --csd-wrapper argument with the HIP report submission " "script.\n" msgstr "" #: gpst.c:871 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:900 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:905 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:911 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:913 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:942 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:966 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:972 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:999 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1015 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1051 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1072 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1082 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1086 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1092 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: gpst.c:1101 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1109 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1157 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1162 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1182 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1202 #, c-format msgid "Sending data packet of %d bytes\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1165 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "" #: http.c:319 msgid "No memory for allocating cookies\n" msgstr "" #: http.c:394 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "" #: http.c:400 #, c-format msgid "Got HTTP response: %s\n" msgstr "" #: http.c:408 msgid "Error processing HTTP response\n" msgstr "" #: http.c:415 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "" #: http.c:435 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "" #: http.c:454 msgid "SSL certificate authentication failed\n" msgstr "" #: http.c:485 #, c-format msgid "Response body has negative size (%d)\n" msgstr "" #: http.c:496 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "ਅਣਜਾਣ ਟਰਾਂਸਫਰ-ਇੰਕੋਡਿੰਗ: %s\n" #. Now the body, if there is one #: http.c:515 #, c-format msgid "HTTP body %s (%d)\n" msgstr "HTTP ਮੁੱਖ ਭਾਗ %s (%d)\n" #: http.c:529 http.c:556 msgid "Error reading HTTP response body\n" msgstr "" #: http.c:542 msgid "Error fetching chunk header\n" msgstr "" #: http.c:566 msgid "Error fetching HTTP response body\n" msgstr "" #: http.c:569 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "" #: http.c:581 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "" #: http.c:708 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "" #: http.c:732 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "" #: http.c:760 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "" #: http.c:973 oncp.c:591 #, c-format msgid "Unexpected %d result from server\n" msgstr "" #: http.c:1021 msgid "request granted" msgstr "" #: http.c:1022 msgid "general failure" msgstr "ਆਮ ਫੇਲ੍ਹ" #: http.c:1023 msgid "connection not allowed by ruleset" msgstr "" #: http.c:1024 msgid "network unreachable" msgstr "ਨੈੱਟਵਰਕ ਪਹੁੰਚ 'ਚ ਨਹੀਂ" #: http.c:1025 msgid "host unreachable" msgstr "ਹੋਸਟ ਪਹੁੰਚ 'ਚ ਨਹੀਂ" #: http.c:1026 msgid "connection refused by destination host" msgstr "" #: http.c:1027 msgid "TTL expired" msgstr "TTL ਮਿਆਦ ਪੁੱਗੀ" #: http.c:1028 msgid "command not supported / protocol error" msgstr "" #: http.c:1029 msgid "address type not supported" msgstr "ਪਰੋਟੋਕਾਲ ਟਾਈਪ ਸਹਾਇਕ ਨਹੀਂ ਹੈ" #: http.c:1039 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1047 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1062 http.c:1118 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" #: http.c:1070 http.c:1125 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" #: http.c:1077 http.c:1131 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" #: http.c:1083 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1087 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1143 http.c:1150 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1156 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1163 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1170 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1176 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "" #: http.c:1191 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" #: http.c:1199 http.c:1241 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "" #: http.c:1205 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "" #: http.c:1213 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "SOCKS ਪਰਾਕਸੀ ਗਲਤੀ %02x: %s\n" #: http.c:1217 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "SOCKS ਪਰਾਕਸੀ ਗਲਤੀ %02x\n" #: http.c:1234 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "" #: http.c:1257 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "" #: http.c:1292 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "" #: http.c:1315 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1334 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "ਅਣਜਾਣ ਪਰਾਕਸੀ ਕਿਸਮ '%s'\n" #: http.c:1383 msgid "Only http or socks(5) proxies supported\n" msgstr "" #: library.c:112 msgid "Cisco AnyConnect or openconnect" msgstr "" #: library.c:113 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "" #: library.c:129 msgid "Juniper Network Connect" msgstr "" #: library.c:130 msgid "Compatible with Juniper Network Connect / Pulse Secure SSL VPN" msgstr "" #: library.c:148 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:149 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:211 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:233 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "" #: library.c:656 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "" #: library.c:662 msgid "Only https:// permitted for server URL\n" msgstr "" #: library.c:1056 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "" #: library.c:1085 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" #: library.c:1146 msgid "No form handler; cannot authenticate.\n" msgstr "" #: main.c:340 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:353 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:388 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:401 #, c-format msgid "fgetws() failed: %s\n" msgstr "" #: main.c:416 main.c:429 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:423 main.c:689 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "" #: main.c:584 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:593 #, c-format msgid "Using OpenSSL. Features present:" msgstr "OpenSSL ਦੀ ਵਰਤੋਂ। ਮੌਜੂਦਾ ਫੀਚਰ:" #: main.c:595 #, c-format msgid "Using GnuTLS. Features present:" msgstr "GnuTLS ਦੀ ਵਰਤੋਂ। ਮੌਜੂਦਾ ਫੀਚਰ:" #: main.c:608 msgid "OpenSSL ENGINE not present" msgstr "OpenSSL ਇੰਜਣ ਮੌਜੂਦ ਨਹੀਂ" #: main.c:647 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" #: main.c:657 #, c-format msgid "Supported protocols:" msgstr "" #: main.c:659 main.c:675 msgid " (default)" msgstr "" #: main.c:672 msgid "Set VPN protocol" msgstr "" #: main.c:713 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:754 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:760 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:780 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "" #: main.c:793 #, c-format msgid "Usage: openconnect [options] \n" msgstr "ਵਰਤੋਂ: openconnect [options] \n" #: main.c:794 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" #: main.c:796 msgid "Read options from config file" msgstr "" #: main.c:797 msgid "Report version number" msgstr "ਵਰਜਨ ਨੰਬਰ ਰਿਪੋਰਟ ਕਰੋ" #: main.c:798 msgid "Display help text" msgstr "ਮੱਦਦ ਟੈਕਸਟ ਵੇਖਾਓ" #: main.c:802 msgid "Authentication" msgstr "" #: main.c:803 msgid "Set login username" msgstr "ਲਾਗਇਨ ਯੂਜ਼ਰ-ਨਾਂ ਸੈੱਟ ਕਰੋ" #: main.c:804 msgid "Disable password/SecurID authentication" msgstr "" #: main.c:805 msgid "Do not expect user input; exit if it is required" msgstr "" #: main.c:806 msgid "Read password from standard input" msgstr "ਸਟੈਂਡਰਡ ਆਉਟਪੁੱਟ ਤੋਂ ਪਾਸਵਰਡ ਪੜ੍ਹੋ" #: main.c:807 msgid "Choose authentication login selection" msgstr "" #: main.c:808 msgid "Provide authentication form responses" msgstr "" #: main.c:809 msgid "Use SSL client certificate CERT" msgstr "" #: main.c:810 msgid "Use SSL private key file KEY" msgstr "" #: main.c:811 msgid "Warn when certificate lifetime < DAYS" msgstr "" #: main.c:812 msgid "Set login usergroup" msgstr "ਲਾਗਇ ਯੂਜ਼ਰ-ਗਰੁੱਪ ਸੈੱਟ ਕਰੋ" #: main.c:813 msgid "Set key passphrase or TPM SRK PIN" msgstr "" #: main.c:814 msgid "Key passphrase is fsid of file system" msgstr "" #: main.c:815 msgid "Software token type: rsa, totp or hotp" msgstr "" #: main.c:816 msgid "Software token secret" msgstr "" #: main.c:818 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" #: main.c:821 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:824 msgid "Server validation" msgstr "" #: main.c:825 msgid "Server's certificate SHA1 fingerprint" msgstr "" #: main.c:826 msgid "Do not require server SSL cert to be valid" msgstr "" #: main.c:827 msgid "Disable default system certificate authorities" msgstr "" #: main.c:828 msgid "Cert file for server verification" msgstr "ਸਰਵਰ ਜਾਂਚ ਲਈ ਸਰਟ ਫਾਇਲ" #: main.c:830 msgid "Internet connectivity" msgstr "" #: main.c:831 msgid "Set proxy server" msgstr "" #: main.c:832 msgid "Set proxy authentication methods" msgstr "" #: main.c:833 msgid "Disable proxy" msgstr "" #: main.c:834 msgid "Use libproxy to automatically configure proxy" msgstr "" #: main.c:836 msgid "(NOTE: libproxy disabled in this build)" msgstr "" #: main.c:838 msgid "Connection retry timeout in seconds" msgstr "" #: main.c:839 msgid "Use IP when connecting to HOST" msgstr "" #: main.c:840 msgid "copy TOS / TCLASS when using DTLS" msgstr "" #: main.c:841 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:843 msgid "Authentication (two-phase)" msgstr "" #: main.c:844 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:845 msgid "Read cookie from standard input" msgstr "" #: main.c:846 msgid "Authenticate only and print login info" msgstr "" #: main.c:847 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:848 msgid "Print cookie before connecting" msgstr "" #: main.c:851 msgid "Process control" msgstr "" #: main.c:852 msgid "Continue in background after startup" msgstr "" #: main.c:853 msgid "Write the daemon's PID to this file" msgstr "" #: main.c:854 msgid "Drop privileges after connecting" msgstr "" #: main.c:857 msgid "Logging (two-phase)" msgstr "" #: main.c:859 msgid "Use syslog for progress messages" msgstr "ਤਰੱਕੀ ਸੁਨੇਹਿਆਂ ਲਈ syslog ਵਰਤੋਂ" #: main.c:861 msgid "More output" msgstr "ਹੋਰ ਆਉਟਪੁੱਟ" #: main.c:862 msgid "Less output" msgstr "ਘੱਟ ਆਉਟਪੁੱਟ" #: main.c:863 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "" #: main.c:864 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:866 msgid "VPN configuration script" msgstr "" #: main.c:867 msgid "Use IFNAME for tunnel interface" msgstr "" #: main.c:868 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" #: main.c:869 msgid "default" msgstr "ਡਿਫਾਲਟ" #: main.c:871 msgid "Pass traffic to 'script' program, not tun" msgstr "" #: main.c:874 msgid "Tunnel control" msgstr "" #: main.c:875 msgid "Do not ask for IPv6 connectivity" msgstr "" #: main.c:876 msgid "XML config file" msgstr "XML ਸੰਰਚਨਾ ਫਾਇਲ" #: main.c:877 msgid "Request MTU from server (legacy servers only)" msgstr "" #: main.c:878 msgid "Indicate path MTU to/from server" msgstr "" #: main.c:879 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:880 msgid "Disable all compression" msgstr "" #: main.c:881 msgid "Set minimum Dead Peer Detection interval" msgstr "" #: main.c:882 msgid "Require perfect forward secrecy" msgstr "" #: main.c:883 msgid "Disable DTLS and ESP" msgstr "" #: main.c:884 msgid "OpenSSL ciphers to support for DTLS" msgstr "" #: main.c:885 msgid "Set packet queue limit to LEN pkts" msgstr "" #: main.c:887 msgid "Local system information" msgstr "" #: main.c:888 msgid "HTTP header User-Agent: field" msgstr "" #: main.c:889 msgid "Local hostname to advertise to server" msgstr "" #: main.c:890 msgid "OS type (linux,linux-64,win,...) to report" msgstr "" #: main.c:891 msgid "reported version string during authentication" msgstr "" #: main.c:892 msgid "default:" msgstr "" #: main.c:895 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:896 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:897 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:900 msgid "Server bugs" msgstr "" #: main.c:901 msgid "Disable HTTP connection re-use" msgstr "HTTP ਕੁਨੈਕਸ਼ਨ ਮੁੜ-ਵਰਤਣਾ ਆਯੋਗ" #: main.c:902 msgid "Do not attempt XML POST authentication" msgstr "" #: main.c:924 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:997 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "" #: main.c:1037 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "" #: main.c:1047 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "" #: main.c:1051 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "" #: main.c:1076 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "" #: main.c:1086 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "" #: main.c:1130 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "" #: main.c:1140 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:1147 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:1157 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "" #: main.c:1215 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" #: main.c:1223 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "'%s' ਸੰਰਚਨਾ ਫਾਇਲ ਨੂੰ ਖੋਲ੍ਹਿਆ ਨਹੀਂ ਜਾ ਸਕਦਾ: %s\n" #: main.c:1239 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1260 #, c-format msgid "Missing colon in resolve option\n" msgstr "" #: main.c:1265 #, c-format msgid "Failed to allocate memory\n" msgstr "" #: main.c:1349 main.c:1358 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d ਬਹੁਤ ਛੋਟਾ ਹੈ\n" #: main.c:1388 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" #: main.c:1394 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" #: main.c:1411 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "" #: main.c:1425 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect ਵਰਜਨ %s\n" #: main.c:1463 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "" #: main.c:1473 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "" #: main.c:1506 #, c-format msgid "Too many arguments on command line\n" msgstr "ਕਮਾਂਡ ਲਾਈਨ ਲਈ ਬਹੁਤ ਸਾਰੇ ਆਰਗੂਮੈਂਟ\n" #: main.c:1509 #, c-format msgid "No server specified\n" msgstr "ਕੋਈ ਸਰਵਰ ਨਹੀਂ ਦਿੱਤਾ\n" #: main.c:1525 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" #: main.c:1555 #, c-format msgid "Error opening cmd pipe\n" msgstr "" #: main.c:1588 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "WebVPN ਕੂਕੀਜ਼ ਲੈਣ ਲਈ ਫੇਲ੍ਹ\n" #: main.c:1609 #, c-format msgid "Creating SSL connection failed\n" msgstr "SSL ਕੁਨੈਕਸ਼ਨ ਬਣਾਉਣ ਲਈ ਫੇਲ੍ਹ\n" #: main.c:1625 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:1633 #, c-format msgid "Connected as %s%s%s, using SSL%s%s, with %s%s%s %s\n" msgstr "" #: main.c:1639 msgid "disabled" msgstr "" #: main.c:1639 msgid "in progress" msgstr "" #: main.c:1643 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" #: main.c:1645 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "http://www.infradead.org/openconnect/vpnc-script.html ਵੇਖੋ\n" #: main.c:1658 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "'%s ਨੂੰ ਲਿਖਣ ਲਈ ਖੋਲ੍ਹਣ ਵਾਸਤੇ ਫੇਲ੍ਹ: %s\n" #: main.c:1670 #, c-format msgid "Continuing in background; pid %d\n" msgstr "ਬੈਕਗਰਾਊਂਡ ਵਿੱਚ ਜਾਰੀ; pid %d\n" #: main.c:1687 msgid "User requested reconnect\n" msgstr "" #: main.c:1695 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "" #: main.c:1699 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:1703 msgid "User cancelled (SIGINT/SIGTERM); exiting.\n" msgstr "" #: main.c:1707 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "" #: main.c:1711 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:1730 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "%s ਨੂੰ ਲਿਖਣ ਲਈ ਖੋਲ੍ਹਣ ਵਾਸਤੇ ਫੇਲ੍ਹ: %s\n" #: main.c:1738 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "%s ਲਈ ਸੰਰਚਨਾ ਫਾਇਲ ਲਿਖਣ ਲਈ ਫੇਲ੍ਹ: %s\n" #: main.c:1797 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "" #: main.c:1816 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" #: main.c:1819 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" #: main.c:1820 #, c-format msgid " --servercert %s\n" msgstr "" #: main.c:1825 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" #: main.c:1826 main.c:1844 msgid "no" msgstr "ਨਹੀਂ" #: main.c:1826 main.c:1832 msgid "yes" msgstr "ਹਾਂ" #: main.c:1853 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:1887 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:1890 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "" #: main.c:1911 msgid "User input required in non-interactive mode\n" msgstr "" #: main.c:2149 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:2157 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:2203 main.c:2224 #, c-format msgid "Soft token string is invalid\n" msgstr "" #: main.c:2206 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "" #: main.c:2209 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "" #: main.c:2212 #, c-format msgid "General failure in libstoken\n" msgstr "" #: main.c:2227 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "" #: main.c:2230 #, c-format msgid "General failure in liboath\n" msgstr "" #: main.c:2241 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2244 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2247 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: mainloop.c:127 #, c-format msgid "Set up tun script failed\n" msgstr "" #: mainloop.c:134 #, c-format msgid "Set up tun device failed\n" msgstr "" #: mainloop.c:265 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:273 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "" #: mainloop.c:294 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:978 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:982 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:565 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: oncp.c:160 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:166 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:175 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:186 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:201 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:210 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:219 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:232 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:254 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:274 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:297 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:316 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:327 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:335 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:342 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:350 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:358 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:366 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:374 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:383 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:395 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:473 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:490 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:496 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:512 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:577 oncp.c:609 oncp.c:747 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:618 oncp.c:783 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:631 oncp.c:666 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:636 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:643 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:670 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:683 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:692 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "" #: oncp.c:698 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "" #: oncp.c:705 msgid "Failed to read continuation record length\n" msgstr "" #: oncp.c:711 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "" #: oncp.c:720 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "" #: oncp.c:726 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "" #: oncp.c:767 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:776 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:829 msgid "new incoming" msgstr "" #: oncp.c:830 msgid "new outgoing" msgstr "" #: oncp.c:855 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:864 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:868 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:874 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:969 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:972 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:991 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1053 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1058 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1073 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1134 msgid "Sent ESP enable control packet\n" msgstr "" #: oncp.c:1268 msgid "Logout successful.\n" msgstr "" #: openconnect-internal.h:1119 openconnect-internal.h:1127 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "" #: openssl-dtls.c:365 msgid "Initialise DTLSv1 CTX failed\n" msgstr "" #: openssl-dtls.c:378 msgid "Set DTLS CTX version failed\n" msgstr "" #: openssl-dtls.c:395 msgid "Failed to generate DTLS key\n" msgstr "" #: openssl-dtls.c:413 msgid "Set DTLS cipher list failed\n" msgstr "" #: openssl-dtls.c:439 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:460 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: openssl-dtls.c:493 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:566 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "" #: openssl-dtls.c:603 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" #: openssl-dtls.c:654 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" #: openssl-dtls.c:661 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "" #: openssl-esp.c:87 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:101 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:157 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:202 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:210 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:241 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:43 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:49 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "" #: openssl-pkcs11.c:269 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:272 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:275 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:279 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:286 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:300 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:306 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:342 openssl-pkcs11.c:565 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:349 openssl-pkcs11.c:575 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:383 openssl-pkcs11.c:617 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:393 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "" #: openssl-pkcs11.c:401 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:412 openssl.c:713 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl-pkcs11.c:458 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:464 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:497 msgid "Certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:503 openssl-pkcs11.c:526 msgid "Certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:506 msgid "Checking EC key matches cert\n" msgstr "" #: openssl-pkcs11.c:510 msgid "Failed to allocate signature buffer\n" msgstr "" #: openssl-pkcs11.c:520 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" #: openssl-pkcs11.c:638 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "" #: openssl-pkcs11.c:649 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:678 msgid "Add key from PKCS#11 failed\n" msgstr "" #: openssl-pkcs11.c:710 openssl-pkcs11.c:716 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:147 msgid "Failed to write to SSL socket\n" msgstr "" #: openssl.c:197 openssl.c:263 msgid "Failed to read from SSL socket\n" msgstr "" #: openssl.c:292 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" #: openssl.c:317 #, c-format msgid "SSL_write failed: %d\n" msgstr "" #: openssl.c:389 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:465 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "" #: openssl.c:498 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "" #: openssl.c:548 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:563 msgid "PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:572 msgid "PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:577 msgid "PKCS#12" msgstr "" #: openssl.c:600 msgid "Can't load TPM engine.\n" msgstr "" #: openssl.c:606 msgid "Failed to init TPM engine\n" msgstr "" #: openssl.c:616 msgid "Failed to set TPM SRK password\n" msgstr "" #: openssl.c:630 msgid "Failed to load TPM private key\n" msgstr "" #: openssl.c:636 msgid "Add key from TPM failed\n" msgstr "" #: openssl.c:687 openssl.c:835 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "" #: openssl.c:697 msgid "Loading certificate failed\n" msgstr "" #: openssl.c:735 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:748 msgid "PEM file" msgstr "" #: openssl.c:777 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "" #: openssl.c:802 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:808 msgid "Loading private key failed (see above errors)\n" msgstr "" #: openssl.c:858 msgid "Failed to load X509 certificate from keystore\n" msgstr "" #: openssl.c:864 msgid "Failed to use X509 certificate from keystore\n" msgstr "" #: openssl.c:896 msgid "Failed to use private key from keystore\n" msgstr "" #: openssl.c:912 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "" #: openssl.c:936 openssl.c:951 openssl.c:972 openssl.c:1038 msgid "Loading private key failed\n" msgstr "" #: openssl.c:1032 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1049 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "" #: openssl.c:1203 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "" #: openssl.c:1210 #, c-format msgid "No match for altname '%s'\n" msgstr "" #: openssl.c:1224 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" #: openssl.c:1235 openssl.c:1381 #, c-format msgid "Matched %s address '%s'\n" msgstr "" #: openssl.c:1242 #, c-format msgid "No match for %s address '%s'\n" msgstr "" #: openssl.c:1284 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "" #: openssl.c:1289 #, c-format msgid "Matched URI '%s'\n" msgstr "" #: openssl.c:1300 #, c-format msgid "No match for URI '%s'\n" msgstr "" #: openssl.c:1315 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" #: openssl.c:1323 msgid "No subject name in peer cert!\n" msgstr "" #: openssl.c:1343 msgid "Failed to parse subject name in peer cert\n" msgstr "" #: openssl.c:1350 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "" #: openssl.c:1355 openssl.c:1389 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "" #: openssl.c:1451 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "" #: openssl.c:1589 msgid "Error in client cert notAfter field\n" msgstr "" #: openssl.c:1602 msgid "" msgstr "<ਗਲਤੀ>" #: openssl.c:1655 msgid "Create TLSv1 CTX failed\n" msgstr "" #: openssl.c:1674 msgid "SSL certificate and key do not match\n" msgstr "" #: openssl.c:1719 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "" #: openssl.c:1752 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "" #: openssl.c:1812 msgid "SSL connection failure\n" msgstr "SSL ਕੁਨੈਕਸ਼ਨ ਫੇਲ੍ਹ ਹੋਇਆ\n" #: openssl.c:1973 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:130 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "" #: script.c:134 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "" #: script.c:507 script.c:555 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "" #: script.c:562 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "" #: script.c:570 #, c-format msgid "Script '%s' returned error %d\n" msgstr "" #: ssl.c:108 msgid "Socket connect cancelled\n" msgstr "ਸਾਕਟ ਕੁਨੈਕਸ਼ਨ ਰੱਦ ਕੀਤਾ\n" #: ssl.c:217 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "" #: ssl.c:221 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "" #: ssl.c:289 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "" #: ssl.c:317 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "" #: ssl.c:326 ssl.c:451 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:341 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "" #: ssl.c:342 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "" #: ssl.c:362 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "" #: ssl.c:374 msgid "Failed to allocate sockaddr storage\n" msgstr "" #: ssl.c:416 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "" #: ssl.c:434 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:446 #, c-format msgid "Failed to connect to host %s\n" msgstr "%s ਹੋਸਟ ਨਾਲ ਕੁਨੈਕਟ ਕਰਨ ਲਈ ਫੇਲ੍ਹ ਹੈ\n" #: ssl.c:465 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:536 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:564 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:575 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:603 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:694 msgid "No error" msgstr "ਕੋਈ ਗਲਤੀ ਨਹੀਂ" #: ssl.c:695 msgid "Keystore locked" msgstr "" #: ssl.c:696 msgid "Keystore uninitialized" msgstr "" #: ssl.c:697 msgid "System error" msgstr "ਸਿਸਟਮ ਗਲਤੀ" #: ssl.c:698 msgid "Protocol error" msgstr "ਪਰੋਟੋਕਾਲ ਗਲਤੀ" #: ssl.c:699 msgid "Permission denied" msgstr "ਅਧਿਕਾਰ ਪਾਬੰਦੀ ਹੈ" #: ssl.c:700 msgid "Key not found" msgstr "" #: ssl.c:701 msgid "Value corrupted" msgstr "" #: ssl.c:702 msgid "Undefined action" msgstr "" #: ssl.c:706 msgid "Wrong password" msgstr "ਗਲਤ ਪਾਸਵਰਡ" #: ssl.c:707 msgid "Unknown error" msgstr "ਅਣਜਾਣ ਗਲਤੀ" #: ssl.c:896 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:931 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:950 msgid "Open UDP socket" msgstr "" #: ssl.c:981 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:989 msgid "Bind UDP socket" msgstr "" #: ssl.c:996 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:1034 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:1038 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "" #: stoken.c:82 msgid "Device ID:" msgstr "" #: stoken.c:89 msgid "Password:" msgstr "" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "" #: stoken.c:185 msgid "Enter software token PIN." msgstr "" #: stoken.c:189 msgid "PIN:" msgstr "" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "" #: tun-win32.c:76 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:139 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "" #: tun-win32.c:154 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" #: tun-win32.c:186 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" #: tun-win32.c:200 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "" #: tun-win32.c:231 #, c-format msgid "Failed to open %s\n" msgstr "" #: tun-win32.c:236 #, c-format msgid "Opened tun device %s\n" msgstr "" #: tun-win32.c:244 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:250 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:271 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:283 tun-win32.c:406 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:316 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:321 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:335 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:358 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:368 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:371 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:423 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "" #: tun.c:92 msgid "Can't push IP" msgstr "" #: tun.c:102 msgid "Can't set ifname" msgstr "" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "" #: tun.c:139 msgid "open /dev/tun" msgstr "/dev/tun ਖੋਲ੍ਹੋ" #: tun.c:145 msgid "Failed to create new tun" msgstr "" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "" #: tun.c:205 msgid "open net" msgstr "" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "" #: tun.c:479 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:484 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:488 msgid "setpgid" msgstr "" #: tun.c:493 msgid "execl" msgstr "" #: tun.c:498 msgid "(script)" msgstr "(ਸਕ੍ਰਿਪਟ)" #: tun.c:566 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "ਹੋਸਟ \"%s\" ਨੂੰ ਰਾਅ ਹੋਸਟ-ਨਾਂ ਵਜੋਂ ਮੰਨੋ\n" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "SHA1 ਮੌਜੂਦਾ ਫਾਇਲ ਲਈ ਫੇਲ੍ਹ\n" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "XML ਸੰਰਚਨਾ ਫਾਇਲ SHA1: %s\n" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "XML ਸੰਰਚਨਾ ਫਾਇਲ %s ਪਾਰਸ ਕਰਨ ਲਈ ਫੇਲ੍ਹ\n" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "ਹੋਸਟ \"%s\" ਦਾ ਐਡਰੈਸ \"%s\" ਹੈ\n" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "ਹੋਸਟ \"%s\" ਦਾ ਯੂਜ਼ਰ-ਗਰੁੱਪ \"%s\" ਹੈ\n" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:174 msgid "select applet command" msgstr "" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:274 msgid "unlock command" msgstr "" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:412 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:619 msgid "calculate command" msgstr "" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-8.05/po/fi.po0000664000076400007640000025710613470043037017125 0ustar00dwoodhoudwoodhou00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: # Jussa Jutila , 2011. msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2019-05-18 10:44-0700\n" "PO-Revision-Date: 2012-06-20 08:43+0000\n" "Last-Translator: David Woodhouse \n" "Language-Team: Finnish \n" "Language: fi\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1)\n" #: auth-globalprotect.c:108 #, c-format msgid "" "SAML login is required via %s to this URL:\n" "\t%s" msgstr "" #: auth-globalprotect.c:110 msgid "Please enter your username and password" msgstr "" #: auth-globalprotect.c:119 msgid "Username" msgstr "" #: auth-globalprotect.c:134 msgid "Password" msgstr "" #: auth-globalprotect.c:181 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:260 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:266 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:272 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:315 msgid "Please select GlobalProtect gateway." msgstr "" #: auth-globalprotect.c:325 msgid "GATEWAY:" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:379 #, c-format msgid "%d gateway servers available:\n" msgstr "" #: auth-globalprotect.c:400 #, c-format msgid " %s (%s)\n" msgstr "" #: auth-globalprotect.c:484 auth-juniper.c:730 auth.c:669 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth-globalprotect.c:584 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" #: auth-globalprotect.c:636 oncp.c:1266 msgid "Logout failed.\n" msgstr "Uloskirjautuminen epäonnistui.\n" #: auth-globalprotect.c:638 msgid "Logout successful\n" msgstr "" #: auth-juniper.c:142 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-juniper.c:153 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-juniper.c:163 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-juniper.c:236 auth.c:408 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "" #: auth-juniper.c:267 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "" #: auth-juniper.c:337 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:359 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:397 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:411 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:418 msgid "Failed to send start command to TNCC\n" msgstr "" #: auth-juniper.c:425 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:432 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:439 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:445 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:452 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:461 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:474 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:481 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:650 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:667 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:675 msgid "Encountered form with no ID\n" msgstr "" #: auth-juniper.c:713 #, c-format msgid "Unknown form ID '%s'\n" msgstr "" #: auth-juniper.c:716 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth.c:96 msgid "Form choice has no name\n" msgstr "" #: auth.c:181 #, c-format msgid "name %s not input\n" msgstr "" #: auth.c:188 msgid "No input type in form\n" msgstr "" #: auth.c:200 msgid "No input name in form\n" msgstr "" #: auth.c:230 #, c-format msgid "Unknown input type %s in form\n" msgstr "" #: auth.c:540 gpst.c:214 msgid "Empty response from server\n" msgstr "Tyhjä vastaus palvelimelta\n" #: auth.c:551 gpst.c:289 msgid "Failed to parse server response\n" msgstr "Palvelimen vastauksen jäsentäminen epäonnistui\n" #: auth.c:553 gpst.c:291 #, c-format msgid "Response was:%s\n" msgstr "Vastaus oli:%s\n" #: auth.c:575 msgid "Received when not expected.\n" msgstr "" #: auth.c:603 msgid "XML response has no \"auth\" node\n" msgstr "" #: auth.c:636 msgid "Asked for password but '--no-passwd' set\n" msgstr "Kysyttiin salasanaa, mutta valitsin '--no-passwd' asetettu\n" #: auth.c:925 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:931 cstp.c:335 http.c:916 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "HTTPS-yhteyden muodostus kohteeseen %s epäonnistui\n" #: auth.c:952 msgid "Failed to send GET request for new config\n" msgstr "" #: auth.c:976 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" #: auth.c:981 msgid "Downloaded new XML profile\n" msgstr "Ladattu uusi XML-profiili\n" #: auth.c:992 auth.c:1044 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" #: auth.c:1003 mainloop.c:144 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "" #: auth.c:1010 mainloop.c:151 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "" #: auth.c:1017 mainloop.c:158 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "" #: auth.c:1024 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "" #: auth.c:1031 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "" #: auth.c:1053 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:1060 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" #: auth.c:1067 msgid "Trying to run Linux CSD trojan script.\n" msgstr "Yritetään suorittaa Linux CSD -troijalaisskripti.\n" #: auth.c:1094 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1102 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "" #: auth.c:1111 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "" #: auth.c:1141 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" #: auth.c:1189 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "" #: auth.c:1221 msgid "Unknown response from server\n" msgstr "Tuntematon vastaus palvelimelta\n" #: auth.c:1342 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1346 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" #: auth.c:1362 msgid "XML POST enabled\n" msgstr "" #: auth.c:1405 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "" #: compat.c:207 #, c-format msgid "(error 0x%lx)" msgstr "(virhe 0x%lx)" #: compat.c:210 msgid "(Error while describing error!)" msgstr "" #: compat.c:233 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:112 gpst.c:341 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "" #: cstp.c:134 gpst.c:360 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "" #: cstp.c:281 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:312 msgid "Error creating HTTPS CONNECT request\n" msgstr "Virhe luotaessa HTTPS CONNECT -pyyntöä\n" #: cstp.c:328 http.c:384 msgid "Error fetching HTTPS response\n" msgstr "Virhe noutaessa HTTPS-vastausta\n" #: cstp.c:355 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "VPN-palvelu ei ole käytettävissä; syy: %s\n" #: cstp.c:360 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "" #: cstp.c:367 #, c-format msgid "Got CONNECT response: %s\n" msgstr "" #: cstp.c:396 cstp.c:404 msgid "No memory for options\n" msgstr "" #: cstp.c:413 http.c:444 msgid "" msgstr "" #: cstp.c:433 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "" #: cstp.c:450 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "" #: cstp.c:468 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:510 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "" #: cstp.c:585 msgid "No MTU received. Aborting\n" msgstr "" #: cstp.c:593 gpst.c:641 msgid "No IP address received. Aborting\n" msgstr "IP-osoitetta ei saatu. Keskeytetään\n" #: cstp.c:599 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: cstp.c:605 gpst.c:648 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "" #: cstp.c:614 gpst.c:657 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" #: cstp.c:622 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "" #: cstp.c:630 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "" #: cstp.c:638 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "" #: cstp.c:640 #, c-format msgid "CSTP Ciphersuite: %s\n" msgstr "" #: cstp.c:702 msgid "Compression setup failed\n" msgstr "" #: cstp.c:719 msgid "Allocation of deflate buffer failed\n" msgstr "" #: cstp.c:781 msgid "inflate failed\n" msgstr "" #: cstp.c:804 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:817 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:824 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:829 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:849 #, c-format msgid "deflate failed %d\n" msgstr "" #: cstp.c:922 dtls.c:281 dtls.c:740 esp.c:129 gpst.c:1042 mainloop.c:69 #: oncp.c:914 msgid "Allocation failed\n" msgstr "" #: cstp.c:933 gpst.c:1055 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: cstp.c:946 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" #: cstp.c:960 msgid "Got CSTP DPD request\n" msgstr "" #: cstp.c:966 msgid "Got CSTP DPD response\n" msgstr "" #: cstp.c:971 msgid "Got CSTP Keepalive\n" msgstr "" #: cstp.c:976 oncp.c:1003 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:993 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "" #: cstp.c:996 msgid "Received server disconnect\n" msgstr "" #: cstp.c:1004 msgid "Compressed packet received in !deflate mode\n" msgstr "" #: cstp.c:1013 msgid "received server terminate packet\n" msgstr "" #: cstp.c:1020 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "" #: cstp.c:1063 gpst.c:1142 oncp.c:1121 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: cstp.c:1091 oncp.c:1155 msgid "CSTP rekey due\n" msgstr "" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: cstp.c:1098 oncp.c:1162 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: cstp.c:1109 oncp.c:1173 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "" #: cstp.c:1113 gpst.c:1166 oncp.c:1091 oncp.c:1177 msgid "Reconnect failed\n" msgstr "Uudelleenyhdistys epäonnistui\n" #: cstp.c:1129 oncp.c:1193 msgid "Send CSTP DPD\n" msgstr "" #: cstp.c:1141 oncp.c:1204 msgid "Send CSTP Keepalive\n" msgstr "" #: cstp.c:1166 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1177 oncp.c:1238 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:1216 #, c-format msgid "Send BYE packet: %s\n" msgstr "Lähetä BYE-paketti: %s\n" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:113 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:119 msgid "No DTLS address\n" msgstr "Ei DTLS-osoitetta\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:126 msgid "Server offered no DTLS cipher option\n" msgstr "" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:133 msgid "No DTLS when connected via proxy\n" msgstr "Ei DTLS:ää välityspalvelimen kautta yhdistettäessä\n" #: dtls.c:200 #, c-format msgid "DTLS option %s : %s\n" msgstr "" #: dtls.c:239 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:265 msgid "Attempt new DTLS connection\n" msgstr "" #: dtls.c:292 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "" #: dtls.c:306 msgid "Got DTLS DPD request\n" msgstr "" #: dtls.c:312 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "" #: dtls.c:316 msgid "Got DTLS DPD response\n" msgstr "" #: dtls.c:320 msgid "Got DTLS Keepalive\n" msgstr "" #: dtls.c:326 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:334 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "" #: dtls.c:356 msgid "DTLS rekey due\n" msgstr "" #: dtls.c:363 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: dtls.c:372 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "" #: dtls.c:378 msgid "Send DTLS DPD\n" msgstr "" #: dtls.c:383 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "" #: dtls.c:396 msgid "Send DTLS Keepalive\n" msgstr "" #: dtls.c:401 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" #: dtls.c:432 tun.c:541 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "" #: dtls.c:439 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "" #: dtls.c:443 msgid "UDP setsockopt" msgstr "" #: dtls.c:474 #, c-format msgid "DTLS got write error %d. Falling back to SSL\n" msgstr "" #: dtls.c:488 #, c-format msgid "DTLS got write error: %s. Falling back to SSL\n" msgstr "" #: dtls.c:503 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "" #: dtls.c:531 #, c-format msgid "Initiating IPv4 MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:551 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" #: dtls.c:555 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" #: dtls.c:564 #, c-format msgid "Sending MTU DPD probe (%u bytes, min=%u, max=%u)\n" msgstr "" #: dtls.c:568 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "" #: dtls.c:582 dtls.c:690 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" #: dtls.c:594 #, c-format msgid "Timeout while waiting for DPD response; trying %d\n" msgstr "" #: dtls.c:601 dtls.c:682 msgid "Timeout while waiting for DPD response; resending probe.\n" msgstr "" #: dtls.c:608 dtls.c:709 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "" #: dtls.c:613 #, c-format msgid "Received MTU DPD probe (%u bytes of %u)\n" msgstr "" #: dtls.c:651 msgid "Initiating IPv6 MTU detection\n" msgstr "" #: dtls.c:666 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:670 #, c-format msgid "Failed to send DPD request (%d)\n" msgstr "" #: dtls.c:695 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:759 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "" #: dtls.c:762 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" #: esp.c:63 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:66 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:69 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:87 msgid "incoming" msgstr "saapuva" #: esp.c:88 msgid "outgoing" msgstr "lähtevä" #: esp.c:90 esp.c:113 msgid "Send ESP probes\n" msgstr "" #: esp.c:138 #, c-format msgid "Received ESP packet of %d bytes\n" msgstr "" #: esp.c:155 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:161 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:174 #, c-format msgid "Received ESP packet with unrecognised payload type %02x\n" msgstr "" #: esp.c:181 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:193 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:202 msgid "ESP session established with server\n" msgstr "" #: esp.c:213 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:219 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:225 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:239 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:243 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:251 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:258 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:278 #, c-format msgid "Failed to encrypt ESP packet: %d\n" msgstr "" #: esp.c:294 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:301 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:307 #, c-format msgid "Sent ESP packet of %d bytes\n" msgstr "" #: gnutls-dtls.c:190 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "" #: gnutls-dtls.c:198 msgid "Failed to generate DTLS priority string\n" msgstr "" #: gnutls-dtls.c:207 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "" #: gnutls-dtls.c:216 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "" #: gnutls-dtls.c:240 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "" #: gnutls-dtls.c:253 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:267 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:275 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "" #: gnutls-dtls.c:309 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "" #: gnutls-dtls.c:324 #, c-format msgid "Failed to set DTLS priority: %s\n" msgstr "" #: gnutls-dtls.c:345 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "" #: gnutls-dtls.c:373 openssl-dtls.c:534 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "" #: gnutls-dtls.c:382 openssl-dtls.c:545 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "" #: gnutls-dtls.c:392 openssl-dtls.c:554 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" #: gnutls-dtls.c:405 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "" #: gnutls-dtls.c:416 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: gnutls-dtls.c:422 openssl-dtls.c:572 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "" #: gnutls-dtls.c:437 openssl-dtls.c:653 openssl-dtls.c:657 msgid "DTLS handshake timed out\n" msgstr "" #: gnutls-dtls.c:440 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "" #: gnutls-dtls.c:444 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: gnutls-esp.c:56 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:66 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:121 #, c-format msgid "Failed to generate random keys for ESP: %s\n" msgstr "" #: gnutls-esp.c:132 msgid "Failed to generate ESP IV\n" msgstr "" #: gnutls-esp.c:161 gnutls-esp.c:217 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:168 openssl-esp.c:192 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:180 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:209 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:95 openssl.c:154 msgid "SSL write cancelled\n" msgstr "" #: gnutls.c:99 #, c-format msgid "Failed to write to SSL socket: %s\n" msgstr "" #: gnutls.c:145 gnutls.c:237 openssl.c:204 openssl.c:271 msgid "SSL read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:158 msgid "SSL socket closed uncleanly\n" msgstr "" #: gnutls.c:168 gnutls.c:246 #, c-format msgid "Failed to read from SSL socket: %s\n" msgstr "" #: gnutls.c:266 #, c-format msgid "SSL read error: %s; reconnecting.\n" msgstr "" #: gnutls.c:302 #, c-format msgid "SSL send failed: %s\n" msgstr "" #: gnutls.c:315 msgid "Could not extract expiration time of certificate\n" msgstr "" #: gnutls.c:320 openssl.c:1592 msgid "Client certificate has expired at" msgstr "" #: gnutls.c:322 openssl.c:1597 msgid "Client certificate expires soon at" msgstr "" #: gnutls.c:371 openssl.c:771 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" #: gnutls.c:384 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "" #: gnutls.c:391 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" #: gnutls.c:400 msgid "Failed to allocate certificate buffer\n" msgstr "" #: gnutls.c:408 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "" #: gnutls.c:439 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "" #: gnutls.c:462 openssl.c:534 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "" #: gnutls.c:466 openssl.c:537 msgid "Enter PKCS#12 pass phrase:" msgstr "" #: gnutls.c:489 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "" #: gnutls.c:501 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:584 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "" #: gnutls.c:594 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "" #: gnutls.c:628 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "" #: gnutls.c:638 #, c-format msgid "MD5 hash error: %s\n" msgstr "" #: gnutls.c:696 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" #: gnutls.c:703 msgid "Cannot determine PEM encryption type\n" msgstr "" #: gnutls.c:716 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "" #: gnutls.c:741 gnutls.c:754 msgid "Invalid salt in encrypted PEM file\n" msgstr "" #: gnutls.c:778 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "" #: gnutls.c:786 msgid "Encrypted PEM file too short\n" msgstr "" #: gnutls.c:814 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" #: gnutls.c:825 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "" #: gnutls.c:877 msgid "Decrypting PEM key failed\n" msgstr "" #: gnutls.c:881 gnutls.c:1405 openssl.c:458 msgid "Enter PEM pass phrase:" msgstr "Anna PEM-tunnuslause:" #: gnutls.c:942 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:949 msgid "This binary built without PKCS#11 support\n" msgstr "" #: gnutls.c:993 openssl-pkcs11.c:407 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Käytetään PKCS#11-varmennetta %s\n" #: gnutls.c:994 #, c-format msgid "Using system certificate %s\n" msgstr "Käytetään järjestelmävarmennetta %s\n" #: gnutls.c:1012 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "" #: gnutls.c:1013 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1024 openssl.c:827 #, c-format msgid "Using certificate file %s\n" msgstr "Käytetään varmennetiedostoa %s\n" #: gnutls.c:1052 msgid "PKCS#11 file contained no certificate\n" msgstr "" #: gnutls.c:1078 msgid "No certificate found in file" msgstr "Varmennetta ei löytynyt tiedostosta" #: gnutls.c:1083 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Varmenteen lataaminen epäonnistui: %s\n" #: gnutls.c:1098 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1103 gnutls.c:1271 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "" #: gnutls.c:1114 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1125 gnutls.c:1219 gnutls.c:1247 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1130 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "" #: gnutls.c:1259 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "" #: gnutls.c:1266 openssl-pkcs11.c:644 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Käytetään PKCS#11-avainta %s\n" #: gnutls.c:1281 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" #: gnutls.c:1299 #, c-format msgid "Using private key file %s\n" msgstr "Käytetään yksityisen avaimen tiedostoa %s\n" #: gnutls.c:1310 openssl.c:651 msgid "This version of OpenConnect was built without TPM support\n" msgstr "" #: gnutls.c:1326 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1347 msgid "Failed to interpret PEM file\n" msgstr "" #: gnutls.c:1366 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "" #: gnutls.c:1379 gnutls.c:1393 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "" #: gnutls.c:1401 gnutls.c:1434 openssl.c:1002 openssl.c:1012 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "" #: gnutls.c:1426 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "" #: gnutls.c:1438 openssl.c:1008 msgid "Enter PKCS#8 pass phrase:" msgstr "Anna PKCS#8-tunnuslause:" #: gnutls.c:1454 #, c-format msgid "Failed to get key ID: %s\n" msgstr "" #: gnutls.c:1499 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "" #: gnutls.c:1514 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "" #: gnutls.c:1539 msgid "No SSL certificate found to match private key\n" msgstr "" #: gnutls.c:1551 openssl.c:560 openssl.c:709 #, c-format msgid "Using client certificate '%s'\n" msgstr "" #: gnutls.c:1558 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "" #: gnutls.c:1579 gnutls.c:1589 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1625 msgid "" "WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n" msgstr "" #: gnutls.c:1648 msgid "Got no issuer from PKCS#11\n" msgstr "" #: gnutls.c:1653 #, c-format msgid "Got next CA '%s' from PKCS11\n" msgstr "" #: gnutls.c:1679 msgid "Failed to allocate memory for supporting certificates\n" msgstr "" #: gnutls.c:1702 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "" #: gnutls.c:1724 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1748 #, c-format msgid "Setting certificate failed: %s\n" msgstr "" #: gnutls.c:1941 msgid "Server presented no certificate\n" msgstr "" #: gnutls.c:1949 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" #: gnutls.c:1954 openssl.c:1515 msgid "Server presented different cert on rehandshake\n" msgstr "" #: gnutls.c:1959 openssl.c:1518 msgid "Server presented identical cert on rehandshake\n" msgstr "" #: gnutls.c:1965 msgid "Error initialising X509 cert structure\n" msgstr "" #: gnutls.c:1971 msgid "Error importing server's cert\n" msgstr "" #: gnutls.c:1980 main.c:1794 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:1985 msgid "Error checking server cert status\n" msgstr "" #: gnutls.c:1990 msgid "certificate revoked" msgstr "varmenne on kumottu" #: gnutls.c:1992 msgid "signer not found" msgstr "allekirjoittajaa ei löydy" #: gnutls.c:1994 msgid "signer not a CA certificate" msgstr "" #: gnutls.c:1996 msgid "insecure algorithm" msgstr "" #: gnutls.c:1998 msgid "certificate not yet activated" msgstr "varmennetta ei ole vielä aktivoitu" #: gnutls.c:2000 msgid "certificate expired" msgstr "varmenne on vanhentunut" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2005 msgid "signature verification failed" msgstr "" #: gnutls.c:2054 openssl.c:1399 openssl.c:1551 msgid "certificate does not match hostname" msgstr "" #: gnutls.c:2059 openssl.c:1398 openssl.c:1557 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "" #: gnutls.c:2126 msgid "Failed to allocate memory for cafile certs\n" msgstr "" #: gnutls.c:2147 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "" #: gnutls.c:2163 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "" #: gnutls.c:2176 openssl.c:1679 msgid "Loading certificate failed. Aborting.\n" msgstr "" #: gnutls.c:2237 #, c-format msgid "Failed to set TLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2249 openssl.c:1796 #, c-format msgid "SSL negotiation with %s\n" msgstr "" #: gnutls.c:2296 openssl.c:1822 msgid "SSL connection cancelled\n" msgstr "SSL-yhteys peruttu\n" #: gnutls.c:2303 #, c-format msgid "SSL connection failure: %s\n" msgstr "SSL-yhteys epäonnistui: %s\n" #: gnutls.c:2312 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "" #: gnutls.c:2318 openssl.c:1839 #, c-format msgid "Connected to HTTPS on %s\n" msgstr "" #: gnutls.c:2321 #, c-format msgid "Renegotiated SSL on %s\n" msgstr "" #: gnutls.c:2483 openssl-pkcs11.c:199 #, c-format msgid "PIN required for %s" msgstr "" #: gnutls.c:2487 openssl-pkcs11.c:202 msgid "Wrong PIN" msgstr "Väärä PIN" #: gnutls.c:2490 msgid "This is the final try before locking!" msgstr "Tämä on viimeinen yritys ennen lukkiutumista!" #: gnutls.c:2492 msgid "Only a few tries left before locking!" msgstr "" #: gnutls.c:2497 openssl-pkcs11.c:206 msgid "Enter PIN:" msgstr "Anna PIN:" #: gnutls.c:2583 openssl.c:1967 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2592 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls_tpm.c:54 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm.c:61 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:68 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:78 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "" #: gnutls_tpm.c:100 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "" #: gnutls_tpm.c:108 gnutls_tpm.c:119 gnutls_tpm.c:132 msgid "Error in TSS key blob\n" msgstr "" #: gnutls_tpm.c:139 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "" #: gnutls_tpm.c:146 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "" #: gnutls_tpm.c:154 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "" #: gnutls_tpm.c:161 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "" #: gnutls_tpm.c:182 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "" #: gnutls_tpm.c:198 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "" #: gnutls_tpm.c:205 msgid "Enter TPM SRK PIN:" msgstr "" #: gnutls_tpm.c:226 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "" #: gnutls_tpm.c:234 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "" #: gnutls_tpm.c:240 msgid "Enter TPM key PIN:" msgstr "" #: gnutls_tpm.c:251 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "" #: gnutls_tpm2.c:92 gnutls_tpm2_esys.c:474 gnutls_tpm2_ibm.c:419 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:198 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:208 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:217 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:225 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:231 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:249 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:270 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:275 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:384 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2_esys.c:173 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:189 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:190 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:191 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:192 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:196 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:201 gnutls_tpm2_ibm.c:262 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:209 gnutls_tpm2_esys.c:303 gnutls_tpm2_esys.c:374 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:221 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:226 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:245 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:250 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:258 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:261 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:274 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:295 gnutls_tpm2_ibm.c:278 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:309 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:317 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:323 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:333 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:363 gnutls_tpm2_ibm.c:363 gnutls_tpm2_ibm.c:450 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:395 #, c-format msgid "TPM2 RSA sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:414 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:420 gnutls_tpm2_esys.c:500 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:464 gnutls_tpm2_ibm.c:405 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:494 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:532 gnutls_tpm2_ibm.c:485 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:546 gnutls_tpm2_ibm.c:502 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:555 gnutls_tpm2_ibm.c:512 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:569 gnutls_tpm2_ibm.c:523 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:54 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:226 #, c-format msgid "%s\n" msgstr "" #: gpst.c:229 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:417 #, c-format msgid "Unknown ESP %s algorithm: %s" msgstr "" #: gpst.c:477 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: gpst.c:483 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:487 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:498 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:551 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:560 oncp.c:835 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: gpst.c:627 msgid "ESP disabled" msgstr "" #: gpst.c:629 msgid "No ESP keys received" msgstr "" #: gpst.c:631 msgid "ESP support not available in this build" msgstr "" #: gpst.c:635 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:680 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:702 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:711 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:719 #, c-format msgid "Got inappropriate HTTP GET-tunnel response: %.*s\n" msgstr "" #: gpst.c:861 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" "VPN connectivity may be disabled or limited without HIP report submission.\n" "You need to provide a --csd-wrapper argument with the HIP report submission " "script.\n" msgstr "" #: gpst.c:871 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:900 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:905 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:911 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:913 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:942 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:966 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:972 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:999 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1015 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1051 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1072 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1082 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1086 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1092 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: gpst.c:1101 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1109 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1157 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1162 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1182 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1202 #, c-format msgid "Sending data packet of %d bytes\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:200 gssapi.c:256 sspi.c:191 sspi.c:249 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:211 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:224 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:229 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:237 gssapi.c:264 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:243 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:247 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:268 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:294 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:299 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:307 gssapi.c:317 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:322 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:332 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:341 sspi.c:408 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:345 sspi.c:412 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:349 sspi.c:416 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:184 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:186 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:200 http.c:1165 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "Tämä versio OpenConnectista koostettiin ilman GSSAPI-tukea\n" #: http-auth.c:240 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:243 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:256 msgid "No more authentication methods to try\n" msgstr "" #: http.c:319 msgid "No memory for allocating cookies\n" msgstr "" #: http.c:394 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "HTTP-vastauksen '%s' jäsentäminen epäonnistui\n" #: http.c:400 #, c-format msgid "Got HTTP response: %s\n" msgstr "Saatiin HTTP-vastaus: %s\n" #: http.c:408 msgid "Error processing HTTP response\n" msgstr "Virhe käsiteltäessä HTTP-vastausta\n" #: http.c:415 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "" #: http.c:435 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "" #: http.c:454 msgid "SSL certificate authentication failed\n" msgstr "" #: http.c:485 #, c-format msgid "Response body has negative size (%d)\n" msgstr "" #: http.c:496 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "" #. Now the body, if there is one #: http.c:515 #, c-format msgid "HTTP body %s (%d)\n" msgstr "" #: http.c:529 http.c:556 msgid "Error reading HTTP response body\n" msgstr "" #: http.c:542 msgid "Error fetching chunk header\n" msgstr "" #: http.c:566 msgid "Error fetching HTTP response body\n" msgstr "" #: http.c:569 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'" msgstr "" #: http.c:581 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "" #: http.c:708 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "" #: http.c:732 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "" #: http.c:760 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "" #: http.c:973 oncp.c:591 #, c-format msgid "Unexpected %d result from server\n" msgstr "" #: http.c:1021 msgid "request granted" msgstr "" #: http.c:1022 msgid "general failure" msgstr "yleinen virhe" #: http.c:1023 msgid "connection not allowed by ruleset" msgstr "" #: http.c:1024 msgid "network unreachable" msgstr "" #: http.c:1025 msgid "host unreachable" msgstr "" #: http.c:1026 msgid "connection refused by destination host" msgstr "" #: http.c:1027 msgid "TTL expired" msgstr "TTL vanheni" #: http.c:1028 msgid "command not supported / protocol error" msgstr "komento ei ole tuettu / yhteyskäytännön virhe" #: http.c:1029 msgid "address type not supported" msgstr "" #: http.c:1039 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1047 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1062 http.c:1118 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" #: http.c:1070 http.c:1125 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" #: http.c:1077 http.c:1131 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" #: http.c:1083 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1087 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1143 http.c:1150 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1156 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1163 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1170 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1176 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "" #: http.c:1191 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" #: http.c:1199 http.c:1241 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "" #: http.c:1205 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "" #: http.c:1213 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "" #: http.c:1217 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "" #: http.c:1234 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "" #: http.c:1257 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "" #: http.c:1292 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "" #: http.c:1315 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1334 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "" #: http.c:1383 msgid "Only http or socks(5) proxies supported\n" msgstr "" #: library.c:112 msgid "Cisco AnyConnect or openconnect" msgstr "Cisco AnyConnect tai openconnect" #: library.c:113 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "" #: library.c:129 msgid "Juniper Network Connect" msgstr "" #: library.c:130 msgid "Compatible with Juniper Network Connect / Pulse Secure SSL VPN" msgstr "" #: library.c:148 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:149 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:211 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "Tuntematon VPN-protokolla '%s'\n" #: library.c:233 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "" #: library.c:656 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "" #: library.c:662 msgid "Only https:// permitted for server URL\n" msgstr "" #: library.c:1056 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "" #: library.c:1085 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" #: library.c:1146 msgid "No form handler; cannot authenticate.\n" msgstr "" #: main.c:340 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "CommandLineToArgvW() epäonnistui: %s\n" #: main.c:353 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:388 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "ReadConsole() epäonnistui: %s\n" #: main.c:401 #, c-format msgid "fgetws() failed: %s\n" msgstr "fgetws() epäonnistui: %s\n" #: main.c:416 main.c:429 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:423 main.c:689 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "" #: main.c:584 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:593 #, c-format msgid "Using OpenSSL. Features present:" msgstr "" #: main.c:595 #, c-format msgid "Using GnuTLS. Features present:" msgstr "" #: main.c:608 msgid "OpenSSL ENGINE not present" msgstr "" #: main.c:647 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" #: main.c:657 #, c-format msgid "Supported protocols:" msgstr "Tuetut protokollat:" #: main.c:659 main.c:675 msgid " (default)" msgstr " (oletus)" #: main.c:672 msgid "Set VPN protocol" msgstr "" #: main.c:713 msgid "fgets (stdin)" msgstr "" #: main.c:754 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:760 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:780 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "" #: main.c:793 #, c-format msgid "Usage: openconnect [options] \n" msgstr "" #: main.c:794 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" #: main.c:796 msgid "Read options from config file" msgstr "" #: main.c:797 msgid "Report version number" msgstr "" #: main.c:798 msgid "Display help text" msgstr "" #: main.c:802 msgid "Authentication" msgstr "" #: main.c:803 msgid "Set login username" msgstr "" #: main.c:804 msgid "Disable password/SecurID authentication" msgstr "" #: main.c:805 msgid "Do not expect user input; exit if it is required" msgstr "" #: main.c:806 msgid "Read password from standard input" msgstr "" #: main.c:807 msgid "Choose authentication login selection" msgstr "" #: main.c:808 msgid "Provide authentication form responses" msgstr "" #: main.c:809 msgid "Use SSL client certificate CERT" msgstr "" #: main.c:810 msgid "Use SSL private key file KEY" msgstr "" #: main.c:811 msgid "Warn when certificate lifetime < DAYS" msgstr "" #: main.c:812 msgid "Set login usergroup" msgstr "" #: main.c:813 msgid "Set key passphrase or TPM SRK PIN" msgstr "" #: main.c:814 msgid "Key passphrase is fsid of file system" msgstr "" #: main.c:815 msgid "Software token type: rsa, totp or hotp" msgstr "" #: main.c:816 msgid "Software token secret" msgstr "Ohjelmistopohjaisen tokenin salaisuus" #: main.c:818 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" #: main.c:821 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:824 msgid "Server validation" msgstr "" #: main.c:825 msgid "Server's certificate SHA1 fingerprint" msgstr "" #: main.c:826 msgid "Do not require server SSL cert to be valid" msgstr "" #: main.c:827 msgid "Disable default system certificate authorities" msgstr "" #: main.c:828 msgid "Cert file for server verification" msgstr "" #: main.c:830 msgid "Internet connectivity" msgstr "" #: main.c:831 msgid "Set proxy server" msgstr "" #: main.c:832 msgid "Set proxy authentication methods" msgstr "" #: main.c:833 msgid "Disable proxy" msgstr "" #: main.c:834 msgid "Use libproxy to automatically configure proxy" msgstr "" #: main.c:836 msgid "(NOTE: libproxy disabled in this build)" msgstr "" #: main.c:838 msgid "Connection retry timeout in seconds" msgstr "" #: main.c:839 msgid "Use IP when connecting to HOST" msgstr "" #: main.c:840 msgid "copy TOS / TCLASS when using DTLS" msgstr "" #: main.c:841 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:843 msgid "Authentication (two-phase)" msgstr "" #: main.c:844 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:845 msgid "Read cookie from standard input" msgstr "" #: main.c:846 msgid "Authenticate only and print login info" msgstr "" #: main.c:847 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:848 msgid "Print cookie before connecting" msgstr "" #: main.c:851 msgid "Process control" msgstr "" #: main.c:852 msgid "Continue in background after startup" msgstr "" #: main.c:853 msgid "Write the daemon's PID to this file" msgstr "" #: main.c:854 msgid "Drop privileges after connecting" msgstr "" #: main.c:857 msgid "Logging (two-phase)" msgstr "" #: main.c:859 msgid "Use syslog for progress messages" msgstr "" #: main.c:861 msgid "More output" msgstr "" #: main.c:862 msgid "Less output" msgstr "" #: main.c:863 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "" #: main.c:864 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:866 msgid "VPN configuration script" msgstr "" #: main.c:867 msgid "Use IFNAME for tunnel interface" msgstr "" #: main.c:868 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" #: main.c:869 msgid "default" msgstr "oletus" #: main.c:871 msgid "Pass traffic to 'script' program, not tun" msgstr "" #: main.c:874 msgid "Tunnel control" msgstr "" #: main.c:875 msgid "Do not ask for IPv6 connectivity" msgstr "" #: main.c:876 msgid "XML config file" msgstr "XML-asetustiedosto" #: main.c:877 msgid "Request MTU from server (legacy servers only)" msgstr "" #: main.c:878 msgid "Indicate path MTU to/from server" msgstr "" #: main.c:879 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:880 msgid "Disable all compression" msgstr "" #: main.c:881 msgid "Set minimum Dead Peer Detection interval" msgstr "" #: main.c:882 msgid "Require perfect forward secrecy" msgstr "Vaadi perfect forward secrecy" #: main.c:883 msgid "Disable DTLS and ESP" msgstr "" #: main.c:884 msgid "OpenSSL ciphers to support for DTLS" msgstr "" #: main.c:885 msgid "Set packet queue limit to LEN pkts" msgstr "" #: main.c:887 msgid "Local system information" msgstr "" #: main.c:888 msgid "HTTP header User-Agent: field" msgstr "" #: main.c:889 msgid "Local hostname to advertise to server" msgstr "" #: main.c:890 msgid "OS type (linux,linux-64,win,...) to report" msgstr "" #: main.c:891 msgid "reported version string during authentication" msgstr "" #: main.c:892 msgid "default:" msgstr "" #: main.c:895 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:896 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:897 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:900 msgid "Server bugs" msgstr "" #: main.c:901 msgid "Disable HTTP connection re-use" msgstr "" #: main.c:902 msgid "Do not attempt XML POST authentication" msgstr "" #: main.c:924 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:997 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "" #: main.c:1037 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "" #: main.c:1047 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "" #: main.c:1051 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "" #: main.c:1076 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "" #: main.c:1086 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "" #: main.c:1130 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "" #: main.c:1140 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:1147 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:1157 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "" #: main.c:1215 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" #: main.c:1223 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "" #: main.c:1239 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1260 #, c-format msgid "Missing colon in resolve option\n" msgstr "" #: main.c:1265 #, c-format msgid "Failed to allocate memory\n" msgstr "" #: main.c:1349 main.c:1358 #, c-format msgid "MTU %d too small\n" msgstr "" #: main.c:1388 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" #: main.c:1394 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" #: main.c:1411 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "" #: main.c:1425 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect-versio %s\n" #: main.c:1463 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "" #: main.c:1473 #, c-format msgid "Invalid OS identity \"%s\"\n" msgstr "" #: main.c:1506 #, c-format msgid "Too many arguments on command line\n" msgstr "" #: main.c:1509 #, c-format msgid "No server specified\n" msgstr "Palvelinta ei ole määritetty\n" #: main.c:1525 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" #: main.c:1555 #, c-format msgid "Error opening cmd pipe\n" msgstr "" #: main.c:1588 #, c-format msgid "Failed to obtain WebVPN cookie\n" msgstr "" #: main.c:1609 #, c-format msgid "Creating SSL connection failed\n" msgstr "SSL-yhteyden luominen epäonnistui\n" #: main.c:1625 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:1633 #, c-format msgid "Connected as %s%s%s, using SSL%s%s, with %s%s%s %s\n" msgstr "" #: main.c:1639 msgid "disabled" msgstr "" #: main.c:1639 msgid "in progress" msgstr "" #: main.c:1643 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" #: main.c:1645 msgid "See http://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "" #: main.c:1658 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "" #: main.c:1670 #, c-format msgid "Continuing in background; pid %d\n" msgstr "" #: main.c:1687 msgid "User requested reconnect\n" msgstr "" #: main.c:1695 msgid "Cookie was rejected on reconnection; exiting.\n" msgstr "" #: main.c:1699 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:1703 msgid "User cancelled (SIGINT/SIGTERM); exiting.\n" msgstr "" #: main.c:1707 msgid "User detached from session (SIGHUP); exiting.\n" msgstr "" #: main.c:1711 msgid "Unknown error; exiting.\n" msgstr "Tuntematon virhe, poistutaan.\n" #: main.c:1730 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "" #: main.c:1738 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "" #: main.c:1797 #, c-format msgid "Server SSL certificate didn't match: %s\n" msgstr "" #: main.c:1816 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Varmenne VPN-palvelimelta \"%s\" ei läpäissyt vahvistusta.\n" "Syy: %s\n" #: main.c:1819 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" #: main.c:1820 #, c-format msgid " --servercert %s\n" msgstr "" #: main.c:1825 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" #: main.c:1826 main.c:1844 msgid "no" msgstr "ei" #: main.c:1826 main.c:1832 msgid "yes" msgstr "kyllä" #: main.c:1853 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:1887 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:1890 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "" #: main.c:1911 msgid "User input required in non-interactive mode\n" msgstr "" #: main.c:2149 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:2157 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:2203 main.c:2224 #, c-format msgid "Soft token string is invalid\n" msgstr "" #: main.c:2206 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Tiedostoa ~/.stokenrc ei voi avata\n" #: main.c:2209 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "" #: main.c:2212 #, c-format msgid "General failure in libstoken\n" msgstr "" #: main.c:2227 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "" #: main.c:2230 #, c-format msgid "General failure in liboath\n" msgstr "" #: main.c:2241 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2244 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2247 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: mainloop.c:127 #, c-format msgid "Set up tun script failed\n" msgstr "" #: mainloop.c:134 #, c-format msgid "Set up tun device failed\n" msgstr "" #: mainloop.c:265 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:273 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "" #: mainloop.c:294 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: ntlm.c:87 sspi.c:114 sspi.c:197 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:113 sspi.c:48 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:246 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:265 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:268 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:978 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:982 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: oath.c:97 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:105 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:208 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:353 oath.c:378 stoken.c:272 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "" #: oath.c:357 oath.c:381 stoken.c:277 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "" #: oath.c:362 oath.c:385 stoken.c:282 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" #: oath.c:419 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:565 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:56 #, c-format msgid "Invalid cookie '%s'\n" msgstr "Virheellinen eväste '%s'\n" #: oncp.c:160 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:166 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:175 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:186 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:201 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:210 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:219 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:232 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:254 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:274 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:297 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:316 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:327 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:335 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:342 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:350 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:358 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:366 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:374 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:383 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:395 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:473 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:490 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:496 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:512 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:577 oncp.c:609 oncp.c:747 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:618 oncp.c:783 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:631 oncp.c:666 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:636 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:643 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:670 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:683 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:692 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "" #: oncp.c:698 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "" #: oncp.c:705 msgid "Failed to read continuation record length\n" msgstr "" #: oncp.c:711 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "" #: oncp.c:720 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "" #: oncp.c:726 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "" #: oncp.c:767 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:776 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:829 msgid "new incoming" msgstr "uusi saapuva" #: oncp.c:830 msgid "new outgoing" msgstr "uusi lähtevä" #: oncp.c:855 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:864 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:868 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:874 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:969 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:972 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:991 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1053 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1058 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1073 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1134 msgid "Sent ESP enable control packet\n" msgstr "" #: oncp.c:1268 msgid "Logout successful.\n" msgstr "Uloskirjautuminen onnistui.\n" #: openconnect-internal.h:1119 openconnect-internal.h:1127 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "" #: openssl-dtls.c:365 msgid "Initialise DTLSv1 CTX failed\n" msgstr "" #: openssl-dtls.c:378 msgid "Set DTLS CTX version failed\n" msgstr "" #: openssl-dtls.c:395 msgid "Failed to generate DTLS key\n" msgstr "" #: openssl-dtls.c:413 msgid "Set DTLS cipher list failed\n" msgstr "" #: openssl-dtls.c:439 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:460 #, c-format msgid "" "SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: openssl-dtls.c:493 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:566 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s.\n" msgstr "" #: openssl-dtls.c:603 msgid "Your OpenSSL is older than the one you built against, so DTLS may fail!" msgstr "" #: openssl-dtls.c:654 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" #: openssl-dtls.c:661 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "" #: openssl-esp.c:87 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:101 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:157 msgid "Failed to generate random keys for ESP:\n" msgstr "" #: openssl-esp.c:202 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:210 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:241 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:43 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:49 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "" #: openssl-pkcs11.c:269 msgid "PIN locked\n" msgstr "PIN lukittu\n" #: openssl-pkcs11.c:272 msgid "PIN expired\n" msgstr "PIN vanhentunut\n" #: openssl-pkcs11.c:275 msgid "Another user already logged in\n" msgstr "Toinen käyttäjä on jo kirjautuneena\n" #: openssl-pkcs11.c:279 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:286 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:300 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:306 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:342 openssl-pkcs11.c:565 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:349 openssl-pkcs11.c:575 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:383 openssl-pkcs11.c:617 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:393 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "" #: openssl-pkcs11.c:401 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:412 openssl.c:713 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl-pkcs11.c:458 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:464 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:497 msgid "Certificate has no public key\n" msgstr "Varmenteella ei ole julkista avainta\n" #: openssl-pkcs11.c:503 openssl-pkcs11.c:526 msgid "Certificate does not match private key\n" msgstr "Varmenne ei vastaa yksityistä avainta\n" #: openssl-pkcs11.c:506 msgid "Checking EC key matches cert\n" msgstr "" #: openssl-pkcs11.c:510 msgid "Failed to allocate signature buffer\n" msgstr "" #: openssl-pkcs11.c:520 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" #: openssl-pkcs11.c:638 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "" #: openssl-pkcs11.c:649 msgid "Failed to instantiated private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:678 msgid "Add key from PKCS#11 failed\n" msgstr "" #: openssl-pkcs11.c:710 openssl-pkcs11.c:716 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:147 msgid "Failed to write to SSL socket\n" msgstr "" #: openssl.c:197 openssl.c:263 msgid "Failed to read from SSL socket\n" msgstr "" #: openssl.c:292 #, c-format msgid "SSL read error %d (server probably closed connection); reconnecting.\n" msgstr "" #: openssl.c:317 #, c-format msgid "SSL_write failed: %d\n" msgstr "SSL_write epäonnistui: %d\n" #: openssl.c:389 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:465 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "" #: openssl.c:498 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "" #: openssl.c:548 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:563 msgid "PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:572 msgid "PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:577 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:600 msgid "Can't load TPM engine.\n" msgstr "" #: openssl.c:606 msgid "Failed to init TPM engine\n" msgstr "" #: openssl.c:616 msgid "Failed to set TPM SRK password\n" msgstr "" #: openssl.c:630 msgid "Failed to load TPM private key\n" msgstr "" #: openssl.c:636 msgid "Add key from TPM failed\n" msgstr "" #: openssl.c:687 openssl.c:835 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "" #: openssl.c:697 msgid "Loading certificate failed\n" msgstr "" #: openssl.c:735 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:748 msgid "PEM file" msgstr "PEM-tiedosto" #: openssl.c:777 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "" #: openssl.c:802 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:808 msgid "Loading private key failed (see above errors)\n" msgstr "" #: openssl.c:858 msgid "Failed to load X509 certificate from keystore\n" msgstr "" #: openssl.c:864 msgid "Failed to use X509 certificate from keystore\n" msgstr "" #: openssl.c:896 msgid "Failed to use private key from keystore\n" msgstr "" #: openssl.c:912 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "" #: openssl.c:936 openssl.c:951 openssl.c:972 openssl.c:1038 msgid "Loading private key failed\n" msgstr "" #: openssl.c:1032 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1049 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "" #: openssl.c:1203 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "" #: openssl.c:1210 #, c-format msgid "No match for altname '%s'\n" msgstr "" #: openssl.c:1224 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" #: openssl.c:1235 openssl.c:1381 #, c-format msgid "Matched %s address '%s'\n" msgstr "" #: openssl.c:1242 #, c-format msgid "No match for %s address '%s'\n" msgstr "" #: openssl.c:1284 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "" #: openssl.c:1289 #, c-format msgid "Matched URI '%s'\n" msgstr "" #: openssl.c:1300 #, c-format msgid "No match for URI '%s'\n" msgstr "" #: openssl.c:1315 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" #: openssl.c:1323 msgid "No subject name in peer cert!\n" msgstr "" #: openssl.c:1343 msgid "Failed to parse subject name in peer cert\n" msgstr "" #: openssl.c:1350 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "" #: openssl.c:1355 openssl.c:1389 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "" #: openssl.c:1451 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "" #: openssl.c:1589 msgid "Error in client cert notAfter field\n" msgstr "" #: openssl.c:1602 msgid "" msgstr "" #: openssl.c:1655 msgid "Create TLSv1 CTX failed\n" msgstr "" #: openssl.c:1674 msgid "SSL certificate and key do not match\n" msgstr "" #: openssl.c:1719 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "" #: openssl.c:1752 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "" #: openssl.c:1812 msgid "SSL connection failure\n" msgstr "SSL-yhteys epäonnistui\n" #: openssl.c:1973 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: script.c:130 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "" #: script.c:134 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "" #: script.c:507 script.c:555 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "" #: script.c:562 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "" #: script.c:570 #, c-format msgid "Script '%s' returned error %d\n" msgstr "" #: ssl.c:108 msgid "Socket connect cancelled\n" msgstr "" #: ssl.c:217 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "" #: ssl.c:221 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "" #: ssl.c:289 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "" #: ssl.c:317 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "" #: ssl.c:326 ssl.c:451 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:341 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "" #: ssl.c:342 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "" #: ssl.c:362 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "" #: ssl.c:374 msgid "Failed to allocate sockaddr storage\n" msgstr "" #: ssl.c:416 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "" #: ssl.c:434 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:446 #, c-format msgid "Failed to connect to host %s\n" msgstr "" #: ssl.c:465 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:536 #, c-format msgid "statvfs: %s\n" msgstr "" #: ssl.c:564 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:575 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:603 #, c-format msgid "statfs: %s\n" msgstr "" #: ssl.c:694 msgid "No error" msgstr "Ei virhettä" #: ssl.c:695 msgid "Keystore locked" msgstr "" #: ssl.c:696 msgid "Keystore uninitialized" msgstr "" #: ssl.c:697 msgid "System error" msgstr "Järjestelmävirhe" #: ssl.c:698 msgid "Protocol error" msgstr "Protokollavirhe" #: ssl.c:699 msgid "Permission denied" msgstr "Käyttö estetty" #: ssl.c:700 msgid "Key not found" msgstr "Avainta ei löytynyt" #: ssl.c:701 msgid "Value corrupted" msgstr "" #: ssl.c:702 msgid "Undefined action" msgstr "" #: ssl.c:706 msgid "Wrong password" msgstr "Väärä salasana" #: ssl.c:707 msgid "Unknown error" msgstr "Tuntematon virhe" #: ssl.c:896 #, c-format msgid "openconnect_fopen_utf8() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:931 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:950 msgid "Open UDP socket" msgstr "" #: ssl.c:981 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:989 msgid "Bind UDP socket" msgstr "" #: ssl.c:996 msgid "Connect UDP socket\n" msgstr "" #: ssl.c:1034 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:1038 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "" #: sspi.c:203 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:216 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:221 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:229 sspi.c:257 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:235 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:239 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:261 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:277 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:313 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "EncryptMessage() epäonnistui: %lx\n" #: sspi.c:325 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:350 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:355 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:363 sspi.c:373 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:378 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:394 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:399 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:77 msgid "Enter credentials to unlock software token." msgstr "" #: stoken.c:82 msgid "Device ID:" msgstr "Laitetunniste:" #: stoken.c:89 msgid "Password:" msgstr "Salasana:" #: stoken.c:118 msgid "User bypassed soft token.\n" msgstr "" #: stoken.c:124 stoken.c:209 msgid "All fields are required; try again.\n" msgstr "Kaikki kentät vaaditaan, yritä uudelleen.\n" #: stoken.c:134 stoken.c:301 msgid "General failure in libstoken.\n" msgstr "" #: stoken.c:138 msgid "Incorrect device ID or password; try again.\n" msgstr "" #: stoken.c:142 msgid "Soft token init was successful.\n" msgstr "" #: stoken.c:185 msgid "Enter software token PIN." msgstr "Anna ohjelmistopohjaisen tokenin PIN." #: stoken.c:189 msgid "PIN:" msgstr "PIN:" #: stoken.c:216 msgid "Invalid PIN format; try again.\n" msgstr "Virheellinen PIN-muoto, yritä uudelleen.\n" #: stoken.c:296 msgid "Generating RSA token code\n" msgstr "Luodaan RSA-tokenin koodia\n" #: tun-win32.c:76 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:139 #, c-format msgid "Ignoring non-matching TAP interface \"%s\"\n" msgstr "" #: tun-win32.c:154 msgid "No Windows-TAP adapters found. Is the driver installed?\n" msgstr "" #: tun-win32.c:186 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" #: tun-win32.c:200 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "" #: tun-win32.c:231 #, c-format msgid "Failed to open %s\n" msgstr "Ei voitu avata %s\n" #: tun-win32.c:236 #, c-format msgid "Opened tun device %s\n" msgstr "" #: tun-win32.c:244 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:250 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:271 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:283 tun-win32.c:406 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:316 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:321 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:335 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:358 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:368 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:371 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:423 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "" #: tun.c:92 msgid "Can't push IP" msgstr "" #: tun.c:102 msgid "Can't set ifname" msgstr "" #: tun.c:109 #, c-format msgid "Can't open %s: %s" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "" #: tun.c:139 msgid "open /dev/tun" msgstr "" #: tun.c:145 msgid "Failed to create new tun" msgstr "" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "" #: tun.c:205 msgid "open net" msgstr "" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "" #: tun.c:479 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:484 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:488 msgid "setpgid" msgstr "" #: tun.c:493 msgid "execl" msgstr "" #: tun.c:498 msgid "(script)" msgstr "" #: tun.c:566 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "" #: xml.c:45 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: xml.c:52 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: xml.c:62 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: xml.c:70 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: xml.c:124 xml.c:149 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "" #: xml.c:131 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "" #: xml.c:139 #, c-format msgid "XML config file SHA1: %s\n" msgstr "" #: xml.c:147 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "" #: xml.c:184 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "" #: xml.c:194 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "" #: xml.c:208 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:174 msgid "select applet command" msgstr "" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:274 msgid "unlock command" msgstr "" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:412 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:619 msgid "calculate command" msgstr "" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-8.05/tun.c0000664000076400007640000003430313025070326016510 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #if defined(__APPLE__) && defined(HAVE_NET_UTUN_H) #include #include #include #endif #include "openconnect-internal.h" /* * If an if_tun.h include file was found anywhere (by the Makefile), it's * included. Else, we end up assuming that we have BSD-style devices such * as /dev/tun0 etc. */ #ifdef IF_TUN_HDR #include IF_TUN_HDR #endif /* * The OS X tun/tap driver doesn't provide a header file; you're expected * to define this for yourself. */ #ifdef __APPLE__ #define TUNSIFHEAD _IOW('t', 96, int) #endif /* * OpenBSD always puts the protocol family prefix onto packets. Other * systems let us enable that with the TUNSIFHEAD ioctl, and some of them * (e.g. FreeBSD) _need_ it otherwise they'll interpret IPv6 packets as IPv4. */ #if defined(__OpenBSD__) || defined(TUNSIFHEAD) #define TUN_HAS_AF_PREFIX 1 #endif #ifdef __sun__ #include #include #ifndef TUNNEWPPA #error "Install TAP driver from http://www.whiteboard.ne.jp/~admin2/tuntap/" #endif static int link_proto(struct openconnect_info *vpninfo, int unit_nr, const char *devname, uint64_t flags) { int ip_fd, mux_id, tun2_fd; struct lifreq ifr; tun2_fd = open("/dev/tun", O_RDWR); if (tun2_fd < 0) { vpn_perror(vpninfo, _("Could not open /dev/tun for plumbing")); return -EIO; } if (ioctl(tun2_fd, I_PUSH, "ip") < 0) { vpn_perror(vpninfo, _("Can't push IP")); close(tun2_fd); return -EIO; } sprintf(ifr.lifr_name, "tun%d", unit_nr); ifr.lifr_ppa = unit_nr; ifr.lifr_flags = flags; if (ioctl(tun2_fd, SIOCSLIFNAME, &ifr) < 0) { vpn_perror(vpninfo, _("Can't set ifname")); close(tun2_fd); return -1; } ip_fd = open(devname, O_RDWR); if (ip_fd < 0) { vpn_progress(vpninfo, PRG_ERR, _("Can't open %s: %s"), devname, strerror(errno)); close(tun2_fd); return -1; } mux_id = ioctl(ip_fd, I_LINK, tun2_fd); if (mux_id < 0) { vpn_progress(vpninfo, PRG_ERR, _("Can't plumb %s for IPv%d: %s\n"), ifr.lifr_name, (flags == IFF_IPV4) ? 4 : 6, strerror(errno)); close(tun2_fd); close(ip_fd); return -1; } close(tun2_fd); return ip_fd; } intptr_t os_setup_tun(struct openconnect_info *vpninfo) { int tun_fd = -1; static char tun_name[80]; int unit_nr; tun_fd = open("/dev/tun", O_RDWR); if (tun_fd < 0) { vpn_perror(vpninfo, _("open /dev/tun")); return -EIO; } unit_nr = ioctl(tun_fd, TUNNEWPPA, -1); if (unit_nr < 0) { vpn_perror(vpninfo, _("Failed to create new tun")); close(tun_fd); return -EIO; } if (ioctl(tun_fd, I_SRDOPT, RMSGD) < 0) { vpn_perror(vpninfo, _("Failed to put tun file descriptor into message-discard mode")); close(tun_fd); return -EIO; } sprintf(tun_name, "tun%d", unit_nr); vpninfo->ifname = strdup(tun_name); vpninfo->ip_fd = link_proto(vpninfo, unit_nr, "/dev/udp", IFF_IPV4); if (vpninfo->ip_fd < 0) { close(tun_fd); return -EIO; } if (vpninfo->ip_info.addr6 || vpninfo->ip_info.netmask6) { vpninfo->ip6_fd = link_proto(vpninfo, unit_nr, "/dev/udp6", IFF_IPV6); if (vpninfo->ip6_fd < 0) { close(tun_fd); close(vpninfo->ip_fd); vpninfo->ip_fd = -1; return -EIO; } } else vpninfo->ip6_fd = -1; return tun_fd; } #elif defined(__native_client__) intptr_t os_setup_tun(struct openconnect_info *vpninfo) { vpn_progress(vpninfo, PRG_ERR, _("tun device is unsupported on this platform\n")); return -EOPNOTSUPP; } #else /* !__sun__ && !__native_client__ */ /* MTU setting code for both Linux and BSD systems */ static void ifreq_set_ifname(struct openconnect_info *vpninfo, struct ifreq *ifr) { char *ifname = openconnect_utf8_to_legacy(vpninfo, vpninfo->ifname); strncpy(ifr->ifr_name, ifname, sizeof(ifr->ifr_name) - 1); if (ifname != vpninfo->ifname) free(ifname); } static int set_tun_mtu(struct openconnect_info *vpninfo) { struct ifreq ifr; int net_fd; net_fd = socket(PF_INET, SOCK_DGRAM, 0); if (net_fd < 0) { vpn_perror(vpninfo, _("open net")); return -EINVAL; } memset(&ifr, 0, sizeof(ifr)); ifreq_set_ifname(vpninfo, &ifr); ifr.ifr_mtu = vpninfo->ip_info.mtu; if (ioctl(net_fd, SIOCSIFMTU, &ifr) < 0) vpn_perror(vpninfo, _("SIOCSIFMTU")); close(net_fd); return 0; } #ifdef IFF_TUN /* Linux */ intptr_t os_setup_tun(struct openconnect_info *vpninfo) { int tun_fd = -1; struct ifreq ifr; int tunerr; tun_fd = open("/dev/net/tun", O_RDWR); if (tun_fd < 0) { /* Android has /dev/tun instead of /dev/net/tun Since other systems might have too, just try it as a fallback instead of using ifdef __ANDROID__ */ tunerr = errno; tun_fd = open("/dev/tun", O_RDWR); } if (tun_fd < 0) { /* If the error on /dev/tun is ENOENT, that's boring. Use the error we got on /dev/net/tun instead */ if (errno != ENOENT) tunerr = errno; vpn_progress(vpninfo, PRG_ERR, _("Failed to open tun device: %s\n"), strerror(tunerr)); return -EIO; } memset(&ifr, 0, sizeof(ifr)); ifr.ifr_flags = IFF_TUN | IFF_NO_PI; if (vpninfo->ifname) ifreq_set_ifname(vpninfo, &ifr); if (ioctl(tun_fd, TUNSETIFF, (void *) &ifr) < 0) { int err = errno; vpn_progress(vpninfo, PRG_ERR, _("Failed to bind local tun device (TUNSETIFF): %s\n"), strerror(err)); if (err == EPERM) { vpn_progress(vpninfo, PRG_ERR, _("To configure local networking, openconnect must be running as root\n" "See http://www.infradead.org/openconnect/nonroot.html for more information\n")); } close(tun_fd); return -EIO; } if (!vpninfo->ifname) vpninfo->ifname = strdup(ifr.ifr_name); /* Ancient vpnc-scripts might not get this right */ set_tun_mtu(vpninfo); return tun_fd; } #else /* BSD et al, including OS X */ #ifdef SIOCIFCREATE static int bsd_open_tun(char *tun_name) { int fd; int s; struct ifreq ifr; fd = open(tun_name, O_RDWR); if (fd == -1) { s = socket(AF_INET, SOCK_DGRAM, 0); if (s < 0) return -1; memset(&ifr, 0, sizeof(ifr)); strncpy(ifr.ifr_name, tun_name + 5, sizeof(ifr.ifr_name) - 1); if (!ioctl(s, SIOCIFCREATE, &ifr)) fd = open(tun_name, O_RDWR); close(s); } return fd; } #else #define bsd_open_tun(tun_name) open(tun_name, O_RDWR) #endif intptr_t os_setup_tun(struct openconnect_info *vpninfo) { static char tun_name[80]; int unit_nr = 0; int tun_fd = -1; #if defined(__APPLE__) && defined (HAVE_NET_UTUN_H) /* OS X (since 10.6) can do this as well as the traditional BSD devices supported via tuntaposx. */ struct sockaddr_ctl sc; struct ctl_info ci; if (vpninfo->ifname) { char *endp = NULL; if (!strncmp(vpninfo->ifname, "tun", 3)) goto do_bsdtun; if (strncmp(vpninfo->ifname, "utun", 4) || (unit_nr = strtol(vpninfo->ifname + 4, &endp, 10), !endp) || (unit_nr && vpninfo->ifname[4] == '0') || *endp) { vpn_progress(vpninfo, PRG_ERR, _("Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n"), vpninfo->ifname); return -EINVAL; } } tun_fd = socket(PF_SYSTEM, SOCK_DGRAM, SYSPROTO_CONTROL); if (tun_fd < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to open SYSPROTO_CONTROL socket: %s\n"), strerror(errno)); goto utun_fail; } snprintf(ci.ctl_name, sizeof(ci.ctl_name), UTUN_CONTROL_NAME); if (ioctl(tun_fd, CTLIOCGINFO, &ci) == -1) { vpn_progress(vpninfo, PRG_ERR, _("Failed to query utun control id: %s\n"), strerror(errno)); close(tun_fd); goto utun_fail; } sc.sc_id = ci.ctl_id; sc.sc_len = sizeof(sc); sc.sc_family = AF_SYSTEM; sc.ss_sysaddr = AF_SYS_CONTROL; do { sc.sc_unit = unit_nr + 1; if (!connect(tun_fd, (struct sockaddr * )&sc, sizeof(sc))) { if (!vpninfo->ifname && asprintf(&vpninfo->ifname, "utun%d", unit_nr) == -1) { vpn_progress(vpninfo, PRG_ERR, _("Failed to allocate utun device name\n")); close(tun_fd); goto utun_fail; } return tun_fd; } unit_nr++; } while (sc.sc_unit < 255 && !vpninfo->ifname); vpn_progress(vpninfo, PRG_ERR, _("Failed to connect utun unit: %s\n"), strerror(errno)); close(tun_fd); utun_fail: /* If we were explicitly asked for a utun device, fail. Else try tuntaposx */ if (vpninfo->ifname) return -EIO; tun_fd = -1; do_bsdtun: #endif /* __APPLE__ && HAVE_NET_UTUN_H */ if (vpninfo->ifname) { char *endp = NULL; if (strncmp(vpninfo->ifname, "tun", 3) || ((void)strtol(vpninfo->ifname + 3, &endp, 10), !endp) || *endp) { vpn_progress(vpninfo, PRG_ERR, _("Invalid interface name '%s'; must match 'tun%%d'\n"), vpninfo->ifname); return -EINVAL; } snprintf(tun_name, sizeof(tun_name), "/dev/%s", vpninfo->ifname); tun_fd = bsd_open_tun(tun_name); if (tun_fd < 0) { int err = errno; vpn_progress(vpninfo, PRG_ERR, _("Cannot open '%s': %s\n"), tun_name, strerror(err)); return -EINVAL; } } #ifdef HAVE_FDEVNAME_R /* We don't have to iterate over the possible devices; on FreeBSD at least, opening /dev/tun will give us the next available device. */ if (tun_fd < 0) { tun_fd = open("/dev/tun", O_RDWR); if (tun_fd >= 0) { if (!fdevname_r(tun_fd, tun_name, sizeof(tun_name)) || strncmp(tun_name, "tun", 3)) { close(tun_fd); tun_fd = -1; } else vpninfo->ifname = strdup(tun_name); } } #endif if (tun_fd < 0) { for (unit_nr = 0; unit_nr < 255; unit_nr++) { sprintf(tun_name, "/dev/tun%d", unit_nr); tun_fd = bsd_open_tun(tun_name); if (tun_fd >= 0) break; } if (tun_fd < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to open tun device: %s\n"), strerror(errno)); return -EIO; } vpninfo->ifname = strdup(tun_name + 5); } #ifdef TUNSIFHEAD unit_nr = 1; if (ioctl(tun_fd, TUNSIFHEAD, &unit_nr) < 0) { vpn_perror(vpninfo, _("TUNSIFHEAD")); close(tun_fd); return -EIO; } #endif /* Ancient vpnc-scripts might not get this right */ set_tun_mtu(vpninfo); return tun_fd; } #endif /* !IFF_TUN (i.e. BSD) */ #endif /* !__sun__ */ int openconnect_setup_tun_fd(struct openconnect_info *vpninfo, int tun_fd) { set_fd_cloexec(tun_fd); if (vpninfo->tun_fd != -1) unmonitor_read_fd(vpninfo, tun); vpninfo->tun_fd = tun_fd; monitor_fd_new(vpninfo, tun); monitor_read_fd(vpninfo, tun); set_sock_nonblock(tun_fd); return 0; } int openconnect_setup_tun_script(struct openconnect_info *vpninfo, const char *tun_script) { pid_t child; int fds[2]; STRDUP(vpninfo->vpnc_script, tun_script); vpninfo->script_tun = 1; prepare_script_env(vpninfo); if (socketpair(AF_UNIX, SOCK_DGRAM, 0, fds)) { vpn_progress(vpninfo, PRG_ERR, _("socketpair failed: %s\n"), strerror(errno)); return -EIO; } child = fork(); if (child < 0) { vpn_progress(vpninfo, PRG_ERR, _("fork failed: %s\n"), strerror(errno)); return -EIO; } else if (!child) { if (setpgid(0, getpid()) < 0) perror(_("setpgid")); close(fds[0]); script_setenv_int(vpninfo, "VPNFD", fds[1]); apply_script_env(vpninfo->script_env); execl("/bin/sh", "/bin/sh", "-c", vpninfo->vpnc_script, NULL); perror(_("execl")); exit(1); } close(fds[1]); vpninfo->script_tun = child; vpninfo->ifname = strdup(_("(script)")); return openconnect_setup_tun_fd(vpninfo, fds[0]); } int os_read_tun(struct openconnect_info *vpninfo, struct pkt *pkt) { int prefix_size = 0; int len; #ifdef TUN_HAS_AF_PREFIX if (!vpninfo->script_tun) prefix_size = sizeof(int); #endif /* Sanity. Just non-blocking reads on a select()able file descriptor... */ len = read(vpninfo->tun_fd, pkt->data - prefix_size, pkt->len + prefix_size); if (len <= prefix_size) return -1; pkt->len = len - prefix_size; return 0; } int os_write_tun(struct openconnect_info *vpninfo, struct pkt *pkt) { unsigned char *data = pkt->data; int len = pkt->len; #ifdef TUN_HAS_AF_PREFIX if (!vpninfo->script_tun) { struct ip *iph = (void *)data; int type; if (iph->ip_v == 6) type = AF_INET6; else if (iph->ip_v == 4) type = AF_INET; else { static int complained = 0; if (!complained) { complained = 1; vpn_progress(vpninfo, PRG_ERR, _("Unknown packet (len %d) received: %02x %02x %02x %02x...\n"), len, data[0], data[1], data[2], data[3]); } return 0; } data -= sizeof(int); len += sizeof(int); *(int *)data = htonl(type); } #endif if (write(vpninfo->tun_fd, data, len) < 0) { /* Handle death of "script" socket */ if (vpninfo->script_tun && errno == ENOTCONN) { vpninfo->quit_reason = "Client connection terminated"; return -1; } /* The tun device in the Linux kernel returns -ENOMEM when * the queue is full, so theoretically we could check for * that and retry too. But it doesn't let us poll() for * the no-longer-full situation, so let's not bother. */ if (errno == ENOBUFS || errno == EAGAIN || errno == EWOULDBLOCK) { monitor_write_fd(vpninfo, tun); return -1; } vpn_progress(vpninfo, PRG_ERR, _("Failed to write incoming packet: %s\n"), strerror(errno)); } return 0; } void os_shutdown_tun(struct openconnect_info *vpninfo) { if (vpninfo->script_tun) { /* nuke the whole process group */ kill(-vpninfo->script_tun, SIGHUP); } else { script_config_tun(vpninfo, "disconnect"); #ifdef __sun__ close(vpninfo->ip_fd); vpninfo->ip_fd = -1; if (vpninfo->ip6_fd != -1) { close(vpninfo->ip6_fd); vpninfo->ip6_fd = -1; } #endif } if (vpninfo->vpnc_script) close(vpninfo->tun_fd); vpninfo->tun_fd = -1; } openconnect-8.05/stoken.c0000664000076400007640000001715012727726520017222 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * Copyright © 2012-2014 Kevin Cernekee * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include #include "openconnect-internal.h" #ifndef STOKEN_CHECK_VER #define STOKEN_CHECK_VER(x,y) 0 #endif int set_libstoken_mode(struct openconnect_info *vpninfo, const char *token_str) { int ret; if (!vpninfo->stoken_ctx) { vpninfo->stoken_ctx = stoken_new(); if (!vpninfo->stoken_ctx) return -EIO; } ret = token_str ? stoken_import_string(vpninfo->stoken_ctx, token_str) : stoken_import_rcfile(vpninfo->stoken_ctx, NULL); if (ret) return ret; vpninfo->token_mode = OC_TOKEN_MODE_STOKEN; return 0; } /* * A SecurID token can be encrypted with a device ID, a password, both, * or neither. Gather the required information, decrypt the token, and * check the hash to make sure it is sane. * * Return value: * < 0, on error * = 0, on success * = 1, if the user cancelled the form submission * = 2, if the user left the entire form blank and clicked OK */ static int decrypt_stoken(struct openconnect_info *vpninfo) { struct oc_auth_form form; struct oc_form_opt opts[2], *opt = opts; char **devid = NULL, **pass = NULL; int ret = 0; memset(&form, 0, sizeof(form)); memset(&opts, 0, sizeof(opts)); form.opts = opts; form.message = _("Enter credentials to unlock software token."); if (stoken_devid_required(vpninfo->stoken_ctx)) { opt->type = OC_FORM_OPT_TEXT; opt->name = (char *)"devid"; opt->label = _("Device ID:"); devid = &opt->_value; opt++; } if (stoken_pass_required(vpninfo->stoken_ctx)) { opt->type = OC_FORM_OPT_PASSWORD; opt->name = (char *)"password"; opt->label = _("Password:"); pass = &opt->_value; opt++; } opts[0].next = opts[1].type ? &opts[1] : NULL; while (1) { nuke_opt_values(opts); if (!opts[0].type) { /* don't bug the user if there's nothing to enter */ ret = 0; } else { int some_empty = 0, all_empty = 1; /* < 0 for error; 1 if cancelled */ ret = process_auth_form(vpninfo, &form); if (ret) break; for (opt = opts; opt; opt = opt->next) { if (!opt->_value || !strlen(opt->_value)) some_empty = 1; else all_empty = 0; } if (all_empty) { vpn_progress(vpninfo, PRG_INFO, _("User bypassed soft token.\n")); ret = 2; break; } if (some_empty) { vpn_progress(vpninfo, PRG_INFO, _("All fields are required; try again.\n")); continue; } } ret = stoken_decrypt_seed(vpninfo->stoken_ctx, pass ? *pass : NULL, devid ? *devid : NULL); if (ret == -EIO || (ret && !devid && !pass)) { vpn_progress(vpninfo, PRG_ERR, _("General failure in libstoken.\n")); break; } else if (ret != 0) { vpn_progress(vpninfo, PRG_INFO, _("Incorrect device ID or password; try again.\n")); continue; } vpn_progress(vpninfo, PRG_DEBUG, _("Soft token init was successful.\n")); ret = 0; break; } nuke_opt_values(opts); return ret; } static void get_stoken_details(struct openconnect_info *vpninfo) { #if STOKEN_CHECK_VER(1,3) struct stoken_info *info = stoken_get_info(vpninfo->stoken_ctx); if (info) { vpninfo->stoken_concat_pin = !info->uses_pin; vpninfo->stoken_interval = info->interval; return; } #endif vpninfo->stoken_concat_pin = 0; vpninfo->stoken_interval = 60; } /* * Return value: * < 0, on error * = 0, on success * = 1, if the user cancelled the form submission */ static int request_stoken_pin(struct openconnect_info *vpninfo) { struct oc_auth_form form; struct oc_form_opt opts[1], *opt = opts; int ret = 0; if (!vpninfo->stoken_concat_pin && !stoken_pin_required(vpninfo->stoken_ctx)) return 0; memset(&form, 0, sizeof(form)); memset(&opts, 0, sizeof(opts)); form.opts = opts; form.message = _("Enter software token PIN."); opt->type = OC_FORM_OPT_PASSWORD; opt->name = (char *)"password"; opt->label = _("PIN:"); opt->flags = OC_FORM_OPT_NUMERIC; while (1) { char *pin; nuke_opt_values(opts); /* < 0 for error; 1 if cancelled */ ret = process_auth_form(vpninfo, &form); if (ret) break; pin = opt->_value; if (!pin || !strlen(pin)) { /* in some cases there really is no PIN */ if (vpninfo->stoken_concat_pin) return 0; vpn_progress(vpninfo, PRG_INFO, _("All fields are required; try again.\n")); continue; } if (!vpninfo->stoken_concat_pin && stoken_check_pin(vpninfo->stoken_ctx, pin) != 0) { vpn_progress(vpninfo, PRG_INFO, _("Invalid PIN format; try again.\n")); continue; } free(vpninfo->stoken_pin); vpninfo->stoken_pin = strdup(pin); if (!vpninfo->stoken_pin) ret = -ENOMEM; break; } nuke_opt_values(opts); return ret; } /* * If the user clicks OK on the devid/password prompt without entering * any data, we will continue connecting but bypass soft token generation * for the duration of this "obtain_cookie" session. (They might not even * have the credentials that we're prompting for.) * * If the user clicks Cancel, we will abort the connection. * * Return value: * < 0, on error * = 0, on success (or if the user bypassed soft token init) * = 1, if the user cancelled the form submission */ int prepare_stoken(struct openconnect_info *vpninfo) { int ret; vpninfo->token_tries = 0; vpninfo->token_bypassed = 0; ret = decrypt_stoken(vpninfo); if (ret == 2) { vpninfo->token_bypassed = 1; return 0; } else if (ret != 0) return ret; get_stoken_details(vpninfo); return request_stoken_pin(vpninfo); } /* Return value: * < 0, if unable to generate a tokencode * = 0, on success */ int can_gen_stoken_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt) { if (vpninfo->token_tries == 0) { vpn_progress(vpninfo, PRG_DEBUG, _("OK to generate INITIAL tokencode\n")); vpninfo->token_time = 0; } else if (vpninfo->token_tries == 1 && form->message && strcasestr(form->message, "next tokencode")) { vpn_progress(vpninfo, PRG_DEBUG, _("OK to generate NEXT tokencode\n")); vpninfo->token_time += vpninfo->stoken_interval; } else { /* limit the number of retries, to avoid account lockouts */ vpn_progress(vpninfo, PRG_INFO, _("Server is rejecting the soft token; switching to manual entry\n")); return -ENOENT; } return 0; } int do_gen_stoken_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt) { char tokencode[STOKEN_MAX_TOKENCODE + 1]; if (!vpninfo->token_time) vpninfo->token_time = time(NULL); vpn_progress(vpninfo, PRG_INFO, _("Generating RSA token code\n")); /* This doesn't normally fail */ if (stoken_compute_tokencode(vpninfo->stoken_ctx, vpninfo->token_time, vpninfo->stoken_pin, tokencode) < 0) { vpn_progress(vpninfo, PRG_ERR, _("General failure in libstoken.\n")); return -EIO; } vpninfo->token_tries++; if (asprintf(&opt->_value, "%s%s", (vpninfo->stoken_concat_pin && vpninfo->stoken_pin) ? vpninfo->stoken_pin : "", tokencode) < 0) return -ENOMEM; return 0; } openconnect-8.05/openconnect.pc.in0000664000076400007640000000062713025070326021004 0ustar00dwoodhoudwoodhou00000000000000prefix=@prefix@ exec_prefix=@exec_prefix@ libdir=@libdir@ includedir=@includedir@ Name: openconnect Description: OpenConnect VPN client Version: @VERSION@ Requires.private: @LIBPROXY_PC@ @ZLIB_PC@ @LIBLZ4_PC@ @SSL_PC@ @P11KIT_PC@ @LIBSTOKEN_PC@ @LIBPSKC_PC@ @LIBPCSCLITE_PC@ libxml-2.0 Libs: -L${libdir} -lopenconnect Libs.private: @INTL_LIBS@ @system_pcsc_libs@ @openssl_pc_libs@ Cflags: -I${includedir} openconnect-8.05/jni.c0000664000076400007640000011357013407155217016475 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2013 Kevin Cernekee * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include #include #include #include #include #include "openconnect.h" struct libctx { JNIEnv *jenv; jobject jobj; jobject async_lock; struct openconnect_info *vpninfo; int cmd_fd; int loglevel; }; static void throw_excep(JNIEnv *jenv, const char *exc, int line) { jclass excep; char msg[64]; snprintf(msg, 64, "%s:%d", __FILE__, line); (*jenv)->ExceptionClear(jenv); excep = (*jenv)->FindClass(jenv, exc); if (excep) (*jenv)->ThrowNew(jenv, excep, msg); } #define OOM(jenv) do { throw_excep(jenv, "java/lang/OutOfMemoryError", __LINE__); } while (0) static struct libctx *getctx(JNIEnv *jenv, jobject jobj) { jclass jcls = (*jenv)->GetObjectClass(jenv, jobj); jfieldID jfld = (*jenv)->GetFieldID(jenv, jcls, "libctx", "J"); if (!jfld) return NULL; return (void *)(unsigned long)(*jenv)->GetLongField(jenv, jobj, jfld); } /* * GetMethodID() and GetFieldID() and NewStringUTF() will automatically throw exceptions on error */ static jmethodID get_obj_mid(struct libctx *ctx, jobject jobj, const char *name, const char *sig) { jclass jcls = (*ctx->jenv)->GetObjectClass(ctx->jenv, jobj); jmethodID mid = (*ctx->jenv)->GetMethodID(ctx->jenv, jcls, name, sig); return mid; } static jstring dup_to_jstring(JNIEnv *jenv, const char *in) { /* * Many implementations of NewStringUTF() will return NULL on * NULL input, but that isn't guaranteed: * http://gcc.gnu.org/bugzilla/show_bug.cgi?id=35979 */ return in ? (*jenv)->NewStringUTF(jenv, in) : NULL; } static int get_cstring(JNIEnv *jenv, jstring in, const char **out) { const char *tmp; if (in == NULL) { *out = NULL; return 0; } tmp = (*jenv)->GetStringUTFChars(jenv, in, NULL); if (!tmp) { OOM(jenv); return -1; } *out = tmp; return 0; } static void release_cstring(JNIEnv *jenv, jstring jstr, const char *cstr) { if (cstr) (*jenv)->ReleaseStringUTFChars(jenv, jstr, cstr); } static int set_int(struct libctx *ctx, jobject jobj, const char *name, int value) { jclass jcls = (*ctx->jenv)->GetObjectClass(ctx->jenv, jobj); jfieldID jfld = (*ctx->jenv)->GetFieldID(ctx->jenv, jcls, name, "I"); if (!jfld) return -1; (*ctx->jenv)->SetIntField(ctx->jenv, jobj, jfld, value); return 0; } static int set_long(struct libctx *ctx, jobject jobj, const char *name, uint64_t value) { jclass jcls = (*ctx->jenv)->GetObjectClass(ctx->jenv, jobj); jfieldID jfld = (*ctx->jenv)->GetFieldID(ctx->jenv, jcls, name, "J"); if (!jfld) return -1; (*ctx->jenv)->SetLongField(ctx->jenv, jobj, jfld, (jlong)value); return 0; } static int set_string(struct libctx *ctx, jobject jobj, const char *name, const char *value) { jclass jcls = (*ctx->jenv)->GetObjectClass(ctx->jenv, jobj); jfieldID jfld = (*ctx->jenv)->GetFieldID(ctx->jenv, jcls, name, "Ljava/lang/String;"); jstring jarg; if (!jfld) return -1; jarg = dup_to_jstring(ctx->jenv, value); if (value && !jarg) return -1; (*ctx->jenv)->SetObjectField(ctx->jenv, jobj, jfld, jarg); return 0; } static int add_string(struct libctx *ctx, jclass jcls, jobject jobj, const char *name, const char *value) { jmethodID mid = (*ctx->jenv)->GetMethodID(ctx->jenv, jcls, name, "(Ljava/lang/String;)V"); jstring jarg; if (!value) return 0; if (!mid) return -1; jarg = dup_to_jstring(ctx->jenv, value); if (!jarg) return -1; (*ctx->jenv)->CallVoidMethod(ctx->jenv, jobj, mid, jarg); (*ctx->jenv)->DeleteLocalRef(ctx->jenv, jarg); return 0; } static int add_string_pair(struct libctx *ctx, jclass jcls, jobject jobj, const char *name, const char *key, const char *value) { jmethodID mid = (*ctx->jenv)->GetMethodID(ctx->jenv, jcls, name, "(Ljava/lang/String;Ljava/lang/String;)V"); jstring jarg0, jarg1; if (!key || !value) return -1; if (!mid) return -1; jarg0 = dup_to_jstring(ctx->jenv, key); if (!jarg0) return -1; jarg1 = dup_to_jstring(ctx->jenv, value); if (!jarg1) { (*ctx->jenv)->DeleteLocalRef(ctx->jenv, jarg0); return -1; } (*ctx->jenv)->CallVoidMethod(ctx->jenv, jobj, mid, jarg0, jarg1); (*ctx->jenv)->DeleteLocalRef(ctx->jenv, jarg1); (*ctx->jenv)->DeleteLocalRef(ctx->jenv, jarg0); return 0; } static int validate_peer_cert_cb(void *privdata, const char *reason) { struct libctx *ctx = privdata; jstring jreason; int ret = -1; jmethodID mid; if ((*ctx->jenv)->PushLocalFrame(ctx->jenv, 256) < 0) return -1; jreason = dup_to_jstring(ctx->jenv, reason); if (!jreason) goto out; mid = get_obj_mid(ctx, ctx->jobj, "onValidatePeerCert", "(Ljava/lang/String;)I"); if (mid) ret = (*ctx->jenv)->CallIntMethod(ctx->jenv, ctx->jobj, mid, jreason); out: (*ctx->jenv)->PopLocalFrame(ctx->jenv, NULL); return ret; } static int write_new_config_cb(void *privdata, const char *buf, int buflen) { struct libctx *ctx = privdata; jmethodID mid; jbyteArray jbuf; int ret = -1; if ((*ctx->jenv)->PushLocalFrame(ctx->jenv, 256) < 0) return -1; mid = get_obj_mid(ctx, ctx->jobj, "onWriteNewConfig", "([B)I"); if (!mid) goto out; jbuf = (*ctx->jenv)->NewByteArray(ctx->jenv, buflen); if (!jbuf) goto out; (*ctx->jenv)->SetByteArrayRegion(ctx->jenv, jbuf, 0, buflen, (jbyte *)buf); ret = (*ctx->jenv)->CallIntMethod(ctx->jenv, ctx->jobj, mid, jbuf); out: (*ctx->jenv)->PopLocalFrame(ctx->jenv, NULL); return ret; } static void protect_socket_cb(void *privdata, int fd) { struct libctx *ctx = privdata; jmethodID mid; if ((*ctx->jenv)->PushLocalFrame(ctx->jenv, 256) < 0) return; mid = get_obj_mid(ctx, ctx->jobj, "onProtectSocket", "(I)V"); if (mid) (*ctx->jenv)->CallVoidMethod(ctx->jenv, ctx->jobj, mid, fd); (*ctx->jenv)->PopLocalFrame(ctx->jenv, NULL); } static void stats_cb(void *privdata, const struct oc_stats *stats) { struct libctx *ctx = privdata; jmethodID mid; jclass jcls; jobject jobj = NULL; if ((*ctx->jenv)->PushLocalFrame(ctx->jenv, 256) < 0) return; jcls = (*ctx->jenv)->FindClass(ctx->jenv, "org/infradead/libopenconnect/LibOpenConnect$VPNStats"); if (jcls == NULL) goto out; mid = (*ctx->jenv)->GetMethodID(ctx->jenv, jcls, "", "()V"); if (!mid) goto out; jobj = (*ctx->jenv)->NewObject(ctx->jenv, jcls, mid); if (!jobj) goto out; if (set_long(ctx, jobj, "txPkts", stats->tx_pkts) || set_long(ctx, jobj, "txBytes", stats->tx_bytes) || set_long(ctx, jobj, "rxPkts", stats->rx_pkts) || set_long(ctx, jobj, "rxBytes", stats->rx_bytes)) goto out; mid = get_obj_mid(ctx, ctx->jobj, "onStatsUpdate", "(Lorg/infradead/libopenconnect/LibOpenConnect$VPNStats;)V"); if (mid) (*ctx->jenv)->CallVoidMethod(ctx->jenv, ctx->jobj, mid, jobj); out: (*ctx->jenv)->PopLocalFrame(ctx->jenv, NULL); } static void setup_tun_cb(void *privdata) { struct libctx *ctx = privdata; jmethodID mid; if ((*ctx->jenv)->PushLocalFrame(ctx->jenv, 256) < 0) return; mid = get_obj_mid(ctx, ctx->jobj, "onSetupTun", "()V"); if (mid) (*ctx->jenv)->CallVoidMethod(ctx->jenv, ctx->jobj, mid); (*ctx->jenv)->PopLocalFrame(ctx->jenv, NULL); } static void reconnected_cb(void *privdata) { struct libctx *ctx = privdata; jmethodID mid; if ((*ctx->jenv)->PushLocalFrame(ctx->jenv, 256) < 0) return; mid = get_obj_mid(ctx, ctx->jobj, "onReconnected", "()V"); if (mid) (*ctx->jenv)->CallVoidMethod(ctx->jenv, ctx->jobj, mid); (*ctx->jenv)->PopLocalFrame(ctx->jenv, NULL); } static jobject new_auth_form(struct libctx *ctx, struct oc_auth_form *form) { jmethodID mid; jclass jcls; jobject jobj = NULL; jcls = (*ctx->jenv)->FindClass(ctx->jenv, "org/infradead/libopenconnect/LibOpenConnect$AuthForm"); if (jcls == NULL) return NULL; mid = (*ctx->jenv)->GetMethodID(ctx->jenv, jcls, "", "()V"); if (!mid) return NULL; jobj = (*ctx->jenv)->NewObject(ctx->jenv, jcls, mid); if (!jobj) return NULL; if (set_string(ctx, jobj, "banner", form->banner) || set_string(ctx, jobj, "message", form->message) || set_string(ctx, jobj, "error", form->error) || set_string(ctx, jobj, "authID", form->auth_id) || set_string(ctx, jobj, "method", form->method) || set_string(ctx, jobj, "action", form->action) || set_int(ctx, jobj, "authgroupSelection", form->authgroup_selection)) { return NULL; } return jobj; } static jobject new_form_choice(struct libctx *ctx, struct oc_choice *choice) { jmethodID mid; jclass jcls; jobject jobj = NULL; jcls = (*ctx->jenv)->FindClass(ctx->jenv, "org/infradead/libopenconnect/LibOpenConnect$FormChoice"); if (jcls == NULL) return NULL; mid = (*ctx->jenv)->GetMethodID(ctx->jenv, jcls, "", "()V"); if (!mid) return NULL; jobj = (*ctx->jenv)->NewObject(ctx->jenv, jcls, mid); if (!jobj) return NULL; if (set_string(ctx, jobj, "name", choice->name) || set_string(ctx, jobj, "label", choice->label) || set_string(ctx, jobj, "authType", choice->auth_type) || set_string(ctx, jobj, "overrideName", choice->override_name) || set_string(ctx, jobj, "overrideLabel", choice->override_label)) { return NULL; } return jobj; } static int populate_select_choices(struct libctx *ctx, jobject jopt, struct oc_form_opt_select *opt) { jmethodID mid; int i; mid = get_obj_mid(ctx, jopt, "addChoice", "(Lorg/infradead/libopenconnect/LibOpenConnect$FormChoice;)V"); if (!mid) return -1; for (i = 0; i < opt->nr_choices; i++) { jobject jformchoice = new_form_choice(ctx, opt->choices[i]); if (!jformchoice) return -1; (*ctx->jenv)->CallVoidMethod(ctx->jenv, jopt, mid, jformchoice); } return 0; } static int add_form_option(struct libctx *ctx, jobject jform, struct oc_form_opt *opt, int is_authgroup) { jmethodID addOpt; jobject jopt; addOpt = get_obj_mid(ctx, jform, "addOpt", "(Z)Lorg/infradead/libopenconnect/LibOpenConnect$FormOpt;"); if (!addOpt) return -1; jopt = (*ctx->jenv)->CallObjectMethod(ctx->jenv, jform, addOpt, is_authgroup); if (jopt == NULL) return -1; if (set_int(ctx, jopt, "type", opt->type) || set_string(ctx, jopt, "name", opt->name) || set_string(ctx, jopt, "label", opt->label) || set_string(ctx, jopt, "value", opt->_value) || set_long(ctx, jopt, "flags", opt->flags)) return -1; if (opt->type == OC_FORM_OPT_SELECT && populate_select_choices(ctx, jopt, (struct oc_form_opt_select *)opt)) return -1; return 0; } static char *lookup_choice_name(struct oc_form_opt_select *opt, const char *name) { int i; /* opt->_value is NOT a caller-allocated string for OC_FORM_OPT_SELECT */ for (i = 0; i < opt->nr_choices; i++) if (!strcmp(opt->choices[i]->name, name)) return opt->choices[i]->name; return NULL; } static int process_auth_form_cb(void *privdata, struct oc_auth_form *form) { struct libctx *ctx = privdata; jobject jform; jmethodID callback, getOptValue; struct oc_form_opt *opt; jint ret; if ((*ctx->jenv)->PushLocalFrame(ctx->jenv, 256) < 0) return -1; /* create and populate new AuthForm object and option/choice lists */ jform = new_auth_form(ctx, form); if (!jform) goto err; getOptValue = get_obj_mid(ctx, jform, "getOptValue", "(Ljava/lang/String;)Ljava/lang/String;"); if (!getOptValue) goto err; for (opt = form->opts; opt; opt = opt->next) { int is_authgroup = opt == (void *)form->authgroup_opt; if (add_form_option(ctx, jform, opt, is_authgroup) < 0) goto err; } /* invoke onProcessAuthForm callback */ callback = get_obj_mid(ctx, ctx->jobj, "onProcessAuthForm", "(Lorg/infradead/libopenconnect/LibOpenConnect$AuthForm;)I"); if (!callback) goto err; ret = (*ctx->jenv)->CallIntMethod(ctx->jenv, ctx->jobj, callback, jform); /* copy any populated form fields back into the C structs */ for (opt = form->opts; opt; opt = opt->next) { jstring jname, jvalue; jname = dup_to_jstring(ctx->jenv, opt->name); if (!jname) goto err; jvalue = (*ctx->jenv)->CallObjectMethod(ctx->jenv, jform, getOptValue, jname); if (jvalue) { const char *tmp = (*ctx->jenv)->GetStringUTFChars(ctx->jenv, jvalue, NULL); if (!tmp) goto err; if (opt->type == OC_FORM_OPT_SELECT) opt->_value = lookup_choice_name((void *)opt, tmp); else { free(opt->_value); opt->_value = strdup(tmp); if (!opt->_value) OOM(ctx->jenv); } (*ctx->jenv)->ReleaseStringUTFChars(ctx->jenv, jvalue, tmp); } } (*ctx->jenv)->PopLocalFrame(ctx->jenv, NULL); return ret; err: (*ctx->jenv)->PopLocalFrame(ctx->jenv, NULL); return -1; } static void __attribute__ ((format(printf, 3, 4))) progress_cb(void *privdata, int level, const char *fmt, ...) { struct libctx *ctx = privdata; va_list ap; char *msg; jstring jmsg; int ret, loglevel; jmethodID mid; (*ctx->jenv)->MonitorEnter(ctx->jenv, ctx->async_lock); loglevel = ctx->loglevel; (*ctx->jenv)->MonitorExit(ctx->jenv, ctx->async_lock); if (level > loglevel) return; va_start(ap, fmt); ret = vasprintf(&msg, fmt, ap); va_end(ap); if (ret < 0) { OOM(ctx->jenv); return; } if ((*ctx->jenv)->PushLocalFrame(ctx->jenv, 256) < 0) return; jmsg = dup_to_jstring(ctx->jenv, msg); free(msg); if (!jmsg) goto out; mid = get_obj_mid(ctx, ctx->jobj, "onProgress", "(ILjava/lang/String;)V"); if (mid) (*ctx->jenv)->CallVoidMethod(ctx->jenv, ctx->jobj, mid, level, jmsg); out: (*ctx->jenv)->PopLocalFrame(ctx->jenv, NULL); } static int lock_token_cb(void *privdata) { struct libctx *ctx = privdata; jmethodID mid; int ret = -1; if ((*ctx->jenv)->PushLocalFrame(ctx->jenv, 256) < 0) return -1; mid = get_obj_mid(ctx, ctx->jobj, "onTokenLock", "()I"); if (mid) ret = (*ctx->jenv)->CallIntMethod(ctx->jenv, ctx->jobj, mid); (*ctx->jenv)->PopLocalFrame(ctx->jenv, NULL); return ret; } static int unlock_token_cb(void *privdata, const char *new_token) { struct libctx *ctx = privdata; jstring jtoken; int ret = -1; jmethodID mid; if ((*ctx->jenv)->PushLocalFrame(ctx->jenv, 256) < 0) return -1; jtoken = dup_to_jstring(ctx->jenv, new_token); if (!jtoken) goto out; mid = get_obj_mid(ctx, ctx->jobj, "onTokenUnlock", "(Ljava/lang/String;)I"); if (mid) ret = (*ctx->jenv)->CallIntMethod(ctx->jenv, ctx->jobj, mid, jtoken); out: (*ctx->jenv)->PopLocalFrame(ctx->jenv, NULL); return ret; } /* Library init/uninit */ static jobject init_async_lock(struct libctx *ctx) { jclass jcls = (*ctx->jenv)->GetObjectClass(ctx->jenv, ctx->jobj); jfieldID jfld = (*ctx->jenv)->GetFieldID(ctx->jenv, jcls, "asyncLock", "Ljava/lang/Object;"); jobject jobj = (*ctx->jenv)->GetObjectField(ctx->jenv, ctx->jobj, jfld); if (jobj) jobj = (*ctx->jenv)->NewGlobalRef(ctx->jenv, jobj); return jobj; } JNIEXPORT jlong JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_init( JNIEnv *jenv, jobject jobj, jstring juseragent) { char *useragent; struct libctx *ctx = calloc(1, sizeof(*ctx)); if (!ctx) goto bad; ctx->jenv = jenv; ctx->jobj = (*jenv)->NewGlobalRef(jenv, jobj); if (!ctx->jobj) goto bad_free_ctx; ctx->async_lock = init_async_lock(ctx); if (!ctx->async_lock) goto bad_delete_obj_ref; useragent = (char *)(*jenv)->GetStringUTFChars(jenv, juseragent, NULL); if (!useragent) goto bad_delete_ref; ctx->vpninfo = openconnect_vpninfo_new(useragent, validate_peer_cert_cb, write_new_config_cb, process_auth_form_cb, progress_cb, ctx); (*jenv)->ReleaseStringUTFChars(jenv, juseragent, useragent); if (!ctx->vpninfo) goto bad_delete_ref; openconnect_set_token_callbacks(ctx->vpninfo, ctx, lock_token_cb, unlock_token_cb); openconnect_set_protect_socket_handler(ctx->vpninfo, protect_socket_cb); openconnect_set_stats_handler(ctx->vpninfo, stats_cb); openconnect_set_setup_tun_handler(ctx->vpninfo, setup_tun_cb); openconnect_set_reconnected_handler(ctx->vpninfo, reconnected_cb); ctx->cmd_fd = openconnect_setup_cmd_pipe(ctx->vpninfo); if (ctx->cmd_fd < 0) goto bad_free_vpninfo; ctx->loglevel = PRG_DEBUG; return (jlong)(unsigned long)ctx; bad_free_vpninfo: openconnect_vpninfo_free(ctx->vpninfo); bad_delete_ref: (*jenv)->DeleteGlobalRef(jenv, ctx->async_lock); bad_delete_obj_ref: (*jenv)->DeleteGlobalRef(jenv, ctx->jobj); bad_free_ctx: free(ctx); bad: OOM(jenv); return 0; } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_free( JNIEnv *jenv, jobject jobj) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return; openconnect_vpninfo_free(ctx->vpninfo); (*jenv)->DeleteGlobalRef(jenv, ctx->async_lock); (*jenv)->DeleteGlobalRef(jenv, ctx->jobj); free(ctx); } static void write_cmd_pipe(JNIEnv *jenv, jobject jobj, char cmd) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return; if (write(ctx->cmd_fd, &cmd, 1) < 0) { /* probably dead already */ } } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_doCancel( JNIEnv *jenv, jobject jobj) { write_cmd_pipe(jenv, jobj, OC_CMD_CANCEL); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_pause( JNIEnv *jenv, jobject jobj) { write_cmd_pipe(jenv, jobj, OC_CMD_PAUSE); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_requestStats( JNIEnv *jenv, jobject jobj) { write_cmd_pipe(jenv, jobj, OC_CMD_STATS); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_globalInit( JNIEnv *jenv, jclass jcls) { openconnect_init_ssl(); } JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_obtainCookie( JNIEnv *jenv, jobject jobj) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return 0; return openconnect_obtain_cookie(ctx->vpninfo); } /* special handling: caller-allocated buffer */ JNIEXPORT jstring JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getPeerCertHash( JNIEnv *jenv, jobject jobj) { struct libctx *ctx = getctx(jenv, jobj); const char *hash; jstring jresult = NULL; if (!ctx) return NULL; hash = openconnect_get_peer_cert_hash(ctx->vpninfo); if (!hash) return NULL; jresult = dup_to_jstring(ctx->jenv, hash); if (!jresult) OOM(ctx->jenv); return jresult; } /* special handling: callee-allocated, caller-freed string */ JNIEXPORT jstring JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getPeerCertDetails( JNIEnv *jenv, jobject jobj) { struct libctx *ctx = getctx(jenv, jobj); char *buf = NULL; jstring jresult = NULL; if (!ctx) return NULL; buf = openconnect_get_peer_cert_details(ctx->vpninfo); if (!buf) return NULL; jresult = dup_to_jstring(ctx->jenv, buf); if (!jresult) OOM(ctx->jenv); openconnect_free_cert_info(ctx->vpninfo, buf); return jresult; } /* special handling: callee-allocated, caller-freed binary buffer */ JNIEXPORT jbyteArray JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getPeerCertDER( JNIEnv *jenv, jobject jobj) { struct libctx *ctx = getctx(jenv, jobj); unsigned char *buf = NULL; int ret; jbyteArray jresult = NULL; if (!ctx) return NULL; ret = openconnect_get_peer_cert_DER(ctx->vpninfo, &buf); if (ret < 0) return NULL; jresult = (*ctx->jenv)->NewByteArray(ctx->jenv, ret); if (jresult) (*ctx->jenv)->SetByteArrayRegion(ctx->jenv, jresult, 0, ret, (jbyte *) buf); openconnect_free_cert_info(ctx->vpninfo, buf); return jresult; } /* special handling: callee-allocated, caller-freed binary buffer */ JNIEXPORT jbyteArray JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getPeerCertChain( JNIEnv *jenv, jobject jobj) { struct libctx *ctx = getctx(jenv, jobj); struct oc_cert *chain = NULL, *p; int cert_list_size, i; jobjectArray jresult = NULL; jclass jcls; if (!ctx) goto err; cert_list_size = openconnect_get_peer_cert_chain(ctx->vpninfo, &chain); if (cert_list_size <= 0) goto err; jcls = (*ctx->jenv)->FindClass(ctx->jenv, "[B"); if (!jcls) goto err; jresult = (*ctx->jenv)->NewObjectArray(ctx->jenv, cert_list_size, jcls, NULL); if (!jresult) goto err; if ((*ctx->jenv)->PushLocalFrame(ctx->jenv, 256) < 0) goto err; for (i = 0, p = chain; i < cert_list_size; i++, p++) { jbyteArray cert = (*ctx->jenv)->NewByteArray(ctx->jenv, p->der_len); if (!cert) goto err2; (*ctx->jenv)->SetByteArrayRegion(ctx->jenv, cert, 0, p->der_len, (jbyte *)p->der_data); (*ctx->jenv)->SetObjectArrayElement(ctx->jenv, jresult, i, cert); } (*ctx->jenv)->PopLocalFrame(ctx->jenv, NULL); openconnect_free_peer_cert_chain(ctx->vpninfo, chain); return jresult; err2: (*ctx->jenv)->PopLocalFrame(ctx->jenv, NULL); err: if (jresult) (*ctx->jenv)->DeleteLocalRef(ctx->jenv, jresult); if (chain) openconnect_free_peer_cert_chain(ctx->vpninfo, chain); return NULL; } /* special handling: two string arguments */ JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setClientCert( JNIEnv *jenv, jobject jobj, jstring jcert, jstring jsslkey) { struct libctx *ctx = getctx(jenv, jobj); const char *cert = NULL, *sslkey = NULL; if (ctx && !get_cstring(ctx->jenv, jcert, &cert) && !get_cstring(ctx->jenv, jsslkey, &sslkey)) openconnect_set_client_cert(ctx->vpninfo, cert, sslkey); release_cstring(ctx->jenv, jcert, cert); release_cstring(ctx->jenv, jsslkey, sslkey); return; } /* special handling: multiple string arguments */ JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setupTunDevice( JNIEnv *jenv, jobject jobj, jstring jarg0, jstring jarg1) { struct libctx *ctx = getctx(jenv, jobj); const char *arg0 = NULL, *arg1 = NULL; int ret = -ENOMEM; if (ctx && !get_cstring(ctx->jenv, jarg0, &arg0) && !get_cstring(ctx->jenv, jarg1, &arg1)) ret = openconnect_setup_tun_device(ctx->vpninfo, arg0, arg1); release_cstring(ctx->jenv, jarg0, arg0); release_cstring(ctx->jenv, jarg1, arg1); return ret; } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setCSDWrapper( JNIEnv *jenv, jobject jobj, jstring jarg0, jstring jarg1, jstring jarg2) { struct libctx *ctx = getctx(jenv, jobj); const char *arg0 = NULL, *arg1 = NULL, *arg2 = NULL; if (ctx && !get_cstring(ctx->jenv, jarg0, &arg0) && !get_cstring(ctx->jenv, jarg1, &arg1) && !get_cstring(ctx->jenv, jarg2, &arg2)) { openconnect_setup_csd(ctx->vpninfo, getuid(), 1, arg0); if (arg1) openconnect_set_csd_environ(ctx->vpninfo, "TMPDIR", arg1); if (arg2) openconnect_set_csd_environ(ctx->vpninfo, "PATH", arg2); } release_cstring(ctx->jenv, jarg0, arg0); release_cstring(ctx->jenv, jarg1, arg1); release_cstring(ctx->jenv, jarg2, arg2); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setMobileInfo( JNIEnv *jenv, jobject jobj, jstring jarg0, jstring jarg1, jstring jarg2) { struct libctx *ctx = getctx(jenv, jobj); const char *arg0 = NULL, *arg1 = NULL, *arg2 = NULL; if (ctx && !get_cstring(ctx->jenv, jarg0, &arg0) && !get_cstring(ctx->jenv, jarg1, &arg1) && !get_cstring(ctx->jenv, jarg2, &arg2)) openconnect_set_mobile_info(ctx->vpninfo, arg0, arg1, arg2); release_cstring(ctx->jenv, jarg0, arg0); release_cstring(ctx->jenv, jarg1, arg1); release_cstring(ctx->jenv, jarg2, arg2); } /* class methods (general library info) */ JNIEXPORT jstring JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getVersion( JNIEnv *jenv, jclass jcls) { return dup_to_jstring(jenv, openconnect_get_version()); } JNIEXPORT jboolean JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_hasPKCS11Support( JNIEnv *jenv, jclass jcls) { return openconnect_has_pkcs11_support(); } JNIEXPORT jboolean JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_hasTSSBlobSupport( JNIEnv *jenv, jclass jcls) { return openconnect_has_tss_blob_support(); } JNIEXPORT jboolean JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_hasTSS2BlobSupport( JNIEnv *jenv, jclass jcls) { return openconnect_has_tss2_blob_support(); } JNIEXPORT jboolean JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_hasStokenSupport( JNIEnv *jenv, jclass jcls) { return openconnect_has_stoken_support(); } JNIEXPORT jboolean JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_hasOATHSupport( JNIEnv *jenv, jclass jcls) { return openconnect_has_oath_support(); } JNIEXPORT jboolean JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_hasYubiOATHSupport( JNIEnv *jenv, jclass jcls) { return openconnect_has_yubioath_support(); } /* simple cases: void or int params */ JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getPort( JNIEnv *jenv, jobject jobj) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return -EINVAL; return openconnect_get_port(ctx->vpninfo); } JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_passphraseFromFSID( JNIEnv *jenv, jobject jobj) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return -EINVAL; return openconnect_passphrase_from_fsid(ctx->vpninfo); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_clearCookie( JNIEnv *jenv, jobject jobj) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return; openconnect_clear_cookie(ctx->vpninfo); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_resetSSL( JNIEnv *jenv, jobject jobj) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return; openconnect_reset_ssl(ctx->vpninfo); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_disableIPv6( JNIEnv *jenv, jobject jobj) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return; openconnect_disable_ipv6(ctx->vpninfo); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setCertExpiryWarning( JNIEnv *jenv, jobject jobj, jint arg) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return; openconnect_set_cert_expiry_warning(ctx->vpninfo, arg); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setReqMTU( JNIEnv *jenv, jobject jobj, jint arg) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return; openconnect_set_reqmtu(ctx->vpninfo, arg); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setDPD( JNIEnv *jenv, jobject jobj, jint arg) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return; openconnect_set_dpd(ctx->vpninfo, arg); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setPFS( JNIEnv *jenv, jobject jobj, jboolean arg) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return; openconnect_set_pfs(ctx->vpninfo, arg); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setSystemTrust( JNIEnv *jenv, jobject jobj, jboolean arg) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return; openconnect_set_system_trust(ctx->vpninfo, arg); } JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_makeCSTPConnection( JNIEnv *jenv, jobject jobj) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return -EINVAL; return openconnect_make_cstp_connection(ctx->vpninfo); } JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setupDTLS( JNIEnv *jenv, jobject jobj, jint arg) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return -EINVAL; return openconnect_setup_dtls(ctx->vpninfo, arg); } JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_mainloop( JNIEnv *jenv, jobject jobj, jint arg0, jint arg1) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return -EINVAL; return openconnect_mainloop(ctx->vpninfo, arg0, arg1); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setLogLevel( JNIEnv *jenv, jobject jobj, jint arg) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return; (*ctx->jenv)->MonitorEnter(ctx->jenv, ctx->async_lock); ctx->loglevel = arg; (*ctx->jenv)->MonitorExit(ctx->jenv, ctx->async_lock); } JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setupTunFD( JNIEnv *jenv, jobject jobj, jint arg) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return -EINVAL; return openconnect_setup_tun_fd(ctx->vpninfo, arg); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setXMLPost( JNIEnv *jenv, jobject jobj, jboolean arg) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return; openconnect_set_xmlpost(ctx->vpninfo, arg); } JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getIdleTimeout( JNIEnv *jenv, jobject jobj) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return -EINVAL; return openconnect_get_idle_timeout(ctx->vpninfo); } /* simple cases: return a const string (no need to free it) */ #define RETURN_STRING_START \ struct libctx *ctx = getctx(jenv, jobj); \ const char *buf = NULL; \ jstring jresult = NULL; \ if (!ctx) \ return NULL; \ #define RETURN_STRING_END \ if (!buf) \ return NULL; \ jresult = dup_to_jstring(ctx->jenv, buf); \ if (!jresult) \ OOM(ctx->jenv); \ return jresult; JNIEXPORT jstring JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getHostname( JNIEnv *jenv, jobject jobj) { RETURN_STRING_START buf = openconnect_get_hostname(ctx->vpninfo); RETURN_STRING_END } JNIEXPORT jstring JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getDNSName( JNIEnv *jenv, jobject jobj) { RETURN_STRING_START buf = openconnect_get_dnsname(ctx->vpninfo); RETURN_STRING_END } JNIEXPORT jstring JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getUrlpath( JNIEnv *jenv, jobject jobj) { RETURN_STRING_START buf = openconnect_get_urlpath(ctx->vpninfo); RETURN_STRING_END } JNIEXPORT jstring JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getCookie( JNIEnv *jenv, jobject jobj) { RETURN_STRING_START buf = openconnect_get_cookie(ctx->vpninfo); RETURN_STRING_END } JNIEXPORT jstring JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getIFName( JNIEnv *jenv, jobject jobj) { RETURN_STRING_START buf = openconnect_get_ifname(ctx->vpninfo); RETURN_STRING_END } JNIEXPORT jstring JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getDTLSCipher( JNIEnv *jenv, jobject jobj) { RETURN_STRING_START buf = openconnect_get_dtls_cipher(ctx->vpninfo); RETURN_STRING_END } JNIEXPORT jstring JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getDTLSCompression( JNIEnv *jenv, jobject jobj) { RETURN_STRING_START buf = openconnect_get_dtls_compression(ctx->vpninfo); RETURN_STRING_END } JNIEXPORT jstring JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getCSTPCompression( JNIEnv *jenv, jobject jobj) { RETURN_STRING_START buf = openconnect_get_cstp_compression(ctx->vpninfo); RETURN_STRING_END } JNIEXPORT jstring JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getCSTPCipher( JNIEnv *jenv, jobject jobj) { RETURN_STRING_START buf = openconnect_get_cstp_cipher(ctx->vpninfo); RETURN_STRING_END } JNIEXPORT jstring JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getProtocol( JNIEnv *jenv, jobject jobj) { RETURN_STRING_START buf = openconnect_get_protocol(ctx->vpninfo); RETURN_STRING_END } #define SET_STRING_START(ret) \ struct libctx *ctx = getctx(jenv, jobj); \ const char *arg = NULL; \ if (get_cstring(ctx->jenv, jarg, &arg)) \ return ret; #define SET_STRING_END() \ release_cstring(ctx->jenv, jarg, arg) JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_checkPeerCertHash( JNIEnv *jenv, jobject jobj, jstring jarg) { int ret; SET_STRING_START(-ENOMEM) ret = openconnect_check_peer_cert_hash(ctx->vpninfo, arg); SET_STRING_END(); return ret; } JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_parseURL( JNIEnv *jenv, jobject jobj, jstring jarg) { int ret; SET_STRING_START(-ENOMEM) ret = openconnect_parse_url(ctx->vpninfo, arg); SET_STRING_END(); return ret; } JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setProxyAuth( JNIEnv *jenv, jobject jobj, jstring jarg) { int ret; SET_STRING_START(-ENOMEM) ret = openconnect_set_proxy_auth(ctx->vpninfo, arg); SET_STRING_END(); return ret; } JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setHTTPProxy( JNIEnv *jenv, jobject jobj, jstring jarg) { int ret; SET_STRING_START(-ENOMEM) ret = openconnect_set_http_proxy(ctx->vpninfo, arg); SET_STRING_END(); return ret; } JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setProtocol( JNIEnv *jenv, jobject jobj, jstring jarg) { int ret; SET_STRING_START(-ENOMEM) ret = openconnect_set_protocol(ctx->vpninfo, arg); SET_STRING_END(); return ret; } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setXMLSHA1( JNIEnv *jenv, jobject jobj, jstring jarg) { SET_STRING_START() openconnect_set_xmlsha1(ctx->vpninfo, arg, strlen(arg) + 1); SET_STRING_END(); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setHostname( JNIEnv *jenv, jobject jobj, jstring jarg) { SET_STRING_START() openconnect_set_hostname(ctx->vpninfo, arg); SET_STRING_END(); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setVersionString( JNIEnv *jenv, jobject jobj, jstring jarg) { SET_STRING_START() openconnect_set_version_string(ctx->vpninfo, arg); SET_STRING_END(); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setUrlpath( JNIEnv *jenv, jobject jobj, jstring jarg) { SET_STRING_START() openconnect_set_urlpath(ctx->vpninfo, arg); SET_STRING_END(); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setLocalName( JNIEnv *jenv, jobject jobj, jstring jarg) { SET_STRING_START() openconnect_set_localname(ctx->vpninfo, arg); SET_STRING_END(); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setCAFile( JNIEnv *jenv, jobject jobj, jstring jarg) { SET_STRING_START() openconnect_set_cafile(ctx->vpninfo, arg); SET_STRING_END(); } JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setReportedOS( JNIEnv *jenv, jobject jobj, jstring jarg) { SET_STRING_START(-ENOMEM) return openconnect_set_reported_os(ctx->vpninfo, arg); SET_STRING_END(); } JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setTokenMode( JNIEnv *jenv, jobject jobj, jint mode, jstring jarg) { int ret; SET_STRING_START(-ENOMEM) ret = openconnect_set_token_mode(ctx->vpninfo, mode, arg); SET_STRING_END(); return ret; } JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setupTunScript( JNIEnv *jenv, jobject jobj, jstring jarg) { int ret; SET_STRING_START(-ENOMEM) ret = openconnect_setup_tun_script(ctx->vpninfo, arg); SET_STRING_END(); return ret; } JNIEXPORT jobject JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getIPInfo( JNIEnv *jenv, jobject jobj) { struct libctx *ctx = getctx(jenv, jobj); jmethodID mid; jclass jcls; const struct oc_ip_info *ip; const struct oc_vpn_option *cstp, *dtls; struct oc_split_include *inc; int i; if (!ctx) return NULL; if (openconnect_get_ip_info(ctx->vpninfo, &ip, &cstp, &dtls) < 0) return NULL; if (!ip) return NULL; jcls = (*ctx->jenv)->FindClass(ctx->jenv, "org/infradead/libopenconnect/LibOpenConnect$IPInfo"); if (jcls == NULL) return NULL; mid = (*ctx->jenv)->GetMethodID(ctx->jenv, jcls, "", "()V"); if (!mid) return NULL; jobj = (*ctx->jenv)->NewObject(ctx->jenv, jcls, mid); if (!jobj) return NULL; if (set_string(ctx, jobj, "addr", ip->addr) || set_string(ctx, jobj, "netmask", ip->netmask) || set_string(ctx, jobj, "addr6", ip->addr6) || set_string(ctx, jobj, "netmask6", ip->netmask6) || set_string(ctx, jobj, "domain", ip->domain) || set_string(ctx, jobj, "proxyPac", ip->proxy_pac) || set_string(ctx, jobj, "gatewayAddr", ip->gateway_addr) || set_int(ctx, jobj, "MTU", ip->mtu)) return NULL; for (i = 0; i < 3; i++) { if (ip->dns[i] && add_string(ctx, jcls, jobj, "addDNS", ip->dns[i])) return NULL; if (ip->nbns[i] && add_string(ctx, jcls, jobj, "addNBNS", ip->nbns[i])) return NULL; } for (inc = ip->split_dns; inc; inc = inc->next) if (add_string(ctx, jcls, jobj, "addSplitDNS", inc->route)) return NULL; for (inc = ip->split_includes; inc; inc = inc->next) if (add_string(ctx, jcls, jobj, "addSplitInclude", inc->route)) return NULL; for (inc = ip->split_excludes; inc; inc = inc->next) if (add_string(ctx, jcls, jobj, "addSplitExclude", inc->route)) return NULL; for (; cstp; cstp = cstp->next) if (add_string_pair(ctx, jcls, jobj, "addCSTPOption", cstp->option, cstp->value)) return NULL; for (; dtls; dtls = dtls->next) if (add_string_pair(ctx, jcls, jobj, "addDTLSOption", dtls->option, dtls->value)) return NULL; return jobj; } JNIEXPORT jobjectArray JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getSupportedProtocols( JNIEnv *jenv, jclass jcls) { jmethodID mid; jobjectArray result; struct libctx ctx = { .jenv = jenv, .jobj = NULL, .async_lock = NULL, .vpninfo = NULL, .cmd_fd = -1, .loglevel = -1 }; /* call C library */ struct oc_vpn_proto *protos; int np, ii; np = openconnect_get_supported_protocols(&protos); if (np < 0) return NULL; /* get VPNProto class, its init method, and create array */ jcls = (*jenv)->FindClass(jenv, "org/infradead/libopenconnect/LibOpenConnect$VPNProto"); if (jcls == NULL) goto err; mid = (*jenv)->GetMethodID(jenv, jcls, "", "()V"); if (!mid) goto err; result = (*jenv)->NewObjectArray(jenv, np, jcls, NULL); if (result == NULL) goto nomem; for (ii=0; iiNewObject(jenv, jcls, mid); if (!jobj) goto nomem; if (set_string(&ctx, jobj, "name", protos[ii].name) || set_string(&ctx, jobj, "prettyName", protos[ii].pretty_name) || set_string(&ctx, jobj, "description", protos[ii].description) || set_int (&ctx, jobj, "flags", protos[ii].flags)) goto nomem; (*jenv)->SetObjectArrayElement(jenv, result, ii, jobj); } openconnect_free_supported_protocols(protos); return result; nomem: OOM(jenv); err: openconnect_free_supported_protocols(protos); return NULL; } openconnect-8.05/oath.c0000664000076400007640000003366513025070326016647 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * Copyright © 2013 John Morrissey * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include "openconnect-internal.h" static int b32_char(char in) { if (in >= 'A' && in <= 'Z') return in - 'A'; if (in >= 'a' && in <= 'z') return in - 'a'; if (in >= '2' && in <= '7') return in - '2' + 26; if (in == '=') return -2; return -1; } static int decode_b32_group(unsigned char *out, const char *in) { uint32_t d = 0; int c, i, len; for (i = 0; i < 8; i++) { c = b32_char(in[i]); if (c == -1) return -EINVAL; if (c == -2) break; d <<= 5; d |= c; /* Write the top bits before they disappear off the top of 'd' which is only a uint32_t */ if (i == 1) out[0] = d >> 2; } len = i; if (i < 8) { d <<= 5 * (8 - i); while (++i < 8) { if (in[i] != '=') return -EINVAL; } } store_be32(out + 1, d); switch(len) { case 8: return 5; case 7: return 4; case 5: return 3; case 4: return 2; case 2: return 1; default: return -EINVAL; } } static int decode_base32(struct openconnect_info *vpninfo, const char *b32, int len) { unsigned char *output = NULL; int inpos, outpos; int outlen; int ret; if (len % 8) { invalid: vpn_progress(vpninfo, PRG_ERR, _("Invalid base32 token string\n")); free(output); return -EINVAL; } outlen = len / 8 * 5; output = malloc(outlen); if (!output) { vpn_progress(vpninfo, PRG_ERR, _("Failed to allocate memory to decode OATH secret\n")); return -ENOMEM; } outpos = inpos = 0; while (inpos < len) { ret = decode_b32_group(output + outpos, b32 + inpos); if (ret < 0) goto invalid; inpos += 8; if (ret != 5 && inpos != len) goto invalid; outpos += ret; } vpninfo->oath_secret = (void *)output; vpninfo->oath_secret_len = outpos; return 0; } static char *parse_hex(const char *tok, int len) { unsigned char *data, *p; data = malloc((len + 1) / 2); if (!data) return NULL; p = data; if (len & 1) { char b[2] = { '0', tok[0] }; if (!isxdigit((int)(unsigned char)tok[0])) { free(data); return NULL; } *(p++) = unhex(b); tok++; len--; } while (len) { if (!isxdigit((int)(unsigned char)tok[0]) || !isxdigit((int)(unsigned char)tok[1])) { free(data); return NULL; } *(p++) = unhex(tok); tok += 2; len -= 2; } return (char *)data; } static int pskc_decode(struct openconnect_info *vpninfo, const char *token_str, int toklen, int mode) { #ifdef HAVE_LIBPSKC pskc_t *container; pskc_key_t *key; const char *key_algo; const char *want_algo; size_t klen; if (pskc_global_init()) return -EIO; if (pskc_init(&container)) return -ENOMEM; if (pskc_parse_from_memory(container, toklen, token_str)) return -EINVAL; key = pskc_get_keypackage(container, 0); if (!key) { pskc_done(container); return -EINVAL; } if (mode == OC_TOKEN_MODE_HOTP) want_algo = "urn:ietf:params:xml:ns:keyprov:pskc:hotp"; else want_algo = "urn:ietf:params:xml:ns:keyprov:pskc:totp"; key_algo = pskc_get_key_algorithm(key); if (!key_algo || strcmp(key_algo, want_algo)) { pskc_done(container); return -EINVAL; } vpninfo->oath_secret = (char *)pskc_get_key_data_secret(key, &klen); vpninfo->oath_secret_len = klen; if (!vpninfo->oath_secret) { pskc_done(container); return -EINVAL; } vpninfo->token_time = pskc_get_key_data_counter(key, NULL); vpninfo->pskc = container; vpninfo->pskc_key = key; return 0; #else /* !HAVE_LIBPSKC */ vpn_progress(vpninfo, PRG_ERR, _("This version of OpenConnect was built without PSKC support\n")); return -EINVAL; #endif /* HAVE_LIBPSKC */ } int set_totp_mode(struct openconnect_info *vpninfo, const char *token_str) { int ret, toklen; if (!token_str) return -EINVAL; toklen = strlen(token_str); while (toklen && isspace((int)(unsigned char)token_str[toklen-1])) toklen--; if (strncmp(token_str, "hotp_secret_format = HOTP_SECRET_PSKC; ret = pskc_decode(vpninfo, token_str, toklen, OC_TOKEN_MODE_TOTP); if (ret) return -EINVAL; vpninfo->token_mode = OC_TOKEN_MODE_TOTP; return 0; } if (!strncasecmp(token_str, "sha1:", 5)) { token_str += 5; toklen -= 5; vpninfo->oath_hmac_alg = OATH_ALG_HMAC_SHA1; } else if (!strncasecmp(token_str, "sha256:", 7)) { token_str += 7; toklen -= 7; vpninfo->oath_hmac_alg = OATH_ALG_HMAC_SHA256; } else if (!strncasecmp(token_str, "sha512:", 7)) { token_str += 7; toklen -= 7; vpninfo->oath_hmac_alg = OATH_ALG_HMAC_SHA512; } else vpninfo->oath_hmac_alg = OATH_ALG_HMAC_SHA1; if (strncasecmp(token_str, "base32:", strlen("base32:")) == 0) { ret = decode_base32(vpninfo, token_str + strlen("base32:"), toklen - strlen("base32:")); if (ret) return ret; } else if (strncmp(token_str, "0x", 2) == 0) { vpninfo->oath_secret_len = (toklen - 2) / 2; vpninfo->oath_secret = parse_hex(token_str + 2, toklen - 2); if (!vpninfo->oath_secret) return -EINVAL; } else { vpninfo->oath_secret = strdup(token_str); vpninfo->oath_secret_len = toklen; } vpninfo->token_mode = OC_TOKEN_MODE_TOTP; return 0; } int set_hotp_mode(struct openconnect_info *vpninfo, const char *token_str) { int ret, toklen; char *p; if (!token_str) return -EINVAL; toklen = strlen(token_str); if (strncmp(token_str, "hotp_secret_format = HOTP_SECRET_PSKC; ret = pskc_decode(vpninfo, token_str, toklen, OC_TOKEN_MODE_HOTP); if (ret) return -EINVAL; vpninfo->token_mode = OC_TOKEN_MODE_HOTP; return 0; } if (!strncasecmp(token_str, "sha1:", 5)) { token_str += 5; toklen -= 5; vpninfo->oath_hmac_alg = OATH_ALG_HMAC_SHA1; } else if (!strncasecmp(token_str, "sha256:", 7)) { token_str += 7; toklen -= 7; vpninfo->oath_hmac_alg = OATH_ALG_HMAC_SHA256; } else if (!strncasecmp(token_str, "sha512:", 7)) { toklen -= 7; token_str += 7; vpninfo->oath_hmac_alg = OATH_ALG_HMAC_SHA512; } else vpninfo->oath_hmac_alg = OATH_ALG_HMAC_SHA1; p = strrchr(token_str, ','); if (p) { long counter; toklen = p - token_str; p++; counter = strtol(p, &p, 0); if (counter < 0) return -EINVAL; while (*p) { if (isspace((int)(unsigned char)*p)) p++; else return -EINVAL; } vpninfo->token_time = counter; } else { while (toklen && isspace((int)(unsigned char)token_str[toklen-1])) toklen--; } if (strncasecmp(token_str, "base32:", strlen("base32:")) == 0) { vpninfo->hotp_secret_format = HOTP_SECRET_BASE32; ret = decode_base32(vpninfo, token_str + strlen("base32:"), toklen - strlen("base32:")); if (ret) return ret; } else if (strncmp(token_str, "0x", 2) == 0) { vpninfo->hotp_secret_format = HOTP_SECRET_HEX; vpninfo->oath_secret_len = (toklen - 2) / 2; vpninfo->oath_secret = parse_hex(token_str + 2, toklen - 2); if (!vpninfo->oath_secret) return -EINVAL; } else { vpninfo->hotp_secret_format = HOTP_SECRET_RAW; vpninfo->oath_secret = strdup(token_str); vpninfo->oath_secret_len = toklen; } vpninfo->token_mode = OC_TOKEN_MODE_HOTP; return 0; } /* Return value: * < 0, if unable to generate a tokencode * = 0, on success */ int can_gen_totp_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt) { if (vpninfo->token_tries == 0) { vpn_progress(vpninfo, PRG_DEBUG, _("OK to generate INITIAL tokencode\n")); vpninfo->token_time = 0; } else if (vpninfo->token_tries == 1) { vpn_progress(vpninfo, PRG_DEBUG, _("OK to generate NEXT tokencode\n")); vpninfo->token_time += 30; } else { /* limit the number of retries, to avoid account lockouts */ vpn_progress(vpninfo, PRG_INFO, _("Server is rejecting the soft token; switching to manual entry\n")); return -ENOENT; } return 0; } /* Return value: * < 0, if unable to generate a tokencode * = 0, on success */ int can_gen_hotp_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt) { if (vpninfo->token_tries == 0) { vpn_progress(vpninfo, PRG_DEBUG, _("OK to generate INITIAL tokencode\n")); } else if (vpninfo->token_tries == 1) { vpn_progress(vpninfo, PRG_DEBUG, _("OK to generate NEXT tokencode\n")); } else { /* limit the number of retries, to avoid account lockouts */ vpn_progress(vpninfo, PRG_INFO, _("Server is rejecting the soft token; switching to manual entry\n")); return -ENOENT; } return 0; } static int gen_hotp(struct openconnect_info *vpninfo, uint64_t data, char *output) { uint32_t data_be[2]; int digest; data_be[0] = htonl(data >> 32); data_be[1] = htonl(data); digest = hotp_hmac(vpninfo, data_be); if (digest < 0) return digest; digest %= 1000000; snprintf(output, 7, "%06d", digest); return 0; } int do_gen_totp_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt) { char tokencode[7]; uint64_t challenge; if (!vpninfo->token_time) vpninfo->token_time = time(NULL); vpn_progress(vpninfo, PRG_INFO, _("Generating OATH TOTP token code\n")); /* XXX: Support non-standard start time and step size */ challenge = vpninfo->token_time / 30; if (gen_hotp(vpninfo, challenge, tokencode)) return -EIO; vpninfo->token_tries++; opt->_value = strdup(tokencode); return opt->_value ? 0 : -ENOMEM; } static void buf_append_base32(struct oc_text_buf *buf, void *data, int len) { static const char alphabet[] = "ABCDEFGHIJKLMNOPQRSTUVWXYZ234567"; unsigned char *bytes = data; int i, j, b32_len = ((len + 4) / 5) * 8; uint32_t d; char b32[8]; if (buf_ensure_space(buf, b32_len + 1)) return; for (i = 0; i < (len - 4); i += 5) { /* Load low 4 input bytes into 'd' */ d = load_be32(&bytes[i + 1]); /* Loop backwardd over output group, emitting low * 5 bits of 'd' each time and shifting. */ for (j = 7; j >= 0; j--) { b32[j] = alphabet[d & 31]; d >>= 5; /* Mask in the last input byte when we can fit it */ if (j == 5) d |= bytes[i] << 17; } buf_append_bytes(buf, b32, 8); } if (i < len) { d = 0; /* This is basically load_be32(bytes + i) but substituting * zeroes instead of reading off the end. */ for (j = 0; j < 4; j++) { d <<= 8; if (i + j < len) d |= bytes[i + j]; } /* Now, work out how much '=' padding we need */ memset(b32, '=', 8); b32_len = (((len - i) * 8) + 4) / 5; memset(b32 + b32_len, '=', 8 - b32_len); /* If we need 7 characters of data then put the seventh * in manually because the LSB of 'd' is actually bit 3 * of the output character. */ if (b32_len == 7) { b32[6] = alphabet[(d & 3) << 3]; b32_len--; } /* Now shift bits into the right place and do the simple * loop emitting characters from the low 5 bits of 'd'. */ d >>= ((8 - b32_len) * 5) - 8; for (j = b32_len - 1; j >= 0; j--) { b32[j] = alphabet[d & 31]; d >>= 5; } buf_append_bytes(buf, b32, 8); } } static char *regen_hotp_secret(struct openconnect_info *vpninfo) { char *new_secret = NULL; struct oc_text_buf *buf; switch (vpninfo->hotp_secret_format) { case HOTP_SECRET_BASE32: buf = buf_alloc(); buf_append(buf, "base32:"); buf_append_base32(buf, vpninfo->oath_secret, vpninfo->oath_secret_len); break; case HOTP_SECRET_HEX: buf = buf_alloc(); buf_append(buf, "0x"); buf_append_hex(buf, vpninfo->oath_secret, vpninfo->oath_secret_len); break; case HOTP_SECRET_RAW: buf = buf_alloc(); buf_append_bytes(buf, vpninfo->oath_secret, vpninfo->oath_secret_len); break; case HOTP_SECRET_PSKC: #ifdef HAVE_LIBPSKC { size_t len; if (!vpninfo->pskc_key || !vpninfo->pskc) return NULL; pskc_set_key_data_counter(vpninfo->pskc_key, vpninfo->token_time); pskc_build_xml(vpninfo->pskc, &new_secret, &len); /* FFS #1: libpskc craps all over itself on pskc_build_xml(). https://bugzilla.redhat.com/show_bug.cgi?id=1129491 Hopefully this will be fixed by 2.4.2 but make it unconditional for now... */ if (1 || !pskc_check_version("2.4.2")) { pskc_done(vpninfo->pskc); vpninfo->pskc = NULL; vpninfo->pskc_key = NULL; if (pskc_init(&vpninfo->pskc) || pskc_parse_from_memory(vpninfo->pskc, len, new_secret)) { pskc_done(vpninfo->pskc); vpninfo->pskc = NULL; } else { vpninfo->pskc_key = pskc_get_keypackage(vpninfo->pskc, 0); vpninfo->oath_secret = (char *)pskc_get_key_data_secret(vpninfo->pskc_key, NULL); } } /* FFS #2: No terminating NUL byte */ realloc_inplace(new_secret, len + 1); if (new_secret) new_secret[len] = 0; return new_secret; } #endif default: return NULL; } buf_append(buf,",%ld", (long)vpninfo->token_time); if (!buf_error(buf)) { new_secret = buf->data; buf->data = NULL; } buf_free(buf); return new_secret; } int do_gen_hotp_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt) { char tokencode[7]; int ret; vpn_progress(vpninfo, PRG_INFO, _("Generating OATH HOTP token code\n")); if (vpninfo->lock_token) { /* This may call openconnect_set_token_mode() again to update * the token if it's changed. */ ret = vpninfo->lock_token(vpninfo->tok_cbdata); if (ret) return ret; } if (gen_hotp(vpninfo, vpninfo->token_time, tokencode)) return -EIO; vpninfo->token_time++; vpninfo->token_tries++; opt->_value = strdup(tokencode); if (vpninfo->unlock_token) { char *new_tok = regen_hotp_secret(vpninfo); vpninfo->unlock_token(vpninfo->tok_cbdata, new_tok); free(new_tok); } return opt->_value ? 0 : -ENOMEM; } openconnect-8.05/config.sub0000755000076400007640000007530413502152240017521 0ustar00dwoodhoudwoodhou00000000000000#! /bin/sh # Configuration validation subroutine script. # Copyright 1992-2018 Free Software Foundation, Inc. timestamp='2018-08-29' # This file is free software; you can redistribute it and/or modify it # under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 3 of the License, or # (at your option) any later version. # # This program is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program; if not, see . # # As a special exception to the GNU General Public License, if you # distribute this file as part of a program that contains a # configuration script generated by Autoconf, you may include it under # the same distribution terms that you use for the rest of that # program. This Exception is an additional permission under section 7 # of the GNU General Public License, version 3 ("GPLv3"). # Please send patches to . # # Configuration subroutine to validate and canonicalize a configuration type. # Supply the specified configuration type as an argument. # If it is invalid, we print an error message on stderr and exit with code 1. # Otherwise, we print the canonical config type on stdout and succeed. # You can get the latest version of this script from: # https://git.savannah.gnu.org/gitweb/?p=config.git;a=blob_plain;f=config.sub # This file is supposed to be the same for all GNU packages # and recognize all the CPU types, system types and aliases # that are meaningful with *any* GNU software. # Each package is responsible for reporting which valid configurations # it does not support. The user should be able to distinguish # a failure to support a valid configuration from a meaningless # configuration. # The goal of this file is to map all the various variations of a given # machine specification into a single specification in the form: # CPU_TYPE-MANUFACTURER-OPERATING_SYSTEM # or in some cases, the newer four-part form: # CPU_TYPE-MANUFACTURER-KERNEL-OPERATING_SYSTEM # It is wrong to echo any other type of specification. me=`echo "$0" | sed -e 's,.*/,,'` usage="\ Usage: $0 [OPTION] CPU-MFR-OPSYS or ALIAS Canonicalize a configuration name. Options: -h, --help print this help, then exit -t, --time-stamp print date of last modification, then exit -v, --version print version number, then exit Report bugs and patches to ." version="\ GNU config.sub ($timestamp) Copyright 1992-2018 Free Software Foundation, Inc. This is free software; see the source for copying conditions. There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE." help=" Try \`$me --help' for more information." # Parse command line while test $# -gt 0 ; do case $1 in --time-stamp | --time* | -t ) echo "$timestamp" ; exit ;; --version | -v ) echo "$version" ; exit ;; --help | --h* | -h ) echo "$usage"; exit ;; -- ) # Stop option processing shift; break ;; - ) # Use stdin as input. break ;; -* ) echo "$me: invalid option $1$help" exit 1 ;; *local*) # First pass through any local machine types. echo "$1" exit ;; * ) break ;; esac done case $# in 0) echo "$me: missing argument$help" >&2 exit 1;; 1) ;; *) echo "$me: too many arguments$help" >&2 exit 1;; esac # Split fields of configuration type IFS="-" read -r field1 field2 field3 field4 <&2 exit 1 ;; *-*-*-*) basic_machine=$field1-$field2 os=$field3-$field4 ;; *-*-*) # Ambiguous whether COMPANY is present, or skipped and KERNEL-OS is two # parts maybe_os=$field2-$field3 case $maybe_os in nto-qnx* | linux-gnu* | linux-android* | linux-dietlibc \ | linux-newlib* | linux-musl* | linux-uclibc* | uclinux-uclibc* \ | uclinux-gnu* | kfreebsd*-gnu* | knetbsd*-gnu* | netbsd*-gnu* \ | netbsd*-eabi* | kopensolaris*-gnu* | cloudabi*-eabi* \ | storm-chaos* | os2-emx* | rtmk-nova*) basic_machine=$field1 os=$maybe_os ;; android-linux) basic_machine=$field1-unknown os=linux-android ;; *) basic_machine=$field1-$field2 os=$field3 ;; esac ;; *-*) # A lone config we happen to match not fitting any patern case $field1-$field2 in decstation-3100) basic_machine=mips-dec os= ;; *-*) # Second component is usually, but not always the OS case $field2 in # Prevent following clause from handling this valid os sun*os*) basic_machine=$field1 os=$field2 ;; # Manufacturers dec* | mips* | sequent* | encore* | pc533* | sgi* | sony* \ | att* | 7300* | 3300* | delta* | motorola* | sun[234]* \ | unicom* | ibm* | next | hp | isi* | apollo | altos* \ | convergent* | ncr* | news | 32* | 3600* | 3100* \ | hitachi* | c[123]* | convex* | sun | crds | omron* | dg \ | ultra | tti* | harris | dolphin | highlevel | gould \ | cbm | ns | masscomp | apple | axis | knuth | cray \ | microblaze* | sim | cisco \ | oki | wec | wrs | winbond) basic_machine=$field1-$field2 os= ;; *) basic_machine=$field1 os=$field2 ;; esac ;; esac ;; *) # Convert single-component short-hands not valid as part of # multi-component configurations. case $field1 in 386bsd) basic_machine=i386-pc os=bsd ;; a29khif) basic_machine=a29k-amd os=udi ;; adobe68k) basic_machine=m68010-adobe os=scout ;; alliant) basic_machine=fx80-alliant os= ;; altos | altos3068) basic_machine=m68k-altos os= ;; am29k) basic_machine=a29k-none os=bsd ;; amdahl) basic_machine=580-amdahl os=sysv ;; amiga) basic_machine=m68k-unknown os= ;; amigaos | amigados) basic_machine=m68k-unknown os=amigaos ;; amigaunix | amix) basic_machine=m68k-unknown os=sysv4 ;; apollo68) basic_machine=m68k-apollo os=sysv ;; apollo68bsd) basic_machine=m68k-apollo os=bsd ;; aros) basic_machine=i386-pc os=aros ;; aux) basic_machine=m68k-apple os=aux ;; balance) basic_machine=ns32k-sequent os=dynix ;; blackfin) basic_machine=bfin-unknown os=linux ;; cegcc) basic_machine=arm-unknown os=cegcc ;; convex-c1) basic_machine=c1-convex os=bsd ;; convex-c2) basic_machine=c2-convex os=bsd ;; convex-c32) basic_machine=c32-convex os=bsd ;; convex-c34) basic_machine=c34-convex os=bsd ;; convex-c38) basic_machine=c38-convex os=bsd ;; cray) basic_machine=j90-cray os=unicos ;; crds | unos) basic_machine=m68k-crds os= ;; da30) basic_machine=m68k-da30 os= ;; decstation | pmax | pmin | dec3100 | decstatn) basic_machine=mips-dec os= ;; delta88) basic_machine=m88k-motorola os=sysv3 ;; dicos) basic_machine=i686-pc os=dicos ;; djgpp) basic_machine=i586-pc os=msdosdjgpp ;; ebmon29k) basic_machine=a29k-amd os=ebmon ;; es1800 | OSE68k | ose68k | ose | OSE) basic_machine=m68k-ericsson os=ose ;; gmicro) basic_machine=tron-gmicro os=sysv ;; go32) basic_machine=i386-pc os=go32 ;; h8300hms) basic_machine=h8300-hitachi os=hms ;; h8300xray) basic_machine=h8300-hitachi os=xray ;; h8500hms) basic_machine=h8500-hitachi os=hms ;; harris) basic_machine=m88k-harris os=sysv3 ;; hp300) basic_machine=m68k-hp ;; hp300bsd) basic_machine=m68k-hp os=bsd ;; hp300hpux) basic_machine=m68k-hp os=hpux ;; hppaosf) basic_machine=hppa1.1-hp os=osf ;; hppro) basic_machine=hppa1.1-hp os=proelf ;; i386mach) basic_machine=i386-mach os=mach ;; vsta) basic_machine=i386-pc os=vsta ;; isi68 | isi) basic_machine=m68k-isi os=sysv ;; m68knommu) basic_machine=m68k-unknown os=linux ;; magnum | m3230) basic_machine=mips-mips os=sysv ;; merlin) basic_machine=ns32k-utek os=sysv ;; mingw64) basic_machine=x86_64-pc os=mingw64 ;; mingw32) basic_machine=i686-pc os=mingw32 ;; mingw32ce) basic_machine=arm-unknown os=mingw32ce ;; monitor) basic_machine=m68k-rom68k os=coff ;; morphos) basic_machine=powerpc-unknown os=morphos ;; moxiebox) basic_machine=moxie-unknown os=moxiebox ;; msdos) basic_machine=i386-pc os=msdos ;; msys) basic_machine=i686-pc os=msys ;; mvs) basic_machine=i370-ibm os=mvs ;; nacl) basic_machine=le32-unknown os=nacl ;; ncr3000) basic_machine=i486-ncr os=sysv4 ;; netbsd386) basic_machine=i386-pc os=netbsd ;; netwinder) basic_machine=armv4l-rebel os=linux ;; news | news700 | news800 | news900) basic_machine=m68k-sony os=newsos ;; news1000) basic_machine=m68030-sony os=newsos ;; necv70) basic_machine=v70-nec os=sysv ;; nh3000) basic_machine=m68k-harris os=cxux ;; nh[45]000) basic_machine=m88k-harris os=cxux ;; nindy960) basic_machine=i960-intel os=nindy ;; mon960) basic_machine=i960-intel os=mon960 ;; nonstopux) basic_machine=mips-compaq os=nonstopux ;; os400) basic_machine=powerpc-ibm os=os400 ;; OSE68000 | ose68000) basic_machine=m68000-ericsson os=ose ;; os68k) basic_machine=m68k-none os=os68k ;; paragon) basic_machine=i860-intel os=osf ;; parisc) basic_machine=hppa-unknown os=linux ;; pw32) basic_machine=i586-unknown os=pw32 ;; rdos | rdos64) basic_machine=x86_64-pc os=rdos ;; rdos32) basic_machine=i386-pc os=rdos ;; rom68k) basic_machine=m68k-rom68k os=coff ;; sa29200) basic_machine=a29k-amd os=udi ;; sei) basic_machine=mips-sei os=seiux ;; sequent) basic_machine=i386-sequent os= ;; sps7) basic_machine=m68k-bull os=sysv2 ;; st2000) basic_machine=m68k-tandem os= ;; stratus) basic_machine=i860-stratus os=sysv4 ;; sun2) basic_machine=m68000-sun os= ;; sun2os3) basic_machine=m68000-sun os=sunos3 ;; sun2os4) basic_machine=m68000-sun os=sunos4 ;; sun3) basic_machine=m68k-sun os= ;; sun3os3) basic_machine=m68k-sun os=sunos3 ;; sun3os4) basic_machine=m68k-sun os=sunos4 ;; sun4) basic_machine=sparc-sun os= ;; sun4os3) basic_machine=sparc-sun os=sunos3 ;; sun4os4) basic_machine=sparc-sun os=sunos4 ;; sun4sol2) basic_machine=sparc-sun os=solaris2 ;; sun386 | sun386i | roadrunner) basic_machine=i386-sun os= ;; sv1) basic_machine=sv1-cray os=unicos ;; symmetry) basic_machine=i386-sequent os=dynix ;; t3e) basic_machine=alphaev5-cray os=unicos ;; t90) basic_machine=t90-cray os=unicos ;; toad1) basic_machine=pdp10-xkl os=tops20 ;; tpf) basic_machine=s390x-ibm os=tpf ;; udi29k) basic_machine=a29k-amd os=udi ;; ultra3) basic_machine=a29k-nyu os=sym1 ;; v810 | necv810) basic_machine=v810-nec os=none ;; vaxv) basic_machine=vax-dec os=sysv ;; vms) basic_machine=vax-dec os=vms ;; vxworks960) basic_machine=i960-wrs os=vxworks ;; vxworks68) basic_machine=m68k-wrs os=vxworks ;; vxworks29k) basic_machine=a29k-wrs os=vxworks ;; xbox) basic_machine=i686-pc os=mingw32 ;; ymp) basic_machine=ymp-cray os=unicos ;; *) basic_machine=$1 os= ;; esac ;; esac # Decode 1-component or ad-hoc basic machines case $basic_machine in # Here we handle the default manufacturer of certain CPU types. It is in # some cases the only manufacturer, in others, it is the most popular. w89k) cpu=hppa1.1 vendor=winbond ;; op50n) cpu=hppa1.1 vendor=oki ;; op60c) cpu=hppa1.1 vendor=oki ;; ibm*) cpu=i370 vendor=ibm ;; orion105) cpu=clipper vendor=highlevel ;; mac | mpw | mac-mpw) cpu=m68k vendor=apple ;; pmac | pmac-mpw) cpu=powerpc vendor=apple ;; # Recognize the various machine names and aliases which stand # for a CPU type and a company and sometimes even an OS. 3b1 | 7300 | 7300-att | att-7300 | pc7300 | safari | unixpc) cpu=m68000 vendor=att ;; 3b*) cpu=we32k vendor=att ;; bluegene*) cpu=powerpc vendor=ibm os=cnk ;; decsystem10* | dec10*) cpu=pdp10 vendor=dec os=tops10 ;; decsystem20* | dec20*) cpu=pdp10 vendor=dec os=tops20 ;; delta | 3300 | motorola-3300 | motorola-delta \ | 3300-motorola | delta-motorola) cpu=m68k vendor=motorola ;; dpx2*) cpu=m68k vendor=bull os=sysv3 ;; encore | umax | mmax) cpu=ns32k vendor=encore ;; elxsi) cpu=elxsi vendor=elxsi os=${os:-bsd} ;; fx2800) cpu=i860 vendor=alliant ;; genix) cpu=ns32k vendor=ns ;; h3050r* | hiux*) cpu=hppa1.1 vendor=hitachi os=hiuxwe2 ;; hp3k9[0-9][0-9] | hp9[0-9][0-9]) cpu=hppa1.0 vendor=hp ;; hp9k2[0-9][0-9] | hp9k31[0-9]) cpu=m68000 vendor=hp ;; hp9k3[2-9][0-9]) cpu=m68k vendor=hp ;; hp9k6[0-9][0-9] | hp6[0-9][0-9]) cpu=hppa1.0 vendor=hp ;; hp9k7[0-79][0-9] | hp7[0-79][0-9]) cpu=hppa1.1 vendor=hp ;; hp9k78[0-9] | hp78[0-9]) # FIXME: really hppa2.0-hp cpu=hppa1.1 vendor=hp ;; hp9k8[67]1 | hp8[67]1 | hp9k80[24] | hp80[24] | hp9k8[78]9 | hp8[78]9 | hp9k893 | hp893) # FIXME: really hppa2.0-hp cpu=hppa1.1 vendor=hp ;; hp9k8[0-9][13679] | hp8[0-9][13679]) cpu=hppa1.1 vendor=hp ;; hp9k8[0-9][0-9] | hp8[0-9][0-9]) cpu=hppa1.0 vendor=hp ;; i*86v32) cpu=`echo "$1" | sed -e 's/86.*/86/'` vendor=pc os=sysv32 ;; i*86v4*) cpu=`echo "$1" | sed -e 's/86.*/86/'` vendor=pc os=sysv4 ;; i*86v) cpu=`echo "$1" | sed -e 's/86.*/86/'` vendor=pc os=sysv ;; i*86sol2) cpu=`echo "$1" | sed -e 's/86.*/86/'` vendor=pc os=solaris2 ;; j90 | j90-cray) cpu=j90 vendor=cray os=${os:-unicos} ;; iris | iris4d) cpu=mips vendor=sgi case $os in irix*) ;; *) os=irix4 ;; esac ;; miniframe) cpu=m68000 vendor=convergent ;; *mint | mint[0-9]* | *MiNT | *MiNT[0-9]*) cpu=m68k vendor=atari os=mint ;; news-3600 | risc-news) cpu=mips vendor=sony os=newsos ;; next | m*-next) cpu=m68k vendor=next case $os in nextstep* ) ;; ns2*) os=nextstep2 ;; *) os=nextstep3 ;; esac ;; np1) cpu=np1 vendor=gould ;; op50n-* | op60c-*) cpu=hppa1.1 vendor=oki os=proelf ;; pa-hitachi) cpu=hppa1.1 vendor=hitachi os=hiuxwe2 ;; pbd) cpu=sparc vendor=tti ;; pbb) cpu=m68k vendor=tti ;; pc532) cpu=ns32k vendor=pc532 ;; pn) cpu=pn vendor=gould ;; power) cpu=power vendor=ibm ;; ps2) cpu=i386 vendor=ibm ;; rm[46]00) cpu=mips vendor=siemens ;; rtpc | rtpc-*) cpu=romp vendor=ibm ;; sde) cpu=mipsisa32 vendor=sde os=${os:-elf} ;; simso-wrs) cpu=sparclite vendor=wrs os=vxworks ;; tower | tower-32) cpu=m68k vendor=ncr ;; vpp*|vx|vx-*) cpu=f301 vendor=fujitsu ;; w65) cpu=w65 vendor=wdc ;; w89k-*) cpu=hppa1.1 vendor=winbond os=proelf ;; none) cpu=none vendor=none ;; leon|leon[3-9]) cpu=sparc vendor=$basic_machine ;; leon-*|leon[3-9]-*) cpu=sparc vendor=`echo "$basic_machine" | sed 's/-.*//'` ;; *-*) IFS="-" read -r cpu vendor <&2 exit 1 ;; esac ;; esac # Here we canonicalize certain aliases for manufacturers. case $vendor in digital*) vendor=dec ;; commodore*) vendor=cbm ;; *) ;; esac # Decode manufacturer-specific aliases for certain operating systems. if [ x$os != x ] then case $os in # First match some system type aliases that might get confused # with valid system types. # solaris* is a basic system type, with this one exception. auroraux) os=auroraux ;; bluegene*) os=cnk ;; solaris1 | solaris1.*) os=`echo $os | sed -e 's|solaris1|sunos4|'` ;; solaris) os=solaris2 ;; unixware*) os=sysv4.2uw ;; gnu/linux*) os=`echo $os | sed -e 's|gnu/linux|linux-gnu|'` ;; # es1800 is here to avoid being matched by es* (a different OS) es1800*) os=ose ;; # Some version numbers need modification chorusos*) os=chorusos ;; isc) os=isc2.2 ;; sco6) os=sco5v6 ;; sco5) os=sco3.2v5 ;; sco4) os=sco3.2v4 ;; sco3.2.[4-9]*) os=`echo $os | sed -e 's/sco3.2./sco3.2v/'` ;; sco3.2v[4-9]* | sco5v6*) # Don't forget version if it is 3.2v4 or newer. ;; scout) # Don't match below ;; sco*) os=sco3.2v2 ;; psos*) os=psos ;; # Now accept the basic system types. # The portable systems comes first. # Each alternative MUST end in a * to match a version number. # sysv* is not here because it comes later, after sysvr4. gnu* | bsd* | mach* | minix* | genix* | ultrix* | irix* \ | *vms* | esix* | aix* | cnk* | sunos | sunos[34]*\ | hpux* | unos* | osf* | luna* | dgux* | auroraux* | solaris* \ | sym* | kopensolaris* | plan9* \ | amigaos* | amigados* | msdos* | newsos* | unicos* | aof* \ | aos* | aros* | cloudabi* | sortix* \ | nindy* | vxsim* | vxworks* | ebmon* | hms* | mvs* \ | clix* | riscos* | uniplus* | iris* | isc* | rtu* | xenix* \ | knetbsd* | mirbsd* | netbsd* \ | bitrig* | openbsd* | solidbsd* | libertybsd* \ | ekkobsd* | kfreebsd* | freebsd* | riscix* | lynxos* \ | bosx* | nextstep* | cxux* | aout* | elf* | oabi* \ | ptx* | coff* | ecoff* | winnt* | domain* | vsta* \ | udi* | eabi* | lites* | ieee* | go32* | aux* | hcos* \ | chorusrdb* | cegcc* | glidix* \ | cygwin* | msys* | pe* | moss* | proelf* | rtems* \ | midipix* | mingw32* | mingw64* | linux-gnu* | linux-android* \ | linux-newlib* | linux-musl* | linux-uclibc* \ | uxpv* | beos* | mpeix* | udk* | moxiebox* \ | interix* | uwin* | mks* | rhapsody* | darwin* \ | openstep* | oskit* | conix* | pw32* | nonstopux* \ | storm-chaos* | tops10* | tenex* | tops20* | its* \ | os2* | vos* | palmos* | uclinux* | nucleus* \ | morphos* | superux* | rtmk* | windiss* \ | powermax* | dnix* | nx6 | nx7 | sei* | dragonfly* \ | skyos* | haiku* | rdos* | toppers* | drops* | es* \ | onefs* | tirtos* | phoenix* | fuchsia* | redox* | bme* \ | midnightbsd*) # Remember, each alternative MUST END IN *, to match a version number. ;; qnx*) case $cpu in x86 | i*86) ;; *) os=nto-$os ;; esac ;; hiux*) os=hiuxwe2 ;; nto-qnx*) ;; nto*) os=`echo $os | sed -e 's|nto|nto-qnx|'` ;; sim | xray | os68k* | v88r* \ | windows* | osx | abug | netware* | os9* \ | macos* | mpw* | magic* | mmixware* | mon960* | lnews*) ;; linux-dietlibc) os=linux-dietlibc ;; linux*) os=`echo $os | sed -e 's|linux|linux-gnu|'` ;; lynx*178) os=lynxos178 ;; lynx*5) os=lynxos5 ;; lynx*) os=lynxos ;; mac*) os=`echo "$os" | sed -e 's|mac|macos|'` ;; opened*) os=openedition ;; os400*) os=os400 ;; sunos5*) os=`echo "$os" | sed -e 's|sunos5|solaris2|'` ;; sunos6*) os=`echo "$os" | sed -e 's|sunos6|solaris3|'` ;; wince*) os=wince ;; utek*) os=bsd ;; dynix*) os=bsd ;; acis*) os=aos ;; atheos*) os=atheos ;; syllable*) os=syllable ;; 386bsd) os=bsd ;; ctix* | uts*) os=sysv ;; nova*) os=rtmk-nova ;; ns2) os=nextstep2 ;; nsk*) os=nsk ;; # Preserve the version number of sinix5. sinix5.*) os=`echo $os | sed -e 's|sinix|sysv|'` ;; sinix*) os=sysv4 ;; tpf*) os=tpf ;; triton*) os=sysv3 ;; oss*) os=sysv3 ;; svr4*) os=sysv4 ;; svr3) os=sysv3 ;; sysvr4) os=sysv4 ;; # This must come after sysvr4. sysv*) ;; ose*) os=ose ;; *mint | mint[0-9]* | *MiNT | MiNT[0-9]*) os=mint ;; zvmoe) os=zvmoe ;; dicos*) os=dicos ;; pikeos*) # Until real need of OS specific support for # particular features comes up, bare metal # configurations are quite functional. case $cpu in arm*) os=eabi ;; *) os=elf ;; esac ;; nacl*) ;; ios) ;; none) ;; *-eabi) ;; *) echo Invalid configuration \`"$1"\': system \`"$os"\' not recognized 1>&2 exit 1 ;; esac else # Here we handle the default operating systems that come with various machines. # The value should be what the vendor currently ships out the door with their # machine or put another way, the most popular os provided with the machine. # Note that if you're going to try to match "-MANUFACTURER" here (say, # "-sun"), then you have to tell the case statement up towards the top # that MANUFACTURER isn't an operating system. Otherwise, code above # will signal an error saying that MANUFACTURER isn't an operating # system, and we'll never get to this point. case $cpu-$vendor in score-*) os=elf ;; spu-*) os=elf ;; *-acorn) os=riscix1.2 ;; arm*-rebel) os=linux ;; arm*-semi) os=aout ;; c4x-* | tic4x-*) os=coff ;; c8051-*) os=elf ;; clipper-intergraph) os=clix ;; hexagon-*) os=elf ;; tic54x-*) os=coff ;; tic55x-*) os=coff ;; tic6x-*) os=coff ;; # This must come before the *-dec entry. pdp10-*) os=tops20 ;; pdp11-*) os=none ;; *-dec | vax-*) os=ultrix4.2 ;; m68*-apollo) os=domain ;; i386-sun) os=sunos4.0.2 ;; m68000-sun) os=sunos3 ;; m68*-cisco) os=aout ;; mep-*) os=elf ;; mips*-cisco) os=elf ;; mips*-*) os=elf ;; or32-*) os=coff ;; *-tti) # must be before sparc entry or we get the wrong os. os=sysv3 ;; sparc-* | *-sun) os=sunos4.1.1 ;; pru-*) os=elf ;; *-be) os=beos ;; *-ibm) os=aix ;; *-knuth) os=mmixware ;; *-wec) os=proelf ;; *-winbond) os=proelf ;; *-oki) os=proelf ;; *-hp) os=hpux ;; *-hitachi) os=hiux ;; i860-* | *-att | *-ncr | *-altos | *-motorola | *-convergent) os=sysv ;; *-cbm) os=amigaos ;; *-dg) os=dgux ;; *-dolphin) os=sysv3 ;; m68k-ccur) os=rtu ;; m88k-omron*) os=luna ;; *-next) os=nextstep ;; *-sequent) os=ptx ;; *-crds) os=unos ;; *-ns) os=genix ;; i370-*) os=mvs ;; *-gould) os=sysv ;; *-highlevel) os=bsd ;; *-encore) os=bsd ;; *-sgi) os=irix ;; *-siemens) os=sysv4 ;; *-masscomp) os=rtu ;; f30[01]-fujitsu | f700-fujitsu) os=uxpv ;; *-rom68k) os=coff ;; *-*bug) os=coff ;; *-apple) os=macos ;; *-atari*) os=mint ;; *-wrs) os=vxworks ;; *) os=none ;; esac fi # Here we handle the case where we know the os, and the CPU type, but not the # manufacturer. We pick the logical manufacturer. case $vendor in unknown) case $os in riscix*) vendor=acorn ;; sunos*) vendor=sun ;; cnk*|-aix*) vendor=ibm ;; beos*) vendor=be ;; hpux*) vendor=hp ;; mpeix*) vendor=hp ;; hiux*) vendor=hitachi ;; unos*) vendor=crds ;; dgux*) vendor=dg ;; luna*) vendor=omron ;; genix*) vendor=ns ;; clix*) vendor=intergraph ;; mvs* | opened*) vendor=ibm ;; os400*) vendor=ibm ;; ptx*) vendor=sequent ;; tpf*) vendor=ibm ;; vxsim* | vxworks* | windiss*) vendor=wrs ;; aux*) vendor=apple ;; hms*) vendor=hitachi ;; mpw* | macos*) vendor=apple ;; *mint | mint[0-9]* | *MiNT | MiNT[0-9]*) vendor=atari ;; vos*) vendor=stratus ;; esac ;; esac echo "$cpu-$vendor-$os" exit # Local variables: # eval: (add-hook 'before-save-hook 'time-stamp) # time-stamp-start: "timestamp='" # time-stamp-format: "%:y-%02m-%02d" # time-stamp-end: "'" # End: openconnect-8.05/openssl-pkcs11.c0000664000076400007640000004563513025070326020477 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include "openconnect-internal.h" #include #ifdef HAVE_LIBP11 /* And p11-kit */ #include #include static PKCS11_CTX *pkcs11_ctx(struct openconnect_info *vpninfo) { PKCS11_CTX *ctx; if (!vpninfo->pkcs11_ctx) { ERR_load_PKCS11_strings(); ctx = PKCS11_CTX_new(); if (!ctx) { vpn_progress(vpninfo, PRG_ERR, _("Failed to establish libp11 PKCS#11 context:\n")); openconnect_report_ssl_errors(vpninfo); return NULL; } if (PKCS11_CTX_load(ctx, DEFAULT_PKCS11_MODULE) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to load PKCS#11 provider module (%s):\n"), DEFAULT_PKCS11_MODULE); openconnect_report_ssl_errors(vpninfo); PKCS11_CTX_free(ctx); return NULL; } vpninfo->pkcs11_ctx = ctx; } return vpninfo->pkcs11_ctx; } static int parse_uri_attr(const char *attr, int attrlen, unsigned char **field, size_t *field_len) { size_t outlen = 0; unsigned char *out; int ret = 0; out = malloc(attrlen + 1); if (!out) return -ENOMEM; while (!ret && attrlen) { if (*attr == '%') { if (attrlen < 3) { ret = -EINVAL; } else { out[outlen++] = unhex(attr+1); attrlen -= 3; attr += 3; } } else { out[outlen++] = *(attr++); attrlen--; } } if (ret) free(out); else { if (field_len) *field_len = outlen; out[outlen] = 0; *field = out; } return ret; } static int parse_pkcs11_uri(const char *uri, PKCS11_TOKEN **p_tok, unsigned char **id, size_t *id_len, char **label, char **pin) { PKCS11_TOKEN *tok; char *newlabel = NULL; const char *end, *p; int ret = 0; tok = calloc(1, sizeof(*tok)); if (!tok) { fprintf(stderr, "Could not allocate memory for token info\n"); return -ENOMEM; } /* We are only ever invoked if the string starts with 'pkcs11:' */ end = uri + 6; while (!ret && end[0] && end[1]) { p = end + 1; end = strchr(p, ';'); if (!end) end = p + strlen(p); if (!strncmp(p, "model=", 6)) { p += 6; ret = parse_uri_attr(p, end - p, (void *)&tok->model, NULL); } else if (!strncmp(p, "manufacturer=", 13)) { p += 13; ret = parse_uri_attr(p, end - p, (void *)&tok->manufacturer, NULL); } else if (!strncmp(p, "token=", 6)) { p += 6; ret = parse_uri_attr(p, end - p, (void *)&tok->label, NULL); } else if (!strncmp(p, "serial=", 7)) { p += 7; ret = parse_uri_attr(p, end - p, (void *)&tok->serialnr, NULL); } else if (!strncmp(p, "object=", 7)) { p += 7; ret = parse_uri_attr(p, end - p, (void *)&newlabel, NULL); } else if (!strncmp(p, "id=", 3)) { p += 3; ret = parse_uri_attr(p, end - p, (void *)id, id_len); } else if (!strncmp(p, "type=", 5) || !strncmp(p, "object-type=", 12)) { p = strchr(p, '=') + 1; if ((end - p == 4 && !strncmp(p, "cert", 4)) || (end - p == 7 && !strncmp(p, "private", 7))) { /* Actually, just ignore it */ } else ret = -EINVAL; /* Ignore object type for now. */ } else if (!strncmp(p, "pin-value=", 10)) { /* XXX We could do better than this but it'll cover all sane use cases. */ char *pinvalue = NULL; p += 10; ret = parse_uri_attr(p, end - p, (void *)&pinvalue, NULL); if (pinvalue) { free(*pin); *pin = pinvalue; } } else { ret = -EINVAL; } } if (!ret) { *label = newlabel; *p_tok = tok; } else { free(tok); tok = NULL; free(newlabel); } return ret; } static int request_pin(struct openconnect_info *vpninfo, struct pin_cache *cache, int retrying) { struct oc_auth_form f; struct oc_form_opt o; char message[1024]; int ret; if (!vpninfo || !vpninfo->process_auth_form) return -EINVAL; if (vpninfo->cert_password) { cache->pin = vpninfo->cert_password; vpninfo->cert_password = NULL; return 0; } memset(&f, 0, sizeof(f)); f.auth_id = (char *)"pkcs11_pin"; f.opts = &o; message[sizeof(message)-1] = 0; snprintf(message, sizeof(message) - 1, _("PIN required for %s"), cache->token); f.message = message; if (retrying) f.error = (char *)_("Wrong PIN"); o.next = NULL; o.type = OC_FORM_OPT_PASSWORD; o.name = (char *)"pkcs11_pin"; o.label = (char *)_("Enter PIN:"); o._value = NULL; ret = process_auth_form(vpninfo, &f); if (ret || !o._value) return -EIO; cache->pin = o._value; return 0; } static int slot_login(struct openconnect_info *vpninfo, PKCS11_CTX *ctx, PKCS11_SLOT *slot) { PKCS11_TOKEN *token = slot->token; struct pin_cache *cache = vpninfo->pin_cache; int ret, retrying = 0; retry: ERR_clear_error(); if (!token->secureLogin) { if (!cache) { for (cache = vpninfo->pin_cache; cache; cache = cache->next) if (!strcmp(slot->description, cache->token)) break; } if (!cache) { cache = malloc(sizeof(*cache)); if (!cache) return -ENOMEM; cache->pin = NULL; cache->next = vpninfo->pin_cache; cache->token = strdup(slot->description); if (!cache->token) { free(cache); return -ENOMEM; } vpninfo->pin_cache = cache; } if (!cache->pin) { ret = request_pin(vpninfo, cache, retrying); if (ret) return ret; } } ret = PKCS11_login(slot, 0, cache ? cache->pin : NULL); if (ret) { unsigned long err = ERR_peek_error(); if (ERR_GET_LIB(err) == ERR_LIB_PKCS11 && ERR_GET_FUNC(err) == PKCS11_F_PKCS11_LOGIN) err = ERR_GET_REASON(err); else err = CKR_OK; /* Anything we don't explicitly match */ switch (ERR_GET_REASON(err)) { case CKR_PIN_INCORRECT: /* They'll be told about it in the next UI prompt */ if (cache) { free(cache->pin); cache->pin = NULL; } retrying = 1; goto retry; case CKR_PIN_LOCKED: vpn_progress(vpninfo, PRG_ERR, _("PIN locked\n")); break; case CKR_PIN_EXPIRED: vpn_progress(vpninfo, PRG_ERR, _("PIN expired\n")); break; case CKR_USER_ANOTHER_ALREADY_LOGGED_IN: vpn_progress(vpninfo, PRG_ERR, _("Another user already logged in\n")); break; default: vpn_progress(vpninfo, PRG_ERR, _("Unknown error logging in to PKCS#11 token\n")); openconnect_report_ssl_errors(vpninfo); } ERR_clear_error(); return -EPERM; } vpn_progress(vpninfo, PRG_TRACE, _("Logged in to PKCS#11 slot '%s'\n"), slot->description); return 0; } static PKCS11_CERT *slot_find_cert(struct openconnect_info *vpninfo, PKCS11_CTX *ctx, PKCS11_SLOT *slot, const char *cert_label, unsigned char *cert_id, size_t cert_id_len) { PKCS11_CERT *cert_list = NULL, *cert = NULL; unsigned int cert_count; if (PKCS11_enumerate_certs(slot->token, &cert_list, &cert_count) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to enumerate certs in PKCS#11 slot '%s'\n"), slot->description); return NULL; } vpn_progress(vpninfo, PRG_TRACE, _("Found %d certs in slot '%s'\n"), cert_count, slot->description); for (cert = cert_list; cert < &cert_list[cert_count]; cert++) { if (cert_label && strcmp(cert_label, cert->label)) continue; if (cert_id && (cert_id_len != cert->id_len || memcmp(cert_id, cert->id, cert_id_len))) continue; return cert; } return NULL; } int load_pkcs11_certificate(struct openconnect_info *vpninfo) { PKCS11_CTX *ctx; PKCS11_TOKEN *match_tok = NULL; PKCS11_CERT *cert = NULL; char *cert_label = NULL; unsigned char *cert_id = NULL; size_t cert_id_len = 0; PKCS11_SLOT *slot_list = NULL, *slot, *login_slot = NULL; unsigned int slot_count, matching_slots = 0; int ret = 0; ctx = pkcs11_ctx(vpninfo); if (!ctx) return -EIO; if (parse_pkcs11_uri(vpninfo->cert, &match_tok, &cert_id, &cert_id_len, &cert_label, &vpninfo->cert_password) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse PKCS#11 URI '%s'\n"), vpninfo->cert); return -EINVAL; } if (PKCS11_enumerate_slots(ctx, &slot_list, &slot_count) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to enumerate PKCS#11 slots\n")); openconnect_report_ssl_errors(vpninfo); ret = -EIO; goto out; } for (slot = slot_list; slot < &slot_list[slot_count] && slot != login_slot; slot++) { if (!slot->token) continue; if (match_tok->label && strcmp(match_tok->label, slot->token->label)) continue; if (match_tok->manufacturer && strcmp(match_tok->manufacturer, slot->token->manufacturer)) continue; if (match_tok->model && strcmp(match_tok->model, slot->token->model)) continue; if (match_tok->serialnr && strcmp(match_tok->serialnr, slot->token->serialnr)) continue; cert = slot_find_cert(vpninfo, ctx, slot, cert_label, cert_id, cert_id_len); if (cert) goto got_cert; login_slot = slot; matching_slots++; } /* If there was precisely one matching slot, and we still didn't find the cert, try logging in to it. */ if (matching_slots == 1 && login_slot->token->loginRequired) { slot = login_slot; vpn_progress(vpninfo, PRG_INFO, _("Logging in to PKCS#11 slot '%s'\n"), slot->description); if (!slot_login(vpninfo, ctx, slot)) { cert = slot_find_cert(vpninfo, ctx, slot, cert_label, cert_id, cert_id_len); if (cert) goto got_cert; } } ret = -EINVAL; vpn_progress(vpninfo, PRG_ERR, _("Failed to find PKCS#11 cert '%s'\n"), vpninfo->cert); got_cert: if (cert) { /* This happens if the cert is too large for the fixed buffer in libp11 :( */ if (!cert->x509) { vpn_progress(vpninfo, PRG_ERR, _("Certificate X.509 content not fetched by libp11\n")); ret = -EIO; goto out; } vpn_progress(vpninfo, PRG_DEBUG, _("Using PKCS#11 certificate %s\n"), vpninfo->cert); vpninfo->cert_x509 = X509_dup(cert->x509); if (!SSL_CTX_use_certificate(vpninfo->https_ctx, vpninfo->cert_x509)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to install certificate in OpenSSL context\n")); openconnect_report_ssl_errors(vpninfo); ret = -EIO; goto out; } /* If the key is in PKCS#11 too (which is likely), then keep the slot around. We might want to know which slot the certificate was found in, so we can log into it to find the key. */ if (!strncmp(vpninfo->sslkey, "pkcs11:", 7)) { vpninfo->pkcs11_slot_list = slot_list; vpninfo->pkcs11_slot_count = slot_count; vpninfo->pkcs11_cert_slot = slot; slot_list = NULL; } /* Also remember the ID of the cert, in case it helps us find the matching key */ vpninfo->pkcs11_cert_id = malloc(cert->id_len); if (vpninfo->pkcs11_cert_id) { vpninfo->pkcs11_cert_id_len = cert->id_len; memcpy(vpninfo->pkcs11_cert_id, cert->id, cert->id_len); } } out: if (match_tok) { free(match_tok->model); free(match_tok->manufacturer); free(match_tok->serialnr); free(match_tok->label); free(match_tok); } free(cert_id); free(cert_label); if (slot_list) PKCS11_release_all_slots(ctx, slot_list, slot_count); return ret; } static PKCS11_KEY *slot_find_key(struct openconnect_info *vpninfo, PKCS11_CTX *ctx, PKCS11_SLOT *slot, const char *key_label, unsigned char *key_id, size_t key_id_len) { PKCS11_KEY *key_list = NULL, *key = NULL; unsigned int key_count; if (PKCS11_enumerate_keys(slot->token, &key_list, &key_count) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to enumerate keys in PKCS#11 slot '%s'\n"), slot->description); return NULL; } vpn_progress(vpninfo, PRG_TRACE, _("Found %d keys in slot '%s'\n"), key_count, slot->description); for (key = key_list; key < &key_list[key_count]; key++) { if (key_label && strcmp(key_label, key->label)) continue; if (key_id && (key_id_len != key->id_len || memcmp(key_id, key->id, key_id_len))) continue; return key; } return NULL; } #ifndef OPENSSL_NO_EC #if OPENSSL_VERSION_NUMBER < 0x10100000L || defined(LIBRESSL_VERSION_NUMBER) #define EVP_PKEY_id(k) ((k)->type) #endif static int validate_ecdsa_key(struct openconnect_info *vpninfo, EC_KEY *priv_ec) { EVP_PKEY *pub_pkey; EC_KEY *pub_ec; unsigned char rdata[SHA1_SIZE]; unsigned int siglen = ECDSA_size(priv_ec); unsigned char *sig; int ret = -EINVAL; pub_pkey = X509_get_pubkey(vpninfo->cert_x509); if (!pub_pkey) { vpn_progress(vpninfo, PRG_ERR, _("Certificate has no public key\n")); goto out; } pub_ec = EVP_PKEY_get1_EC_KEY(pub_pkey); if (!pub_ec) { vpn_progress(vpninfo, PRG_ERR, _("Certificate does not match private key\n")); goto out_pkey; } vpn_progress(vpninfo, PRG_TRACE, _("Checking EC key matches cert\n")); sig = malloc(siglen); if (!sig) { vpn_progress(vpninfo, PRG_ERR, _("Failed to allocate signature buffer\n")); ret = -ENOMEM; goto out_pubec; } if (!RAND_bytes(rdata, sizeof(rdata))) { /* Actually, who cares? */ } if (!ECDSA_sign(NID_sha1, rdata, sizeof(rdata), sig, &siglen, priv_ec)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to sign dummy data to validate EC key\n")); openconnect_report_ssl_errors(vpninfo); goto out_sig; } if (!ECDSA_verify(NID_sha1, rdata, sizeof(rdata), sig, siglen, pub_ec)) { vpn_progress(vpninfo, PRG_ERR, _("Certificate does not match private key\n")); goto out_sig; } /* Finally, copy the public EC_POINT data now that we know it really did match */ EC_KEY_set_public_key(priv_ec, EC_KEY_get0_public_key(pub_ec)); ret = 0; out_sig: free(sig); out_pubec: EC_KEY_free(pub_ec); out_pkey: EVP_PKEY_free(pub_pkey); out: return ret; } #endif int load_pkcs11_key(struct openconnect_info *vpninfo) { PKCS11_CTX *ctx; PKCS11_TOKEN *match_tok = NULL; PKCS11_KEY *key = NULL; EVP_PKEY *pkey = NULL; char *key_label = NULL; unsigned char *key_id = NULL; size_t key_id_len = 0; PKCS11_SLOT *slot_list = NULL, *slot, *login_slot = NULL; unsigned int slot_count, matching_slots = 0; int ret = 0; ctx = pkcs11_ctx(vpninfo); if (!ctx) return -EIO; if (parse_pkcs11_uri(vpninfo->sslkey, &match_tok, &key_id, &key_id_len, &key_label, &vpninfo->cert_password) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse PKCS#11 URI '%s'\n"), vpninfo->sslkey); return -EINVAL; } if (vpninfo->pkcs11_slot_list) { slot_list = vpninfo->pkcs11_slot_list; slot_count = vpninfo->pkcs11_slot_count; } else if (PKCS11_enumerate_slots(ctx, &slot_list, &slot_count) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to enumerate PKCS#11 slots\n")); openconnect_report_ssl_errors(vpninfo); ret = -EIO; goto out; } for (slot = slot_list; slot < &slot_list[slot_count] && slot != login_slot; slot++) { if (!slot->token) continue; if (match_tok->label && strcmp(match_tok->label, slot->token->label)) continue; if (match_tok->manufacturer && strcmp(match_tok->manufacturer, slot->token->manufacturer)) continue; if (match_tok->model && strcmp(match_tok->model, slot->token->model)) continue; if (match_tok->serialnr && strcmp(match_tok->serialnr, slot->token->serialnr)) continue; key = slot_find_key(vpninfo, ctx, slot, key_label, key_id, key_id_len); if (key) goto got_key; login_slot = slot; matching_slots++; } /* If there was precisely one matching slot, or if we know which slot the cert was found in and the key wasn't separately specified, then try that slot. */ if (matching_slots != 1 && vpninfo->pkcs11_cert_slot && vpninfo->sslkey == vpninfo->cert) { /* Use the slot the cert was found in, if one specifier was given for both */ matching_slots = 1; login_slot = vpninfo->pkcs11_cert_slot; vpninfo->pkcs11_cert_slot = NULL; } if (matching_slots == 1 && login_slot->token->loginRequired) { slot = login_slot; vpn_progress(vpninfo, PRG_INFO, _("Logging in to PKCS#11 slot '%s'\n"), slot->description); if (!slot_login(vpninfo, ctx, slot)) { key = slot_find_key(vpninfo, ctx, slot, key_label, key_id, key_id_len); if (key) goto got_key; /* We still haven't found it. If we weren't explicitly given a URI for the key and we're inferring the location of the key from the cert, then drop the label and try matching the CKA_ID of the cert. */ if (vpninfo->cert == vpninfo->sslkey && vpninfo->pkcs11_cert_id && (key_label || !key_id)) { key = slot_find_key(vpninfo, ctx, slot, NULL, vpninfo->pkcs11_cert_id, vpninfo->pkcs11_cert_id_len); if (key) goto got_key; } } } ret = -EINVAL; vpn_progress(vpninfo, PRG_ERR, _("Failed to find PKCS#11 key '%s'\n"), vpninfo->sslkey); got_key: if (key) { vpn_progress(vpninfo, PRG_DEBUG, _("Using PKCS#11 key %s\n"), vpninfo->sslkey); pkey = PKCS11_get_private_key(key); if (!pkey) { vpn_progress(vpninfo, PRG_ERR, _("Failed to instantiated private key from PKCS#11\n")); openconnect_report_ssl_errors(vpninfo); ret = -EIO; goto out; } #ifndef OPENSSL_NO_EC /* * If an EC EVP_PKEY has no public key, OpenSSL will crash * when trying to check it matches the certificate: * https://github.com/openssl/openssl/issues/1532 * * Work around this by detecting this condition, manually * checking that the certificate *does* match by performing * a signature and validating it against the cert, then * copying the EC_POINT public key information from the cert. */ if (EVP_PKEY_id(pkey) == EVP_PKEY_EC) { EC_KEY *priv_ec = EVP_PKEY_get1_EC_KEY(pkey); ret = 0; if (!EC_KEY_get0_public_key(priv_ec)) ret = validate_ecdsa_key(vpninfo, priv_ec); EC_KEY_free(priv_ec); if (ret) goto out; } #endif if (!SSL_CTX_use_PrivateKey(vpninfo->https_ctx, pkey)) { vpn_progress(vpninfo, PRG_ERR, _("Add key from PKCS#11 failed\n")); openconnect_report_ssl_errors(vpninfo); ret = -EINVAL; goto out; } /* We have to keep the entire slot list around, because the EVP_PKEY depends on the one we're using, and we have no way to free the others. */ vpninfo->pkcs11_slot_list = slot_list; vpninfo->pkcs11_slot_count = slot_count; slot_list = NULL; } out: if (match_tok) { free(match_tok->model); free(match_tok->manufacturer); free(match_tok->serialnr); free(match_tok->label); free(match_tok); } free(key_id); free(key_label); if (slot_list) PKCS11_release_all_slots(ctx, slot_list, slot_count); return ret; } #else int load_pkcs11_key(struct openconnect_info *vpninfo) { vpn_progress(vpninfo, PRG_ERR, _("This version of OpenConnect was built without PKCS#11 support\n")); return -EINVAL; } int load_pkcs11_certificate(struct openconnect_info *vpninfo) { vpn_progress(vpninfo, PRG_ERR, _("This version of OpenConnect was built without PKCS#11 support\n")); return -EINVAL; } #endif openconnect-8.05/openconnect.8.in0000664000076400007640000004402513415754606020566 0ustar00dwoodhoudwoodhou00000000000000.TH OPENCONNECT 8 .SH NAME openconnect \- Multi-protocol VPN client, for Cisco AnyConnect VPNs and others .SH SYNOPSIS .SY openconnect .OP \-\-config configfile .OP \-b,\-\-background .OP \-\-pid\-file pidfile .OP \-c,\-\-certificate cert .OP \-e,\-\-cert\-expire\-warning days .OP \-k,\-\-sslkey key .OP \-C,\-\-cookie cookie .OP \-\-cookie\-on\-stdin .OP \-\-compression MODE .OP \-d,\-\-deflate .OP \-D,\-\-no\-deflate .OP \-\-force\-dpd interval .OP \-F,\-\-form\-entry form:opt=value .OP \-g,\-\-usergroup group .OP \-h,\-\-help .OP \-\-http\-auth methods .OP \-i,\-\-interface ifname .OP \-l,\-\-syslog .OP \-\-timestamp .OP \-\-passtos .OP \-U,\-\-setuid user .OP \-\-csd\-user user .OP \-m,\-\-mtu mtu .OP \-\-base\-mtu mtu .OP \-p,\-\-key\-password pass .OP \-P,\-\-proxy proxyurl .OP \-\-proxy\-auth methods .OP \-\-no\-proxy .OP \-\-libproxy .OP \-\-key\-password\-from\-fsid .OP \-q,\-\-quiet .OP \-Q,\-\-queue\-len len .OP \-s,\-\-script vpnc\-script .OP \-S,\-\-script\-tun .OP \-u,\-\-user name .OP \-V,\-\-version .OP \-v,\-\-verbose .OP \-x,\-\-xmlconfig config .OP \-\-authgroup group .OP \-\-authenticate .OP \-\-cookieonly .OP \-\-printcookie .OP \-\-cafile file .OP \-\-disable\-ipv6 .OP \-\-dtls\-ciphers list .OP \-\-dtls12\-ciphers list .OP \-\-dtls\-local\-port port .OP \-\-dump\-http\-traffic .OP \-\-no\-system\-trust .OP \-\-pfs .OP \-\-no\-dtls .OP \-\-no\-http\-keepalive .OP \-\-no\-passwd .OP \-\-no\-xmlpost .OP \-\-non\-inter .OP \-\-passwd\-on\-stdin .OP \-\-protocol proto .OP \-\-token\-mode mode .OP \-\-token\-secret {secret\fR[\fI,counter\fR]|@\fIfile\fR} .OP \-\-reconnect\-timeout .OP \-\-resolve host:ip .OP \-\-servercert sha1 .OP \-\-useragent string .OP \-\-version\-string string .OP \-\-local-hostname string .OP \-\-os string .B [https://]\fIserver\fB[:\fIport\fB][/\fIgroup\fB] .YS .SH DESCRIPTION The program .B openconnect connects to VPN servers which use standard TLS/SSL, DTLS, and ESP protocols for data transport. It was originally written to support Cisco "AnyConnect" VPN servers, and has since been extended with experimental support for Juniper Network Connect and Junos Pulse VPN servers .RB ( \-\-protocol=nc ) and PAN GlobalProtect VPN servers .RB ( \-\-protocol=gp ). The connection happens in two phases. First there is a simple HTTPS connection over which the user authenticates somehow \- by using a certificate, or password or SecurID, etc. Having authenticated, the user is rewarded with an authentication cookie which can be used to make the real VPN connection. The second phase uses that cookie to connect to a tunnel via HTTPS, and data packets can be passed over the resulting connection. When possible, a UDP tunnel is also configured: AnyConnect uses DTLS, while Juniper and GlobalProtect use UDP-encapsulated ESP. The UDP tunnel may be disabled with .BR \-\-no\-dtls , but is preferred when correctly supported by the server and network for performance reasons. (TCP performs poorly and unreliably over TCP-based tunnels; see .IR http://sites.inka.de/~W1011/devel/tcp-tcp.html .) .SH OPTIONS .TP .B \-\-config=CONFIGFILE Read further options from .I CONFIGFILE before continuing to process options from the command line. The file should contain long-format options as would be accepted on the command line, but without the two leading \-\- dashes. Empty lines, or lines where the first non-space character is a # character, are ignored. Any option except the .B config option may be specified in the file. .TP .B \-b,\-\-background Continue in background after startup .TP .B \-\-pid\-file=PIDFILE Save the pid to .I PIDFILE when backgrounding .TP .B \-c,\-\-certificate=CERT Use SSL client certificate .I CERT which may be either a file name or, if OpenConnect has been built with an appropriate version of GnuTLS, a PKCS#11 URL. .TP .B \-e,\-\-cert\-expire\-warning=DAYS Give a warning when SSL client certificate has .I DAYS left before expiry .TP .B \-k,\-\-sslkey=KEY Use SSL private key .I KEY which may be either a file name or, if OpenConnect has been built with an appropriate version of GnuTLS, a PKCS#11 URL. .TP .B \-C,\-\-cookie=COOKIE Use authentication cookie .IR COOKIE . .TP .B \-\-cookie\-on\-stdin Read cookie from standard input. .TP .B \-d,\-\-deflate Enable all compression, including stateful modes. By default, only stateless compression algorithms are enabled. .TP .B \-D,\-\-no\-deflate Disable all compression. .TP .B \-\-compression=MODE Set compression mode, where .I MODE is one of .IR "stateless" , .IR "none" , or .IR "all" . By default, only stateless compression algorithms which do not maintain state from one packet to the next (and which can be used on UDP transports) are enabled. By setting the mode to .I "all" stateful algorithms (currently only zlib deflate) can be enabled. Or all compression can be disabled by setting the mode to .IR "none" . .TP .B \-\-force\-dpd=INTERVAL Use .I INTERVAL as minimum Dead Peer Detection interval for CSTP and DTLS, forcing use of DPD even when the server doesn't request it. .TP .B \-g,\-\-usergroup=GROUP Use .I GROUP as login UserGroup .TP .B \-F,\-\-form\-entry=FORM:OPTION=VALUE Provide authentication form input, where .I FORM and .I OPTION are the identifiers from the form and the specific input field, and .I VALUE is the string to be filled in automatically. For example, the standard username field .I (also handled by the \-\-user option) could also be provided with this option thus: .I \-\-form\-entry .IR main:username=joebloggs . .TP .B \-h,\-\-help Display help text .TP .B \-\-http\-auth=METHODS Use only the specified methods for HTTP authentication to a server. By default, only Negotiate, NTLM and Digest authentication are enabled. Basic authentication is also supported but because it is insecure it must be explicitly enabled. The argument is a comma-separated list of methods to be enabled. Note that the order does not matter: OpenConnect will use Negotiate, NTLM, Digest and Basic authentication in that order, if each is enabled, regardless of the order specified in the METHODS string. .TP .B \-i,\-\-interface=IFNAME Use .I IFNAME for tunnel interface .TP .B \-l,\-\-syslog Use syslog for progress messages .TP .B \-\-timestamp Prepend a timestamp to each progress message .TP .B \-\-passtos Copy TOS / TCLASS of payload packet into DTLS packets. .TP .B \-U,\-\-setuid=USER Drop privileges after connecting, to become user .I USER .TP .B \-\-csd\-user=USER Drop privileges during execution of trojan binary or script (CSD, TNCC, or HIP). .TP .B \-\-csd\-wrapper=SCRIPT Run .I SCRIPT instead of the trojan binary or script. .TP .B \-m,\-\-mtu=MTU Request .I MTU from server as the MTU of the tunnel. .TP .B \-\-base\-mtu=MTU Indicate .I MTU as the path MTU between client and server on the unencrypted network. Newer servers will automatically calculate the MTU to be used on the tunnel from this value. .TP .B \-p,\-\-key\-password=PASS Provide passphrase for certificate file, or SRK (System Root Key) PIN for TPM .TP .B \-P,\-\-proxy=PROXYURL Use HTTP or SOCKS proxy for connection. A username and password can be provided in the given URL, and will be used for authentication. If authentication is required but no credentials are given, GSSAPI and automatic NTLM authentication using Samba's ntlm_auth helper tool may be attempted. .TP .B \-\-proxy\-auth=METHODS Use only the specified methods for HTTP authentication to a proxy. By default, only Negotiate, NTLM and Digest authentication are enabled. Basic authentication is also supported but because it is insecure it must be explicitly enabled. The argument is a comma-separated list of methods to be enabled. Note that the order does not matter: OpenConnect will use Negotiate, NTLM, Digest and Basic authentication in that order, if each is enabled, regardless of the order specified in the METHODS string. .TP .B \-\-no\-proxy Disable use of proxy .TP .B \-\-libproxy Use libproxy to configure proxy automatically (when built with libproxy support) .TP .B \-\-key\-password\-from\-fsid Passphrase for certificate file is automatically generated from the .I fsid of the file system on which it is stored. The .I fsid is obtained from the .BR statvfs (2) or .BR statfs (2) system call, depending on the operating system. On a Linux or similar system with GNU coreutils, the .I fsid used by this option should be equal to the output of the command: .EX stat \-\-file\-system \-\-printf=%i\e\en $CERTIFICATE .EE It is not the same as the 128\-bit UUID of the file system. .TP .B \-q,\-\-quiet Less output .TP .B \-Q,\-\-queue\-len=LEN Set packet queue limit to .I LEN pkts .TP .B \-s,\-\-script=SCRIPT Invoke .I SCRIPT to configure the network after connection. Without this, routing and name service are unlikely to work correctly. The script is expected to be compatible with the .B vpnc\-script which is shipped with the "vpnc" VPN client. See .I http://www.infradead.org/openconnect/vpnc-script.html for more information. This version of OpenConnect is configured to use \fB@DEFAULT_VPNCSCRIPT@\fR by default. On Windows, a relative directory for the default script will be handled as starting from the directory that the openconnect executable is running from, rather than the current directory. The script will be invoked with the command-based script host \fBcscript.exe\fR. .TP .B \-S,\-\-script\-tun Pass traffic to 'script' program over a UNIX socket, instead of to a kernel tun/tap device. This allows the VPN IP traffic to be handled entirely in userspace, for example by a program which uses lwIP to provide SOCKS access into the VPN. .TP .B \-u,\-\-user=NAME Set login username to .I NAME .TP .B \-V,\-\-version Report version number .TP .B \-v,\-\-verbose More output (may be specified multiple times for additional output) .TP .B \-x,\-\-xmlconfig=CONFIG XML config file .TP .B \-\-authgroup=GROUP Choose authentication login selection .TP .B \-\-authenticate Authenticate only, and output the information needed to make the connection a form which can be used to set shell environment variables. When invoked with this option, openconnect will not make the connection, but if successful will output something like the following to stdout: .nf .B COOKIE=3311180634@13561856@1339425499@B315A0E29D16C6FD92EE... .B HOST=10.0.0.1 .B FINGERPRINT=469bb424ec8835944d30bc77c77e8fc1d8e23a42 .fi Thus, you can invoke openconnect as a non-privileged user .I (with access to the user's PKCS#11 tokens, etc.) for authentication, and then invoke openconnect separately to make the actual connection as root: .nf .B eval `openconnect --authenticate https://vpnserver.example.com`; .B [ -n "$COOKIE" ] && echo "$COOKIE" | .B \ \ sudo openconnect --cookie-on-stdin $HOST --servercert $FINGERPRINT .fi .TP .B \-\-cookieonly Fetch and print cookie only; don't connect .TP .B \-\-printcookie Print cookie before connecting .TP .B \-\-cafile=FILE Cert file for server verification .TP .B \-\-disable\-ipv6 Do not advertise IPv6 capability to server .TP .B \-\-dtls\-ciphers=LIST Set OpenSSL ciphers to support for DTLS .TP .B \-\-dtls12\-ciphers=LIST Set OpenSSL ciphers for Cisco's DTLS v1.2 .TP .B \-\-dtls\-local\-port=PORT Use .I PORT as the local port for DTLS and UDP datagrams .TP .B \-\-dump\-http\-traffic Enable verbose output of all HTTP requests and the bodies of all responses received from the server. .TP .B \-\-no\-system\-trust Do not trust the system default certificate authorities. If this option is given, only certificate authorities given with the .B \-\-cafile option, if any, will be trusted automatically. .TP .B \-\-pfs Enforces Perfect Forward Secrecy (PFS). That ensures that if the server's long-term key is compromised, any session keys established before the compromise will be unaffected. If this option is provided and the server does not support PFS in the TLS channel the connection will fail. PFS is available in Cisco ASA releases 9.1(2) and higher; a suitable cipher suite may need to be manually enabled by the administrator using the .B ssl encryption setting. .TP .B \-\-no\-dtls Disable DTLS and ESP .TP .B \-\-no\-http\-keepalive Version 8.2.2.5 of the Cisco ASA software has a bug where it will forget the client's SSL certificate when HTTP connections are being re\-used for multiple requests. So far, this has only been seen on the initial connection, where the server gives an HTTP/1.0 redirect response with an explicit .B Connection: Keep\-Alive directive. OpenConnect as of v2.22 has an unconditional workaround for this, which is never to obey that directive after an HTTP/1.0 response. However, Cisco's support team has failed to give any competent response to the bug report and we don't know under what other circumstances their bug might manifest itself. So this option exists to disable ALL re\-use of HTTP sessions and cause a new connection to be made for each request. If your server seems not to be recognising your certificate, try this option. If it makes a difference, please report this information to the .B openconnect\-devel@lists.infradead.org mailing list. .TP .B \-\-no\-passwd Never attempt password (or SecurID) authentication. .TP .B \-\-no\-xmlpost Do not attempt to post an XML authentication/configuration request to the server; use the old style GET method which was used by older clients and servers instead. This option is a temporary safety net, to work around potential compatibility issues with the code which falls back to the old method automatically. It causes OpenConnect to behave more like older versions (4.08 and below) did. If you find that you need to use this option, then you have found a bug in OpenConnect. Please see http://www.infradead.org/openconnect/mail.html and report this to the developers. .TP .B \-\-non\-inter Do not expect user input; exit if it is required. .TP .B \-\-passwd\-on\-stdin Read password from standard input .TP .B \-\-protocol=PROTO Select VPN protocol .I PROTO to be used for the connection. Supported protocols are .I anyconnect for Cisco AnyConnect (the default), .I nc for experimental support for Juniper Network Connect (also supported by Junos Pulse servers), and .I gp for experimental support for PAN GlobalProtect. .TP .B \-\-token\-mode=MODE Enable one-time password generation using the .I MODE algorithm. .B \-\-token\-mode=rsa will call libstoken to generate an RSA SecurID tokencode, .B \-\-token\-mode=totp will call liboath to generate an RFC 6238 time-based password, and .B \-\-token\-mode=hotp will call liboath to generate an RFC 4226 HMAC-based password. Yubikey tokens which generate OATH codes in hardware are supported with .B \-\-token\-mode=yubioath .TP .B \-\-token\-secret={ SECRET[,COUNTER] | @FILENAME } The secret to use when generating one-time passwords/verification codes. Base 32-encoded TOTP/HOTP secrets can be used by specifying "base32:" at the beginning of the secret, and for HOTP secrets the token counter can be specified following a comma. RSA SecurID secrets can be specified as an Android/iPhone URI or a raw numeric CTF string (with or without dashes). For Yubikey OATH the token secret specifies the name of the credential to be used. If not provided, the first OATH credential found on the device will be used. .IR FILENAME , if specified, can contain any of the above strings. Or, it can contain a SecurID XML (SDTID) seed. If this option is omitted, and \-\-token\-mode is "rsa", libstoken will try to use the software token seed saved in .B ~/.stokenrc by the "stoken import" command. .TP .B \-\-reconnect\-timeout Keep reconnect attempts until so much seconds are elapsed. The default timeout is 300 seconds, which means that openconnect can recover VPN connection after a temporary network down time of 300 seconds. .TP .B \-\-resolve=HOST:IP Automatically resolve the hostname .IR HOST to .IR IP instead of using the normal resolver to look it up. .TP .B \-\-servercert=HASH Accept server's SSL certificate only if the provided fingerprint matches. The allowed fingerprint types are .IR SHA1 , .IR SHA256 , and .IR PIN-SHA256 . They are distinguished by the 'sha1:', 'sha256:' and 'pin-sha256:' prefixes to the encoded hash. The first two are custom identifiers providing hex encoding of the peer's public key, while 'pin-sha256:' is the RFC7469 key PIN, which utilizes base64 encoding. To ease certain testing use-cases, a partial match of the hash will also be accepted, if it is at least 4 characters past the prefix. .TP .B \-\-useragent=STRING Use .I STRING as 'User\-Agent:' field value in HTTP header. (e.g. \-\-useragent 'Cisco AnyConnect VPN Agent for Windows 2.2.0133') .TP .B \-\-version\-string=STRING Use .I STRING as the software version reported to the head end. (e.g. \-\-version\-string '2.2.0133') .TP .B \-\-local-hostname=STRING Use .I STRING as 'X\-CSTP\-Hostname:' field value in HTTP header. For example \-\-local\-hostname 'mypc', will advertise the value 'mypc' as the suggested hostname to point to the provided IP address. .TP .B \-\-os=STRING OS type to report to gateway. Recognized values are: .BR linux , .BR linux\-64 , .BR win , .BR mac\-intel , .BR android , .BR apple\-ios . Reporting a different OS type may affect the dynamic access policy (DAP) applied to the VPN session. If the gateway requires CSD, it will also cause the corresponding CSD trojan binary to be downloaded, so you may need to use .B \-\-csd\-wrapper if this code is not executable on the local machine. .SH SIGNALS In the data phase of the connection, the following signals are handled: .TP .B SIGINT / SIGTERM performs a clean shutdown by logging the session off, disconnecting from the gateway, and running the vpnc\-script to restore the network configuration. .TP .B SIGHUP disconnects from the gateway and runs the vpnc\-script, but does not log the session off; this allows for reconnection later using .BR \-\-cookie . .TP .B SIGUSR2 forces an immediate disconnection and reconnection; this can be used to quickly recover from LAN IP address changes. .TP .SH LIMITATIONS Note that although IPv6 has been tested on all platforms on which .B openconnect is known to run, it depends on a suitable .B vpnc\-script to configure the network. The standard .B vpnc\-script shipped with vpnc 0.5.3 is not capable of setting up IPv6 routes; the one from .B git://git.infradead.org/users/dwmw2/vpnc\-scripts.git will be required. .SH SEE ALSO .BR ocserv (8) .SH AUTHORS David Woodhouse openconnect-8.05/cstp.c0000664000076400007640000011065013505425637016667 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * Copyright © 2008 Nick Andrew * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include #include #include #include #include #include #ifdef HAVE_LZ4 #include #ifndef HAVE_LZ4_COMPRESS_DEFAULT #define LZ4_compress_default LZ4_compress_limitedOutput #endif #endif #if defined(__linux__) /* For TCP_INFO */ # include #endif #include "openconnect-internal.h" /* * Data packets are encapsulated in the SSL stream as follows: * * 0000: Magic "STF\x1" * 0004: Big-endian 16-bit length (not including 8-byte header) * 0006: Byte packet type (see openconnect-internal.h) * 0008: data payload */ static const char data_hdr[8] = { 'S', 'T', 'F', 1, 0, 0, /* Length */ AC_PKT_DATA, /* Type */ 0 /* Unknown */ }; /* Strange initialisers here to work around GCC PR#10676 (which was * fixed in GCC 4.6 but it takes a while for some systems to catch * up. */ static const struct pkt keepalive_pkt = { .next = NULL, { .cstp.hdr = { 'S', 'T', 'F', 1, 0, 0, AC_PKT_KEEPALIVE, 0 } } }; static const struct pkt dpd_pkt = { .next = NULL, { .cstp.hdr = { 'S', 'T', 'F', 1, 0, 0, AC_PKT_DPD_OUT, 0 } } }; static const struct pkt dpd_resp_pkt = { .next = NULL, { .cstp.hdr = { 'S', 'T', 'F', 1, 0, 0, AC_PKT_DPD_RESP, 0 } } }; #define UDP_HEADER_SIZE 8 #define IPV4_HEADER_SIZE 20 #define IPV6_HEADER_SIZE 40 /* Calculate MTU to request. Old servers simply use the X-CSTP-MTU: header, * which represents the tunnel MTU, while new servers do calculations on the * X-CSTP-Base-MTU: header which represents the link MTU between client * and server. * * If possible, the legacy MTU value should be the TCP MSS less 5 bytes of * TLS and 8 bytes of CSTP overhead. We can get the MSS from either the * TCP_INFO or TCP_MAXSEG sockopts. * * The base MTU comes from the TCP_INFO sockopt under Linux, but I don't know * how to work it out on other systems. So leave it blank and do things the * legacy way there. Contributions welcome... * * If we don't even have TCP_MAXSEG, then default to sending a legacy MTU of * 1406 which is what we always used to do. */ static void calculate_mtu(struct openconnect_info *vpninfo, int *base_mtu, int *mtu) { *mtu = vpninfo->reqmtu; *base_mtu = vpninfo->basemtu; #if defined(__linux__) && defined(TCP_INFO) if (!*mtu || !*base_mtu) { struct tcp_info ti; socklen_t ti_size = sizeof(ti); if (!getsockopt(vpninfo->ssl_fd, IPPROTO_TCP, TCP_INFO, &ti, &ti_size)) { vpn_progress(vpninfo, PRG_DEBUG, _("TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n"), ti.tcpi_rcv_mss, ti.tcpi_snd_mss, ti.tcpi_advmss, ti.tcpi_pmtu); if (!*base_mtu) { *base_mtu = ti.tcpi_pmtu; } if (!*base_mtu) { if (ti.tcpi_rcv_mss < ti.tcpi_snd_mss) *base_mtu = ti.tcpi_rcv_mss - 13; else *base_mtu = ti.tcpi_snd_mss - 13; } } } #endif #ifdef TCP_MAXSEG if (!*base_mtu) { int mss; socklen_t mss_size = sizeof(mss); if (!getsockopt(vpninfo->ssl_fd, IPPROTO_TCP, TCP_MAXSEG, &mss, &mss_size)) { vpn_progress(vpninfo, PRG_DEBUG, _("TCP_MAXSEG %d\n"), mss); *base_mtu = mss - 13; } } #endif if (!*base_mtu) { /* Default */ *base_mtu = 1406; } if (*base_mtu < 1280) *base_mtu = 1280; if (!*mtu) { /* remove IP/UDP and DTLS overhead from base MTU to calculate tunnel MTU */ *mtu = *base_mtu - DTLS_OVERHEAD - UDP_HEADER_SIZE; if (vpninfo->peer_addr->sa_family == AF_INET6) *mtu -= IPV6_HEADER_SIZE; else *mtu -= IPV4_HEADER_SIZE; } } static void append_compr_types(struct oc_text_buf *buf, const char *proto, int avail) { if (avail) { char sep = ' '; buf_append(buf, "X-%s-Accept-Encoding:", proto); if (avail & COMPR_LZ4) { buf_append(buf, "%coc-lz4", sep); sep = ','; } if (avail & COMPR_LZS) { buf_append(buf, "%clzs", sep); sep = ','; } if (avail & COMPR_DEFLATE) { buf_append(buf, "%cdeflate", sep); sep = ','; } buf_append(buf, "\r\n"); } } static void append_mobile_headers(struct openconnect_info *vpninfo, struct oc_text_buf *buf) { if (vpninfo->mobile_platform_version) { buf_append(buf, "X-AnyConnect-Identifier-ClientVersion: %s\r\n", vpninfo->version_string ? : openconnect_version_str); buf_append(buf, "X-AnyConnect-Identifier-Platform: %s\r\n", vpninfo->platname); buf_append(buf, "X-AnyConnect-Identifier-PlatformVersion: %s\r\n", vpninfo->mobile_platform_version); buf_append(buf, "X-AnyConnect-Identifier-DeviceType: %s\r\n", vpninfo->mobile_device_type); buf_append(buf, "X-AnyConnect-Identifier-Device-UniqueID: %s\r\n", vpninfo->mobile_device_uniqueid); } } static int parse_hex_val(const char *str, unsigned char *storage, unsigned int max_storage_len, int *changed) { int len = strlen(str); unsigned i; if (len % 2 == 1 || len > 2*max_storage_len) { return -EINVAL; } for (i = 0; i < len; i += 2) { unsigned char c = unhex(str + i); if (storage[i/2] != c) { storage[i/2] = c; *changed = 1; } } return len/2; } static int start_cstp_connection(struct openconnect_info *vpninfo) { struct oc_text_buf *reqbuf; char buf[65536]; int i; int dtls_secret_set = 0; int retried = 0, sessid_found = 0; struct oc_vpn_option **next_dtls_option = &vpninfo->dtls_options; struct oc_vpn_option **next_cstp_option = &vpninfo->cstp_options; struct oc_vpn_option *old_cstp_opts = vpninfo->cstp_options; struct oc_vpn_option *old_dtls_opts = vpninfo->dtls_options; const char *old_addr = vpninfo->ip_info.addr; const char *old_netmask = vpninfo->ip_info.netmask; const char *old_addr6 = vpninfo->ip_info.addr6; const char *old_netmask6 = vpninfo->ip_info.netmask6; int base_mtu = 0, mtu = 0; /* Clear old options which will be overwritten */ vpninfo->ip_info.addr = vpninfo->ip_info.netmask = NULL; vpninfo->ip_info.addr6 = vpninfo->ip_info.netmask6 = NULL; vpninfo->cstp_options = vpninfo->dtls_options = NULL; vpninfo->ip_info.domain = vpninfo->ip_info.proxy_pac = NULL; vpninfo->banner = NULL; for (i = 0; i < 3; i++) vpninfo->ip_info.dns[i] = vpninfo->ip_info.nbns[i] = NULL; free_split_routes(vpninfo); retry: calculate_mtu(vpninfo, &base_mtu, &mtu); vpninfo->cstp_basemtu = base_mtu; reqbuf = buf_alloc(); buf_append(reqbuf, "CONNECT /CSCOSSLC/tunnel HTTP/1.1\r\n"); if (vpninfo->port != 443) buf_append(reqbuf, "Host: %s:%d\r\n", vpninfo->hostname, vpninfo->port); else buf_append(reqbuf, "Host: %s\r\n", vpninfo->hostname); buf_append(reqbuf, "User-Agent: %s\r\n", vpninfo->useragent); buf_append(reqbuf, "Cookie: webvpn=%s\r\n", vpninfo->cookie); buf_append(reqbuf, "X-CSTP-Version: 1\r\n"); buf_append(reqbuf, "X-CSTP-Hostname: %s\r\n", vpninfo->localname); append_mobile_headers(vpninfo, reqbuf); append_compr_types(reqbuf, "CSTP", vpninfo->req_compr); buf_append(reqbuf, "X-CSTP-Base-MTU: %d\r\n", base_mtu); if (mtu) buf_append(reqbuf, "X-CSTP-MTU: %d\r\n", mtu); buf_append(reqbuf, "X-CSTP-Address-Type: %s\r\n", vpninfo->disable_ipv6 ? "IPv4" : "IPv6,IPv4"); if (!vpninfo->disable_ipv6) buf_append(reqbuf, "X-CSTP-Full-IPv6-Capability: true\r\n"); #ifdef HAVE_DTLS if (vpninfo->dtls_state != DTLS_DISABLED) { /* The X-DTLS-Master-Secret is only used for the legacy protocol negotation * which required the client to send explicitly the secret. In the PSK-NEGOTIATE * method, the master secret is implicitly agreed on */ buf_append(reqbuf, "X-DTLS-Master-Secret: "); for (i = 0; i < sizeof(vpninfo->dtls_secret); i++) { buf_append(reqbuf, "%02X", vpninfo->dtls_secret[i]); dtls_secret_set |= vpninfo->dtls_secret[i]; } buf_append(reqbuf, "\r\n"); if (!dtls_secret_set) { vpn_progress(vpninfo, PRG_ERR, _("CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n")); buf_free(reqbuf); return -EINVAL; } if (vpninfo->dtls_ciphers || vpninfo->dtls12_ciphers) { if (vpninfo->dtls_ciphers) buf_append(reqbuf, "X-DTLS-CipherSuite: %s\r\n", vpninfo->dtls_ciphers); if (vpninfo->dtls12_ciphers) buf_append(reqbuf, "X-DTLS12-CipherSuite: %s\r\n", vpninfo->dtls12_ciphers); } else { struct oc_text_buf *dtls_cl, *dtls12_cl; dtls_cl = buf_alloc(); dtls12_cl = buf_alloc(); gather_dtls_ciphers(vpninfo, dtls_cl, dtls12_cl); if (!buf_error(dtls_cl) && dtls_cl->pos) buf_append(reqbuf, "X-DTLS-CipherSuite: %s\r\n", dtls_cl->data); if (!buf_error(dtls12_cl) && dtls12_cl->pos) buf_append(reqbuf, "X-DTLS12-CipherSuite: %s\r\n", dtls12_cl->data); buf_free(dtls_cl); buf_free(dtls12_cl); } append_compr_types(reqbuf, "DTLS", vpninfo->req_compr & ~COMPR_DEFLATE); } #endif buf_append(reqbuf, "\r\n"); if (buf_error(reqbuf)) { vpn_progress(vpninfo, PRG_ERR, _("Error creating HTTPS CONNECT request\n")); return buf_free(reqbuf); } if (vpninfo->dump_http_traffic) dump_buf(vpninfo, '>', reqbuf->data); vpninfo->ssl_write(vpninfo, reqbuf->data, reqbuf->pos); buf_free(reqbuf); /* FIXME: Use process_http_response() instead of reimplementing it. It has a header callback function, and can cope with CONNECT requests. */ if ((i = vpninfo->ssl_gets(vpninfo, buf, 65536)) < 0) { if (i == -EINTR) return i; vpn_progress(vpninfo, PRG_ERR, _("Error fetching HTTPS response\n")); if (!retried) { retried = 1; openconnect_close_https(vpninfo, 0); if (openconnect_open_https(vpninfo)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to open HTTPS connection to %s\n"), vpninfo->hostname); return -EIO; } goto retry; } return -EINVAL; } if (strncmp(buf, "HTTP/1.1 200 ", 13)) { if (!strncmp(buf, "HTTP/1.1 503 ", 13)) { /* "Service Unavailable. Why? */ const char *reason = ""; while ((i = vpninfo->ssl_gets(vpninfo, buf, sizeof(buf)))) { if (!strncmp(buf, "X-Reason: ", 10)) { reason = buf + 10; break; } } vpn_progress(vpninfo, PRG_ERR, _("VPN service unavailable; reason: %s\n"), reason); return -EINVAL; } vpn_progress(vpninfo, PRG_ERR, _("Got inappropriate HTTP CONNECT response: %s\n"), buf); if (!strncmp(buf, "HTTP/1.1 401 ", 13)) return -EPERM; return -EINVAL; } vpn_progress(vpninfo, PRG_INFO, _("Got CONNECT response: %s\n"), buf); /* We may have advertised it, but we only do it if the server agrees */ vpninfo->cstp_compr = vpninfo->dtls_compr = 0; mtu = 0; while ((i = vpninfo->ssl_gets(vpninfo, buf, sizeof(buf)))) { struct oc_vpn_option *new_option; char *colon; if (i < 0) return i; colon = strchr(buf, ':'); if (!colon) continue; *colon = 0; colon++; if (*colon == ' ') colon++; if (strncmp(buf, "X-DTLS-", 7) && strncmp(buf, "X-CSTP-", 7) && strncmp(buf, "X-DTLS12-", 9)) continue; new_option = malloc(sizeof(*new_option)); if (!new_option) { vpn_progress(vpninfo, PRG_ERR, _("No memory for options\n")); return -ENOMEM; } new_option->option = strdup(buf); new_option->value = strdup(colon); new_option->next = NULL; if (!new_option->option || !new_option->value) { vpn_progress(vpninfo, PRG_ERR, _("No memory for options\n")); free(new_option->option); free(new_option->value); free(new_option); return -ENOMEM; } /* This contains the whole document, including the webvpn cookie. */ if (!strcasecmp(buf, "X-CSTP-Post-Auth-XML")) vpn_progress(vpninfo, PRG_DEBUG, "%s: %s\n", buf, _("")); else vpn_progress(vpninfo, PRG_DEBUG, "%s: %s\n", buf, colon); if (((i = 7) && !strncmp(buf, "X-DTLS-", 7)) || ((i = 9) && !strncmp(buf, "X-DTLS12-", 9))) { *next_dtls_option = new_option; next_dtls_option = &new_option->next; if (!strcmp(buf + i, "MTU")) { int dtlsmtu = atol(colon); if (dtlsmtu > mtu) mtu = dtlsmtu; } else if (!strcmp(buf + i, "Session-ID")) { int dtls_sessid_changed = 0; int vsize; vsize = parse_hex_val(colon, vpninfo->dtls_session_id, sizeof(vpninfo->dtls_session_id), &dtls_sessid_changed); if (vsize != 32) { vpn_progress(vpninfo, PRG_ERR, _("X-DTLS-Session-ID not 64 characters; is: \"%s\"\n"), colon); vpninfo->dtls_attempt_period = 0; return -EINVAL; } sessid_found = 1; if (dtls_sessid_changed && vpninfo->dtls_state > DTLS_SLEEPING) vpninfo->dtls_need_reconnect = 1; } else if (!strcmp(buf + i, "App-ID")) { int dtls_appid_changed = 0; int vsize; vsize = parse_hex_val(colon, vpninfo->dtls_app_id, sizeof(vpninfo->dtls_app_id), &dtls_appid_changed); if (vsize <= 0) { vpn_progress(vpninfo, PRG_ERR, _("X-DTLS-Session-ID is invalid; is: \"%s\"\n"), colon); vpninfo->dtls_attempt_period = 0; return -EINVAL; } vpninfo->dtls_app_id_size = vsize; sessid_found = 1; if (dtls_appid_changed && vpninfo->dtls_state > DTLS_SLEEPING) vpninfo->dtls_need_reconnect = 1; } else if (!strcmp(buf + i, "Content-Encoding")) { if (!strcmp(colon, "lzs")) vpninfo->dtls_compr = COMPR_LZS; else if (!strcmp(colon, "oc-lz4")) vpninfo->dtls_compr = COMPR_LZ4; else { vpn_progress(vpninfo, PRG_ERR, _("Unknown DTLS-Content-Encoding %s\n"), colon); return -EINVAL; } } else if (!strcmp(buf + i, "CipherSuite")) { /* Remember if it came from a 'X-DTLS12-CipherSuite:' header */ vpninfo->cisco_dtls12 = (i == 9); vpninfo->dtls_cipher = strdup(colon); } continue; } /* CSTP options... */ *next_cstp_option = new_option; next_cstp_option = &new_option->next; if (!strcmp(buf + 7, "Keepalive")) { vpninfo->ssl_times.keepalive = atol(colon); } else if (!strcmp(buf + 7, "Idle-Timeout")) { vpninfo->idle_timeout = atol(colon); } else if (!strcmp(buf + 7, "DPD")) { int j = atol(colon); if (j && (!vpninfo->ssl_times.dpd || j < vpninfo->ssl_times.dpd)) vpninfo->ssl_times.dpd = j; } else if (!strcmp(buf + 7, "Rekey-Time")) { vpninfo->ssl_times.rekey = atol(colon); } else if (!strcmp(buf + 7, "Rekey-Method")) { if (!strcmp(colon, "new-tunnel")) vpninfo->ssl_times.rekey_method = REKEY_TUNNEL; else if (!strcmp(colon, "ssl")) vpninfo->ssl_times.rekey_method = REKEY_SSL; else vpninfo->ssl_times.rekey_method = REKEY_NONE; } else if (!strcmp(buf + 7, "Content-Encoding")) { if (!strcmp(colon, "deflate")) vpninfo->cstp_compr = COMPR_DEFLATE; else if (!strcmp(colon, "lzs")) vpninfo->cstp_compr = COMPR_LZS; else if (!strcmp(colon, "oc-lz4")) vpninfo->cstp_compr = COMPR_LZ4; else { vpn_progress(vpninfo, PRG_ERR, _("Unknown CSTP-Content-Encoding %s\n"), colon); return -EINVAL; } } else if (!strcmp(buf + 7, "Base-MTU")) { vpninfo->cstp_basemtu = atol(colon); } else if (!strcmp(buf + 7, "MTU")) { int cstpmtu = atol(colon); if (cstpmtu > mtu) mtu = cstpmtu; } else if (!strcmp(buf + 7, "DynDNS")) { if (!strcmp(colon, "true")) vpninfo->is_dyndns = 1; } else if (!strcmp(buf + 7, "Address-IP6")) { vpninfo->ip_info.netmask6 = new_option->value; } else if (!strcmp(buf + 7, "Address")) { if (strchr(new_option->value, ':')) { if (!vpninfo->disable_ipv6) vpninfo->ip_info.addr6 = new_option->value; } else vpninfo->ip_info.addr = new_option->value; } else if (!strcmp(buf + 7, "Netmask")) { if (strchr(new_option->value, ':')) { if (!vpninfo->disable_ipv6) vpninfo->ip_info.netmask6 = new_option->value; } else vpninfo->ip_info.netmask = new_option->value; } else if (!strcmp(buf + 7, "DNS") || !strcmp(buf + 7, "DNS-IP6")) { int j; for (j = 0; j < 3; j++) { if (!vpninfo->ip_info.dns[j]) { vpninfo->ip_info.dns[j] = new_option->value; break; } } } else if (!strcmp(buf + 7, "NBNS")) { int j; for (j = 0; j < 3; j++) { if (!vpninfo->ip_info.nbns[j]) { vpninfo->ip_info.nbns[j] = new_option->value; break; } } } else if (!strcmp(buf + 7, "Default-Domain")) { vpninfo->ip_info.domain = new_option->value; } else if (!strcmp(buf + 7, "MSIE-Proxy-PAC-URL")) { vpninfo->ip_info.proxy_pac = new_option->value; } else if (!strcmp(buf + 7, "Banner")) { vpninfo->banner = new_option->value; } else if (!strcmp(buf + 7, "Split-DNS")) { struct oc_split_include *dns = malloc(sizeof(*dns)); if (!dns) continue; dns->route = new_option->value; dns->next = vpninfo->ip_info.split_dns; vpninfo->ip_info.split_dns = dns; } else if (!strcmp(buf + 7, "Split-Include") || !strcmp(buf + 7, "Split-Include-IP6")) { struct oc_split_include *inc = malloc(sizeof(*inc)); if (!inc) continue; inc->route = new_option->value; inc->next = vpninfo->ip_info.split_includes; vpninfo->ip_info.split_includes = inc; } else if (!strcmp(buf + 7, "Split-Exclude") || !strcmp(buf + 7, "Split-Exclude-IP6")) { struct oc_split_include *exc = malloc(sizeof(*exc)); if (!exc) continue; exc->route = new_option->value; exc->next = vpninfo->ip_info.split_excludes; vpninfo->ip_info.split_excludes = exc; } } if (!mtu) { vpn_progress(vpninfo, PRG_ERR, _("No MTU received. Aborting\n")); return -EINVAL; } vpninfo->ip_info.mtu = mtu; if (!vpninfo->ip_info.addr && !vpninfo->ip_info.addr6 && !vpninfo->ip_info.netmask6) { vpn_progress(vpninfo, PRG_ERR, _("No IP address received. Aborting\n")); return -EINVAL; } if (mtu < 1280 && (vpninfo->ip_info.addr6 || vpninfo->ip_info.netmask6)) { vpn_progress(vpninfo, PRG_ERR, _("IPv6 configuration received but MTU %d is too small.\n"), mtu); } if (old_addr) { if (strcmp(old_addr, vpninfo->ip_info.addr)) { vpn_progress(vpninfo, PRG_ERR, _("Reconnect gave different Legacy IP address (%s != %s)\n"), vpninfo->ip_info.addr, old_addr); /* EPERM means that the retry loop will abort and won't keep trying. */ return -EPERM; } } if (old_netmask) { if (strcmp(old_netmask, vpninfo->ip_info.netmask)) { vpn_progress(vpninfo, PRG_ERR, _("Reconnect gave different Legacy IP netmask (%s != %s)\n"), vpninfo->ip_info.netmask, old_netmask); return -EPERM; } } if (old_addr6) { if (strcmp(old_addr6, vpninfo->ip_info.addr6)) { vpn_progress(vpninfo, PRG_ERR, _("Reconnect gave different IPv6 address (%s != %s)\n"), vpninfo->ip_info.addr6, old_addr6); return -EPERM; } } if (old_netmask6) { if (strcmp(old_netmask6, vpninfo->ip_info.netmask6)) { vpn_progress(vpninfo, PRG_ERR, _("Reconnect gave different IPv6 netmask (%s != %s)\n"), vpninfo->ip_info.netmask6, old_netmask6); return -EPERM; } } free_optlist(old_dtls_opts); free_optlist(old_cstp_opts); vpn_progress(vpninfo, PRG_INFO, _("CSTP connected. DPD %d, Keepalive %d\n"), vpninfo->ssl_times.dpd, vpninfo->ssl_times.keepalive); vpn_progress(vpninfo, PRG_DEBUG, _("CSTP Ciphersuite: %s\n"), openconnect_get_cstp_cipher(vpninfo)); monitor_fd_new(vpninfo, ssl); monitor_read_fd(vpninfo, ssl); monitor_except_fd(vpninfo, ssl); if (!sessid_found) vpninfo->dtls_attempt_period = 0; if (vpninfo->ssl_times.rekey <= 0) vpninfo->ssl_times.rekey_method = REKEY_NONE; vpninfo->ssl_times.last_rekey = vpninfo->ssl_times.last_rx = vpninfo->ssl_times.last_tx = time(NULL); return 0; } int cstp_connect(struct openconnect_info *vpninfo) { int ret; int deflate_bufsize = 0; int compr_type; /* This needs to be done before openconnect_setup_dtls() because it's sent with the CSTP CONNECT handshake. Even if we don't end up doing DTLS. */ if (vpninfo->dtls_state == DTLS_NOSECRET) { if (openconnect_random(vpninfo->dtls_secret, sizeof(vpninfo->dtls_secret))) return -EINVAL; /* The application will later call openconnect_setup_dtls() */ vpninfo->dtls_state = DTLS_SECRET; } ret = openconnect_open_https(vpninfo); if (ret) return ret; ret = start_cstp_connection(vpninfo); if (ret) goto out; /* Allow for the theoretical possibility of having *different* * compression type for CSTP and DTLS. Although all we've seen * in practice is that one is enabled and the other isn't. */ compr_type = vpninfo->cstp_compr | vpninfo->dtls_compr; /* This will definitely be smaller than zlib's */ if (compr_type & (COMPR_LZS|COMPR_LZ4)) deflate_bufsize = vpninfo->ip_info.mtu; /* If deflate compression is enabled (which is CSTP-only), it needs its * context to be allocated. */ if (compr_type & COMPR_DEFLATE) { vpninfo->deflate_adler32 = 1; vpninfo->inflate_adler32 = 1; if (inflateInit2(&vpninfo->inflate_strm, -12) || deflateInit2(&vpninfo->deflate_strm, Z_DEFAULT_COMPRESSION, Z_DEFLATED, -12, 9, Z_DEFAULT_STRATEGY)) { vpn_progress(vpninfo, PRG_ERR, _("Compression setup failed\n")); ret = -ENOMEM; goto out; } /* Add four bytes for the adler32 */ deflate_bufsize = deflateBound(&vpninfo->deflate_strm, vpninfo->ip_info.mtu) + 4; } /* If *any* compression is enabled, we'll need a deflate_pkt to compress into */ if (deflate_bufsize > vpninfo->deflate_pkt_size) { free(vpninfo->deflate_pkt); vpninfo->deflate_pkt = malloc(sizeof(struct pkt) + deflate_bufsize); if (!vpninfo->deflate_pkt) { vpninfo->deflate_pkt_size = 0; vpn_progress(vpninfo, PRG_ERR, _("Allocation of deflate buffer failed\n")); ret = -ENOMEM; goto out; } vpninfo->deflate_pkt_size = deflate_bufsize; memset(vpninfo->deflate_pkt, 0, sizeof(struct pkt)); memcpy(vpninfo->deflate_pkt->cstp.hdr, data_hdr, 8); vpninfo->deflate_pkt->cstp.hdr[6] = AC_PKT_COMPRESSED; } out: if (ret < 0) openconnect_close_https(vpninfo, 0); return ret; } static int cstp_reconnect(struct openconnect_info *vpninfo) { if (vpninfo->cstp_compr == COMPR_DEFLATE) { /* Requeue the original packet that was deflated */ if (vpninfo->current_ssl_pkt == vpninfo->deflate_pkt) { vpninfo->current_ssl_pkt = NULL; queue_packet(&vpninfo->outgoing_queue, vpninfo->pending_deflated_pkt); vpninfo->pending_deflated_pkt = NULL; } inflateEnd(&vpninfo->inflate_strm); deflateEnd(&vpninfo->deflate_strm); } return ssl_reconnect(vpninfo); } int decompress_and_queue_packet(struct openconnect_info *vpninfo, int compr_type, unsigned char *buf, int len) { /* Some servers send us packets that are larger than negotiated MTU after decompression. We reserve some extra space to handle that */ int receive_mtu = MAX(16384, vpninfo->ip_info.mtu); struct pkt *new = malloc(sizeof(struct pkt) + receive_mtu); const char *comprname = ""; if (!new) return -ENOMEM; new->next = NULL; if (compr_type == COMPR_DEFLATE) { uint32_t pkt_sum; comprname = "deflate"; vpninfo->inflate_strm.next_in = buf; vpninfo->inflate_strm.avail_in = len - 4; vpninfo->inflate_strm.next_out = new->data; vpninfo->inflate_strm.avail_out = receive_mtu; vpninfo->inflate_strm.total_out = 0; if (inflate(&vpninfo->inflate_strm, Z_SYNC_FLUSH)) { vpn_progress(vpninfo, PRG_ERR, _("inflate failed\n")); free(new); return -EINVAL; } new->len = vpninfo->inflate_strm.total_out; vpninfo->inflate_adler32 = adler32(vpninfo->inflate_adler32, new->data, new->len); pkt_sum = load_be32(buf + len - 4); if (vpninfo->inflate_adler32 != pkt_sum) vpninfo->quit_reason = "Compression (inflate) adler32 failure"; } else if (compr_type == COMPR_LZS) { comprname = "LZS"; new->len = lzs_decompress(new->data, receive_mtu, buf, len); if (new->len < 0) { len = new->len; if (len == 0) len = -EINVAL; vpn_progress(vpninfo, PRG_ERR, _("LZS decompression failed: %s\n"), strerror(-len)); free(new); return len; } #ifdef HAVE_LZ4 } else if (compr_type == COMPR_LZ4) { comprname = "LZ4"; new->len = LZ4_decompress_safe((void *)buf, (void *)new->data, len, receive_mtu); if (new->len <= 0) { len = new->len; if (len == 0) len = -EINVAL; vpn_progress(vpninfo, PRG_ERR, _("LZ4 decompression failed\n")); free(new); return len; } #endif } else { vpn_progress(vpninfo, PRG_ERR, _("Unknown compression type %d\n"), compr_type); free(new); return -EINVAL; } vpn_progress(vpninfo, PRG_TRACE, _("Received %s compressed data packet of %d bytes (was %d)\n"), comprname, new->len, len); queue_packet(&vpninfo->incoming_queue, new); return 0; } int compress_packet(struct openconnect_info *vpninfo, int compr_type, struct pkt *this) { int ret; if (compr_type == COMPR_DEFLATE) { vpninfo->deflate_strm.next_in = this->data; vpninfo->deflate_strm.avail_in = this->len; vpninfo->deflate_strm.next_out = (void *)vpninfo->deflate_pkt->data; vpninfo->deflate_strm.avail_out = vpninfo->deflate_pkt_size - 4; vpninfo->deflate_strm.total_out = 0; ret = deflate(&vpninfo->deflate_strm, Z_SYNC_FLUSH); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("deflate failed %d\n"), ret); /* Things are going to go horribly wrong if we try to do any more compression. Give up entirely. */ vpninfo->cstp_compr = 0; return -EIO; } /* Add ongoing adler32 to tail of compressed packet */ vpninfo->deflate_adler32 = adler32(vpninfo->deflate_adler32, this->data, this->len); store_be32(&vpninfo->deflate_pkt->data[vpninfo->deflate_strm.total_out], vpninfo->deflate_adler32); vpninfo->deflate_pkt->len = vpninfo->deflate_strm.total_out + 4; return 0; } else if (compr_type == COMPR_LZS) { if (this->len < 40) return -EFBIG; ret = lzs_compress(vpninfo->deflate_pkt->data, this->len, this->data, this->len); if (ret < 0) return ret; vpninfo->deflate_pkt->len = ret; return 0; #ifdef HAVE_LZ4 } else if (compr_type == COMPR_LZ4) { if (this->len < 40) return -EFBIG; ret = LZ4_compress_default((void*)this->data, (void*)vpninfo->deflate_pkt->data, this->len, this->len); if (ret <= 0) { if (ret == 0) ret = -EFBIG; return ret; } vpninfo->deflate_pkt->len = ret; return 0; #endif } else return -EINVAL; return 0; } int cstp_mainloop(struct openconnect_info *vpninfo, int *timeout, int readable) { int ret; int work_done = 0; if (vpninfo->ssl_fd == -1) goto do_reconnect; /* FIXME: The poll() handling here is fairly simplistic. Actually, if the SSL connection stalls it could return a WANT_WRITE error on _either_ of the SSL_read() or SSL_write() calls. In that case, we should probably remove POLLIN from the events we're looking for, and add POLLOUT. As it is, though, it'll just chew CPU time in that fairly unlikely situation, until the write backlog clears. */ while (readable) { /* Some servers send us packets that are larger than negotiated MTU. We reserve some extra space to handle that */ int receive_mtu = MAX(16384, vpninfo->deflate_pkt_size ? : vpninfo->ip_info.mtu); int len, payload_len; if (!vpninfo->cstp_pkt) { vpninfo->cstp_pkt = malloc(sizeof(struct pkt) + receive_mtu); if (!vpninfo->cstp_pkt) { vpn_progress(vpninfo, PRG_ERR, _("Allocation failed\n")); break; } } len = ssl_nonblock_read(vpninfo, vpninfo->cstp_pkt->cstp.hdr, receive_mtu + 8); if (!len) break; if (len < 0) goto do_reconnect; if (len < 8) { vpn_progress(vpninfo, PRG_ERR, _("Short packet received (%d bytes)\n"), len); vpninfo->quit_reason = "Short packet received"; return 1; } if (vpninfo->cstp_pkt->cstp.hdr[0] != 'S' || vpninfo->cstp_pkt->cstp.hdr[1] != 'T' || vpninfo->cstp_pkt->cstp.hdr[2] != 'F' || vpninfo->cstp_pkt->cstp.hdr[3] != 1 || vpninfo->cstp_pkt->cstp.hdr[7]) goto unknown_pkt; payload_len = load_be16(vpninfo->cstp_pkt->cstp.hdr + 4); if (len != 8 + payload_len) { vpn_progress(vpninfo, PRG_ERR, _("Unexpected packet length. SSL_read returned %d but packet is\n"), len); vpn_progress(vpninfo, PRG_ERR, "%02x %02x %02x %02x %02x %02x %02x %02x\n", vpninfo->cstp_pkt->cstp.hdr[0], vpninfo->cstp_pkt->cstp.hdr[1], vpninfo->cstp_pkt->cstp.hdr[2], vpninfo->cstp_pkt->cstp.hdr[3], vpninfo->cstp_pkt->cstp.hdr[4], vpninfo->cstp_pkt->cstp.hdr[5], vpninfo->cstp_pkt->cstp.hdr[6], vpninfo->cstp_pkt->cstp.hdr[7]); continue; } vpninfo->ssl_times.last_rx = time(NULL); switch (vpninfo->cstp_pkt->cstp.hdr[6]) { case AC_PKT_DPD_OUT: vpn_progress(vpninfo, PRG_DEBUG, _("Got CSTP DPD request\n")); vpninfo->owe_ssl_dpd_response = 1; continue; case AC_PKT_DPD_RESP: vpn_progress(vpninfo, PRG_DEBUG, _("Got CSTP DPD response\n")); continue; case AC_PKT_KEEPALIVE: vpn_progress(vpninfo, PRG_DEBUG, _("Got CSTP Keepalive\n")); continue; case AC_PKT_DATA: vpn_progress(vpninfo, PRG_TRACE, _("Received uncompressed data packet of %d bytes\n"), payload_len); vpninfo->cstp_pkt->len = payload_len; queue_packet(&vpninfo->incoming_queue, vpninfo->cstp_pkt); vpninfo->cstp_pkt = NULL; work_done = 1; continue; case AC_PKT_DISCONN: { int i; if (payload_len >= 2) { for (i = 1; i < payload_len; i++) { if (!isprint(vpninfo->cstp_pkt->data[i])) vpninfo->cstp_pkt->data[i] = '.'; } vpninfo->cstp_pkt->data[payload_len] = 0; vpn_progress(vpninfo, PRG_ERR, _("Received server disconnect: %02x '%s'\n"), vpninfo->cstp_pkt->data[0], vpninfo->cstp_pkt->data + 1); } else { vpn_progress(vpninfo, PRG_ERR, _("Received server disconnect\n")); } vpninfo->quit_reason = "Server request"; return -EPIPE; } case AC_PKT_COMPRESSED: if (!vpninfo->cstp_compr) { vpn_progress(vpninfo, PRG_ERR, _("Compressed packet received in !deflate mode\n")); goto unknown_pkt; } decompress_and_queue_packet(vpninfo, vpninfo->cstp_compr, vpninfo->cstp_pkt->data, payload_len); work_done = 1; continue; case AC_PKT_TERM_SERVER: vpn_progress(vpninfo, PRG_ERR, _("received server terminate packet\n")); vpninfo->quit_reason = "Server request"; return -EPIPE; } unknown_pkt: vpn_progress(vpninfo, PRG_ERR, _("Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n"), vpninfo->cstp_pkt->cstp.hdr[0], vpninfo->cstp_pkt->cstp.hdr[1], vpninfo->cstp_pkt->cstp.hdr[2], vpninfo->cstp_pkt->cstp.hdr[3], vpninfo->cstp_pkt->cstp.hdr[4], vpninfo->cstp_pkt->cstp.hdr[5], vpninfo->cstp_pkt->cstp.hdr[6], vpninfo->cstp_pkt->cstp.hdr[7]); vpninfo->quit_reason = "Unknown packet received"; return 1; } /* If SSL_write() fails we are expected to try again. With exactly the same data, at exactly the same location. So we keep the packet we had before.... */ if (vpninfo->current_ssl_pkt) { handle_outgoing: vpninfo->ssl_times.last_tx = time(NULL); unmonitor_write_fd(vpninfo, ssl); ret = ssl_nonblock_write(vpninfo, vpninfo->current_ssl_pkt->cstp.hdr, vpninfo->current_ssl_pkt->len + 8); if (ret < 0) goto do_reconnect; else if (!ret) { /* -EAGAIN: ssl_nonblock_write() will have added the SSL fd to ->select_wfds if appropriate, so we can just return and wait. Unless it's been stalled for so long that DPD kicks in and we kill the connection. */ switch (ka_stalled_action(&vpninfo->ssl_times, timeout)) { case KA_DPD_DEAD: goto peer_dead; case KA_REKEY: goto do_rekey; case KA_NONE: return work_done; default: /* This should never happen */ ; } } if (ret != vpninfo->current_ssl_pkt->len + 8) { vpn_progress(vpninfo, PRG_ERR, _("SSL wrote too few bytes! Asked for %d, sent %d\n"), vpninfo->current_ssl_pkt->len + 8, ret); vpninfo->quit_reason = "Internal error"; return 1; } /* Don't free the 'special' packets */ if (vpninfo->current_ssl_pkt == vpninfo->deflate_pkt) { free(vpninfo->pending_deflated_pkt); vpninfo->pending_deflated_pkt = NULL; } else if (vpninfo->current_ssl_pkt != &dpd_pkt && vpninfo->current_ssl_pkt != &dpd_resp_pkt && vpninfo->current_ssl_pkt != &keepalive_pkt) free(vpninfo->current_ssl_pkt); vpninfo->current_ssl_pkt = NULL; } if (vpninfo->owe_ssl_dpd_response) { vpninfo->owe_ssl_dpd_response = 0; vpninfo->current_ssl_pkt = (struct pkt *)&dpd_resp_pkt; goto handle_outgoing; } switch (keepalive_action(&vpninfo->ssl_times, timeout)) { case KA_REKEY: do_rekey: /* Not that this will ever happen; we don't even process the setting when we're asked for it. */ vpn_progress(vpninfo, PRG_INFO, _("CSTP rekey due\n")); if (vpninfo->ssl_times.rekey_method == REKEY_TUNNEL) goto do_reconnect; else if (vpninfo->ssl_times.rekey_method == REKEY_SSL) { ret = cstp_handshake(vpninfo, 0); if (ret) { /* if we failed rehandshake try establishing a new-tunnel instead of failing */ vpn_progress(vpninfo, PRG_ERR, _("Rehandshake failed; attempting new-tunnel\n")); goto do_reconnect; } goto do_dtls_reconnect; } break; case KA_DPD_DEAD: peer_dead: vpn_progress(vpninfo, PRG_ERR, _("CSTP Dead Peer Detection detected dead peer!\n")); do_reconnect: ret = cstp_reconnect(vpninfo); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("Reconnect failed\n")); vpninfo->quit_reason = "CSTP reconnect failed"; return ret; } do_dtls_reconnect: /* succeeded, let's rekey DTLS, if it is not rekeying * itself. */ if (vpninfo->dtls_state > DTLS_SLEEPING && vpninfo->dtls_times.rekey_method == REKEY_NONE) { vpninfo->dtls_need_reconnect = 1; } return 1; case KA_DPD: vpn_progress(vpninfo, PRG_DEBUG, _("Send CSTP DPD\n")); vpninfo->current_ssl_pkt = (struct pkt *)&dpd_pkt; goto handle_outgoing; case KA_KEEPALIVE: /* No need to send an explicit keepalive if we have real data to send */ if (vpninfo->dtls_state != DTLS_CONNECTED && vpninfo->outgoing_queue.head) break; vpn_progress(vpninfo, PRG_DEBUG, _("Send CSTP Keepalive\n")); vpninfo->current_ssl_pkt = (struct pkt *)&keepalive_pkt; goto handle_outgoing; case KA_NONE: ; } /* Service outgoing packet queue, if no DTLS */ while (vpninfo->dtls_state != DTLS_CONNECTED && (vpninfo->current_ssl_pkt = dequeue_packet(&vpninfo->outgoing_queue))) { struct pkt *this = vpninfo->current_ssl_pkt; if (vpninfo->cstp_compr) { ret = compress_packet(vpninfo, vpninfo->cstp_compr, this); if (ret < 0) goto uncompr; store_be16(vpninfo->deflate_pkt->cstp.hdr + 4, vpninfo->deflate_pkt->len); /* DTLS compression may have screwed with this */ vpninfo->deflate_pkt->cstp.hdr[7] = 0; vpn_progress(vpninfo, PRG_TRACE, _("Sending compressed data packet of %d bytes (was %d)\n"), vpninfo->deflate_pkt->len, this->len); vpninfo->pending_deflated_pkt = this; vpninfo->current_ssl_pkt = vpninfo->deflate_pkt; } else { uncompr: memcpy(this->cstp.hdr, data_hdr, 8); store_be16(this->cstp.hdr + 4, this->len); vpn_progress(vpninfo, PRG_TRACE, _("Sending uncompressed data packet of %d bytes\n"), this->len); vpninfo->current_ssl_pkt = this; } goto handle_outgoing; } /* Work is not done if we just got rid of packets off the queue */ return work_done; } int cstp_bye(struct openconnect_info *vpninfo, const char *reason) { unsigned char *bye_pkt; int reason_len; /* already lost connection? */ #if defined(OPENCONNECT_OPENSSL) if (!vpninfo->https_ssl) return 0; #elif defined(OPENCONNECT_GNUTLS) if (!vpninfo->https_sess) return 0; #endif reason_len = strlen(reason); bye_pkt = malloc(reason_len + 9); if (!bye_pkt) return -ENOMEM; memcpy(bye_pkt, data_hdr, 8); memcpy(bye_pkt + 9, reason, reason_len); store_be16(bye_pkt + 4, reason_len + 1); bye_pkt[6] = AC_PKT_DISCONN; bye_pkt[8] = 0xb0; vpn_progress(vpninfo, PRG_INFO, _("Send BYE packet: %s\n"), reason); ssl_nonblock_write(vpninfo, bye_pkt, reason_len + 9); free(bye_pkt); return 0; } void cstp_common_headers(struct openconnect_info *vpninfo, struct oc_text_buf *buf) { http_common_headers(vpninfo, buf); buf_append(buf, "Accept: */*\r\n"); buf_append(buf, "Accept-Encoding: identity\r\n"); buf_append(buf, "X-Transcend-Version: 1\r\n"); if (vpninfo->xmlpost) { buf_append(buf, "X-Aggregate-Auth: 1\r\n"); buf_append(buf, "X-AnyConnect-Platform: %s\r\n", vpninfo->platname); } if (vpninfo->try_http_auth) buf_append(buf, "X-Support-HTTP-Auth: true\r\n"); append_mobile_headers(vpninfo, buf); } openconnect-8.05/ssl.c0000664000076400007640000007137213417573742016531 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include #include #include #include #include #include #if defined(__linux__) || defined(__ANDROID__) #include #elif defined(__FreeBSD__) || defined(__FreeBSD_kernel__) || defined(__OpenBSD__) || defined(__APPLE__) #include #include #elif defined(__sun__) || defined(__NetBSD__) || defined(__DragonFly__) #include #elif defined(__GNU__) #include #endif #include "openconnect-internal.h" #ifdef ANDROID_KEYSTORE #include #endif /* OSX < 1.6 doesn't have AI_NUMERICSERV */ #ifndef AI_NUMERICSERV #define AI_NUMERICSERV 0 #endif /* GNU Hurd doesn't yet declare IPV6_TCLASS */ #ifndef IPV6_TCLASS #if defined(__GNU__) #define IPV6_TCLASS 61 #elif defined(__APPLE__) #define IPV6_TCLASS 36 #endif #endif static inline int connect_pending() { #ifdef _WIN32 return WSAGetLastError() == WSAEWOULDBLOCK; #else return errno == EINPROGRESS; #endif } /* Windows is interminably horrid, and has disjoint errno spaces. * So if we return a positive value, that's a WSA Error and should * be handled with openconnect__win32_strerror(). But if we return a * negative value, that's a normal errno and should be handled with * strerror(). No, you can't just pass the latter value (negated) to * openconnect__win32_strerror() because it gives nonsense results. */ static int cancellable_connect(struct openconnect_info *vpninfo, int sockfd, const struct sockaddr *addr, socklen_t addrlen) { struct sockaddr_storage peer; socklen_t peerlen = sizeof(peer); fd_set wr_set, rd_set, ex_set; int maxfd = sockfd; int err; set_sock_nonblock(sockfd); if (vpninfo->protect_socket) vpninfo->protect_socket(vpninfo->cbdata, sockfd); if (connect(sockfd, addr, addrlen) < 0 && !connect_pending()) { #ifdef _WIN32 return WSAGetLastError(); #else return -errno; #endif } do { FD_ZERO(&wr_set); FD_ZERO(&rd_set); FD_ZERO(&ex_set); FD_SET(sockfd, &wr_set); #ifdef _WIN32 /* Windows indicates failure this way, not in wr_set */ FD_SET(sockfd, &ex_set); #endif cmd_fd_set(vpninfo, &rd_set, &maxfd); select(maxfd + 1, &rd_set, &wr_set, &ex_set, NULL); if (is_cancel_pending(vpninfo, &rd_set)) { vpn_progress(vpninfo, PRG_ERR, _("Socket connect cancelled\n")); return -EINTR; } } while (!FD_ISSET(sockfd, &wr_set) && !FD_ISSET(sockfd, &ex_set) && !vpninfo->got_pause_cmd); /* Check whether connect() succeeded or failed by using getpeername(). See http://cr.yp.to/docs/connect.html */ if (!getpeername(sockfd, (void *)&peer, &peerlen)) return 0; #ifdef _WIN32 /* On Windows, use getsockopt() to determine the error. * We don't ddo this on Windows because it just reports * -ENOTCONN, which we already knew. */ err = WSAGetLastError(); if (err == WSAENOTCONN) { socklen_t errlen = sizeof(err); getsockopt(sockfd, SOL_SOCKET, SO_ERROR, (void *)&err, &errlen); } #else err = -errno; if (err == -ENOTCONN) { int ch; if (read(sockfd, &ch, 1) < 0) err = -errno; /* It should *always* fail! */ } #endif return err; } /* checks whether the provided string is an IP or a hostname. */ unsigned string_is_hostname(const char *str) { struct in_addr buf; /* We don't use inet_pton() because an IPv6 literal is likely to be encased in []. So just check for a colon, which shouldn't occur in hostnames anyway. */ if (!str || inet_aton(str, &buf) || strchr(str, ':')) return 0; return 1; } static int match_sockaddr(struct sockaddr *a, struct sockaddr *b) { if (a->sa_family == AF_INET) { struct sockaddr_in *a4 = (void *)a; struct sockaddr_in *b4 = (void *)b; return (a4->sin_addr.s_addr == b4->sin_addr.s_addr) && (a4->sin_port == b4->sin_port); } else if (a->sa_family == AF_INET6) { struct sockaddr_in6 *a6 = (void *)a; struct sockaddr_in6 *b6 = (void *)b; return !memcmp(&a6->sin6_addr, &b6->sin6_addr, sizeof(a6->sin6_addr)) && a6->sin6_port == b6->sin6_port; } else return 0; } int connect_https_socket(struct openconnect_info *vpninfo) { int ssl_sock = -1; int err; if (!vpninfo->port) vpninfo->port = 443; /* If we're talking to a server which told us it has dynamic DNS, don't just re-use its previous IP address. If we're talking to a proxy, we can use *its* previous IP address. We expect it'll re-do the DNS lookup for the server anyway. */ if (vpninfo->peer_addr && (!vpninfo->is_dyndns || vpninfo->proxy)) { reconnect: #ifdef SOCK_CLOEXEC ssl_sock = socket(vpninfo->peer_addr->sa_family, SOCK_STREAM | SOCK_CLOEXEC, IPPROTO_IP); if (ssl_sock < 0) #endif { ssl_sock = socket(vpninfo->peer_addr->sa_family, SOCK_STREAM, IPPROTO_IP); if (ssl_sock < 0) { #ifdef _WIN32 err = WSAGetLastError(); #else err = -errno; #endif goto reconn_err; } set_fd_cloexec(ssl_sock); } err = cancellable_connect(vpninfo, ssl_sock, vpninfo->peer_addr, vpninfo->peer_addrlen); if (err) { char *errstr; reconn_err: #ifdef _WIN32 if (err > 0) errstr = openconnect__win32_strerror(err); else #endif errstr = strerror(-err); if (vpninfo->proxy) { vpn_progress(vpninfo, PRG_ERR, _("Failed to reconnect to proxy %s: %s\n"), vpninfo->proxy, errstr); } else { vpn_progress(vpninfo, PRG_ERR, _("Failed to reconnect to host %s: %s\n"), vpninfo->hostname, errstr); } #ifdef _WIN32 if (err > 0) free(errstr); #endif if (ssl_sock >= 0) closesocket(ssl_sock); ssl_sock = -EINVAL; goto out; } } else { struct addrinfo hints, *result, *rp; char *hostname; char port[6]; memset(&hints, 0, sizeof(struct addrinfo)); hints.ai_family = AF_UNSPEC; hints.ai_socktype = SOCK_STREAM; hints.ai_flags = AI_PASSIVE | AI_NUMERICSERV; hints.ai_protocol = 0; hints.ai_canonname = NULL; hints.ai_addr = NULL; hints.ai_next = NULL; /* The 'port' variable is a string because it's easier this way than if we pass NULL to getaddrinfo() and then try to fill in the numeric value into different types of returned sockaddr_in{6,}. */ #ifdef LIBPROXY_HDR if (vpninfo->proxy_factory) { struct oc_text_buf *url_buf = buf_alloc(); char **proxies; int i = 0; free(vpninfo->proxy_type); vpninfo->proxy_type = NULL; free(vpninfo->proxy); vpninfo->proxy = NULL; buf_append(url_buf, "https://%s", vpninfo->hostname); if (vpninfo->port != 443) buf_append(url_buf, ":%d", vpninfo->port); buf_append(url_buf, "/%s", vpninfo->urlpath?:""); if (buf_error(url_buf)) { buf_free(url_buf); ssl_sock = -ENOMEM; goto out; } proxies = px_proxy_factory_get_proxies(vpninfo->proxy_factory, url_buf->data); i = 0; while (proxies && proxies[i]) { if (!vpninfo->proxy && (!strncmp(proxies[i], "http://", 7) || !strncmp(proxies[i], "socks://", 8) || !strncmp(proxies[i], "socks5://", 9))) internal_parse_url(proxies[i], &vpninfo->proxy_type, &vpninfo->proxy, &vpninfo->proxy_port, NULL, 0); i++; } buf_free(url_buf); free(proxies); if (vpninfo->proxy) vpn_progress(vpninfo, PRG_DEBUG, _("Proxy from libproxy: %s://%s:%d/\n"), vpninfo->proxy_type, vpninfo->proxy, vpninfo->port); } #endif if (vpninfo->proxy) { hostname = vpninfo->proxy; snprintf(port, 6, "%d", vpninfo->proxy_port); } else { hostname = vpninfo->hostname; snprintf(port, 6, "%d", vpninfo->port); } if (hostname[0] == '[' && hostname[strlen(hostname)-1] == ']') { hostname = strndup(hostname + 1, strlen(hostname) - 2); if (!hostname) { ssl_sock = -ENOMEM; goto out; } hints.ai_flags |= AI_NUMERICHOST; } if (vpninfo->getaddrinfo_override) err = vpninfo->getaddrinfo_override(vpninfo->cbdata, hostname, port, &hints, &result); else err = getaddrinfo(hostname, port, &hints, &result); if (err) { vpn_progress(vpninfo, PRG_ERR, _("getaddrinfo failed for host '%s': %s\n"), hostname, gai_strerror(err)); if (hints.ai_flags & AI_NUMERICHOST) free(hostname); ssl_sock = -EINVAL; /* If we were just retrying for dynamic DNS, reconnct using the previously-known IP address */ if (vpninfo->peer_addr) { vpn_progress(vpninfo, PRG_ERR, _("Reconnecting to DynDNS server using previously cached IP address\n")); goto reconnect; } goto out; } if (hints.ai_flags & AI_NUMERICHOST) free(hostname); for (rp = result; rp ; rp = rp->ai_next) { char host[80]; host[0] = 0; if (!getnameinfo(rp->ai_addr, rp->ai_addrlen, host, sizeof(host), NULL, 0, NI_NUMERICHOST)) vpn_progress(vpninfo, PRG_DEBUG, vpninfo->proxy_type ? _("Attempting to connect to proxy %s%s%s:%s\n") : _("Attempting to connect to server %s%s%s:%s\n"), rp->ai_family == AF_INET6 ? "[" : "", host, rp->ai_family == AF_INET6 ? "]" : "", port); ssl_sock = socket(rp->ai_family, rp->ai_socktype, rp->ai_protocol); if (ssl_sock < 0) continue; set_fd_cloexec(ssl_sock); err = cancellable_connect(vpninfo, ssl_sock, rp->ai_addr, rp->ai_addrlen); if (!err) { /* Store the peer address we actually used, so that DTLS can use it again later */ free(vpninfo->ip_info.gateway_addr); vpninfo->ip_info.gateway_addr = NULL; if (host[0]) { vpninfo->ip_info.gateway_addr = strdup(host); vpn_progress(vpninfo, PRG_INFO, _("Connected to %s%s%s:%s\n"), rp->ai_family == AF_INET6 ? "[" : "", host, rp->ai_family == AF_INET6 ? "]" : "", port); } free(vpninfo->peer_addr); vpninfo->peer_addrlen = 0; vpninfo->peer_addr = malloc(rp->ai_addrlen); if (!vpninfo->peer_addr) { vpn_progress(vpninfo, PRG_ERR, _("Failed to allocate sockaddr storage\n")); closesocket(ssl_sock); ssl_sock = -ENOMEM; goto out; } vpninfo->peer_addrlen = rp->ai_addrlen; memcpy(vpninfo->peer_addr, rp->ai_addr, rp->ai_addrlen); /* If no proxy, ensure that we output *this* IP address in * authentication results because we're going to need to * reconnect to the *same* server from the rotation. And with * some trick DNS setups, it might possibly be a "rotation" * even if we only got one result from getaddrinfo() this * time. * * If there's a proxy, we're kind of screwed; we can't know * which IP address we connected to. Perhaps we ought to do * the DNS lookup locally and connect to a specific IP? */ if (!vpninfo->proxy && host[0]) { char *p = malloc(strlen(host) + 3); if (p) { free(vpninfo->unique_hostname); vpninfo->unique_hostname = p; if (rp->ai_family == AF_INET6) *p++ = '['; memcpy(p, host, strlen(host)); p += strlen(host); if (rp->ai_family == AF_INET6) *p++ = ']'; *p = 0; } } break; } if (host[0]) { char *errstr; #ifdef _WIN32 if (err > 0) errstr = openconnect__win32_strerror(err); else #endif errstr = strerror(-err); vpn_progress(vpninfo, PRG_INFO, _("Failed to connect to %s%s%s:%s: %s\n"), rp->ai_family == AF_INET6 ? "[" : "", host, rp->ai_family == AF_INET6 ? "]" : "", port, errstr); #ifdef _WIN32 if (err > 0) free(errstr); #endif } closesocket(ssl_sock); ssl_sock = -1; /* If we're in DynDNS mode but this *was* the cached IP address, * don't bother falling back to it if it didn't work. */ if (vpninfo->peer_addr && vpninfo->peer_addrlen == rp->ai_addrlen && match_sockaddr(vpninfo->peer_addr, rp->ai_addr)) { vpn_progress(vpninfo, PRG_TRACE, _("Forgetting non-functional previous peer address\n")); free(vpninfo->peer_addr); vpninfo->peer_addr = 0; vpninfo->peer_addrlen = 0; free(vpninfo->ip_info.gateway_addr); vpninfo->ip_info.gateway_addr = NULL; } } freeaddrinfo(result); if (ssl_sock < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to connect to host %s\n"), vpninfo->proxy?:vpninfo->hostname); ssl_sock = -EINVAL; if (vpninfo->peer_addr) { vpn_progress(vpninfo, PRG_ERR, _("Reconnecting to DynDNS server using previously cached IP address\n")); goto reconnect; } goto out; } } if (vpninfo->proxy) { err = process_proxy(vpninfo, ssl_sock); if (err) { closesocket(ssl_sock); if (err == -EAGAIN) { /* Proxy authentication failed and we need to retry */ vpn_progress(vpninfo, PRG_DEBUG, _("Reconnecting to proxy %s\n"), vpninfo->proxy); goto reconnect; } ssl_sock = err; } } out: /* If proxy processing returned -EAGAIN to reconnect before attempting further auth, and we failed to reconnect, we have to clean up here. */ clear_auth_states(vpninfo, vpninfo->proxy_auth, 1); return ssl_sock; } int __attribute__ ((format (printf, 2, 3))) openconnect_SSL_printf(struct openconnect_info *vpninfo, const char *fmt, ...) { char buf[1024]; va_list args; buf[1023] = 0; va_start(args, fmt); vsnprintf(buf, 1023, fmt, args); va_end(args); return vpninfo->ssl_write(vpninfo, buf, strlen(buf)); } int __attribute__ ((format(printf, 4, 5))) request_passphrase(struct openconnect_info *vpninfo, const char *label, char **response, const char *fmt, ...) { struct oc_auth_form f; struct oc_form_opt o; char buf[1024]; va_list args; int ret; buf[1023] = 0; memset(&f, 0, sizeof(f)); va_start(args, fmt); vsnprintf(buf, 1023, fmt, args); va_end(args); f.auth_id = (char *)label; f.opts = &o; o.next = NULL; o.type = OC_FORM_OPT_PASSWORD; o.name = (char *)label; o.label = buf; o._value = NULL; ret = process_auth_form(vpninfo, &f); if (!ret) { *response = o._value; return 0; } return -EIO; } #if defined(__sun__) || defined(__NetBSD__) || defined(__DragonFly__) int openconnect_passphrase_from_fsid(struct openconnect_info *vpninfo) { struct statvfs buf; char *sslkey = openconnect_utf8_to_legacy(vpninfo, vpninfo->sslkey); int err = 0; if (statvfs(sslkey, &buf)) { err = -errno; vpn_progress(vpninfo, PRG_ERR, _("statvfs: %s\n"), strerror(errno)); } else if (asprintf(&vpninfo->cert_password, "%lx", buf.f_fsid) == -1) err = -ENOMEM; if (sslkey != vpninfo->sslkey) free(sslkey); return err; } #elif defined(_WIN32) #include typedef BOOL WINAPI (*GVIBH)(HANDLE, LPWSTR, DWORD, LPDWORD, LPDWORD, LPDWORD, LPWSTR, DWORD); int openconnect_passphrase_from_fsid(struct openconnect_info *vpninfo) { HANDLE h; DWORD serial; HINSTANCE kernlib; GVIBH func = NULL; int success; int fd; /* Some versions of Windows don't have this so don't use standard load-time linking or it'll cause failures. */ kernlib = LoadLibraryA("Kernel32.dll"); if (!kernlib) { notsupp: vpn_progress(vpninfo, PRG_ERR, _("Could not obtain file system ID for passphrase\n")); return -EOPNOTSUPP; } func = (GVIBH)GetProcAddress(kernlib, "GetVolumeInformationByHandleW"); FreeLibrary(kernlib); if (!func) goto notsupp; fd = openconnect_open_utf8(vpninfo, vpninfo->sslkey, O_RDONLY); if (fd == -1) { vpn_progress(vpninfo, PRG_ERR, _("Failed to open private key file '%s': %s\n"), vpninfo->sslkey, strerror(errno)); return -ENOENT; } h = (HANDLE)_get_osfhandle(fd); success = func(h, NULL, 0, &serial, NULL, NULL, NULL, 0); close(fd); if (!success) return -EIO; if (asprintf(&vpninfo->cert_password, "%lx", serial) == -1) return -ENOMEM; return 0; } #elif defined(HAVE_STATFS) int openconnect_passphrase_from_fsid(struct openconnect_info *vpninfo) { char *sslkey = openconnect_utf8_to_legacy(vpninfo, vpninfo->sslkey); struct statfs buf; unsigned *fsid = (unsigned *)&buf.f_fsid; unsigned long long fsid64; int err = 0; if (statfs(sslkey, &buf)) { err = -errno; vpn_progress(vpninfo, PRG_ERR, _("statfs: %s\n"), strerror(errno)); return -err; } else { fsid64 = ((unsigned long long)fsid[0] << 32) | fsid[1]; if (asprintf(&vpninfo->cert_password, "%llx", fsid64) == -1) err = -ENOMEM; } if (sslkey != vpninfo->sslkey) free(sslkey); return err; } #else int openconnect_passphrase_from_fsid(struct openconnect_info *vpninfo) { return -EOPNOTSUPP; } #endif #if defined(OPENCONNECT_OPENSSL) /* We put this here rather than in openssl.c because it might be needed for OpenSSL DTLS support even when GnuTLS is being used for HTTPS */ int openconnect_print_err_cb(const char *str, size_t len, void *ptr) { struct openconnect_info *vpninfo = ptr; vpn_progress(vpninfo, PRG_ERR, "%s", str); return 0; } #endif #ifdef FAKE_ANDROID_KEYSTORE char *keystore_strerror(int err) { return (char *)strerror(-err); } int keystore_fetch(const char *key, unsigned char **result) { unsigned char *data; struct stat st; int fd; int ret; fd = open(key, O_RDONLY); if (fd < 0) return -errno; if (fstat(fd, &st)) { ret = -errno; goto out_fd; } data = malloc(st.st_size + 1); if (!data) { ret = -ENOMEM; goto out_fd; } if (read(fd, data, st.st_size) != st.st_size) { ret = -EIO; free(data); goto out_fd; } data[st.st_size] = 0; *result = data; ret = st.st_size; out_fd: close(fd); return ret; } #elif defined(ANDROID_KEYSTORE) /* keystore.h isn't in the NDK so we need to define these */ #define NO_ERROR 1 #define LOCKED 2 #define UNINITIALIZED 3 #define SYSTEM_ERROR 4 #define PROTOCOL_ERROR 5 #define PERMISSION_DENIED 6 #define KEY_NOT_FOUND 7 #define VALUE_CORRUPTED 8 #define UNDEFINED_ACTION 9 #define WRONG_PASSWORD 10 const char *keystore_strerror(int err) { switch (-err) { case NO_ERROR: return _("No error"); case LOCKED: return _("Keystore locked"); case UNINITIALIZED: return _("Keystore uninitialized"); case SYSTEM_ERROR: return _("System error"); case PROTOCOL_ERROR: return _("Protocol error"); case PERMISSION_DENIED: return _("Permission denied"); case KEY_NOT_FOUND: return _("Key not found"); case VALUE_CORRUPTED: return _("Value corrupted"); case UNDEFINED_ACTION: return _("Undefined action"); case WRONG_PASSWORD: case WRONG_PASSWORD+1: case WRONG_PASSWORD+2: case WRONG_PASSWORD+3: return _("Wrong password"); default: return _("Unknown error"); } } /* Returns length, or a negative errno in its own namespace (handled by its own strerror function above). The numbers are from Android's keystore.h */ int keystore_fetch(const char *key, unsigned char **result) { struct sockaddr_un sa = { AF_UNIX, "/dev/socket/keystore" }; socklen_t sl = offsetof(struct sockaddr_un, sun_path) + strlen(sa.sun_path) + 1; unsigned char *data, *p; unsigned char buf[3]; int len, fd; int ret = -SYSTEM_ERROR; fd = socket(AF_UNIX, SOCK_STREAM, 0); if (fd < 0) return -SYSTEM_ERROR; if (connect(fd, (void *)&sa, sl)) { close(fd); return -SYSTEM_ERROR; } len = strlen(key); buf[0] = 'g'; store_be16(buf + 1, len); if (send(fd, buf, 3, 0) != 3 || send(fd, key, len, 0) != len || shutdown(fd, SHUT_WR) || recv(fd, buf, 1, 0) != 1) goto out; if (buf[0] != NO_ERROR) { /* Should never be zero */ ret = buf[0] ? -buf[0] : -PROTOCOL_ERROR; goto out; } if (recv(fd, buf, 2, 0) != 2) goto out; len = load_be16(buf); data = malloc(len); if (!data) goto out; p = data; ret = len; while (len) { int got = recv(fd, p, len, 0); if (got <= 0) { free(data); ret = -PROTOCOL_ERROR; goto out; } len -= got; p += got; } *result = data; out: close(fd); return ret; } #endif void cmd_fd_set(struct openconnect_info *vpninfo, fd_set *fds, int *maxfd) { if (vpninfo->cmd_fd != -1) { FD_SET(vpninfo->cmd_fd, fds); if (vpninfo->cmd_fd > *maxfd) *maxfd = vpninfo->cmd_fd; } } void check_cmd_fd(struct openconnect_info *vpninfo, fd_set *fds) { char cmd; if (vpninfo->cmd_fd == -1 || !FD_ISSET(vpninfo->cmd_fd, fds)) return; if (vpninfo->cmd_fd_write == -1) { /* legacy openconnect_set_cancel_fd() users */ vpninfo->got_cancel_cmd = 1; return; } #ifdef _WIN32 if (recv(vpninfo->cmd_fd, &cmd, 1, 0) != 1) return; #else if (read(vpninfo->cmd_fd, &cmd, 1) != 1) return; #endif switch (cmd) { case OC_CMD_CANCEL: case OC_CMD_DETACH: vpninfo->got_cancel_cmd = 1; vpninfo->cancel_type = cmd; break; case OC_CMD_PAUSE: vpninfo->got_pause_cmd = 1; break; case OC_CMD_STATS: if (vpninfo->stats_handler) vpninfo->stats_handler(vpninfo->cbdata, &vpninfo->stats); } } int is_cancel_pending(struct openconnect_info *vpninfo, fd_set *fds) { check_cmd_fd(vpninfo, fds); return vpninfo->got_cancel_cmd || vpninfo->got_pause_cmd; } void poll_cmd_fd(struct openconnect_info *vpninfo, int timeout) { fd_set rd_set; int maxfd = 0; time_t expiration = time(NULL) + timeout, now = 0; while (now < expiration && !vpninfo->got_cancel_cmd && !vpninfo->got_pause_cmd) { struct timeval tv; now = time(NULL); tv.tv_sec = now >= expiration ? 0 : expiration - now; tv.tv_usec = 0; FD_ZERO(&rd_set); cmd_fd_set(vpninfo, &rd_set, &maxfd); select(maxfd + 1, &rd_set, NULL, NULL, &tv); check_cmd_fd(vpninfo, &rd_set); } } #ifdef _WIN32 #include #include int openconnect_open_utf8(struct openconnect_info *vpninfo, const char *fname, int mode) { wchar_t *fname_w; int nr_chars = MultiByteToWideChar(CP_UTF8, 0, fname, -1, NULL, 0); int fd; if (!nr_chars) { errno = EINVAL; return -1; } fname_w = malloc(nr_chars * sizeof(wchar_t)); if (!fname_w) { errno = ENOMEM; return -1; } MultiByteToWideChar(CP_UTF8, 0, fname, -1, fname_w, nr_chars); fd = _wopen(fname_w, mode, _S_IREAD | _S_IWRITE); free(fname_w); return fd; } #else int openconnect_open_utf8(struct openconnect_info *vpninfo, const char *fname, int mode) { char *legacy_fname = openconnect_utf8_to_legacy(vpninfo, fname); int fd; fd = open(legacy_fname, mode, 0644); if (legacy_fname != fname) free(legacy_fname); return fd; } #endif FILE *openconnect_fopen_utf8(struct openconnect_info *vpninfo, const char *fname, const char *mode) { int fd; int flags; if (!strcmp(mode, "r")) flags = O_RDONLY|O_CLOEXEC; else if (!strcmp(mode, "rb")) flags = O_RDONLY|O_CLOEXEC|O_BINARY; else if (!strcmp(mode, "w")) flags = O_WRONLY|O_CLOEXEC|O_CREAT|O_TRUNC; else if (!strcmp(mode, "wb")) flags = O_WRONLY|O_CLOEXEC|O_CREAT|O_TRUNC|O_BINARY; else { /* This should never happen, but if we forget and start using other modes without implementing proper mode->flags conversion, complain! */ vpn_progress(vpninfo, PRG_ERR, _("openconnect_fopen_utf8() used with unsupported mode '%s'\n"), mode); return NULL; } fd = openconnect_open_utf8(vpninfo, fname, flags); if (fd == -1) return NULL; return fdopen(fd, mode); } int udp_sockaddr(struct openconnect_info *vpninfo, int port) { free(vpninfo->dtls_addr); vpninfo->dtls_addr = malloc(vpninfo->peer_addrlen); if (!vpninfo->dtls_addr) return -ENOMEM; memcpy(vpninfo->dtls_addr, vpninfo->peer_addr, vpninfo->peer_addrlen); if (vpninfo->peer_addr->sa_family == AF_INET) { struct sockaddr_in *sin = (void *)vpninfo->dtls_addr; sin->sin_port = htons(port); vpninfo->dtls_tos_proto = IPPROTO_IP; vpninfo->dtls_tos_optname = IP_TOS; } else if (vpninfo->peer_addr->sa_family == AF_INET6) { struct sockaddr_in6 *sin = (void *)vpninfo->dtls_addr; sin->sin6_port = htons(port); #if defined(IPV6_TCLASS) vpninfo->dtls_tos_proto = IPPROTO_IPV6; vpninfo->dtls_tos_optname = IPV6_TCLASS; #endif } else { vpn_progress(vpninfo, PRG_ERR, _("Unknown protocol family %d. Cannot create UDP server address\n"), vpninfo->peer_addr->sa_family); return -EINVAL; } /* in case DTLS TOS copy is disabled, reset the optname value */ /* so that the copy won't be applied in dtls.c / dtls_mainloop() */ if (!vpninfo->dtls_pass_tos) vpninfo->dtls_tos_optname = 0; return 0; } int udp_connect(struct openconnect_info *vpninfo) { int fd, sndbuf; fd = socket(vpninfo->peer_addr->sa_family, SOCK_DGRAM, IPPROTO_UDP); if (fd < 0) { vpn_perror(vpninfo, _("Open UDP socket")); return -EINVAL; } if (vpninfo->protect_socket) vpninfo->protect_socket(vpninfo->cbdata, fd); sndbuf = vpninfo->ip_info.mtu * 2; setsockopt(fd, SOL_SOCKET, SO_SNDBUF, (void *)&sndbuf, sizeof(sndbuf)); if (vpninfo->dtls_local_port) { union { struct sockaddr_in in; struct sockaddr_in6 in6; } dtls_bind_addr; int dtls_bind_addrlen; memset(&dtls_bind_addr, 0, sizeof(dtls_bind_addr)); if (vpninfo->peer_addr->sa_family == AF_INET) { struct sockaddr_in *addr = &dtls_bind_addr.in; dtls_bind_addrlen = sizeof(*addr); addr->sin_family = AF_INET; addr->sin_addr.s_addr = INADDR_ANY; addr->sin_port = htons(vpninfo->dtls_local_port); } else if (vpninfo->peer_addr->sa_family == AF_INET6) { struct sockaddr_in6 *addr = &dtls_bind_addr.in6; dtls_bind_addrlen = sizeof(*addr); addr->sin6_family = AF_INET6; addr->sin6_addr = in6addr_any; addr->sin6_port = htons(vpninfo->dtls_local_port); } else { vpn_progress(vpninfo, PRG_ERR, _("Unknown protocol family %d. Cannot use UDP transport\n"), vpninfo->peer_addr->sa_family); vpninfo->dtls_attempt_period = 0; closesocket(fd); return -EINVAL; } if (bind(fd, (struct sockaddr *)&dtls_bind_addr, dtls_bind_addrlen)) { vpn_perror(vpninfo, _("Bind UDP socket")); closesocket(fd); return -EINVAL; } } if (connect(fd, vpninfo->dtls_addr, vpninfo->peer_addrlen)) { vpn_perror(vpninfo, _("Connect UDP socket\n")); closesocket(fd); return -EINVAL; } set_fd_cloexec(fd); set_sock_nonblock(fd); return fd; } int ssl_reconnect(struct openconnect_info *vpninfo) { int ret; int timeout; int interval; openconnect_close_https(vpninfo, 0); timeout = vpninfo->reconnect_timeout; interval = vpninfo->reconnect_interval; free(vpninfo->dtls_pkt); vpninfo->dtls_pkt = NULL; free(vpninfo->tun_pkt); vpninfo->tun_pkt = NULL; while (1) { script_config_tun(vpninfo, "attempt-reconnect"); ret = vpninfo->proto->tcp_connect(vpninfo); if (!ret) break; if (timeout <= 0) return ret; if (ret == -EPERM) { vpn_progress(vpninfo, PRG_ERR, _("Cookie is no longer valid, ending session\n")); return ret; } vpn_progress(vpninfo, PRG_INFO, _("sleep %ds, remaining timeout %ds\n"), interval, timeout); poll_cmd_fd(vpninfo, interval); if (vpninfo->got_cancel_cmd) return -EINTR; if (vpninfo->got_pause_cmd) return 0; timeout -= interval; interval += vpninfo->reconnect_interval; if (interval > RECONNECT_INTERVAL_MAX) interval = RECONNECT_INTERVAL_MAX; } script_config_tun(vpninfo, "reconnect"); if (vpninfo->reconnected) vpninfo->reconnected(vpninfo->cbdata); return 0; } int cancellable_gets(struct openconnect_info *vpninfo, int fd, char *buf, size_t len) { int i = 0; int ret; if (len < 2) return -EINVAL; while ((ret = cancellable_recv(vpninfo, fd, (void *)(buf + i), 1)) == 1) { if (buf[i] == '\n') { buf[i] = 0; if (i && buf[i-1] == '\r') { buf[i-1] = 0; i--; } return i; } i++; if (i >= len - 1) { buf[i] = 0; return i; } } buf[i] = 0; return i ?: ret; } int cancellable_send(struct openconnect_info *vpninfo, int fd, char *buf, size_t len) { size_t count; if (fd == -1) return -EINVAL; for (count = 0; count < len; ) { fd_set rd_set, wr_set; int maxfd = fd; int i; FD_ZERO(&wr_set); FD_ZERO(&rd_set); FD_SET(fd, &wr_set); cmd_fd_set(vpninfo, &rd_set, &maxfd); select(maxfd + 1, &rd_set, &wr_set, NULL, NULL); if (is_cancel_pending(vpninfo, &rd_set)) return -EINTR; /* Not that this should ever be able to happen... */ if (!FD_ISSET(fd, &wr_set)) continue; i = send(fd, (void *)&buf[count], len - count, 0); if (i < 0) return -errno; count += i; } return count; } int cancellable_recv(struct openconnect_info *vpninfo, int fd, char *buf, size_t len) { size_t count; if (fd == -1) return -EINVAL; for (count = 0; count < len; ) { fd_set rd_set; int maxfd = fd; int i; FD_ZERO(&rd_set); FD_SET(fd, &rd_set); cmd_fd_set(vpninfo, &rd_set, &maxfd); select(maxfd + 1, &rd_set, NULL, NULL, NULL); if (is_cancel_pending(vpninfo, &rd_set)) return -EINTR; /* Not that this should ever be able to happen... */ if (!FD_ISSET(fd, &rd_set)) continue; i = recv(fd, (void *)&buf[count], len - count, 0); if (i < 0) return -errno; else if (i == 0) return -ECONNRESET; count += i; } return count; } openconnect-8.05/install-sh0000755000076400007640000003601013251316473017544 0ustar00dwoodhoudwoodhou00000000000000#!/bin/sh # install - install a program, script, or datafile scriptversion=2018-03-11.20; # UTC # This originates from X11R5 (mit/util/scripts/install.sh), which was # later released in X11R6 (xc/config/util/install.sh) with the # following copyright and license. # # Copyright (C) 1994 X Consortium # # Permission is hereby granted, free of charge, to any person obtaining a copy # of this software and associated documentation files (the "Software"), to # deal in the Software without restriction, including without limitation the # rights to use, copy, modify, merge, publish, distribute, sublicense, and/or # sell copies of the Software, and to permit persons to whom the Software is # furnished to do so, subject to the following conditions: # # The above copyright notice and this permission notice shall be included in # all copies or substantial portions of the Software. # # THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR # IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, # FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE # X CONSORTIUM BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN # AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNEC- # TION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE. # # Except as contained in this notice, the name of the X Consortium shall not # be used in advertising or otherwise to promote the sale, use or other deal- # ings in this Software without prior written authorization from the X Consor- # tium. # # # FSF changes to this file are in the public domain. # # Calling this script install-sh is preferred over install.sh, to prevent # 'make' implicit rules from creating a file called install from it # when there is no Makefile. # # This script is compatible with the BSD install script, but was written # from scratch. tab=' ' nl=' ' IFS=" $tab$nl" # Set DOITPROG to "echo" to test this script. doit=${DOITPROG-} doit_exec=${doit:-exec} # Put in absolute file names if you don't have them in your path; # or use environment vars. chgrpprog=${CHGRPPROG-chgrp} chmodprog=${CHMODPROG-chmod} chownprog=${CHOWNPROG-chown} cmpprog=${CMPPROG-cmp} cpprog=${CPPROG-cp} mkdirprog=${MKDIRPROG-mkdir} mvprog=${MVPROG-mv} rmprog=${RMPROG-rm} stripprog=${STRIPPROG-strip} posix_mkdir= # Desired mode of installed file. mode=0755 chgrpcmd= chmodcmd=$chmodprog chowncmd= mvcmd=$mvprog rmcmd="$rmprog -f" stripcmd= src= dst= dir_arg= dst_arg= copy_on_change=false is_target_a_directory=possibly usage="\ Usage: $0 [OPTION]... [-T] SRCFILE DSTFILE or: $0 [OPTION]... SRCFILES... DIRECTORY or: $0 [OPTION]... -t DIRECTORY SRCFILES... or: $0 [OPTION]... -d DIRECTORIES... In the 1st form, copy SRCFILE to DSTFILE. In the 2nd and 3rd, copy all SRCFILES to DIRECTORY. In the 4th, create DIRECTORIES. Options: --help display this help and exit. --version display version info and exit. -c (ignored) -C install only if different (preserve the last data modification time) -d create directories instead of installing files. -g GROUP $chgrpprog installed files to GROUP. -m MODE $chmodprog installed files to MODE. -o USER $chownprog installed files to USER. -s $stripprog installed files. -t DIRECTORY install into DIRECTORY. -T report an error if DSTFILE is a directory. Environment variables override the default commands: CHGRPPROG CHMODPROG CHOWNPROG CMPPROG CPPROG MKDIRPROG MVPROG RMPROG STRIPPROG " while test $# -ne 0; do case $1 in -c) ;; -C) copy_on_change=true;; -d) dir_arg=true;; -g) chgrpcmd="$chgrpprog $2" shift;; --help) echo "$usage"; exit $?;; -m) mode=$2 case $mode in *' '* | *"$tab"* | *"$nl"* | *'*'* | *'?'* | *'['*) echo "$0: invalid mode: $mode" >&2 exit 1;; esac shift;; -o) chowncmd="$chownprog $2" shift;; -s) stripcmd=$stripprog;; -t) is_target_a_directory=always dst_arg=$2 # Protect names problematic for 'test' and other utilities. case $dst_arg in -* | [=\(\)!]) dst_arg=./$dst_arg;; esac shift;; -T) is_target_a_directory=never;; --version) echo "$0 $scriptversion"; exit $?;; --) shift break;; -*) echo "$0: invalid option: $1" >&2 exit 1;; *) break;; esac shift done # We allow the use of options -d and -T together, by making -d # take the precedence; this is for compatibility with GNU install. if test -n "$dir_arg"; then if test -n "$dst_arg"; then echo "$0: target directory not allowed when installing a directory." >&2 exit 1 fi fi if test $# -ne 0 && test -z "$dir_arg$dst_arg"; then # When -d is used, all remaining arguments are directories to create. # When -t is used, the destination is already specified. # Otherwise, the last argument is the destination. Remove it from $@. for arg do if test -n "$dst_arg"; then # $@ is not empty: it contains at least $arg. set fnord "$@" "$dst_arg" shift # fnord fi shift # arg dst_arg=$arg # Protect names problematic for 'test' and other utilities. case $dst_arg in -* | [=\(\)!]) dst_arg=./$dst_arg;; esac done fi if test $# -eq 0; then if test -z "$dir_arg"; then echo "$0: no input file specified." >&2 exit 1 fi # It's OK to call 'install-sh -d' without argument. # This can happen when creating conditional directories. exit 0 fi if test -z "$dir_arg"; then if test $# -gt 1 || test "$is_target_a_directory" = always; then if test ! -d "$dst_arg"; then echo "$0: $dst_arg: Is not a directory." >&2 exit 1 fi fi fi if test -z "$dir_arg"; then do_exit='(exit $ret); exit $ret' trap "ret=129; $do_exit" 1 trap "ret=130; $do_exit" 2 trap "ret=141; $do_exit" 13 trap "ret=143; $do_exit" 15 # Set umask so as not to create temps with too-generous modes. # However, 'strip' requires both read and write access to temps. case $mode in # Optimize common cases. *644) cp_umask=133;; *755) cp_umask=22;; *[0-7]) if test -z "$stripcmd"; then u_plus_rw= else u_plus_rw='% 200' fi cp_umask=`expr '(' 777 - $mode % 1000 ')' $u_plus_rw`;; *) if test -z "$stripcmd"; then u_plus_rw= else u_plus_rw=,u+rw fi cp_umask=$mode$u_plus_rw;; esac fi for src do # Protect names problematic for 'test' and other utilities. case $src in -* | [=\(\)!]) src=./$src;; esac if test -n "$dir_arg"; then dst=$src dstdir=$dst test -d "$dstdir" dstdir_status=$? else # Waiting for this to be detected by the "$cpprog $src $dsttmp" command # might cause directories to be created, which would be especially bad # if $src (and thus $dsttmp) contains '*'. if test ! -f "$src" && test ! -d "$src"; then echo "$0: $src does not exist." >&2 exit 1 fi if test -z "$dst_arg"; then echo "$0: no destination specified." >&2 exit 1 fi dst=$dst_arg # If destination is a directory, append the input filename. if test -d "$dst"; then if test "$is_target_a_directory" = never; then echo "$0: $dst_arg: Is a directory" >&2 exit 1 fi dstdir=$dst dstbase=`basename "$src"` case $dst in */) dst=$dst$dstbase;; *) dst=$dst/$dstbase;; esac dstdir_status=0 else dstdir=`dirname "$dst"` test -d "$dstdir" dstdir_status=$? fi fi case $dstdir in */) dstdirslash=$dstdir;; *) dstdirslash=$dstdir/;; esac obsolete_mkdir_used=false if test $dstdir_status != 0; then case $posix_mkdir in '') # Create intermediate dirs using mode 755 as modified by the umask. # This is like FreeBSD 'install' as of 1997-10-28. umask=`umask` case $stripcmd.$umask in # Optimize common cases. *[2367][2367]) mkdir_umask=$umask;; .*0[02][02] | .[02][02] | .[02]) mkdir_umask=22;; *[0-7]) mkdir_umask=`expr $umask + 22 \ - $umask % 100 % 40 + $umask % 20 \ - $umask % 10 % 4 + $umask % 2 `;; *) mkdir_umask=$umask,go-w;; esac # With -d, create the new directory with the user-specified mode. # Otherwise, rely on $mkdir_umask. if test -n "$dir_arg"; then mkdir_mode=-m$mode else mkdir_mode= fi posix_mkdir=false case $umask in *[123567][0-7][0-7]) # POSIX mkdir -p sets u+wx bits regardless of umask, which # is incompatible with FreeBSD 'install' when (umask & 300) != 0. ;; *) # Note that $RANDOM variable is not portable (e.g. dash); Use it # here however when possible just to lower collision chance. tmpdir=${TMPDIR-/tmp}/ins$RANDOM-$$ trap 'ret=$?; rmdir "$tmpdir/a/b" "$tmpdir/a" "$tmpdir" 2>/dev/null; exit $ret' 0 # Because "mkdir -p" follows existing symlinks and we likely work # directly in world-writeable /tmp, make sure that the '$tmpdir' # directory is successfully created first before we actually test # 'mkdir -p' feature. if (umask $mkdir_umask && $mkdirprog $mkdir_mode "$tmpdir" && exec $mkdirprog $mkdir_mode -p -- "$tmpdir/a/b") >/dev/null 2>&1 then if test -z "$dir_arg" || { # Check for POSIX incompatibilities with -m. # HP-UX 11.23 and IRIX 6.5 mkdir -m -p sets group- or # other-writable bit of parent directory when it shouldn't. # FreeBSD 6.1 mkdir -m -p sets mode of existing directory. test_tmpdir="$tmpdir/a" ls_ld_tmpdir=`ls -ld "$test_tmpdir"` case $ls_ld_tmpdir in d????-?r-*) different_mode=700;; d????-?--*) different_mode=755;; *) false;; esac && $mkdirprog -m$different_mode -p -- "$test_tmpdir" && { ls_ld_tmpdir_1=`ls -ld "$test_tmpdir"` test "$ls_ld_tmpdir" = "$ls_ld_tmpdir_1" } } then posix_mkdir=: fi rmdir "$tmpdir/a/b" "$tmpdir/a" "$tmpdir" else # Remove any dirs left behind by ancient mkdir implementations. rmdir ./$mkdir_mode ./-p ./-- "$tmpdir" 2>/dev/null fi trap '' 0;; esac;; esac if $posix_mkdir && ( umask $mkdir_umask && $doit_exec $mkdirprog $mkdir_mode -p -- "$dstdir" ) then : else # The umask is ridiculous, or mkdir does not conform to POSIX, # or it failed possibly due to a race condition. Create the # directory the slow way, step by step, checking for races as we go. case $dstdir in /*) prefix='/';; [-=\(\)!]*) prefix='./';; *) prefix='';; esac oIFS=$IFS IFS=/ set -f set fnord $dstdir shift set +f IFS=$oIFS prefixes= for d do test X"$d" = X && continue prefix=$prefix$d if test -d "$prefix"; then prefixes= else if $posix_mkdir; then (umask=$mkdir_umask && $doit_exec $mkdirprog $mkdir_mode -p -- "$dstdir") && break # Don't fail if two instances are running concurrently. test -d "$prefix" || exit 1 else case $prefix in *\'*) qprefix=`echo "$prefix" | sed "s/'/'\\\\\\\\''/g"`;; *) qprefix=$prefix;; esac prefixes="$prefixes '$qprefix'" fi fi prefix=$prefix/ done if test -n "$prefixes"; then # Don't fail if two instances are running concurrently. (umask $mkdir_umask && eval "\$doit_exec \$mkdirprog $prefixes") || test -d "$dstdir" || exit 1 obsolete_mkdir_used=true fi fi fi if test -n "$dir_arg"; then { test -z "$chowncmd" || $doit $chowncmd "$dst"; } && { test -z "$chgrpcmd" || $doit $chgrpcmd "$dst"; } && { test "$obsolete_mkdir_used$chowncmd$chgrpcmd" = false || test -z "$chmodcmd" || $doit $chmodcmd $mode "$dst"; } || exit 1 else # Make a couple of temp file names in the proper directory. dsttmp=${dstdirslash}_inst.$$_ rmtmp=${dstdirslash}_rm.$$_ # Trap to clean up those temp files at exit. trap 'ret=$?; rm -f "$dsttmp" "$rmtmp" && exit $ret' 0 # Copy the file name to the temp name. (umask $cp_umask && $doit_exec $cpprog "$src" "$dsttmp") && # and set any options; do chmod last to preserve setuid bits. # # If any of these fail, we abort the whole thing. If we want to # ignore errors from any of these, just make sure not to ignore # errors from the above "$doit $cpprog $src $dsttmp" command. # { test -z "$chowncmd" || $doit $chowncmd "$dsttmp"; } && { test -z "$chgrpcmd" || $doit $chgrpcmd "$dsttmp"; } && { test -z "$stripcmd" || $doit $stripcmd "$dsttmp"; } && { test -z "$chmodcmd" || $doit $chmodcmd $mode "$dsttmp"; } && # If -C, don't bother to copy if it wouldn't change the file. if $copy_on_change && old=`LC_ALL=C ls -dlL "$dst" 2>/dev/null` && new=`LC_ALL=C ls -dlL "$dsttmp" 2>/dev/null` && set -f && set X $old && old=:$2:$4:$5:$6 && set X $new && new=:$2:$4:$5:$6 && set +f && test "$old" = "$new" && $cmpprog "$dst" "$dsttmp" >/dev/null 2>&1 then rm -f "$dsttmp" else # Rename the file to the real destination. $doit $mvcmd -f "$dsttmp" "$dst" 2>/dev/null || # The rename failed, perhaps because mv can't rename something else # to itself, or perhaps because mv is so ancient that it does not # support -f. { # Now remove or move aside any old file at destination location. # We try this two ways since rm can't unlink itself on some # systems and the destination file might be busy for other # reasons. In this case, the final cleanup might fail but the new # file should still install successfully. { test ! -f "$dst" || $doit $rmcmd -f "$dst" 2>/dev/null || { $doit $mvcmd -f "$dst" "$rmtmp" 2>/dev/null && { $doit $rmcmd -f "$rmtmp" 2>/dev/null; :; } } || { echo "$0: cannot unlink or rename $dst" >&2 (exit 1); exit 1 } } && # Now rename the file to the real destination. $doit $mvcmd "$dsttmp" "$dst" } fi || exit 1 trap '' 0 fi done # Local variables: # eval: (add-hook 'before-save-hook 'time-stamp) # time-stamp-start: "scriptversion=" # time-stamp-format: "%:y-%02m-%02d.%02H" # time-stamp-time-zone: "UTC0" # time-stamp-end: "; # UTC" # End: openconnect-8.05/missing0000755000076400007640000001533613250314767017152 0ustar00dwoodhoudwoodhou00000000000000#! /bin/sh # Common wrapper for a few potentially missing GNU programs. scriptversion=2018-03-07.03; # UTC # Copyright (C) 1996-2018 Free Software Foundation, Inc. # Originally written by Fran,cois Pinard , 1996. # This program is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 2, or (at your option) # any later version. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # You should have received a copy of the GNU General Public License # along with this program. If not, see . # As a special exception to the GNU General Public License, if you # distribute this file as part of a program that contains a # configuration script generated by Autoconf, you may include it under # the same distribution terms that you use for the rest of that program. if test $# -eq 0; then echo 1>&2 "Try '$0 --help' for more information" exit 1 fi case $1 in --is-lightweight) # Used by our autoconf macros to check whether the available missing # script is modern enough. exit 0 ;; --run) # Back-compat with the calling convention used by older automake. shift ;; -h|--h|--he|--hel|--help) echo "\ $0 [OPTION]... PROGRAM [ARGUMENT]... Run 'PROGRAM [ARGUMENT]...', returning a proper advice when this fails due to PROGRAM being missing or too old. Options: -h, --help display this help and exit -v, --version output version information and exit Supported PROGRAM values: aclocal autoconf autoheader autom4te automake makeinfo bison yacc flex lex help2man Version suffixes to PROGRAM as well as the prefixes 'gnu-', 'gnu', and 'g' are ignored when checking the name. Send bug reports to ." exit $? ;; -v|--v|--ve|--ver|--vers|--versi|--versio|--version) echo "missing $scriptversion (GNU Automake)" exit $? ;; -*) echo 1>&2 "$0: unknown '$1' option" echo 1>&2 "Try '$0 --help' for more information" exit 1 ;; esac # Run the given program, remember its exit status. "$@"; st=$? # If it succeeded, we are done. test $st -eq 0 && exit 0 # Also exit now if we it failed (or wasn't found), and '--version' was # passed; such an option is passed most likely to detect whether the # program is present and works. case $2 in --version|--help) exit $st;; esac # Exit code 63 means version mismatch. This often happens when the user # tries to use an ancient version of a tool on a file that requires a # minimum version. if test $st -eq 63; then msg="probably too old" elif test $st -eq 127; then # Program was missing. msg="missing on your system" else # Program was found and executed, but failed. Give up. exit $st fi perl_URL=https://www.perl.org/ flex_URL=https://github.com/westes/flex gnu_software_URL=https://www.gnu.org/software program_details () { case $1 in aclocal|automake) echo "The '$1' program is part of the GNU Automake package:" echo "<$gnu_software_URL/automake>" echo "It also requires GNU Autoconf, GNU m4 and Perl in order to run:" echo "<$gnu_software_URL/autoconf>" echo "<$gnu_software_URL/m4/>" echo "<$perl_URL>" ;; autoconf|autom4te|autoheader) echo "The '$1' program is part of the GNU Autoconf package:" echo "<$gnu_software_URL/autoconf/>" echo "It also requires GNU m4 and Perl in order to run:" echo "<$gnu_software_URL/m4/>" echo "<$perl_URL>" ;; esac } give_advice () { # Normalize program name to check for. normalized_program=`echo "$1" | sed ' s/^gnu-//; t s/^gnu//; t s/^g//; t'` printf '%s\n' "'$1' is $msg." configure_deps="'configure.ac' or m4 files included by 'configure.ac'" case $normalized_program in autoconf*) echo "You should only need it if you modified 'configure.ac'," echo "or m4 files included by it." program_details 'autoconf' ;; autoheader*) echo "You should only need it if you modified 'acconfig.h' or" echo "$configure_deps." program_details 'autoheader' ;; automake*) echo "You should only need it if you modified 'Makefile.am' or" echo "$configure_deps." program_details 'automake' ;; aclocal*) echo "You should only need it if you modified 'acinclude.m4' or" echo "$configure_deps." program_details 'aclocal' ;; autom4te*) echo "You might have modified some maintainer files that require" echo "the 'autom4te' program to be rebuilt." program_details 'autom4te' ;; bison*|yacc*) echo "You should only need it if you modified a '.y' file." echo "You may want to install the GNU Bison package:" echo "<$gnu_software_URL/bison/>" ;; lex*|flex*) echo "You should only need it if you modified a '.l' file." echo "You may want to install the Fast Lexical Analyzer package:" echo "<$flex_URL>" ;; help2man*) echo "You should only need it if you modified a dependency" \ "of a man page." echo "You may want to install the GNU Help2man package:" echo "<$gnu_software_URL/help2man/>" ;; makeinfo*) echo "You should only need it if you modified a '.texi' file, or" echo "any other file indirectly affecting the aspect of the manual." echo "You might want to install the Texinfo package:" echo "<$gnu_software_URL/texinfo/>" echo "The spurious makeinfo call might also be the consequence of" echo "using a buggy 'make' (AIX, DU, IRIX), in which case you might" echo "want to install GNU make:" echo "<$gnu_software_URL/make/>" ;; *) echo "You might have modified some files without having the proper" echo "tools for further handling them. Check the 'README' file, it" echo "often tells you about the needed prerequisites for installing" echo "this package. You may also peek at any GNU archive site, in" echo "case some other package contains this missing '$1' program." ;; esac } give_advice "$1" | sed -e '1s/^/WARNING: /' \ -e '2,$s/^/ /' >&2 # Propagate the correct exit status (expected to be 127 for a program # not found, 63 for a program that failed due to version mismatch). exit $st # Local variables: # eval: (add-hook 'before-save-hook 'time-stamp) # time-stamp-start: "scriptversion=" # time-stamp-format: "%:y-%02m-%02d.%02H" # time-stamp-time-zone: "UTC0" # time-stamp-end: "; # UTC" # End: openconnect-8.05/gnutls_tpm2.c0000664000076400007640000002454613414623647020204 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2018 David Woodhouse. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include "openconnect-internal.h" #include "gnutls.h" #ifdef HAVE_TSS2 #include /* * TPMKey ::= SEQUENCE { * type OBJECT IDENTIFIER, * emptyAuth [0] EXPLICIT BOOLEAN OPTIONAL, * parent INTEGER, * pubkey OCTET STRING, * privkey OCTET STRING * } */ const asn1_static_node tpmkey_asn1_tab[] = { { "TPMKey", 536875024, NULL }, { NULL, 1073741836, NULL }, { "TPMKey", 536870917, NULL }, { "type", 1073741836, NULL }, { "emptyAuth", 1610637316, NULL }, { NULL, 2056, "0"}, { "parent", 1073741827, NULL }, { "pubkey", 1073741831, NULL }, { "privkey", 7, NULL }, { NULL, 0, NULL } }; const asn1_static_node tpmkey_asn1_tab_old[] = { { "TPMKey", 536875024, NULL }, { NULL, 1073741836, NULL }, { "TPMKey", 536870917, NULL }, { "type", 1073741836, NULL }, { "emptyAuth", 1610637316, NULL }, { NULL, 2056, "0"}, { "parent", 1610637315, NULL }, { NULL, 2056, "1"}, { "pubkey", 1610637319, NULL }, { NULL, 2056, "2"}, { "privkey", 7, NULL }, { NULL, 0, NULL } }; static const char OID_legacy_loadableKey[] = "2.23.133.10.2"; static const char OID_loadableKey[] = "2.23.133.10.1.3"; #if GNUTLS_VERSION_NUMBER < 0x030600 static int tpm2_rsa_sign_fn(gnutls_privkey_t key, void *_vpninfo, const gnutls_datum_t *data, gnutls_datum_t *sig) { return tpm2_rsa_sign_hash_fn(key, GNUTLS_SIGN_UNKNOWN, _vpninfo, 0, data, sig); } static int tpm2_ec_sign_fn(gnutls_privkey_t key, void *_vpninfo, const gnutls_datum_t *data, gnutls_datum_t *sig) { struct openconnect_info *vpninfo = _vpninfo; gnutls_sign_algorithm_t algo; switch (data->size) { case 20: algo = GNUTLS_SIGN_ECDSA_SHA1; break; case 32: algo = GNUTLS_SIGN_ECDSA_SHA256; break; case 48: algo = GNUTLS_SIGN_ECDSA_SHA384; break; case 64: algo = GNUTLS_SIGN_ECDSA_SHA512; break; default: vpn_progress(vpninfo, PRG_ERR, _("Unknown TPM2 EC digest size %d\n"), data->size); return GNUTLS_E_PK_SIGN_FAILED; } return tpm2_ec_sign_hash_fn(key, algo, vpninfo, 0, data, sig); } #endif #if GNUTLS_VERSION_NUMBER >= 0x030600 static int rsa_key_info(gnutls_privkey_t key, unsigned int flags, void *_vpninfo) { if (flags & GNUTLS_PRIVKEY_INFO_PK_ALGO) return GNUTLS_PK_RSA; if (flags & GNUTLS_PRIVKEY_INFO_HAVE_SIGN_ALGO) { gnutls_sign_algorithm_t algo = GNUTLS_FLAGS_TO_SIGN_ALGO(flags); switch (algo) { case GNUTLS_SIGN_RSA_RAW: case GNUTLS_SIGN_RSA_SHA1: case GNUTLS_SIGN_RSA_SHA256: case GNUTLS_SIGN_RSA_SHA384: case GNUTLS_SIGN_RSA_SHA512: return 1; default: return 0; } } if (flags & GNUTLS_PRIVKEY_INFO_SIGN_ALGO) return GNUTLS_SIGN_RSA_RAW; return -1; } #endif #if GNUTLS_VERSION_NUMBER >= 0x030400 static int ec_key_info(gnutls_privkey_t key, unsigned int flags, void *_vpninfo) { if (flags & GNUTLS_PRIVKEY_INFO_PK_ALGO) return GNUTLS_PK_EC; #ifdef GNUTLS_PRIVKEY_INFO_HAVE_SIGN_ALGO if (flags & GNUTLS_PRIVKEY_INFO_HAVE_SIGN_ALGO) { gnutls_sign_algorithm_t algo = GNUTLS_FLAGS_TO_SIGN_ALGO(flags); switch (algo) { case GNUTLS_SIGN_ECDSA_SHA1: case GNUTLS_SIGN_ECDSA_SHA256: return 1; default: return 0; } } #endif if (flags & GNUTLS_PRIVKEY_INFO_SIGN_ALGO) return GNUTLS_SIGN_ECDSA_SHA256; return -1; } #endif static int decode_data(ASN1_TYPE n, gnutls_datum_t *r) { ASN1_DATA_NODE d; int len, lenlen; if (!n) return -EINVAL; if (asn1_read_node_value(n, &d) != ASN1_SUCCESS) return -EINVAL; len = asn1_get_length_der(d.value, d.value_len, &lenlen); if (len < 0) return -EINVAL; r->data = (unsigned char *)d.value + lenlen; r->size = len; return 0; } int load_tpm2_key(struct openconnect_info *vpninfo, gnutls_datum_t *fdata, gnutls_privkey_t *pkey, gnutls_datum_t *pkey_sig) { gnutls_datum_t asn1, pubdata, privdata; ASN1_TYPE tpmkey_def = ASN1_TYPE_EMPTY, tpmkey = ASN1_TYPE_EMPTY; const char *oid = NULL; char value_buf[16]; int value_buflen; int emptyauth = 0; unsigned int parent; int err, ret = -EINVAL; const asn1_static_node *asn1tab; err = gnutls_pem_base64_decode_alloc("TSS2 PRIVATE KEY", fdata, &asn1); if (!err) { asn1tab = tpmkey_asn1_tab; oid = OID_loadableKey; } else { if (gnutls_pem_base64_decode_alloc("TSS2 KEY BLOB", fdata, &asn1)) { /* Report the first error */ vpn_progress(vpninfo, PRG_ERR, _("Error decoding TSS2 key blob: %s\n"), gnutls_strerror(err)); return -EINVAL; } asn1tab = tpmkey_asn1_tab_old; oid = OID_legacy_loadableKey; } err = asn1_array2tree(asn1tab, &tpmkey_def, NULL); if (err != ASN1_SUCCESS) { vpn_progress(vpninfo, PRG_ERR, _("Failed to create ASN.1 type for TPM2: %s\n"), asn1_strerror(err)); goto out_asn1; } asn1_create_element(tpmkey_def, "TPMKey.TPMKey", &tpmkey); err = asn1_der_decoding(&tpmkey, asn1.data, asn1.size, NULL); if (err != ASN1_SUCCESS) { vpn_progress(vpninfo, PRG_ERR, _("Failed to decode TPM2 key ASN.1: %s\n"), asn1_strerror(err)); goto out_tpmkey; } value_buflen = sizeof(value_buf); if (asn1_read_value(tpmkey, "type", value_buf, &value_buflen)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse TPM2 key type OID: %s\n"), asn1_strerror(err)); goto out_tpmkey; } if (strncmp(value_buf, oid, value_buflen)) { vpn_progress(vpninfo, PRG_ERR, _("TPM2 key has unknown type OID %s not %s\n"), value_buf, oid); goto out_tpmkey; } value_buflen = sizeof(value_buf); if (!asn1_read_value(tpmkey, "emptyAuth", value_buf, &value_buflen) && !strcmp(value_buf, "TRUE")) emptyauth = 1; memset(value_buf, 0, 5); value_buflen = 5; err = asn1_read_value(tpmkey, "parent", value_buf, &value_buflen); if (err == ASN1_ELEMENT_NOT_FOUND) parent = 0x40000001; // RH_OWNER else if (err != ASN1_SUCCESS) { badparent: vpn_progress(vpninfo, PRG_ERR, _("Failed to parse TPM2 key parent: %s\n"), asn1_strerror(err)); goto out_tpmkey; } else { int i = 0; parent = 0; if (value_buflen == 5) { if (value_buf[0]) goto badparent; /* Skip the leading zero */ i++; } for ( ; i < value_buflen; i++) { parent <<= 8; parent |= value_buf[i]; } } if (decode_data(asn1_find_node(tpmkey, "pubkey"), &pubdata) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse TPM2 pubkey element\n")); goto out_tpmkey; } if (decode_data(asn1_find_node(tpmkey, "privkey"), &privdata) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse TPM2 privkey element\n")); goto out_tpmkey; } vpn_progress(vpninfo, PRG_DEBUG, _("Parsed TPM2 key with parent %x, emptyauth %d\n"), parent, emptyauth); /* Now we've extracted what we need from the ASN.1, invoke the * actual TPM2 code (whichever implementation we end up with */ ret = install_tpm2_key(vpninfo, pkey, pkey_sig, parent, emptyauth, asn1tab == tpmkey_asn1_tab_old, &privdata, &pubdata); if (ret < 0) goto out_tpmkey; gnutls_privkey_init(pkey); switch(ret) { case GNUTLS_PK_RSA: #if GNUTLS_VERSION_NUMBER >= 0x030600 gnutls_privkey_import_ext4(*pkey, vpninfo, NULL, tpm2_rsa_sign_hash_fn, NULL, NULL, rsa_key_info, 0); #else gnutls_privkey_import_ext(*pkey, GNUTLS_PK_RSA, vpninfo, tpm2_rsa_sign_fn, NULL, 0); #endif break; case GNUTLS_PK_ECDSA: #if GNUTLS_VERSION_NUMBER >= 0x030600 gnutls_privkey_import_ext4(*pkey, vpninfo, NULL, tpm2_ec_sign_hash_fn, NULL, NULL, ec_key_info, 0); #elif GNUTLS_VERSION_NUMBER >= 0x030400 gnutls_privkey_import_ext3(*pkey, vpninfo, tpm2_ec_sign_fn, NULL, NULL, ec_key_info, 0); #else gnutls_privkey_import_ext(*pkey, GNUTLS_PK_EC, vpninfo, tpm2_ec_sign_fn, NULL, 0); #endif break; } ret = 0; out_tpmkey: asn1_delete_structure(&tpmkey); asn1_delete_structure(&tpmkey_def); out_asn1: free(asn1.data); return ret; } #if GNUTLS_VERSION_NUMBER < 0x030600 static void append_bignum(struct oc_text_buf *sig_der, const gnutls_datum_t *d) { unsigned char derlen[2]; buf_append_bytes(sig_der, "\x02", 1); // INTEGER derlen[0] = d->size; /* If it might be interpreted as negative, prepend a zero */ if (d->data[0] >= 0x80) { derlen[0]++; derlen[1] = 0; buf_append_bytes(sig_der, derlen, 2); } else { buf_append_bytes(sig_der, derlen, 1); } buf_append_bytes(sig_der, d->data, d->size); } int oc_gnutls_encode_rs_value(gnutls_datum_t *sig, const gnutls_datum_t *sig_r, const gnutls_datum_t *sig_s) { struct oc_text_buf *sig_der = NULL; /* * Create the DER-encoded SEQUENCE containing R and S: * * DSASignatureValue ::= SEQUENCE { * r INTEGER, * s INTEGER * } */ sig_der = buf_alloc(); buf_append_bytes(sig_der, "\x30\x80", 2); // SEQUENCE, indeterminate length append_bignum(sig_der, sig_r); append_bignum(sig_der, sig_s); /* If the length actually fits in one byte (which it should), do * it that way. Else, leave it indeterminate and add two * end-of-contents octets to mark the end of the SEQUENCE. */ if (!buf_error(sig_der) && sig_der->pos <= 0x80) sig_der->data[1] = sig_der->pos - 2; else { buf_append_bytes(sig_der, "\0\0", 2); if (buf_error(sig_der)) goto out; } sig->data = (void *)sig_der->data; sig->size = sig_der->pos; sig_der->data = NULL; out: return buf_free(sig_der); } #endif /* GnuTLS < 3.6.0 */ /* EMSA-PKCS1-v1_5 padding in accordance with RFC3447 §9.2 */ #define PKCS1_PAD_OVERHEAD 11 int oc_pkcs1_pad(struct openconnect_info *vpninfo, unsigned char *buf, int size, const gnutls_datum_t *data) { if (data->size + PKCS1_PAD_OVERHEAD > size) { vpn_progress(vpninfo, PRG_ERR, _("TPM2 digest too large: %d > %d\n"), data->size, size - PKCS1_PAD_OVERHEAD); return GNUTLS_E_PK_SIGN_FAILED; } buf[0] = 0; buf[1] = 1; memset(buf + 2, 0xff, size - data->size - 3); buf[size - data->size - 1] = 0; memcpy(buf + size - data->size, data->data, data->size); return 0; } #endif /* HAVE_TSS2 */ openconnect-8.05/openconnect-internal.h0000664000076400007640000011667113513332532022047 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * Copyright © 2008 Nick Andrew * Copyright © 2013 John Morrissey * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #ifndef __OPENCONNECT_INTERNAL_H__ #define __OPENCONNECT_INTERNAL_H__ #define __OPENCONNECT_PRIVATE__ #ifdef _WIN32 #include #include #ifndef SECURITY_WIN32 #define SECURITY_WIN32 1 #endif #include #else #include #include #include #include #include #include #include #endif #include "openconnect.h" #if defined(OPENCONNECT_OPENSSL) #include #include /* Ick */ #if OPENSSL_VERSION_NUMBER >= 0x00909000L #define method_const const #else #define method_const #endif #endif /* OPENSSL */ #if defined(OPENCONNECT_GNUTLS) #include #include #include #include #endif #ifdef HAVE_ICONV #include #include #endif #include #include #include #include #include #include #ifdef LIBPROXY_HDR #include LIBPROXY_HDR #endif #ifdef HAVE_LIBSTOKEN #include #endif #ifdef HAVE_GSSAPI #include GSSAPI_HDR #endif #ifdef HAVE_LIBPSKC #include #endif #ifdef HAVE_LIBP11 #include #endif #ifdef ENABLE_NLS #include #define _(s) dgettext("openconnect", s) #else #define _(s) ((char *)(s)) #endif #define N_(s) s #include #define SHA256_SIZE 32 #define SHA1_SIZE 20 #define MD5_SIZE 16 /* FreeBSD provides this in */ #ifndef MAX #define MAX(x,y) ((x)>(y))?(x):(y) #endif #ifndef MIN #define MIN(x,y) ((x)<(y))?(x):(y) #endif /* At least MinGW headers seem not to provide IPPROTO_IPIP */ #ifndef IPPROTO_IPIP #define IPPROTO_IPIP 0x04 #endif /****************************************************************************/ struct pkt { int len; struct pkt *next; union { struct { uint32_t spi; uint32_t seq; unsigned char iv[16]; unsigned char payload[]; } esp; struct { unsigned char pad[2]; unsigned char rec[2]; unsigned char kmp[20]; } oncp; struct { unsigned char pad[16]; unsigned char hdr[8]; } cstp; struct { unsigned char pad[8]; unsigned char hdr[16]; } gpst; struct { unsigned char pad[8]; uint32_t vendor; uint32_t type; uint32_t len; uint32_t ident; } pulse; }; unsigned char data[]; }; #define REKEY_NONE 0 #define REKEY_TUNNEL 1 #define REKEY_SSL 2 #define KA_NONE 0 #define KA_DPD 1 #define KA_DPD_DEAD 2 #define KA_KEEPALIVE 3 #define KA_REKEY 4 #define DTLS_NOSECRET 0 /* Random secret has not been generated yet */ #define DTLS_SECRET 1 /* Secret is present, ready to attempt DTLS */ #define DTLS_DISABLED 2 /* DTLS was disabled on the *client* side */ #define DTLS_SLEEPING 3 /* For ESP, sometimes sending probes */ #define DTLS_CONNECTING 4 /* ESP probe received; must tell server */ #define DTLS_CONNECTED 5 /* Server informed and should be sending ESP */ #define COMPR_DEFLATE (1<<0) #define COMPR_LZS (1<<1) #define COMPR_LZ4 (1<<2) #define COMPR_LZO (1<<3) #define COMPR_MAX COMPR_LZO #ifdef HAVE_LZ4 #define COMPR_STATELESS (COMPR_LZS | COMPR_LZ4 | COMPR_LZO) #else #define COMPR_STATELESS (COMPR_LZS) #endif #define COMPR_ALL (COMPR_STATELESS | COMPR_DEFLATE) #define DTLS_APP_ID_EXT 48018 struct keepalive_info { int dpd; int keepalive; int rekey; int rekey_method; time_t last_rekey; time_t last_tx; time_t last_rx; time_t last_dpd; }; struct pin_cache { struct pin_cache *next; char *token; char *pin; }; struct oc_text_buf { char *data; int pos; int buf_len; int error; }; #define TLS_MASTER_KEY_SIZE 48 #define RECONNECT_INTERVAL_MIN 10 #define RECONNECT_INTERVAL_MAX 100 #define REDIR_TYPE_NONE 0 #define REDIR_TYPE_NEWHOST 1 #define REDIR_TYPE_LOCAL 2 #define AUTH_TYPE_GSSAPI 0 #define AUTH_TYPE_NTLM 1 #define AUTH_TYPE_DIGEST 2 #define AUTH_TYPE_BASIC 3 #define MAX_AUTH_TYPES 4 #define AUTH_DEFAULT_DISABLED -3 #define AUTH_DISABLED -2 #define AUTH_FAILED -1 /* Failed */ #define AUTH_UNSEEN 0 /* Server has not offered it */ #define AUTH_AVAILABLE 1 /* Server has offered it, we have not tried it */ /* Individual auth types may use 2 onwards for their own state */ #define AUTH_IN_PROGRESS 2 /* In-progress attempt */ struct http_auth_state { int state; char *challenge; union { #ifdef HAVE_GSSAPI struct { gss_name_t gss_target_name; gss_ctx_id_t gss_context; }; #endif #ifdef _WIN32 struct { CredHandle ntlm_sspi_cred; CtxtHandle ntlm_sspi_ctx; }; struct { CredHandle sspi_cred; CtxtHandle sspi_ctx; SEC_WCHAR *sspi_target_name; }; #else struct { int ntlm_helper_fd; }; #endif }; }; struct vpn_proto { const char *name; const char *pretty_name; const char *description; const char *udp_protocol; unsigned int flags; int (*vpn_close_session)(struct openconnect_info *vpninfo, const char *reason); /* This does the full authentication, calling back as appropriate */ int (*obtain_cookie)(struct openconnect_info *vpninfo); /* Establish the TCP connection (and obtain configuration) */ int (*tcp_connect)(struct openconnect_info *vpninfo); int (*tcp_mainloop)(struct openconnect_info *vpninfo, int *timeout, int readable); /* Add headers common to each HTTP request */ void (*add_http_headers)(struct openconnect_info *vpninfo, struct oc_text_buf *buf); /* Set up the UDP (DTLS) connection. Doesn't actually *start* it. */ int (*udp_setup)(struct openconnect_info *vpninfo, int attempt_period); /* This will actually complete the UDP connection setup/handshake on the wire, as well as transporting packets */ int (*udp_mainloop)(struct openconnect_info *vpninfo, int *timeout, int readable); /* Close the connection but leave the session setup so it restarts */ void (*udp_close)(struct openconnect_info *vpninfo); /* Close and destroy the (UDP) session */ void (*udp_shutdown)(struct openconnect_info *vpninfo); /* Send probe packets to start or maintain the (UDP) session */ int (*udp_send_probes)(struct openconnect_info *vpninfo); /* Catch probe packet confirming the (UDP) session */ int (*udp_catch_probe)(struct openconnect_info *vpninfo, struct pkt *p); }; struct pkt_q { struct pkt *head; struct pkt **tail; int count; }; static inline struct pkt *dequeue_packet(struct pkt_q *q) { struct pkt *ret = q->head; if (ret) { q->head = ret->next; if (!--q->count) q->tail = &q->head; } return ret; } static inline void requeue_packet(struct pkt_q *q, struct pkt *p) { p->next = q->head; q->head = p; if (!q->count++) q->tail = &p->next; } static inline int queue_packet(struct pkt_q *q, struct pkt *p) { *(q->tail) = p; p->next = NULL; q->tail = &p->next; return ++q->count; } static inline void init_pkt_queue(struct pkt_q *q) { q->tail = &q->head; } #define DTLS_OVERHEAD (1 /* packet + header */ + 13 /* DTLS header */ + \ 20 /* biggest supported MAC (SHA1) */ + 32 /* biggest supported IV (AES-256) */ + \ 16 /* max padding */) struct esp { #if defined(OPENCONNECT_GNUTLS) gnutls_cipher_hd_t cipher; gnutls_hmac_hd_t hmac; #elif defined(OPENCONNECT_OPENSSL) HMAC_CTX *hmac; EVP_CIPHER_CTX *cipher; #endif uint64_t seq_backlog; uint64_t seq; uint32_t spi; /* Stored network-endian */ unsigned char enc_key[0x40]; /* Encryption key */ unsigned char hmac_key[0x40]; /* HMAC key */ unsigned char iv[16]; }; struct oc_pcsc_ctx; struct oc_tpm1_ctx; struct oc_tpm2_ctx; struct openconnect_info { const struct vpn_proto *proto; #ifdef HAVE_ICONV iconv_t ic_legacy_to_utf8; iconv_t ic_utf8_to_legacy; #endif char *redirect_url; int redirect_type; unsigned char esp_hmac; unsigned char esp_enc; unsigned char esp_compr; uint32_t esp_replay_protect; uint32_t esp_lifetime_bytes; uint32_t esp_lifetime_seconds; uint32_t esp_ssl_fallback; int current_esp_in; int old_esp_maxseq; struct esp esp_in[2]; struct esp esp_out; int enc_key_len; int hmac_key_len; int hmac_out_len; uint32_t esp_magic; /* GlobalProtect magic ping address (network-endian) */ int tncc_fd; /* For Juniper TNCC */ const char *csd_xmltag; int csd_nostub; char *platname; char *mobile_platform_version; char *mobile_device_type; char *mobile_device_uniqueid; char *csd_token; char *csd_ticket; char *csd_stuburl; char *csd_starturl; char *csd_waiturl; char *csd_preurl; char *csd_scriptname; xmlNode *opaque_srvdata; char *profile_url; char *profile_sha1; #ifdef LIBPROXY_HDR pxProxyFactory *proxy_factory; #endif char *proxy_type; char *proxy; int proxy_port; int proxy_fd; char *proxy_user; char *proxy_pass; int proxy_close_during_auth; int retry_on_auth_fail; int try_http_auth; struct http_auth_state http_auth[MAX_AUTH_TYPES]; struct http_auth_state proxy_auth[MAX_AUTH_TYPES]; char *localname; char *hostname; char *unique_hostname; int port; char *urlpath; int cert_expire_warning; char *cert; char *sslkey; char *cert_password; char *cafile; unsigned no_system_trust; const char *xmlconfig; char xmlsha1[(SHA1_SIZE * 2) + 1]; char *authgroup; int nopasswd; int xmlpost; char *dtls_ciphers; char *dtls12_ciphers; char *csd_wrapper; int no_http_keepalive; int dump_http_traffic; int token_mode; int token_bypassed; int token_tries; time_t token_time; #ifdef HAVE_LIBSTOKEN struct stoken_ctx *stoken_ctx; char *stoken_pin; int stoken_concat_pin; int stoken_interval; #endif #ifdef HAVE_LIBPSKC pskc_t *pskc; pskc_key_t *pskc_key; #endif char *oath_secret; size_t oath_secret_len; enum { OATH_ALG_HMAC_SHA1 = 0, OATH_ALG_HMAC_SHA256, OATH_ALG_HMAC_SHA512, } oath_hmac_alg; enum { HOTP_SECRET_BASE32 = 1, HOTP_SECRET_RAW, HOTP_SECRET_HEX, HOTP_SECRET_PSKC, } hotp_secret_format; /* We need to give it back in the same form */ #ifdef HAVE_LIBPCSCLITE struct oc_pcsc_ctx *pcsc; unsigned char yubikey_pwhash[16]; #endif openconnect_lock_token_vfn lock_token; openconnect_unlock_token_vfn unlock_token; void *tok_cbdata; void *peer_cert; /* The SHA1 and SHA256 hashes of the peer's public key */ uint8_t peer_cert_sha1_raw[SHA1_SIZE]; uint8_t peer_cert_sha256_raw[SHA256_SIZE]; /* this value is cache for openconnect_get_peer_cert_hash */ char *peer_cert_hash; void *cert_list_handle; int cert_list_size; char *cookie; /* Pointer to within cookies list */ struct oc_vpn_option *cookies; struct oc_vpn_option *cstp_options; struct oc_vpn_option *dtls_options; struct oc_vpn_option *script_env; struct oc_vpn_option *csd_env; unsigned pfs; unsigned no_tls13; #if defined(OPENCONNECT_OPENSSL) #ifdef HAVE_LIBP11 PKCS11_CTX *pkcs11_ctx; PKCS11_SLOT *pkcs11_slot_list; unsigned int pkcs11_slot_count; PKCS11_SLOT *pkcs11_cert_slot; unsigned char *pkcs11_cert_id; size_t pkcs11_cert_id_len; #endif X509 *cert_x509; SSL_CTX *https_ctx; SSL *https_ssl; BIO_METHOD *ttls_bio_meth; #elif defined(OPENCONNECT_GNUTLS) gnutls_session_t https_sess; gnutls_session_t eap_ttls_sess; gnutls_certificate_credentials_t https_cred; gnutls_psk_client_credentials_t psk_cred; char local_cert_md5[MD5_SIZE * 2 + 1]; /* For CSD */ char gnutls_prio[256]; #ifdef HAVE_TROUSERS struct oc_tpm1_ctx *tpm1; #endif #ifdef HAVE_TSS2 struct oc_tpm2_ctx *tpm2; #endif #endif /* OPENCONNECT_GNUTLS */ struct oc_text_buf *ttls_pushbuf; uint8_t ttls_eap_ident; unsigned char *ttls_recvbuf; int ttls_recvpos; int ttls_recvlen; struct pin_cache *pin_cache; struct keepalive_info ssl_times; int owe_ssl_dpd_response; int deflate_pkt_size; /* It may need to be larger than MTU */ struct pkt *deflate_pkt; /* For compressing outbound packets into */ struct pkt *pending_deflated_pkt; /* The original packet associated with above */ struct pkt *current_ssl_pkt; /* Partially sent SSL packet */ struct pkt_q oncp_control_queue; /* Control packets to be sent on oNCP next */ int oncp_rec_size; /* For packetising incoming oNCP stream */ /* Packet buffers for receiving into */ struct pkt *cstp_pkt; struct pkt *dtls_pkt; struct pkt *tun_pkt; int pkt_trailer; /* How many bytes after payload for encryption (ESP HMAC) */ z_stream inflate_strm; uint32_t inflate_adler32; z_stream deflate_strm; uint32_t deflate_adler32; int disable_ipv6; int reconnect_timeout; int reconnect_interval; int dtls_attempt_period; time_t new_dtls_started; #if defined(OPENCONNECT_OPENSSL) SSL_CTX *dtls_ctx; SSL *dtls_ssl; #elif defined(OPENCONNECT_GNUTLS) /* Call this dtls_ssl rather than dtls_sess because it's just a pointer, and generic code in dtls.c wants to check if it's NULL or not or pass it to DTLS_SEND/DTLS_RECV. This way we have fewer ifdefs and accessor macros for it. */ gnutls_session_t dtls_ssl; char *gnutls_dtls_cipher; /* cached for openconnect_get_dtls_cipher() */ #endif char *cstp_cipher; int dtls_state; int dtls_need_reconnect; struct keepalive_info dtls_times; unsigned char dtls_session_id[32]; unsigned char dtls_secret[TLS_MASTER_KEY_SIZE]; unsigned char dtls_app_id[32]; unsigned dtls_app_id_size; uint32_t ift_seq; int cisco_dtls12; char *dtls_cipher; char *vpnc_script; #ifndef _WIN32 int uid_csd_given; uid_t uid_csd; gid_t gid_csd; uid_t uid; gid_t gid; #endif int use_tun_script; int script_tun; char *ifname; char *cmd_ifname; int reqmtu, basemtu; /* Local static configured values */ const char *banner; struct oc_ip_info ip_info; int cstp_basemtu; /* Returned by server */ int idle_timeout; /* Returned by server */ #ifdef _WIN32 long dtls_monitored, ssl_monitored, cmd_monitored, tun_monitored; HANDLE dtls_event, ssl_event, cmd_event; #else int _select_nfds; fd_set _select_rfds; fd_set _select_wfds; fd_set _select_efds; #endif #ifdef __sun__ int ip_fd; int ip6_fd; #endif #ifdef _WIN32 HANDLE tun_fh; OVERLAPPED tun_rd_overlap, tun_wr_overlap; int tun_idx, tun_rd_pending; #else int tun_fd; #endif int ssl_fd; int dtls_fd; int dtls_tos_current; int dtls_pass_tos; int dtls_tos_proto, dtls_tos_optname; int cmd_fd; int cmd_fd_write; int got_cancel_cmd; int got_pause_cmd; char cancel_type; struct pkt_q incoming_queue; struct pkt_q outgoing_queue; int max_qlen; struct oc_stats stats; openconnect_stats_vfn stats_handler; socklen_t peer_addrlen; struct sockaddr *peer_addr; struct sockaddr *dtls_addr; int dtls_local_port; int req_compr; /* What we requested */ int cstp_compr; /* Accepted for CSTP */ int dtls_compr; /* Accepted for DTLS */ int is_dyndns; /* Attempt to redo DNS lookup on each CSTP reconnect */ char *useragent; char *version_string; const char *quit_reason; int verbose; void *cbdata; openconnect_validate_peer_cert_vfn validate_peer_cert; openconnect_write_new_config_vfn write_new_config; openconnect_process_auth_form_vfn process_auth_form; openconnect_progress_vfn progress; openconnect_protect_socket_vfn protect_socket; openconnect_getaddrinfo_vfn getaddrinfo_override; openconnect_setup_tun_vfn setup_tun; openconnect_reconnected_vfn reconnected; int (*ssl_read)(struct openconnect_info *vpninfo, char *buf, size_t len); int (*ssl_gets)(struct openconnect_info *vpninfo, char *buf, size_t len); int (*ssl_write)(struct openconnect_info *vpninfo, char *buf, size_t len); }; #ifdef _WIN32 #define monitor_read_fd(_v, _n) _v->_n##_monitored |= FD_READ #define monitor_write_fd(_v, _n) _v->_n##_monitored |= FD_WRITE #define monitor_except_fd(_v, _n) _v->_n##_monitored |= FD_CLOSE #define unmonitor_read_fd(_v, _n) _v->_n##_monitored &= ~FD_READ #define unmonitor_write_fd(_v, _n) _v->_n##_monitored &= ~FD_WRITE #define unmonitor_except_fd(_v, _n) _v->_n##_monitored &= ~FD_CLOSE #define monitor_fd_new(_v, _n) do { if (!_v->_n##_event) _v->_n##_event = CreateEvent(NULL, FALSE, FALSE, NULL); } while (0) #define read_fd_monitored(_v, _n) (_v->_n##_monitored & FD_READ) #else #define monitor_read_fd(_v, _n) FD_SET(_v-> _n##_fd, &vpninfo->_select_rfds) #define unmonitor_read_fd(_v, _n) FD_CLR(_v-> _n##_fd, &vpninfo->_select_rfds) #define monitor_write_fd(_v, _n) FD_SET(_v-> _n##_fd, &vpninfo->_select_wfds) #define unmonitor_write_fd(_v, _n) FD_CLR(_v-> _n##_fd, &vpninfo->_select_wfds) #define monitor_except_fd(_v, _n) FD_SET(_v-> _n##_fd, &vpninfo->_select_efds) #define unmonitor_except_fd(_v, _n) FD_CLR(_v-> _n##_fd, &vpninfo->_select_efds) #define monitor_fd_new(_v, _n) do { \ if (_v->_select_nfds <= vpninfo->_n##_fd) \ vpninfo->_select_nfds = vpninfo->_n##_fd + 1; \ } while (0) #define read_fd_monitored(_v, _n) FD_ISSET(_v->_n##_fd, &_v->_select_rfds) #endif /* Key material for DTLS-PSK */ #define PSK_LABEL "EXPORTER-openconnect-psk" #define PSK_LABEL_SIZE sizeof(PSK_LABEL)-1 #define PSK_KEY_SIZE 32 /* Packet types */ #define AC_PKT_DATA 0 /* Uncompressed data */ #define AC_PKT_DPD_OUT 3 /* Dead Peer Detection */ #define AC_PKT_DPD_RESP 4 /* DPD response */ #define AC_PKT_DISCONN 5 /* Client disconnection notice */ #define AC_PKT_KEEPALIVE 7 /* Keepalive */ #define AC_PKT_COMPRESSED 8 /* Compressed data */ #define AC_PKT_TERM_SERVER 9 /* Server kick */ /* Encryption and HMAC algorithms (matching Juniper/Pulse binary encoding) */ #define ENC_AES_128_CBC 2 #define ENC_AES_256_CBC 5 #define HMAC_MD5 1 #define HMAC_SHA1 2 #define HMAC_SHA256 3 #define MAX_HMAC_SIZE 32 /* SHA256 */ #define MAX_IV_SIZE 16 #define MAX_ESP_PAD 17 /* Including the next-header field */ #define vpn_progress(_v, lvl, ...) do { \ if ((_v)->verbose >= (lvl)) \ (_v)->progress((_v)->cbdata, lvl, __VA_ARGS__); \ } while(0) #define vpn_perror(vpninfo, msg) vpn_progress((vpninfo), PRG_ERR, "%s: %s\n", (msg), strerror(errno)) /****************************************************************************/ /* Oh Solaris how we hate thee! */ #ifdef HAVE_SUNOS_BROKEN_TIME #define time(x) openconnect__time(x) time_t openconnect__time(time_t *t); #endif #ifndef HAVE_VASPRINTF #define vasprintf openconnect__vasprintf int openconnect__vasprintf(char **strp, const char *fmt, va_list ap); #endif #ifndef HAVE_ASPRINTF #define asprintf openconnect__asprintf int openconnect__asprintf(char **strp, const char *fmt, ...); #endif #ifndef HAVE_GETLINE #define getline openconnect__getline ssize_t openconnect__getline(char **lineptr, size_t *n, FILE *stream); #endif #ifndef HAVE_STRCASESTR #define strcasestr openconnect__strcasestr char *openconnect__strcasestr(const char *haystack, const char *needle); #endif #ifndef HAVE_STRNDUP #undef strndup #define strndup openconnect__strndup char *openconnect__strndup(const char *s, size_t n); #endif #ifndef HAVE_INET_ATON #define inet_aton openconnect__inet_aton int openconnect__inet_aton(const char *cp, struct in_addr *addr); #endif static inline int set_sock_nonblock(int fd) { #ifdef _WIN32 unsigned long mode = 1; return ioctlsocket(fd, FIONBIO, &mode); #else return fcntl(fd, F_SETFL, fcntl(fd, F_GETFL) | O_NONBLOCK); #endif } static inline int set_fd_cloexec(int fd) { #ifdef _WIN32 return 0; /* Windows has O_INHERIT but... */ #else return fcntl(fd, F_SETFD, fcntl(fd, F_GETFD) | FD_CLOEXEC); #endif } static inline int tun_is_up(struct openconnect_info *vpninfo) { #ifdef _WIN32 return vpninfo->tun_fh != NULL; #else return vpninfo->tun_fd != -1; #endif } #ifdef _WIN32 #define pipe(fds) _pipe(fds, 4096, O_BINARY) int openconnect__win32_sock_init(); char *openconnect__win32_strerror(DWORD err); #undef inet_pton #define inet_pton openconnect__win32_inet_pton int openconnect__win32_inet_pton(int af, const char *src, void *dst); #define OPENCONNECT_CMD_SOCKET SOCKET OPENCONNECT_CMD_SOCKET dumb_socketpair(OPENCONNECT_CMD_SOCKET socks[2], int make_overlapped); #else #define closesocket close #define OPENCONNECT_CMD_SOCKET int #ifndef O_BINARY #define O_BINARY 0 #endif #endif /* For systems that don't support O_CLOEXEC, just don't bother. We don't keep files open for long anyway. */ #ifndef O_CLOEXEC #define O_CLOEXEC 0 #endif /* I always coded as if it worked like this. Now it does. */ #define realloc_inplace(p, size) do { \ void *__realloc_old = p; \ p = realloc(p, size); \ if (size && !p) \ free(__realloc_old); \ } while (0) /****************************************************************************/ /* iconv.c */ #ifdef HAVE_ICONV char *openconnect_utf8_to_legacy(struct openconnect_info *vpninfo, const char *utf8); char *openconnect_legacy_to_utf8(struct openconnect_info *vpninfo, const char *legacy); #else #define openconnect_utf8_to_legacy(v, str) ((char *)str) #define openconnect_legacy_to_utf8(v, str) ((char *)str) #endif /* script.c */ unsigned char unhex(const char *data); int script_setenv(struct openconnect_info *vpninfo, const char *opt, const char *val, int trunc, int append); int script_setenv_int(struct openconnect_info *vpninfo, const char *opt, int value); void prepare_script_env(struct openconnect_info *vpninfo); int script_config_tun(struct openconnect_info *vpninfo, const char *reason); int apply_script_env(struct oc_vpn_option *envs); void free_split_routes(struct openconnect_info *vpninfo); /* tun.c / tun-win32.c */ void os_shutdown_tun(struct openconnect_info *vpninfo); int os_read_tun(struct openconnect_info *vpninfo, struct pkt *pkt); int os_write_tun(struct openconnect_info *vpninfo, struct pkt *pkt); intptr_t os_setup_tun(struct openconnect_info *vpninfo); /* {gnutls,openssl}-dtls.c */ int start_dtls_handshake(struct openconnect_info *vpninfo, int dtls_fd); int dtls_try_handshake(struct openconnect_info *vpninfo); unsigned dtls_set_mtu(struct openconnect_info *vpninfo, unsigned mtu); void dtls_ssl_free(struct openconnect_info *vpninfo); void *establish_eap_ttls(struct openconnect_info *vpninfo); void destroy_eap_ttls(struct openconnect_info *vpninfo, void *sess); /* dtls.c */ int dtls_setup(struct openconnect_info *vpninfo, int dtls_attempt_period); int dtls_mainloop(struct openconnect_info *vpninfo, int *timeout, int readable); void dtls_close(struct openconnect_info *vpninfo); void dtls_shutdown(struct openconnect_info *vpninfo); void gather_dtls_ciphers(struct openconnect_info *vpninfo, struct oc_text_buf *buf, struct oc_text_buf *buf12); void dtls_detect_mtu(struct openconnect_info *vpninfo); int openconnect_dtls_read(struct openconnect_info *vpninfo, void *buf, size_t len, unsigned ms); int openconnect_dtls_write(struct openconnect_info *vpninfo, void *buf, size_t len); char *openconnect_bin2hex(const char *prefix, const uint8_t *data, unsigned len); char *openconnect_bin2base64(const char *prefix, const uint8_t *data, unsigned len); /* cstp.c */ void cstp_common_headers(struct openconnect_info *vpninfo, struct oc_text_buf *buf); int cstp_connect(struct openconnect_info *vpninfo); int cstp_mainloop(struct openconnect_info *vpninfo, int *timeout, int readable); int cstp_bye(struct openconnect_info *vpninfo, const char *reason); int decompress_and_queue_packet(struct openconnect_info *vpninfo, int compr_type, unsigned char *buf, int len); int compress_packet(struct openconnect_info *vpninfo, int compr_type, struct pkt *this); /* auth-juniper.c */ int oncp_obtain_cookie(struct openconnect_info *vpninfo); void oncp_common_headers(struct openconnect_info *vpninfo, struct oc_text_buf *buf); /* oncp.c */ int oncp_connect(struct openconnect_info *vpninfo); int oncp_mainloop(struct openconnect_info *vpninfo, int *timeout, int readable); int oncp_bye(struct openconnect_info *vpninfo, const char *reason); void oncp_esp_close(struct openconnect_info *vpninfo); int oncp_esp_send_probes(struct openconnect_info *vpninfo); int oncp_esp_catch_probe(struct openconnect_info *vpninfo, struct pkt *pkt); /* pulse.c */ int pulse_obtain_cookie(struct openconnect_info *vpninfo); void pulse_common_headers(struct openconnect_info *vpninfo, struct oc_text_buf *buf); int pulse_connect(struct openconnect_info *vpninfo); int pulse_mainloop(struct openconnect_info *vpninfo, int *timeout, int readable); int pulse_bye(struct openconnect_info *vpninfo, const char *reason); int pulse_eap_ttls_send(struct openconnect_info *vpninfo, const void *data, int len); int pulse_eap_ttls_recv(struct openconnect_info *vpninfo, void *data, int len); /* auth-globalprotect.c */ int gpst_obtain_cookie(struct openconnect_info *vpninfo); void gpst_common_headers(struct openconnect_info *vpninfo, struct oc_text_buf *buf); int gpst_bye(struct openconnect_info *vpninfo, const char *reason); const char *gpst_os_name(struct openconnect_info *vpninfo); /* gpst.c */ int gpst_xml_or_error(struct openconnect_info *vpninfo, char *response, int (*xml_cb)(struct openconnect_info *, xmlNode *xml_node, void *cb_data), int (*challenge_cb)(struct openconnect_info *, char *prompt, char *inputStr, void *cb_data), void *cb_data); int gpst_setup(struct openconnect_info *vpninfo); int gpst_mainloop(struct openconnect_info *vpninfo, int *timeout, int readable); int gpst_esp_send_probes(struct openconnect_info *vpninfo); int gpst_esp_catch_probe(struct openconnect_info *vpninfo, struct pkt *pkt); /* lzs.c */ int lzs_decompress(unsigned char *dst, int dstlen, const unsigned char *src, int srclen); int lzs_compress(unsigned char *dst, int dstlen, const unsigned char *src, int srclen); /* ssl.c */ unsigned string_is_hostname(const char* str); int connect_https_socket(struct openconnect_info *vpninfo); int __attribute__ ((format(printf, 4, 5))) request_passphrase(struct openconnect_info *vpninfo, const char *label, char **response, const char *fmt, ...); int __attribute__ ((format (printf, 2, 3))) openconnect_SSL_printf(struct openconnect_info *vpninfo, const char *fmt, ...); int openconnect_print_err_cb(const char *str, size_t len, void *ptr); #define openconnect_report_ssl_errors(v) ERR_print_errors_cb(openconnect_print_err_cb, (v)) #if defined(FAKE_ANDROID_KEYSTORE) || defined(__ANDROID__) #define ANDROID_KEYSTORE #endif #ifdef ANDROID_KEYSTORE const char *keystore_strerror(int err); int keystore_fetch(const char *key, unsigned char **result); #endif void cmd_fd_set(struct openconnect_info *vpninfo, fd_set *fds, int *maxfd); void check_cmd_fd(struct openconnect_info *vpninfo, fd_set *fds); int is_cancel_pending(struct openconnect_info *vpninfo, fd_set *fds); void poll_cmd_fd(struct openconnect_info *vpninfo, int timeout); int openconnect_open_utf8(struct openconnect_info *vpninfo, const char *fname, int mode); FILE *openconnect_fopen_utf8(struct openconnect_info *vpninfo, const char *fname, const char *mode); int udp_sockaddr(struct openconnect_info *vpninfo, int port); int udp_connect(struct openconnect_info *vpninfo); int ssl_reconnect(struct openconnect_info *vpninfo); void openconnect_clear_cookies(struct openconnect_info *vpninfo); int cancellable_gets(struct openconnect_info *vpninfo, int fd, char *buf, size_t len); int cancellable_send(struct openconnect_info *vpninfo, int fd, char *buf, size_t len); int cancellable_recv(struct openconnect_info *vpninfo, int fd, char *buf, size_t len); /* openssl-pkcs11.c */ int load_pkcs11_key(struct openconnect_info *vpninfo); int load_pkcs11_certificate(struct openconnect_info *vpninfo); /* esp.c */ int verify_packet_seqno(struct openconnect_info *vpninfo, struct esp *esp, uint32_t seq); int esp_setup(struct openconnect_info *vpninfo, int dtls_attempt_period); int esp_mainloop(struct openconnect_info *vpninfo, int *timeout, int readable); void esp_close(struct openconnect_info *vpninfo); void esp_shutdown(struct openconnect_info *vpninfo); int print_esp_keys(struct openconnect_info *vpninfo, const char *name, struct esp *esp); int openconnect_setup_esp_keys(struct openconnect_info *vpninfo, int new_keys); int construct_esp_packet(struct openconnect_info *vpninfo, struct pkt *pkt, uint8_t next_hdr); /* {gnutls,openssl}-esp.c */ void destroy_esp_ciphers(struct esp *esp); int init_esp_ciphers(struct openconnect_info *vpninfo, struct esp *out, struct esp *in); int decrypt_esp_packet(struct openconnect_info *vpninfo, struct esp *esp, struct pkt *pkt); int encrypt_esp_packet(struct openconnect_info *vpninfo, struct pkt *pkt, int crypt_len); /* {gnutls,openssl}.c */ int ssl_nonblock_read(struct openconnect_info *vpninfo, void *buf, int maxlen); int ssl_nonblock_write(struct openconnect_info *vpninfo, void *buf, int buflen); int openconnect_open_https(struct openconnect_info *vpninfo); void openconnect_close_https(struct openconnect_info *vpninfo, int final); int cstp_handshake(struct openconnect_info *vpninfo, unsigned init); int get_cert_md5_fingerprint(struct openconnect_info *vpninfo, void *cert, char *buf); int openconnect_sha1(unsigned char *result, void *data, int len); int openconnect_sha256(unsigned char *result, void *data, int len); int openconnect_md5(unsigned char *result, void *data, int len); int openconnect_random(void *bytes, int len); int openconnect_local_cert_md5(struct openconnect_info *vpninfo, char *buf); int openconnect_yubikey_chalresp(struct openconnect_info *vpninfo, const void *challenge, int chall_len, void *result); int openconnect_hash_yubikey_password(struct openconnect_info *vpninfo, const char *password, int pwlen, const void *ident, int id_len); int hotp_hmac(struct openconnect_info *vpninfo, const void *challenge); #if defined(OPENCONNECT_OPENSSL) #define openconnect_https_connected(_v) ((_v)->https_ssl) #elif defined (OPENCONNECT_GNUTLS) #define openconnect_https_connected(_v) ((_v)->https_sess) #endif /* mainloop.c */ int tun_mainloop(struct openconnect_info *vpninfo, int *timeout, int readable); int queue_new_packet(struct pkt_q *q, void *buf, int len); int keepalive_action(struct keepalive_info *ka, int *timeout); int ka_stalled_action(struct keepalive_info *ka, int *timeout); int ka_check_deadline(int *timeout, time_t now, time_t due); /* xml.c */ ssize_t read_file_into_string(struct openconnect_info *vpninfo, const char *fname, char **ptr); int config_lookup_host(struct openconnect_info *vpninfo, const char *host); /* oath.c */ int set_totp_mode(struct openconnect_info *vpninfo, const char *token_str); int set_hotp_mode(struct openconnect_info *vpninfo, const char *token_str); int can_gen_totp_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt); int can_gen_hotp_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt); int do_gen_totp_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt); int do_gen_hotp_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt); /* stoken.c */ int prepare_stoken(struct openconnect_info *vpninfo); int set_libstoken_mode(struct openconnect_info *vpninfo, const char *token_str); int can_gen_stoken_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt); int do_gen_stoken_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt); /* yubikey.c */ int set_yubikey_mode(struct openconnect_info *vpninfo, const char *token_str); int can_gen_yubikey_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt); int do_gen_yubikey_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt); void release_pcsc_ctx(struct openconnect_info *info); /* auth.c */ int cstp_obtain_cookie(struct openconnect_info *vpninfo); int set_csd_user(struct openconnect_info *vpninfo); /* auth-common.c */ int xmlnode_is_named(xmlNode *xml_node, const char *name); int xmlnode_get_val(xmlNode *xml_node, const char *name, char **var); int xmlnode_get_prop(xmlNode *xml_node, const char *name, char **var); int xmlnode_match_prop(xmlNode *xml_node, const char *name, const char *match); int append_opt(struct oc_text_buf *body, const char *opt, const char *name); int append_form_opts(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_text_buf *body); void clear_mem(void *p, size_t s); void free_pass(char **p); void free_opt(struct oc_form_opt *opt); void free_auth_form(struct oc_auth_form *form); int do_gen_tokencode(struct openconnect_info *vpninfo, struct oc_auth_form *form); int can_gen_tokencode(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt); /* http.c */ struct oc_text_buf *buf_alloc(void); void dump_buf(struct openconnect_info *vpninfo, char prefix, char *buf); void dump_buf_hex(struct openconnect_info *vpninfo, int loglevel, char prefix, unsigned char *buf, int len); int buf_ensure_space(struct oc_text_buf *buf, int len); void __attribute__ ((format (printf, 2, 3))) buf_append(struct oc_text_buf *buf, const char *fmt, ...); void buf_append_bytes(struct oc_text_buf *buf, const void *bytes, int len); void buf_append_hex(struct oc_text_buf *buf, const void *str, unsigned len); int buf_append_utf16le(struct oc_text_buf *buf, const char *utf8); int get_utf8char(const char **utf8); void buf_append_from_utf16le(struct oc_text_buf *buf, const void *utf16); void buf_truncate(struct oc_text_buf *buf); void buf_append_urlencoded(struct oc_text_buf *buf, const char *str); void buf_append_xmlescaped(struct oc_text_buf *buf, const char *str); int buf_error(struct oc_text_buf *buf); int buf_free(struct oc_text_buf *buf); char *openconnect_create_useragent(const char *base); int process_proxy(struct openconnect_info *vpninfo, int ssl_sock); int internal_parse_url(const char *url, char **res_proto, char **res_host, int *res_port, char **res_path, int default_port); int do_https_request(struct openconnect_info *vpninfo, const char *method, const char *request_body_type, struct oc_text_buf *request_body, char **form_buf, int fetch_redirect); int http_add_cookie(struct openconnect_info *vpninfo, const char *option, const char *value, int replace); int process_http_response(struct openconnect_info *vpninfo, int connect, int (*header_cb)(struct openconnect_info *, char *, char *), struct oc_text_buf *body); int handle_redirect(struct openconnect_info *vpninfo); void http_common_headers(struct openconnect_info *vpninfo, struct oc_text_buf *buf); /* http-auth.c */ void buf_append_base64(struct oc_text_buf *buf, const void *bytes, int len); void *openconnect_base64_decode(int *len, const char *in); void clear_auth_states(struct openconnect_info *vpninfo, struct http_auth_state *auth_states, int reset); int proxy_auth_hdrs(struct openconnect_info *vpninfo, char *hdr, char *val); int http_auth_hdrs(struct openconnect_info *vpninfo, char *hdr, char *val); int gen_authorization_hdr(struct openconnect_info *vpninfo, int proxy, struct oc_text_buf *buf); /* ntlm.c */ int ntlm_authorization(struct openconnect_info *vpninfo, int proxy, struct http_auth_state *auth_state, struct oc_text_buf *buf); void cleanup_ntlm_auth(struct openconnect_info *vpninfo, struct http_auth_state *auth_state); /* gssapi.c */ int gssapi_authorization(struct openconnect_info *vpninfo, int proxy, struct http_auth_state *auth_state, struct oc_text_buf *buf); void cleanup_gssapi_auth(struct openconnect_info *vpninfo, struct http_auth_state *auth_state); int socks_gssapi_auth(struct openconnect_info *vpninfo); /* digest.c */ int digest_authorization(struct openconnect_info *vpninfo, int proxy, struct http_auth_state *auth_state, struct oc_text_buf *buf); /* library.c */ void nuke_opt_values(struct oc_form_opt *opt); void free_optlist(struct oc_vpn_option *opt); int process_auth_form(struct openconnect_info *vpninfo, struct oc_auth_form *form); /* This is private for now since we haven't yet worked out what the API will be */ void openconnect_set_juniper(struct openconnect_info *vpninfo); /* version.c */ extern const char *openconnect_version_str; /* strncasecmp() just checks that the first n characters match. This function ensures that the first n characters of the left-hand side are a *precise* match for the right-hand side. */ static inline int strprefix_match(const char *str, int len, const char *match) { return len == strlen(match) && !strncasecmp(str, match, len); } #define STRDUP(res, arg) \ if (res != arg) { \ free(res); \ if (arg) { \ res = strdup(arg); \ if (res == NULL) return -ENOMEM; \ } else res = NULL; \ } while(0) #define UTF8CHECK(arg) \ if ((arg) && buf_append_utf16le(NULL, (arg))) { \ vpn_progress(vpninfo, PRG_ERR, \ _("ERROR: %s() called with invalid UTF-8 for '%s' argument\n"),\ __func__, #arg); \ return -EILSEQ; \ } #define UTF8CHECK_VOID(arg) \ if ((arg) && buf_append_utf16le(NULL, (arg))) { \ vpn_progress(vpninfo, PRG_ERR, \ _("ERROR: %s() called with invalid UTF-8 for '%s' argument\n"),\ __func__, #arg); \ return; \ } /* Let's stop open-coding big-endian and little-endian loads/stores. * * Start with a packed structure so that we can let the compiler * decide whether the target CPU can cope with unaligned load/stores * or not. Then there are three cases to handle: * - For big-endian loads/stores, just use htons() et al. * - For little-endian when we *know* the CPU is LE, just load/store * - For little-endian otherwise, do the data acess byte-wise */ struct oc_packed_uint32_t { uint32_t d; } __attribute__((packed)); struct oc_packed_uint16_t { uint16_t d; } __attribute__((packed)); static inline uint32_t load_be32(const void *_p) { const struct oc_packed_uint32_t *p = _p; return ntohl(p->d); } static inline uint16_t load_be16(const void *_p) { const struct oc_packed_uint16_t *p = _p; return ntohs(p->d); } static inline void store_be32(void *_p, uint32_t d) { struct oc_packed_uint32_t *p = _p; p->d = htonl(d); } static inline void store_be16(void *_p, uint16_t d) { struct oc_packed_uint16_t *p = _p; p->d = htons(d); } /* It doesn't matter if we don't find one. It'll default to the * "not known to be little-endian" case, and do the bytewise * load/store. Modern compilers might even spot the pattern and * optimise it (see GCC PR#55177 around comment 15). */ #ifdef ENDIAN_HDR #include ENDIAN_HDR #endif #if defined(_WIN32) || \ (defined(_LITTLE_ENDIAN) && !defined(_BIG_ENDIAN)) /* Solaris */ || \ (defined(__LITTLE_ENDIAN) && defined(__BIG_ENDIAN) && defined(__BYTE_ORDER) \ && __BYTE_ORDER == __LITTLE_ENDIAN) /* Linux */ || \ (defined(LITTLE_ENDIAN) && defined(BIG_ENDIAN) && defined(BYTE_ORDER) \ && BYTE_ORDER == LITTLE_ENDIAN) /* *BSD */ static inline uint32_t load_le32(const void *_p) { const struct oc_packed_uint32_t *p = _p; return p->d; } static inline uint16_t load_le16(const void *_p) { const struct oc_packed_uint16_t *p = _p; return p->d; } static inline void store_le32(void *_p, uint32_t d) { struct oc_packed_uint32_t *p = _p; p->d = d; } static inline void store_le16(void *_p, uint16_t d) { struct oc_packed_uint16_t *p = _p; p->d = d; } #else static inline uint32_t load_le32(const void *_p) { const unsigned char *p = _p; return p[0] | (p[1] << 8) | (p[2] << 16) | (p[3] << 24); } static inline uint16_t load_le16(const void *_p) { const unsigned char *p = _p; return p[0] | (p[1] << 8); } static inline void store_le32(void *_p, uint32_t d) { unsigned char *p = _p; p[0] = d; p[1] = d >> 8; } static inline void store_le16(void *_p, uint16_t d) { unsigned char *p = _p; p[0] = d; p[1] = d >> 8; p[2] = d >> 16; p[3] = d >> 24; } #endif /* !Not known to be little-endian */ #endif /* __OPENCONNECT_INTERNAL_H__ */ openconnect-8.05/lzs.c0000664000076400007640000002260512727726520016530 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include "openconnect-internal.h" #define GET_BITS(bits) \ do { \ /* Strictly speaking, this check ought to be on \ * (srclen < 1 + (bits_left < bits)). However, when bits == 9 \ * the (bits_left < bits) comparison is always true so it \ * always comes out as (srclen < 2). \ * And bits is only anything *other* than 9 when we're reading \ * reading part of a match encoding. And in that case, there \ * damn well ought to be an end marker (7 more bits) after \ * what we're reading now, so it's perfectly OK to use \ * (srclen < 2) in that case too. And a *lot* cheaper. */ \ if (srclen < 2) \ return -EINVAL; \ /* Explicit comparison with 8 to optimise it into a tautology \ * in the the bits == 9 case, because the compiler doesn't \ * know that bits_left can never be larger than 8. */ \ if (bits >= 8 || bits >= bits_left) { \ /* We need *all* the bits that are left in the current \ * byte. Take them and bump the input pointer. */ \ data = (src[0] << (bits - bits_left)) & ((1 << bits) - 1); \ src++; \ srclen--; \ bits_left += 8 - bits; \ if (bits > 8 || bits_left < 8) { \ /* We need bits from the next byte too... */ \ data |= src[0] >> bits_left; \ /* ...if we used *all* of them then (which can \ * only happen if bits > 8), then bump the \ * input pointer again so we never leave \ * bits_left == 0. */ \ if (bits > 8 && !bits_left) { \ bits_left = 8; \ src++; \ srclen--; \ } \ } \ } else { \ /* We need fewer bits than are left in the current byte */ \ data = (src[0] >> (bits_left - bits)) & ((1ULL << bits) - 1); \ bits_left -= bits; \ } \ } while (0) int lzs_decompress(unsigned char *dst, int dstlen, const unsigned char *src, int srclen) { int outlen = 0; int bits_left = 8; /* Bits left in the current byte at *src */ uint32_t data; uint16_t offset, length; while (1) { /* Get 9 bits, which is the minimum and a common case */ GET_BITS(9); /* 0bbbbbbbb is a literal byte. The loop gives a hint to * the compiler that we expect to see a few of these. */ while (data < 0x100) { if (outlen == dstlen) return -EFBIG; dst[outlen++] = data; GET_BITS(9); } /* 110000000 is the end marker */ if (data == 0x180) return outlen; /* 11bbbbbbb is a 7-bit offset */ offset = data & 0x7f; /* 10bbbbbbbbbbb is an 11-bit offset, so get the next 4 bits */ if (data < 0x180) { GET_BITS(4); offset <<= 4; offset |= data; } /* This is a compressed sequence; now get the length */ GET_BITS(2); if (data != 3) { /* 00, 01, 10 ==> 2, 3, 4 */ length = data + 2; } else { GET_BITS(2); if (data != 3) { /* 1100, 1101, 1110 => 5, 6, 7 */ length = data + 5; } else { /* For each 1111 prefix add 15 to the length. Then add the value of final nybble. */ length = 8; while (1) { GET_BITS(4); if (data != 15) { length += data; break; } length += 15; } } } if (offset > outlen) return -EINVAL; if (length + outlen > dstlen) return -EFBIG; while (length) { dst[outlen] = dst[outlen - offset]; outlen++; length--; } } return -EINVAL; } #define PUT_BITS(nr, bits) \ do { \ outbits <<= (nr); \ outbits |= (bits); \ nr_outbits += (nr); \ if ((nr) > 8) { \ nr_outbits -= 8; \ if (outpos == dstlen) \ return -EFBIG; \ dst[outpos++] = outbits >> nr_outbits; \ } \ if (nr_outbits >= 8) { \ nr_outbits -= 8; \ if (outpos == dstlen) \ return -EFBIG; \ dst[outpos++] = outbits >> nr_outbits; \ } \ } while (0) /* * Much of the compression algorithm used here is based very loosely on ideas * from isdn_lzscomp.c by Andre Beck: http://micky.ibh.de/~beck/stuff/lzs4i4l/ */ int lzs_compress(unsigned char *dst, int dstlen, const unsigned char *src, int srclen) { int length, offset; int inpos = 0, outpos = 0; uint16_t longest_match_len; uint16_t hofs, longest_match_ofs; uint16_t hash; uint32_t outbits = 0; int nr_outbits = 0; /* * This is theoretically a hash. But RAM is cheap and just loading the * 16-bit value and using it as a hash is *much* faster. */ #define HASH_BITS 16 #define HASH_TABLE_SIZE (1ULL << HASH_BITS) #define HASH(p) (((struct oc_packed_uint16_t *)(p))->d) /* * There are two data structures for tracking the history. The first * is the true hash table, an array indexed by the hash value described * above. It yields the offset in the input buffer at which the given * hash was most recently seen. We use INVALID_OFS (0xffff) for none * since we know IP packets are limited to 64KiB and we can never be * *starting* a match at the penultimate byte of the packet. */ #define INVALID_OFS 0xffff uint16_t hash_table[HASH_TABLE_SIZE]; /* Buffer offset for first match */ /* * The second data structure allows us to find the previous occurrences * of the same hash value. It is a ring buffer containing links only for * the latest MAX_HISTORY bytes of the input. The lookup for a given * offset will yield the previous offset at which the same data hash * value was found. */ #define MAX_HISTORY (1<<11) /* Highest offset LZS can represent is 11 bits */ uint16_t hash_chain[MAX_HISTORY]; /* Just in case anyone tries to use this in a more general-purpose * scenario... */ if (srclen > INVALID_OFS + 1) return -EFBIG; /* No need to initialise hash_chain since we can only ever follow * links to it that have already been initialised. */ memset(hash_table, 0xff, sizeof(hash_table)); while (inpos < srclen - 2) { hash = HASH(src + inpos); hofs = hash_table[hash]; hash_chain[inpos & (MAX_HISTORY - 1)] = hofs; hash_table[hash] = inpos; if (hofs == INVALID_OFS || hofs + MAX_HISTORY <= inpos) { PUT_BITS(9, src[inpos]); inpos++; continue; } /* Since the hash is 16-bits, we *know* the first two bytes match */ longest_match_len = 2; longest_match_ofs = hofs; for (; hofs != INVALID_OFS && hofs + MAX_HISTORY > inpos; hofs = hash_chain[hofs & (MAX_HISTORY - 1)]) { /* We only get here if longest_match_len is >= 2. We need to find a match of longest_match_len + 1 for it to be interesting. */ if (!memcmp(src + hofs + 2, src + inpos + 2, longest_match_len - 1)) { longest_match_ofs = hofs; do { longest_match_len++; /* If we cannot *have* a longer match because we're at the * end of the input, stop looking */ if (longest_match_len + inpos == srclen) goto got_match; } while (src[longest_match_len + inpos] == src[longest_match_len + hofs]); } /* Typical compressor tuning would have a break out of the loop here depending on the number of potential match locations we've tried, or a value of longest_match_len that's considered "good enough" so we stop looking for something better. We could also do a hybrid where we count the total bytes compared, so 5 attempts to find a match better than 10 bytes is worth the same as 10 attempts to find a match better than 5 bytes. Or something. Anyway, we currently don't give up until we run out of reachable history — maximal compression. */ } got_match: /* Output offset, as 7-bit or 11-bit as appropriate */ offset = inpos - longest_match_ofs; length = longest_match_len; if (offset < 0x80) PUT_BITS(9, 0x180 | offset); else PUT_BITS(13, 0x1000 | offset); /* Output length */ if (length < 5) PUT_BITS(2, length - 2); else if (length < 8) PUT_BITS(4, length + 7); else { length += 7; while (length >= 30) { PUT_BITS(8, 0xff); length -= 30; } if (length >= 15) PUT_BITS(8, 0xf0 + length - 15); else PUT_BITS(4, length); } /* If we're already done, don't bother updating the hash tables. */ if (inpos + longest_match_len >= srclen - 2) { inpos += longest_match_len; break; } /* We already added the first byte to the hash tables. Add the rest. */ inpos++; while (--longest_match_len) { hash = HASH(src + inpos); hash_chain[inpos & (MAX_HISTORY - 1)] = hash_table[hash]; hash_table[hash] = inpos++; } } /* Special cases at the end */ if (inpos == srclen - 2) { hash = HASH(src + inpos); hofs = hash_table[hash]; if (hofs != INVALID_OFS && hofs + MAX_HISTORY > inpos) { offset = inpos - hofs; if (offset < 0x80) PUT_BITS(9, 0x180 | offset); else PUT_BITS(13, 0x1000 | offset); /* The length is 2 bytes */ PUT_BITS(2, 0); } else { PUT_BITS(9, src[inpos]); PUT_BITS(9, src[inpos + 1]); } } else if (inpos == srclen - 1) { PUT_BITS(9, src[inpos]); } /* End marker, with 7 trailing zero bits to ensure that it's flushed. */ PUT_BITS(16, 0xc000); return outpos; } openconnect-8.05/esp-seqno.c0000664000076400007640000001175513251767642017641 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include "openconnect-internal.h" #define DTLS_EMPTY_BITMAP (0xFFFFFFFFFFFFFFFFULL) /* Eventually we're going to have to have more than one incoming ESP context at a time, to allow for the overlap period during a rekey. So pass the 'esp' even though for now it's redundant. */ int verify_packet_seqno(struct openconnect_info *vpninfo, struct esp *esp, uint32_t seq) { /* * For incoming, esp->seq is the next *expected* packet, being * the sequence number *after* the latest we have received. * * Since it must always be true that packet esp->seq-1 has been * received, so there's no need to explicitly record that. * * So the backlog bitmap covers the 64 packets prior to that, * with the LSB representing packet (esp->seq - 2), and the MSB * representing (esp->seq - 65). A received packet is represented * by a zero bit, and a missing packet is represented by a one. * * Thus we can allow out-of-order reception of packets that are * within a reasonable interval of the latest packet received. */ if (seq == esp->seq) { /* The common case. This is the packet we expected next. */ esp->seq_backlog <<= 1; /* This might reach a value higher than the 32-bit ESP sequence * numbers can actually reach. Which is fine. When that * happens, we'll do the right thing and just not accept any * newer packets. Someone needs to start a new epoch. */ esp->seq++; vpn_progress(vpninfo, PRG_TRACE, _("Accepting expected ESP packet with seq %u\n"), seq); return 0; } else if (seq > esp->seq) { /* The packet we were expecting has gone missing; this one is newer. * We always advance the window to accommodate it. */ uint32_t delta = seq - esp->seq; if (delta >= 64) { /* We jumped a long way into the future. We have not seen * any of the previous 32 packets so set the backlog bitmap * to all ones. */ esp->seq_backlog = DTLS_EMPTY_BITMAP; } else if (delta == 63) { /* Avoid undefined behaviour that shifting by 64 would incur. * The (clear) top bit represents the packet which is currently * esp->seq - 1, which we know was already received. */ esp->seq_backlog = DTLS_EMPTY_BITMAP >> 1; } else { /* We have missed (delta) packets. Shift the backlog by that * amount *plus* the one we would have shifted it anyway if * we'd received the packet we were expecting. The zero bit * representing the packet which is currently esp->seq - 1, * which we know has been received, ends up at bit position * (1<seq_backlog <<= delta + 1; esp->seq_backlog |= (1ULL << delta) - 1; } vpn_progress(vpninfo, PRG_TRACE, _("Accepting later-than-expected ESP packet with seq %u (expected %" PRIu64 ")\n"), seq, esp->seq); esp->seq = (uint64_t)seq + 1; return 0; } else { /* This packet is older than the one we were expecting. By how much...? */ uint32_t delta = esp->seq - seq; /* delta==0 is the overflow case where esp->seq is 0x100000000 and seq is 0 */ if (delta > 65 || delta == 0) { /* Too old. We can't know if it's a replay. */ if (vpninfo->esp_replay_protect) { vpn_progress(vpninfo, PRG_DEBUG, _("Discarding ancient ESP packet with seq %u (expected %" PRIu64 ")\n"), seq, esp->seq); return -EINVAL; } else { vpn_progress(vpninfo, PRG_DEBUG, _("Tolerating ancient ESP packet with seq %u (expected %" PRIu64 ")\n"), seq, esp->seq); return 0; } } else if (delta == 1) { /* Not in the bitmask since it is by definition already received. */ replayed: if (vpninfo->esp_replay_protect) { vpn_progress(vpninfo, PRG_DEBUG, _("Discarding replayed ESP packet with seq %u\n"), seq); return -EINVAL; } else { vpn_progress(vpninfo, PRG_DEBUG, _("Tolerating replayed ESP packet with seq %u\n"), seq); return 0; } } else { /* Within the backlog window, so we remember whether we've seen it or not. */ uint64_t mask = 1ULL << (delta - 2); if (!(esp->seq_backlog & mask)) goto replayed; esp->seq_backlog &= ~mask; vpn_progress(vpninfo, PRG_TRACE, _("Accepting out-of-order ESP packet with seq %u (expected %" PRIu64 ")\n"), seq, esp->seq); return 0; } } } openconnect-8.05/gnutls.c0000664000076400007640000022224013536301641017221 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #ifdef HAVE_P11KIT #include #include #include #endif #if defined(HAVE_P11KIT) || defined(HAVE_GNUTLS_SYSTEM_KEYS) static int gnutls_pin_callback(void *priv, int attempt, const char *uri, const char *token_label, unsigned int flags, char *pin, size_t pin_max); #endif /* HAVE_P11KIT || HAVE_GNUTLS_SYSTEM_KEYS */ #include "gnutls.h" #include "openconnect-internal.h" /* GnuTLS 2.x lacked this. But GNUTLS_E_UNEXPECTED_PACKET_LENGTH basically * does the same thing. * http://lists.infradead.org/pipermail/openconnect-devel/2014-March/001726.html */ #ifndef GNUTLS_E_PREMATURE_TERMINATION #define GNUTLS_E_PREMATURE_TERMINATION GNUTLS_E_UNEXPECTED_PACKET_LENGTH #endif /* Compile-time optimisable GnuTLS version check. We should never be * run against a version of GnuTLS which is *older* than the one we * were built again, but we might be run against a version which is * newer. So some ancient compatibility code *can* be dropped at * compile time. Likewise, if building against GnuTLS 2.x then we * can never be running agsinst a 3.x library — the soname changed. */ #define gtls_ver(a,b,c) ( GNUTLS_VERSION_MAJOR >= (a) && \ (GNUTLS_VERSION_NUMBER >= ( ((a) << 16) + ((b) << 8) + (c) ) || \ gnutls_check_version(#a "." #b "." #c))) /* Helper functions for reading/writing lines over SSL. */ static int _openconnect_gnutls_write(gnutls_session_t ses, int fd, struct openconnect_info *vpninfo, char *buf, size_t len) { size_t orig_len = len; while (len) { int done = gnutls_record_send(ses, buf, len); if (done > 0) len -= done; else if (done == GNUTLS_E_AGAIN || done == GNUTLS_E_INTERRUPTED) { /* Wait for something to happen on the socket, or on cmd_fd */ fd_set wr_set, rd_set; int maxfd = fd; FD_ZERO(&wr_set); FD_ZERO(&rd_set); if (gnutls_record_get_direction(ses)) FD_SET(fd, &wr_set); else FD_SET(fd, &rd_set); cmd_fd_set(vpninfo, &rd_set, &maxfd); select(maxfd + 1, &rd_set, &wr_set, NULL, NULL); if (is_cancel_pending(vpninfo, &rd_set)) { vpn_progress(vpninfo, PRG_ERR, _("SSL write cancelled\n")); return -EINTR; } } else { vpn_progress(vpninfo, PRG_ERR, _("Failed to write to SSL socket: %s\n"), gnutls_strerror(done)); return -EIO; } } return orig_len; } static int openconnect_gnutls_write(struct openconnect_info *vpninfo, char *buf, size_t len) { return _openconnect_gnutls_write(vpninfo->https_sess, vpninfo->ssl_fd, vpninfo, buf, len); } int openconnect_dtls_write(struct openconnect_info *vpninfo, void *buf, size_t len) { return _openconnect_gnutls_write(vpninfo->dtls_ssl, vpninfo->dtls_fd, vpninfo, buf, len); } static int _openconnect_gnutls_read(gnutls_session_t ses, int fd, struct openconnect_info *vpninfo, char *buf, size_t len, unsigned ms) { int done, ret; struct timeval timeout, *tv = NULL; if (ms) { timeout.tv_sec = ms/1000; timeout.tv_usec = (ms%1000)*1000; tv = &timeout; } while ((done = gnutls_record_recv(ses, buf, len)) < 0) { if (done == GNUTLS_E_AGAIN || done == GNUTLS_E_INTERRUPTED) { /* Wait for something to happen on the socket, or on cmd_fd */ fd_set wr_set, rd_set; int maxfd = fd; FD_ZERO(&wr_set); FD_ZERO(&rd_set); if (gnutls_record_get_direction(ses)) FD_SET(fd, &wr_set); else FD_SET(fd, &rd_set); cmd_fd_set(vpninfo, &rd_set, &maxfd); ret = select(maxfd + 1, &rd_set, &wr_set, NULL, tv); if (is_cancel_pending(vpninfo, &rd_set)) { vpn_progress(vpninfo, PRG_ERR, _("SSL read cancelled\n")); done = -EINTR; goto cleanup; } if (ret == 0) { done = -ETIMEDOUT; goto cleanup; } } else if (done == GNUTLS_E_PREMATURE_TERMINATION) { /* We've seen this with HTTP 1.0 responses followed by abrupt socket closure and no clean SSL shutdown. https://bugs.launchpad.net/bugs/1225276 */ vpn_progress(vpninfo, PRG_DEBUG, _("SSL socket closed uncleanly\n")); done = 0; goto cleanup; } else if (done == GNUTLS_E_REHANDSHAKE) { int ret = cstp_handshake(vpninfo, 0); if (ret) { done = ret; goto cleanup; } } else { vpn_progress(vpninfo, PRG_ERR, _("Failed to read from SSL socket: %s\n"), gnutls_strerror(done)); if (done == GNUTLS_E_TIMEDOUT) { done = -ETIMEDOUT; goto cleanup; } else { done = -EIO; goto cleanup; } } } cleanup: return done; } static int openconnect_gnutls_read(struct openconnect_info *vpninfo, char *buf, size_t len) { return _openconnect_gnutls_read(vpninfo->https_sess, vpninfo->ssl_fd, vpninfo, buf, len, 0); } int openconnect_dtls_read(struct openconnect_info *vpninfo, void *buf, size_t len, unsigned ms) { return _openconnect_gnutls_read(vpninfo->dtls_ssl, vpninfo->dtls_fd, vpninfo, buf, len, ms); } static int openconnect_gnutls_gets(struct openconnect_info *vpninfo, char *buf, size_t len) { int i = 0; int ret; if (len < 2) return -EINVAL; while (1) { ret = gnutls_record_recv(vpninfo->https_sess, buf + i, 1); if (ret == 1) { if (buf[i] == '\n') { buf[i] = 0; if (i && buf[i-1] == '\r') { buf[i-1] = 0; i--; } return i; } i++; if (i >= len - 1) { buf[i] = 0; return i; } } else if (ret == GNUTLS_E_AGAIN || ret == GNUTLS_E_INTERRUPTED) { /* Wait for something to happen on the socket, or on cmd_fd */ fd_set rd_set, wr_set; int maxfd = vpninfo->ssl_fd; FD_ZERO(&rd_set); FD_ZERO(&wr_set); if (gnutls_record_get_direction(vpninfo->https_sess)) FD_SET(vpninfo->ssl_fd, &wr_set); else FD_SET(vpninfo->ssl_fd, &rd_set); cmd_fd_set(vpninfo, &rd_set, &maxfd); select(maxfd + 1, &rd_set, &wr_set, NULL, NULL); if (is_cancel_pending(vpninfo, &rd_set)) { vpn_progress(vpninfo, PRG_ERR, _("SSL read cancelled\n")); ret = -EINTR; break; } } else if (ret == GNUTLS_E_REHANDSHAKE) { ret = cstp_handshake(vpninfo, 0); if (ret) return ret; } else { vpn_progress(vpninfo, PRG_ERR, _("Failed to read from SSL socket: %s\n"), gnutls_strerror(ret)); ret = -EIO; break; } } buf[i] = 0; return i ?: ret; } int ssl_nonblock_read(struct openconnect_info *vpninfo, void *buf, int maxlen) { int ret; ret = gnutls_record_recv(vpninfo->https_sess, buf, maxlen); if (ret > 0) return ret; if (ret != GNUTLS_E_AGAIN && ret != GNUTLS_E_INTERRUPTED) { vpn_progress(vpninfo, PRG_ERR, _("SSL read error: %s; reconnecting.\n"), gnutls_strerror(ret)); return -EIO; } return 0; } int ssl_nonblock_write(struct openconnect_info *vpninfo, void *buf, int buflen) { int ret; ret = gnutls_record_send(vpninfo->https_sess, buf, buflen); if (ret > 0) return ret; if (ret == GNUTLS_E_AGAIN || ret == GNUTLS_E_INTERRUPTED) { /* * Before 3.3.13, GnuTLS could return zero instead of one, * indicating that it was waiting for a read when in fact * it was waiting for a write. That caused us to block for * ever, waiting for the read that it said it wanted. * * So instead, just *assume* it actually wants a write. * Which is true most of the time, and on the rare occasion * that it *isn't* true, the failure mode will just be that * we keep waking up and calling GnuTLS again until the read * that it's waiting for does arrive. */ if (GNUTLS_VERSION_NUMBER < 0x03030d || gnutls_record_get_direction(vpninfo->https_sess)) { /* Waiting for the socket to become writable — it's probably stalled, and/or the buffers are full */ monitor_write_fd(vpninfo, ssl); } return 0; } vpn_progress(vpninfo, PRG_ERR, _("SSL send failed: %s\n"), gnutls_strerror(ret)); return -1; } static int check_certificate_expiry(struct openconnect_info *vpninfo, gnutls_x509_crt_t cert) { const char *reason = NULL; time_t expires = gnutls_x509_crt_get_expiration_time(cert); time_t now = time(NULL); if (expires == -1) { vpn_progress(vpninfo, PRG_ERR, _("Could not extract expiration time of certificate\n")); return -EINVAL; } if (expires < now) reason = _("Client certificate has expired at"); else if (expires < now + vpninfo->cert_expire_warning) reason = _("Client certificate expires soon at"); if (reason) { char buf[80]; #ifdef _WIN32 /* * Windows doesn't have gmtime_r but apparently its gmtime() * *is* thread-safe because it uses a per-thread static buffer. * cf. http://sourceforge.net/p/mingw/bugs/1625/ * * We also explicitly say 'GMT' because %Z would give us the * Microsoft stupidity "GMT Standard Time". Which is not only * silly, but also ambiguous because Windows actually says that * even when it means British Summer Time (GMT+1). And having * used gmtime() we really *are* giving the time in GMT. */ struct tm *tm = gmtime(&expires); strftime(buf, 80, "%a, %d %b %Y %H:%M:%S GMT", tm); #else struct tm tm; gmtime_r(&expires, &tm); strftime(buf, 80, "%a, %d %b %Y %T %Z", &tm); #endif vpn_progress(vpninfo, PRG_ERR, "%s: %s\n", reason, buf); } return 0; } static int load_datum(struct openconnect_info *vpninfo, gnutls_datum_t *datum, const char *fname) { struct stat st; int fd, err; #ifdef ANDROID_KEYSTORE if (!strncmp(fname, "keystore:", 9)) { int len; const char *p = fname + 9; /* Skip first two slashes if the user has given it as keystore://foo ... */ if (*p == '/') p++; if (*p == '/') p++; len = keystore_fetch(p, &datum->data); if (len <= 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to load item '%s' from keystore: %s\n"), p, keystore_strerror(len)); return -EINVAL; } datum->size = len; return 0; } #endif /* ANDROID_KEYSTORE */ fd = openconnect_open_utf8(vpninfo, fname, O_RDONLY|O_CLOEXEC|O_BINARY); if (fd == -1) { err = errno; vpn_progress(vpninfo, PRG_ERR, _("Failed to open key/certificate file %s: %s\n"), fname, strerror(err)); return -ENOENT; } if (fstat(fd, &st)) { err = errno; vpn_progress(vpninfo, PRG_ERR, _("Failed to stat key/certificate file %s: %s\n"), fname, strerror(err)); close(fd); return -EIO; } datum->size = st.st_size; datum->data = gnutls_malloc(st.st_size + 1); if (!datum->data) { vpn_progress(vpninfo, PRG_ERR, _("Failed to allocate certificate buffer\n")); close(fd); return -ENOMEM; } errno = EAGAIN; if (read(fd, datum->data, datum->size) != datum->size) { err = errno; vpn_progress(vpninfo, PRG_ERR, _("Failed to read certificate into memory: %s\n"), strerror(err)); close(fd); gnutls_free(datum->data); return -EIO; } datum->data[st.st_size] = 0; close(fd); return 0; } /* A non-zero, non-error return to make load_certificate() continue and interpreting the file as other types */ #define NOT_PKCS12 1 static int load_pkcs12_certificate(struct openconnect_info *vpninfo, gnutls_datum_t *datum, gnutls_x509_privkey_t *key, gnutls_x509_crt_t **chain, unsigned int *chain_len, gnutls_x509_crt_t **extra_certs, unsigned int *extra_certs_len, gnutls_x509_crl_t *crl) { gnutls_pkcs12_t p12; char *pass; int err; err = gnutls_pkcs12_init(&p12); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to setup PKCS#12 data structure: %s\n"), gnutls_strerror(err)); return -EIO; } err = gnutls_pkcs12_import(p12, datum, GNUTLS_X509_FMT_DER, 0); if (err) { gnutls_pkcs12_deinit(p12); return NOT_PKCS12; } pass = vpninfo->cert_password; while ((err = gnutls_pkcs12_verify_mac(p12, pass)) == GNUTLS_E_MAC_VERIFY_FAILED) { if (!pass) { /* OpenSSL's PKCS12_parse() code will try both NULL and "" automatically, * but GnuTLS requires two separate attempts. */ err = gnutls_pkcs12_verify_mac(p12, ""); if (!err) { pass = strdup(""); break; } } else vpn_progress(vpninfo, PRG_ERR, _("Failed to decrypt PKCS#12 certificate file\n")); free_pass(&pass); vpninfo->cert_password = NULL; err = request_passphrase(vpninfo, "openconnect_pkcs12", &pass, _("Enter PKCS#12 pass phrase:")); if (err) { gnutls_pkcs12_deinit(p12); return -EINVAL; } } /* If it wasn't GNUTLS_E_MAC_VERIFY_FAILED, then the problem wasn't just a bad password. Give up. */ if (err) { int level = PRG_ERR; int ret = -EINVAL; gnutls_pkcs12_deinit(p12); /* If the first attempt, and we didn't know for sure it was PKCS#12 anyway, bail out and try loading it as something different. */ if (pass == vpninfo->cert_password) { /* Make it non-fatal... */ level = PRG_DEBUG; ret = NOT_PKCS12; } vpn_progress(vpninfo, level, _("Failed to process PKCS#12 file: %s\n"), gnutls_strerror(err)); return ret; } err = gnutls_pkcs12_simple_parse(p12, pass, key, chain, chain_len, extra_certs, extra_certs_len, crl, 0); free_pass(&pass); vpninfo->cert_password = NULL; gnutls_pkcs12_deinit(p12); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to load PKCS#12 certificate: %s\n"), gnutls_strerror(err)); return -EINVAL; } return 0; } /* Older versions of GnuTLS didn't actually bother to check this, so we'll do it for them. Is there a bug reference for this? Or just the git commit reference (c1ef7efb in master, 5196786c in gnutls_3_0_x-2)? */ static int check_issuer_sanity(gnutls_x509_crt_t cert, gnutls_x509_crt_t issuer) { #if GNUTLS_VERSION_NUMBER > 0x030014 return 0; #else unsigned char id1[512], id2[512]; size_t id1_size = 512, id2_size = 512; int err; err = gnutls_x509_crt_get_authority_key_id(cert, id1, &id1_size, NULL); if (err) return 0; err = gnutls_x509_crt_get_subject_key_id(issuer, id2, &id2_size, NULL); if (err) return 0; if (id1_size == id2_size && !memcmp(id1, id2, id1_size)) return 0; /* EEP! */ return -EIO; #endif } static int count_x509_certificates(gnutls_datum_t *datum) { int count = 0; char *p = (char *)datum->data; while (p) { p = strstr(p, "-----BEGIN "); if (!p) break; p += 11; if (!strncmp(p, "CERTIFICATE", 11) || !strncmp(p, "X509 CERTIFICATE", 16)) count++; } return count; } static int get_cert_name(gnutls_x509_crt_t cert, char *name, size_t namelen) { if (gnutls_x509_crt_get_dn_by_oid(cert, GNUTLS_OID_X520_COMMON_NAME, 0, 0, name, &namelen) && gnutls_x509_crt_get_dn(cert, name, &namelen)) { name[namelen-1] = 0; snprintf(name, namelen-1, ""); return -EINVAL; } return 0; } #if defined(HAVE_P11KIT) || defined(HAVE_TROUSERS) || defined(HAVE_TSS2) || defined (HAVE_GNUTLS_SYSTEM_KEYS) /* We have to convert the array of X509 certificates to gnutls_pcert_st for ourselves. There's no function that takes a gnutls_privkey_t as the key and gnutls_x509_crt_t certificates. */ static int assign_privkey(struct openconnect_info *vpninfo, gnutls_privkey_t pkey, gnutls_x509_crt_t *certs, unsigned int nr_certs, uint8_t *free_certs) { gnutls_pcert_st *pcerts = calloc(nr_certs, sizeof(*pcerts)); int i, err; if (!pcerts) return GNUTLS_E_MEMORY_ERROR; for (i = 0 ; i < nr_certs; i++) { err = gnutls_pcert_import_x509(pcerts + i, certs[i], 0); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Importing X509 certificate failed: %s\n"), gnutls_strerror(err)); goto free_pcerts; } } err = gnutls_certificate_set_key(vpninfo->https_cred, NULL, 0, pcerts, nr_certs, pkey); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Setting PKCS#11 certificate failed: %s\n"), gnutls_strerror(err)); free_pcerts: for (i = 0 ; i < nr_certs; i++) gnutls_pcert_deinit(pcerts + i); free(pcerts); } return err; } static int verify_signed_data(gnutls_pubkey_t pubkey, gnutls_privkey_t privkey, const gnutls_datum_t *data, const gnutls_datum_t *sig) { gnutls_sign_algorithm_t algo; algo = gnutls_pk_to_sign(gnutls_privkey_get_pk_algorithm(privkey, NULL), GNUTLS_DIG_SHA1); return gnutls_pubkey_verify_data2(pubkey, algo, 0, data, sig); } #endif /* (P11KIT || TROUSERS || TSS2 || SYSTEM_KEYS) */ static int openssl_hash_password(struct openconnect_info *vpninfo, char *pass, gnutls_datum_t *key, gnutls_datum_t *salt) { unsigned char md5[16]; gnutls_hash_hd_t hash; int count = 0; int err; while (count < key->size) { err = gnutls_hash_init(&hash, GNUTLS_DIG_MD5); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Could not initialise MD5 hash: %s\n"), gnutls_strerror(err)); return -EIO; } if (count) { err = gnutls_hash(hash, md5, sizeof(md5)); if (err) { hash_err: gnutls_hash_deinit(hash, NULL); vpn_progress(vpninfo, PRG_ERR, _("MD5 hash error: %s\n"), gnutls_strerror(err)); return -EIO; } } if (pass) { err = gnutls_hash(hash, pass, strlen(pass)); if (err) goto hash_err; } /* We only use the first 8 bytes of the salt for this */ err = gnutls_hash(hash, salt->data, 8); if (err) goto hash_err; gnutls_hash_deinit(hash, md5); if (key->size - count <= sizeof(md5)) { memcpy(&key->data[count], md5, key->size - count); break; } memcpy(&key->data[count], md5, sizeof(md5)); count += sizeof(md5); } return 0; } static int import_openssl_pem(struct openconnect_info *vpninfo, gnutls_x509_privkey_t key, char type, char *pem_header, size_t pem_size) { gnutls_cipher_hd_t handle; gnutls_cipher_algorithm_t cipher; gnutls_datum_t constructed_pem; gnutls_datum_t b64_data; gnutls_datum_t salt, enc_key; unsigned char *key_data; const char *begin; char *pass, *p; char *pem_start = pem_header; int ret, err, i; if (type == 'E') begin = "EC PRIVATE KEY"; else if (type == 'R') begin = "RSA PRIVATE KEY"; else if (type == 'D') begin = "DSA PRIVATE KEY"; else return -EINVAL; while (*pem_header == '\r' || *pem_header == '\n') pem_header++; if (strncmp(pem_header, "DEK-Info: ", 10)) { vpn_progress(vpninfo, PRG_ERR, _("Missing DEK-Info: header from OpenSSL encrypted key\n")); return -EIO; } pem_header += 10; p = strchr(pem_header, ','); if (!p) { vpn_progress(vpninfo, PRG_ERR, _("Cannot determine PEM encryption type\n")); return -EINVAL; } *p = 0; cipher = gnutls_cipher_get_id(pem_header); /* GnuTLS calls this '3DES-CBC' but all other names match */ if (cipher == GNUTLS_CIPHER_UNKNOWN && !strcmp(pem_header, "DES-EDE3-CBC")) cipher = GNUTLS_CIPHER_3DES_CBC; if (cipher == GNUTLS_CIPHER_UNKNOWN) { vpn_progress(vpninfo, PRG_ERR, _("Unsupported PEM encryption type: %s\n"), pem_header); return -EINVAL; } pem_header = p + 1; /* No supported algorithms have an IV larger than this, and dynamically allocating it would be painful. */ salt.size = 64; salt.data = malloc(salt.size); if (!salt.data) return -ENOMEM; for (i = 0; i < salt.size * 2; i++) { unsigned char x; char *c = &pem_header[i]; if (*c >= '0' && *c <= '9') x = (*c) - '0'; else if (*c >= 'A' && *c <= 'F') x = (*c) - 'A' + 10; else if ((*c == '\r' || *c == '\n') && i >= 16 && !(i % 16)) { salt.size = i / 2; break; } else { vpn_progress(vpninfo, PRG_ERR, _("Invalid salt in encrypted PEM file\n")); ret = -EINVAL; goto out_salt; } if (i & 1) salt.data[i/2] |= x; else salt.data[i/2] = x << 4; } pem_header += salt.size * 2; if (*pem_header != '\r' && *pem_header != '\n') { vpn_progress(vpninfo, PRG_ERR, _("Invalid salt in encrypted PEM file\n")); ret = -EINVAL; goto out_salt; } while (*pem_header == '\n' || *pem_header == '\r') pem_header++; /* pem_header should now point to the start of the base64 content. Put a -----BEGIN banner in place before it, so that we can use gnutls_pem_base64_decode_alloc(). The banner has to match the -----END banner, so make sure we get it right... */ pem_header -= 6; memcpy(pem_header, "-----\n", 6); pem_header -= strlen(begin); memcpy(pem_header, begin, strlen(begin)); pem_header -= 11; memcpy(pem_header, "-----BEGIN ", 11); constructed_pem.data = (void *)pem_header; constructed_pem.size = pem_size - (pem_header - pem_start); err = gnutls_pem_base64_decode_alloc(begin, &constructed_pem, &b64_data); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Error base64-decoding encrypted PEM file: %s\n"), gnutls_strerror(err)); ret = -EINVAL; goto out_salt; } if (b64_data.size < 16) { /* Just to be sure our parsing is OK */ vpn_progress(vpninfo, PRG_ERR, _("Encrypted PEM file too short\n")); ret = -EINVAL; goto out_b64; } ret = -ENOMEM; enc_key.size = gnutls_cipher_get_key_size(cipher); enc_key.data = malloc(enc_key.size); if (!enc_key.data) goto out_b64; key_data = malloc(b64_data.size); if (!key_data) goto out_enc_key; pass = vpninfo->cert_password; vpninfo->cert_password = NULL; while (1) { memcpy(key_data, b64_data.data, b64_data.size); ret = openssl_hash_password(vpninfo, pass, &enc_key, &salt); if (ret) goto out; err = gnutls_cipher_init(&handle, cipher, &enc_key, &salt); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to initialise cipher for decrypting PEM file: %s\n"), gnutls_strerror(err)); gnutls_cipher_deinit(handle); ret = -EIO; goto out; } err = gnutls_cipher_decrypt(handle, key_data, b64_data.size); gnutls_cipher_deinit(handle); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to decrypt PEM key: %s\n"), gnutls_strerror(err)); ret = -EIO; goto out; } /* We have to strip any padding for GnuTLS to accept it. So a bit more ASN.1 parsing for us. FIXME: Consolidate with similar code in gnutls_tpm.c */ if (key_data[0] == 0x30) { gnutls_datum_t key_datum; int blocksize = gnutls_cipher_get_block_size(cipher); int keylen = key_data[1]; int ofs = 2; if (keylen & 0x80) { int lenlen = keylen & 0x7f; keylen = 0; if (lenlen > 3) goto fail; while (lenlen) { keylen <<= 8; keylen |= key_data[ofs++]; lenlen--; } } keylen += ofs; /* If there appears to be more or less padding than required, fail */ if (b64_data.size - keylen > blocksize || b64_data.size < keylen + 1) goto fail; /* If the padding bytes aren't all equal to the amount of padding, fail */ ofs = keylen; while (ofs < b64_data.size) { if (key_data[ofs] != b64_data.size - keylen) goto fail; ofs++; } key_datum.data = key_data; key_datum.size = keylen; err = gnutls_x509_privkey_import(key, &key_datum, GNUTLS_X509_FMT_DER); if (!err) { ret = 0; goto out; } } fail: if (pass) { vpn_progress(vpninfo, PRG_ERR, _("Decrypting PEM key failed\n")); free_pass(&pass); } err = request_passphrase(vpninfo, "openconnect_pem", &pass, _("Enter PEM pass phrase:")); if (err) { ret = -EINVAL; goto out; } } out: free(key_data); free_pass(&pass); out_enc_key: free(enc_key.data); out_b64: free(b64_data.data); out_salt: free(salt.data); return ret; } static int load_certificate(struct openconnect_info *vpninfo) { gnutls_datum_t fdata; gnutls_x509_privkey_t key = NULL; #if defined(HAVE_P11KIT) || defined(HAVE_TROUSERS) || defined(HAVE_TSS2) || defined(HAVE_GNUTLS_SYSTEM_KEYS) gnutls_privkey_t pkey = NULL; gnutls_datum_t pkey_sig = {NULL, 0}; void *dummy_hash_data = &load_certificate; #endif #if defined(HAVE_P11KIT) || defined(HAVE_GNUTLS_SYSTEM_KEYS) char *cert_url = (char *)vpninfo->cert; #endif #ifdef HAVE_P11KIT char *key_url = (char *)vpninfo->sslkey; gnutls_pkcs11_privkey_t p11key = NULL; #endif char *pem_header; gnutls_x509_crl_t crl = NULL; gnutls_x509_crt_t last_cert, cert = NULL; gnutls_x509_crt_t *extra_certs = NULL, *supporting_certs = NULL; unsigned int nr_supporting_certs = 0, nr_extra_certs = 0; uint8_t *free_supporting_certs = NULL; int err; /* GnuTLS error */ int ret; int i; int cert_is_p11 = 0, key_is_p11 = 0; int cert_is_sys = 0, key_is_sys = 0; unsigned char key_id[20]; size_t key_id_size = sizeof(key_id); char name[80]; fdata.data = NULL; key_is_p11 = !strncmp(vpninfo->sslkey, "pkcs11:", 7); cert_is_p11 = !strncmp(vpninfo->cert, "pkcs11:", 7); /* GnuTLS returns true for pkcs11:, tpmkey:, system:, and custom URLs. */ key_is_sys = !key_is_p11 && gnutls_url_is_supported(vpninfo->sslkey); cert_is_sys = !cert_is_p11 && gnutls_url_is_supported(vpninfo->cert); #ifndef HAVE_GNUTLS_SYSTEM_KEYS if (key_is_sys || cert_is_sys) { vpn_progress(vpninfo, PRG_ERR, _("This binary built without system key support\n")); return -EINVAL; } #endif #ifndef HAVE_P11KIT if (key_is_p11 || cert_is_p11) { vpn_progress(vpninfo, PRG_ERR, _("This binary built without PKCS#11 support\n")); return -EINVAL; } #else /* Install PIN handler if either certificate or key are coming from PKCS#11 */ if (key_is_p11 || cert_is_p11) { CK_OBJECT_CLASS class; CK_ATTRIBUTE attr; P11KitUri *uri; uri = p11_kit_uri_new(); attr.type = CKA_CLASS; attr.pValue = &class; attr.ulValueLen = sizeof(class); /* Add appropriate pin-source and object-type attributes to both certificate and key URLs, unless they already exist. */ if (cert_is_p11 && !p11_kit_uri_parse(cert_url, P11_KIT_URI_FOR_ANY, uri)) { if (!p11_kit_uri_get_attribute(uri, CKA_CLASS)) { class = CKO_CERTIFICATE; p11_kit_uri_set_attribute(uri, &attr); } p11_kit_uri_format(uri, P11_KIT_URI_FOR_ANY, &cert_url); } if (key_is_p11 && !p11_kit_uri_parse(key_url, P11_KIT_URI_FOR_ANY, uri)) { if (vpninfo->sslkey == vpninfo->cert || !p11_kit_uri_get_attribute(uri, CKA_CLASS)) { class = CKO_PRIVATE_KEY; p11_kit_uri_set_attribute(uri, &attr); } p11_kit_uri_format(uri, P11_KIT_URI_FOR_ANY, &key_url); } p11_kit_uri_free(uri); } #endif /* HAVE_PKCS11 */ #if defined (HAVE_P11KIT) || defined(HAVE_GNUTLS_SYSTEM_KEYS) /* Load certificate(s) first... */ if (cert_is_p11 || cert_is_sys) { vpn_progress(vpninfo, PRG_DEBUG, cert_is_p11 ? _("Using PKCS#11 certificate %s\n") : _("Using system certificate %s\n"), cert_url); err = gnutls_x509_crt_init(&cert); if (err) { ret = -ENOMEM; goto out; } gnutls_x509_crt_set_pin_function(cert, gnutls_pin_callback, vpninfo); /* Yes, even for *system* URLs the only API GnuTLS offers us is ...import_pkcs11_url(). */ err = gnutls_x509_crt_import_pkcs11_url(cert, cert_url, 0); if (err == GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE) err = gnutls_x509_crt_import_pkcs11_url(cert, cert_url, GNUTLS_PKCS11_OBJ_FLAG_LOGIN); if (err) { vpn_progress(vpninfo, PRG_ERR, cert_is_p11 ? _("Error loading certificate from PKCS#11: %s\n") : _("Error loading system certificate: %s\n"), gnutls_strerror(err)); ret = -EIO; goto out; } goto got_certs; } #endif /* HAVE_P11KIT || HAVE_GNUTLS_SYSTEM_KEYS */ /* OK, not a PKCS#11 certificate so it must be coming from a file... */ vpn_progress(vpninfo, PRG_DEBUG, _("Using certificate file %s\n"), vpninfo->cert); /* Load file contents */ ret = load_datum(vpninfo, &fdata, vpninfo->cert); if (ret) return ret; /* Is it PKCS#12? */ if (!key_is_p11) { /* PKCS#12 should actually contain certificates *and* private key */ ret = load_pkcs12_certificate(vpninfo, &fdata, &key, &supporting_certs, &nr_supporting_certs, &extra_certs, &nr_extra_certs, &crl); if (ret < 0) goto out; else if (!ret) { if (nr_supporting_certs) { cert = supporting_certs[0]; free_supporting_certs = gnutls_malloc(nr_supporting_certs); if (!free_supporting_certs) { ret = -ENOMEM; goto out; } memset(free_supporting_certs, 1, nr_supporting_certs); goto got_key; } vpn_progress(vpninfo, PRG_ERR, _("PKCS#11 file contained no certificate\n")); ret = -EINVAL; goto out; } /* It returned NOT_PKCS12. Fall through to try PEM formats. */ } /* We need to know how many there are in *advance*; it won't just allocate the array for us :( */ nr_extra_certs = count_x509_certificates(&fdata); if (!nr_extra_certs) nr_extra_certs = 1; /* wtf? Oh well, we'll fail later... */ extra_certs = calloc(nr_extra_certs, sizeof(cert)); if (!extra_certs) { nr_extra_certs = 0; ret = -ENOMEM; goto out; } err = gnutls_x509_crt_list_import(extra_certs, &nr_extra_certs, &fdata, GNUTLS_X509_FMT_PEM, 0); if (err <= 0) { const char *reason; if (!err || err == GNUTLS_E_NO_CERTIFICATE_FOUND) reason = _("No certificate found in file"); else reason = gnutls_strerror(err); vpn_progress(vpninfo, PRG_ERR, _("Loading certificate failed: %s\n"), reason); nr_extra_certs = 0; ret = -EINVAL; goto out; } nr_extra_certs = err; err = 0; goto got_certs; got_certs: /* Now we have either a single certificate in 'cert', or an array of them in extra_certs[]. Next we look for the private key ... */ #ifdef HAVE_GNUTLS_SYSTEM_KEYS if (key_is_sys) { vpn_progress(vpninfo, PRG_DEBUG, _("Using system key %s\n"), vpninfo->sslkey); err = gnutls_privkey_init(&pkey); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Error initialising private key structure: %s\n"), gnutls_strerror(err)); ret = -EIO; goto out; } gnutls_privkey_set_pin_function(pkey, gnutls_pin_callback, vpninfo); err = gnutls_privkey_import_url(pkey, vpninfo->sslkey, 0); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Error importing system key %s: %s\n"), vpninfo->sslkey, gnutls_strerror(err)); ret = -EIO; goto out; } goto match_cert; } #endif /* HAVE_GNUTLS_SYSTEM_KEYS */ #if defined(HAVE_P11KIT) if (key_is_p11) { vpn_progress(vpninfo, PRG_TRACE, _("Trying PKCS#11 key URL %s\n"), key_url); err = gnutls_pkcs11_privkey_init(&p11key); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Error initialising PKCS#11 key structure: %s\n"), gnutls_strerror(err)); ret = -EIO; goto out; } gnutls_pkcs11_privkey_set_pin_function(p11key, gnutls_pin_callback, vpninfo); err = gnutls_pkcs11_privkey_import_url(p11key, key_url, 0); /* Annoyingly, some tokens don't even admit the *existence* of the key until they're logged in. And thus a search doesn't work unless it specifies the *token* too. But if the URI for key and cert are the same, and the cert was found, then we can work out what token the *cert* was found in and try that before we give up... */ if (err == GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE && vpninfo->cert == vpninfo->sslkey) { gnutls_pkcs11_obj_t crt; P11KitUri *uri; CK_TOKEN_INFO *token; char buf[65]; size_t s; if (gnutls_pkcs11_obj_init(&crt)) goto key_err; if (gnutls_pkcs11_obj_import_url(crt, cert_url, 0)) goto key_err_obj; uri = p11_kit_uri_new(); if (!uri) goto key_err_obj; if (p11_kit_uri_parse(key_url, P11_KIT_URI_FOR_ANY, uri)) goto key_err_uri; token = p11_kit_uri_get_token_info(uri); if (!token) goto key_err_uri; if (!token->label[0]) { s = sizeof(token->label) + 1; if (!gnutls_pkcs11_obj_get_info(crt, GNUTLS_PKCS11_OBJ_TOKEN_LABEL, buf, &s)) { if (!gtls_ver(3,6,0)) s--; memcpy(token->label, buf, s); memset(token->label + s, ' ', sizeof(token->label) - s); } } if (!token->manufacturerID[0]) { s = sizeof(token->manufacturerID) + 1; if (!gnutls_pkcs11_obj_get_info(crt, GNUTLS_PKCS11_OBJ_TOKEN_MANUFACTURER, buf, &s)) { if (!gtls_ver(3,6,0)) s--; memcpy(token->manufacturerID, buf, s); memset(token->manufacturerID + s, ' ', sizeof(token->manufacturerID) - s); } } if (!token->model[0]) { s = sizeof(token->model) + 1; if (!gnutls_pkcs11_obj_get_info(crt, GNUTLS_PKCS11_OBJ_TOKEN_MODEL, buf, &s)) { if (!gtls_ver(3,6,0)) s--; memcpy(token->model, buf, s); memset(token->model + s, ' ', sizeof(token->model) - s); } } if (!token->serialNumber[0]) { s = sizeof(token->serialNumber) + 1; if (!gnutls_pkcs11_obj_get_info(crt, GNUTLS_PKCS11_OBJ_TOKEN_SERIAL, buf, &s)) { if (!gtls_ver(3,6,0)) s--; memcpy(token->serialNumber, buf, s); memset(token->serialNumber + s, ' ', sizeof(token->serialNumber) - s); } } free(key_url); key_url = NULL; if (p11_kit_uri_format(uri, P11_KIT_URI_FOR_ANY, &key_url)) goto key_err_uri; vpn_progress(vpninfo, PRG_TRACE, _("Trying PKCS#11 key URL %s\n"), key_url); err = gnutls_pkcs11_privkey_import_url(p11key, key_url, 0); /* If it still doesn't work then try dropping CKA_LABEL and adding the CKA_ID of the cert. */ if (err == GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE && (p11_kit_uri_get_attribute(uri, CKA_LABEL) || !p11_kit_uri_get_attribute(uri, CKA_ID))) { CK_ATTRIBUTE attr; s = sizeof(buf); if (gnutls_pkcs11_obj_get_info(crt, GNUTLS_PKCS11_OBJ_ID, buf, &s)) goto key_err_uri; attr.type = CKA_ID; attr.pValue = buf; attr.ulValueLen = s; p11_kit_uri_set_attribute(uri, &attr); p11_kit_uri_clear_attribute(uri, CKA_LABEL); free(key_url); key_url = NULL; if (p11_kit_uri_format(uri, P11_KIT_URI_FOR_ANY, &key_url)) goto key_err_uri; vpn_progress(vpninfo, PRG_TRACE, _("Trying PKCS#11 key URL %s\n"), key_url); err = gnutls_pkcs11_privkey_import_url(p11key, key_url, 0); } key_err_uri: p11_kit_uri_free(uri); key_err_obj: gnutls_pkcs11_obj_deinit(crt); key_err: ; } if (err) { vpn_progress(vpninfo, PRG_ERR, _("Error importing PKCS#11 URL %s: %s\n"), key_url, gnutls_strerror(err)); gnutls_pkcs11_privkey_deinit(p11key); ret = -EIO; goto out; } vpn_progress(vpninfo, PRG_DEBUG, _("Using PKCS#11 key %s\n"), key_url); err = gnutls_privkey_init(&pkey); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Error initialising private key structure: %s\n"), gnutls_strerror(err)); gnutls_pkcs11_privkey_deinit(p11key); ret = -EIO; goto out; } err = gnutls_privkey_import_pkcs11(pkey, p11key, GNUTLS_PRIVKEY_IMPORT_AUTO_RELEASE); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Error importing PKCS#11 key into private key structure: %s\n"), gnutls_strerror(err)); gnutls_pkcs11_privkey_deinit(p11key); ret = -EIO; goto out; } goto match_cert; } #endif /* HAVE_P11KIT */ /* OK, not a PKCS#11 key so it must be coming from a file... load the file into memory, unless it's the same as the cert file and we already loaded that. */ if (!fdata.data || vpninfo->sslkey != vpninfo->cert) { gnutls_free(fdata.data); fdata.data = NULL; vpn_progress(vpninfo, PRG_DEBUG, _("Using private key file %s\n"), vpninfo->sslkey); ret = load_datum(vpninfo, &fdata, vpninfo->sslkey); if (ret) goto out; } /* Is it a PEM file with a TPM key blob? */ if (strstr((char *)fdata.data, "-----BEGIN TSS KEY BLOB-----")) { #ifndef HAVE_TROUSERS vpn_progress(vpninfo, PRG_ERR, _("This version of OpenConnect was built without TPM support\n")); return -EINVAL; #else ret = load_tpm1_key(vpninfo, &fdata, &pkey, &pkey_sig); if (ret) goto out; goto match_cert; #endif } /* Is it a PEM file with a TPM key blob? */ if (strstr((char *)fdata.data, "-----BEGIN TSS2 PRIVATE KEY-----") || strstr((char *)fdata.data, "-----BEGIN TSS2 KEY BLOB-----")) { #ifndef HAVE_TSS2 vpn_progress(vpninfo, PRG_ERR, _("This version of OpenConnect was built without TPM2 support\n")); return -EINVAL; #else ret = load_tpm2_key(vpninfo, &fdata, &pkey, &pkey_sig); if (ret) goto out; goto match_cert; #endif } /* OK, try other PEM files... */ gnutls_x509_privkey_init(&key); if ((pem_header = strstr((char *)fdata.data, "-----BEGIN RSA PRIVATE KEY-----")) || (pem_header = strstr((char *)fdata.data, "-----BEGIN DSA PRIVATE KEY-----")) || (pem_header = strstr((char *)fdata.data, "-----BEGIN EC PRIVATE KEY-----"))) { /* PKCS#1 files, including OpenSSL's odd encrypted version */ char type = pem_header[11]; char *p = strchr(pem_header, '\n'); if (!p) { vpn_progress(vpninfo, PRG_ERR, _("Failed to interpret PEM file\n")); ret = -EINVAL; goto out; } while (*p == '\n' || *p == '\r') p++; if (!strncmp(p, "Proc-Type: 4,ENCRYPTED", 22)) { p += 22; while (*p == '\n' || *p == '\r') p++; ret = import_openssl_pem(vpninfo, key, type, p, fdata.size - (p - (char *)fdata.data)); if (ret) goto out; } else { err = gnutls_x509_privkey_import(key, &fdata, GNUTLS_X509_FMT_PEM); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to load PKCS#1 private key: %s\n"), gnutls_strerror(err)); ret = -EINVAL; goto out; } } } else if (strstr((char *)fdata.data, "-----BEGIN PRIVATE KEY-----")) { /* Unencrypted PKCS#8 */ err = gnutls_x509_privkey_import_pkcs8(key, &fdata, GNUTLS_X509_FMT_PEM, NULL, GNUTLS_PKCS_PLAIN); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to load private key as PKCS#8: %s\n"), gnutls_strerror(err)); ret = -EINVAL; goto out; } } else if (strstr((char *)fdata.data, "-----BEGIN ENCRYPTED PRIVATE KEY-----")) { /* Encrypted PKCS#8 */ char *pass = vpninfo->cert_password; while ((err = gnutls_x509_privkey_import_pkcs8(key, &fdata, GNUTLS_X509_FMT_PEM, pass?:"", 0))) { if (err != GNUTLS_E_DECRYPTION_FAILED) { vpn_progress(vpninfo, PRG_ERR, _("Failed to load private key as PKCS#8: %s\n"), gnutls_strerror(err)); ret = -EINVAL; goto out; } vpninfo->cert_password = NULL; if (pass) { vpn_progress(vpninfo, PRG_ERR, _("Failed to decrypt PKCS#8 certificate file\n")); free_pass(&pass); } err = request_passphrase(vpninfo, "openconnect_pem", &pass, _("Enter PEM pass phrase:")); if (err) { ret = -EINVAL; goto out; } } free_pass(&pass); vpninfo->cert_password = NULL; } else if (!gnutls_x509_privkey_import(key, &fdata, GNUTLS_X509_FMT_DER) || !gnutls_x509_privkey_import_pkcs8(key, &fdata, GNUTLS_X509_FMT_DER, NULL, GNUTLS_PKCS_PLAIN)) { /* Unencrypted DER (PKCS#1 or PKCS#8) */ } else { /* Last chance: try encrypted PKCS#8 DER. And give up if it's not that */ char *pass = vpninfo->cert_password; while ((err = gnutls_x509_privkey_import_pkcs8(key, &fdata, GNUTLS_X509_FMT_DER, pass?:"", 0))) { if (err != GNUTLS_E_DECRYPTION_FAILED) { vpn_progress(vpninfo, PRG_ERR, _("Failed to determine type of private key %s\n"), vpninfo->sslkey); ret = -EINVAL; goto out; } vpninfo->cert_password = NULL; if (pass) { vpn_progress(vpninfo, PRG_ERR, _("Failed to decrypt PKCS#8 certificate file\n")); free_pass(&pass); } err = request_passphrase(vpninfo, "openconnect_pem", &pass, _("Enter PKCS#8 pass phrase:")); if (err) { ret = -EINVAL; goto out; } } free_pass(&pass); vpninfo->cert_password = NULL; } /* Now attempt to make sure we use the *correct* certificate, to match the key. Since we have a software key, we can easily query it and compare its key_id with each certificate till we find a match. */ err = gnutls_x509_privkey_get_key_id(key, 0, key_id, &key_id_size); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to get key ID: %s\n"), gnutls_strerror(err)); ret = -EINVAL; goto out; } /* If extra_certs[] is NULL, we have one candidate in 'cert' to check. */ for (i = 0; i < (extra_certs ? nr_extra_certs : 1); i++) { unsigned char cert_id[20]; size_t cert_id_size = sizeof(cert_id); err = gnutls_x509_crt_get_key_id(extra_certs ? extra_certs[i] : cert, 0, cert_id, &cert_id_size); if (err) continue; if (cert_id_size == key_id_size && !memcmp(cert_id, key_id, key_id_size)) { if (extra_certs) { cert = extra_certs[i]; extra_certs[i] = NULL; } goto got_key; } } /* There's no pkey (there's an x509 key), so even if p11-kit or trousers is enabled we'll fall straight through the bit at match_cert: below, and go directly to the bit where it prints the 'no match found' error and exits. */ #if defined(HAVE_P11KIT) || defined(HAVE_TROUSERS) || defined(HAVE_TSS2) || defined(HAVE_GNUTLS_SYSTEM_KEYS) match_cert: /* If we have a privkey from PKCS#11 or TPM, we can't do the simple comparison of key ID that we do for software keys to find which certificate is a match. So sign some dummy data and then check the signature against each of the available certificates until we find the right one. */ if (pkey) { /* The TPM code may have already signed it, to test authorisation. We only sign here for PKCS#11 keys, in which case fdata might be empty too so point it at dummy data. */ if (!pkey_sig.data) { if (!fdata.data) { fdata.data = dummy_hash_data; fdata.size = 20; } err = gnutls_privkey_sign_data(pkey, GNUTLS_DIG_SHA1, 0, &fdata, &pkey_sig); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Error signing test data with private key: %s\n"), gnutls_strerror(err)); ret = -EINVAL; goto out; } } /* If extra_certs[] is NULL, we have one candidate in 'cert' to check. */ for (i = 0; i < (extra_certs ? nr_extra_certs : 1); i++) { gnutls_pubkey_t pubkey; gnutls_pubkey_init(&pubkey); err = gnutls_pubkey_import_x509(pubkey, extra_certs ? extra_certs[i] : cert, 0); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Error validating signature against certificate: %s\n"), gnutls_strerror(err)); /* We'll probably fail shortly if we don't find it. */ gnutls_pubkey_deinit(pubkey); continue; } err = verify_signed_data(pubkey, pkey, &fdata, &pkey_sig); gnutls_pubkey_deinit(pubkey); if (err >= 0) { if (extra_certs) { cert = extra_certs[i]; extra_certs[i] = NULL; } gnutls_free(pkey_sig.data); goto got_key; } } gnutls_free(pkey_sig.data); pkey_sig.data = NULL; } #endif /* P11KIT || TROUSERS || TSS2 || SYSTEM_KEYS */ /* We shouldn't reach this. It means that we didn't find *any* matching cert */ vpn_progress(vpninfo, PRG_ERR, _("No SSL certificate found to match private key\n")); ret = -EINVAL; goto out; /********************************************************************/ got_key: /* Now we have a key in either 'key' or 'pkey', a matching cert in 'cert', and potentially a list of other certs in 'extra_certs[]'. If we loaded a PKCS#12 file we may have a trust chain in 'supporting_certs[]' too. */ check_certificate_expiry(vpninfo, cert); get_cert_name(cert, name, sizeof(name)); get_cert_md5_fingerprint(vpninfo, cert, vpninfo->local_cert_md5); vpn_progress(vpninfo, PRG_INFO, _("Using client certificate '%s'\n"), name); if (crl) { err = gnutls_certificate_set_x509_crl(vpninfo->https_cred, &crl, 1); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Setting certificate revocation list failed: %s\n"), gnutls_strerror(err)); ret = -EINVAL; goto out; } } /* OpenSSL has problems with certificate chains — if there are multiple certs with the same name, it doesn't necessarily choose the _right_ one. (RT#1942) Pick the right ones for ourselves and add them manually. */ /* We may have already got a bunch of certs from PKCS#12 file. Remember how many need to be freed when we're done, since we'll expand the supporting_certs array with more from the cafile and extra_certs[] array if we can, and those extra certs must not be freed (twice). */ if (!nr_supporting_certs) { supporting_certs = gnutls_malloc(sizeof(*supporting_certs)); if (!supporting_certs) { vpn_progress(vpninfo, PRG_ERR, _("Failed to allocate memory for certificate\n")); ret = -ENOMEM; goto out; } supporting_certs[0] = cert; nr_supporting_certs = 1; free_supporting_certs = gnutls_malloc(1); if (!free_supporting_certs) { vpn_progress(vpninfo, PRG_ERR, _("Failed to allocate memory for certificate\n")); ret = -ENOMEM; goto out; } free_supporting_certs[0] = 1; } last_cert = supporting_certs[nr_supporting_certs-1]; while (1) { uint8_t free_issuer; gnutls_x509_crt_t issuer; void *tmp; for (i = 0; i < nr_extra_certs; i++) { if (extra_certs[i] && gnutls_x509_crt_check_issuer(last_cert, extra_certs[i]) && !check_issuer_sanity(last_cert, extra_certs[i])) break; } if (i < nr_extra_certs) { /* We found the next cert in the chain in extra_certs[] */ issuer = extra_certs[i]; extra_certs[i] = NULL; free_issuer = 1; } else { /* Look for it in the system trust cafile too. */ err = gnutls_certificate_get_issuer(vpninfo->https_cred, last_cert, &issuer, 0); /* The check_issuer_sanity() function works fine as a workaround where it was used above, but when gnutls_certificate_get_issuer() returns a bogus cert, there's nothing we can do to fix it up. We don't get to iterate over all the available certs like we can over our own list. */ if (!err && check_issuer_sanity(last_cert, issuer)) { vpn_progress(vpninfo, PRG_ERR, _("WARNING: GnuTLS returned incorrect issuer certs; authentication may fail!\n")); break; } free_issuer = 0; #ifdef HAVE_P11KIT if (err && cert_is_p11) { gnutls_datum_t t; err = gnutls_pkcs11_get_raw_issuer(cert_url, last_cert, &t, GNUTLS_X509_FMT_DER, 0); if (!err) { err = gnutls_x509_crt_init(&issuer); if (!err) { err = gnutls_x509_crt_import(issuer, &t, GNUTLS_X509_FMT_DER); if (err) gnutls_x509_crt_deinit(issuer); else free_issuer = 1; } gnutls_free(t.data); } if (err) { vpn_progress(vpninfo, PRG_TRACE, _("Got no issuer from PKCS#11\n")); } else { get_cert_name(issuer, name, sizeof(name)); vpn_progress(vpninfo, PRG_ERR, _("Got next CA '%s' from PKCS11\n"), name); } } #endif if (err) break; } if (gnutls_x509_crt_check_issuer(issuer, issuer)) { /* Don't actually include the root CA. If they don't already trust it, then handing it to them isn't going to help. But don't omit the original certificate if it's self-signed. */ if (free_issuer) gnutls_x509_crt_deinit(issuer); break; } /* OK, we found a new cert to add to our chain. */ tmp = supporting_certs; supporting_certs = gnutls_realloc(supporting_certs, sizeof(cert) * (nr_supporting_certs+1)); if (!supporting_certs) { supporting_certs = tmp; realloc_failed: vpn_progress(vpninfo, PRG_ERR, _("Failed to allocate memory for supporting certificates\n")); if (free_issuer) gnutls_x509_crt_deinit(issuer); break; } tmp = free_supporting_certs; free_supporting_certs = gnutls_realloc(free_supporting_certs, nr_supporting_certs+1); if (!free_supporting_certs) { free_supporting_certs = tmp; goto realloc_failed; } /* Append the new one */ supporting_certs[nr_supporting_certs] = issuer; free_supporting_certs[nr_supporting_certs] = free_issuer; nr_supporting_certs++; last_cert = issuer; } for (i = 1; i < nr_supporting_certs; i++) { get_cert_name(supporting_certs[i], name, sizeof(name)); vpn_progress(vpninfo, PRG_DEBUG, _("Adding supporting CA '%s'\n"), name); } /* OK, now we've checked the cert expiry and warned the user if it's going to expire soon, and we've built up as much of a trust chain in supporting_certs[] as we can find, to help the server work around OpenSSL RT#1942. Set up the GnuTLS credentials with the appropriate key and certs. GnuTLS makes us do this differently for X509 privkeys vs. TPM/PKCS#11 "generic" privkeys, and the latter is particularly 'fun' for GnuTLS 2.12... */ #if defined(HAVE_P11KIT) || defined(HAVE_TROUSERS) || defined(HAVE_TSS2) || defined(HAVE_GNUTLS_SYSTEM_KEYS) if (pkey) { #if GNUTLS_VERSION_NUMBER >= 0x030600 if (gnutls_privkey_get_pk_algorithm(pkey, NULL) == GNUTLS_PK_RSA) { /* * For hardware RSA keys, we need to check if they can cope with PSS. * If not, disable TLSv1.3 which would make PSS mandatory. * https://bugzilla.redhat.com/show_bug.cgi?id=1663058 */ err = gnutls_privkey_sign_data2(pkey, GNUTLS_SIGN_RSA_PSS_RSAE_SHA256, 0, &fdata, &pkey_sig); if (err) { vpn_progress(vpninfo, PRG_INFO, _("Private key appears not to support RSA-PSS. Disabling TLSv1.3\n")); vpninfo->no_tls13 = 1; } else { free(pkey_sig.data); pkey_sig.data = NULL; } } #endif err = assign_privkey(vpninfo, pkey, supporting_certs, nr_supporting_certs, free_supporting_certs); if (!err) { pkey = NULL; /* we gave it away, and potentially also some of extra_certs[] may have been zeroed. */ } } else #endif /* P11KIT || TROUSERS || TSS2 || SYSTEM_KEYS */ err = gnutls_certificate_set_x509_key(vpninfo->https_cred, supporting_certs, nr_supporting_certs, key); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Setting certificate failed: %s\n"), gnutls_strerror(err)); ret = -EIO; } else ret = 0; out: if (crl) gnutls_x509_crl_deinit(crl); if (key) gnutls_x509_privkey_deinit(key); if (supporting_certs) { for (i = 0; i < nr_supporting_certs; i++) { /* We get here in an error case with !free_supporting_certs and should free them all in that case */ if (!free_supporting_certs || free_supporting_certs[i]) gnutls_x509_crt_deinit(supporting_certs[i]); } gnutls_free(supporting_certs); gnutls_free(free_supporting_certs); } else if (cert) { /* Not if supporting_certs. It's supporting_certs[0] then and was already freed. */ gnutls_x509_crt_deinit(cert); } for (i = 0; i < nr_extra_certs; i++) { if (extra_certs[i]) gnutls_x509_crt_deinit(extra_certs[i]); } gnutls_free(extra_certs); #if defined(HAVE_P11KIT) || defined(HAVE_TROUSERS) || defined(HAVE_TSS2) || defined(HAVE_GNUTLS_SYSTEM_KEYS) if (pkey) gnutls_privkey_deinit(pkey); /* If we support arbitrary privkeys, we might have abused fdata.data just to point to something to hash. Don't free it in that case! */ if (fdata.data != dummy_hash_data) #endif gnutls_free(fdata.data); #ifdef HAVE_P11KIT /* This exists in the HAVE_GNUTLS_SYSTEM_KEYS case but will never change so it's OK not to add to the #ifdef mess here. */ if (cert_url != vpninfo->cert) free(cert_url); if (key_url != vpninfo->sslkey) free(key_url); #endif return ret; } static int get_cert_fingerprint(struct openconnect_info *vpninfo, gnutls_x509_crt_t cert, gnutls_digest_algorithm_t algo, char *buf) { unsigned char md[256]; size_t md_size = sizeof(md); unsigned int i; if (gnutls_x509_crt_get_fingerprint(cert, algo, md, &md_size)) return -EIO; for (i = 0; i < md_size; i++) sprintf(&buf[i*2], "%02X", md[i]); return 0; } int get_cert_md5_fingerprint(struct openconnect_info *vpninfo, void *cert, char *buf) { return get_cert_fingerprint(vpninfo, cert, GNUTLS_DIG_MD5, buf); } static int set_peer_cert_hash(struct openconnect_info *vpninfo) { size_t shalen; gnutls_pubkey_t pkey; gnutls_datum_t d; int err; err = gnutls_pubkey_init(&pkey); if (err) return err; err = gnutls_pubkey_import_x509(pkey, vpninfo->peer_cert, 0); if (!err) err = gnutls_pubkey_export2(pkey, GNUTLS_X509_FMT_DER, &d); gnutls_pubkey_deinit(pkey); if (err) return err; shalen = sizeof(vpninfo->peer_cert_sha256_raw); err = gnutls_fingerprint(GNUTLS_DIG_SHA256, &d, vpninfo->peer_cert_sha256_raw, &shalen); if (err) { gnutls_free(d.data); return err; } shalen = sizeof(vpninfo->peer_cert_sha1_raw); err = gnutls_fingerprint(GNUTLS_DIG_SHA1, &d, vpninfo->peer_cert_sha1_raw, &shalen); if (err) { gnutls_free(d.data); return err; } gnutls_free(d.data); return 0; } char *openconnect_get_peer_cert_details(struct openconnect_info *vpninfo) { gnutls_datum_t buf; if (gnutls_x509_crt_print(vpninfo->peer_cert, GNUTLS_CRT_PRINT_FULL, &buf)) return NULL; return (char *)buf.data; } int openconnect_get_peer_cert_DER(struct openconnect_info *vpninfo, unsigned char **buf) { size_t l = 0; unsigned char *ret = NULL; if (gnutls_x509_crt_export(vpninfo->peer_cert, GNUTLS_X509_FMT_DER, ret, &l) != GNUTLS_E_SHORT_MEMORY_BUFFER) return -EIO; ret = gnutls_malloc(l); if (!ret) return -ENOMEM; if (gnutls_x509_crt_export(vpninfo->peer_cert, GNUTLS_X509_FMT_DER, ret, &l)) { gnutls_free(ret); return -EIO; } *buf = ret; return l; } void openconnect_free_cert_info(struct openconnect_info *vpninfo, void *buf) { gnutls_free(buf); } int openconnect_get_peer_cert_chain(struct openconnect_info *vpninfo, struct oc_cert **chainp) { struct oc_cert *chain, *p; const gnutls_datum_t *cert_list = vpninfo->cert_list_handle; int i, cert_list_size = vpninfo->cert_list_size; if (!cert_list) return -EINVAL; if (cert_list_size <= 0) return -EIO; p = chain = calloc(cert_list_size, sizeof(struct oc_cert)); if (!chain) return -ENOMEM; for (i = 0; i < cert_list_size; i++, p++) { p->der_data = (unsigned char *)cert_list[i].data; p->der_len = cert_list[i].size; } *chainp = chain; return cert_list_size; } void openconnect_free_peer_cert_chain(struct openconnect_info *vpninfo, struct oc_cert *chain) { free(chain); } static int verify_peer(gnutls_session_t session) { struct openconnect_info *vpninfo = gnutls_session_get_ptr(session); const gnutls_datum_t *cert_list; gnutls_x509_crt_t cert; unsigned int status, cert_list_size; const char *reason = NULL; int err = 0; cert_list = gnutls_certificate_get_peers(session, &cert_list_size); if (!cert_list) { vpn_progress(vpninfo, PRG_ERR, _("Server presented no certificate\n")); return GNUTLS_E_CERTIFICATE_ERROR; } if (vpninfo->peer_cert) { unsigned char *prev_der = NULL; int der_len = openconnect_get_peer_cert_DER(vpninfo, &prev_der); if (der_len < 0) { vpn_progress(vpninfo, PRG_ERR, _("Error comparing server's cert on rehandshake: %s\n"), strerror(-der_len)); return GNUTLS_E_CERTIFICATE_ERROR; } if (cert_list[0].size != der_len || memcmp(cert_list[0].data, prev_der, der_len)) { vpn_progress(vpninfo, PRG_ERR, _("Server presented different cert on rehandshake\n")); gnutls_free(prev_der); return GNUTLS_E_CERTIFICATE_ERROR; } gnutls_free(prev_der); vpn_progress(vpninfo, PRG_TRACE, _("Server presented identical cert on rehandshake\n")); return 0; } err = gnutls_x509_crt_init(&cert); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Error initialising X509 cert structure\n")); return GNUTLS_E_CERTIFICATE_ERROR; } err = gnutls_x509_crt_import(cert, &cert_list[0], GNUTLS_X509_FMT_DER); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Error importing server's cert\n")); gnutls_x509_crt_deinit(cert); return GNUTLS_E_CERTIFICATE_ERROR; } vpninfo->peer_cert = cert; err = set_peer_cert_hash(vpninfo); if (err < 0) { vpn_progress(vpninfo, PRG_ERR, _("Could not calculate hash of server's certificate\n")); } err = gnutls_certificate_verify_peers2(session, &status); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Error checking server cert status\n")); return GNUTLS_E_CERTIFICATE_ERROR; } if (status & GNUTLS_CERT_REVOKED) reason = _("certificate revoked"); else if (status & GNUTLS_CERT_SIGNER_NOT_FOUND) reason = _("signer not found"); else if (status & GNUTLS_CERT_SIGNER_NOT_CA) reason = _("signer not a CA certificate"); else if (status & GNUTLS_CERT_INSECURE_ALGORITHM) reason = _("insecure algorithm"); else if (status & GNUTLS_CERT_NOT_ACTIVATED) reason = _("certificate not yet activated"); else if (status & GNUTLS_CERT_EXPIRED) reason = _("certificate expired"); else if (status & GNUTLS_CERT_INVALID) /* If this is set and no other reason, it apparently means that signature verification failed. Not entirely sure why we don't just set a bit for that too. */ reason = _("signature verification failed"); if (reason) goto done; if (!gnutls_x509_crt_check_hostname(cert, vpninfo->hostname)) { int i, ret; unsigned char addrbuf[sizeof(struct in6_addr)]; unsigned char certaddr[sizeof(struct in6_addr)]; size_t addrlen = 0, certaddrlen; /* gnutls_x509_crt_check_hostname() doesn't cope with IPv6 literals in URI form with surrounding [] so we must check for ourselves. */ if (vpninfo->hostname[0] == '[' && vpninfo->hostname[strlen(vpninfo->hostname)-1] == ']') { char *p = &vpninfo->hostname[strlen(vpninfo->hostname)-1]; *p = 0; if (inet_pton(AF_INET6, vpninfo->hostname + 1, addrbuf) > 0) addrlen = 16; *p = ']'; } #if GNUTLS_VERSION_NUMBER < 0x030306 /* And before 3.3.6 it didn't check IP addresses at all. */ else if (inet_pton(AF_INET, vpninfo->hostname, addrbuf) > 0) addrlen = 4; else if (inet_pton(AF_INET6, vpninfo->hostname, addrbuf) > 0) addrlen = 16; #endif if (!addrlen) { /* vpninfo->hostname was not a bare IP address. Nothing to do */ goto badhost; } for (i = 0; ; i++) { certaddrlen = sizeof(certaddr); ret = gnutls_x509_crt_get_subject_alt_name(cert, i, certaddr, &certaddrlen, NULL); /* If this happens, it wasn't an IP address. */ if (ret == GNUTLS_E_SHORT_MEMORY_BUFFER) continue; if (ret < 0) break; if (ret != GNUTLS_SAN_IPADDRESS) continue; if (certaddrlen == addrlen && !memcmp(addrbuf, certaddr, addrlen)) goto done; } badhost: reason = _("certificate does not match hostname"); } done: if (reason) { vpn_progress(vpninfo, PRG_INFO, _("Server certificate verify failed: %s\n"), reason); if (vpninfo->validate_peer_cert) { vpninfo->cert_list_handle = (void *)cert_list; vpninfo->cert_list_size = cert_list_size; err = vpninfo->validate_peer_cert(vpninfo->cbdata, reason) ? GNUTLS_E_CERTIFICATE_ERROR : 0; vpninfo->cert_list_handle = NULL; } else err = GNUTLS_E_CERTIFICATE_ERROR; } return err; } int openconnect_open_https(struct openconnect_info *vpninfo) { const char *default_prio; int ssl_sock = -1; int err; if (vpninfo->https_sess) return 0; if (vpninfo->peer_cert) { gnutls_x509_crt_deinit(vpninfo->peer_cert); vpninfo->peer_cert = NULL; } free(vpninfo->peer_cert_hash); vpninfo->peer_cert_hash = NULL; gnutls_free(vpninfo->cstp_cipher); vpninfo->cstp_cipher = NULL; ssl_sock = connect_https_socket(vpninfo); if (ssl_sock < 0) return ssl_sock; if (!vpninfo->https_cred) { gnutls_certificate_allocate_credentials(&vpninfo->https_cred); if (!vpninfo->no_system_trust) gnutls_certificate_set_x509_system_trust(vpninfo->https_cred); gnutls_certificate_set_verify_function(vpninfo->https_cred, verify_peer); #ifdef ANDROID_KEYSTORE if (vpninfo->cafile && !strncmp(vpninfo->cafile, "keystore:", 9)) { gnutls_datum_t datum; unsigned int nr_certs; err = load_datum(vpninfo, &datum, vpninfo->cafile); if (err < 0) { gnutls_certificate_free_credentials(vpninfo->https_cred); vpninfo->https_cred = NULL; return err; } /* For GnuTLS 3.x We should use gnutls_x509_crt_list_import2() */ nr_certs = count_x509_certificates(&datum); if (nr_certs) { gnutls_x509_crt_t *certs; int i; certs = calloc(nr_certs, sizeof(*certs)); if (!certs) { vpn_progress(vpninfo, PRG_ERR, _("Failed to allocate memory for cafile certs\n")); gnutls_free(datum.data); gnutls_certificate_free_credentials(vpninfo->https_cred); vpninfo->https_cred = NULL; closesocket(ssl_sock); return -ENOMEM; } err = gnutls_x509_crt_list_import(certs, &nr_certs, &datum, GNUTLS_X509_FMT_PEM, 0); gnutls_free(datum.data); if (err >= 0) { nr_certs = err; err = gnutls_certificate_set_x509_trust(vpninfo->https_cred, certs, nr_certs); } for (i = 0; i < nr_certs; i++) gnutls_x509_crt_deinit(certs[i]); free(certs); if (err < 0) { /* From crt_list_import or set_x509_trust */ vpn_progress(vpninfo, PRG_ERR, _("Failed to read certs from cafile: %s\n"), gnutls_strerror(err)); gnutls_certificate_free_credentials(vpninfo->https_cred); vpninfo->https_cred = NULL; closesocket(ssl_sock); return -EINVAL; } } } else #endif if (vpninfo->cafile) { err = gnutls_certificate_set_x509_trust_file(vpninfo->https_cred, vpninfo->cafile, GNUTLS_X509_FMT_PEM); if (err < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to open CA file '%s': %s\n"), vpninfo->cafile, gnutls_strerror(err)); gnutls_certificate_free_credentials(vpninfo->https_cred); vpninfo->https_cred = NULL; closesocket(ssl_sock); return -EINVAL; } } if (vpninfo->cert) { err = load_certificate(vpninfo); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Loading certificate failed. Aborting.\n")); gnutls_certificate_free_credentials(vpninfo->https_cred); vpninfo->https_cred = NULL; closesocket(ssl_sock); return err; } } } gnutls_init(&vpninfo->https_sess, GNUTLS_CLIENT); gnutls_session_set_ptr(vpninfo->https_sess, (void *) vpninfo); /* * For versions of GnuTLS older than 3.2.9, we try to avoid long * packets by silently disabling extensions such as SNI. * * See comments above regarding COMPAT and DUMBFW. */ if (string_is_hostname(vpninfo->hostname)) gnutls_server_name_set(vpninfo->https_sess, GNUTLS_NAME_DNS, vpninfo->hostname, strlen(vpninfo->hostname)); /* * If a ClientHello is between 256 and 511 bytes, the * server cannot distinguish between a SSLv2 formatted * packet and a SSLv3 formatted packet. * * F5 BIG-IP reverse proxies in particular will * silently drop an ambiguous ClientHello. * * GnuTLS fixes this in v3.2.9+ by padding ClientHello * packets to at least 512 bytes if %COMPAT or %DUMBFW * is specified. * * Discussion: * http://www.ietf.org/mail-archive/web/tls/current/msg10423.html * * GnuTLS commits: * b6d29bb1737f96ac44a8ef9cc9fe7f9837e20465 * a9bd8c4d3a639c40adb964349297f891f583a21b * 531bec47037e882af32963f8461988f8c724919e * 7c45ebbdd877cd994b6b938bd6faef19558a01e1 * 8d28901a3ebd2589d0fc9941475d50f04047f6fe * 28065ce3896b1b0f87972d0bce9b17641ebb69b9 */ #ifdef DEFAULT_PRIO default_prio = DEFAULT_PRIO ":%COMPAT"; #else /* GnuTLS 3.5.19 and onward refuse to negotiate AES-CBC-HMAC-SHA256 * by default but some Cisco servers can't do anything better, so * explicitly add '+SHA256' to allow it. Yay Cisco. */ default_prio = "NORMAL:-VERS-SSL3.0:+SHA256:%COMPAT"; #endif snprintf(vpninfo->gnutls_prio, sizeof(vpninfo->gnutls_prio), "%s%s%s", default_prio, vpninfo->pfs?":-RSA":"", vpninfo->no_tls13?":-VERS-TLS1.3":""); err = gnutls_priority_set_direct(vpninfo->https_sess, vpninfo->gnutls_prio, NULL); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to set TLS priority string (\"%s\"): %s\n"), vpninfo->gnutls_prio, gnutls_strerror(err)); gnutls_deinit(vpninfo->https_sess); vpninfo->https_sess = NULL; closesocket(ssl_sock); return -EIO; } gnutls_record_disable_padding(vpninfo->https_sess); gnutls_credentials_set(vpninfo->https_sess, GNUTLS_CRD_CERTIFICATE, vpninfo->https_cred); gnutls_transport_set_ptr(vpninfo->https_sess,(gnutls_transport_ptr_t)(intptr_t)ssl_sock); vpn_progress(vpninfo, PRG_INFO, _("SSL negotiation with %s\n"), vpninfo->hostname); #ifdef GNUTLS_DEFAULT_HANDSHAKE_TIMEOUT gnutls_handshake_set_timeout(vpninfo->https_sess, GNUTLS_DEFAULT_HANDSHAKE_TIMEOUT); #endif err = cstp_handshake(vpninfo, 1); if (err) return err; gnutls_free(vpninfo->cstp_cipher); vpninfo->cstp_cipher = get_gnutls_cipher(vpninfo->https_sess); vpninfo->ssl_fd = ssl_sock; vpninfo->ssl_read = openconnect_gnutls_read; vpninfo->ssl_write = openconnect_gnutls_write; vpninfo->ssl_gets = openconnect_gnutls_gets; return 0; } int cstp_handshake(struct openconnect_info *vpninfo, unsigned init) { int err; int ssl_sock = -1; ssl_sock = (intptr_t)gnutls_transport_get_ptr(vpninfo->https_sess); while ((err = gnutls_handshake(vpninfo->https_sess))) { if (err == GNUTLS_E_AGAIN || err == GNUTLS_E_INTERRUPTED) { fd_set rd_set, wr_set; int maxfd = ssl_sock; FD_ZERO(&rd_set); FD_ZERO(&wr_set); if (gnutls_record_get_direction(vpninfo->https_sess)) FD_SET(ssl_sock, &wr_set); else FD_SET(ssl_sock, &rd_set); cmd_fd_set(vpninfo, &rd_set, &maxfd); select(maxfd + 1, &rd_set, &wr_set, NULL, NULL); if (is_cancel_pending(vpninfo, &rd_set)) { vpn_progress(vpninfo, PRG_ERR, _("SSL connection cancelled\n")); gnutls_deinit(vpninfo->https_sess); vpninfo->https_sess = NULL; closesocket(ssl_sock); return -EINTR; } } else if (gnutls_error_is_fatal(err)) { vpn_progress(vpninfo, PRG_ERR, _("SSL connection failure: %s\n"), gnutls_strerror(err)); gnutls_deinit(vpninfo->https_sess); vpninfo->https_sess = NULL; closesocket(ssl_sock); return -EIO; } else { /* non-fatal error or warning. Ignore it and continue */ vpn_progress(vpninfo, PRG_DEBUG, _("GnuTLS non-fatal return during handshake: %s\n"), gnutls_strerror(err)); } } if (init) { vpn_progress(vpninfo, PRG_INFO, _("Connected to HTTPS on %s\n"), vpninfo->hostname); } else { vpn_progress(vpninfo, PRG_INFO, _("Renegotiated SSL on %s\n"), vpninfo->hostname); } return 0; } void openconnect_close_https(struct openconnect_info *vpninfo, int final) { if (vpninfo->https_sess) { gnutls_deinit(vpninfo->https_sess); vpninfo->https_sess = NULL; } if (vpninfo->ssl_fd != -1) { closesocket(vpninfo->ssl_fd); unmonitor_read_fd(vpninfo, ssl); unmonitor_write_fd(vpninfo, ssl); unmonitor_except_fd(vpninfo, ssl); vpninfo->ssl_fd = -1; } if (final && vpninfo->https_cred) { gnutls_certificate_free_credentials(vpninfo->https_cred); vpninfo->https_cred = NULL; #ifdef HAVE_TROUSERS release_tpm1_ctx(vpninfo); #endif #ifdef HAVE_TSS2 release_tpm2_ctx(vpninfo); #endif } } int openconnect_init_ssl(void) { #ifdef _WIN32 int ret = openconnect__win32_sock_init(); if (ret) return ret; #endif if (gnutls_global_init()) return -EIO; return 0; } char *get_gnutls_cipher(gnutls_session_t session) { char *str; #if GNUTLS_VERSION_NUMBER > 0x03010a str = gnutls_session_get_desc(session); #else str = gnutls_strdup(gnutls_cipher_suite_get_name( gnutls_kx_get(session), gnutls_cipher_get(session), gnutls_mac_get(session))); #endif return str; } int openconnect_sha1(unsigned char *result, void *data, int datalen) { gnutls_datum_t d; size_t shalen = SHA1_SIZE; d.data = data; d.size = datalen; if (gnutls_fingerprint(GNUTLS_DIG_SHA1, &d, result, &shalen)) return -1; return 0; } int openconnect_sha256(unsigned char *result, void *data, int datalen) { gnutls_datum_t d; size_t shalen = SHA256_SIZE; d.data = data; d.size = datalen; if (gnutls_fingerprint(GNUTLS_DIG_SHA256, &d, result, &shalen)) return -1; return 0; } int openconnect_md5(unsigned char *result, void *data, int datalen) { gnutls_datum_t d; size_t md5len = MD5_SIZE; d.data = data; d.size = datalen; if (gnutls_fingerprint(GNUTLS_DIG_MD5, &d, result, &md5len)) return -1; return 0; } int openconnect_random(void *bytes, int len) { if (gnutls_rnd(GNUTLS_RND_RANDOM, bytes, len)) return -EIO; return 0; } int openconnect_local_cert_md5(struct openconnect_info *vpninfo, char *buf) { memcpy(buf, vpninfo->local_cert_md5, sizeof(vpninfo->local_cert_md5)); return 0; } #if defined(HAVE_P11KIT) || defined(HAVE_GNUTLS_SYSTEM_KEYS) static int gnutls_pin_callback(void *priv, int attempt, const char *uri, const char *token_label, unsigned int flags, char *pin, size_t pin_max) { struct openconnect_info *vpninfo = priv; struct pin_cache **cache = &vpninfo->pin_cache; struct oc_auth_form f; struct oc_form_opt o; char message[1024]; int ret; if (!vpninfo || !vpninfo->process_auth_form) return -1; while (*cache) { if (!strcmp(uri, (*cache)->token)) { if ((*cache)->pin) { if (attempt == 0) { snprintf(pin, pin_max, "%s", (*cache)->pin); return 0; } memset((*cache)->pin, 0x5a, strlen((*cache)->pin)); free((*cache)->pin); (*cache)->pin = NULL; } break; } cache = &(*cache)->next; } if (!*cache) { *cache = calloc(1, sizeof(struct pin_cache)); if (!*cache) return -1; (*cache)->token = strdup(uri); } if (!attempt && vpninfo->cert_password) { snprintf(pin, pin_max, "%s", vpninfo->cert_password); (*cache)->pin = vpninfo->cert_password; vpninfo->cert_password = NULL; return 0; } memset(&f, 0, sizeof(f)); f.auth_id = (char *)"pkcs11_pin"; f.opts = &o; message[sizeof(message)-1] = 0; snprintf(message, sizeof(message) - 1, _("PIN required for %s"), token_label); f.message = message; if (flags & GNUTLS_PIN_WRONG) f.error = (char *)_("Wrong PIN"); if (flags & GNUTLS_PIN_FINAL_TRY) f.banner = (char *)_("This is the final try before locking!"); else if (flags & GNUTLS_PIN_COUNT_LOW) f.banner = (char *)_("Only a few tries left before locking!"); o.next = NULL; o.type = OC_FORM_OPT_PASSWORD; o.name = (char *)"pkcs11_pin"; o.label = (char *)_("Enter PIN:"); o._value = NULL; ret = process_auth_form(vpninfo, &f); if (ret || !o._value) return -1; snprintf(pin, pin_max, "%s", o._value); (*cache)->pin = o._value; return 0; } #endif /* HAVE_P11KIT || HAVE_GNUTLS_SYSTEM_KEYS */ #ifdef HAVE_LIBPCSCLITE int openconnect_hash_yubikey_password(struct openconnect_info *vpninfo, const char *password, int pwlen, const void *ident, int id_len) { unsigned char U[SHA1_SIZE]; gnutls_hmac_hd_t dgst; int ret = -EIO; int i, j; if (gnutls_hmac_init(&dgst, GNUTLS_MAC_SHA1, password, pwlen)) return -EIO; if (gnutls_hmac(dgst, ident, id_len)) goto out; /* This is a subset of full PBKDF2, where we know the outer loop is only * run once because our output length (16) is less than the hash output * size (20). So just hard-code the value. */ if (gnutls_hmac(dgst, "\x0\x0\x0\x1", 4)) goto out; gnutls_hmac_output(dgst, U); memcpy(vpninfo->yubikey_pwhash, U, 16); for (i = 1; i < 1000; i++) { if (gnutls_hmac(dgst, U, SHA1_SIZE)) goto out; gnutls_hmac_output(dgst, U); for (j = 0; j < 16; j++) vpninfo->yubikey_pwhash[j] ^= U[j]; } ret = 0; out: gnutls_hmac_deinit(dgst, NULL); return ret; } int openconnect_yubikey_chalresp(struct openconnect_info *vpninfo, const void *challenge, int chall_len, void *result) { if (gnutls_hmac_fast(GNUTLS_MAC_SHA1, vpninfo->yubikey_pwhash, 16, challenge, chall_len, result)) return -EIO; return 0; } #endif int hotp_hmac(struct openconnect_info *vpninfo, const void *challenge) { int ret; int hpos; unsigned char hash[64]; /* Enough for a SHA256 */ gnutls_mac_algorithm_t alg; switch(vpninfo->oath_hmac_alg) { case OATH_ALG_HMAC_SHA1: alg = GNUTLS_MAC_SHA1; hpos = 19; break; case OATH_ALG_HMAC_SHA256: alg = GNUTLS_MAC_SHA256; hpos = 31; break; case OATH_ALG_HMAC_SHA512: alg = GNUTLS_MAC_SHA512; hpos = 63; break; default: vpn_progress(vpninfo, PRG_ERR, _("Unsupported OATH HMAC algorithm\n")); return -EINVAL; } ret = gnutls_hmac_fast(alg, vpninfo->oath_secret, vpninfo->oath_secret_len, challenge, 8, hash); if (ret) { vpninfo->progress(vpninfo, PRG_ERR, _("Failed to calculate OATH HMAC: %s\n"), gnutls_strerror(ret)); return -EINVAL; } hpos = hash[hpos] & 15; return load_be32(&hash[hpos]) & 0x7fffffff; } static int ttls_pull_timeout_func(gnutls_transport_ptr_t t, unsigned int ms) { struct openconnect_info *vpninfo = t; vpn_progress(vpninfo, PRG_TRACE, _("ttls_pull_timeout_func %dms\n"), ms); return 0; } static ssize_t ttls_pull_func(gnutls_transport_ptr_t t, void *buf, size_t len) { int ret = pulse_eap_ttls_recv(t, buf, len); if (ret >= 0) return ret; else return GNUTLS_E_PULL_ERROR; } static ssize_t ttls_push_func(gnutls_transport_ptr_t t, const void *buf, size_t len) { int ret = pulse_eap_ttls_send(t, buf, len); if (ret >= 0) return ret; else return GNUTLS_E_PUSH_ERROR; } void *establish_eap_ttls(struct openconnect_info *vpninfo) { gnutls_session_t ttls_sess = NULL; int err; gnutls_init(&ttls_sess, GNUTLS_CLIENT); gnutls_session_set_ptr(ttls_sess, (void *) vpninfo); gnutls_transport_set_ptr(ttls_sess, (void *) vpninfo); gnutls_transport_set_push_function(ttls_sess, ttls_push_func); gnutls_transport_set_pull_function(ttls_sess, ttls_pull_func); gnutls_transport_set_pull_timeout_function(ttls_sess, ttls_pull_timeout_func); gnutls_credentials_set(ttls_sess, GNUTLS_CRD_CERTIFICATE, vpninfo->https_cred); err = gnutls_priority_set_direct(ttls_sess, vpninfo->gnutls_prio, NULL); err = gnutls_handshake(ttls_sess); if (!err) { vpn_progress(vpninfo, PRG_TRACE, _("Established EAP-TTLS session\n")); return ttls_sess; } gnutls_deinit(ttls_sess); return NULL; } void destroy_eap_ttls(struct openconnect_info *vpninfo, void *sess) { gnutls_deinit(sess); } openconnect-8.05/README.TESTS0000664000076400007640000000025212741644647017334 0ustar00dwoodhoudwoodhou00000000000000The included test suite depends on the following programs and libraries being available: * ocserv * socket_wrapper * uid_wrapper It can be run as ```make check```. openconnect-8.05/dtls.c0000664000076400007640000004607213505425637016672 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include #include #include #include #ifndef _WIN32 #include #include #endif #include "openconnect-internal.h" /* * The master-secret is generated randomly by the client. The server * responds with a DTLS Session-ID. These, done over the HTTPS * connection, are enough to 'resume' a DTLS session, bypassing all * the normal setup of a normal DTLS connection. * * Cisco use a version of the protocol which predates RFC4347, but * isn't quite the same as the pre-RFC version of the protocol which * was in OpenSSL 0.9.8e -- it includes backports of some later * OpenSSL patches. * * The openssl/ directory of this source tree should contain both a * small patch against OpenSSL 0.9.8e to make it support Cisco's * snapshot of the protocol, and a larger patch against newer OpenSSL * which gives us an option to use the old protocol again. * * Cisco's server also seems to respond to the official version of the * protocol, with a change in the ChangeCipherSpec packet which implies * that it does know the difference and isn't just repeating the version * number seen in the ClientHello. But although I can make the handshake * complete by hacking tls1_mac() to use the _old_ protocol version * number when calculating the MAC, the server still seems to be ignoring * my subsequent data packets. So we use the old protocol, which is what * their clients use anyway. */ #if defined(OPENCONNECT_OPENSSL) #define DTLS_SEND SSL_write #define DTLS_RECV SSL_read #elif defined(OPENCONNECT_GNUTLS) #define DTLS_SEND gnutls_record_send #define DTLS_RECV gnutls_record_recv #endif char *openconnect_bin2hex(const char *prefix, const uint8_t *data, unsigned len) { struct oc_text_buf *buf; char *p = NULL; buf = buf_alloc(); if (prefix) buf_append(buf, "%s", prefix); buf_append_hex(buf, data, len); if (!buf_error(buf)) { p = buf->data; buf->data = NULL; } buf_free(buf); return p; } char *openconnect_bin2base64(const char *prefix, const uint8_t *data, unsigned len) { struct oc_text_buf *buf; char *p = NULL; buf = buf_alloc(); if (prefix) buf_append(buf, "%s", prefix); buf_append_base64(buf, data, len); if (!buf_error(buf)) { p = buf->data; buf->data = NULL; } buf_free(buf); return p; } static int connect_dtls_socket(struct openconnect_info *vpninfo) { int dtls_fd, ret; /* Sanity check for the removal of new_dtls_{fd,ssl} */ if (vpninfo->dtls_fd != -1) { vpn_progress(vpninfo, PRG_ERR, _("DTLS connection attempted with an existing fd\n")); vpninfo->dtls_attempt_period = 0; return -EINVAL; } if (!vpninfo->dtls_addr) { vpn_progress(vpninfo, PRG_ERR, _("No DTLS address\n")); vpninfo->dtls_attempt_period = 0; return -EINVAL; } if (!vpninfo->dtls_cipher) { /* We probably didn't offer it any ciphers it liked */ vpn_progress(vpninfo, PRG_ERR, _("Server offered no DTLS cipher option\n")); vpninfo->dtls_attempt_period = 0; return -EINVAL; } if (vpninfo->proxy) { /* XXX: Theoretically, SOCKS5 proxies can do UDP too */ vpn_progress(vpninfo, PRG_ERR, _("No DTLS when connected via proxy\n")); vpninfo->dtls_attempt_period = 0; return -EINVAL; } dtls_fd = udp_connect(vpninfo); if (dtls_fd < 0) return -EINVAL; ret = start_dtls_handshake(vpninfo, dtls_fd); if (ret) { closesocket(dtls_fd); return ret; } vpninfo->dtls_state = DTLS_CONNECTING; vpninfo->dtls_fd = dtls_fd; monitor_fd_new(vpninfo, dtls); monitor_read_fd(vpninfo, dtls); monitor_except_fd(vpninfo, dtls); time(&vpninfo->new_dtls_started); return dtls_try_handshake(vpninfo); } void dtls_close(struct openconnect_info *vpninfo) { if (vpninfo->dtls_ssl) { dtls_ssl_free(vpninfo); closesocket(vpninfo->dtls_fd); unmonitor_read_fd(vpninfo, dtls); unmonitor_write_fd(vpninfo, dtls); unmonitor_except_fd(vpninfo, dtls); vpninfo->dtls_ssl = NULL; vpninfo->dtls_fd = -1; } vpninfo->dtls_state = DTLS_SLEEPING; } static int dtls_reconnect(struct openconnect_info *vpninfo) { dtls_close(vpninfo); if (vpninfo->dtls_state == DTLS_DISABLED) return -EINVAL; vpninfo->dtls_state = DTLS_SLEEPING; return connect_dtls_socket(vpninfo); } int dtls_setup(struct openconnect_info *vpninfo, int dtls_attempt_period) { struct oc_vpn_option *dtls_opt = vpninfo->dtls_options; int dtls_port = 0; if (vpninfo->dtls_state == DTLS_DISABLED) return -EINVAL; vpninfo->dtls_attempt_period = dtls_attempt_period; if (!dtls_attempt_period) return 0; while (dtls_opt) { vpn_progress(vpninfo, PRG_DEBUG, _("DTLS option %s : %s\n"), dtls_opt->option, dtls_opt->value); if (!strcmp(dtls_opt->option, "X-DTLS-Port")) { dtls_port = atol(dtls_opt->value); } else if (!strcmp(dtls_opt->option, "X-DTLS-Keepalive")) { vpninfo->dtls_times.keepalive = atol(dtls_opt->value); } else if (!strcmp(dtls_opt->option, "X-DTLS-DPD")) { int j = atol(dtls_opt->value); if (j && (!vpninfo->dtls_times.dpd || j < vpninfo->dtls_times.dpd)) vpninfo->dtls_times.dpd = j; } else if (!strcmp(dtls_opt->option, "X-DTLS-Rekey-Method")) { if (!strcmp(dtls_opt->value, "new-tunnel")) vpninfo->dtls_times.rekey_method = REKEY_TUNNEL; else if (!strcmp(dtls_opt->value, "ssl")) vpninfo->dtls_times.rekey_method = REKEY_SSL; else vpninfo->dtls_times.rekey_method = REKEY_NONE; } else if (!strcmp(dtls_opt->option, "X-DTLS-Rekey-Time")) { vpninfo->dtls_times.rekey = atol(dtls_opt->value); } dtls_opt = dtls_opt->next; } if (!dtls_port) { vpninfo->dtls_attempt_period = 0; return -EINVAL; } if (vpninfo->dtls_times.rekey <= 0) vpninfo->dtls_times.rekey_method = REKEY_NONE; if (udp_sockaddr(vpninfo, dtls_port)) { vpninfo->dtls_attempt_period = 0; return -EINVAL; } if (connect_dtls_socket(vpninfo)) return -EINVAL; vpn_progress(vpninfo, PRG_DEBUG, _("DTLS initialised. DPD %d, Keepalive %d\n"), vpninfo->dtls_times.dpd, vpninfo->dtls_times.keepalive); return 0; } int dtls_mainloop(struct openconnect_info *vpninfo, int *timeout, int readable) { int work_done = 0; char magic_pkt; if (vpninfo->dtls_need_reconnect) { vpninfo->dtls_need_reconnect = 0; dtls_reconnect(vpninfo); return 1; } if (vpninfo->dtls_state == DTLS_CONNECTING) { dtls_try_handshake(vpninfo); return 0; } if (vpninfo->dtls_state == DTLS_SLEEPING) { int when = vpninfo->new_dtls_started + vpninfo->dtls_attempt_period - time(NULL); if (when <= 0) { vpn_progress(vpninfo, PRG_DEBUG, _("Attempt new DTLS connection\n")); if (connect_dtls_socket(vpninfo) < 0) *timeout = 1000; } else if ((when * 1000) < *timeout) { *timeout = when * 1000; } return 0; } while (readable) { int len = MAX(16384, vpninfo->ip_info.mtu); unsigned char *buf; if (!vpninfo->dtls_pkt) { vpninfo->dtls_pkt = malloc(sizeof(struct pkt) + len); if (!vpninfo->dtls_pkt) { vpn_progress(vpninfo, PRG_ERR, _("Allocation failed\n")); break; } } buf = vpninfo->dtls_pkt->data - 1; len = DTLS_RECV(vpninfo->dtls_ssl, buf, len + 1); if (len <= 0) break; vpn_progress(vpninfo, PRG_TRACE, _("Received DTLS packet 0x%02x of %d bytes\n"), buf[0], len); vpninfo->dtls_times.last_rx = time(NULL); switch (buf[0]) { case AC_PKT_DATA: vpninfo->dtls_pkt->len = len - 1; queue_packet(&vpninfo->incoming_queue, vpninfo->dtls_pkt); vpninfo->dtls_pkt = NULL; work_done = 1; break; case AC_PKT_DPD_OUT: vpn_progress(vpninfo, PRG_DEBUG, _("Got DTLS DPD request\n")); /* FIXME: What if the packet doesn't get through? */ magic_pkt = AC_PKT_DPD_RESP; if (DTLS_SEND(vpninfo->dtls_ssl, &magic_pkt, 1) != 1) vpn_progress(vpninfo, PRG_ERR, _("Failed to send DPD response. Expect disconnect\n")); continue; case AC_PKT_DPD_RESP: vpn_progress(vpninfo, PRG_DEBUG, _("Got DTLS DPD response\n")); break; case AC_PKT_KEEPALIVE: vpn_progress(vpninfo, PRG_DEBUG, _("Got DTLS Keepalive\n")); break; case AC_PKT_COMPRESSED: if (!vpninfo->dtls_compr) { vpn_progress(vpninfo, PRG_ERR, _("Compressed DTLS packet received when compression not enabled\n")); goto unknown_pkt; } decompress_and_queue_packet(vpninfo, vpninfo->dtls_compr, vpninfo->dtls_pkt->data, len - 1); break; default: vpn_progress(vpninfo, PRG_ERR, _("Unknown DTLS packet type %02x, len %d\n"), buf[0], len); if (1) { /* Some versions of OpenSSL have bugs with receiving out-of-order * packets. Not only do they wrongly decide to drop packets if * two packets get swapped in transit, but they also _fail_ to * drop the packet in non-blocking mode; instead they return * the appropriate length of garbage. So don't abort... for now. */ break; } else { unknown_pkt: vpninfo->quit_reason = "Unknown packet received"; return 1; } } } switch (keepalive_action(&vpninfo->dtls_times, timeout)) { case KA_REKEY: { int ret; vpn_progress(vpninfo, PRG_INFO, _("DTLS rekey due\n")); if (vpninfo->dtls_times.rekey_method == REKEY_SSL) { time(&vpninfo->new_dtls_started); vpninfo->dtls_state = DTLS_CONNECTING; ret = dtls_try_handshake(vpninfo); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("DTLS Rehandshake failed; reconnecting.\n")); return connect_dtls_socket(vpninfo); } } return 1; } case KA_DPD_DEAD: vpn_progress(vpninfo, PRG_ERR, _("DTLS Dead Peer Detection detected dead peer!\n")); /* Fall back to SSL, and start a new DTLS connection */ dtls_reconnect(vpninfo); return 1; case KA_DPD: vpn_progress(vpninfo, PRG_DEBUG, _("Send DTLS DPD\n")); magic_pkt = AC_PKT_DPD_OUT; if (DTLS_SEND(vpninfo->dtls_ssl, &magic_pkt, 1) != 1) vpn_progress(vpninfo, PRG_ERR, _("Failed to send DPD request. Expect disconnect\n")); /* last_dpd will just have been set */ vpninfo->dtls_times.last_tx = vpninfo->dtls_times.last_dpd; work_done = 1; break; case KA_KEEPALIVE: /* No need to send an explicit keepalive if we have real data to send */ if (vpninfo->outgoing_queue.head) break; vpn_progress(vpninfo, PRG_DEBUG, _("Send DTLS Keepalive\n")); magic_pkt = AC_PKT_KEEPALIVE; if (DTLS_SEND(vpninfo->dtls_ssl, &magic_pkt, 1) != 1) vpn_progress(vpninfo, PRG_ERR, _("Failed to send keepalive request. Expect disconnect\n")); time(&vpninfo->dtls_times.last_tx); work_done = 1; break; case KA_NONE: ; } /* Service outgoing packet queue */ unmonitor_write_fd(vpninfo, dtls); while (vpninfo->outgoing_queue.head) { struct pkt *this = dequeue_packet(&vpninfo->outgoing_queue); struct pkt *send_pkt = this; int ret; /* If TOS optname is set, we want to copy the TOS/TCLASS header to the outer UDP packet */ if (vpninfo->dtls_tos_optname) { int valid=1; int tos; switch(this->data[0] >> 4) { case 4: tos = this->data[1]; break; case 6: tos = (load_be16(this->data) >> 4) & 0xff; break; default: vpn_progress(vpninfo, PRG_ERR, _("Unknown packet (len %d) received: %02x %02x %02x %02x...\n"), this->len, this->data[0], this->data[1], this->data[2], this->data[3]); valid = 0; } /* set the actual value */ if (valid && tos != vpninfo->dtls_tos_current) { vpn_progress(vpninfo, PRG_DEBUG, _("TOS this: %d, TOS last: %d\n"), tos, vpninfo->dtls_tos_current); if (setsockopt(vpninfo->dtls_fd, vpninfo->dtls_tos_proto, vpninfo->dtls_tos_optname, (void *)&tos, sizeof(tos))) vpn_perror(vpninfo, _("UDP setsockopt")); else vpninfo->dtls_tos_current = tos; } } /* One byte of header */ this->cstp.hdr[7] = AC_PKT_DATA; /* We can compress into vpninfo->deflate_pkt unless CSTP * currently has a compressed packet pending — which it * shouldn't if DTLS is active. */ if (vpninfo->dtls_compr && vpninfo->current_ssl_pkt != vpninfo->deflate_pkt && !compress_packet(vpninfo, vpninfo->dtls_compr, this)) { send_pkt = vpninfo->deflate_pkt; send_pkt->cstp.hdr[7] = AC_PKT_COMPRESSED; } #ifdef OPENCONNECT_OPENSSL ret = SSL_write(vpninfo->dtls_ssl, &send_pkt->cstp.hdr[7], send_pkt->len + 1); if (ret <= 0) { ret = SSL_get_error(vpninfo->dtls_ssl, ret); if (ret == SSL_ERROR_WANT_WRITE) { monitor_write_fd(vpninfo, dtls); requeue_packet(&vpninfo->outgoing_queue, this); } else if (ret != SSL_ERROR_WANT_READ) { /* If it's a real error, kill the DTLS connection and requeue the packet to be sent over SSL */ vpn_progress(vpninfo, PRG_ERR, _("DTLS got write error %d. Falling back to SSL\n"), ret); openconnect_report_ssl_errors(vpninfo); dtls_reconnect(vpninfo); requeue_packet(&vpninfo->outgoing_queue, this); work_done = 1; } return work_done; } #else /* GnuTLS */ ret = gnutls_record_send(vpninfo->dtls_ssl, &send_pkt->cstp.hdr[7], send_pkt->len + 1); if (ret <= 0) { if (ret != GNUTLS_E_AGAIN && ret != GNUTLS_E_INTERRUPTED) { vpn_progress(vpninfo, PRG_ERR, _("DTLS got write error: %s. Falling back to SSL\n"), gnutls_strerror(ret)); dtls_reconnect(vpninfo); work_done = 1; } else { /* Wake me up when it becomes writeable */ monitor_write_fd(vpninfo, dtls); } requeue_packet(&vpninfo->outgoing_queue, this); return work_done; } #endif time(&vpninfo->dtls_times.last_tx); vpn_progress(vpninfo, PRG_TRACE, _("Sent DTLS packet of %d bytes; DTLS send returned %d\n"), this->len, ret); free(this); } return work_done; } /* This symbol is missing in glibc < 2.22 (bug 18643). */ #if defined(__linux__) && !defined(HAVE_IPV6_PATHMTU) # define HAVE_IPV6_PATHMTU 1 # define IPV6_PATHMTU 61 #endif #define PKT_INTERVAL_MS 50 /* Performs a binary search to detect MTU. * @buf: is preallocated with MTU size * * Returns: new MTU or 0 */ static int probe_mtu(struct openconnect_info *vpninfo, unsigned char *buf) { int max, min, cur, ret, absolute_min, last; int tries = 0; /* Number of loops in bin search - includes resends */ uint32_t id, id_len; struct timeval start_tv, now_tv, last_tv; absolute_min = 576; if (vpninfo->ip_info.addr6) absolute_min = 1280; /* We'll assume that it is at least functional, and permits the bare * minimum MTU for the protocol(s) it transports. All else is mad. */ min = absolute_min; /* First send a probe at the configured maximum. Most of the time, this one will probably work. */ last = cur = max = vpninfo->ip_info.mtu; if (max <= min) goto fail; /* Generate unique ID */ if (openconnect_random(&id, sizeof(id)) < 0) goto fail; vpn_progress(vpninfo, PRG_DEBUG, _("Initiating MTU detection (min=%d, max=%d)\n"), min, max); gettimeofday(&start_tv, NULL); last_tv = start_tv; while (1) { int wait_ms; #ifdef HAVE_IPV6_PATHMTU if (vpninfo->peer_addr->sa_family == AF_INET6) { struct ip6_mtuinfo mtuinfo; socklen_t len = sizeof(mtuinfo); int newmax; if (getsockopt(vpninfo->dtls_fd, IPPROTO_IPV6, IPV6_PATHMTU, &mtuinfo, &len) >= 0) { newmax = mtuinfo.ip6m_mtu; if (newmax > 0) { newmax = dtls_set_mtu(vpninfo, newmax) - /*ipv6*/40 - /*udp*/20 - /*oc dtls*/1; if (absolute_min > newmax) goto fail; if (max > newmax) max = newmax; if (cur > newmax) cur = newmax; } } } #endif buf[0] = AC_PKT_DPD_OUT; id_len = id + cur; memcpy(&buf[1], &id_len, sizeof(id_len)); vpn_progress(vpninfo, PRG_TRACE, _("Sending MTU DPD probe (%u bytes)\n"), cur); ret = openconnect_dtls_write(vpninfo, buf, cur + 1); if (ret != cur + 1) { vpn_progress(vpninfo, PRG_ERR, _("Failed to send DPD request (%d %d)\n"), cur, ret); if (cur == max) { max = --cur; if (cur >= absolute_min) continue; } goto fail; } if (last == cur) tries++; else { tries = 0; last = cur; } memset(buf, 0, sizeof(id)+1); keep_waiting: gettimeofday(&now_tv, NULL); if (now_tv.tv_sec > start_tv.tv_sec + 10) { if (absolute_min == min) { /* Hm, we never got *anything* back successfully? */ vpn_progress(vpninfo, PRG_ERR, _("Too long time in MTU detect loop; assuming negotiated MTU.\n")); goto fail; } else { vpn_progress(vpninfo, PRG_ERR, _("Too long time in MTU detect loop; MTU set to %d.\n"), min); ret = min; goto out; } } wait_ms = PKT_INTERVAL_MS - ((now_tv.tv_sec - last_tv.tv_sec) * 1000) - ((now_tv.tv_usec - last_tv.tv_usec) / 1000); if (wait_ms < 0 || wait_ms > PKT_INTERVAL_MS) wait_ms = PKT_INTERVAL_MS; ret = openconnect_dtls_read(vpninfo, buf, max+1, wait_ms); if (ret > 0 && (buf[0] != AC_PKT_DPD_RESP || !memcpy(&id_len, &buf[1], sizeof(id_len)) || id_len != id + ret - 1)) { vpn_progress(vpninfo, PRG_DEBUG, _("Received unexpected packet (%.2x) in MTU detection; skipping.\n"), (unsigned)buf[0]); goto keep_waiting; } if (ret == -ETIMEDOUT) { if (tries >= 6) { vpn_progress(vpninfo, PRG_DEBUG, _("No response to size %u after %d tries; declare MTU is %u\n"), last, tries, min); ret = min; goto out; } } else if (ret < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to recv DPD request (%d)\n"), ret); goto fail; } else if (ret > 0) { vpn_progress(vpninfo, PRG_TRACE, _("Received MTU DPD probe (%u bytes)\n"), ret - 1); ret--; tries = 0; } if (ret == max) goto out; if (ret > min) { min = ret; if (min >= last) { cur = (min + max + 1) / 2; } else { cur = (min + last + 1) / 2; } } else { cur = (min + last + 1) / 2; } } fail: ret = 0; out: return ret; } void dtls_detect_mtu(struct openconnect_info *vpninfo) { int mtu = vpninfo->ip_info.mtu; int prev_mtu = vpninfo->ip_info.mtu; unsigned char *buf; if (vpninfo->ip_info.mtu < 1 + sizeof(uint32_t)) return; /* detect MTU */ buf = calloc(1, 1 + vpninfo->ip_info.mtu); if (!buf) { vpn_progress(vpninfo, PRG_ERR, _("Allocation failed\n")); return; } mtu = probe_mtu(vpninfo, buf); if (mtu == 0) goto skip_mtu; vpninfo->ip_info.mtu = mtu; if (prev_mtu != vpninfo->ip_info.mtu) { vpn_progress(vpninfo, PRG_INFO, _("Detected MTU of %d bytes (was %d)\n"), vpninfo->ip_info.mtu, prev_mtu); } else { vpn_progress(vpninfo, PRG_DEBUG, _("No change in MTU after detection (was %d)\n"), prev_mtu); } skip_mtu: free(buf); } openconnect-8.05/gnutls_tpm2_esys.c0000664000076400007640000004112213414623647021234 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2018 David Woodhouse. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ /* Portions taken from tpm2-tss-engine, copyright as below: */ /******************************************************************************* * Copyright 2017-2018, Fraunhofer SIT sponsored by Infineon Technologies AG * All rights reserved. * * Redistribution and use in source and binary forms, with or without * modification, are permitted provided that the following conditions are met: * * 1. Redistributions of source code must retain the above copyright notice, * this list of conditions and the following disclaimer. * * 2. Redistributions in binary form must reproduce the above copyright notice, * this list of conditions and the following disclaimer in the documentation * and/or other materials provided with the distribution. * * 3. Neither the name of tpm2-tss-engine nor the names of its contributors * may be used to endorse or promote products derived from this software * without specific prior written permission. * * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" * AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE * ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE * LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN * CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF * THE POSSIBILITY OF SUCH DAMAGE. ******************************************************************************/ #include "config.h" #include "openconnect-internal.h" #include "gnutls.h" #include #include #include #include #include struct oc_tpm2_ctx { TPM2B_PUBLIC pub; TPM2B_PRIVATE priv; TPM2B_DIGEST userauth; TPM2B_DIGEST ownerauth; unsigned int need_userauth:1; unsigned int need_ownerauth:1; unsigned int did_ownerauth:1; unsigned int legacy_srk:1; unsigned int parent; }; static TPM2B_PUBLIC primaryTemplate = { .publicArea = { .type = TPM2_ALG_ECC, .nameAlg = TPM2_ALG_SHA256, .objectAttributes = (TPMA_OBJECT_USERWITHAUTH | TPMA_OBJECT_RESTRICTED | TPMA_OBJECT_DECRYPT | TPMA_OBJECT_FIXEDTPM | TPMA_OBJECT_FIXEDPARENT | TPMA_OBJECT_NODA | TPMA_OBJECT_SENSITIVEDATAORIGIN), .authPolicy = { .size = 0, }, .parameters.eccDetail = { .symmetric = { .algorithm = TPM2_ALG_AES, .keyBits.aes = 128, .mode.aes = TPM2_ALG_CFB, }, .scheme = { .scheme = TPM2_ALG_NULL, .details = {} }, .curveID = TPM2_ECC_NIST_P256, .kdf = { .scheme = TPM2_ALG_NULL, .details = {} }, }, .unique.ecc = { .x.size = 0, .y.size = 0 } } }; static TPM2B_PUBLIC primaryTemplate_legacy = { .publicArea = { .type = TPM2_ALG_ECC, .nameAlg = TPM2_ALG_SHA256, .objectAttributes = (TPMA_OBJECT_USERWITHAUTH | TPMA_OBJECT_RESTRICTED | TPMA_OBJECT_DECRYPT | TPMA_OBJECT_NODA | TPMA_OBJECT_SENSITIVEDATAORIGIN), .authPolicy = { .size = 0, }, .parameters.eccDetail = { .symmetric = { .algorithm = TPM2_ALG_AES, .keyBits.aes = 128, .mode.aes = TPM2_ALG_CFB, }, .scheme = { .scheme = TPM2_ALG_NULL, .details = {} }, .curveID = TPM2_ECC_NIST_P256, .kdf = { .scheme = TPM2_ALG_NULL, .details = {} }, }, .unique.ecc = { .x.size = 0, .y.size = 0 } } }; static TPM2B_SENSITIVE_CREATE primarySensitive = { .sensitive = { .userAuth = { .size = 0, }, .data = { .size = 0, } } }; static TPM2B_DATA allOutsideInfo = { .size = 0, }; static TPML_PCR_SELECTION allCreationPCR = { .count = 0, }; /* Where do these error values come from? */ #define KEY_AUTH_FAILED 0x9a2 #define PARENT_AUTH_FAILED 0x98e static void install_tpm_passphrase(struct openconnect_info *vpninfo, TPM2B_DIGEST *auth, char *pass) { if (strlen(pass) > sizeof(auth->buffer) - 1) { vpn_progress(vpninfo, PRG_ERR, _("TPM2 password too long; truncating\n")); pass[sizeof(auth->buffer) - 1] = 0; } auth->size = strlen(pass); strcpy((char *)auth->buffer, pass); free_pass(&pass); } static int init_tpm2_primary(struct openconnect_info *vpninfo, ESYS_CONTEXT *ctx, ESYS_TR *primaryHandle) { TSS2_RC r; const char *hierarchy_name; ESYS_TR hierarchy; switch(vpninfo->tpm2->parent) { case TPM2_RH_OWNER: hierarchy = ESYS_TR_RH_OWNER; hierarchy_name = _("owner"); break; case TPM2_RH_NULL: hierarchy = ESYS_TR_RH_NULL; hierarchy_name = _("null"); break; case TPM2_RH_ENDORSEMENT:hierarchy = ESYS_TR_RH_ENDORSEMENT; hierarchy_name = _("endorsement"); break; case TPM2_RH_PLATFORM: hierarchy = ESYS_TR_RH_PLATFORM; hierarchy_name = _("platform"); break; default: return -EINVAL; } vpn_progress(vpninfo, PRG_DEBUG, _("Creating primary key under %s hierarchy.\n"), hierarchy_name); reauth: if (vpninfo->tpm2->need_ownerauth) { char *pass = NULL; if (request_passphrase(vpninfo, "openconnect_tpm2_hierarchy", &pass, _("Enter TPM2 %s hierarchy password:"), hierarchy_name)) return -EPERM; install_tpm_passphrase(vpninfo, &vpninfo->tpm2->ownerauth, pass); vpninfo->tpm2->need_ownerauth = 0; } r = Esys_TR_SetAuth(ctx, hierarchy, &vpninfo->tpm2->ownerauth); if (r) { vpn_progress(vpninfo, PRG_ERR, _("TPM2 Esys_TR_SetAuth failed: 0x%x\n"), r); return -EPERM; } r = Esys_CreatePrimary(ctx, hierarchy, ESYS_TR_PASSWORD, ESYS_TR_NONE, ESYS_TR_NONE, &primarySensitive, vpninfo->tpm2->legacy_srk ? &primaryTemplate_legacy : &primaryTemplate, &allOutsideInfo, &allCreationPCR, primaryHandle, NULL, NULL, NULL, NULL); if (r == KEY_AUTH_FAILED) { vpn_progress(vpninfo, PRG_DEBUG, _("TPM2 Esys_CreatePrimary owner auth failed\n")); vpninfo->tpm2->need_ownerauth = 1; goto reauth; } else if (r) { vpn_progress(vpninfo, PRG_ERR, _("TPM2 Esys_CreatePrimary failed: 0x%x\n"), r); return -EIO; } return 0; } #define parent_is_generated(parent) ((parent) >> TPM2_HR_SHIFT == TPM2_HT_PERMANENT) #define parent_is_persistent(parent) ((parent) >> TPM2_HR_SHIFT == TPM2_HT_PERSISTENT) static int init_tpm2_key(ESYS_CONTEXT **ctx, ESYS_TR *keyHandle, struct openconnect_info *vpninfo) { ESYS_TR parentHandle = ESYS_TR_NONE; TSS2_RC r; *keyHandle = ESYS_TR_NONE; vpn_progress(vpninfo, PRG_DEBUG, _("Establishing connection with TPM.\n")); r = Esys_Initialize(ctx, NULL, NULL); if (r) { vpn_progress(vpninfo, PRG_ERR, _("TPM2 Esys_Initialize failed: 0x%x\n"), r); goto error; } r = Esys_Startup(*ctx, TPM2_SU_CLEAR); if (r == TPM2_RC_INITIALIZE) { vpn_progress(vpninfo, PRG_DEBUG, _("TPM2 was already started up thus false positive failing in tpm2tss log.\n")); } else if (r) { vpn_progress(vpninfo, PRG_ERR, _("TPM2 Esys_Startup failed: 0x%x\n"), r); goto error; } if (parent_is_generated(vpninfo->tpm2->parent)) { if (init_tpm2_primary(vpninfo, *ctx, &parentHandle)) goto error; } else { r = Esys_TR_FromTPMPublic(*ctx, vpninfo->tpm2->parent, ESYS_TR_NONE, ESYS_TR_NONE, ESYS_TR_NONE, &parentHandle); if (r) { vpn_progress(vpninfo, PRG_ERR, _("Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n"), vpninfo->tpm2->parent, r); goto error; } /* If we don't already have a password (and haven't already authenticated * successfully), check the NODA flag on the parent and demand one if DA * protection is enabled (since that strongly implies there is a non-empty * password). */ if (!vpninfo->tpm2->did_ownerauth && !vpninfo->tpm2->ownerauth.size) { TPM2B_PUBLIC *pub = NULL; r = Esys_ReadPublic(*ctx, parentHandle, ESYS_TR_NONE, ESYS_TR_NONE, ESYS_TR_NONE, &pub, NULL, NULL); if (!r && !(pub->publicArea.objectAttributes & TPMA_OBJECT_NODA)) vpninfo->tpm2->need_ownerauth = 1; free(pub); } reauth: if (vpninfo->tpm2->need_ownerauth) { char *pass = NULL; if (request_passphrase(vpninfo, "openconnect_tpm2_parent", &pass, _("Enter TPM2 parent key password:"))) return -EPERM; install_tpm_passphrase(vpninfo, &vpninfo->tpm2->ownerauth, pass); vpninfo->tpm2->need_ownerauth = 0; } r = Esys_TR_SetAuth(*ctx, parentHandle, &vpninfo->tpm2->ownerauth); if (r) { vpn_progress(vpninfo, PRG_ERR, _("TPM2 Esys_TR_SetAuth failed: 0x%x\n"), r); goto error; } } vpn_progress(vpninfo, PRG_DEBUG, _("Loading TPM2 key blob, parent %x.\n"), parentHandle); r = Esys_Load(*ctx, parentHandle, ESYS_TR_PASSWORD, ESYS_TR_NONE, ESYS_TR_NONE, &vpninfo->tpm2->priv, &vpninfo->tpm2->pub, keyHandle); if (r == PARENT_AUTH_FAILED) { vpn_progress(vpninfo, PRG_DEBUG, _("TPM2 Esys_Load auth failed\n")); vpninfo->tpm2->need_ownerauth = 1; goto reauth; } if (r) { vpn_progress(vpninfo, PRG_ERR, _("TPM2 Esys_Load failed: 0x%x\n"), r); goto error; } vpninfo->tpm2->did_ownerauth = 1; if (parent_is_generated(vpninfo->tpm2->parent)) { r = Esys_FlushContext(*ctx, parentHandle); if (r) { vpn_progress(vpninfo, PRG_ERR, _("TPM2 Esys_FlushContext for generated primary failed: 0x%x\n"), r); } /* But it's non-fatal. */ } return 0; error: if (parent_is_generated(vpninfo->tpm2->parent) && parentHandle != ESYS_TR_NONE) Esys_FlushContext(*ctx, parentHandle); if (*keyHandle != ESYS_TR_NONE) Esys_FlushContext(*ctx, *keyHandle); *keyHandle = ESYS_TR_NONE; Esys_Finalize(ctx); return -EIO; } static int auth_tpm2_key(struct openconnect_info *vpninfo, ESYS_CONTEXT *ctx, ESYS_TR key_handle) { TSS2_RC r; if (vpninfo->tpm2->need_userauth || vpninfo->cert_password) { char *pass = NULL; if (vpninfo->cert_password) { pass = vpninfo->cert_password; vpninfo->cert_password = NULL; } else { int err = request_passphrase(vpninfo, "openconnect_tpm2_key", &pass, _("Enter TPM2 key password:")); if (err) return err; } install_tpm_passphrase(vpninfo, &vpninfo->tpm2->userauth, pass); vpninfo->tpm2->need_userauth = 0; } r = Esys_TR_SetAuth(ctx, key_handle, &vpninfo->tpm2->userauth); if (r) { vpn_progress(vpninfo, PRG_ERR, _("TPM2 Esys_TR_SetAuth failed: 0x%x\n"), r); return -EIO; } return 0; } int tpm2_rsa_sign_hash_fn(gnutls_privkey_t key, gnutls_sign_algorithm_t algo, void *_vpninfo, unsigned int flags, const gnutls_datum_t *data, gnutls_datum_t *sig) { struct openconnect_info *vpninfo = _vpninfo; int ret = GNUTLS_E_PK_SIGN_FAILED; ESYS_CONTEXT *ectx = NULL; TPM2B_PUBLIC_KEY_RSA digest, *tsig = NULL; TPM2B_DATA label = { .size = 0 }; TPMT_RSA_DECRYPT inScheme = { .scheme = TPM2_ALG_NULL }; ESYS_TR key_handle = ESYS_TR_NONE; TSS2_RC r; vpn_progress(vpninfo, PRG_DEBUG, _("TPM2 RSA sign function called for %d bytes.\n"), data->size); digest.size = vpninfo->tpm2->pub.publicArea.unique.rsa.size; if (oc_pkcs1_pad(vpninfo, digest.buffer, digest.size, data)) return GNUTLS_E_PK_SIGN_FAILED; if (init_tpm2_key(&ectx, &key_handle, vpninfo)) goto out; reauth: if (auth_tpm2_key(vpninfo, ectx, key_handle)) goto out; r = Esys_RSA_Decrypt(ectx, key_handle, ESYS_TR_PASSWORD, ESYS_TR_NONE, ESYS_TR_NONE, &digest, &inScheme, &label, &tsig); if (r == KEY_AUTH_FAILED) { vpn_progress(vpninfo, PRG_DEBUG, _("TPM2 Esys_RSA_Decrypt auth failed\n")); vpninfo->tpm2->need_userauth = 1; goto reauth; } if (r) { vpn_progress(vpninfo, PRG_ERR, _("TPM2 failed to generate RSA signature: 0x%x\n"), r); goto out; } sig->data = malloc(tsig->size); if (!sig->data) goto out; memcpy(sig->data, tsig->buffer, tsig->size); sig->size = tsig->size; ret = 0; out: if (tsig) free(tsig); if (key_handle != ESYS_TR_NONE) Esys_FlushContext(ectx, key_handle); if (ectx) Esys_Finalize(&ectx); return ret; } int tpm2_ec_sign_hash_fn(gnutls_privkey_t key, gnutls_sign_algorithm_t algo, void *_vpninfo, unsigned int flags, const gnutls_datum_t *data, gnutls_datum_t *sig) { struct openconnect_info *vpninfo = _vpninfo; int ret = GNUTLS_E_PK_SIGN_FAILED; ESYS_CONTEXT *ectx = NULL; TPM2B_DIGEST digest; TPMT_SIGNATURE *tsig = NULL; ESYS_TR key_handle = ESYS_TR_NONE; TSS2_RC r; TPMT_TK_HASHCHECK validation = { .tag = TPM2_ST_HASHCHECK, .hierarchy = TPM2_RH_NULL, .digest.size = 0 }; TPMT_SIG_SCHEME inScheme = { .scheme = TPM2_ALG_ECDSA }; gnutls_datum_t sig_r, sig_s; vpn_progress(vpninfo, PRG_DEBUG, _("TPM2 EC sign function called for %d bytes.\n"), data->size); switch (algo) { case GNUTLS_SIGN_ECDSA_SHA1: inScheme.details.ecdsa.hashAlg = TPM2_ALG_SHA1; break; case GNUTLS_SIGN_ECDSA_SHA256: inScheme.details.ecdsa.hashAlg = TPM2_ALG_SHA256; break; case GNUTLS_SIGN_ECDSA_SHA384: inScheme.details.ecdsa.hashAlg = TPM2_ALG_SHA384; break; case GNUTLS_SIGN_ECDSA_SHA512: inScheme.details.ecdsa.hashAlg = TPM2_ALG_SHA512; break; default: vpn_progress(vpninfo, PRG_ERR, _("Unknown TPM2 EC digest size %d\n"), data->size); return GNUTLS_E_PK_SIGN_FAILED; } memcpy(digest.buffer, data->data, data->size); digest.size = data->size; if (init_tpm2_key(&ectx, &key_handle, vpninfo)) goto out; reauth: if (auth_tpm2_key(vpninfo, ectx, key_handle)) goto out; r = Esys_Sign(ectx, key_handle, ESYS_TR_PASSWORD, ESYS_TR_NONE, ESYS_TR_NONE, &digest, &inScheme, &validation, &tsig); if (r == KEY_AUTH_FAILED) { vpn_progress(vpninfo, PRG_DEBUG, _("TPM2 Esys_Sign auth failed\n")); vpninfo->tpm2->need_userauth = 1; goto reauth; } if (r) { vpn_progress(vpninfo, PRG_ERR, _("TPM2 failed to generate RSA signature: 0x%x\n"), r); goto out; } sig_r.data = tsig->signature.ecdsa.signatureR.buffer; sig_r.size = tsig->signature.ecdsa.signatureR.size; sig_s.data = tsig->signature.ecdsa.signatureS.buffer; sig_s.size = tsig->signature.ecdsa.signatureS.size; ret = gnutls_encode_rs_value(sig, &sig_r, &sig_s); out: free(tsig); if (key_handle != ESYS_TR_NONE) Esys_FlushContext(ectx, key_handle); if (ectx) Esys_Finalize(&ectx); return ret; } int install_tpm2_key(struct openconnect_info *vpninfo, gnutls_privkey_t *pkey, gnutls_datum_t *pkey_sig, unsigned int parent, int emptyauth, int legacy, gnutls_datum_t *privdata, gnutls_datum_t *pubdata) { TSS2_RC r; if (!parent_is_persistent(parent) && parent != TPM2_RH_OWNER && parent != TPM2_RH_NULL && parent != TPM2_RH_ENDORSEMENT && parent != TPM2_RH_PLATFORM) { vpn_progress(vpninfo, PRG_ERR, _("Invalid TPM2 parent handle 0x%08x\n"), parent); return -EINVAL; } vpninfo->tpm2 = calloc(1, sizeof(*vpninfo->tpm2)); if (!vpninfo->tpm2) return -ENOMEM; vpninfo->tpm2->parent = parent; r = Tss2_MU_TPM2B_PRIVATE_Unmarshal(privdata->data, privdata->size, NULL, &vpninfo->tpm2->priv); if (r) { vpn_progress(vpninfo, PRG_ERR, _("Failed to import TPM2 private key data: 0x%x\n"), r); goto err_out; } r = Tss2_MU_TPM2B_PUBLIC_Unmarshal(pubdata->data, pubdata->size, NULL, &vpninfo->tpm2->pub); if (r) { vpn_progress(vpninfo, PRG_ERR, _("Failed to import TPM2 public key data: 0x%x\n"), r); goto err_out; } vpninfo->tpm2->need_userauth = !emptyauth; vpninfo->tpm2->legacy_srk = legacy; switch(vpninfo->tpm2->pub.publicArea.type) { case TPM2_ALG_RSA: return GNUTLS_PK_RSA; case TPM2_ALG_ECC: return GNUTLS_PK_ECDSA; } vpn_progress(vpninfo, PRG_ERR, _("Unsupported TPM2 key type %d\n"), vpninfo->tpm2->pub.publicArea.type); err_out: release_tpm2_ctx(vpninfo); return -EINVAL; } void release_tpm2_ctx(struct openconnect_info *vpninfo) { if (vpninfo->tpm2) { clear_mem(vpninfo->tpm2->ownerauth.buffer, sizeof(vpninfo->tpm2->ownerauth.buffer)); clear_mem(vpninfo->tpm2->userauth.buffer, sizeof(vpninfo->tpm2->userauth.buffer)); free(vpninfo->tpm2); } vpninfo->tpm2 = NULL; } openconnect-8.05/configure0000775000076400007640000231653313536301675017472 0ustar00dwoodhoudwoodhou00000000000000#! /bin/sh # Guess values for system-dependent variables and create Makefiles. # Generated by GNU Autoconf 2.69 for openconnect 8.05. # # # Copyright (C) 1992-1996, 1998-2012 Free Software Foundation, Inc. # # # This configure script is free software; the Free Software Foundation # gives unlimited permission to copy, distribute and modify it. ## -------------------- ## ## M4sh Initialization. ## ## -------------------- ## # Be more Bourne compatible DUALCASE=1; export DUALCASE # for MKS sh if test -n "${ZSH_VERSION+set}" && (emulate sh) >/dev/null 2>&1; then : emulate sh NULLCMD=: # Pre-4.2 versions of Zsh do word splitting on ${1+"$@"}, which # is contrary to our usage. Disable this feature. alias -g '${1+"$@"}'='"$@"' setopt NO_GLOB_SUBST else case `(set -o) 2>/dev/null` in #( *posix*) : set -o posix ;; #( *) : ;; esac fi as_nl=' ' export as_nl # Printing a long string crashes Solaris 7 /usr/bin/printf. as_echo='\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\' as_echo=$as_echo$as_echo$as_echo$as_echo$as_echo as_echo=$as_echo$as_echo$as_echo$as_echo$as_echo$as_echo # Prefer a ksh shell builtin over an external printf program on Solaris, # but without wasting forks for bash or zsh. if test -z "$BASH_VERSION$ZSH_VERSION" \ && (test "X`print -r -- $as_echo`" = "X$as_echo") 2>/dev/null; then as_echo='print -r --' as_echo_n='print -rn --' elif (test "X`printf %s $as_echo`" = "X$as_echo") 2>/dev/null; then as_echo='printf %s\n' as_echo_n='printf %s' else if test "X`(/usr/ucb/echo -n -n $as_echo) 2>/dev/null`" = "X-n $as_echo"; then as_echo_body='eval /usr/ucb/echo -n "$1$as_nl"' as_echo_n='/usr/ucb/echo -n' else as_echo_body='eval expr "X$1" : "X\\(.*\\)"' as_echo_n_body='eval arg=$1; case $arg in #( *"$as_nl"*) expr "X$arg" : "X\\(.*\\)$as_nl"; arg=`expr "X$arg" : ".*$as_nl\\(.*\\)"`;; esac; expr "X$arg" : "X\\(.*\\)" | tr -d "$as_nl" ' export as_echo_n_body as_echo_n='sh -c $as_echo_n_body as_echo' fi export as_echo_body as_echo='sh -c $as_echo_body as_echo' fi # The user is always right. if test "${PATH_SEPARATOR+set}" != set; then PATH_SEPARATOR=: (PATH='/bin;/bin'; FPATH=$PATH; sh -c :) >/dev/null 2>&1 && { (PATH='/bin:/bin'; FPATH=$PATH; sh -c :) >/dev/null 2>&1 || PATH_SEPARATOR=';' } fi # IFS # We need space, tab and new line, in precisely that order. Quoting is # there to prevent editors from complaining about space-tab. # (If _AS_PATH_WALK were called with IFS unset, it would disable word # splitting by setting IFS to empty value.) IFS=" "" $as_nl" # Find who we are. Look in the path if we contain no directory separator. as_myself= case $0 in #(( *[\\/]* ) as_myself=$0 ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. test -r "$as_dir/$0" && as_myself=$as_dir/$0 && break done IFS=$as_save_IFS ;; esac # We did not find ourselves, most probably we were run as `sh COMMAND' # in which case we are not to be found in the path. if test "x$as_myself" = x; then as_myself=$0 fi if test ! -f "$as_myself"; then $as_echo "$as_myself: error: cannot find myself; rerun with an absolute file name" >&2 exit 1 fi # Unset variables that we do not need and which cause bugs (e.g. in # pre-3.0 UWIN ksh). But do not cause bugs in bash 2.01; the "|| exit 1" # suppresses any "Segmentation fault" message there. '((' could # trigger a bug in pdksh 5.2.14. for as_var in BASH_ENV ENV MAIL MAILPATH do eval test x\${$as_var+set} = xset \ && ( (unset $as_var) || exit 1) >/dev/null 2>&1 && unset $as_var || : done PS1='$ ' PS2='> ' PS4='+ ' # NLS nuisances. LC_ALL=C export LC_ALL LANGUAGE=C export LANGUAGE # CDPATH. (unset CDPATH) >/dev/null 2>&1 && unset CDPATH # Use a proper internal environment variable to ensure we don't fall # into an infinite loop, continuously re-executing ourselves. if test x"${_as_can_reexec}" != xno && test "x$CONFIG_SHELL" != x; then _as_can_reexec=no; export _as_can_reexec; # We cannot yet assume a decent shell, so we have to provide a # neutralization value for shells without unset; and this also # works around shells that cannot unset nonexistent variables. # Preserve -v and -x to the replacement shell. BASH_ENV=/dev/null ENV=/dev/null (unset BASH_ENV) >/dev/null 2>&1 && unset BASH_ENV ENV case $- in # (((( *v*x* | *x*v* ) as_opts=-vx ;; *v* ) as_opts=-v ;; *x* ) as_opts=-x ;; * ) as_opts= ;; esac exec $CONFIG_SHELL $as_opts "$as_myself" ${1+"$@"} # Admittedly, this is quite paranoid, since all the known shells bail # out after a failed `exec'. $as_echo "$0: could not re-execute with $CONFIG_SHELL" >&2 as_fn_exit 255 fi # We don't want this to propagate to other subprocesses. { _as_can_reexec=; unset _as_can_reexec;} if test "x$CONFIG_SHELL" = x; then as_bourne_compatible="if test -n \"\${ZSH_VERSION+set}\" && (emulate sh) >/dev/null 2>&1; then : emulate sh NULLCMD=: # Pre-4.2 versions of Zsh do word splitting on \${1+\"\$@\"}, which # is contrary to our usage. Disable this feature. alias -g '\${1+\"\$@\"}'='\"\$@\"' setopt NO_GLOB_SUBST else case \`(set -o) 2>/dev/null\` in #( *posix*) : set -o posix ;; #( *) : ;; esac fi " as_required="as_fn_return () { (exit \$1); } as_fn_success () { as_fn_return 0; } as_fn_failure () { as_fn_return 1; } as_fn_ret_success () { return 0; } as_fn_ret_failure () { return 1; } exitcode=0 as_fn_success || { exitcode=1; echo as_fn_success failed.; } as_fn_failure && { exitcode=1; echo as_fn_failure succeeded.; } as_fn_ret_success || { exitcode=1; echo as_fn_ret_success failed.; } as_fn_ret_failure && { exitcode=1; echo as_fn_ret_failure succeeded.; } if ( set x; as_fn_ret_success y && test x = \"\$1\" ); then : else exitcode=1; echo positional parameters were not saved. fi test x\$exitcode = x0 || exit 1 test -x / || exit 1" as_suggested=" as_lineno_1=";as_suggested=$as_suggested$LINENO;as_suggested=$as_suggested" as_lineno_1a=\$LINENO as_lineno_2=";as_suggested=$as_suggested$LINENO;as_suggested=$as_suggested" as_lineno_2a=\$LINENO eval 'test \"x\$as_lineno_1'\$as_run'\" != \"x\$as_lineno_2'\$as_run'\" && test \"x\`expr \$as_lineno_1'\$as_run' + 1\`\" = \"x\$as_lineno_2'\$as_run'\"' || exit 1 test \$(( 1 + 1 )) = 2 || exit 1 test -n \"\${ZSH_VERSION+set}\${BASH_VERSION+set}\" || ( ECHO='\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\' ECHO=\$ECHO\$ECHO\$ECHO\$ECHO\$ECHO ECHO=\$ECHO\$ECHO\$ECHO\$ECHO\$ECHO\$ECHO PATH=/empty FPATH=/empty; export PATH FPATH test \"X\`printf %s \$ECHO\`\" = \"X\$ECHO\" \\ || test \"X\`print -r -- \$ECHO\`\" = \"X\$ECHO\" ) || exit 1" if (eval "$as_required") 2>/dev/null; then : as_have_required=yes else as_have_required=no fi if test x$as_have_required = xyes && (eval "$as_suggested") 2>/dev/null; then : else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR as_found=false for as_dir in /bin$PATH_SEPARATOR/usr/bin$PATH_SEPARATOR$PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. as_found=: case $as_dir in #( /*) for as_base in sh bash ksh sh5; do # Try only shells that exist, to save several forks. as_shell=$as_dir/$as_base if { test -f "$as_shell" || test -f "$as_shell.exe"; } && { $as_echo "$as_bourne_compatible""$as_required" | as_run=a "$as_shell"; } 2>/dev/null; then : CONFIG_SHELL=$as_shell as_have_required=yes if { $as_echo "$as_bourne_compatible""$as_suggested" | as_run=a "$as_shell"; } 2>/dev/null; then : break 2 fi fi done;; esac as_found=false done $as_found || { if { test -f "$SHELL" || test -f "$SHELL.exe"; } && { $as_echo "$as_bourne_compatible""$as_required" | as_run=a "$SHELL"; } 2>/dev/null; then : CONFIG_SHELL=$SHELL as_have_required=yes fi; } IFS=$as_save_IFS if test "x$CONFIG_SHELL" != x; then : export CONFIG_SHELL # We cannot yet assume a decent shell, so we have to provide a # neutralization value for shells without unset; and this also # works around shells that cannot unset nonexistent variables. # Preserve -v and -x to the replacement shell. BASH_ENV=/dev/null ENV=/dev/null (unset BASH_ENV) >/dev/null 2>&1 && unset BASH_ENV ENV case $- in # (((( *v*x* | *x*v* ) as_opts=-vx ;; *v* ) as_opts=-v ;; *x* ) as_opts=-x ;; * ) as_opts= ;; esac exec $CONFIG_SHELL $as_opts "$as_myself" ${1+"$@"} # Admittedly, this is quite paranoid, since all the known shells bail # out after a failed `exec'. $as_echo "$0: could not re-execute with $CONFIG_SHELL" >&2 exit 255 fi if test x$as_have_required = xno; then : $as_echo "$0: This script requires a shell more modern than all" $as_echo "$0: the shells that I found on your system." if test x${ZSH_VERSION+set} = xset ; then $as_echo "$0: In particular, zsh $ZSH_VERSION has bugs and should" $as_echo "$0: be upgraded to zsh 4.3.4 or later." else $as_echo "$0: Please tell bug-autoconf@gnu.org about your system, $0: including any error possibly output before this $0: message. Then install a modern shell, or manually run $0: the script under such a shell if you do have one." fi exit 1 fi fi fi SHELL=${CONFIG_SHELL-/bin/sh} export SHELL # Unset more variables known to interfere with behavior of common tools. CLICOLOR_FORCE= GREP_OPTIONS= unset CLICOLOR_FORCE GREP_OPTIONS ## --------------------- ## ## M4sh Shell Functions. ## ## --------------------- ## # as_fn_unset VAR # --------------- # Portably unset VAR. as_fn_unset () { { eval $1=; unset $1;} } as_unset=as_fn_unset # as_fn_set_status STATUS # ----------------------- # Set $? to STATUS, without forking. as_fn_set_status () { return $1 } # as_fn_set_status # as_fn_exit STATUS # ----------------- # Exit the shell with STATUS, even in a "trap 0" or "set -e" context. as_fn_exit () { set +e as_fn_set_status $1 exit $1 } # as_fn_exit # as_fn_mkdir_p # ------------- # Create "$as_dir" as a directory, including parents if necessary. as_fn_mkdir_p () { case $as_dir in #( -*) as_dir=./$as_dir;; esac test -d "$as_dir" || eval $as_mkdir_p || { as_dirs= while :; do case $as_dir in #( *\'*) as_qdir=`$as_echo "$as_dir" | sed "s/'/'\\\\\\\\''/g"`;; #'( *) as_qdir=$as_dir;; esac as_dirs="'$as_qdir' $as_dirs" as_dir=`$as_dirname -- "$as_dir" || $as_expr X"$as_dir" : 'X\(.*[^/]\)//*[^/][^/]*/*$' \| \ X"$as_dir" : 'X\(//\)[^/]' \| \ X"$as_dir" : 'X\(//\)$' \| \ X"$as_dir" : 'X\(/\)' \| . 2>/dev/null || $as_echo X"$as_dir" | sed '/^X\(.*[^/]\)\/\/*[^/][^/]*\/*$/{ s//\1/ q } /^X\(\/\/\)[^/].*/{ s//\1/ q } /^X\(\/\/\)$/{ s//\1/ q } /^X\(\/\).*/{ s//\1/ q } s/.*/./; q'` test -d "$as_dir" && break done test -z "$as_dirs" || eval "mkdir $as_dirs" } || test -d "$as_dir" || as_fn_error $? "cannot create directory $as_dir" } # as_fn_mkdir_p # as_fn_executable_p FILE # ----------------------- # Test if FILE is an executable regular file. as_fn_executable_p () { test -f "$1" && test -x "$1" } # as_fn_executable_p # as_fn_append VAR VALUE # ---------------------- # Append the text in VALUE to the end of the definition contained in VAR. Take # advantage of any shell optimizations that allow amortized linear growth over # repeated appends, instead of the typical quadratic growth present in naive # implementations. if (eval "as_var=1; as_var+=2; test x\$as_var = x12") 2>/dev/null; then : eval 'as_fn_append () { eval $1+=\$2 }' else as_fn_append () { eval $1=\$$1\$2 } fi # as_fn_append # as_fn_arith ARG... # ------------------ # Perform arithmetic evaluation on the ARGs, and store the result in the # global $as_val. Take advantage of shells that can avoid forks. The arguments # must be portable across $(()) and expr. if (eval "test \$(( 1 + 1 )) = 2") 2>/dev/null; then : eval 'as_fn_arith () { as_val=$(( $* )) }' else as_fn_arith () { as_val=`expr "$@" || test $? -eq 1` } fi # as_fn_arith # as_fn_error STATUS ERROR [LINENO LOG_FD] # ---------------------------------------- # Output "`basename $0`: error: ERROR" to stderr. If LINENO and LOG_FD are # provided, also output the error to LOG_FD, referencing LINENO. Then exit the # script with STATUS, using 1 if that was 0. as_fn_error () { as_status=$1; test $as_status -eq 0 && as_status=1 if test "$4"; then as_lineno=${as_lineno-"$3"} as_lineno_stack=as_lineno_stack=$as_lineno_stack $as_echo "$as_me:${as_lineno-$LINENO}: error: $2" >&$4 fi $as_echo "$as_me: error: $2" >&2 as_fn_exit $as_status } # as_fn_error if expr a : '\(a\)' >/dev/null 2>&1 && test "X`expr 00001 : '.*\(...\)'`" = X001; then as_expr=expr else as_expr=false fi if (basename -- /) >/dev/null 2>&1 && test "X`basename -- / 2>&1`" = "X/"; then as_basename=basename else as_basename=false fi if (as_dir=`dirname -- /` && test "X$as_dir" = X/) >/dev/null 2>&1; then as_dirname=dirname else as_dirname=false fi as_me=`$as_basename -- "$0" || $as_expr X/"$0" : '.*/\([^/][^/]*\)/*$' \| \ X"$0" : 'X\(//\)$' \| \ X"$0" : 'X\(/\)' \| . 2>/dev/null || $as_echo X/"$0" | sed '/^.*\/\([^/][^/]*\)\/*$/{ s//\1/ q } /^X\/\(\/\/\)$/{ s//\1/ q } /^X\/\(\/\).*/{ s//\1/ q } s/.*/./; q'` # Avoid depending upon Character Ranges. as_cr_letters='abcdefghijklmnopqrstuvwxyz' as_cr_LETTERS='ABCDEFGHIJKLMNOPQRSTUVWXYZ' as_cr_Letters=$as_cr_letters$as_cr_LETTERS as_cr_digits='0123456789' as_cr_alnum=$as_cr_Letters$as_cr_digits as_lineno_1=$LINENO as_lineno_1a=$LINENO as_lineno_2=$LINENO as_lineno_2a=$LINENO eval 'test "x$as_lineno_1'$as_run'" != "x$as_lineno_2'$as_run'" && test "x`expr $as_lineno_1'$as_run' + 1`" = "x$as_lineno_2'$as_run'"' || { # Blame Lee E. McMahon (1931-1989) for sed's syntax. :-) sed -n ' p /[$]LINENO/= ' <$as_myself | sed ' s/[$]LINENO.*/&-/ t lineno b :lineno N :loop s/[$]LINENO\([^'$as_cr_alnum'_].*\n\)\(.*\)/\2\1\2/ t loop s/-\n.*// ' >$as_me.lineno && chmod +x "$as_me.lineno" || { $as_echo "$as_me: error: cannot create $as_me.lineno; rerun with a POSIX shell" >&2; as_fn_exit 1; } # If we had to re-execute with $CONFIG_SHELL, we're ensured to have # already done that, so ensure we don't try to do so again and fall # in an infinite loop. This has already happened in practice. _as_can_reexec=no; export _as_can_reexec # Don't try to exec as it changes $[0], causing all sort of problems # (the dirname of $[0] is not the place where we might find the # original and so on. Autoconf is especially sensitive to this). . "./$as_me.lineno" # Exit status is that of the last command. exit } ECHO_C= ECHO_N= ECHO_T= case `echo -n x` in #((((( -n*) case `echo 'xy\c'` in *c*) ECHO_T=' ';; # ECHO_T is single tab character. xy) ECHO_C='\c';; *) echo `echo ksh88 bug on AIX 6.1` > /dev/null ECHO_T=' ';; esac;; *) ECHO_N='-n';; esac rm -f conf$$ conf$$.exe conf$$.file if test -d conf$$.dir; then rm -f conf$$.dir/conf$$.file else rm -f conf$$.dir mkdir conf$$.dir 2>/dev/null fi if (echo >conf$$.file) 2>/dev/null; then if ln -s conf$$.file conf$$ 2>/dev/null; then as_ln_s='ln -s' # ... but there are two gotchas: # 1) On MSYS, both `ln -s file dir' and `ln file dir' fail. # 2) DJGPP < 2.04 has no symlinks; `ln -s' creates a wrapper executable. # In both cases, we have to default to `cp -pR'. ln -s conf$$.file conf$$.dir 2>/dev/null && test ! -f conf$$.exe || as_ln_s='cp -pR' elif ln conf$$.file conf$$ 2>/dev/null; then as_ln_s=ln else as_ln_s='cp -pR' fi else as_ln_s='cp -pR' fi rm -f conf$$ conf$$.exe conf$$.dir/conf$$.file conf$$.file rmdir conf$$.dir 2>/dev/null if mkdir -p . 2>/dev/null; then as_mkdir_p='mkdir -p "$as_dir"' else test -d ./-p && rmdir ./-p as_mkdir_p=false fi as_test_x='test -x' as_executable_p=as_fn_executable_p # Sed expression to map a string onto a valid CPP name. as_tr_cpp="eval sed 'y%*$as_cr_letters%P$as_cr_LETTERS%;s%[^_$as_cr_alnum]%_%g'" # Sed expression to map a string onto a valid variable name. as_tr_sh="eval sed 'y%*+%pp%;s%[^_$as_cr_alnum]%_%g'" SHELL=${CONFIG_SHELL-/bin/sh} test -n "$DJDIR" || exec 7<&0 &1 # Name of the host. # hostname on some systems (SVR3.2, old GNU/Linux) returns a bogus exit status, # so uname gets run too. ac_hostname=`(hostname || uname -n) 2>/dev/null | sed 1q` # # Initializations. # ac_default_prefix=/usr/local ac_clean_files= ac_config_libobj_dir=. LIBOBJS= cross_compiling=no subdirs= MFLAGS= MAKEFLAGS= # Identity of this package. PACKAGE_NAME='openconnect' PACKAGE_TARNAME='openconnect' PACKAGE_VERSION='8.05' PACKAGE_STRING='openconnect 8.05' PACKAGE_BUGREPORT='' PACKAGE_URL='' # Factoring default headers for most tests. ac_includes_default="\ #include #ifdef HAVE_SYS_TYPES_H # include #endif #ifdef HAVE_SYS_STAT_H # include #endif #ifdef STDC_HEADERS # include # include #else # ifdef HAVE_STDLIB_H # include # endif #endif #ifdef HAVE_STRING_H # if !defined STDC_HEADERS && defined HAVE_MEMORY_H # include # endif # include #endif #ifdef HAVE_STRINGS_H # include #endif #ifdef HAVE_INTTYPES_H # include #endif #ifdef HAVE_STDINT_H # include #endif #ifdef HAVE_UNISTD_H # include #endif" ac_subst_vars='am__EXEEXT_FALSE am__EXEEXT_TRUE LTLIBOBJS LIBOBJS OCSERV_GROUP OCSERV_USER GITVERSIONDEPS APIMINOR APIMAJOR LINGUAS CONFIG_STATUS_DEPENDENCIES HAVE_NETNS_FALSE HAVE_NETNS_TRUE IP NUTTCP HAVE_CWRAP_FALSE HAVE_CWRAP_TRUE CWRAP_LIBS CWRAP_CFLAGS BUILD_WWW_FALSE BUILD_WWW_TRUE GROFF PYTHON SYMVER_JAVA JNI_STANDALONE_FALSE JNI_STANDALONE_TRUE OPENCONNECT_JNI_FALSE OPENCONNECT_JNI_TRUE JNI_CFLAGS _ACJNI_JAVAC OPENCONNECT_GSSAPI_FALSE OPENCONNECT_GSSAPI_TRUE GSSAPI_LIBS GSSAPI_CFLAGS KRB5_CONFIG LIBPSKC_PC LIBPSKC_LIBS LIBPSKC_CFLAGS OPENCONNECT_LIBPCSCLITE_FALSE OPENCONNECT_LIBPCSCLITE_TRUE LIBPCSCLITE_PC system_pcsc_libs LIBPCSCLITE_CFLAGS LIBPCSCLITE_LIBS OPENCONNECT_STOKEN_FALSE OPENCONNECT_STOKEN_TRUE LIBSTOKEN_PC LIBSTOKEN_LIBS LIBSTOKEN_CFLAGS LIBPROXY_PC LIBPROXY_LIBS LIBPROXY_CFLAGS ZLIB_PC ZLIB_LIBS ZLIB_CFLAGS LIBXML2_LIBS LIBXML2_CFLAGS HAVE_VSCRIPT_COMPLEX_FALSE HAVE_VSCRIPT_COMPLEX_TRUE HAVE_VSCRIPT_FALSE HAVE_VSCRIPT_TRUE VSCRIPT_LDFLAGS OPENBSD_LIBTOOL_FALSE OPENBSD_LIBTOOL_TRUE LT_SYS_LIBRARY_PATH OTOOL64 OTOOL LIPO NMEDIT DSYMUTIL MANIFEST_TOOL RANLIB ac_ct_AR AR DLLTOOL OBJDUMP LN_S NM ac_ct_DUMPBIN DUMPBIN LD FGREP SED LIBTOOL LIBLZ4_PC LIBLZ4_LIBS LIBLZ4_CFLAGS OPENCONNECT_DTLS_FALSE OPENCONNECT_DTLS_TRUE OPENCONNECT_ESP_FALSE OPENCONNECT_ESP_TRUE OPENCONNECT_OPENSSL_FALSE OPENCONNECT_OPENSSL_TRUE OPENCONNECT_GNUTLS_FALSE OPENCONNECT_GNUTLS_TRUE TEST_DSA_FALSE TEST_DSA_TRUE DTLS_XFAIL_FALSE DTLS_XFAIL_TRUE CHECK_DTLS_FALSE CHECK_DTLS_TRUE TEST_PKCS11_FALSE TEST_PKCS11_TRUE test_pkcs11 OPENCONNECT_TSS2_IBM_FALSE OPENCONNECT_TSS2_IBM_TRUE OPENCONNECT_TSS2_ESYS_FALSE OPENCONNECT_TSS2_ESYS_TRUE TSS2_LIBS TPM2_LIBS TPM2_CFLAGS TSS2_ESYS_LIBS TSS2_ESYS_CFLAGS TASN1_LIBS TASN1_CFLAGS TSS_CFLAGS TSS_LIBS SSL_CFLAGS SSL_LIBS P11KIT_PC LIBP11_LIBS LIBP11_CFLAGS P11KIT_LIBS P11KIT_CFLAGS SSL_PC openssl_pc_libs OPENSSL_LIBS OPENSSL_CFLAGS GNUTLS_LIBS GNUTLS_CFLAGS USE_NLS_FALSE USE_NLS_TRUE INTL_CFLAGS INTL_LIBS MSGFMT OPENCONNECT_ICONV_FALSE OPENCONNECT_ICONV_TRUE ICONV_CFLAGS ICONV_LIBS LTLIBICONV LIBICONV EGREP GREP CPP WFLAGS SYMVER_WIN32_STRERROR SYMVER_VASPRINTF SYMVER_ASPRINTF SYMVER_GETLINE SYMVER_TIME am__fastdepCC_FALSE am__fastdepCC_TRUE CCDEPMODE am__nodep AMDEPBACKSLASH AMDEP_FALSE AMDEP_TRUE am__include DEPDIR OBJEXT EXEEXT ac_ct_CC CPPFLAGS LDFLAGS CFLAGS CC DEFAULT_VPNCSCRIPT OPENCONNECT_WIN32_FALSE OPENCONNECT_WIN32_TRUE WINDRES pkgconfigdir AM_BACKSLASH AM_DEFAULT_VERBOSITY AM_DEFAULT_V AM_V am__untar am__tar AMTAR am__leading_dot SET_MAKE AWK mkdir_p MKDIR_P INSTALL_STRIP_PROGRAM STRIP install_sh MAKEINFO AUTOHEADER AUTOMAKE AUTOCONF ACLOCAL VERSION PACKAGE CYGPATH_W am__isrc INSTALL_DATA INSTALL_SCRIPT INSTALL_PROGRAM MAINT MAINTAINER_MODE_FALSE MAINTAINER_MODE_TRUE host_os host_vendor host_cpu host build_os build_vendor build_cpu build PKG_CONFIG_LIBDIR PKG_CONFIG_PATH PKG_CONFIG target_alias host_alias build_alias LIBS ECHO_T ECHO_N ECHO_C DEFS mandir localedir libdir psdir pdfdir dvidir htmldir infodir docdir oldincludedir includedir localstatedir sharedstatedir sysconfdir datadir datarootdir libexecdir sbindir bindir program_transform_name prefix exec_prefix PACKAGE_URL PACKAGE_BUGREPORT PACKAGE_STRING PACKAGE_VERSION PACKAGE_TARNAME PACKAGE_NAME PATH_SEPARATOR SHELL am__quote' ac_subst_files='' ac_user_opts=' enable_option_checking enable_maintainer_mode enable_silent_rules with_pkgconfigdir with_vpnc_script enable_dependency_tracking enable_shared enable_static with_gnu_ld enable_rpath with_libiconv_prefix enable_nls with_libintl_prefix with_system_cafile with_gnutls with_openssl with_openssl_version_check with_default_gnutls_priority enable_dtls_xfail enable_dsa_tests with_lz4 with_pic enable_fast_install with_aix_soname with_sysroot enable_libtool_lock enable_symvers with_libproxy with_stoken with_libpcsclite with_libpskc with_gssapi with_java enable_jni_standalone ' ac_precious_vars='build_alias host_alias target_alias PKG_CONFIG PKG_CONFIG_PATH PKG_CONFIG_LIBDIR CC CFLAGS LDFLAGS LIBS CPPFLAGS CPP GNUTLS_CFLAGS GNUTLS_LIBS OPENSSL_CFLAGS OPENSSL_LIBS P11KIT_CFLAGS P11KIT_LIBS LIBP11_CFLAGS LIBP11_LIBS TASN1_CFLAGS TASN1_LIBS TSS2_ESYS_CFLAGS TSS2_ESYS_LIBS LIBLZ4_CFLAGS LIBLZ4_LIBS LT_SYS_LIBRARY_PATH LIBXML2_CFLAGS LIBXML2_LIBS ZLIB_CFLAGS ZLIB_LIBS LIBPROXY_CFLAGS LIBPROXY_LIBS LIBSTOKEN_CFLAGS LIBSTOKEN_LIBS LIBPCSCLITE_CFLAGS LIBPCSCLITE_LIBS LIBPSKC_CFLAGS LIBPSKC_LIBS CWRAP_CFLAGS CWRAP_LIBS' # Initialize some variables set by options. ac_init_help= ac_init_version=false ac_unrecognized_opts= ac_unrecognized_sep= # The variables have the same names as the options, with # dashes changed to underlines. cache_file=/dev/null exec_prefix=NONE no_create= no_recursion= prefix=NONE program_prefix=NONE program_suffix=NONE program_transform_name=s,x,x, silent= site= srcdir= verbose= x_includes=NONE x_libraries=NONE # Installation directory options. # These are left unexpanded so users can "make install exec_prefix=/foo" # and all the variables that are supposed to be based on exec_prefix # by default will actually change. # Use braces instead of parens because sh, perl, etc. also accept them. # (The list follows the same order as the GNU Coding Standards.) bindir='${exec_prefix}/bin' sbindir='${exec_prefix}/sbin' libexecdir='${exec_prefix}/libexec' datarootdir='${prefix}/share' datadir='${datarootdir}' sysconfdir='${prefix}/etc' sharedstatedir='${prefix}/com' localstatedir='${prefix}/var' includedir='${prefix}/include' oldincludedir='/usr/include' docdir='${datarootdir}/doc/${PACKAGE_TARNAME}' infodir='${datarootdir}/info' htmldir='${docdir}' dvidir='${docdir}' pdfdir='${docdir}' psdir='${docdir}' libdir='${exec_prefix}/lib' localedir='${datarootdir}/locale' mandir='${datarootdir}/man' ac_prev= ac_dashdash= for ac_option do # If the previous option needs an argument, assign it. if test -n "$ac_prev"; then eval $ac_prev=\$ac_option ac_prev= continue fi case $ac_option in *=?*) ac_optarg=`expr "X$ac_option" : '[^=]*=\(.*\)'` ;; *=) ac_optarg= ;; *) ac_optarg=yes ;; esac # Accept the important Cygnus configure options, so we can diagnose typos. case $ac_dashdash$ac_option in --) ac_dashdash=yes ;; -bindir | --bindir | --bindi | --bind | --bin | --bi) ac_prev=bindir ;; -bindir=* | --bindir=* | --bindi=* | --bind=* | --bin=* | --bi=*) bindir=$ac_optarg ;; -build | --build | --buil | --bui | --bu) ac_prev=build_alias ;; -build=* | --build=* | --buil=* | --bui=* | --bu=*) build_alias=$ac_optarg ;; -cache-file | --cache-file | --cache-fil | --cache-fi \ | --cache-f | --cache- | --cache | --cach | --cac | --ca | --c) ac_prev=cache_file ;; -cache-file=* | --cache-file=* | --cache-fil=* | --cache-fi=* \ | --cache-f=* | --cache-=* | --cache=* | --cach=* | --cac=* | --ca=* | --c=*) cache_file=$ac_optarg ;; --config-cache | -C) cache_file=config.cache ;; -datadir | --datadir | --datadi | --datad) ac_prev=datadir ;; -datadir=* | --datadir=* | --datadi=* | --datad=*) datadir=$ac_optarg ;; -datarootdir | --datarootdir | --datarootdi | --datarootd | --dataroot \ | --dataroo | --dataro | --datar) ac_prev=datarootdir ;; -datarootdir=* | --datarootdir=* | --datarootdi=* | --datarootd=* \ | --dataroot=* | --dataroo=* | --dataro=* | --datar=*) datarootdir=$ac_optarg ;; -disable-* | --disable-*) ac_useropt=`expr "x$ac_option" : 'x-*disable-\(.*\)'` # Reject names that are not valid shell variable names. expr "x$ac_useropt" : ".*[^-+._$as_cr_alnum]" >/dev/null && as_fn_error $? "invalid feature name: $ac_useropt" ac_useropt_orig=$ac_useropt ac_useropt=`$as_echo "$ac_useropt" | sed 's/[-+.]/_/g'` case $ac_user_opts in *" "enable_$ac_useropt" "*) ;; *) ac_unrecognized_opts="$ac_unrecognized_opts$ac_unrecognized_sep--disable-$ac_useropt_orig" ac_unrecognized_sep=', ';; esac eval enable_$ac_useropt=no ;; -docdir | --docdir | --docdi | --doc | --do) ac_prev=docdir ;; -docdir=* | --docdir=* | --docdi=* | --doc=* | --do=*) docdir=$ac_optarg ;; -dvidir | --dvidir | --dvidi | --dvid | --dvi | --dv) ac_prev=dvidir ;; -dvidir=* | --dvidir=* | --dvidi=* | --dvid=* | --dvi=* | --dv=*) dvidir=$ac_optarg ;; -enable-* | --enable-*) ac_useropt=`expr "x$ac_option" : 'x-*enable-\([^=]*\)'` # Reject names that are not valid shell variable names. expr "x$ac_useropt" : ".*[^-+._$as_cr_alnum]" >/dev/null && as_fn_error $? "invalid feature name: $ac_useropt" ac_useropt_orig=$ac_useropt ac_useropt=`$as_echo "$ac_useropt" | sed 's/[-+.]/_/g'` case $ac_user_opts in *" "enable_$ac_useropt" "*) ;; *) ac_unrecognized_opts="$ac_unrecognized_opts$ac_unrecognized_sep--enable-$ac_useropt_orig" ac_unrecognized_sep=', ';; esac eval enable_$ac_useropt=\$ac_optarg ;; -exec-prefix | --exec_prefix | --exec-prefix | --exec-prefi \ | --exec-pref | --exec-pre | --exec-pr | --exec-p | --exec- \ | --exec | --exe | --ex) ac_prev=exec_prefix ;; -exec-prefix=* | --exec_prefix=* | --exec-prefix=* | --exec-prefi=* \ | --exec-pref=* | --exec-pre=* | --exec-pr=* | --exec-p=* | --exec-=* \ | --exec=* | --exe=* | --ex=*) exec_prefix=$ac_optarg ;; -gas | --gas | --ga | --g) # Obsolete; use --with-gas. with_gas=yes ;; -help | --help | --hel | --he | -h) ac_init_help=long ;; -help=r* | --help=r* | --hel=r* | --he=r* | -hr*) ac_init_help=recursive ;; -help=s* | --help=s* | --hel=s* | --he=s* | -hs*) ac_init_help=short ;; -host | --host | --hos | --ho) ac_prev=host_alias ;; -host=* | --host=* | --hos=* | --ho=*) host_alias=$ac_optarg ;; -htmldir | --htmldir | --htmldi | --htmld | --html | --htm | --ht) ac_prev=htmldir ;; -htmldir=* | --htmldir=* | --htmldi=* | --htmld=* | --html=* | --htm=* \ | --ht=*) htmldir=$ac_optarg ;; -includedir | --includedir | --includedi | --included | --include \ | --includ | --inclu | --incl | --inc) ac_prev=includedir ;; -includedir=* | --includedir=* | --includedi=* | --included=* | --include=* \ | --includ=* | --inclu=* | --incl=* | --inc=*) includedir=$ac_optarg ;; -infodir | --infodir | --infodi | --infod | --info | --inf) ac_prev=infodir ;; -infodir=* | --infodir=* | --infodi=* | --infod=* | --info=* | --inf=*) infodir=$ac_optarg ;; -libdir | --libdir | --libdi | --libd) ac_prev=libdir ;; -libdir=* | --libdir=* | --libdi=* | --libd=*) libdir=$ac_optarg ;; -libexecdir | --libexecdir | --libexecdi | --libexecd | --libexec \ | --libexe | --libex | --libe) ac_prev=libexecdir ;; -libexecdir=* | --libexecdir=* | --libexecdi=* | --libexecd=* | --libexec=* \ | --libexe=* | --libex=* | --libe=*) libexecdir=$ac_optarg ;; -localedir | --localedir | --localedi | --localed | --locale) ac_prev=localedir ;; -localedir=* | --localedir=* | --localedi=* | --localed=* | --locale=*) localedir=$ac_optarg ;; -localstatedir | --localstatedir | --localstatedi | --localstated \ | --localstate | --localstat | --localsta | --localst | --locals) ac_prev=localstatedir ;; -localstatedir=* | --localstatedir=* | --localstatedi=* | --localstated=* \ | --localstate=* | --localstat=* | --localsta=* | --localst=* | --locals=*) localstatedir=$ac_optarg ;; -mandir | --mandir | --mandi | --mand | --man | --ma | --m) ac_prev=mandir ;; -mandir=* | --mandir=* | --mandi=* | --mand=* | --man=* | --ma=* | --m=*) mandir=$ac_optarg ;; -nfp | --nfp | --nf) # Obsolete; use --without-fp. with_fp=no ;; -no-create | --no-create | --no-creat | --no-crea | --no-cre \ | --no-cr | --no-c | -n) no_create=yes ;; -no-recursion | --no-recursion | --no-recursio | --no-recursi \ | --no-recurs | --no-recur | --no-recu | --no-rec | --no-re | --no-r) no_recursion=yes ;; -oldincludedir | --oldincludedir | --oldincludedi | --oldincluded \ | --oldinclude | --oldinclud | --oldinclu | --oldincl | --oldinc \ | --oldin | --oldi | --old | --ol | --o) ac_prev=oldincludedir ;; -oldincludedir=* | --oldincludedir=* | --oldincludedi=* | --oldincluded=* \ | --oldinclude=* | --oldinclud=* | --oldinclu=* | --oldincl=* | --oldinc=* \ | --oldin=* | --oldi=* | --old=* | --ol=* | --o=*) oldincludedir=$ac_optarg ;; -prefix | --prefix | --prefi | --pref | --pre | --pr | --p) ac_prev=prefix ;; -prefix=* | --prefix=* | --prefi=* | --pref=* | --pre=* | --pr=* | --p=*) prefix=$ac_optarg ;; -program-prefix | --program-prefix | --program-prefi | --program-pref \ | --program-pre | --program-pr | --program-p) ac_prev=program_prefix ;; -program-prefix=* | --program-prefix=* | --program-prefi=* \ | --program-pref=* | --program-pre=* | --program-pr=* | --program-p=*) program_prefix=$ac_optarg ;; -program-suffix | --program-suffix | --program-suffi | --program-suff \ | --program-suf | --program-su | --program-s) ac_prev=program_suffix ;; -program-suffix=* | --program-suffix=* | --program-suffi=* \ | --program-suff=* | --program-suf=* | --program-su=* | --program-s=*) program_suffix=$ac_optarg ;; -program-transform-name | --program-transform-name \ | --program-transform-nam | --program-transform-na \ | --program-transform-n | --program-transform- \ | --program-transform | --program-transfor \ | --program-transfo | --program-transf \ | --program-trans | --program-tran \ | --progr-tra | --program-tr | --program-t) ac_prev=program_transform_name ;; -program-transform-name=* | --program-transform-name=* \ | --program-transform-nam=* | --program-transform-na=* \ | --program-transform-n=* | --program-transform-=* \ | --program-transform=* | --program-transfor=* \ | --program-transfo=* | --program-transf=* \ | --program-trans=* | --program-tran=* \ | --progr-tra=* | --program-tr=* | --program-t=*) program_transform_name=$ac_optarg ;; -pdfdir | --pdfdir | --pdfdi | --pdfd | --pdf | --pd) ac_prev=pdfdir ;; -pdfdir=* | --pdfdir=* | --pdfdi=* | --pdfd=* | --pdf=* | --pd=*) pdfdir=$ac_optarg ;; -psdir | --psdir | --psdi | --psd | --ps) ac_prev=psdir ;; -psdir=* | --psdir=* | --psdi=* | --psd=* | --ps=*) psdir=$ac_optarg ;; -q | -quiet | --quiet | --quie | --qui | --qu | --q \ | -silent | --silent | --silen | --sile | --sil) silent=yes ;; -sbindir | --sbindir | --sbindi | --sbind | --sbin | --sbi | --sb) ac_prev=sbindir ;; -sbindir=* | --sbindir=* | --sbindi=* | --sbind=* | --sbin=* \ | --sbi=* | --sb=*) sbindir=$ac_optarg ;; -sharedstatedir | --sharedstatedir | --sharedstatedi \ | --sharedstated | --sharedstate | --sharedstat | --sharedsta \ | --sharedst | --shareds | --shared | --share | --shar \ | --sha | --sh) ac_prev=sharedstatedir ;; -sharedstatedir=* | --sharedstatedir=* | --sharedstatedi=* \ | --sharedstated=* | --sharedstate=* | --sharedstat=* | --sharedsta=* \ | --sharedst=* | --shareds=* | --shared=* | --share=* | --shar=* \ | --sha=* | --sh=*) sharedstatedir=$ac_optarg ;; -site | --site | --sit) ac_prev=site ;; -site=* | --site=* | --sit=*) site=$ac_optarg ;; -srcdir | --srcdir | --srcdi | --srcd | --src | --sr) ac_prev=srcdir ;; -srcdir=* | --srcdir=* | --srcdi=* | --srcd=* | --src=* | --sr=*) srcdir=$ac_optarg ;; -sysconfdir | --sysconfdir | --sysconfdi | --sysconfd | --sysconf \ | --syscon | --sysco | --sysc | --sys | --sy) ac_prev=sysconfdir ;; -sysconfdir=* | --sysconfdir=* | --sysconfdi=* | --sysconfd=* | --sysconf=* \ | --syscon=* | --sysco=* | --sysc=* | --sys=* | --sy=*) sysconfdir=$ac_optarg ;; -target | --target | --targe | --targ | --tar | --ta | --t) ac_prev=target_alias ;; -target=* | --target=* | --targe=* | --targ=* | --tar=* | --ta=* | --t=*) target_alias=$ac_optarg ;; -v | -verbose | --verbose | --verbos | --verbo | --verb) verbose=yes ;; -version | --version | --versio | --versi | --vers | -V) ac_init_version=: ;; -with-* | --with-*) ac_useropt=`expr "x$ac_option" : 'x-*with-\([^=]*\)'` # Reject names that are not valid shell variable names. expr "x$ac_useropt" : ".*[^-+._$as_cr_alnum]" >/dev/null && as_fn_error $? "invalid package name: $ac_useropt" ac_useropt_orig=$ac_useropt ac_useropt=`$as_echo "$ac_useropt" | sed 's/[-+.]/_/g'` case $ac_user_opts in *" "with_$ac_useropt" "*) ;; *) ac_unrecognized_opts="$ac_unrecognized_opts$ac_unrecognized_sep--with-$ac_useropt_orig" ac_unrecognized_sep=', ';; esac eval with_$ac_useropt=\$ac_optarg ;; -without-* | --without-*) ac_useropt=`expr "x$ac_option" : 'x-*without-\(.*\)'` # Reject names that are not valid shell variable names. expr "x$ac_useropt" : ".*[^-+._$as_cr_alnum]" >/dev/null && as_fn_error $? "invalid package name: $ac_useropt" ac_useropt_orig=$ac_useropt ac_useropt=`$as_echo "$ac_useropt" | sed 's/[-+.]/_/g'` case $ac_user_opts in *" "with_$ac_useropt" "*) ;; *) ac_unrecognized_opts="$ac_unrecognized_opts$ac_unrecognized_sep--without-$ac_useropt_orig" ac_unrecognized_sep=', ';; esac eval with_$ac_useropt=no ;; --x) # Obsolete; use --with-x. with_x=yes ;; -x-includes | --x-includes | --x-include | --x-includ | --x-inclu \ | --x-incl | --x-inc | --x-in | --x-i) ac_prev=x_includes ;; -x-includes=* | --x-includes=* | --x-include=* | --x-includ=* | --x-inclu=* \ | --x-incl=* | --x-inc=* | --x-in=* | --x-i=*) x_includes=$ac_optarg ;; -x-libraries | --x-libraries | --x-librarie | --x-librari \ | --x-librar | --x-libra | --x-libr | --x-lib | --x-li | --x-l) ac_prev=x_libraries ;; -x-libraries=* | --x-libraries=* | --x-librarie=* | --x-librari=* \ | --x-librar=* | --x-libra=* | --x-libr=* | --x-lib=* | --x-li=* | --x-l=*) x_libraries=$ac_optarg ;; -*) as_fn_error $? "unrecognized option: \`$ac_option' Try \`$0 --help' for more information" ;; *=*) ac_envvar=`expr "x$ac_option" : 'x\([^=]*\)='` # Reject names that are not valid shell variable names. case $ac_envvar in #( '' | [0-9]* | *[!_$as_cr_alnum]* ) as_fn_error $? "invalid variable name: \`$ac_envvar'" ;; esac eval $ac_envvar=\$ac_optarg export $ac_envvar ;; *) # FIXME: should be removed in autoconf 3.0. $as_echo "$as_me: WARNING: you should use --build, --host, --target" >&2 expr "x$ac_option" : ".*[^-._$as_cr_alnum]" >/dev/null && $as_echo "$as_me: WARNING: invalid host type: $ac_option" >&2 : "${build_alias=$ac_option} ${host_alias=$ac_option} ${target_alias=$ac_option}" ;; esac done if test -n "$ac_prev"; then ac_option=--`echo $ac_prev | sed 's/_/-/g'` as_fn_error $? "missing argument to $ac_option" fi if test -n "$ac_unrecognized_opts"; then case $enable_option_checking in no) ;; fatal) as_fn_error $? "unrecognized options: $ac_unrecognized_opts" ;; *) $as_echo "$as_me: WARNING: unrecognized options: $ac_unrecognized_opts" >&2 ;; esac fi # Check all directory arguments for consistency. for ac_var in exec_prefix prefix bindir sbindir libexecdir datarootdir \ datadir sysconfdir sharedstatedir localstatedir includedir \ oldincludedir docdir infodir htmldir dvidir pdfdir psdir \ libdir localedir mandir do eval ac_val=\$$ac_var # Remove trailing slashes. case $ac_val in */ ) ac_val=`expr "X$ac_val" : 'X\(.*[^/]\)' \| "X$ac_val" : 'X\(.*\)'` eval $ac_var=\$ac_val;; esac # Be sure to have absolute directory names. case $ac_val in [\\/$]* | ?:[\\/]* ) continue;; NONE | '' ) case $ac_var in *prefix ) continue;; esac;; esac as_fn_error $? "expected an absolute directory name for --$ac_var: $ac_val" done # There might be people who depend on the old broken behavior: `$host' # used to hold the argument of --host etc. # FIXME: To remove some day. build=$build_alias host=$host_alias target=$target_alias # FIXME: To remove some day. if test "x$host_alias" != x; then if test "x$build_alias" = x; then cross_compiling=maybe elif test "x$build_alias" != "x$host_alias"; then cross_compiling=yes fi fi ac_tool_prefix= test -n "$host_alias" && ac_tool_prefix=$host_alias- test "$silent" = yes && exec 6>/dev/null ac_pwd=`pwd` && test -n "$ac_pwd" && ac_ls_di=`ls -di .` && ac_pwd_ls_di=`cd "$ac_pwd" && ls -di .` || as_fn_error $? "working directory cannot be determined" test "X$ac_ls_di" = "X$ac_pwd_ls_di" || as_fn_error $? "pwd does not report name of working directory" # Find the source files, if location was not specified. if test -z "$srcdir"; then ac_srcdir_defaulted=yes # Try the directory containing this script, then the parent directory. ac_confdir=`$as_dirname -- "$as_myself" || $as_expr X"$as_myself" : 'X\(.*[^/]\)//*[^/][^/]*/*$' \| \ X"$as_myself" : 'X\(//\)[^/]' \| \ X"$as_myself" : 'X\(//\)$' \| \ X"$as_myself" : 'X\(/\)' \| . 2>/dev/null || $as_echo X"$as_myself" | sed '/^X\(.*[^/]\)\/\/*[^/][^/]*\/*$/{ s//\1/ q } /^X\(\/\/\)[^/].*/{ s//\1/ q } /^X\(\/\/\)$/{ s//\1/ q } /^X\(\/\).*/{ s//\1/ q } s/.*/./; q'` srcdir=$ac_confdir if test ! -r "$srcdir/$ac_unique_file"; then srcdir=.. fi else ac_srcdir_defaulted=no fi if test ! -r "$srcdir/$ac_unique_file"; then test "$ac_srcdir_defaulted" = yes && srcdir="$ac_confdir or .." as_fn_error $? "cannot find sources ($ac_unique_file) in $srcdir" fi ac_msg="sources are in $srcdir, but \`cd $srcdir' does not work" ac_abs_confdir=`( cd "$srcdir" && test -r "./$ac_unique_file" || as_fn_error $? "$ac_msg" pwd)` # When building in place, set srcdir=. if test "$ac_abs_confdir" = "$ac_pwd"; then srcdir=. fi # Remove unnecessary trailing slashes from srcdir. # Double slashes in file names in object file debugging info # mess up M-x gdb in Emacs. case $srcdir in */) srcdir=`expr "X$srcdir" : 'X\(.*[^/]\)' \| "X$srcdir" : 'X\(.*\)'`;; esac for ac_var in $ac_precious_vars; do eval ac_env_${ac_var}_set=\${${ac_var}+set} eval ac_env_${ac_var}_value=\$${ac_var} eval ac_cv_env_${ac_var}_set=\${${ac_var}+set} eval ac_cv_env_${ac_var}_value=\$${ac_var} done # # Report the --help message. # if test "$ac_init_help" = "long"; then # Omit some internal or obsolete options to make the list less imposing. # This message is too long to be a string in the A/UX 3.1 sh. cat <<_ACEOF \`configure' configures openconnect 8.05 to adapt to many kinds of systems. Usage: $0 [OPTION]... [VAR=VALUE]... To assign environment variables (e.g., CC, CFLAGS...), specify them as VAR=VALUE. See below for descriptions of some of the useful variables. Defaults for the options are specified in brackets. Configuration: -h, --help display this help and exit --help=short display options specific to this package --help=recursive display the short help of all the included packages -V, --version display version information and exit -q, --quiet, --silent do not print \`checking ...' messages --cache-file=FILE cache test results in FILE [disabled] -C, --config-cache alias for \`--cache-file=config.cache' -n, --no-create do not create output files --srcdir=DIR find the sources in DIR [configure dir or \`..'] Installation directories: --prefix=PREFIX install architecture-independent files in PREFIX [$ac_default_prefix] --exec-prefix=EPREFIX install architecture-dependent files in EPREFIX [PREFIX] By default, \`make install' will install all the files in \`$ac_default_prefix/bin', \`$ac_default_prefix/lib' etc. You can specify an installation prefix other than \`$ac_default_prefix' using \`--prefix', for instance \`--prefix=\$HOME'. For better control, use the options below. Fine tuning of the installation directories: --bindir=DIR user executables [EPREFIX/bin] --sbindir=DIR system admin executables [EPREFIX/sbin] --libexecdir=DIR program executables [EPREFIX/libexec] --sysconfdir=DIR read-only single-machine data [PREFIX/etc] --sharedstatedir=DIR modifiable architecture-independent data [PREFIX/com] --localstatedir=DIR modifiable single-machine data [PREFIX/var] --libdir=DIR object code libraries [EPREFIX/lib] --includedir=DIR C header files [PREFIX/include] --oldincludedir=DIR C header files for non-gcc [/usr/include] --datarootdir=DIR read-only arch.-independent data root [PREFIX/share] --datadir=DIR read-only architecture-independent data [DATAROOTDIR] --infodir=DIR info documentation [DATAROOTDIR/info] --localedir=DIR locale-dependent data [DATAROOTDIR/locale] --mandir=DIR man documentation [DATAROOTDIR/man] --docdir=DIR documentation root [DATAROOTDIR/doc/openconnect] --htmldir=DIR html documentation [DOCDIR] --dvidir=DIR dvi documentation [DOCDIR] --pdfdir=DIR pdf documentation [DOCDIR] --psdir=DIR ps documentation [DOCDIR] _ACEOF cat <<\_ACEOF Program names: --program-prefix=PREFIX prepend PREFIX to installed program names --program-suffix=SUFFIX append SUFFIX to installed program names --program-transform-name=PROGRAM run sed PROGRAM on installed program names System types: --build=BUILD configure for building on BUILD [guessed] --host=HOST cross-compile to build programs to run on HOST [BUILD] _ACEOF fi if test -n "$ac_init_help"; then case $ac_init_help in short | recursive ) echo "Configuration of openconnect 8.05:";; esac cat <<\_ACEOF Optional Features: --disable-option-checking ignore unrecognized --enable/--with options --disable-FEATURE do not include FEATURE (same as --enable-FEATURE=no) --enable-FEATURE[=ARG] include FEATURE [ARG=yes] --disable-maintainer-mode disable make rules and dependencies not useful (and sometimes confusing) to the casual installer --enable-silent-rules less verbose build output (undo: "make V=1") --disable-silent-rules verbose build output (undo: "make V=0") --enable-dependency-tracking do not reject slow dependency extractors --disable-dependency-tracking speeds up one-time build --enable-shared[=PKGS] build shared libraries [default=yes] --enable-static[=PKGS] build static libraries [default=no] --disable-rpath do not hardcode runtime library paths --disable-nls Do not use Native Language Support --enable-dtls-xfail Only for gitlab CI. Do not use --disable-dsa-tests Disable DSA keys in self-test --enable-fast-install[=PKGS] optimize for fast installation [default=yes] --disable-libtool-lock avoid locking (might break parallel builds) --disable-symvers disable library symbol versioning [default=auto] --enable-jni-standalone build JNI stubs directly into libopenconnect.so [default=no] Optional Packages: --with-PACKAGE[=ARG] use PACKAGE [ARG=yes] --without-PACKAGE do not use PACKAGE (same as --with-PACKAGE=no) --with-pkgconfigdir pkg-config installation directory ['${libdir}/pkgconfig'] --with-vpnc-script default location of vpnc-script helper --with-gnu-ld assume the C compiler uses GNU ld [default=no] --with-libiconv-prefix[=DIR] search for libiconv in DIR/include and DIR/lib --without-libiconv-prefix don't search for libiconv in includedir and libdir --with-libintl-prefix[=DIR] search for libintl in DIR/include and DIR/lib --without-libintl-prefix don't search for libintl in includedir and libdir --with-system-cafile Location of the default system CA certificate file for old (<3.0.20) GnuTLS versions --without-gnutls Do not attempt to use GnuTLS; use OpenSSL instead --with-openssl Location of OpenSSL build dir --without-openssl-version-check Do not check for known-broken OpenSSL versions --with-default-gnutls-priority=STRING Provide a default string as GnuTLS priority string --without-lz4 disable support for LZ4 compression --with-pic[=PKGS] try to use only PIC/non-PIC objects [default=use both] --with-aix-soname=aix|svr4|both shared library versioning (aka "SONAME") variant to provide on AIX, [default=aix]. --with-gnu-ld assume the C compiler uses GNU ld [default=no] --with-sysroot[=DIR] Search for dependent libraries within DIR (or the compiler's sysroot if not specified). --without-libproxy Build without libproxy library [default=auto] --without-stoken Build without libstoken library [default=auto] --without-libpcsclite Build without libpcsclite library (for Yubikey support) [default=auto] --without-libpskc Build without libpskc library [default=auto] --without-gssapi Build without GSSAPI support [default=auto] --with-java(=DIR) Build JNI bindings using jni.h from DIR [default=no] Some influential environment variables: PKG_CONFIG path to pkg-config utility PKG_CONFIG_PATH directories to add to pkg-config's search path PKG_CONFIG_LIBDIR path overriding pkg-config's built-in search path CC C compiler command CFLAGS C compiler flags LDFLAGS linker flags, e.g. -L if you have libraries in a nonstandard directory LIBS libraries to pass to the linker, e.g. -l CPPFLAGS (Objective) C/C++ preprocessor flags, e.g. -I if you have headers in a nonstandard directory CPP C preprocessor GNUTLS_CFLAGS C compiler flags for GNUTLS, overriding pkg-config GNUTLS_LIBS linker flags for GNUTLS, overriding pkg-config OPENSSL_CFLAGS C compiler flags for OPENSSL, overriding pkg-config OPENSSL_LIBS linker flags for OPENSSL, overriding pkg-config P11KIT_CFLAGS C compiler flags for P11KIT, overriding pkg-config P11KIT_LIBS linker flags for P11KIT, overriding pkg-config LIBP11_CFLAGS C compiler flags for LIBP11, overriding pkg-config LIBP11_LIBS linker flags for LIBP11, overriding pkg-config TASN1_CFLAGS C compiler flags for TASN1, overriding pkg-config TASN1_LIBS linker flags for TASN1, overriding pkg-config TSS2_ESYS_CFLAGS C compiler flags for TSS2_ESYS, overriding pkg-config TSS2_ESYS_LIBS linker flags for TSS2_ESYS, overriding pkg-config LIBLZ4_CFLAGS C compiler flags for LIBLZ4, overriding pkg-config LIBLZ4_LIBS linker flags for LIBLZ4, overriding pkg-config LT_SYS_LIBRARY_PATH User-defined run-time library search path. LIBXML2_CFLAGS C compiler flags for LIBXML2, overriding pkg-config LIBXML2_LIBS linker flags for LIBXML2, overriding pkg-config ZLIB_CFLAGS C compiler flags for ZLIB, overriding pkg-config ZLIB_LIBS linker flags for ZLIB, overriding pkg-config LIBPROXY_CFLAGS C compiler flags for LIBPROXY, overriding pkg-config LIBPROXY_LIBS linker flags for LIBPROXY, overriding pkg-config LIBSTOKEN_CFLAGS C compiler flags for LIBSTOKEN, overriding pkg-config LIBSTOKEN_LIBS linker flags for LIBSTOKEN, overriding pkg-config LIBPCSCLITE_CFLAGS C compiler flags for LIBPCSCLITE, overriding pkg-config LIBPCSCLITE_LIBS linker flags for LIBPCSCLITE, overriding pkg-config LIBPSKC_CFLAGS C compiler flags for LIBPSKC, overriding pkg-config LIBPSKC_LIBS linker flags for LIBPSKC, overriding pkg-config CWRAP_CFLAGS C compiler flags for CWRAP, overriding pkg-config CWRAP_LIBS linker flags for CWRAP, overriding pkg-config Use these variables to override the choices made by `configure' or to help it to find libraries and programs with nonstandard names/locations. Report bugs to the package provider. _ACEOF ac_status=$? fi if test "$ac_init_help" = "recursive"; then # If there are subdirs, report their specific --help. for ac_dir in : $ac_subdirs_all; do test "x$ac_dir" = x: && continue test -d "$ac_dir" || { cd "$srcdir" && ac_pwd=`pwd` && srcdir=. && test -d "$ac_dir"; } || continue ac_builddir=. case "$ac_dir" in .) ac_dir_suffix= ac_top_builddir_sub=. ac_top_build_prefix= ;; *) ac_dir_suffix=/`$as_echo "$ac_dir" | sed 's|^\.[\\/]||'` # A ".." for each directory in $ac_dir_suffix. ac_top_builddir_sub=`$as_echo "$ac_dir_suffix" | sed 's|/[^\\/]*|/..|g;s|/||'` case $ac_top_builddir_sub in "") ac_top_builddir_sub=. ac_top_build_prefix= ;; *) ac_top_build_prefix=$ac_top_builddir_sub/ ;; esac ;; esac ac_abs_top_builddir=$ac_pwd ac_abs_builddir=$ac_pwd$ac_dir_suffix # for backward compatibility: ac_top_builddir=$ac_top_build_prefix case $srcdir in .) # We are building in place. ac_srcdir=. ac_top_srcdir=$ac_top_builddir_sub ac_abs_top_srcdir=$ac_pwd ;; [\\/]* | ?:[\\/]* ) # Absolute name. ac_srcdir=$srcdir$ac_dir_suffix; ac_top_srcdir=$srcdir ac_abs_top_srcdir=$srcdir ;; *) # Relative name. ac_srcdir=$ac_top_build_prefix$srcdir$ac_dir_suffix ac_top_srcdir=$ac_top_build_prefix$srcdir ac_abs_top_srcdir=$ac_pwd/$srcdir ;; esac ac_abs_srcdir=$ac_abs_top_srcdir$ac_dir_suffix cd "$ac_dir" || { ac_status=$?; continue; } # Check for guested configure. if test -f "$ac_srcdir/configure.gnu"; then echo && $SHELL "$ac_srcdir/configure.gnu" --help=recursive elif test -f "$ac_srcdir/configure"; then echo && $SHELL "$ac_srcdir/configure" --help=recursive else $as_echo "$as_me: WARNING: no configuration information is in $ac_dir" >&2 fi || ac_status=$? cd "$ac_pwd" || { ac_status=$?; break; } done fi test -n "$ac_init_help" && exit $ac_status if $ac_init_version; then cat <<\_ACEOF openconnect configure 8.05 generated by GNU Autoconf 2.69 Copyright (C) 2012 Free Software Foundation, Inc. This configure script is free software; the Free Software Foundation gives unlimited permission to copy, distribute and modify it. _ACEOF exit fi ## ------------------------ ## ## Autoconf initialization. ## ## ------------------------ ## # ac_fn_c_try_compile LINENO # -------------------------- # Try to compile conftest.$ac_ext, and return whether this succeeded. ac_fn_c_try_compile () { as_lineno=${as_lineno-"$1"} as_lineno_stack=as_lineno_stack=$as_lineno_stack rm -f conftest.$ac_objext if { { ac_try="$ac_compile" case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_compile") 2>conftest.err ac_status=$? if test -s conftest.err; then grep -v '^ *+' conftest.err >conftest.er1 cat conftest.er1 >&5 mv -f conftest.er1 conftest.err fi $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } && { test -z "$ac_c_werror_flag" || test ! -s conftest.err } && test -s conftest.$ac_objext; then : ac_retval=0 else $as_echo "$as_me: failed program was:" >&5 sed 's/^/| /' conftest.$ac_ext >&5 ac_retval=1 fi eval $as_lineno_stack; ${as_lineno_stack:+:} unset as_lineno as_fn_set_status $ac_retval } # ac_fn_c_try_compile # ac_fn_c_try_link LINENO # ----------------------- # Try to link conftest.$ac_ext, and return whether this succeeded. ac_fn_c_try_link () { as_lineno=${as_lineno-"$1"} as_lineno_stack=as_lineno_stack=$as_lineno_stack rm -f conftest.$ac_objext conftest$ac_exeext if { { ac_try="$ac_link" case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_link") 2>conftest.err ac_status=$? if test -s conftest.err; then grep -v '^ *+' conftest.err >conftest.er1 cat conftest.er1 >&5 mv -f conftest.er1 conftest.err fi $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } && { test -z "$ac_c_werror_flag" || test ! -s conftest.err } && test -s conftest$ac_exeext && { test "$cross_compiling" = yes || test -x conftest$ac_exeext }; then : ac_retval=0 else $as_echo "$as_me: failed program was:" >&5 sed 's/^/| /' conftest.$ac_ext >&5 ac_retval=1 fi # Delete the IPA/IPO (Inter Procedural Analysis/Optimization) information # created by the PGI compiler (conftest_ipa8_conftest.oo), as it would # interfere with the next link command; also delete a directory that is # left behind by Apple's compiler. We do this before executing the actions. rm -rf conftest.dSYM conftest_ipa8_conftest.oo eval $as_lineno_stack; ${as_lineno_stack:+:} unset as_lineno as_fn_set_status $ac_retval } # ac_fn_c_try_link # ac_fn_c_check_func LINENO FUNC VAR # ---------------------------------- # Tests whether FUNC exists, setting the cache variable VAR accordingly ac_fn_c_check_func () { as_lineno=${as_lineno-"$1"} as_lineno_stack=as_lineno_stack=$as_lineno_stack { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $2" >&5 $as_echo_n "checking for $2... " >&6; } if eval \${$3+:} false; then : $as_echo_n "(cached) " >&6 else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ /* Define $2 to an innocuous variant, in case declares $2. For example, HP-UX 11i declares gettimeofday. */ #define $2 innocuous_$2 /* System header to define __stub macros and hopefully few prototypes, which can conflict with char $2 (); below. Prefer to if __STDC__ is defined, since exists even on freestanding compilers. */ #ifdef __STDC__ # include #else # include #endif #undef $2 /* Override any GCC internal prototype to avoid an error. Use char because int might match the return type of a GCC builtin and then its argument prototype would still apply. */ #ifdef __cplusplus extern "C" #endif char $2 (); /* The GNU C library defines this for functions which it implements to always fail with ENOSYS. Some functions are actually named something starting with __ and the normal name is an alias. */ #if defined __stub_$2 || defined __stub___$2 choke me #endif int main () { return $2 (); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : eval "$3=yes" else eval "$3=no" fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext fi eval ac_res=\$$3 { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_res" >&5 $as_echo "$ac_res" >&6; } eval $as_lineno_stack; ${as_lineno_stack:+:} unset as_lineno } # ac_fn_c_check_func # ac_fn_c_try_cpp LINENO # ---------------------- # Try to preprocess conftest.$ac_ext, and return whether this succeeded. ac_fn_c_try_cpp () { as_lineno=${as_lineno-"$1"} as_lineno_stack=as_lineno_stack=$as_lineno_stack if { { ac_try="$ac_cpp conftest.$ac_ext" case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_cpp conftest.$ac_ext") 2>conftest.err ac_status=$? if test -s conftest.err; then grep -v '^ *+' conftest.err >conftest.er1 cat conftest.er1 >&5 mv -f conftest.er1 conftest.err fi $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } > conftest.i && { test -z "$ac_c_preproc_warn_flag$ac_c_werror_flag" || test ! -s conftest.err }; then : ac_retval=0 else $as_echo "$as_me: failed program was:" >&5 sed 's/^/| /' conftest.$ac_ext >&5 ac_retval=1 fi eval $as_lineno_stack; ${as_lineno_stack:+:} unset as_lineno as_fn_set_status $ac_retval } # ac_fn_c_try_cpp # ac_fn_c_try_run LINENO # ---------------------- # Try to link conftest.$ac_ext, and return whether this succeeded. Assumes # that executables *can* be run. ac_fn_c_try_run () { as_lineno=${as_lineno-"$1"} as_lineno_stack=as_lineno_stack=$as_lineno_stack if { { ac_try="$ac_link" case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_link") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } && { ac_try='./conftest$ac_exeext' { { case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_try") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; }; then : ac_retval=0 else $as_echo "$as_me: program exited with status $ac_status" >&5 $as_echo "$as_me: failed program was:" >&5 sed 's/^/| /' conftest.$ac_ext >&5 ac_retval=$ac_status fi rm -rf conftest.dSYM conftest_ipa8_conftest.oo eval $as_lineno_stack; ${as_lineno_stack:+:} unset as_lineno as_fn_set_status $ac_retval } # ac_fn_c_try_run # ac_fn_c_check_header_mongrel LINENO HEADER VAR INCLUDES # ------------------------------------------------------- # Tests whether HEADER exists, giving a warning if it cannot be compiled using # the include files in INCLUDES and setting the cache variable VAR # accordingly. ac_fn_c_check_header_mongrel () { as_lineno=${as_lineno-"$1"} as_lineno_stack=as_lineno_stack=$as_lineno_stack if eval \${$3+:} false; then : { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $2" >&5 $as_echo_n "checking for $2... " >&6; } if eval \${$3+:} false; then : $as_echo_n "(cached) " >&6 fi eval ac_res=\$$3 { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_res" >&5 $as_echo "$ac_res" >&6; } else # Is the header compilable? { $as_echo "$as_me:${as_lineno-$LINENO}: checking $2 usability" >&5 $as_echo_n "checking $2 usability... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ $4 #include <$2> _ACEOF if ac_fn_c_try_compile "$LINENO"; then : ac_header_compiler=yes else ac_header_compiler=no fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_header_compiler" >&5 $as_echo "$ac_header_compiler" >&6; } # Is the header present? { $as_echo "$as_me:${as_lineno-$LINENO}: checking $2 presence" >&5 $as_echo_n "checking $2 presence... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include <$2> _ACEOF if ac_fn_c_try_cpp "$LINENO"; then : ac_header_preproc=yes else ac_header_preproc=no fi rm -f conftest.err conftest.i conftest.$ac_ext { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_header_preproc" >&5 $as_echo "$ac_header_preproc" >&6; } # So? What about this header? case $ac_header_compiler:$ac_header_preproc:$ac_c_preproc_warn_flag in #(( yes:no: ) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: $2: accepted by the compiler, rejected by the preprocessor!" >&5 $as_echo "$as_me: WARNING: $2: accepted by the compiler, rejected by the preprocessor!" >&2;} { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: $2: proceeding with the compiler's result" >&5 $as_echo "$as_me: WARNING: $2: proceeding with the compiler's result" >&2;} ;; no:yes:* ) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: $2: present but cannot be compiled" >&5 $as_echo "$as_me: WARNING: $2: present but cannot be compiled" >&2;} { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: $2: check for missing prerequisite headers?" >&5 $as_echo "$as_me: WARNING: $2: check for missing prerequisite headers?" >&2;} { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: $2: see the Autoconf documentation" >&5 $as_echo "$as_me: WARNING: $2: see the Autoconf documentation" >&2;} { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: $2: section \"Present But Cannot Be Compiled\"" >&5 $as_echo "$as_me: WARNING: $2: section \"Present But Cannot Be Compiled\"" >&2;} { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: $2: proceeding with the compiler's result" >&5 $as_echo "$as_me: WARNING: $2: proceeding with the compiler's result" >&2;} ;; esac { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $2" >&5 $as_echo_n "checking for $2... " >&6; } if eval \${$3+:} false; then : $as_echo_n "(cached) " >&6 else eval "$3=\$ac_header_compiler" fi eval ac_res=\$$3 { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_res" >&5 $as_echo "$ac_res" >&6; } fi eval $as_lineno_stack; ${as_lineno_stack:+:} unset as_lineno } # ac_fn_c_check_header_mongrel # ac_fn_c_check_header_compile LINENO HEADER VAR INCLUDES # ------------------------------------------------------- # Tests whether HEADER exists and can be compiled using the include files in # INCLUDES, setting the cache variable VAR accordingly. ac_fn_c_check_header_compile () { as_lineno=${as_lineno-"$1"} as_lineno_stack=as_lineno_stack=$as_lineno_stack { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $2" >&5 $as_echo_n "checking for $2... " >&6; } if eval \${$3+:} false; then : $as_echo_n "(cached) " >&6 else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ $4 #include <$2> _ACEOF if ac_fn_c_try_compile "$LINENO"; then : eval "$3=yes" else eval "$3=no" fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext fi eval ac_res=\$$3 { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_res" >&5 $as_echo "$ac_res" >&6; } eval $as_lineno_stack; ${as_lineno_stack:+:} unset as_lineno } # ac_fn_c_check_header_compile cat >config.log <<_ACEOF This file contains any messages produced by compilers while running configure, to aid debugging if configure makes a mistake. It was created by openconnect $as_me 8.05, which was generated by GNU Autoconf 2.69. Invocation command line was $ $0 $@ _ACEOF exec 5>>config.log { cat <<_ASUNAME ## --------- ## ## Platform. ## ## --------- ## hostname = `(hostname || uname -n) 2>/dev/null | sed 1q` uname -m = `(uname -m) 2>/dev/null || echo unknown` uname -r = `(uname -r) 2>/dev/null || echo unknown` uname -s = `(uname -s) 2>/dev/null || echo unknown` uname -v = `(uname -v) 2>/dev/null || echo unknown` /usr/bin/uname -p = `(/usr/bin/uname -p) 2>/dev/null || echo unknown` /bin/uname -X = `(/bin/uname -X) 2>/dev/null || echo unknown` /bin/arch = `(/bin/arch) 2>/dev/null || echo unknown` /usr/bin/arch -k = `(/usr/bin/arch -k) 2>/dev/null || echo unknown` /usr/convex/getsysinfo = `(/usr/convex/getsysinfo) 2>/dev/null || echo unknown` /usr/bin/hostinfo = `(/usr/bin/hostinfo) 2>/dev/null || echo unknown` /bin/machine = `(/bin/machine) 2>/dev/null || echo unknown` /usr/bin/oslevel = `(/usr/bin/oslevel) 2>/dev/null || echo unknown` /bin/universe = `(/bin/universe) 2>/dev/null || echo unknown` _ASUNAME as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. $as_echo "PATH: $as_dir" done IFS=$as_save_IFS } >&5 cat >&5 <<_ACEOF ## ----------- ## ## Core tests. ## ## ----------- ## _ACEOF # Keep a trace of the command line. # Strip out --no-create and --no-recursion so they do not pile up. # Strip out --silent because we don't want to record it for future runs. # Also quote any args containing shell meta-characters. # Make two passes to allow for proper duplicate-argument suppression. ac_configure_args= ac_configure_args0= ac_configure_args1= ac_must_keep_next=false for ac_pass in 1 2 do for ac_arg do case $ac_arg in -no-create | --no-c* | -n | -no-recursion | --no-r*) continue ;; -q | -quiet | --quiet | --quie | --qui | --qu | --q \ | -silent | --silent | --silen | --sile | --sil) continue ;; *\'*) ac_arg=`$as_echo "$ac_arg" | sed "s/'/'\\\\\\\\''/g"` ;; esac case $ac_pass in 1) as_fn_append ac_configure_args0 " '$ac_arg'" ;; 2) as_fn_append ac_configure_args1 " '$ac_arg'" if test $ac_must_keep_next = true; then ac_must_keep_next=false # Got value, back to normal. else case $ac_arg in *=* | --config-cache | -C | -disable-* | --disable-* \ | -enable-* | --enable-* | -gas | --g* | -nfp | --nf* \ | -q | -quiet | --q* | -silent | --sil* | -v | -verb* \ | -with-* | --with-* | -without-* | --without-* | --x) case "$ac_configure_args0 " in "$ac_configure_args1"*" '$ac_arg' "* ) continue ;; esac ;; -* ) ac_must_keep_next=true ;; esac fi as_fn_append ac_configure_args " '$ac_arg'" ;; esac done done { ac_configure_args0=; unset ac_configure_args0;} { ac_configure_args1=; unset ac_configure_args1;} # When interrupted or exit'd, cleanup temporary files, and complete # config.log. We remove comments because anyway the quotes in there # would cause problems or look ugly. # WARNING: Use '\'' to represent an apostrophe within the trap. # WARNING: Do not start the trap code with a newline, due to a FreeBSD 4.0 bug. trap 'exit_status=$? # Save into config.log some information that might help in debugging. { echo $as_echo "## ---------------- ## ## Cache variables. ## ## ---------------- ##" echo # The following way of writing the cache mishandles newlines in values, ( for ac_var in `(set) 2>&1 | sed -n '\''s/^\([a-zA-Z_][a-zA-Z0-9_]*\)=.*/\1/p'\''`; do eval ac_val=\$$ac_var case $ac_val in #( *${as_nl}*) case $ac_var in #( *_cv_*) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: cache variable $ac_var contains a newline" >&5 $as_echo "$as_me: WARNING: cache variable $ac_var contains a newline" >&2;} ;; esac case $ac_var in #( _ | IFS | as_nl) ;; #( BASH_ARGV | BASH_SOURCE) eval $ac_var= ;; #( *) { eval $ac_var=; unset $ac_var;} ;; esac ;; esac done (set) 2>&1 | case $as_nl`(ac_space='\'' '\''; set) 2>&1` in #( *${as_nl}ac_space=\ *) sed -n \ "s/'\''/'\''\\\\'\'''\''/g; s/^\\([_$as_cr_alnum]*_cv_[_$as_cr_alnum]*\\)=\\(.*\\)/\\1='\''\\2'\''/p" ;; #( *) sed -n "/^[_$as_cr_alnum]*_cv_[_$as_cr_alnum]*=/p" ;; esac | sort ) echo $as_echo "## ----------------- ## ## Output variables. ## ## ----------------- ##" echo for ac_var in $ac_subst_vars do eval ac_val=\$$ac_var case $ac_val in *\'\''*) ac_val=`$as_echo "$ac_val" | sed "s/'\''/'\''\\\\\\\\'\'''\''/g"`;; esac $as_echo "$ac_var='\''$ac_val'\''" done | sort echo if test -n "$ac_subst_files"; then $as_echo "## ------------------- ## ## File substitutions. ## ## ------------------- ##" echo for ac_var in $ac_subst_files do eval ac_val=\$$ac_var case $ac_val in *\'\''*) ac_val=`$as_echo "$ac_val" | sed "s/'\''/'\''\\\\\\\\'\'''\''/g"`;; esac $as_echo "$ac_var='\''$ac_val'\''" done | sort echo fi if test -s confdefs.h; then $as_echo "## ----------- ## ## confdefs.h. ## ## ----------- ##" echo cat confdefs.h echo fi test "$ac_signal" != 0 && $as_echo "$as_me: caught signal $ac_signal" $as_echo "$as_me: exit $exit_status" } >&5 rm -f core *.core core.conftest.* && rm -f -r conftest* confdefs* conf$$* $ac_clean_files && exit $exit_status ' 0 for ac_signal in 1 2 13 15; do trap 'ac_signal='$ac_signal'; as_fn_exit 1' $ac_signal done ac_signal=0 # confdefs.h avoids OS command line length limits that DEFS can exceed. rm -f -r conftest* confdefs.h $as_echo "/* confdefs.h */" > confdefs.h # Predefined preprocessor variables. cat >>confdefs.h <<_ACEOF #define PACKAGE_NAME "$PACKAGE_NAME" _ACEOF cat >>confdefs.h <<_ACEOF #define PACKAGE_TARNAME "$PACKAGE_TARNAME" _ACEOF cat >>confdefs.h <<_ACEOF #define PACKAGE_VERSION "$PACKAGE_VERSION" _ACEOF cat >>confdefs.h <<_ACEOF #define PACKAGE_STRING "$PACKAGE_STRING" _ACEOF cat >>confdefs.h <<_ACEOF #define PACKAGE_BUGREPORT "$PACKAGE_BUGREPORT" _ACEOF cat >>confdefs.h <<_ACEOF #define PACKAGE_URL "$PACKAGE_URL" _ACEOF # Let the site file select an alternate cache file if it wants to. # Prefer an explicitly selected file to automatically selected ones. ac_site_file1=NONE ac_site_file2=NONE if test -n "$CONFIG_SITE"; then # We do not want a PATH search for config.site. case $CONFIG_SITE in #(( -*) ac_site_file1=./$CONFIG_SITE;; */*) ac_site_file1=$CONFIG_SITE;; *) ac_site_file1=./$CONFIG_SITE;; esac elif test "x$prefix" != xNONE; then ac_site_file1=$prefix/share/config.site ac_site_file2=$prefix/etc/config.site else ac_site_file1=$ac_default_prefix/share/config.site ac_site_file2=$ac_default_prefix/etc/config.site fi for ac_site_file in "$ac_site_file1" "$ac_site_file2" do test "x$ac_site_file" = xNONE && continue if test /dev/null != "$ac_site_file" && test -r "$ac_site_file"; then { $as_echo "$as_me:${as_lineno-$LINENO}: loading site script $ac_site_file" >&5 $as_echo "$as_me: loading site script $ac_site_file" >&6;} sed 's/^/| /' "$ac_site_file" >&5 . "$ac_site_file" \ || { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "failed to load site script $ac_site_file See \`config.log' for more details" "$LINENO" 5; } fi done if test -r "$cache_file"; then # Some versions of bash will fail to source /dev/null (special files # actually), so we avoid doing that. DJGPP emulates it as a regular file. if test /dev/null != "$cache_file" && test -f "$cache_file"; then { $as_echo "$as_me:${as_lineno-$LINENO}: loading cache $cache_file" >&5 $as_echo "$as_me: loading cache $cache_file" >&6;} case $cache_file in [\\/]* | ?:[\\/]* ) . "$cache_file";; *) . "./$cache_file";; esac fi else { $as_echo "$as_me:${as_lineno-$LINENO}: creating cache $cache_file" >&5 $as_echo "$as_me: creating cache $cache_file" >&6;} >$cache_file fi # Check that the precious variables saved in the cache have kept the same # value. ac_cache_corrupted=false for ac_var in $ac_precious_vars; do eval ac_old_set=\$ac_cv_env_${ac_var}_set eval ac_new_set=\$ac_env_${ac_var}_set eval ac_old_val=\$ac_cv_env_${ac_var}_value eval ac_new_val=\$ac_env_${ac_var}_value case $ac_old_set,$ac_new_set in set,) { $as_echo "$as_me:${as_lineno-$LINENO}: error: \`$ac_var' was set to \`$ac_old_val' in the previous run" >&5 $as_echo "$as_me: error: \`$ac_var' was set to \`$ac_old_val' in the previous run" >&2;} ac_cache_corrupted=: ;; ,set) { $as_echo "$as_me:${as_lineno-$LINENO}: error: \`$ac_var' was not set in the previous run" >&5 $as_echo "$as_me: error: \`$ac_var' was not set in the previous run" >&2;} ac_cache_corrupted=: ;; ,);; *) if test "x$ac_old_val" != "x$ac_new_val"; then # differences in whitespace do not lead to failure. ac_old_val_w=`echo x $ac_old_val` ac_new_val_w=`echo x $ac_new_val` if test "$ac_old_val_w" != "$ac_new_val_w"; then { $as_echo "$as_me:${as_lineno-$LINENO}: error: \`$ac_var' has changed since the previous run:" >&5 $as_echo "$as_me: error: \`$ac_var' has changed since the previous run:" >&2;} ac_cache_corrupted=: else { $as_echo "$as_me:${as_lineno-$LINENO}: warning: ignoring whitespace changes in \`$ac_var' since the previous run:" >&5 $as_echo "$as_me: warning: ignoring whitespace changes in \`$ac_var' since the previous run:" >&2;} eval $ac_var=\$ac_old_val fi { $as_echo "$as_me:${as_lineno-$LINENO}: former value: \`$ac_old_val'" >&5 $as_echo "$as_me: former value: \`$ac_old_val'" >&2;} { $as_echo "$as_me:${as_lineno-$LINENO}: current value: \`$ac_new_val'" >&5 $as_echo "$as_me: current value: \`$ac_new_val'" >&2;} fi;; esac # Pass precious variables to config.status. if test "$ac_new_set" = set; then case $ac_new_val in *\'*) ac_arg=$ac_var=`$as_echo "$ac_new_val" | sed "s/'/'\\\\\\\\''/g"` ;; *) ac_arg=$ac_var=$ac_new_val ;; esac case " $ac_configure_args " in *" '$ac_arg' "*) ;; # Avoid dups. Use of quotes ensures accuracy. *) as_fn_append ac_configure_args " '$ac_arg'" ;; esac fi done if $ac_cache_corrupted; then { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} { $as_echo "$as_me:${as_lineno-$LINENO}: error: changes in the environment can compromise the build" >&5 $as_echo "$as_me: error: changes in the environment can compromise the build" >&2;} as_fn_error $? "run \`make distclean' and/or \`rm $cache_file' and start over" "$LINENO" 5 fi ## -------------------- ## ## Main body of script. ## ## -------------------- ## ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu ac_config_headers="$ac_config_headers config.h" if test "x$ac_cv_env_PKG_CONFIG_set" != "xset"; then if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}pkg-config", so it can be a program name with args. set dummy ${ac_tool_prefix}pkg-config; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_path_PKG_CONFIG+:} false; then : $as_echo_n "(cached) " >&6 else case $PKG_CONFIG in [\\/]* | ?:[\\/]*) ac_cv_path_PKG_CONFIG="$PKG_CONFIG" # Let the user override the test with a path. ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_path_PKG_CONFIG="$as_dir/$ac_word$ac_exec_ext" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS ;; esac fi PKG_CONFIG=$ac_cv_path_PKG_CONFIG if test -n "$PKG_CONFIG"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $PKG_CONFIG" >&5 $as_echo "$PKG_CONFIG" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_path_PKG_CONFIG"; then ac_pt_PKG_CONFIG=$PKG_CONFIG # Extract the first word of "pkg-config", so it can be a program name with args. set dummy pkg-config; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_path_ac_pt_PKG_CONFIG+:} false; then : $as_echo_n "(cached) " >&6 else case $ac_pt_PKG_CONFIG in [\\/]* | ?:[\\/]*) ac_cv_path_ac_pt_PKG_CONFIG="$ac_pt_PKG_CONFIG" # Let the user override the test with a path. ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_path_ac_pt_PKG_CONFIG="$as_dir/$ac_word$ac_exec_ext" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS ;; esac fi ac_pt_PKG_CONFIG=$ac_cv_path_ac_pt_PKG_CONFIG if test -n "$ac_pt_PKG_CONFIG"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_pt_PKG_CONFIG" >&5 $as_echo "$ac_pt_PKG_CONFIG" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_pt_PKG_CONFIG" = x; then PKG_CONFIG="" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac PKG_CONFIG=$ac_pt_PKG_CONFIG fi else PKG_CONFIG="$ac_cv_path_PKG_CONFIG" fi fi if test -n "$PKG_CONFIG"; then _pkg_min_version=0.9.0 { $as_echo "$as_me:${as_lineno-$LINENO}: checking pkg-config is at least version $_pkg_min_version" >&5 $as_echo_n "checking pkg-config is at least version $_pkg_min_version... " >&6; } if $PKG_CONFIG --atleast-pkgconfig-version $_pkg_min_version; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } PKG_CONFIG="" fi fi ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu ac_aux_dir= for ac_dir in "$srcdir" "$srcdir/.." "$srcdir/../.."; do if test -f "$ac_dir/install-sh"; then ac_aux_dir=$ac_dir ac_install_sh="$ac_aux_dir/install-sh -c" break elif test -f "$ac_dir/install.sh"; then ac_aux_dir=$ac_dir ac_install_sh="$ac_aux_dir/install.sh -c" break elif test -f "$ac_dir/shtool"; then ac_aux_dir=$ac_dir ac_install_sh="$ac_aux_dir/shtool install -c" break fi done if test -z "$ac_aux_dir"; then as_fn_error $? "cannot find install-sh, install.sh, or shtool in \"$srcdir\" \"$srcdir/..\" \"$srcdir/../..\"" "$LINENO" 5 fi # These three variables are undocumented and unsupported, # and are intended to be withdrawn in a future Autoconf release. # They can cause serious problems if a builder's source tree is in a directory # whose full name contains unusual characters. ac_config_guess="$SHELL $ac_aux_dir/config.guess" # Please don't use this var. ac_config_sub="$SHELL $ac_aux_dir/config.sub" # Please don't use this var. ac_configure="$SHELL $ac_aux_dir/configure" # Please don't use this var. # Make sure we can run config.sub. $SHELL "$ac_aux_dir/config.sub" sun4 >/dev/null 2>&1 || as_fn_error $? "cannot run $SHELL $ac_aux_dir/config.sub" "$LINENO" 5 { $as_echo "$as_me:${as_lineno-$LINENO}: checking build system type" >&5 $as_echo_n "checking build system type... " >&6; } if ${ac_cv_build+:} false; then : $as_echo_n "(cached) " >&6 else ac_build_alias=$build_alias test "x$ac_build_alias" = x && ac_build_alias=`$SHELL "$ac_aux_dir/config.guess"` test "x$ac_build_alias" = x && as_fn_error $? "cannot guess build type; you must specify one" "$LINENO" 5 ac_cv_build=`$SHELL "$ac_aux_dir/config.sub" $ac_build_alias` || as_fn_error $? "$SHELL $ac_aux_dir/config.sub $ac_build_alias failed" "$LINENO" 5 fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_build" >&5 $as_echo "$ac_cv_build" >&6; } case $ac_cv_build in *-*-*) ;; *) as_fn_error $? "invalid value of canonical build" "$LINENO" 5;; esac build=$ac_cv_build ac_save_IFS=$IFS; IFS='-' set x $ac_cv_build shift build_cpu=$1 build_vendor=$2 shift; shift # Remember, the first character of IFS is used to create $*, # except with old shells: build_os=$* IFS=$ac_save_IFS case $build_os in *\ *) build_os=`echo "$build_os" | sed 's/ /-/g'`;; esac { $as_echo "$as_me:${as_lineno-$LINENO}: checking host system type" >&5 $as_echo_n "checking host system type... " >&6; } if ${ac_cv_host+:} false; then : $as_echo_n "(cached) " >&6 else if test "x$host_alias" = x; then ac_cv_host=$ac_cv_build else ac_cv_host=`$SHELL "$ac_aux_dir/config.sub" $host_alias` || as_fn_error $? "$SHELL $ac_aux_dir/config.sub $host_alias failed" "$LINENO" 5 fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_host" >&5 $as_echo "$ac_cv_host" >&6; } case $ac_cv_host in *-*-*) ;; *) as_fn_error $? "invalid value of canonical host" "$LINENO" 5;; esac host=$ac_cv_host ac_save_IFS=$IFS; IFS='-' set x $ac_cv_host shift host_cpu=$1 host_vendor=$2 shift; shift # Remember, the first character of IFS is used to create $*, # except with old shells: host_os=$* IFS=$ac_save_IFS case $host_os in *\ *) host_os=`echo "$host_os" | sed 's/ /-/g'`;; esac { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether to enable maintainer-specific portions of Makefiles" >&5 $as_echo_n "checking whether to enable maintainer-specific portions of Makefiles... " >&6; } # Check whether --enable-maintainer-mode was given. if test "${enable_maintainer_mode+set}" = set; then : enableval=$enable_maintainer_mode; USE_MAINTAINER_MODE=$enableval else USE_MAINTAINER_MODE=yes fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $USE_MAINTAINER_MODE" >&5 $as_echo "$USE_MAINTAINER_MODE" >&6; } if test $USE_MAINTAINER_MODE = yes; then MAINTAINER_MODE_TRUE= MAINTAINER_MODE_FALSE='#' else MAINTAINER_MODE_TRUE='#' MAINTAINER_MODE_FALSE= fi MAINT=$MAINTAINER_MODE_TRUE am__api_version='1.16' # Find a good install program. We prefer a C program (faster), # so one script is as good as another. But avoid the broken or # incompatible versions: # SysV /etc/install, /usr/sbin/install # SunOS /usr/etc/install # IRIX /sbin/install # AIX /bin/install # AmigaOS /C/install, which installs bootblocks on floppy discs # AIX 4 /usr/bin/installbsd, which doesn't work without a -g flag # AFS /usr/afsws/bin/install, which mishandles nonexistent args # SVR4 /usr/ucb/install, which tries to use the nonexistent group "staff" # OS/2's system install, which has a completely different semantic # ./install, which can be erroneously created by make from ./install.sh. # Reject install programs that cannot install multiple files. { $as_echo "$as_me:${as_lineno-$LINENO}: checking for a BSD-compatible install" >&5 $as_echo_n "checking for a BSD-compatible install... " >&6; } if test -z "$INSTALL"; then if ${ac_cv_path_install+:} false; then : $as_echo_n "(cached) " >&6 else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. # Account for people who put trailing slashes in PATH elements. case $as_dir/ in #(( ./ | .// | /[cC]/* | \ /etc/* | /usr/sbin/* | /usr/etc/* | /sbin/* | /usr/afsws/bin/* | \ ?:[\\/]os2[\\/]install[\\/]* | ?:[\\/]OS2[\\/]INSTALL[\\/]* | \ /usr/ucb/* ) ;; *) # OSF1 and SCO ODT 3.0 have their own names for install. # Don't use installbsd from OSF since it installs stuff as root # by default. for ac_prog in ginstall scoinst install; do for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_prog$ac_exec_ext"; then if test $ac_prog = install && grep dspmsg "$as_dir/$ac_prog$ac_exec_ext" >/dev/null 2>&1; then # AIX install. It has an incompatible calling convention. : elif test $ac_prog = install && grep pwplus "$as_dir/$ac_prog$ac_exec_ext" >/dev/null 2>&1; then # program-specific install script used by HP pwplus--don't use. : else rm -rf conftest.one conftest.two conftest.dir echo one > conftest.one echo two > conftest.two mkdir conftest.dir if "$as_dir/$ac_prog$ac_exec_ext" -c conftest.one conftest.two "`pwd`/conftest.dir" && test -s conftest.one && test -s conftest.two && test -s conftest.dir/conftest.one && test -s conftest.dir/conftest.two then ac_cv_path_install="$as_dir/$ac_prog$ac_exec_ext -c" break 3 fi fi fi done done ;; esac done IFS=$as_save_IFS rm -rf conftest.one conftest.two conftest.dir fi if test "${ac_cv_path_install+set}" = set; then INSTALL=$ac_cv_path_install else # As a last resort, use the slow shell script. Don't cache a # value for INSTALL within a source directory, because that will # break other packages using the cache if that directory is # removed, or if the value is a relative name. INSTALL=$ac_install_sh fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $INSTALL" >&5 $as_echo "$INSTALL" >&6; } # Use test -z because SunOS4 sh mishandles braces in ${var-val}. # It thinks the first close brace ends the variable substitution. test -z "$INSTALL_PROGRAM" && INSTALL_PROGRAM='${INSTALL}' test -z "$INSTALL_SCRIPT" && INSTALL_SCRIPT='${INSTALL}' test -z "$INSTALL_DATA" && INSTALL_DATA='${INSTALL} -m 644' { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether build environment is sane" >&5 $as_echo_n "checking whether build environment is sane... " >&6; } # Reject unsafe characters in $srcdir or the absolute working directory # name. Accept space and tab only in the latter. am_lf=' ' case `pwd` in *[\\\"\#\$\&\'\`$am_lf]*) as_fn_error $? "unsafe absolute working directory name" "$LINENO" 5;; esac case $srcdir in *[\\\"\#\$\&\'\`$am_lf\ \ ]*) as_fn_error $? "unsafe srcdir value: '$srcdir'" "$LINENO" 5;; esac # Do 'set' in a subshell so we don't clobber the current shell's # arguments. Must try -L first in case configure is actually a # symlink; some systems play weird games with the mod time of symlinks # (eg FreeBSD returns the mod time of the symlink's containing # directory). if ( am_has_slept=no for am_try in 1 2; do echo "timestamp, slept: $am_has_slept" > conftest.file set X `ls -Lt "$srcdir/configure" conftest.file 2> /dev/null` if test "$*" = "X"; then # -L didn't work. set X `ls -t "$srcdir/configure" conftest.file` fi if test "$*" != "X $srcdir/configure conftest.file" \ && test "$*" != "X conftest.file $srcdir/configure"; then # If neither matched, then we have a broken ls. This can happen # if, for instance, CONFIG_SHELL is bash and it inherits a # broken ls alias from the environment. This has actually # happened. Such a system could not be considered "sane". as_fn_error $? "ls -t appears to fail. Make sure there is not a broken alias in your environment" "$LINENO" 5 fi if test "$2" = conftest.file || test $am_try -eq 2; then break fi # Just in case. sleep 1 am_has_slept=yes done test "$2" = conftest.file ) then # Ok. : else as_fn_error $? "newly created file is older than distributed files! Check your system clock" "$LINENO" 5 fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } # If we didn't sleep, we still need to ensure time stamps of config.status and # generated files are strictly newer. am_sleep_pid= if grep 'slept: no' conftest.file >/dev/null 2>&1; then ( sleep 1 ) & am_sleep_pid=$! fi rm -f conftest.file test "$program_prefix" != NONE && program_transform_name="s&^&$program_prefix&;$program_transform_name" # Use a double $ so make ignores it. test "$program_suffix" != NONE && program_transform_name="s&\$&$program_suffix&;$program_transform_name" # Double any \ or $. # By default was `s,x,x', remove it if useless. ac_script='s/[\\$]/&&/g;s/;s,x,x,$//' program_transform_name=`$as_echo "$program_transform_name" | sed "$ac_script"` # Expand $ac_aux_dir to an absolute path. am_aux_dir=`cd "$ac_aux_dir" && pwd` if test x"${MISSING+set}" != xset; then case $am_aux_dir in *\ * | *\ *) MISSING="\${SHELL} \"$am_aux_dir/missing\"" ;; *) MISSING="\${SHELL} $am_aux_dir/missing" ;; esac fi # Use eval to expand $SHELL if eval "$MISSING --is-lightweight"; then am_missing_run="$MISSING " else am_missing_run= { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: 'missing' script is too old or missing" >&5 $as_echo "$as_me: WARNING: 'missing' script is too old or missing" >&2;} fi if test x"${install_sh+set}" != xset; then case $am_aux_dir in *\ * | *\ *) install_sh="\${SHELL} '$am_aux_dir/install-sh'" ;; *) install_sh="\${SHELL} $am_aux_dir/install-sh" esac fi # Installed binaries are usually stripped using 'strip' when the user # run "make install-strip". However 'strip' might not be the right # tool to use in cross-compilation environments, therefore Automake # will honor the 'STRIP' environment variable to overrule this program. if test "$cross_compiling" != no; then if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}strip", so it can be a program name with args. set dummy ${ac_tool_prefix}strip; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_STRIP+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$STRIP"; then ac_cv_prog_STRIP="$STRIP" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_STRIP="${ac_tool_prefix}strip" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi STRIP=$ac_cv_prog_STRIP if test -n "$STRIP"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $STRIP" >&5 $as_echo "$STRIP" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_prog_STRIP"; then ac_ct_STRIP=$STRIP # Extract the first word of "strip", so it can be a program name with args. set dummy strip; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_STRIP+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_STRIP"; then ac_cv_prog_ac_ct_STRIP="$ac_ct_STRIP" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_STRIP="strip" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_STRIP=$ac_cv_prog_ac_ct_STRIP if test -n "$ac_ct_STRIP"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_STRIP" >&5 $as_echo "$ac_ct_STRIP" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_ct_STRIP" = x; then STRIP=":" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac STRIP=$ac_ct_STRIP fi else STRIP="$ac_cv_prog_STRIP" fi fi INSTALL_STRIP_PROGRAM="\$(install_sh) -c -s" { $as_echo "$as_me:${as_lineno-$LINENO}: checking for a thread-safe mkdir -p" >&5 $as_echo_n "checking for a thread-safe mkdir -p... " >&6; } if test -z "$MKDIR_P"; then if ${ac_cv_path_mkdir+:} false; then : $as_echo_n "(cached) " >&6 else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH$PATH_SEPARATOR/opt/sfw/bin do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_prog in mkdir gmkdir; do for ac_exec_ext in '' $ac_executable_extensions; do as_fn_executable_p "$as_dir/$ac_prog$ac_exec_ext" || continue case `"$as_dir/$ac_prog$ac_exec_ext" --version 2>&1` in #( 'mkdir (GNU coreutils) '* | \ 'mkdir (coreutils) '* | \ 'mkdir (fileutils) '4.1*) ac_cv_path_mkdir=$as_dir/$ac_prog$ac_exec_ext break 3;; esac done done done IFS=$as_save_IFS fi test -d ./--version && rmdir ./--version if test "${ac_cv_path_mkdir+set}" = set; then MKDIR_P="$ac_cv_path_mkdir -p" else # As a last resort, use the slow shell script. Don't cache a # value for MKDIR_P within a source directory, because that will # break other packages using the cache if that directory is # removed, or if the value is a relative name. MKDIR_P="$ac_install_sh -d" fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $MKDIR_P" >&5 $as_echo "$MKDIR_P" >&6; } for ac_prog in gawk mawk nawk awk do # Extract the first word of "$ac_prog", so it can be a program name with args. set dummy $ac_prog; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_AWK+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$AWK"; then ac_cv_prog_AWK="$AWK" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_AWK="$ac_prog" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi AWK=$ac_cv_prog_AWK if test -n "$AWK"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $AWK" >&5 $as_echo "$AWK" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi test -n "$AWK" && break done { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether ${MAKE-make} sets \$(MAKE)" >&5 $as_echo_n "checking whether ${MAKE-make} sets \$(MAKE)... " >&6; } set x ${MAKE-make} ac_make=`$as_echo "$2" | sed 's/+/p/g; s/[^a-zA-Z0-9_]/_/g'` if eval \${ac_cv_prog_make_${ac_make}_set+:} false; then : $as_echo_n "(cached) " >&6 else cat >conftest.make <<\_ACEOF SHELL = /bin/sh all: @echo '@@@%%%=$(MAKE)=@@@%%%' _ACEOF # GNU make sometimes prints "make[1]: Entering ...", which would confuse us. case `${MAKE-make} -f conftest.make 2>/dev/null` in *@@@%%%=?*=@@@%%%*) eval ac_cv_prog_make_${ac_make}_set=yes;; *) eval ac_cv_prog_make_${ac_make}_set=no;; esac rm -f conftest.make fi if eval test \$ac_cv_prog_make_${ac_make}_set = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } SET_MAKE= else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } SET_MAKE="MAKE=${MAKE-make}" fi rm -rf .tst 2>/dev/null mkdir .tst 2>/dev/null if test -d .tst; then am__leading_dot=. else am__leading_dot=_ fi rmdir .tst 2>/dev/null # Check whether --enable-silent-rules was given. if test "${enable_silent_rules+set}" = set; then : enableval=$enable_silent_rules; fi case $enable_silent_rules in # ((( yes) AM_DEFAULT_VERBOSITY=0;; no) AM_DEFAULT_VERBOSITY=1;; *) AM_DEFAULT_VERBOSITY=1;; esac am_make=${MAKE-make} { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether $am_make supports nested variables" >&5 $as_echo_n "checking whether $am_make supports nested variables... " >&6; } if ${am_cv_make_support_nested_variables+:} false; then : $as_echo_n "(cached) " >&6 else if $as_echo 'TRUE=$(BAR$(V)) BAR0=false BAR1=true V=1 am__doit: @$(TRUE) .PHONY: am__doit' | $am_make -f - >/dev/null 2>&1; then am_cv_make_support_nested_variables=yes else am_cv_make_support_nested_variables=no fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $am_cv_make_support_nested_variables" >&5 $as_echo "$am_cv_make_support_nested_variables" >&6; } if test $am_cv_make_support_nested_variables = yes; then AM_V='$(V)' AM_DEFAULT_V='$(AM_DEFAULT_VERBOSITY)' else AM_V=$AM_DEFAULT_VERBOSITY AM_DEFAULT_V=$AM_DEFAULT_VERBOSITY fi AM_BACKSLASH='\' if test "`cd $srcdir && pwd`" != "`pwd`"; then # Use -I$(srcdir) only when $(srcdir) != ., so that make's output # is not polluted with repeated "-I." am__isrc=' -I$(srcdir)' # test to see if srcdir already configured if test -f $srcdir/config.status; then as_fn_error $? "source directory already configured; run \"make distclean\" there first" "$LINENO" 5 fi fi # test whether we have cygpath if test -z "$CYGPATH_W"; then if (cygpath --version) >/dev/null 2>/dev/null; then CYGPATH_W='cygpath -w' else CYGPATH_W=echo fi fi # Define the identity of the package. PACKAGE='openconnect' VERSION='8.05' cat >>confdefs.h <<_ACEOF #define PACKAGE "$PACKAGE" _ACEOF cat >>confdefs.h <<_ACEOF #define VERSION "$VERSION" _ACEOF # Some tools Automake needs. ACLOCAL=${ACLOCAL-"${am_missing_run}aclocal-${am__api_version}"} AUTOCONF=${AUTOCONF-"${am_missing_run}autoconf"} AUTOMAKE=${AUTOMAKE-"${am_missing_run}automake-${am__api_version}"} AUTOHEADER=${AUTOHEADER-"${am_missing_run}autoheader"} MAKEINFO=${MAKEINFO-"${am_missing_run}makeinfo"} # For better backward compatibility. To be removed once Automake 1.9.x # dies out for good. For more background, see: # # mkdir_p='$(MKDIR_P)' # We need awk for the "check" target (and possibly the TAP driver). The # system "awk" is bad on some platforms. # Always define AMTAR for backward compatibility. Yes, it's still used # in the wild :-( We should find a proper way to deprecate it ... AMTAR='$${TAR-tar}' # We'll loop over all known methods to create a tar archive until one works. _am_tools='gnutar plaintar pax cpio none' # The POSIX 1988 'ustar' format is defined with fixed-size fields. # There is notably a 21 bits limit for the UID and the GID. In fact, # the 'pax' utility can hang on bigger UID/GID (see automake bug#8343 # and bug#13588). am_max_uid=2097151 # 2^21 - 1 am_max_gid=$am_max_uid # The $UID and $GID variables are not portable, so we need to resort # to the POSIX-mandated id(1) utility. Errors in the 'id' calls # below are definitely unexpected, so allow the users to see them # (that is, avoid stderr redirection). am_uid=`id -u || echo unknown` am_gid=`id -g || echo unknown` { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether UID '$am_uid' is supported by ustar format" >&5 $as_echo_n "checking whether UID '$am_uid' is supported by ustar format... " >&6; } if test $am_uid -le $am_max_uid; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } _am_tools=none fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether GID '$am_gid' is supported by ustar format" >&5 $as_echo_n "checking whether GID '$am_gid' is supported by ustar format... " >&6; } if test $am_gid -le $am_max_gid; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } _am_tools=none fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking how to create a ustar tar archive" >&5 $as_echo_n "checking how to create a ustar tar archive... " >&6; } # Go ahead even if we have the value already cached. We do so because we # need to set the values for the 'am__tar' and 'am__untar' variables. _am_tools=${am_cv_prog_tar_ustar-$_am_tools} for _am_tool in $_am_tools; do case $_am_tool in gnutar) for _am_tar in tar gnutar gtar; do { echo "$as_me:$LINENO: $_am_tar --version" >&5 ($_am_tar --version) >&5 2>&5 ac_status=$? echo "$as_me:$LINENO: \$? = $ac_status" >&5 (exit $ac_status); } && break done am__tar="$_am_tar --format=ustar -chf - "'"$$tardir"' am__tar_="$_am_tar --format=ustar -chf - "'"$tardir"' am__untar="$_am_tar -xf -" ;; plaintar) # Must skip GNU tar: if it does not support --format= it doesn't create # ustar tarball either. (tar --version) >/dev/null 2>&1 && continue am__tar='tar chf - "$$tardir"' am__tar_='tar chf - "$tardir"' am__untar='tar xf -' ;; pax) am__tar='pax -L -x ustar -w "$$tardir"' am__tar_='pax -L -x ustar -w "$tardir"' am__untar='pax -r' ;; cpio) am__tar='find "$$tardir" -print | cpio -o -H ustar -L' am__tar_='find "$tardir" -print | cpio -o -H ustar -L' am__untar='cpio -i -H ustar -d' ;; none) am__tar=false am__tar_=false am__untar=false ;; esac # If the value was cached, stop now. We just wanted to have am__tar # and am__untar set. test -n "${am_cv_prog_tar_ustar}" && break # tar/untar a dummy directory, and stop if the command works. rm -rf conftest.dir mkdir conftest.dir echo GrepMe > conftest.dir/file { echo "$as_me:$LINENO: tardir=conftest.dir && eval $am__tar_ >conftest.tar" >&5 (tardir=conftest.dir && eval $am__tar_ >conftest.tar) >&5 2>&5 ac_status=$? echo "$as_me:$LINENO: \$? = $ac_status" >&5 (exit $ac_status); } rm -rf conftest.dir if test -s conftest.tar; then { echo "$as_me:$LINENO: $am__untar &5 ($am__untar &5 2>&5 ac_status=$? echo "$as_me:$LINENO: \$? = $ac_status" >&5 (exit $ac_status); } { echo "$as_me:$LINENO: cat conftest.dir/file" >&5 (cat conftest.dir/file) >&5 2>&5 ac_status=$? echo "$as_me:$LINENO: \$? = $ac_status" >&5 (exit $ac_status); } grep GrepMe conftest.dir/file >/dev/null 2>&1 && break fi done rm -rf conftest.dir if ${am_cv_prog_tar_ustar+:} false; then : $as_echo_n "(cached) " >&6 else am_cv_prog_tar_ustar=$_am_tool fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $am_cv_prog_tar_ustar" >&5 $as_echo "$am_cv_prog_tar_ustar" >&6; } # POSIX will say in a future version that running "rm -f" with no argument # is OK; and we want to be able to make that assumption in our Makefile # recipes. So use an aggressive probe to check that the usage we want is # actually supported "in the wild" to an acceptable degree. # See automake bug#10828. # To make any issue more visible, cause the running configure to be aborted # by default if the 'rm' program in use doesn't match our expectations; the # user can still override this though. if rm -f && rm -fr && rm -rf; then : OK; else cat >&2 <<'END' Oops! Your 'rm' program seems unable to run without file operands specified on the command line, even when the '-f' option is present. This is contrary to the behaviour of most rm programs out there, and not conforming with the upcoming POSIX standard: Please tell bug-automake@gnu.org about your system, including the value of your $PATH and any error possibly output before this message. This can help us improve future automake versions. END if test x"$ACCEPT_INFERIOR_RM_PROGRAM" = x"yes"; then echo 'Configuration will proceed anyway, since you have set the' >&2 echo 'ACCEPT_INFERIOR_RM_PROGRAM variable to "yes"' >&2 echo >&2 else cat >&2 <<'END' Aborting the configuration process, to ensure you take notice of the issue. You can download and install GNU coreutils to get an 'rm' implementation that behaves properly: . If you want to complete the configuration process using your problematic 'rm' anyway, export the environment variable ACCEPT_INFERIOR_RM_PROGRAM to "yes", and re-run configure. END as_fn_error $? "Your 'rm' program is bad, sorry." "$LINENO" 5 fi fi # Check whether --enable-silent-rules was given. if test "${enable_silent_rules+set}" = set; then : enableval=$enable_silent_rules; fi case $enable_silent_rules in # ((( yes) AM_DEFAULT_VERBOSITY=0;; no) AM_DEFAULT_VERBOSITY=1;; *) AM_DEFAULT_VERBOSITY=0;; esac am_make=${MAKE-make} { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether $am_make supports nested variables" >&5 $as_echo_n "checking whether $am_make supports nested variables... " >&6; } if ${am_cv_make_support_nested_variables+:} false; then : $as_echo_n "(cached) " >&6 else if $as_echo 'TRUE=$(BAR$(V)) BAR0=false BAR1=true V=1 am__doit: @$(TRUE) .PHONY: am__doit' | $am_make -f - >/dev/null 2>&1; then am_cv_make_support_nested_variables=yes else am_cv_make_support_nested_variables=no fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $am_cv_make_support_nested_variables" >&5 $as_echo "$am_cv_make_support_nested_variables" >&6; } if test $am_cv_make_support_nested_variables = yes; then AM_V='$(V)' AM_DEFAULT_V='$(AM_DEFAULT_VERBOSITY)' else AM_V=$AM_DEFAULT_VERBOSITY AM_DEFAULT_V=$AM_DEFAULT_VERBOSITY fi AM_BACKSLASH='\' # Upstream's pkg.m4 (since 0.27) offers this now, but define our own # compatible version in case the local version of pkgconfig isn't new enough. # https://bugs.freedesktop.org/show_bug.cgi?id=48743 # Check whether --with-pkgconfigdir was given. if test "${with_pkgconfigdir+set}" = set; then : withval=$with_pkgconfigdir; else with_pkgconfigdir='${libdir}/pkgconfig' fi pkgconfigdir=$with_pkgconfigdir use_openbsd_libtool= symver_time= symver_getline= symver_asprintf= symver_vasprintf= symver_win32_strerror= case $host_os in *linux* | *gnu* | *nacl*) { $as_echo "$as_me:${as_lineno-$LINENO}: Applying feature macros for GNU build" >&5 $as_echo "$as_me: Applying feature macros for GNU build" >&6;} $as_echo "#define _GNU_SOURCE 1" >>confdefs.h ;; *netbsd*) { $as_echo "$as_me:${as_lineno-$LINENO}: Applying feature macros for NetBSD build" >&5 $as_echo "$as_me: Applying feature macros for NetBSD build" >&6;} $as_echo "#define _POSIX_C_SOURCE 200112L" >>confdefs.h $as_echo "#define _NETBSD_SOURCE 1" >>confdefs.h ;; *openbsd*) { $as_echo "$as_me:${as_lineno-$LINENO}: Applying feature macros for OpenBSD build" >&5 $as_echo "$as_me: Applying feature macros for OpenBSD build" >&6;} use_openbsd_libtool=true ;; *solaris*|*sunos*) { $as_echo "$as_me:${as_lineno-$LINENO}: Applying workaround for broken SunOS time() function" >&5 $as_echo "$as_me: Applying workaround for broken SunOS time() function" >&6;} $as_echo "#define HAVE_SUNOS_BROKEN_TIME 1" >>confdefs.h symver_time="openconnect__time;" ;; *mingw32*|*mingw64*|*msys*) { $as_echo "$as_me:${as_lineno-$LINENO}: Applying feature macros for MinGW/Windows build" >&5 $as_echo "$as_me: Applying feature macros for MinGW/Windows build" >&6;} # For GetVolumeInformationByHandleW() which is Vista+ $as_echo "#define _WIN32_WINNT 0x600" >>confdefs.h have_win=yes # For asprintf() $as_echo "#define _GNU_SOURCE 1" >>confdefs.h symver_win32_strerror="openconnect__win32_strerror;" # Win32 does have the SCard API system_pcsc_libs="-lwinscard" system_pcsc_cflags= if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}windres", so it can be a program name with args. set dummy ${ac_tool_prefix}windres; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_WINDRES+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$WINDRES"; then ac_cv_prog_WINDRES="$WINDRES" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_WINDRES="${ac_tool_prefix}windres" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi WINDRES=$ac_cv_prog_WINDRES if test -n "$WINDRES"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $WINDRES" >&5 $as_echo "$WINDRES" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_prog_WINDRES"; then ac_ct_WINDRES=$WINDRES # Extract the first word of "windres", so it can be a program name with args. set dummy windres; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_WINDRES+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_WINDRES"; then ac_cv_prog_ac_ct_WINDRES="$ac_ct_WINDRES" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_WINDRES="windres" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_WINDRES=$ac_cv_prog_ac_ct_WINDRES if test -n "$ac_ct_WINDRES"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_WINDRES" >&5 $as_echo "$ac_ct_WINDRES" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_ct_WINDRES" = x; then WINDRES="" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac WINDRES=$ac_ct_WINDRES fi else WINDRES="$ac_cv_prog_WINDRES" fi ;; *darwin*) system_pcsc_libs="-Wl,-framework -Wl,PCSC" system_pcsc_cflags= ;; *) # On FreeBSD the only way to get vsyslog() visible is to define # *nothing*, which makes absolutely everything visible. # On Darwin enabling _POSIX_C_SOURCE breaks because # u_long and other types don't get defined. OpenBSD is similar. ;; esac if test "$have_win" = "yes" ; then OPENCONNECT_WIN32_TRUE= OPENCONNECT_WIN32_FALSE='#' else OPENCONNECT_WIN32_TRUE='#' OPENCONNECT_WIN32_FALSE= fi # Check whether --with-vpnc-script was given. if test "${with_vpnc_script+set}" = set; then : withval=$with_vpnc_script; fi if test "$with_vpnc_script" = "yes" || test "$with_vpnc_script" = ""; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for vpnc-script in standard locations" >&5 $as_echo_n "checking for vpnc-script in standard locations... " >&6; } if test "$have_win" = "yes"; then with_vpnc_script=vpnc-script-win.js else for with_vpnc_script in /usr/local/share/vpnc-scripts/vpnc-script /usr/local/sbin/vpnc-script /usr/share/vpnc-scripts/vpnc-script /usr/sbin/vpnc-script /etc/vpnc/vpnc-script; do if test -x "$with_vpnc_script"; then break fi done if ! test -x "$with_vpnc_script"; then as_fn_error $? "${with_vpnc_script} does not seem to be executable. OpenConnect will not function correctly without a vpnc-script. See http://www.infradead.org/openconnect/vpnc-script.html for more details. If you are building a distribution package, please ensure that your packaging is correct, and that a vpnc-script will be installed when the user installs your package. You should provide a --with-vpnc-script= argument to this configure script, giving the full path where the script will be installed. The standard location is ${with_vpnc_script}. To bypass this error and build OpenConnect to use the script from this location, even though it is not present at the time you are building OpenConnect, pass the argument \"--with-vpnc-script=${with_vpnc_script}\"" "$LINENO" 5 else { $as_echo "$as_me:${as_lineno-$LINENO}: result: ${with_vpnc_script}" >&5 $as_echo "${with_vpnc_script}" >&6; } fi fi elif test "$with_vpnc_script" = "no"; then as_fn_error $? "You cannot disable vpnc-script. OpenConnect will not function correctly without it. See http://www.infradead.org/openconnect/vpnc-script.html" "$LINENO" 5 elif test "$have_win" = "yes"; then # Oh Windows how we hate thee. If user specifies a vpnc-script and it contains # backslashes, double them all up to survive escaping. with_vpnc_script="$(echo "${with_vpnc_script}" | sed s/\\\\/\\\\\\\\/g)" fi cat >>confdefs.h <<_ACEOF #define DEFAULT_VPNCSCRIPT "${with_vpnc_script}" _ACEOF DEFAULT_VPNCSCRIPT="${with_vpnc_script}" DEPDIR="${am__leading_dot}deps" ac_config_commands="$ac_config_commands depfiles" { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether ${MAKE-make} supports the include directive" >&5 $as_echo_n "checking whether ${MAKE-make} supports the include directive... " >&6; } cat > confinc.mk << 'END' am__doit: @echo this is the am__doit target >confinc.out .PHONY: am__doit END am__include="#" am__quote= # BSD make does it like this. echo '.include "confinc.mk" # ignored' > confmf.BSD # Other make implementations (GNU, Solaris 10, AIX) do it like this. echo 'include confinc.mk # ignored' > confmf.GNU _am_result=no for s in GNU BSD; do { echo "$as_me:$LINENO: ${MAKE-make} -f confmf.$s && cat confinc.out" >&5 (${MAKE-make} -f confmf.$s && cat confinc.out) >&5 2>&5 ac_status=$? echo "$as_me:$LINENO: \$? = $ac_status" >&5 (exit $ac_status); } case $?:`cat confinc.out 2>/dev/null` in #( '0:this is the am__doit target') : case $s in #( BSD) : am__include='.include' am__quote='"' ;; #( *) : am__include='include' am__quote='' ;; esac ;; #( *) : ;; esac if test "$am__include" != "#"; then _am_result="yes ($s style)" break fi done rm -f confinc.* confmf.* { $as_echo "$as_me:${as_lineno-$LINENO}: result: ${_am_result}" >&5 $as_echo "${_am_result}" >&6; } # Check whether --enable-dependency-tracking was given. if test "${enable_dependency_tracking+set}" = set; then : enableval=$enable_dependency_tracking; fi if test "x$enable_dependency_tracking" != xno; then am_depcomp="$ac_aux_dir/depcomp" AMDEPBACKSLASH='\' am__nodep='_no' fi if test "x$enable_dependency_tracking" != xno; then AMDEP_TRUE= AMDEP_FALSE='#' else AMDEP_TRUE='#' AMDEP_FALSE= fi ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}gcc", so it can be a program name with args. set dummy ${ac_tool_prefix}gcc; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_CC+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$CC"; then ac_cv_prog_CC="$CC" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_CC="${ac_tool_prefix}gcc" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi CC=$ac_cv_prog_CC if test -n "$CC"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $CC" >&5 $as_echo "$CC" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_prog_CC"; then ac_ct_CC=$CC # Extract the first word of "gcc", so it can be a program name with args. set dummy gcc; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_CC+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_CC"; then ac_cv_prog_ac_ct_CC="$ac_ct_CC" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_CC="gcc" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_CC=$ac_cv_prog_ac_ct_CC if test -n "$ac_ct_CC"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_CC" >&5 $as_echo "$ac_ct_CC" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_ct_CC" = x; then CC="" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac CC=$ac_ct_CC fi else CC="$ac_cv_prog_CC" fi if test -z "$CC"; then if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}cc", so it can be a program name with args. set dummy ${ac_tool_prefix}cc; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_CC+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$CC"; then ac_cv_prog_CC="$CC" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_CC="${ac_tool_prefix}cc" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi CC=$ac_cv_prog_CC if test -n "$CC"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $CC" >&5 $as_echo "$CC" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi fi if test -z "$CC"; then # Extract the first word of "cc", so it can be a program name with args. set dummy cc; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_CC+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$CC"; then ac_cv_prog_CC="$CC" # Let the user override the test. else ac_prog_rejected=no as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then if test "$as_dir/$ac_word$ac_exec_ext" = "/usr/ucb/cc"; then ac_prog_rejected=yes continue fi ac_cv_prog_CC="cc" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS if test $ac_prog_rejected = yes; then # We found a bogon in the path, so make sure we never use it. set dummy $ac_cv_prog_CC shift if test $# != 0; then # We chose a different compiler from the bogus one. # However, it has the same basename, so the bogon will be chosen # first if we set CC to just the basename; use the full file name. shift ac_cv_prog_CC="$as_dir/$ac_word${1+' '}$@" fi fi fi fi CC=$ac_cv_prog_CC if test -n "$CC"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $CC" >&5 $as_echo "$CC" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$CC"; then if test -n "$ac_tool_prefix"; then for ac_prog in cl.exe do # Extract the first word of "$ac_tool_prefix$ac_prog", so it can be a program name with args. set dummy $ac_tool_prefix$ac_prog; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_CC+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$CC"; then ac_cv_prog_CC="$CC" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_CC="$ac_tool_prefix$ac_prog" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi CC=$ac_cv_prog_CC if test -n "$CC"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $CC" >&5 $as_echo "$CC" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi test -n "$CC" && break done fi if test -z "$CC"; then ac_ct_CC=$CC for ac_prog in cl.exe do # Extract the first word of "$ac_prog", so it can be a program name with args. set dummy $ac_prog; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_CC+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_CC"; then ac_cv_prog_ac_ct_CC="$ac_ct_CC" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_CC="$ac_prog" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_CC=$ac_cv_prog_ac_ct_CC if test -n "$ac_ct_CC"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_CC" >&5 $as_echo "$ac_ct_CC" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi test -n "$ac_ct_CC" && break done if test "x$ac_ct_CC" = x; then CC="" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac CC=$ac_ct_CC fi fi fi test -z "$CC" && { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "no acceptable C compiler found in \$PATH See \`config.log' for more details" "$LINENO" 5; } # Provide some information about the compiler. $as_echo "$as_me:${as_lineno-$LINENO}: checking for C compiler version" >&5 set X $ac_compile ac_compiler=$2 for ac_option in --version -v -V -qversion; do { { ac_try="$ac_compiler $ac_option >&5" case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_compiler $ac_option >&5") 2>conftest.err ac_status=$? if test -s conftest.err; then sed '10a\ ... rest of stderr output deleted ... 10q' conftest.err >conftest.er1 cat conftest.er1 >&5 fi rm -f conftest.er1 conftest.err $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } done cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF ac_clean_files_save=$ac_clean_files ac_clean_files="$ac_clean_files a.out a.out.dSYM a.exe b.out" # Try to create an executable without -o first, disregard a.out. # It will help us diagnose broken compilers, and finding out an intuition # of exeext. { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether the C compiler works" >&5 $as_echo_n "checking whether the C compiler works... " >&6; } ac_link_default=`$as_echo "$ac_link" | sed 's/ -o *conftest[^ ]*//'` # The possible output files: ac_files="a.out conftest.exe conftest a.exe a_out.exe b.out conftest.*" ac_rmfiles= for ac_file in $ac_files do case $ac_file in *.$ac_ext | *.xcoff | *.tds | *.d | *.pdb | *.xSYM | *.bb | *.bbg | *.map | *.inf | *.dSYM | *.o | *.obj ) ;; * ) ac_rmfiles="$ac_rmfiles $ac_file";; esac done rm -f $ac_rmfiles if { { ac_try="$ac_link_default" case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_link_default") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then : # Autoconf-2.13 could set the ac_cv_exeext variable to `no'. # So ignore a value of `no', otherwise this would lead to `EXEEXT = no' # in a Makefile. We should not override ac_cv_exeext if it was cached, # so that the user can short-circuit this test for compilers unknown to # Autoconf. for ac_file in $ac_files '' do test -f "$ac_file" || continue case $ac_file in *.$ac_ext | *.xcoff | *.tds | *.d | *.pdb | *.xSYM | *.bb | *.bbg | *.map | *.inf | *.dSYM | *.o | *.obj ) ;; [ab].out ) # We found the default executable, but exeext='' is most # certainly right. break;; *.* ) if test "${ac_cv_exeext+set}" = set && test "$ac_cv_exeext" != no; then :; else ac_cv_exeext=`expr "$ac_file" : '[^.]*\(\..*\)'` fi # We set ac_cv_exeext here because the later test for it is not # safe: cross compilers may not add the suffix if given an `-o' # argument, so we may need to know it at that point already. # Even if this section looks crufty: it has the advantage of # actually working. break;; * ) break;; esac done test "$ac_cv_exeext" = no && ac_cv_exeext= else ac_file='' fi if test -z "$ac_file"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } $as_echo "$as_me: failed program was:" >&5 sed 's/^/| /' conftest.$ac_ext >&5 { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error 77 "C compiler cannot create executables See \`config.log' for more details" "$LINENO" 5; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking for C compiler default output file name" >&5 $as_echo_n "checking for C compiler default output file name... " >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_file" >&5 $as_echo "$ac_file" >&6; } ac_exeext=$ac_cv_exeext rm -f -r a.out a.out.dSYM a.exe conftest$ac_cv_exeext b.out ac_clean_files=$ac_clean_files_save { $as_echo "$as_me:${as_lineno-$LINENO}: checking for suffix of executables" >&5 $as_echo_n "checking for suffix of executables... " >&6; } if { { ac_try="$ac_link" case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_link") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then : # If both `conftest.exe' and `conftest' are `present' (well, observable) # catch `conftest.exe'. For instance with Cygwin, `ls conftest' will # work properly (i.e., refer to `conftest.exe'), while it won't with # `rm'. for ac_file in conftest.exe conftest conftest.*; do test -f "$ac_file" || continue case $ac_file in *.$ac_ext | *.xcoff | *.tds | *.d | *.pdb | *.xSYM | *.bb | *.bbg | *.map | *.inf | *.dSYM | *.o | *.obj ) ;; *.* ) ac_cv_exeext=`expr "$ac_file" : '[^.]*\(\..*\)'` break;; * ) break;; esac done else { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "cannot compute suffix of executables: cannot compile and link See \`config.log' for more details" "$LINENO" 5; } fi rm -f conftest conftest$ac_cv_exeext { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_exeext" >&5 $as_echo "$ac_cv_exeext" >&6; } rm -f conftest.$ac_ext EXEEXT=$ac_cv_exeext ac_exeext=$EXEEXT cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { FILE *f = fopen ("conftest.out", "w"); return ferror (f) || fclose (f) != 0; ; return 0; } _ACEOF ac_clean_files="$ac_clean_files conftest.out" # Check that the compiler produces executables we can run. If not, either # the compiler is broken, or we cross compile. { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether we are cross compiling" >&5 $as_echo_n "checking whether we are cross compiling... " >&6; } if test "$cross_compiling" != yes; then { { ac_try="$ac_link" case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_link") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } if { ac_try='./conftest$ac_cv_exeext' { { case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_try") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; }; then cross_compiling=no else if test "$cross_compiling" = maybe; then cross_compiling=yes else { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "cannot run C compiled programs. If you meant to cross compile, use \`--host'. See \`config.log' for more details" "$LINENO" 5; } fi fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $cross_compiling" >&5 $as_echo "$cross_compiling" >&6; } rm -f conftest.$ac_ext conftest$ac_cv_exeext conftest.out ac_clean_files=$ac_clean_files_save { $as_echo "$as_me:${as_lineno-$LINENO}: checking for suffix of object files" >&5 $as_echo_n "checking for suffix of object files... " >&6; } if ${ac_cv_objext+:} false; then : $as_echo_n "(cached) " >&6 else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF rm -f conftest.o conftest.obj if { { ac_try="$ac_compile" case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_compile") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then : for ac_file in conftest.o conftest.obj conftest.*; do test -f "$ac_file" || continue; case $ac_file in *.$ac_ext | *.xcoff | *.tds | *.d | *.pdb | *.xSYM | *.bb | *.bbg | *.map | *.inf | *.dSYM ) ;; *) ac_cv_objext=`expr "$ac_file" : '.*\.\(.*\)'` break;; esac done else $as_echo "$as_me: failed program was:" >&5 sed 's/^/| /' conftest.$ac_ext >&5 { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "cannot compute suffix of object files: cannot compile See \`config.log' for more details" "$LINENO" 5; } fi rm -f conftest.$ac_cv_objext conftest.$ac_ext fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_objext" >&5 $as_echo "$ac_cv_objext" >&6; } OBJEXT=$ac_cv_objext ac_objext=$OBJEXT { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether we are using the GNU C compiler" >&5 $as_echo_n "checking whether we are using the GNU C compiler... " >&6; } if ${ac_cv_c_compiler_gnu+:} false; then : $as_echo_n "(cached) " >&6 else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { #ifndef __GNUC__ choke me #endif ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : ac_compiler_gnu=yes else ac_compiler_gnu=no fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext ac_cv_c_compiler_gnu=$ac_compiler_gnu fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_c_compiler_gnu" >&5 $as_echo "$ac_cv_c_compiler_gnu" >&6; } if test $ac_compiler_gnu = yes; then GCC=yes else GCC= fi ac_test_CFLAGS=${CFLAGS+set} ac_save_CFLAGS=$CFLAGS { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether $CC accepts -g" >&5 $as_echo_n "checking whether $CC accepts -g... " >&6; } if ${ac_cv_prog_cc_g+:} false; then : $as_echo_n "(cached) " >&6 else ac_save_c_werror_flag=$ac_c_werror_flag ac_c_werror_flag=yes ac_cv_prog_cc_g=no CFLAGS="-g" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : ac_cv_prog_cc_g=yes else CFLAGS="" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : else ac_c_werror_flag=$ac_save_c_werror_flag CFLAGS="-g" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : ac_cv_prog_cc_g=yes fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext ac_c_werror_flag=$ac_save_c_werror_flag fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_prog_cc_g" >&5 $as_echo "$ac_cv_prog_cc_g" >&6; } if test "$ac_test_CFLAGS" = set; then CFLAGS=$ac_save_CFLAGS elif test $ac_cv_prog_cc_g = yes; then if test "$GCC" = yes; then CFLAGS="-g -O2" else CFLAGS="-g" fi else if test "$GCC" = yes; then CFLAGS="-O2" else CFLAGS= fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $CC option to accept ISO C89" >&5 $as_echo_n "checking for $CC option to accept ISO C89... " >&6; } if ${ac_cv_prog_cc_c89+:} false; then : $as_echo_n "(cached) " >&6 else ac_cv_prog_cc_c89=no ac_save_CC=$CC cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include struct stat; /* Most of the following tests are stolen from RCS 5.7's src/conf.sh. */ struct buf { int x; }; FILE * (*rcsopen) (struct buf *, struct stat *, int); static char *e (p, i) char **p; int i; { return p[i]; } static char *f (char * (*g) (char **, int), char **p, ...) { char *s; va_list v; va_start (v,p); s = g (p, va_arg (v,int)); va_end (v); return s; } /* OSF 4.0 Compaq cc is some sort of almost-ANSI by default. It has function prototypes and stuff, but not '\xHH' hex character constants. These don't provoke an error unfortunately, instead are silently treated as 'x'. The following induces an error, until -std is added to get proper ANSI mode. Curiously '\x00'!='x' always comes out true, for an array size at least. It's necessary to write '\x00'==0 to get something that's true only with -std. */ int osf4_cc_array ['\x00' == 0 ? 1 : -1]; /* IBM C 6 for AIX is almost-ANSI by default, but it replaces macro parameters inside strings and character constants. */ #define FOO(x) 'x' int xlc6_cc_array[FOO(a) == 'x' ? 1 : -1]; int test (int i, double x); struct s1 {int (*f) (int a);}; struct s2 {int (*f) (double a);}; int pairnames (int, char **, FILE *(*)(struct buf *, struct stat *, int), int, int); int argc; char **argv; int main () { return f (e, argv, 0) != argv[0] || f (e, argv, 1) != argv[1]; ; return 0; } _ACEOF for ac_arg in '' -qlanglvl=extc89 -qlanglvl=ansi -std \ -Ae "-Aa -D_HPUX_SOURCE" "-Xc -D__EXTENSIONS__" do CC="$ac_save_CC $ac_arg" if ac_fn_c_try_compile "$LINENO"; then : ac_cv_prog_cc_c89=$ac_arg fi rm -f core conftest.err conftest.$ac_objext test "x$ac_cv_prog_cc_c89" != "xno" && break done rm -f conftest.$ac_ext CC=$ac_save_CC fi # AC_CACHE_VAL case "x$ac_cv_prog_cc_c89" in x) { $as_echo "$as_me:${as_lineno-$LINENO}: result: none needed" >&5 $as_echo "none needed" >&6; } ;; xno) { $as_echo "$as_me:${as_lineno-$LINENO}: result: unsupported" >&5 $as_echo "unsupported" >&6; } ;; *) CC="$CC $ac_cv_prog_cc_c89" { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_prog_cc_c89" >&5 $as_echo "$ac_cv_prog_cc_c89" >&6; } ;; esac if test "x$ac_cv_prog_cc_c89" != xno; then : fi ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether $CC understands -c and -o together" >&5 $as_echo_n "checking whether $CC understands -c and -o together... " >&6; } if ${am_cv_prog_cc_c_o+:} false; then : $as_echo_n "(cached) " >&6 else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF # Make sure it works both with $CC and with simple cc. # Following AC_PROG_CC_C_O, we do the test twice because some # compilers refuse to overwrite an existing .o file with -o, # though they will create one. am_cv_prog_cc_c_o=yes for am_i in 1 2; do if { echo "$as_me:$LINENO: $CC -c conftest.$ac_ext -o conftest2.$ac_objext" >&5 ($CC -c conftest.$ac_ext -o conftest2.$ac_objext) >&5 2>&5 ac_status=$? echo "$as_me:$LINENO: \$? = $ac_status" >&5 (exit $ac_status); } \ && test -f conftest2.$ac_objext; then : OK else am_cv_prog_cc_c_o=no break fi done rm -f core conftest* unset am_i fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $am_cv_prog_cc_c_o" >&5 $as_echo "$am_cv_prog_cc_c_o" >&6; } if test "$am_cv_prog_cc_c_o" != yes; then # Losing compiler, so override with the script. # FIXME: It is wrong to rewrite CC. # But if we don't then we get into trouble of one sort or another. # A longer-term fix would be to have automake use am__CC in this case, # and then we could set am__CC="\$(top_srcdir)/compile \$(CC)" CC="$am_aux_dir/compile $CC" fi ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu depcc="$CC" am_compiler_list= { $as_echo "$as_me:${as_lineno-$LINENO}: checking dependency style of $depcc" >&5 $as_echo_n "checking dependency style of $depcc... " >&6; } if ${am_cv_CC_dependencies_compiler_type+:} false; then : $as_echo_n "(cached) " >&6 else if test -z "$AMDEP_TRUE" && test -f "$am_depcomp"; then # We make a subdir and do the tests there. Otherwise we can end up # making bogus files that we don't know about and never remove. For # instance it was reported that on HP-UX the gcc test will end up # making a dummy file named 'D' -- because '-MD' means "put the output # in D". rm -rf conftest.dir mkdir conftest.dir # Copy depcomp to subdir because otherwise we won't find it if we're # using a relative directory. cp "$am_depcomp" conftest.dir cd conftest.dir # We will build objects and dependencies in a subdirectory because # it helps to detect inapplicable dependency modes. For instance # both Tru64's cc and ICC support -MD to output dependencies as a # side effect of compilation, but ICC will put the dependencies in # the current directory while Tru64 will put them in the object # directory. mkdir sub am_cv_CC_dependencies_compiler_type=none if test "$am_compiler_list" = ""; then am_compiler_list=`sed -n 's/^#*\([a-zA-Z0-9]*\))$/\1/p' < ./depcomp` fi am__universal=false case " $depcc " in #( *\ -arch\ *\ -arch\ *) am__universal=true ;; esac for depmode in $am_compiler_list; do # Setup a source with many dependencies, because some compilers # like to wrap large dependency lists on column 80 (with \), and # we should not choose a depcomp mode which is confused by this. # # We need to recreate these files for each test, as the compiler may # overwrite some of them when testing with obscure command lines. # This happens at least with the AIX C compiler. : > sub/conftest.c for i in 1 2 3 4 5 6; do echo '#include "conftst'$i'.h"' >> sub/conftest.c # Using ": > sub/conftst$i.h" creates only sub/conftst1.h with # Solaris 10 /bin/sh. echo '/* dummy */' > sub/conftst$i.h done echo "${am__include} ${am__quote}sub/conftest.Po${am__quote}" > confmf # We check with '-c' and '-o' for the sake of the "dashmstdout" # mode. It turns out that the SunPro C++ compiler does not properly # handle '-M -o', and we need to detect this. Also, some Intel # versions had trouble with output in subdirs. am__obj=sub/conftest.${OBJEXT-o} am__minus_obj="-o $am__obj" case $depmode in gcc) # This depmode causes a compiler race in universal mode. test "$am__universal" = false || continue ;; nosideeffect) # After this tag, mechanisms are not by side-effect, so they'll # only be used when explicitly requested. if test "x$enable_dependency_tracking" = xyes; then continue else break fi ;; msvc7 | msvc7msys | msvisualcpp | msvcmsys) # This compiler won't grok '-c -o', but also, the minuso test has # not run yet. These depmodes are late enough in the game, and # so weak that their functioning should not be impacted. am__obj=conftest.${OBJEXT-o} am__minus_obj= ;; none) break ;; esac if depmode=$depmode \ source=sub/conftest.c object=$am__obj \ depfile=sub/conftest.Po tmpdepfile=sub/conftest.TPo \ $SHELL ./depcomp $depcc -c $am__minus_obj sub/conftest.c \ >/dev/null 2>conftest.err && grep sub/conftst1.h sub/conftest.Po > /dev/null 2>&1 && grep sub/conftst6.h sub/conftest.Po > /dev/null 2>&1 && grep $am__obj sub/conftest.Po > /dev/null 2>&1 && ${MAKE-make} -s -f confmf > /dev/null 2>&1; then # icc doesn't choke on unknown options, it will just issue warnings # or remarks (even with -Werror). So we grep stderr for any message # that says an option was ignored or not supported. # When given -MP, icc 7.0 and 7.1 complain thusly: # icc: Command line warning: ignoring option '-M'; no argument required # The diagnosis changed in icc 8.0: # icc: Command line remark: option '-MP' not supported if (grep 'ignoring option' conftest.err || grep 'not supported' conftest.err) >/dev/null 2>&1; then :; else am_cv_CC_dependencies_compiler_type=$depmode break fi fi done cd .. rm -rf conftest.dir else am_cv_CC_dependencies_compiler_type=none fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $am_cv_CC_dependencies_compiler_type" >&5 $as_echo "$am_cv_CC_dependencies_compiler_type" >&6; } CCDEPMODE=depmode=$am_cv_CC_dependencies_compiler_type if test "x$enable_dependency_tracking" != xno \ && test "$am_cv_CC_dependencies_compiler_type" = gcc3; then am__fastdepCC_TRUE= am__fastdepCC_FALSE='#' else am__fastdepCC_TRUE='#' am__fastdepCC_FALSE= fi ac_fn_c_check_func "$LINENO" "fdevname_r" "ac_cv_func_fdevname_r" if test "x$ac_cv_func_fdevname_r" = xyes; then : $as_echo "#define HAVE_FDEVNAME_R 1" >>confdefs.h fi ac_fn_c_check_func "$LINENO" "statfs" "ac_cv_func_statfs" if test "x$ac_cv_func_statfs" = xyes; then : $as_echo "#define HAVE_STATFS 1" >>confdefs.h fi ac_fn_c_check_func "$LINENO" "getline" "ac_cv_func_getline" if test "x$ac_cv_func_getline" = xyes; then : $as_echo "#define HAVE_GETLINE 1" >>confdefs.h else symver_getline="openconnect__getline;" fi ac_fn_c_check_func "$LINENO" "strcasestr" "ac_cv_func_strcasestr" if test "x$ac_cv_func_strcasestr" = xyes; then : $as_echo "#define HAVE_STRCASESTR 1" >>confdefs.h fi ac_fn_c_check_func "$LINENO" "strndup" "ac_cv_func_strndup" if test "x$ac_cv_func_strndup" = xyes; then : $as_echo "#define HAVE_STRNDUP 1" >>confdefs.h fi ac_fn_c_check_func "$LINENO" "asprintf" "ac_cv_func_asprintf" if test "x$ac_cv_func_asprintf" = xyes; then : $as_echo "#define HAVE_ASPRINTF 1" >>confdefs.h else symver_asprintf="openconnect__asprintf;" fi ac_fn_c_check_func "$LINENO" "vasprintf" "ac_cv_func_vasprintf" if test "x$ac_cv_func_vasprintf" = xyes; then : $as_echo "#define HAVE_VASPRINTF 1" >>confdefs.h else symver_vasprintf="openconnect__vasprintf;" fi if test -n "$symver_vasprintf"; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for va_copy" >&5 $as_echo_n "checking for va_copy... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include va_list a; int main () { va_list b; va_copy(b,a); va_end(b); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : $as_echo "#define HAVE_VA_COPY 1" >>confdefs.h { $as_echo "$as_me:${as_lineno-$LINENO}: result: va_copy" >&5 $as_echo "va_copy" >&6; } else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include va_list a; int main () { va_list b; __va_copy(b,a); va_end(b); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : $as_echo "#define HAVE___VA_COPY 1" >>confdefs.h { $as_echo "$as_me:${as_lineno-$LINENO}: result: __va_copy" >&5 $as_echo "__va_copy" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } as_fn_error $? "Your system lacks vasprintf() and va_copy()" "$LINENO" 5 fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext fi SYMVER_TIME=$symver_time SYMVER_GETLINE=$symver_getline SYMVER_ASPRINTF=$symver_asprintf SYMVER_VASPRINTF=$symver_vasprintf SYMVER_WIN32_STRERROR=$symver_win32_strerror list="-Wall -Wextra -Wno-missing-field-initializers -Wno-sign-compare -Wno-unused-parameter -Werror=pointer-to-int-cast -Wdeclaration-after-statement -Werror-implicit-function-declaration -Wformat-nonliteral -Wformat-security -Winit-self -Wmissing-declarations -Wmissing-include-dirs -Wnested-externs -Wpointer-arith -Wwrite-strings" flags_supported="" flags_unsupported="" { $as_echo "$as_me:${as_lineno-$LINENO}: checking for supported compiler flags" >&5 $as_echo_n "checking for supported compiler flags... " >&6; } for each in $list do save_CFLAGS="$CFLAGS" CFLAGS="$CFLAGS $each" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : flag_ok=yes else flag_ok=no fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext CFLAGS="$save_CFLAGS" if test "X$flag_ok" = Xyes ; then flags_supported="$flags_supported $each" else flags_unsupported="$flags_unsupported $each" fi done { $as_echo "$as_me:${as_lineno-$LINENO}: result: $flags_supported" >&5 $as_echo "$flags_supported" >&6; } if test "X$flags_unsupported" != X ; then { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: unsupported compiler flags: $flags_unsupported" >&5 $as_echo "$as_me: WARNING: unsupported compiler flags: $flags_unsupported" >&2;} fi WFLAGS="$WFLAGS $flags_supported" WFLAGS=$WFLAGS oldCFLAGS="$CFLAGS" CFLAGS="$CFLAGS $WFLAGS" { $as_echo "$as_me:${as_lineno-$LINENO}: checking For memset_s" >&5 $as_echo_n "checking For memset_s... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #define __STDC_WANT_LIB_EXT1__ 1 #include int main () { unsigned char *foo[16]; memset_s(foo, 16, 0, 16); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } $as_echo "#define __STDC_WANT_LIB_EXT1__ 1" >>confdefs.h $as_echo "#define HAVE_MEMSET_S 1" >>confdefs.h else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } ac_fn_c_check_func "$LINENO" "explicit_memset" "ac_cv_func_explicit_memset" if test "x$ac_cv_func_explicit_memset" = xyes; then : $as_echo "#define HAVE_EXPLICIT_MEMSET 1" >>confdefs.h else ac_fn_c_check_func "$LINENO" "explicit_bzero" "ac_cv_func_explicit_bzero" if test "x$ac_cv_func_explicit_bzero" = xyes; then : $as_echo "#define HAVE_EXPLICIT_BZERO 1" >>confdefs.h fi fi fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext CFLAGS="$oldCFLAGS" if test "$have_win" = yes; then # Checking "properly" for __attribute__((dllimport,stdcall)) functions is non-trivial LIBS="$LIBS -lws2_32 -lshlwapi -lsecur32 -liphlpapi" else ac_fn_c_check_func "$LINENO" "socket" "ac_cv_func_socket" if test "x$ac_cv_func_socket" = xyes; then : else { $as_echo "$as_me:${as_lineno-$LINENO}: checking for socket in -lsocket" >&5 $as_echo_n "checking for socket in -lsocket... " >&6; } if ${ac_cv_lib_socket_socket+:} false; then : $as_echo_n "(cached) " >&6 else ac_check_lib_save_LIBS=$LIBS LIBS="-lsocket $LIBS" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ /* Override any GCC internal prototype to avoid an error. Use char because int might match the return type of a GCC builtin and then its argument prototype would still apply. */ #ifdef __cplusplus extern "C" #endif char socket (); int main () { return socket (); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ac_cv_lib_socket_socket=yes else ac_cv_lib_socket_socket=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS=$ac_check_lib_save_LIBS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_lib_socket_socket" >&5 $as_echo "$ac_cv_lib_socket_socket" >&6; } if test "x$ac_cv_lib_socket_socket" = xyes; then : cat >>confdefs.h <<_ACEOF #define HAVE_LIBSOCKET 1 _ACEOF LIBS="-lsocket $LIBS" else as_fn_error $? "Cannot find socket() function" "$LINENO" 5 fi fi fi have_inet_aton=yes ac_fn_c_check_func "$LINENO" "inet_aton" "ac_cv_func_inet_aton" if test "x$ac_cv_func_inet_aton" = xyes; then : else { $as_echo "$as_me:${as_lineno-$LINENO}: checking for inet_aton in -lnsl" >&5 $as_echo_n "checking for inet_aton in -lnsl... " >&6; } if ${ac_cv_lib_nsl_inet_aton+:} false; then : $as_echo_n "(cached) " >&6 else ac_check_lib_save_LIBS=$LIBS LIBS="-lnsl $LIBS" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ /* Override any GCC internal prototype to avoid an error. Use char because int might match the return type of a GCC builtin and then its argument prototype would still apply. */ #ifdef __cplusplus extern "C" #endif char inet_aton (); int main () { return inet_aton (); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ac_cv_lib_nsl_inet_aton=yes else ac_cv_lib_nsl_inet_aton=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS=$ac_check_lib_save_LIBS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_lib_nsl_inet_aton" >&5 $as_echo "$ac_cv_lib_nsl_inet_aton" >&6; } if test "x$ac_cv_lib_nsl_inet_aton" = xyes; then : cat >>confdefs.h <<_ACEOF #define HAVE_LIBNSL 1 _ACEOF LIBS="-lnsl $LIBS" else have_inet_aton=no fi fi if test "$have_inet_aton" = "yes"; then $as_echo "#define HAVE_INET_ATON 1" >>confdefs.h fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking for IPV6_PATHMTU socket option" >&5 $as_echo_n "checking for IPV6_PATHMTU socket option... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include #include int main () { int foo = IPV6_PATHMTU; (void)foo; ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : $as_echo "#define HAVE_IPV6_PATHMTU 1" >>confdefs.h { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext ac_fn_c_check_func "$LINENO" "__android_log_vprint" "ac_cv_func___android_log_vprint" if test "x$ac_cv_func___android_log_vprint" = xyes; then : else { $as_echo "$as_me:${as_lineno-$LINENO}: checking for __android_log_vprint in -llog" >&5 $as_echo_n "checking for __android_log_vprint in -llog... " >&6; } if ${ac_cv_lib_log___android_log_vprint+:} false; then : $as_echo_n "(cached) " >&6 else ac_check_lib_save_LIBS=$LIBS LIBS="-llog $LIBS" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ /* Override any GCC internal prototype to avoid an error. Use char because int might match the return type of a GCC builtin and then its argument prototype would still apply. */ #ifdef __cplusplus extern "C" #endif char __android_log_vprint (); int main () { return __android_log_vprint (); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ac_cv_lib_log___android_log_vprint=yes else ac_cv_lib_log___android_log_vprint=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS=$ac_check_lib_save_LIBS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_lib_log___android_log_vprint" >&5 $as_echo "$ac_cv_lib_log___android_log_vprint" >&6; } if test "x$ac_cv_lib_log___android_log_vprint" = xyes; then : cat >>confdefs.h <<_ACEOF #define HAVE_LIBLOG 1 _ACEOF LIBS="-llog $LIBS" fi fi # Check whether --enable-shared was given. if test "${enable_shared+set}" = set; then : enableval=$enable_shared; p=${PACKAGE-default} case $enableval in yes) enable_shared=yes ;; no) enable_shared=no ;; *) enable_shared=no # Look at the argument we got. We use all the common list separators. lt_save_ifs=$IFS; IFS=$IFS$PATH_SEPARATOR, for pkg in $enableval; do IFS=$lt_save_ifs if test "X$pkg" = "X$p"; then enable_shared=yes fi done IFS=$lt_save_ifs ;; esac else enable_shared=yes fi # Check whether --enable-static was given. if test "${enable_static+set}" = set; then : enableval=$enable_static; p=${PACKAGE-default} case $enableval in yes) enable_static=yes ;; no) enable_static=no ;; *) enable_static=no # Look at the argument we got. We use all the common list separators. lt_save_ifs=$IFS; IFS=$IFS$PATH_SEPARATOR, for pkg in $enableval; do IFS=$lt_save_ifs if test "X$pkg" = "X$p"; then enable_static=yes fi done IFS=$lt_save_ifs ;; esac else enable_static=no fi ac_fn_c_check_func "$LINENO" "nl_langinfo" "ac_cv_func_nl_langinfo" if test "x$ac_cv_func_nl_langinfo" = xyes; then : $as_echo "#define HAVE_NL_LANGINFO 1" >>confdefs.h fi if test "$ac_cv_func_nl_langinfo" = "yes"; then if test "X$prefix" = "XNONE"; then acl_final_prefix="$ac_default_prefix" else acl_final_prefix="$prefix" fi if test "X$exec_prefix" = "XNONE"; then acl_final_exec_prefix='${prefix}' else acl_final_exec_prefix="$exec_prefix" fi acl_save_prefix="$prefix" prefix="$acl_final_prefix" eval acl_final_exec_prefix=\"$acl_final_exec_prefix\" prefix="$acl_save_prefix" # Check whether --with-gnu-ld was given. if test "${with_gnu_ld+set}" = set; then : withval=$with_gnu_ld; test "$withval" = no || with_gnu_ld=yes else with_gnu_ld=no fi # Prepare PATH_SEPARATOR. # The user is always right. if test "${PATH_SEPARATOR+set}" != set; then # Determine PATH_SEPARATOR by trying to find /bin/sh in a PATH which # contains only /bin. Note that ksh looks also at the FPATH variable, # so we have to set that as well for the test. PATH_SEPARATOR=: (PATH='/bin;/bin'; FPATH=$PATH; sh -c :) >/dev/null 2>&1 \ && { (PATH='/bin:/bin'; FPATH=$PATH; sh -c :) >/dev/null 2>&1 \ || PATH_SEPARATOR=';' } fi ac_prog=ld if test "$GCC" = yes; then # Check if gcc -print-prog-name=ld gives a path. { $as_echo "$as_me:${as_lineno-$LINENO}: checking for ld used by $CC" >&5 $as_echo_n "checking for ld used by $CC... " >&6; } case $host in *-*-mingw*) # gcc leaves a trailing carriage return which upsets mingw ac_prog=`($CC -print-prog-name=ld) 2>&5 | tr -d '\015'` ;; *) ac_prog=`($CC -print-prog-name=ld) 2>&5` ;; esac case $ac_prog in # Accept absolute paths. [\\/]* | ?:[\\/]*) re_direlt='/[^/][^/]*/\.\./' # Canonicalize the pathname of ld ac_prog=`echo "$ac_prog"| sed 's%\\\\%/%g'` while echo "$ac_prog" | grep "$re_direlt" > /dev/null 2>&1; do ac_prog=`echo $ac_prog| sed "s%$re_direlt%/%"` done test -z "$LD" && LD="$ac_prog" ;; "") # If it fails, then pretend we aren't using GCC. ac_prog=ld ;; *) # If it is relative, then search for the first ld in PATH. with_gnu_ld=unknown ;; esac elif test "$with_gnu_ld" = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for GNU ld" >&5 $as_echo_n "checking for GNU ld... " >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: checking for non-GNU ld" >&5 $as_echo_n "checking for non-GNU ld... " >&6; } fi if ${acl_cv_path_LD+:} false; then : $as_echo_n "(cached) " >&6 else if test -z "$LD"; then acl_save_ifs="$IFS"; IFS=$PATH_SEPARATOR for ac_dir in $PATH; do IFS="$acl_save_ifs" test -z "$ac_dir" && ac_dir=. if test -f "$ac_dir/$ac_prog" || test -f "$ac_dir/$ac_prog$ac_exeext"; then acl_cv_path_LD="$ac_dir/$ac_prog" # Check to see if the program is GNU ld. I'd rather use --version, # but apparently some variants of GNU ld only accept -v. # Break only if it was the GNU/non-GNU ld that we prefer. case `"$acl_cv_path_LD" -v 2>&1 &5 $as_echo "$LD" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi test -z "$LD" && as_fn_error $? "no acceptable ld found in \$PATH" "$LINENO" 5 { $as_echo "$as_me:${as_lineno-$LINENO}: checking if the linker ($LD) is GNU ld" >&5 $as_echo_n "checking if the linker ($LD) is GNU ld... " >&6; } if ${acl_cv_prog_gnu_ld+:} false; then : $as_echo_n "(cached) " >&6 else # I'd rather use --version here, but apparently some GNU lds only accept -v. case `$LD -v 2>&1 &5 $as_echo "$acl_cv_prog_gnu_ld" >&6; } with_gnu_ld=$acl_cv_prog_gnu_ld { $as_echo "$as_me:${as_lineno-$LINENO}: checking for shared library run path origin" >&5 $as_echo_n "checking for shared library run path origin... " >&6; } if ${acl_cv_rpath+:} false; then : $as_echo_n "(cached) " >&6 else CC="$CC" GCC="$GCC" LDFLAGS="$LDFLAGS" LD="$LD" with_gnu_ld="$with_gnu_ld" \ ${CONFIG_SHELL-/bin/sh} "$ac_aux_dir/config.rpath" "$host" > conftest.sh . ./conftest.sh rm -f ./conftest.sh acl_cv_rpath=done fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $acl_cv_rpath" >&5 $as_echo "$acl_cv_rpath" >&6; } wl="$acl_cv_wl" acl_libext="$acl_cv_libext" acl_shlibext="$acl_cv_shlibext" acl_libname_spec="$acl_cv_libname_spec" acl_library_names_spec="$acl_cv_library_names_spec" acl_hardcode_libdir_flag_spec="$acl_cv_hardcode_libdir_flag_spec" acl_hardcode_libdir_separator="$acl_cv_hardcode_libdir_separator" acl_hardcode_direct="$acl_cv_hardcode_direct" acl_hardcode_minus_L="$acl_cv_hardcode_minus_L" # Check whether --enable-rpath was given. if test "${enable_rpath+set}" = set; then : enableval=$enable_rpath; : else enable_rpath=yes fi ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu { $as_echo "$as_me:${as_lineno-$LINENO}: checking how to run the C preprocessor" >&5 $as_echo_n "checking how to run the C preprocessor... " >&6; } # On Suns, sometimes $CPP names a directory. if test -n "$CPP" && test -d "$CPP"; then CPP= fi if test -z "$CPP"; then if ${ac_cv_prog_CPP+:} false; then : $as_echo_n "(cached) " >&6 else # Double quotes because CPP needs to be expanded for CPP in "$CC -E" "$CC -E -traditional-cpp" "/lib/cpp" do ac_preproc_ok=false for ac_c_preproc_warn_flag in '' yes do # Use a header file that comes with gcc, so configuring glibc # with a fresh cross-compiler works. # Prefer to if __STDC__ is defined, since # exists even on freestanding compilers. # On the NeXT, cc -E runs the code through the compiler's parser, # not just through cpp. "Syntax error" is here to catch this case. cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #ifdef __STDC__ # include #else # include #endif Syntax error _ACEOF if ac_fn_c_try_cpp "$LINENO"; then : else # Broken: fails on valid input. continue fi rm -f conftest.err conftest.i conftest.$ac_ext # OK, works on sane cases. Now check whether nonexistent headers # can be detected and how. cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include _ACEOF if ac_fn_c_try_cpp "$LINENO"; then : # Broken: success on invalid input. continue else # Passes both tests. ac_preproc_ok=: break fi rm -f conftest.err conftest.i conftest.$ac_ext done # Because of `break', _AC_PREPROC_IFELSE's cleaning code was skipped. rm -f conftest.i conftest.err conftest.$ac_ext if $ac_preproc_ok; then : break fi done ac_cv_prog_CPP=$CPP fi CPP=$ac_cv_prog_CPP else ac_cv_prog_CPP=$CPP fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $CPP" >&5 $as_echo "$CPP" >&6; } ac_preproc_ok=false for ac_c_preproc_warn_flag in '' yes do # Use a header file that comes with gcc, so configuring glibc # with a fresh cross-compiler works. # Prefer to if __STDC__ is defined, since # exists even on freestanding compilers. # On the NeXT, cc -E runs the code through the compiler's parser, # not just through cpp. "Syntax error" is here to catch this case. cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #ifdef __STDC__ # include #else # include #endif Syntax error _ACEOF if ac_fn_c_try_cpp "$LINENO"; then : else # Broken: fails on valid input. continue fi rm -f conftest.err conftest.i conftest.$ac_ext # OK, works on sane cases. Now check whether nonexistent headers # can be detected and how. cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include _ACEOF if ac_fn_c_try_cpp "$LINENO"; then : # Broken: success on invalid input. continue else # Passes both tests. ac_preproc_ok=: break fi rm -f conftest.err conftest.i conftest.$ac_ext done # Because of `break', _AC_PREPROC_IFELSE's cleaning code was skipped. rm -f conftest.i conftest.err conftest.$ac_ext if $ac_preproc_ok; then : else { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "C preprocessor \"$CPP\" fails sanity check See \`config.log' for more details" "$LINENO" 5; } fi ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu { $as_echo "$as_me:${as_lineno-$LINENO}: checking for grep that handles long lines and -e" >&5 $as_echo_n "checking for grep that handles long lines and -e... " >&6; } if ${ac_cv_path_GREP+:} false; then : $as_echo_n "(cached) " >&6 else if test -z "$GREP"; then ac_path_GREP_found=false # Loop through the user's path and test for each of PROGNAME-LIST as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH$PATH_SEPARATOR/usr/xpg4/bin do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_prog in grep ggrep; do for ac_exec_ext in '' $ac_executable_extensions; do ac_path_GREP="$as_dir/$ac_prog$ac_exec_ext" as_fn_executable_p "$ac_path_GREP" || continue # Check for GNU ac_path_GREP and select it if it is found. # Check for GNU $ac_path_GREP case `"$ac_path_GREP" --version 2>&1` in *GNU*) ac_cv_path_GREP="$ac_path_GREP" ac_path_GREP_found=:;; *) ac_count=0 $as_echo_n 0123456789 >"conftest.in" while : do cat "conftest.in" "conftest.in" >"conftest.tmp" mv "conftest.tmp" "conftest.in" cp "conftest.in" "conftest.nl" $as_echo 'GREP' >> "conftest.nl" "$ac_path_GREP" -e 'GREP$' -e '-(cannot match)-' < "conftest.nl" >"conftest.out" 2>/dev/null || break diff "conftest.out" "conftest.nl" >/dev/null 2>&1 || break as_fn_arith $ac_count + 1 && ac_count=$as_val if test $ac_count -gt ${ac_path_GREP_max-0}; then # Best one so far, save it but keep looking for a better one ac_cv_path_GREP="$ac_path_GREP" ac_path_GREP_max=$ac_count fi # 10*(2^10) chars as input seems more than enough test $ac_count -gt 10 && break done rm -f conftest.in conftest.tmp conftest.nl conftest.out;; esac $ac_path_GREP_found && break 3 done done done IFS=$as_save_IFS if test -z "$ac_cv_path_GREP"; then as_fn_error $? "no acceptable grep could be found in $PATH$PATH_SEPARATOR/usr/xpg4/bin" "$LINENO" 5 fi else ac_cv_path_GREP=$GREP fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_path_GREP" >&5 $as_echo "$ac_cv_path_GREP" >&6; } GREP="$ac_cv_path_GREP" { $as_echo "$as_me:${as_lineno-$LINENO}: checking for egrep" >&5 $as_echo_n "checking for egrep... " >&6; } if ${ac_cv_path_EGREP+:} false; then : $as_echo_n "(cached) " >&6 else if echo a | $GREP -E '(a|b)' >/dev/null 2>&1 then ac_cv_path_EGREP="$GREP -E" else if test -z "$EGREP"; then ac_path_EGREP_found=false # Loop through the user's path and test for each of PROGNAME-LIST as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH$PATH_SEPARATOR/usr/xpg4/bin do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_prog in egrep; do for ac_exec_ext in '' $ac_executable_extensions; do ac_path_EGREP="$as_dir/$ac_prog$ac_exec_ext" as_fn_executable_p "$ac_path_EGREP" || continue # Check for GNU ac_path_EGREP and select it if it is found. # Check for GNU $ac_path_EGREP case `"$ac_path_EGREP" --version 2>&1` in *GNU*) ac_cv_path_EGREP="$ac_path_EGREP" ac_path_EGREP_found=:;; *) ac_count=0 $as_echo_n 0123456789 >"conftest.in" while : do cat "conftest.in" "conftest.in" >"conftest.tmp" mv "conftest.tmp" "conftest.in" cp "conftest.in" "conftest.nl" $as_echo 'EGREP' >> "conftest.nl" "$ac_path_EGREP" 'EGREP$' < "conftest.nl" >"conftest.out" 2>/dev/null || break diff "conftest.out" "conftest.nl" >/dev/null 2>&1 || break as_fn_arith $ac_count + 1 && ac_count=$as_val if test $ac_count -gt ${ac_path_EGREP_max-0}; then # Best one so far, save it but keep looking for a better one ac_cv_path_EGREP="$ac_path_EGREP" ac_path_EGREP_max=$ac_count fi # 10*(2^10) chars as input seems more than enough test $ac_count -gt 10 && break done rm -f conftest.in conftest.tmp conftest.nl conftest.out;; esac $ac_path_EGREP_found && break 3 done done done IFS=$as_save_IFS if test -z "$ac_cv_path_EGREP"; then as_fn_error $? "no acceptable egrep could be found in $PATH$PATH_SEPARATOR/usr/xpg4/bin" "$LINENO" 5 fi else ac_cv_path_EGREP=$EGREP fi fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_path_EGREP" >&5 $as_echo "$ac_cv_path_EGREP" >&6; } EGREP="$ac_cv_path_EGREP" acl_libdirstem=lib acl_libdirstem2= case "$host_os" in solaris*) { $as_echo "$as_me:${as_lineno-$LINENO}: checking for 64-bit host" >&5 $as_echo_n "checking for 64-bit host... " >&6; } if ${gl_cv_solaris_64bit+:} false; then : $as_echo_n "(cached) " >&6 else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #ifdef _LP64 sixtyfour bits #endif _ACEOF if (eval "$ac_cpp conftest.$ac_ext") 2>&5 | $EGREP "sixtyfour bits" >/dev/null 2>&1; then : gl_cv_solaris_64bit=yes else gl_cv_solaris_64bit=no fi rm -f conftest* fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $gl_cv_solaris_64bit" >&5 $as_echo "$gl_cv_solaris_64bit" >&6; } if test $gl_cv_solaris_64bit = yes; then acl_libdirstem=lib/64 case "$host_cpu" in sparc*) acl_libdirstem2=lib/sparcv9 ;; i*86 | x86_64) acl_libdirstem2=lib/amd64 ;; esac fi ;; *) searchpath=`(LC_ALL=C $CC -print-search-dirs) 2>/dev/null | sed -n -e 's,^libraries: ,,p' | sed -e 's,^=,,'` if test -n "$searchpath"; then acl_save_IFS="${IFS= }"; IFS=":" for searchdir in $searchpath; do if test -d "$searchdir"; then case "$searchdir" in */lib64/ | */lib64 ) acl_libdirstem=lib64 ;; */../ | */.. ) # Better ignore directories of this form. They are misleading. ;; *) searchdir=`cd "$searchdir" && pwd` case "$searchdir" in */lib64 ) acl_libdirstem=lib64 ;; esac ;; esac fi done IFS="$acl_save_IFS" fi ;; esac test -n "$acl_libdirstem2" || acl_libdirstem2="$acl_libdirstem" use_additional=yes acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval additional_includedir=\"$includedir\" eval additional_libdir=\"$libdir\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" # Check whether --with-libiconv-prefix was given. if test "${with_libiconv_prefix+set}" = set; then : withval=$with_libiconv_prefix; if test "X$withval" = "Xno"; then use_additional=no else if test "X$withval" = "X"; then acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval additional_includedir=\"$includedir\" eval additional_libdir=\"$libdir\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" else additional_includedir="$withval/include" additional_libdir="$withval/$acl_libdirstem" if test "$acl_libdirstem2" != "$acl_libdirstem" \ && ! test -d "$withval/$acl_libdirstem"; then additional_libdir="$withval/$acl_libdirstem2" fi fi fi fi LIBICONV= LTLIBICONV= INCICONV= LIBICONV_PREFIX= HAVE_LIBICONV= rpathdirs= ltrpathdirs= names_already_handled= names_next_round='iconv ' while test -n "$names_next_round"; do names_this_round="$names_next_round" names_next_round= for name in $names_this_round; do already_handled= for n in $names_already_handled; do if test "$n" = "$name"; then already_handled=yes break fi done if test -z "$already_handled"; then names_already_handled="$names_already_handled $name" uppername=`echo "$name" | sed -e 'y|abcdefghijklmnopqrstuvwxyz./+-|ABCDEFGHIJKLMNOPQRSTUVWXYZ____|'` eval value=\"\$HAVE_LIB$uppername\" if test -n "$value"; then if test "$value" = yes; then eval value=\"\$LIB$uppername\" test -z "$value" || LIBICONV="${LIBICONV}${LIBICONV:+ }$value" eval value=\"\$LTLIB$uppername\" test -z "$value" || LTLIBICONV="${LTLIBICONV}${LTLIBICONV:+ }$value" else : fi else found_dir= found_la= found_so= found_a= eval libname=\"$acl_libname_spec\" # typically: libname=lib$name if test -n "$acl_shlibext"; then shrext=".$acl_shlibext" # typically: shrext=.so else shrext= fi if test $use_additional = yes; then dir="$additional_libdir" if test -n "$acl_shlibext"; then if test -f "$dir/$libname$shrext"; then found_dir="$dir" found_so="$dir/$libname$shrext" else if test "$acl_library_names_spec" = '$libname$shrext$versuffix'; then ver=`(cd "$dir" && \ for f in "$libname$shrext".*; do echo "$f"; done \ | sed -e "s,^$libname$shrext\\\\.,," \ | sort -t '.' -n -r -k1,1 -k2,2 -k3,3 -k4,4 -k5,5 \ | sed 1q ) 2>/dev/null` if test -n "$ver" && test -f "$dir/$libname$shrext.$ver"; then found_dir="$dir" found_so="$dir/$libname$shrext.$ver" fi else eval library_names=\"$acl_library_names_spec\" for f in $library_names; do if test -f "$dir/$f"; then found_dir="$dir" found_so="$dir/$f" break fi done fi fi fi if test "X$found_dir" = "X"; then if test -f "$dir/$libname.$acl_libext"; then found_dir="$dir" found_a="$dir/$libname.$acl_libext" fi fi if test "X$found_dir" != "X"; then if test -f "$dir/$libname.la"; then found_la="$dir/$libname.la" fi fi fi if test "X$found_dir" = "X"; then for x in $LDFLAGS $LTLIBICONV; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" case "$x" in -L*) dir=`echo "X$x" | sed -e 's/^X-L//'` if test -n "$acl_shlibext"; then if test -f "$dir/$libname$shrext"; then found_dir="$dir" found_so="$dir/$libname$shrext" else if test "$acl_library_names_spec" = '$libname$shrext$versuffix'; then ver=`(cd "$dir" && \ for f in "$libname$shrext".*; do echo "$f"; done \ | sed -e "s,^$libname$shrext\\\\.,," \ | sort -t '.' -n -r -k1,1 -k2,2 -k3,3 -k4,4 -k5,5 \ | sed 1q ) 2>/dev/null` if test -n "$ver" && test -f "$dir/$libname$shrext.$ver"; then found_dir="$dir" found_so="$dir/$libname$shrext.$ver" fi else eval library_names=\"$acl_library_names_spec\" for f in $library_names; do if test -f "$dir/$f"; then found_dir="$dir" found_so="$dir/$f" break fi done fi fi fi if test "X$found_dir" = "X"; then if test -f "$dir/$libname.$acl_libext"; then found_dir="$dir" found_a="$dir/$libname.$acl_libext" fi fi if test "X$found_dir" != "X"; then if test -f "$dir/$libname.la"; then found_la="$dir/$libname.la" fi fi ;; esac if test "X$found_dir" != "X"; then break fi done fi if test "X$found_dir" != "X"; then LTLIBICONV="${LTLIBICONV}${LTLIBICONV:+ }-L$found_dir -l$name" if test "X$found_so" != "X"; then if test "$enable_rpath" = no \ || test "X$found_dir" = "X/usr/$acl_libdirstem" \ || test "X$found_dir" = "X/usr/$acl_libdirstem2"; then LIBICONV="${LIBICONV}${LIBICONV:+ }$found_so" else haveit= for x in $ltrpathdirs; do if test "X$x" = "X$found_dir"; then haveit=yes break fi done if test -z "$haveit"; then ltrpathdirs="$ltrpathdirs $found_dir" fi if test "$acl_hardcode_direct" = yes; then LIBICONV="${LIBICONV}${LIBICONV:+ }$found_so" else if test -n "$acl_hardcode_libdir_flag_spec" && test "$acl_hardcode_minus_L" = no; then LIBICONV="${LIBICONV}${LIBICONV:+ }$found_so" haveit= for x in $rpathdirs; do if test "X$x" = "X$found_dir"; then haveit=yes break fi done if test -z "$haveit"; then rpathdirs="$rpathdirs $found_dir" fi else haveit= for x in $LDFLAGS $LIBICONV; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" if test "X$x" = "X-L$found_dir"; then haveit=yes break fi done if test -z "$haveit"; then LIBICONV="${LIBICONV}${LIBICONV:+ }-L$found_dir" fi if test "$acl_hardcode_minus_L" != no; then LIBICONV="${LIBICONV}${LIBICONV:+ }$found_so" else LIBICONV="${LIBICONV}${LIBICONV:+ }-l$name" fi fi fi fi else if test "X$found_a" != "X"; then LIBICONV="${LIBICONV}${LIBICONV:+ }$found_a" else LIBICONV="${LIBICONV}${LIBICONV:+ }-L$found_dir -l$name" fi fi additional_includedir= case "$found_dir" in */$acl_libdirstem | */$acl_libdirstem/) basedir=`echo "X$found_dir" | sed -e 's,^X,,' -e "s,/$acl_libdirstem/"'*$,,'` if test "$name" = 'iconv'; then LIBICONV_PREFIX="$basedir" fi additional_includedir="$basedir/include" ;; */$acl_libdirstem2 | */$acl_libdirstem2/) basedir=`echo "X$found_dir" | sed -e 's,^X,,' -e "s,/$acl_libdirstem2/"'*$,,'` if test "$name" = 'iconv'; then LIBICONV_PREFIX="$basedir" fi additional_includedir="$basedir/include" ;; esac if test "X$additional_includedir" != "X"; then if test "X$additional_includedir" != "X/usr/include"; then haveit= if test "X$additional_includedir" = "X/usr/local/include"; then if test -n "$GCC"; then case $host_os in linux* | gnu* | k*bsd*-gnu) haveit=yes;; esac fi fi if test -z "$haveit"; then for x in $CPPFLAGS $INCICONV; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" if test "X$x" = "X-I$additional_includedir"; then haveit=yes break fi done if test -z "$haveit"; then if test -d "$additional_includedir"; then INCICONV="${INCICONV}${INCICONV:+ }-I$additional_includedir" fi fi fi fi fi if test -n "$found_la"; then save_libdir="$libdir" case "$found_la" in */* | *\\*) . "$found_la" ;; *) . "./$found_la" ;; esac libdir="$save_libdir" for dep in $dependency_libs; do case "$dep" in -L*) additional_libdir=`echo "X$dep" | sed -e 's/^X-L//'` if test "X$additional_libdir" != "X/usr/$acl_libdirstem" \ && test "X$additional_libdir" != "X/usr/$acl_libdirstem2"; then haveit= if test "X$additional_libdir" = "X/usr/local/$acl_libdirstem" \ || test "X$additional_libdir" = "X/usr/local/$acl_libdirstem2"; then if test -n "$GCC"; then case $host_os in linux* | gnu* | k*bsd*-gnu) haveit=yes;; esac fi fi if test -z "$haveit"; then haveit= for x in $LDFLAGS $LIBICONV; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" if test "X$x" = "X-L$additional_libdir"; then haveit=yes break fi done if test -z "$haveit"; then if test -d "$additional_libdir"; then LIBICONV="${LIBICONV}${LIBICONV:+ }-L$additional_libdir" fi fi haveit= for x in $LDFLAGS $LTLIBICONV; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" if test "X$x" = "X-L$additional_libdir"; then haveit=yes break fi done if test -z "$haveit"; then if test -d "$additional_libdir"; then LTLIBICONV="${LTLIBICONV}${LTLIBICONV:+ }-L$additional_libdir" fi fi fi fi ;; -R*) dir=`echo "X$dep" | sed -e 's/^X-R//'` if test "$enable_rpath" != no; then haveit= for x in $rpathdirs; do if test "X$x" = "X$dir"; then haveit=yes break fi done if test -z "$haveit"; then rpathdirs="$rpathdirs $dir" fi haveit= for x in $ltrpathdirs; do if test "X$x" = "X$dir"; then haveit=yes break fi done if test -z "$haveit"; then ltrpathdirs="$ltrpathdirs $dir" fi fi ;; -l*) names_next_round="$names_next_round "`echo "X$dep" | sed -e 's/^X-l//'` ;; *.la) names_next_round="$names_next_round "`echo "X$dep" | sed -e 's,^X.*/,,' -e 's,^lib,,' -e 's,\.la$,,'` ;; *) LIBICONV="${LIBICONV}${LIBICONV:+ }$dep" LTLIBICONV="${LTLIBICONV}${LTLIBICONV:+ }$dep" ;; esac done fi else LIBICONV="${LIBICONV}${LIBICONV:+ }-l$name" LTLIBICONV="${LTLIBICONV}${LTLIBICONV:+ }-l$name" fi fi fi done done if test "X$rpathdirs" != "X"; then if test -n "$acl_hardcode_libdir_separator"; then alldirs= for found_dir in $rpathdirs; do alldirs="${alldirs}${alldirs:+$acl_hardcode_libdir_separator}$found_dir" done acl_save_libdir="$libdir" libdir="$alldirs" eval flag=\"$acl_hardcode_libdir_flag_spec\" libdir="$acl_save_libdir" LIBICONV="${LIBICONV}${LIBICONV:+ }$flag" else for found_dir in $rpathdirs; do acl_save_libdir="$libdir" libdir="$found_dir" eval flag=\"$acl_hardcode_libdir_flag_spec\" libdir="$acl_save_libdir" LIBICONV="${LIBICONV}${LIBICONV:+ }$flag" done fi fi if test "X$ltrpathdirs" != "X"; then for found_dir in $ltrpathdirs; do LTLIBICONV="${LTLIBICONV}${LTLIBICONV:+ }-R$found_dir" done fi am_save_CPPFLAGS="$CPPFLAGS" for element in $INCICONV; do haveit= for x in $CPPFLAGS; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" if test "X$x" = "X$element"; then haveit=yes break fi done if test -z "$haveit"; then CPPFLAGS="${CPPFLAGS}${CPPFLAGS:+ }$element" fi done { $as_echo "$as_me:${as_lineno-$LINENO}: checking for iconv" >&5 $as_echo_n "checking for iconv... " >&6; } if ${am_cv_func_iconv+:} false; then : $as_echo_n "(cached) " >&6 else am_cv_func_iconv="no, consider installing GNU libiconv" am_cv_lib_iconv=no cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include int main () { iconv_t cd = iconv_open("",""); iconv(cd,NULL,NULL,NULL,NULL); iconv_close(cd); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : am_cv_func_iconv=yes fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext if test "$am_cv_func_iconv" != yes; then am_save_LIBS="$LIBS" LIBS="$LIBS $LIBICONV" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include int main () { iconv_t cd = iconv_open("",""); iconv(cd,NULL,NULL,NULL,NULL); iconv_close(cd); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : am_cv_lib_iconv=yes am_cv_func_iconv=yes fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$am_save_LIBS" fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $am_cv_func_iconv" >&5 $as_echo "$am_cv_func_iconv" >&6; } if test "$am_cv_func_iconv" = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for working iconv" >&5 $as_echo_n "checking for working iconv... " >&6; } if ${am_cv_func_iconv_works+:} false; then : $as_echo_n "(cached) " >&6 else am_save_LIBS="$LIBS" if test $am_cv_lib_iconv = yes; then LIBS="$LIBS $LIBICONV" fi if test "$cross_compiling" = yes; then : case "$host_os" in aix* | hpux*) am_cv_func_iconv_works="guessing no" ;; *) am_cv_func_iconv_works="guessing yes" ;; esac else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include int main () { int result = 0; /* Test against AIX 5.1 bug: Failures are not distinguishable from successful returns. */ { iconv_t cd_utf8_to_88591 = iconv_open ("ISO8859-1", "UTF-8"); if (cd_utf8_to_88591 != (iconv_t)(-1)) { static const char input[] = "\342\202\254"; /* EURO SIGN */ char buf[10]; const char *inptr = input; size_t inbytesleft = strlen (input); char *outptr = buf; size_t outbytesleft = sizeof (buf); size_t res = iconv (cd_utf8_to_88591, (char **) &inptr, &inbytesleft, &outptr, &outbytesleft); if (res == 0) result |= 1; iconv_close (cd_utf8_to_88591); } } /* Test against Solaris 10 bug: Failures are not distinguishable from successful returns. */ { iconv_t cd_ascii_to_88591 = iconv_open ("ISO8859-1", "646"); if (cd_ascii_to_88591 != (iconv_t)(-1)) { static const char input[] = "\263"; char buf[10]; const char *inptr = input; size_t inbytesleft = strlen (input); char *outptr = buf; size_t outbytesleft = sizeof (buf); size_t res = iconv (cd_ascii_to_88591, (char **) &inptr, &inbytesleft, &outptr, &outbytesleft); if (res == 0) result |= 2; iconv_close (cd_ascii_to_88591); } } /* Test against AIX 6.1..7.1 bug: Buffer overrun. */ { iconv_t cd_88591_to_utf8 = iconv_open ("UTF-8", "ISO-8859-1"); if (cd_88591_to_utf8 != (iconv_t)(-1)) { static const char input[] = "\304"; static char buf[2] = { (char)0xDE, (char)0xAD }; const char *inptr = input; size_t inbytesleft = 1; char *outptr = buf; size_t outbytesleft = 1; size_t res = iconv (cd_88591_to_utf8, (char **) &inptr, &inbytesleft, &outptr, &outbytesleft); if (res != (size_t)(-1) || outptr - buf > 1 || buf[1] != (char)0xAD) result |= 4; iconv_close (cd_88591_to_utf8); } } #if 0 /* This bug could be worked around by the caller. */ /* Test against HP-UX 11.11 bug: Positive return value instead of 0. */ { iconv_t cd_88591_to_utf8 = iconv_open ("utf8", "iso88591"); if (cd_88591_to_utf8 != (iconv_t)(-1)) { static const char input[] = "\304rger mit b\366sen B\374bchen ohne Augenma\337"; char buf[50]; const char *inptr = input; size_t inbytesleft = strlen (input); char *outptr = buf; size_t outbytesleft = sizeof (buf); size_t res = iconv (cd_88591_to_utf8, (char **) &inptr, &inbytesleft, &outptr, &outbytesleft); if ((int)res > 0) result |= 8; iconv_close (cd_88591_to_utf8); } } #endif /* Test against HP-UX 11.11 bug: No converter from EUC-JP to UTF-8 is provided. */ if (/* Try standardized names. */ iconv_open ("UTF-8", "EUC-JP") == (iconv_t)(-1) /* Try IRIX, OSF/1 names. */ && iconv_open ("UTF-8", "eucJP") == (iconv_t)(-1) /* Try AIX names. */ && iconv_open ("UTF-8", "IBM-eucJP") == (iconv_t)(-1) /* Try HP-UX names. */ && iconv_open ("utf8", "eucJP") == (iconv_t)(-1)) result |= 16; return result; } _ACEOF if ac_fn_c_try_run "$LINENO"; then : am_cv_func_iconv_works=yes else am_cv_func_iconv_works=no fi rm -f core *.core core.conftest.* gmon.out bb.out conftest$ac_exeext \ conftest.$ac_objext conftest.beam conftest.$ac_ext fi LIBS="$am_save_LIBS" fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $am_cv_func_iconv_works" >&5 $as_echo "$am_cv_func_iconv_works" >&6; } case "$am_cv_func_iconv_works" in *no) am_func_iconv=no am_cv_lib_iconv=no ;; *) am_func_iconv=yes ;; esac else am_func_iconv=no am_cv_lib_iconv=no fi if test "$am_func_iconv" = yes; then $as_echo "#define HAVE_ICONV 1" >>confdefs.h fi if test "$am_cv_lib_iconv" = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking how to link with libiconv" >&5 $as_echo_n "checking how to link with libiconv... " >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: result: $LIBICONV" >&5 $as_echo "$LIBICONV" >&6; } else CPPFLAGS="$am_save_CPPFLAGS" LIBICONV= LTLIBICONV= fi if test "$am_cv_func_iconv" = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for iconv declaration" >&5 $as_echo_n "checking for iconv declaration... " >&6; } if ${am_cv_proto_iconv+:} false; then : $as_echo_n "(cached) " >&6 else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include extern #ifdef __cplusplus "C" #endif #if defined(__STDC__) || defined(_MSC_VER) || defined(__cplusplus) size_t iconv (iconv_t cd, char * *inbuf, size_t *inbytesleft, char * *outbuf, size_t *outbytesleft); #else size_t iconv(); #endif int main () { ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : am_cv_proto_iconv_arg1="" else am_cv_proto_iconv_arg1="const" fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext am_cv_proto_iconv="extern size_t iconv (iconv_t cd, $am_cv_proto_iconv_arg1 char * *inbuf, size_t *inbytesleft, char * *outbuf, size_t *outbytesleft);" fi am_cv_proto_iconv=`echo "$am_cv_proto_iconv" | tr -s ' ' | sed -e 's/( /(/'` { $as_echo "$as_me:${as_lineno-$LINENO}: result: $am_cv_proto_iconv" >&5 $as_echo " $am_cv_proto_iconv" >&6; } cat >>confdefs.h <<_ACEOF #define ICONV_CONST $am_cv_proto_iconv_arg1 _ACEOF fi if test "$am_cv_func_iconv" = "yes"; then ICONV_LIBS=$LTLIBICONV ICONV_CFLAGS=$INCICONV $as_echo "#define HAVE_ICONV 1" >>confdefs.h fi fi if test "$am_cv_func_iconv" = "yes"; then OPENCONNECT_ICONV_TRUE= OPENCONNECT_ICONV_FALSE='#' else OPENCONNECT_ICONV_TRUE='#' OPENCONNECT_ICONV_FALSE= fi # Check whether --enable-nls was given. if test "${enable_nls+set}" = set; then : enableval=$enable_nls; USE_NLS=$enableval else USE_NLS=yes fi LIBINTL= if test "$USE_NLS" = "yes"; then # Extract the first word of "msgfmt", so it can be a program name with args. set dummy msgfmt; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_path_MSGFMT+:} false; then : $as_echo_n "(cached) " >&6 else case $MSGFMT in [\\/]* | ?:[\\/]*) ac_cv_path_MSGFMT="$MSGFMT" # Let the user override the test with a path. ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_path_MSGFMT="$as_dir/$ac_word$ac_exec_ext" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS ;; esac fi MSGFMT=$ac_cv_path_MSGFMT if test -n "$MSGFMT"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $MSGFMT" >&5 $as_echo "$MSGFMT" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "$MSGFMT" = ""; then as_fn_error $? "msgfmt could not be found. Try configuring with --disable-nls" "$LINENO" 5 fi fi LIBINTL= if test "$USE_NLS" = "yes"; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for functional NLS support" >&5 $as_echo_n "checking for functional NLS support... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include int main () { setlocale(LC_ALL, ""); bindtextdomain("openconnect", "/tmp"); (void)dgettext("openconnect", "foo"); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else use_additional=yes acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval additional_includedir=\"$includedir\" eval additional_libdir=\"$libdir\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" # Check whether --with-libintl-prefix was given. if test "${with_libintl_prefix+set}" = set; then : withval=$with_libintl_prefix; if test "X$withval" = "Xno"; then use_additional=no else if test "X$withval" = "X"; then acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval additional_includedir=\"$includedir\" eval additional_libdir=\"$libdir\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" else additional_includedir="$withval/include" additional_libdir="$withval/$acl_libdirstem" if test "$acl_libdirstem2" != "$acl_libdirstem" \ && ! test -d "$withval/$acl_libdirstem"; then additional_libdir="$withval/$acl_libdirstem2" fi fi fi fi LIBINTL= LTLIBINTL= INCINTL= LIBINTL_PREFIX= HAVE_LIBINTL= rpathdirs= ltrpathdirs= names_already_handled= names_next_round='intl ' while test -n "$names_next_round"; do names_this_round="$names_next_round" names_next_round= for name in $names_this_round; do already_handled= for n in $names_already_handled; do if test "$n" = "$name"; then already_handled=yes break fi done if test -z "$already_handled"; then names_already_handled="$names_already_handled $name" uppername=`echo "$name" | sed -e 'y|abcdefghijklmnopqrstuvwxyz./+-|ABCDEFGHIJKLMNOPQRSTUVWXYZ____|'` eval value=\"\$HAVE_LIB$uppername\" if test -n "$value"; then if test "$value" = yes; then eval value=\"\$LIB$uppername\" test -z "$value" || LIBINTL="${LIBINTL}${LIBINTL:+ }$value" eval value=\"\$LTLIB$uppername\" test -z "$value" || LTLIBINTL="${LTLIBINTL}${LTLIBINTL:+ }$value" else : fi else found_dir= found_la= found_so= found_a= eval libname=\"$acl_libname_spec\" # typically: libname=lib$name if test -n "$acl_shlibext"; then shrext=".$acl_shlibext" # typically: shrext=.so else shrext= fi if test $use_additional = yes; then dir="$additional_libdir" if test -n "$acl_shlibext"; then if test -f "$dir/$libname$shrext"; then found_dir="$dir" found_so="$dir/$libname$shrext" else if test "$acl_library_names_spec" = '$libname$shrext$versuffix'; then ver=`(cd "$dir" && \ for f in "$libname$shrext".*; do echo "$f"; done \ | sed -e "s,^$libname$shrext\\\\.,," \ | sort -t '.' -n -r -k1,1 -k2,2 -k3,3 -k4,4 -k5,5 \ | sed 1q ) 2>/dev/null` if test -n "$ver" && test -f "$dir/$libname$shrext.$ver"; then found_dir="$dir" found_so="$dir/$libname$shrext.$ver" fi else eval library_names=\"$acl_library_names_spec\" for f in $library_names; do if test -f "$dir/$f"; then found_dir="$dir" found_so="$dir/$f" break fi done fi fi fi if test "X$found_dir" = "X"; then if test -f "$dir/$libname.$acl_libext"; then found_dir="$dir" found_a="$dir/$libname.$acl_libext" fi fi if test "X$found_dir" != "X"; then if test -f "$dir/$libname.la"; then found_la="$dir/$libname.la" fi fi fi if test "X$found_dir" = "X"; then for x in $LDFLAGS $LTLIBINTL; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" case "$x" in -L*) dir=`echo "X$x" | sed -e 's/^X-L//'` if test -n "$acl_shlibext"; then if test -f "$dir/$libname$shrext"; then found_dir="$dir" found_so="$dir/$libname$shrext" else if test "$acl_library_names_spec" = '$libname$shrext$versuffix'; then ver=`(cd "$dir" && \ for f in "$libname$shrext".*; do echo "$f"; done \ | sed -e "s,^$libname$shrext\\\\.,," \ | sort -t '.' -n -r -k1,1 -k2,2 -k3,3 -k4,4 -k5,5 \ | sed 1q ) 2>/dev/null` if test -n "$ver" && test -f "$dir/$libname$shrext.$ver"; then found_dir="$dir" found_so="$dir/$libname$shrext.$ver" fi else eval library_names=\"$acl_library_names_spec\" for f in $library_names; do if test -f "$dir/$f"; then found_dir="$dir" found_so="$dir/$f" break fi done fi fi fi if test "X$found_dir" = "X"; then if test -f "$dir/$libname.$acl_libext"; then found_dir="$dir" found_a="$dir/$libname.$acl_libext" fi fi if test "X$found_dir" != "X"; then if test -f "$dir/$libname.la"; then found_la="$dir/$libname.la" fi fi ;; esac if test "X$found_dir" != "X"; then break fi done fi if test "X$found_dir" != "X"; then LTLIBINTL="${LTLIBINTL}${LTLIBINTL:+ }-L$found_dir -l$name" if test "X$found_so" != "X"; then if test "$enable_rpath" = no \ || test "X$found_dir" = "X/usr/$acl_libdirstem" \ || test "X$found_dir" = "X/usr/$acl_libdirstem2"; then LIBINTL="${LIBINTL}${LIBINTL:+ }$found_so" else haveit= for x in $ltrpathdirs; do if test "X$x" = "X$found_dir"; then haveit=yes break fi done if test -z "$haveit"; then ltrpathdirs="$ltrpathdirs $found_dir" fi if test "$acl_hardcode_direct" = yes; then LIBINTL="${LIBINTL}${LIBINTL:+ }$found_so" else if test -n "$acl_hardcode_libdir_flag_spec" && test "$acl_hardcode_minus_L" = no; then LIBINTL="${LIBINTL}${LIBINTL:+ }$found_so" haveit= for x in $rpathdirs; do if test "X$x" = "X$found_dir"; then haveit=yes break fi done if test -z "$haveit"; then rpathdirs="$rpathdirs $found_dir" fi else haveit= for x in $LDFLAGS $LIBINTL; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" if test "X$x" = "X-L$found_dir"; then haveit=yes break fi done if test -z "$haveit"; then LIBINTL="${LIBINTL}${LIBINTL:+ }-L$found_dir" fi if test "$acl_hardcode_minus_L" != no; then LIBINTL="${LIBINTL}${LIBINTL:+ }$found_so" else LIBINTL="${LIBINTL}${LIBINTL:+ }-l$name" fi fi fi fi else if test "X$found_a" != "X"; then LIBINTL="${LIBINTL}${LIBINTL:+ }$found_a" else LIBINTL="${LIBINTL}${LIBINTL:+ }-L$found_dir -l$name" fi fi additional_includedir= case "$found_dir" in */$acl_libdirstem | */$acl_libdirstem/) basedir=`echo "X$found_dir" | sed -e 's,^X,,' -e "s,/$acl_libdirstem/"'*$,,'` if test "$name" = 'intl'; then LIBINTL_PREFIX="$basedir" fi additional_includedir="$basedir/include" ;; */$acl_libdirstem2 | */$acl_libdirstem2/) basedir=`echo "X$found_dir" | sed -e 's,^X,,' -e "s,/$acl_libdirstem2/"'*$,,'` if test "$name" = 'intl'; then LIBINTL_PREFIX="$basedir" fi additional_includedir="$basedir/include" ;; esac if test "X$additional_includedir" != "X"; then if test "X$additional_includedir" != "X/usr/include"; then haveit= if test "X$additional_includedir" = "X/usr/local/include"; then if test -n "$GCC"; then case $host_os in linux* | gnu* | k*bsd*-gnu) haveit=yes;; esac fi fi if test -z "$haveit"; then for x in $CPPFLAGS $INCINTL; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" if test "X$x" = "X-I$additional_includedir"; then haveit=yes break fi done if test -z "$haveit"; then if test -d "$additional_includedir"; then INCINTL="${INCINTL}${INCINTL:+ }-I$additional_includedir" fi fi fi fi fi if test -n "$found_la"; then save_libdir="$libdir" case "$found_la" in */* | *\\*) . "$found_la" ;; *) . "./$found_la" ;; esac libdir="$save_libdir" for dep in $dependency_libs; do case "$dep" in -L*) additional_libdir=`echo "X$dep" | sed -e 's/^X-L//'` if test "X$additional_libdir" != "X/usr/$acl_libdirstem" \ && test "X$additional_libdir" != "X/usr/$acl_libdirstem2"; then haveit= if test "X$additional_libdir" = "X/usr/local/$acl_libdirstem" \ || test "X$additional_libdir" = "X/usr/local/$acl_libdirstem2"; then if test -n "$GCC"; then case $host_os in linux* | gnu* | k*bsd*-gnu) haveit=yes;; esac fi fi if test -z "$haveit"; then haveit= for x in $LDFLAGS $LIBINTL; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" if test "X$x" = "X-L$additional_libdir"; then haveit=yes break fi done if test -z "$haveit"; then if test -d "$additional_libdir"; then LIBINTL="${LIBINTL}${LIBINTL:+ }-L$additional_libdir" fi fi haveit= for x in $LDFLAGS $LTLIBINTL; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" if test "X$x" = "X-L$additional_libdir"; then haveit=yes break fi done if test -z "$haveit"; then if test -d "$additional_libdir"; then LTLIBINTL="${LTLIBINTL}${LTLIBINTL:+ }-L$additional_libdir" fi fi fi fi ;; -R*) dir=`echo "X$dep" | sed -e 's/^X-R//'` if test "$enable_rpath" != no; then haveit= for x in $rpathdirs; do if test "X$x" = "X$dir"; then haveit=yes break fi done if test -z "$haveit"; then rpathdirs="$rpathdirs $dir" fi haveit= for x in $ltrpathdirs; do if test "X$x" = "X$dir"; then haveit=yes break fi done if test -z "$haveit"; then ltrpathdirs="$ltrpathdirs $dir" fi fi ;; -l*) names_next_round="$names_next_round "`echo "X$dep" | sed -e 's/^X-l//'` ;; *.la) names_next_round="$names_next_round "`echo "X$dep" | sed -e 's,^X.*/,,' -e 's,^lib,,' -e 's,\.la$,,'` ;; *) LIBINTL="${LIBINTL}${LIBINTL:+ }$dep" LTLIBINTL="${LTLIBINTL}${LTLIBINTL:+ }$dep" ;; esac done fi else LIBINTL="${LIBINTL}${LIBINTL:+ }-l$name" LTLIBINTL="${LTLIBINTL}${LTLIBINTL:+ }-l$name" fi fi fi done done if test "X$rpathdirs" != "X"; then if test -n "$acl_hardcode_libdir_separator"; then alldirs= for found_dir in $rpathdirs; do alldirs="${alldirs}${alldirs:+$acl_hardcode_libdir_separator}$found_dir" done acl_save_libdir="$libdir" libdir="$alldirs" eval flag=\"$acl_hardcode_libdir_flag_spec\" libdir="$acl_save_libdir" LIBINTL="${LIBINTL}${LIBINTL:+ }$flag" else for found_dir in $rpathdirs; do acl_save_libdir="$libdir" libdir="$found_dir" eval flag=\"$acl_hardcode_libdir_flag_spec\" libdir="$acl_save_libdir" LIBINTL="${LIBINTL}${LIBINTL:+ }$flag" done fi fi if test "X$ltrpathdirs" != "X"; then for found_dir in $ltrpathdirs; do LTLIBINTL="${LTLIBINTL}${LTLIBINTL:+ }-R$found_dir" done fi oldLIBS="$LIBS" LIBS="$LIBS $LIBINTL" oldCFLAGS="$LIBS" CFLAGS="$CFLAGS $INCINTL" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include int main () { setlocale(LC_ALL, ""); bindtextdomain("openconnect", "/tmp"); (void)dgettext("openconnect", "foo"); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes (with $INCINTL $LIBINTL)" >&5 $as_echo "yes (with $INCINTL $LIBINTL)" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } USE_NLS=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$oldLIBS" fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext fi if test "$USE_NLS" = "yes"; then INTL_LIBS=$LTLIBINTL INTL_CFLAGS=$INCINTL $as_echo "#define ENABLE_NLS 1" >>confdefs.h fi if test "$USE_NLS" = "yes"; then USE_NLS_TRUE= USE_NLS_FALSE='#' else USE_NLS_TRUE='#' USE_NLS_FALSE= fi # Check whether --with-system-cafile was given. if test "${with_system_cafile+set}" = set; then : withval=$with_system_cafile; fi # We will use GnuTLS by default if it's present. We used to suppport # using GnuTLS for the TLS connections and OpenSSL for DTLS, but none # of the reasons for that make sense any more. # Check whether --with-gnutls was given. if test "${with_gnutls+set}" = set; then : withval=$with_gnutls; fi # Check whether --with-openssl was given. if test "${with_openssl+set}" = set; then : withval=$with_openssl; fi ssl_library= esp= dtls= if test "$with_openssl" != "" -a "$with_openssl" != "no"; then if test "$with_gnutls" = ""; then with_gnutls=no elif test "$with_gnutls" = "yes"; then as_fn_error $? "You cannot choose both GnuTLS and OpenSSL." "$LINENO" 5 fi fi # First, check if GnuTLS exists and is usable if test "$with_gnutls" = "yes" || test "$with_gnutls" = ""; then pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for GNUTLS" >&5 $as_echo_n "checking for GNUTLS... " >&6; } if test -n "$GNUTLS_CFLAGS"; then pkg_cv_GNUTLS_CFLAGS="$GNUTLS_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"gnutls\""; } >&5 ($PKG_CONFIG --exists --print-errors "gnutls") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_GNUTLS_CFLAGS=`$PKG_CONFIG --cflags "gnutls" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$GNUTLS_LIBS"; then pkg_cv_GNUTLS_LIBS="$GNUTLS_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"gnutls\""; } >&5 ($PKG_CONFIG --exists --print-errors "gnutls") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_GNUTLS_LIBS=`$PKG_CONFIG --libs "gnutls" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then GNUTLS_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "gnutls" 2>&1` else GNUTLS_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "gnutls" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$GNUTLS_PKG_ERRORS" >&5 : elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } : else GNUTLS_CFLAGS=$pkg_cv_GNUTLS_CFLAGS GNUTLS_LIBS=$pkg_cv_GNUTLS_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } if ! $PKG_CONFIG --atleast-version=3.2.10 gnutls; then { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: Your GnuTLS is too old. At least v3.2.10 is required" >&5 $as_echo "$as_me: WARNING: Your GnuTLS is too old. At least v3.2.10 is required" >&2;} else ssl_library=GnuTLS fi fi elif test "$with_gnutls" != "no"; then as_fn_error $? "Values other than 'yes' or 'no' for --with-gnutls are not supported" "$LINENO" 5 fi # Do we need to look for OpenSSL? if test "$ssl_library" = ""; then if test "$with_gnutls" = "yes" -o "$with_openssl" = "no"; then as_fn_error $? "Suitable GnuTLS required but not found" "$LINENO" 5 elif test "$with_openssl" = "yes" -o "$with_openssl" = ""; then pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for OPENSSL" >&5 $as_echo_n "checking for OPENSSL... " >&6; } if test -n "$OPENSSL_CFLAGS"; then pkg_cv_OPENSSL_CFLAGS="$OPENSSL_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"openssl\""; } >&5 ($PKG_CONFIG --exists --print-errors "openssl") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_OPENSSL_CFLAGS=`$PKG_CONFIG --cflags "openssl" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$OPENSSL_LIBS"; then pkg_cv_OPENSSL_LIBS="$OPENSSL_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"openssl\""; } >&5 ($PKG_CONFIG --exists --print-errors "openssl") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_OPENSSL_LIBS=`$PKG_CONFIG --libs "openssl" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then OPENSSL_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "openssl" 2>&1` else OPENSSL_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "openssl" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$OPENSSL_PKG_ERRORS" >&5 oldLIBS="$LIBS" LIBS="$LIBS -lssl -lcrypto" { $as_echo "$as_me:${as_lineno-$LINENO}: checking for OpenSSL without pkg-config" >&5 $as_echo_n "checking for OpenSSL without pkg-config... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include int main () { SSL_library_init(); ERR_clear_error(); SSL_load_error_strings(); OpenSSL_add_all_algorithms(); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } OPENSSL_LIBS="-lssl -lcrypto" openssl_pc_libs=$OPENSSL_LIBS else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } as_fn_error $? "Could not build against OpenSSL" "$LINENO" 5 fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$oldLIBS" elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } oldLIBS="$LIBS" LIBS="$LIBS -lssl -lcrypto" { $as_echo "$as_me:${as_lineno-$LINENO}: checking for OpenSSL without pkg-config" >&5 $as_echo_n "checking for OpenSSL without pkg-config... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include int main () { SSL_library_init(); ERR_clear_error(); SSL_load_error_strings(); OpenSSL_add_all_algorithms(); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } OPENSSL_LIBS="-lssl -lcrypto" openssl_pc_libs=$OPENSSL_LIBS else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } as_fn_error $? "Could not build against OpenSSL" "$LINENO" 5 fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$oldLIBS" else OPENSSL_CFLAGS=$pkg_cv_OPENSSL_CFLAGS OPENSSL_LIBS=$pkg_cv_OPENSSL_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } SSL_PC=openssl fi ssl_library=OpenSSL pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for P11KIT" >&5 $as_echo_n "checking for P11KIT... " >&6; } if test -n "$P11KIT_CFLAGS"; then pkg_cv_P11KIT_CFLAGS="$P11KIT_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"p11-kit-1\""; } >&5 ($PKG_CONFIG --exists --print-errors "p11-kit-1") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_P11KIT_CFLAGS=`$PKG_CONFIG --cflags "p11-kit-1" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$P11KIT_LIBS"; then pkg_cv_P11KIT_LIBS="$P11KIT_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"p11-kit-1\""; } >&5 ($PKG_CONFIG --exists --print-errors "p11-kit-1") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_P11KIT_LIBS=`$PKG_CONFIG --libs "p11-kit-1" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then P11KIT_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "p11-kit-1" 2>&1` else P11KIT_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "p11-kit-1" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$P11KIT_PKG_ERRORS" >&5 : elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } : else P11KIT_CFLAGS=$pkg_cv_P11KIT_CFLAGS P11KIT_LIBS=$pkg_cv_P11KIT_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } # libp11 0.4.7 fails to export ERR_LIB_PKCS11 so we don't know what it # is and can't match its errors, which we need to for login checks. pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for LIBP11" >&5 $as_echo_n "checking for LIBP11... " >&6; } if test -n "$LIBP11_CFLAGS"; then pkg_cv_LIBP11_CFLAGS="$LIBP11_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libp11 != 0.4.7\""; } >&5 ($PKG_CONFIG --exists --print-errors "libp11 != 0.4.7") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_LIBP11_CFLAGS=`$PKG_CONFIG --cflags "libp11 != 0.4.7" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$LIBP11_LIBS"; then pkg_cv_LIBP11_LIBS="$LIBP11_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libp11 != 0.4.7\""; } >&5 ($PKG_CONFIG --exists --print-errors "libp11 != 0.4.7") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_LIBP11_LIBS=`$PKG_CONFIG --libs "libp11 != 0.4.7" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then LIBP11_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "libp11 != 0.4.7" 2>&1` else LIBP11_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "libp11 != 0.4.7" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$LIBP11_PKG_ERRORS" >&5 : elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } : else LIBP11_CFLAGS=$pkg_cv_LIBP11_CFLAGS LIBP11_LIBS=$pkg_cv_LIBP11_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } $as_echo "#define HAVE_LIBP11 1" >>confdefs.h P11KIT_PC="libp11 p11-kit-1" proxy_module="`$PKG_CONFIG --variable=proxy_module p11-kit-1`" pkcs11_support="libp11" cat >>confdefs.h <<_ACEOF #define DEFAULT_PKCS11_MODULE "${proxy_module}" _ACEOF fi fi else OPENSSL_CFLAGS="-I${with_openssl}/include ${OPENSSL_CFLAGS}" if test -r "${with_openssl}/libssl.a" -a -r "${with_openssl}/libcrypto.a"; then OPENSSL_LIBS="${with_openssl}/libssl.a ${with_openssl}/libcrypto.a -ldl -lz -pthread" elif test -r "${with_openssl}/crypto/.libs/libcrypto.a" -a \ -r "${with_openssl}/ssl/.libs/libssl.a"; then OPENSSL_LIBS="${with_openssl}/ssl/.libs/libssl.a ${with_openssl}/crypto/.libs/libcrypto.a -ldl -lz -pthread" else as_fn_error $? "Could not find OpenSSL libraries in ${with_openssl}" "$LINENO" 5; fi enable_static=yes enable_shared=no ssl_library=OpenSSL fi fi # Check whether --with-openssl-version-check was given. if test "${with_openssl_version_check+set}" = set; then : withval=$with_openssl_version_check; fi # Check whether --with-default-gnutls-priority was given. if test "${with_default_gnutls_priority+set}" = set; then : withval=$with_default_gnutls_priority; default_gnutls_priority=$withval fi if test -n "$default_gnutls_priority"; then cat >>confdefs.h <<_ACEOF #define DEFAULT_PRIO "$default_gnutls_priority" _ACEOF fi tss2lib= case "$ssl_library" in OpenSSL) oldLIBS="${LIBS}" oldCFLAGS="${CFLAGS}" LIBS="${LIBS} ${OPENSSL_LIBS}" CFLAGS="${CFLAGS} ${OPENSSL_CFLAGS}" # Check for the various known-broken versions of OpenSSL, which includes LibreSSL. if test "$with_openssl_version_check" != "no"; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for known-broken versions of OpenSSL" >&5 $as_echo_n "checking for known-broken versions of OpenSSL... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { #if defined(LIBRESSL_VERSION_NUMBER) #error Bad OpenSSL #endif ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : else { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } as_fn_error $? "LibreSSL does not support Cisco DTLS. Build with OpenSSL or GnuTLS instead." "$LINENO" 5 fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { #if \ (OPENSSL_VERSION_NUMBER == 0x10002000L || \ (OPENSSL_VERSION_NUMBER >= 0x100000b0L && OPENSSL_VERSION_NUMBER <= 0x100000c0L) || \ (OPENSSL_VERSION_NUMBER >= 0x10001040L && OPENSSL_VERSION_NUMBER <= 0x10001060L)) #error Bad OpenSSL #endif ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : else { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } as_fn_error $? "This version of OpenSSL is known to be broken with Cisco DTLS. See http://rt.openssl.org/Ticket/Display.html?id=2984&user=guest&pass=guest Add --without-openssl-version-check to configure args to avoid this check, or perhaps consider building with GnuTLS instead." "$LINENO" 5 fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { #if \ (OPENSSL_VERSION_NUMBER == 0x1000200fL) #error Bad OpenSSL #endif ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : else { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } as_fn_error $? "This version of OpenSSL is known to be broken with Cisco DTLS. See http://rt.openssl.org/Ticket/Display.html?id=3703&user=guest&pass=guest and http://rt.openssl.org/Ticket/Display.html?id=3711&user=guest&pass=guest Add --without-openssl-version-check to configure args to avoid this check, or perhaps consider building with GnuTLS instead." "$LINENO" 5 fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { #if \ ((OPENSSL_VERSION_NUMBER >= 0x10001110L && OPENSSL_VERSION_NUMBER <= 0x10001150L) || \ (OPENSSL_VERSION_NUMBER >= 0x10002050L && OPENSSL_VERSION_NUMBER <= 0x10002090L)) #error Bad OpenSSL #endif ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : else { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } as_fn_error $? "This version of OpenSSL is known to be broken with Cisco DTLS. See http://rt.openssl.org/Ticket/Display.html?id=4631&user=guest&pass=guest Add --without-openssl-version-check to configure args to avoid this check, or perhaps consider building with GnuTLS instead." "$LINENO" 5 fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking for ENGINE_by_id() in OpenSSL" >&5 $as_echo_n "checking for ENGINE_by_id() in OpenSSL... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { ENGINE_by_id("foo"); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } $as_echo "#define HAVE_ENGINE 1" >>confdefs.h else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: Building without OpenSSL TPM ENGINE support" >&5 $as_echo "$as_me: Building without OpenSSL TPM ENGINE support" >&6;} fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext { $as_echo "$as_me:${as_lineno-$LINENO}: checking for dtls1_stop_timer() in OpenSSL" >&5 $as_echo_n "checking for dtls1_stop_timer() in OpenSSL... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include extern void dtls1_stop_timer(SSL *); int main () { dtls1_stop_timer(NULL); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } $as_echo "#define HAVE_DTLS1_STOP_TIMER 1" >>confdefs.h else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext # DTLS_client_method() and DTLSv1_2_client_method() were both added between # OpenSSL v1.0.1 and v1.0.2. DTLSV1.2_client_method() was later deprecated # in v1.1.0 so we use DTLS_client_method() as our check for DTLSv1.2 support # and that's what we actually use in openssl-dtls.c too. { $as_echo "$as_me:${as_lineno-$LINENO}: checking for DTLS_client_method() in OpenSSL" >&5 $as_echo_n "checking for DTLS_client_method() in OpenSSL... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { DTLS_client_method(); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } $as_echo "#define HAVE_DTLS12 1" >>confdefs.h else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext { $as_echo "$as_me:${as_lineno-$LINENO}: checking for SSL_CTX_set_min_proto_version() in OpenSSL" >&5 $as_echo_n "checking for SSL_CTX_set_min_proto_version() in OpenSSL... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { SSL_CTX_set_min_proto_version((void *)0, 0); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } $as_echo "#define HAVE_SSL_CTX_PROTOVER 1" >>confdefs.h else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext { $as_echo "$as_me:${as_lineno-$LINENO}: checking for BIO_meth_free() in OpenSSL" >&5 $as_echo_n "checking for BIO_meth_free() in OpenSSL... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { BIO_meth_free((void *)0); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } $as_echo "#define HAVE_BIO_METH_FREE 1" >>confdefs.h else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext ac_fn_c_check_func "$LINENO" "HMAC_CTX_copy" "ac_cv_func_HMAC_CTX_copy" if test "x$ac_cv_func_HMAC_CTX_copy" = xyes; then : esp=yes else { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: ESP support will be disabled" >&5 $as_echo "$as_me: WARNING: ESP support will be disabled" >&2;} fi LIBS="${oldLIBS}" CFLAGS="${oldCFLAGS}" dtls=yes $as_echo "#define OPENCONNECT_OPENSSL 1" >>confdefs.h SSL_LIBS='$(OPENSSL_LIBS)' SSL_CFLAGS='$(OPENSSL_CFLAGS)' ;; GnuTLS) oldlibs="$LIBS" oldcflags="$CFLAGS" LIBS="$LIBS $GNUTLS_LIBS" CFLAGS="$CFLAGS $GNUTLS_CFLAGS" esp=yes dtls=yes ac_fn_c_check_func "$LINENO" "gnutls_system_key_add_x509" "ac_cv_func_gnutls_system_key_add_x509" if test "x$ac_cv_func_gnutls_system_key_add_x509" = xyes; then : $as_echo "#define HAVE_GNUTLS_SYSTEM_KEYS 1" >>confdefs.h fi ac_fn_c_check_func "$LINENO" "gnutls_pkcs11_add_provider" "ac_cv_func_gnutls_pkcs11_add_provider" if test "x$ac_cv_func_gnutls_pkcs11_add_provider" = xyes; then : pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for P11KIT" >&5 $as_echo_n "checking for P11KIT... " >&6; } if test -n "$P11KIT_CFLAGS"; then pkg_cv_P11KIT_CFLAGS="$P11KIT_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"p11-kit-1\""; } >&5 ($PKG_CONFIG --exists --print-errors "p11-kit-1") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_P11KIT_CFLAGS=`$PKG_CONFIG --cflags "p11-kit-1" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$P11KIT_LIBS"; then pkg_cv_P11KIT_LIBS="$P11KIT_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"p11-kit-1\""; } >&5 ($PKG_CONFIG --exists --print-errors "p11-kit-1") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_P11KIT_LIBS=`$PKG_CONFIG --libs "p11-kit-1" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then P11KIT_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "p11-kit-1" 2>&1` else P11KIT_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "p11-kit-1" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$P11KIT_PKG_ERRORS" >&5 : elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } : else P11KIT_CFLAGS=$pkg_cv_P11KIT_CFLAGS P11KIT_LIBS=$pkg_cv_P11KIT_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } $as_echo "#define HAVE_P11KIT 1" >>confdefs.h pkcs11_support=GnuTLS P11KIT_PC=p11-kit-1 fi fi LIBS="$oldlibs -ltspi" { $as_echo "$as_me:${as_lineno-$LINENO}: checking for tss library" >&5 $as_echo_n "checking for tss library... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include int main () { int err = Tspi_Context_Create((void *)0); Trspi_Error_String(err); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } TSS_LIBS=-ltspi $as_echo "#define HAVE_TROUSERS 1" >>confdefs.h else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$oldlibs" CFLAGS="$oldcflags" pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for TASN1" >&5 $as_echo_n "checking for TASN1... " >&6; } if test -n "$TASN1_CFLAGS"; then pkg_cv_TASN1_CFLAGS="$TASN1_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libtasn1\""; } >&5 ($PKG_CONFIG --exists --print-errors "libtasn1") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_TASN1_CFLAGS=`$PKG_CONFIG --cflags "libtasn1" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$TASN1_LIBS"; then pkg_cv_TASN1_LIBS="$TASN1_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libtasn1\""; } >&5 ($PKG_CONFIG --exists --print-errors "libtasn1") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_TASN1_LIBS=`$PKG_CONFIG --libs "libtasn1" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then TASN1_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "libtasn1" 2>&1` else TASN1_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "libtasn1" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$TASN1_PKG_ERRORS" >&5 have_tasn1=no elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } have_tasn1=no else TASN1_CFLAGS=$pkg_cv_TASN1_CFLAGS TASN1_LIBS=$pkg_cv_TASN1_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } have_tasn1=yes fi if test "$have_tasn1" = "yes"; then pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for TSS2_ESYS" >&5 $as_echo_n "checking for TSS2_ESYS... " >&6; } if test -n "$TSS2_ESYS_CFLAGS"; then pkg_cv_TSS2_ESYS_CFLAGS="$TSS2_ESYS_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"tss2-esys\""; } >&5 ($PKG_CONFIG --exists --print-errors "tss2-esys") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_TSS2_ESYS_CFLAGS=`$PKG_CONFIG --cflags "tss2-esys" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$TSS2_ESYS_LIBS"; then pkg_cv_TSS2_ESYS_LIBS="$TSS2_ESYS_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"tss2-esys\""; } >&5 ($PKG_CONFIG --exists --print-errors "tss2-esys") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_TSS2_ESYS_LIBS=`$PKG_CONFIG --libs "tss2-esys" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then TSS2_ESYS_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "tss2-esys" 2>&1` else TSS2_ESYS_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "tss2-esys" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$TSS2_ESYS_PKG_ERRORS" >&5 : elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } : else TSS2_ESYS_CFLAGS=$pkg_cv_TSS2_ESYS_CFLAGS TSS2_ESYS_LIBS=$pkg_cv_TSS2_ESYS_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } $as_echo "#define HAVE_TSS2 1" >>confdefs.h TPM2_CFLAGS='$(TASN1_CFLAGS) $(TSS2_ESYS_CFLAGS)' TPM2_LIBS='$(TASN1_LIBS) $(TSS2_ESYS_LIBS)' tss2lib=tss2-esys fi if test "$tss2lib" = ""; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for TSS_Create in -ltss" >&5 $as_echo_n "checking for TSS_Create in -ltss... " >&6; } if ${ac_cv_lib_tss_TSS_Create+:} false; then : $as_echo_n "(cached) " >&6 else ac_check_lib_save_LIBS=$LIBS LIBS="-ltss $LIBS" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ /* Override any GCC internal prototype to avoid an error. Use char because int might match the return type of a GCC builtin and then its argument prototype would still apply. */ #ifdef __cplusplus extern "C" #endif char TSS_Create (); int main () { return TSS_Create (); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ac_cv_lib_tss_TSS_Create=yes else ac_cv_lib_tss_TSS_Create=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS=$ac_check_lib_save_LIBS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_lib_tss_TSS_Create" >&5 $as_echo "$ac_cv_lib_tss_TSS_Create" >&6; } if test "x$ac_cv_lib_tss_TSS_Create" = xyes; then : tss2inc=tss2 tss2lib=tss else { $as_echo "$as_me:${as_lineno-$LINENO}: checking for TSS_Create in -libmtss" >&5 $as_echo_n "checking for TSS_Create in -libmtss... " >&6; } if ${ac_cv_lib_ibmtss_TSS_Create+:} false; then : $as_echo_n "(cached) " >&6 else ac_check_lib_save_LIBS=$LIBS LIBS="-libmtss $LIBS" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ /* Override any GCC internal prototype to avoid an error. Use char because int might match the return type of a GCC builtin and then its argument prototype would still apply. */ #ifdef __cplusplus extern "C" #endif char TSS_Create (); int main () { return TSS_Create (); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ac_cv_lib_ibmtss_TSS_Create=yes else ac_cv_lib_ibmtss_TSS_Create=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS=$ac_check_lib_save_LIBS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_lib_ibmtss_TSS_Create" >&5 $as_echo "$ac_cv_lib_ibmtss_TSS_Create" >&6; } if test "x$ac_cv_lib_ibmtss_TSS_Create" = xyes; then : tss2inc=ibmtss tss2lib=ibmtss fi fi if test "$tss2lib" != ""; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for ANSI C header files" >&5 $as_echo_n "checking for ANSI C header files... " >&6; } if ${ac_cv_header_stdc+:} false; then : $as_echo_n "(cached) " >&6 else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include #include #include int main () { ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : ac_cv_header_stdc=yes else ac_cv_header_stdc=no fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext if test $ac_cv_header_stdc = yes; then # SunOS 4.x string.h does not declare mem*, contrary to ANSI. cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include _ACEOF if (eval "$ac_cpp conftest.$ac_ext") 2>&5 | $EGREP "memchr" >/dev/null 2>&1; then : else ac_cv_header_stdc=no fi rm -f conftest* fi if test $ac_cv_header_stdc = yes; then # ISC 2.0.2 stdlib.h does not declare free, contrary to ANSI. cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include _ACEOF if (eval "$ac_cpp conftest.$ac_ext") 2>&5 | $EGREP "free" >/dev/null 2>&1; then : else ac_cv_header_stdc=no fi rm -f conftest* fi if test $ac_cv_header_stdc = yes; then # /bin/cc in Irix-4.0.5 gets non-ANSI ctype macros unless using -ansi. if test "$cross_compiling" = yes; then : : else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include #if ((' ' & 0x0FF) == 0x020) # define ISLOWER(c) ('a' <= (c) && (c) <= 'z') # define TOUPPER(c) (ISLOWER(c) ? 'A' + ((c) - 'a') : (c)) #else # define ISLOWER(c) \ (('a' <= (c) && (c) <= 'i') \ || ('j' <= (c) && (c) <= 'r') \ || ('s' <= (c) && (c) <= 'z')) # define TOUPPER(c) (ISLOWER(c) ? ((c) | 0x40) : (c)) #endif #define XOR(e, f) (((e) && !(f)) || (!(e) && (f))) int main () { int i; for (i = 0; i < 256; i++) if (XOR (islower (i), ISLOWER (i)) || toupper (i) != TOUPPER (i)) return 2; return 0; } _ACEOF if ac_fn_c_try_run "$LINENO"; then : else ac_cv_header_stdc=no fi rm -f core *.core core.conftest.* gmon.out bb.out conftest$ac_exeext \ conftest.$ac_objext conftest.beam conftest.$ac_ext fi fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_header_stdc" >&5 $as_echo "$ac_cv_header_stdc" >&6; } if test $ac_cv_header_stdc = yes; then $as_echo "#define STDC_HEADERS 1" >>confdefs.h fi # On IRIX 5.3, sys/types and inttypes.h are conflicting. for ac_header in sys/types.h sys/stat.h stdlib.h string.h memory.h strings.h \ inttypes.h stdint.h unistd.h do : as_ac_Header=`$as_echo "ac_cv_header_$ac_header" | $as_tr_sh` ac_fn_c_check_header_compile "$LINENO" "$ac_header" "$as_ac_Header" "$ac_includes_default " if eval test \"x\$"$as_ac_Header"\" = x"yes"; then : cat >>confdefs.h <<_ACEOF #define `$as_echo "HAVE_$ac_header" | $as_tr_cpp` 1 _ACEOF fi done as_ac_Header=`$as_echo "ac_cv_header_$tss2inc/tss.h" | $as_tr_sh` ac_fn_c_check_header_mongrel "$LINENO" "$tss2inc/tss.h" "$as_ac_Header" "$ac_includes_default" if eval test \"x\$"$as_ac_Header"\" = x"yes"; then : cat >>confdefs.h <<_ACEOF #define HAVE_TSS2 $tss2inc _ACEOF TSS2_LIBS=-l$tss2lib TPM2_CFLAGS='$(TASN1_CFLAGS)' TPM2_LIBS='$(TASN1_LIBS) $(TSS2_LIBS)' else tss2lib= fi fi fi fi $as_echo "#define OPENCONNECT_GNUTLS 1" >>confdefs.h SSL_PC=gnutls SSL_LIBS='$(GNUTLS_LIBS) $(TPM2_LIBS)' SSL_CFLAGS='$(GNUTLS_CFLAGS) $(TPM2_CFLAGS)' ;; *) # This should never happen as_fn_error $? "No SSL library selected" "$LINENO" 5 ;; esac if test "$tss2lib" = "tss2-esys" ; then OPENCONNECT_TSS2_ESYS_TRUE= OPENCONNECT_TSS2_ESYS_FALSE='#' else OPENCONNECT_TSS2_ESYS_TRUE='#' OPENCONNECT_TSS2_ESYS_FALSE= fi if test "$tss2lib" = "ibmtss" -o "$tss2lib" = "tss" ; then OPENCONNECT_TSS2_IBM_TRUE= OPENCONNECT_TSS2_IBM_FALSE='#' else OPENCONNECT_TSS2_IBM_TRUE='#' OPENCONNECT_TSS2_IBM_FALSE= fi test_pkcs11= if test "$pkcs11_support" != ""; then # Extract the first word of "softhsm2-util", so it can be a program name with args. set dummy softhsm2-util; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_test_pkcs11+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$test_pkcs11"; then ac_cv_prog_test_pkcs11="$test_pkcs11" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_test_pkcs11="yes" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi test_pkcs11=$ac_cv_prog_test_pkcs11 if test -n "$test_pkcs11"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $test_pkcs11" >&5 $as_echo "$test_pkcs11" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test "$test_pkcs11" = "yes" ; then TEST_PKCS11_TRUE= TEST_PKCS11_FALSE='#' else TEST_PKCS11_TRUE='#' TEST_PKCS11_FALSE= fi # The test is OpenSSL-only for now. if test "$ssl_library" = "OpenSSL" ; then CHECK_DTLS_TRUE= CHECK_DTLS_FALSE='#' else CHECK_DTLS_TRUE='#' CHECK_DTLS_FALSE= fi # Check whether --enable-dtls-xfail was given. if test "${enable_dtls_xfail+set}" = set; then : enableval=$enable_dtls_xfail; fi if test "$enable_dtls_xfail" = "yes" ; then DTLS_XFAIL_TRUE= DTLS_XFAIL_FALSE='#' else DTLS_XFAIL_TRUE='#' DTLS_XFAIL_FALSE= fi # Check whether --enable-dsa-tests was given. if test "${enable_dsa_tests+set}" = set; then : enableval=$enable_dsa_tests; else enable_dsa_tests=yes fi if test "$enable_dsa_tests" = "yes"; then TEST_DSA_TRUE= TEST_DSA_FALSE='#' else TEST_DSA_TRUE='#' TEST_DSA_FALSE= fi if test "$ssl_library" = "GnuTLS" ; then OPENCONNECT_GNUTLS_TRUE= OPENCONNECT_GNUTLS_FALSE='#' else OPENCONNECT_GNUTLS_TRUE='#' OPENCONNECT_GNUTLS_FALSE= fi if test "$ssl_library" = "OpenSSL" ; then OPENCONNECT_OPENSSL_TRUE= OPENCONNECT_OPENSSL_FALSE='#' else OPENCONNECT_OPENSSL_TRUE='#' OPENCONNECT_OPENSSL_FALSE= fi if test "$esp" != "" ; then OPENCONNECT_ESP_TRUE= OPENCONNECT_ESP_FALSE='#' else OPENCONNECT_ESP_TRUE='#' OPENCONNECT_ESP_FALSE= fi if test "$dtls" != "" ; then OPENCONNECT_DTLS_TRUE= OPENCONNECT_DTLS_FALSE='#' else OPENCONNECT_DTLS_TRUE='#' OPENCONNECT_DTLS_FALSE= fi if test "$esp" != ""; then $as_echo "#define HAVE_ESP 1" >>confdefs.h fi if test "$dtls" != ""; then $as_echo "#define HAVE_DTLS 1" >>confdefs.h fi # Check whether --with-lz4 was given. if test "${with_lz4+set}" = set; then : withval=$with_lz4; test_for_lz4=$withval else test_for_lz4=yes fi lz4_pkg=no if test "$test_for_lz4" = yes; then pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for LIBLZ4" >&5 $as_echo_n "checking for LIBLZ4... " >&6; } if test -n "$LIBLZ4_CFLAGS"; then pkg_cv_LIBLZ4_CFLAGS="$LIBLZ4_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"liblz4\""; } >&5 ($PKG_CONFIG --exists --print-errors "liblz4") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_LIBLZ4_CFLAGS=`$PKG_CONFIG --cflags "liblz4" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$LIBLZ4_LIBS"; then pkg_cv_LIBLZ4_LIBS="$LIBLZ4_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"liblz4\""; } >&5 ($PKG_CONFIG --exists --print-errors "liblz4") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_LIBLZ4_LIBS=`$PKG_CONFIG --libs "liblz4" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then LIBLZ4_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "liblz4" 2>&1` else LIBLZ4_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "liblz4" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$LIBLZ4_PKG_ERRORS" >&5 { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: *** *** lz4 not found. *** " >&5 $as_echo "$as_me: WARNING: *** *** lz4 not found. *** " >&2;} elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: *** *** lz4 not found. *** " >&5 $as_echo "$as_me: WARNING: *** *** lz4 not found. *** " >&2;} else LIBLZ4_CFLAGS=$pkg_cv_LIBLZ4_CFLAGS LIBLZ4_LIBS=$pkg_cv_LIBLZ4_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } LIBLZ4_PC=liblz4 $as_echo "#define HAVE_LZ4 /**/" >>confdefs.h lz4_pkg=yes oldLIBS="$LIBS" LIBS="$LIBS $LIBLZ4_LIBS" oldCFLAGS="$CFLAGS" CFLAGS="$CFLAGS $LIBLZ4_CFLAGS" { $as_echo "$as_me:${as_lineno-$LINENO}: checking for LZ4_compress_default()" >&5 $as_echo_n "checking for LZ4_compress_default()... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { LZ4_compress_default("", (char *)0, 0, 0); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } $as_echo "#define HAVE_LZ4_COMPRESS_DEFAULT /**/" >>confdefs.h else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$oldLIBS" CFLAGS="$oldCFLAGS" fi fi # For some bizarre reason now that we use AM_ICONV, the mingw32 build doesn't # manage to set EGREP properly in the created ./libtool script. Make sure it's # found. { $as_echo "$as_me:${as_lineno-$LINENO}: checking for egrep" >&5 $as_echo_n "checking for egrep... " >&6; } if ${ac_cv_path_EGREP+:} false; then : $as_echo_n "(cached) " >&6 else if echo a | $GREP -E '(a|b)' >/dev/null 2>&1 then ac_cv_path_EGREP="$GREP -E" else if test -z "$EGREP"; then ac_path_EGREP_found=false # Loop through the user's path and test for each of PROGNAME-LIST as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH$PATH_SEPARATOR/usr/xpg4/bin do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_prog in egrep; do for ac_exec_ext in '' $ac_executable_extensions; do ac_path_EGREP="$as_dir/$ac_prog$ac_exec_ext" as_fn_executable_p "$ac_path_EGREP" || continue # Check for GNU ac_path_EGREP and select it if it is found. # Check for GNU $ac_path_EGREP case `"$ac_path_EGREP" --version 2>&1` in *GNU*) ac_cv_path_EGREP="$ac_path_EGREP" ac_path_EGREP_found=:;; *) ac_count=0 $as_echo_n 0123456789 >"conftest.in" while : do cat "conftest.in" "conftest.in" >"conftest.tmp" mv "conftest.tmp" "conftest.in" cp "conftest.in" "conftest.nl" $as_echo 'EGREP' >> "conftest.nl" "$ac_path_EGREP" 'EGREP$' < "conftest.nl" >"conftest.out" 2>/dev/null || break diff "conftest.out" "conftest.nl" >/dev/null 2>&1 || break as_fn_arith $ac_count + 1 && ac_count=$as_val if test $ac_count -gt ${ac_path_EGREP_max-0}; then # Best one so far, save it but keep looking for a better one ac_cv_path_EGREP="$ac_path_EGREP" ac_path_EGREP_max=$ac_count fi # 10*(2^10) chars as input seems more than enough test $ac_count -gt 10 && break done rm -f conftest.in conftest.tmp conftest.nl conftest.out;; esac $ac_path_EGREP_found && break 3 done done done IFS=$as_save_IFS if test -z "$ac_cv_path_EGREP"; then as_fn_error $? "no acceptable egrep could be found in $PATH$PATH_SEPARATOR/usr/xpg4/bin" "$LINENO" 5 fi else ac_cv_path_EGREP=$EGREP fi fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_path_EGREP" >&5 $as_echo "$ac_cv_path_EGREP" >&6; } EGREP="$ac_cv_path_EGREP" # Needs to happen after we default to static/shared libraries based on OpenSSL case `pwd` in *\ * | *\ *) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: Libtool does not cope well with whitespace in \`pwd\`" >&5 $as_echo "$as_me: WARNING: Libtool does not cope well with whitespace in \`pwd\`" >&2;} ;; esac macro_version='2.4.6' macro_revision='2.4.6' ltmain=$ac_aux_dir/ltmain.sh # Backslashify metacharacters that are still active within # double-quoted strings. sed_quote_subst='s/\(["`$\\]\)/\\\1/g' # Same as above, but do not quote variable references. double_quote_subst='s/\(["`\\]\)/\\\1/g' # Sed substitution to delay expansion of an escaped shell variable in a # double_quote_subst'ed string. delay_variable_subst='s/\\\\\\\\\\\$/\\\\\\$/g' # Sed substitution to delay expansion of an escaped single quote. delay_single_quote_subst='s/'\''/'\'\\\\\\\'\''/g' # Sed substitution to avoid accidental globbing in evaled expressions no_glob_subst='s/\*/\\\*/g' ECHO='\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\' ECHO=$ECHO$ECHO$ECHO$ECHO$ECHO ECHO=$ECHO$ECHO$ECHO$ECHO$ECHO$ECHO { $as_echo "$as_me:${as_lineno-$LINENO}: checking how to print strings" >&5 $as_echo_n "checking how to print strings... " >&6; } # Test print first, because it will be a builtin if present. if test "X`( print -r -- -n ) 2>/dev/null`" = X-n && \ test "X`print -r -- $ECHO 2>/dev/null`" = "X$ECHO"; then ECHO='print -r --' elif test "X`printf %s $ECHO 2>/dev/null`" = "X$ECHO"; then ECHO='printf %s\n' else # Use this function as a fallback that always works. func_fallback_echo () { eval 'cat <<_LTECHO_EOF $1 _LTECHO_EOF' } ECHO='func_fallback_echo' fi # func_echo_all arg... # Invoke $ECHO with all args, space-separated. func_echo_all () { $ECHO "" } case $ECHO in printf*) { $as_echo "$as_me:${as_lineno-$LINENO}: result: printf" >&5 $as_echo "printf" >&6; } ;; print*) { $as_echo "$as_me:${as_lineno-$LINENO}: result: print -r" >&5 $as_echo "print -r" >&6; } ;; *) { $as_echo "$as_me:${as_lineno-$LINENO}: result: cat" >&5 $as_echo "cat" >&6; } ;; esac { $as_echo "$as_me:${as_lineno-$LINENO}: checking for a sed that does not truncate output" >&5 $as_echo_n "checking for a sed that does not truncate output... " >&6; } if ${ac_cv_path_SED+:} false; then : $as_echo_n "(cached) " >&6 else ac_script=s/aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/bbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbb/ for ac_i in 1 2 3 4 5 6 7; do ac_script="$ac_script$as_nl$ac_script" done echo "$ac_script" 2>/dev/null | sed 99q >conftest.sed { ac_script=; unset ac_script;} if test -z "$SED"; then ac_path_SED_found=false # Loop through the user's path and test for each of PROGNAME-LIST as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_prog in sed gsed; do for ac_exec_ext in '' $ac_executable_extensions; do ac_path_SED="$as_dir/$ac_prog$ac_exec_ext" as_fn_executable_p "$ac_path_SED" || continue # Check for GNU ac_path_SED and select it if it is found. # Check for GNU $ac_path_SED case `"$ac_path_SED" --version 2>&1` in *GNU*) ac_cv_path_SED="$ac_path_SED" ac_path_SED_found=:;; *) ac_count=0 $as_echo_n 0123456789 >"conftest.in" while : do cat "conftest.in" "conftest.in" >"conftest.tmp" mv "conftest.tmp" "conftest.in" cp "conftest.in" "conftest.nl" $as_echo '' >> "conftest.nl" "$ac_path_SED" -f conftest.sed < "conftest.nl" >"conftest.out" 2>/dev/null || break diff "conftest.out" "conftest.nl" >/dev/null 2>&1 || break as_fn_arith $ac_count + 1 && ac_count=$as_val if test $ac_count -gt ${ac_path_SED_max-0}; then # Best one so far, save it but keep looking for a better one ac_cv_path_SED="$ac_path_SED" ac_path_SED_max=$ac_count fi # 10*(2^10) chars as input seems more than enough test $ac_count -gt 10 && break done rm -f conftest.in conftest.tmp conftest.nl conftest.out;; esac $ac_path_SED_found && break 3 done done done IFS=$as_save_IFS if test -z "$ac_cv_path_SED"; then as_fn_error $? "no acceptable sed could be found in \$PATH" "$LINENO" 5 fi else ac_cv_path_SED=$SED fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_path_SED" >&5 $as_echo "$ac_cv_path_SED" >&6; } SED="$ac_cv_path_SED" rm -f conftest.sed test -z "$SED" && SED=sed Xsed="$SED -e 1s/^X//" { $as_echo "$as_me:${as_lineno-$LINENO}: checking for fgrep" >&5 $as_echo_n "checking for fgrep... " >&6; } if ${ac_cv_path_FGREP+:} false; then : $as_echo_n "(cached) " >&6 else if echo 'ab*c' | $GREP -F 'ab*c' >/dev/null 2>&1 then ac_cv_path_FGREP="$GREP -F" else if test -z "$FGREP"; then ac_path_FGREP_found=false # Loop through the user's path and test for each of PROGNAME-LIST as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH$PATH_SEPARATOR/usr/xpg4/bin do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_prog in fgrep; do for ac_exec_ext in '' $ac_executable_extensions; do ac_path_FGREP="$as_dir/$ac_prog$ac_exec_ext" as_fn_executable_p "$ac_path_FGREP" || continue # Check for GNU ac_path_FGREP and select it if it is found. # Check for GNU $ac_path_FGREP case `"$ac_path_FGREP" --version 2>&1` in *GNU*) ac_cv_path_FGREP="$ac_path_FGREP" ac_path_FGREP_found=:;; *) ac_count=0 $as_echo_n 0123456789 >"conftest.in" while : do cat "conftest.in" "conftest.in" >"conftest.tmp" mv "conftest.tmp" "conftest.in" cp "conftest.in" "conftest.nl" $as_echo 'FGREP' >> "conftest.nl" "$ac_path_FGREP" FGREP < "conftest.nl" >"conftest.out" 2>/dev/null || break diff "conftest.out" "conftest.nl" >/dev/null 2>&1 || break as_fn_arith $ac_count + 1 && ac_count=$as_val if test $ac_count -gt ${ac_path_FGREP_max-0}; then # Best one so far, save it but keep looking for a better one ac_cv_path_FGREP="$ac_path_FGREP" ac_path_FGREP_max=$ac_count fi # 10*(2^10) chars as input seems more than enough test $ac_count -gt 10 && break done rm -f conftest.in conftest.tmp conftest.nl conftest.out;; esac $ac_path_FGREP_found && break 3 done done done IFS=$as_save_IFS if test -z "$ac_cv_path_FGREP"; then as_fn_error $? "no acceptable fgrep could be found in $PATH$PATH_SEPARATOR/usr/xpg4/bin" "$LINENO" 5 fi else ac_cv_path_FGREP=$FGREP fi fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_path_FGREP" >&5 $as_echo "$ac_cv_path_FGREP" >&6; } FGREP="$ac_cv_path_FGREP" test -z "$GREP" && GREP=grep # Check whether --with-gnu-ld was given. if test "${with_gnu_ld+set}" = set; then : withval=$with_gnu_ld; test no = "$withval" || with_gnu_ld=yes else with_gnu_ld=no fi ac_prog=ld if test yes = "$GCC"; then # Check if gcc -print-prog-name=ld gives a path. { $as_echo "$as_me:${as_lineno-$LINENO}: checking for ld used by $CC" >&5 $as_echo_n "checking for ld used by $CC... " >&6; } case $host in *-*-mingw*) # gcc leaves a trailing carriage return, which upsets mingw ac_prog=`($CC -print-prog-name=ld) 2>&5 | tr -d '\015'` ;; *) ac_prog=`($CC -print-prog-name=ld) 2>&5` ;; esac case $ac_prog in # Accept absolute paths. [\\/]* | ?:[\\/]*) re_direlt='/[^/][^/]*/\.\./' # Canonicalize the pathname of ld ac_prog=`$ECHO "$ac_prog"| $SED 's%\\\\%/%g'` while $ECHO "$ac_prog" | $GREP "$re_direlt" > /dev/null 2>&1; do ac_prog=`$ECHO $ac_prog| $SED "s%$re_direlt%/%"` done test -z "$LD" && LD=$ac_prog ;; "") # If it fails, then pretend we aren't using GCC. ac_prog=ld ;; *) # If it is relative, then search for the first ld in PATH. with_gnu_ld=unknown ;; esac elif test yes = "$with_gnu_ld"; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for GNU ld" >&5 $as_echo_n "checking for GNU ld... " >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: checking for non-GNU ld" >&5 $as_echo_n "checking for non-GNU ld... " >&6; } fi if ${lt_cv_path_LD+:} false; then : $as_echo_n "(cached) " >&6 else if test -z "$LD"; then lt_save_ifs=$IFS; IFS=$PATH_SEPARATOR for ac_dir in $PATH; do IFS=$lt_save_ifs test -z "$ac_dir" && ac_dir=. if test -f "$ac_dir/$ac_prog" || test -f "$ac_dir/$ac_prog$ac_exeext"; then lt_cv_path_LD=$ac_dir/$ac_prog # Check to see if the program is GNU ld. I'd rather use --version, # but apparently some variants of GNU ld only accept -v. # Break only if it was the GNU/non-GNU ld that we prefer. case `"$lt_cv_path_LD" -v 2>&1 &5 $as_echo "$LD" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi test -z "$LD" && as_fn_error $? "no acceptable ld found in \$PATH" "$LINENO" 5 { $as_echo "$as_me:${as_lineno-$LINENO}: checking if the linker ($LD) is GNU ld" >&5 $as_echo_n "checking if the linker ($LD) is GNU ld... " >&6; } if ${lt_cv_prog_gnu_ld+:} false; then : $as_echo_n "(cached) " >&6 else # I'd rather use --version here, but apparently some GNU lds only accept -v. case `$LD -v 2>&1 &5 $as_echo "$lt_cv_prog_gnu_ld" >&6; } with_gnu_ld=$lt_cv_prog_gnu_ld { $as_echo "$as_me:${as_lineno-$LINENO}: checking for BSD- or MS-compatible name lister (nm)" >&5 $as_echo_n "checking for BSD- or MS-compatible name lister (nm)... " >&6; } if ${lt_cv_path_NM+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$NM"; then # Let the user override the test. lt_cv_path_NM=$NM else lt_nm_to_check=${ac_tool_prefix}nm if test -n "$ac_tool_prefix" && test "$build" = "$host"; then lt_nm_to_check="$lt_nm_to_check nm" fi for lt_tmp_nm in $lt_nm_to_check; do lt_save_ifs=$IFS; IFS=$PATH_SEPARATOR for ac_dir in $PATH /usr/ccs/bin/elf /usr/ccs/bin /usr/ucb /bin; do IFS=$lt_save_ifs test -z "$ac_dir" && ac_dir=. tmp_nm=$ac_dir/$lt_tmp_nm if test -f "$tmp_nm" || test -f "$tmp_nm$ac_exeext"; then # Check to see if the nm accepts a BSD-compat flag. # Adding the 'sed 1q' prevents false positives on HP-UX, which says: # nm: unknown option "B" ignored # Tru64's nm complains that /dev/null is an invalid object file # MSYS converts /dev/null to NUL, MinGW nm treats NUL as empty case $build_os in mingw*) lt_bad_file=conftest.nm/nofile ;; *) lt_bad_file=/dev/null ;; esac case `"$tmp_nm" -B $lt_bad_file 2>&1 | sed '1q'` in *$lt_bad_file* | *'Invalid file or object type'*) lt_cv_path_NM="$tmp_nm -B" break 2 ;; *) case `"$tmp_nm" -p /dev/null 2>&1 | sed '1q'` in */dev/null*) lt_cv_path_NM="$tmp_nm -p" break 2 ;; *) lt_cv_path_NM=${lt_cv_path_NM="$tmp_nm"} # keep the first match, but continue # so that we can try to find one that supports BSD flags ;; esac ;; esac fi done IFS=$lt_save_ifs done : ${lt_cv_path_NM=no} fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_path_NM" >&5 $as_echo "$lt_cv_path_NM" >&6; } if test no != "$lt_cv_path_NM"; then NM=$lt_cv_path_NM else # Didn't find any BSD compatible name lister, look for dumpbin. if test -n "$DUMPBIN"; then : # Let the user override the test. else if test -n "$ac_tool_prefix"; then for ac_prog in dumpbin "link -dump" do # Extract the first word of "$ac_tool_prefix$ac_prog", so it can be a program name with args. set dummy $ac_tool_prefix$ac_prog; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_DUMPBIN+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$DUMPBIN"; then ac_cv_prog_DUMPBIN="$DUMPBIN" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_DUMPBIN="$ac_tool_prefix$ac_prog" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi DUMPBIN=$ac_cv_prog_DUMPBIN if test -n "$DUMPBIN"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $DUMPBIN" >&5 $as_echo "$DUMPBIN" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi test -n "$DUMPBIN" && break done fi if test -z "$DUMPBIN"; then ac_ct_DUMPBIN=$DUMPBIN for ac_prog in dumpbin "link -dump" do # Extract the first word of "$ac_prog", so it can be a program name with args. set dummy $ac_prog; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_DUMPBIN+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_DUMPBIN"; then ac_cv_prog_ac_ct_DUMPBIN="$ac_ct_DUMPBIN" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_DUMPBIN="$ac_prog" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_DUMPBIN=$ac_cv_prog_ac_ct_DUMPBIN if test -n "$ac_ct_DUMPBIN"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_DUMPBIN" >&5 $as_echo "$ac_ct_DUMPBIN" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi test -n "$ac_ct_DUMPBIN" && break done if test "x$ac_ct_DUMPBIN" = x; then DUMPBIN=":" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac DUMPBIN=$ac_ct_DUMPBIN fi fi case `$DUMPBIN -symbols -headers /dev/null 2>&1 | sed '1q'` in *COFF*) DUMPBIN="$DUMPBIN -symbols -headers" ;; *) DUMPBIN=: ;; esac fi if test : != "$DUMPBIN"; then NM=$DUMPBIN fi fi test -z "$NM" && NM=nm { $as_echo "$as_me:${as_lineno-$LINENO}: checking the name lister ($NM) interface" >&5 $as_echo_n "checking the name lister ($NM) interface... " >&6; } if ${lt_cv_nm_interface+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_nm_interface="BSD nm" echo "int some_variable = 0;" > conftest.$ac_ext (eval echo "\"\$as_me:$LINENO: $ac_compile\"" >&5) (eval "$ac_compile" 2>conftest.err) cat conftest.err >&5 (eval echo "\"\$as_me:$LINENO: $NM \\\"conftest.$ac_objext\\\"\"" >&5) (eval "$NM \"conftest.$ac_objext\"" 2>conftest.err > conftest.out) cat conftest.err >&5 (eval echo "\"\$as_me:$LINENO: output\"" >&5) cat conftest.out >&5 if $GREP 'External.*some_variable' conftest.out > /dev/null; then lt_cv_nm_interface="MS dumpbin" fi rm -f conftest* fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_nm_interface" >&5 $as_echo "$lt_cv_nm_interface" >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether ln -s works" >&5 $as_echo_n "checking whether ln -s works... " >&6; } LN_S=$as_ln_s if test "$LN_S" = "ln -s"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no, using $LN_S" >&5 $as_echo "no, using $LN_S" >&6; } fi # find the maximum length of command line arguments { $as_echo "$as_me:${as_lineno-$LINENO}: checking the maximum length of command line arguments" >&5 $as_echo_n "checking the maximum length of command line arguments... " >&6; } if ${lt_cv_sys_max_cmd_len+:} false; then : $as_echo_n "(cached) " >&6 else i=0 teststring=ABCD case $build_os in msdosdjgpp*) # On DJGPP, this test can blow up pretty badly due to problems in libc # (any single argument exceeding 2000 bytes causes a buffer overrun # during glob expansion). Even if it were fixed, the result of this # check would be larger than it should be. lt_cv_sys_max_cmd_len=12288; # 12K is about right ;; gnu*) # Under GNU Hurd, this test is not required because there is # no limit to the length of command line arguments. # Libtool will interpret -1 as no limit whatsoever lt_cv_sys_max_cmd_len=-1; ;; cygwin* | mingw* | cegcc*) # On Win9x/ME, this test blows up -- it succeeds, but takes # about 5 minutes as the teststring grows exponentially. # Worse, since 9x/ME are not pre-emptively multitasking, # you end up with a "frozen" computer, even though with patience # the test eventually succeeds (with a max line length of 256k). # Instead, let's just punt: use the minimum linelength reported by # all of the supported platforms: 8192 (on NT/2K/XP). lt_cv_sys_max_cmd_len=8192; ;; mint*) # On MiNT this can take a long time and run out of memory. lt_cv_sys_max_cmd_len=8192; ;; amigaos*) # On AmigaOS with pdksh, this test takes hours, literally. # So we just punt and use a minimum line length of 8192. lt_cv_sys_max_cmd_len=8192; ;; bitrig* | darwin* | dragonfly* | freebsd* | netbsd* | openbsd*) # This has been around since 386BSD, at least. Likely further. if test -x /sbin/sysctl; then lt_cv_sys_max_cmd_len=`/sbin/sysctl -n kern.argmax` elif test -x /usr/sbin/sysctl; then lt_cv_sys_max_cmd_len=`/usr/sbin/sysctl -n kern.argmax` else lt_cv_sys_max_cmd_len=65536 # usable default for all BSDs fi # And add a safety zone lt_cv_sys_max_cmd_len=`expr $lt_cv_sys_max_cmd_len \/ 4` lt_cv_sys_max_cmd_len=`expr $lt_cv_sys_max_cmd_len \* 3` ;; interix*) # We know the value 262144 and hardcode it with a safety zone (like BSD) lt_cv_sys_max_cmd_len=196608 ;; os2*) # The test takes a long time on OS/2. lt_cv_sys_max_cmd_len=8192 ;; osf*) # Dr. Hans Ekkehard Plesser reports seeing a kernel panic running configure # due to this test when exec_disable_arg_limit is 1 on Tru64. It is not # nice to cause kernel panics so lets avoid the loop below. # First set a reasonable default. lt_cv_sys_max_cmd_len=16384 # if test -x /sbin/sysconfig; then case `/sbin/sysconfig -q proc exec_disable_arg_limit` in *1*) lt_cv_sys_max_cmd_len=-1 ;; esac fi ;; sco3.2v5*) lt_cv_sys_max_cmd_len=102400 ;; sysv5* | sco5v6* | sysv4.2uw2*) kargmax=`grep ARG_MAX /etc/conf/cf.d/stune 2>/dev/null` if test -n "$kargmax"; then lt_cv_sys_max_cmd_len=`echo $kargmax | sed 's/.*[ ]//'` else lt_cv_sys_max_cmd_len=32768 fi ;; *) lt_cv_sys_max_cmd_len=`(getconf ARG_MAX) 2> /dev/null` if test -n "$lt_cv_sys_max_cmd_len" && \ test undefined != "$lt_cv_sys_max_cmd_len"; then lt_cv_sys_max_cmd_len=`expr $lt_cv_sys_max_cmd_len \/ 4` lt_cv_sys_max_cmd_len=`expr $lt_cv_sys_max_cmd_len \* 3` else # Make teststring a little bigger before we do anything with it. # a 1K string should be a reasonable start. for i in 1 2 3 4 5 6 7 8; do teststring=$teststring$teststring done SHELL=${SHELL-${CONFIG_SHELL-/bin/sh}} # If test is not a shell built-in, we'll probably end up computing a # maximum length that is only half of the actual maximum length, but # we can't tell. while { test X`env echo "$teststring$teststring" 2>/dev/null` \ = "X$teststring$teststring"; } >/dev/null 2>&1 && test 17 != "$i" # 1/2 MB should be enough do i=`expr $i + 1` teststring=$teststring$teststring done # Only check the string length outside the loop. lt_cv_sys_max_cmd_len=`expr "X$teststring" : ".*" 2>&1` teststring= # Add a significant safety factor because C++ compilers can tack on # massive amounts of additional arguments before passing them to the # linker. It appears as though 1/2 is a usable value. lt_cv_sys_max_cmd_len=`expr $lt_cv_sys_max_cmd_len \/ 2` fi ;; esac fi if test -n "$lt_cv_sys_max_cmd_len"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_sys_max_cmd_len" >&5 $as_echo "$lt_cv_sys_max_cmd_len" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: none" >&5 $as_echo "none" >&6; } fi max_cmd_len=$lt_cv_sys_max_cmd_len : ${CP="cp -f"} : ${MV="mv -f"} : ${RM="rm -f"} if ( (MAIL=60; unset MAIL) || exit) >/dev/null 2>&1; then lt_unset=unset else lt_unset=false fi # test EBCDIC or ASCII case `echo X|tr X '\101'` in A) # ASCII based system # \n is not interpreted correctly by Solaris 8 /usr/ucb/tr lt_SP2NL='tr \040 \012' lt_NL2SP='tr \015\012 \040\040' ;; *) # EBCDIC based system lt_SP2NL='tr \100 \n' lt_NL2SP='tr \r\n \100\100' ;; esac { $as_echo "$as_me:${as_lineno-$LINENO}: checking how to convert $build file names to $host format" >&5 $as_echo_n "checking how to convert $build file names to $host format... " >&6; } if ${lt_cv_to_host_file_cmd+:} false; then : $as_echo_n "(cached) " >&6 else case $host in *-*-mingw* ) case $build in *-*-mingw* ) # actually msys lt_cv_to_host_file_cmd=func_convert_file_msys_to_w32 ;; *-*-cygwin* ) lt_cv_to_host_file_cmd=func_convert_file_cygwin_to_w32 ;; * ) # otherwise, assume *nix lt_cv_to_host_file_cmd=func_convert_file_nix_to_w32 ;; esac ;; *-*-cygwin* ) case $build in *-*-mingw* ) # actually msys lt_cv_to_host_file_cmd=func_convert_file_msys_to_cygwin ;; *-*-cygwin* ) lt_cv_to_host_file_cmd=func_convert_file_noop ;; * ) # otherwise, assume *nix lt_cv_to_host_file_cmd=func_convert_file_nix_to_cygwin ;; esac ;; * ) # unhandled hosts (and "normal" native builds) lt_cv_to_host_file_cmd=func_convert_file_noop ;; esac fi to_host_file_cmd=$lt_cv_to_host_file_cmd { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_to_host_file_cmd" >&5 $as_echo "$lt_cv_to_host_file_cmd" >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: checking how to convert $build file names to toolchain format" >&5 $as_echo_n "checking how to convert $build file names to toolchain format... " >&6; } if ${lt_cv_to_tool_file_cmd+:} false; then : $as_echo_n "(cached) " >&6 else #assume ordinary cross tools, or native build. lt_cv_to_tool_file_cmd=func_convert_file_noop case $host in *-*-mingw* ) case $build in *-*-mingw* ) # actually msys lt_cv_to_tool_file_cmd=func_convert_file_msys_to_w32 ;; esac ;; esac fi to_tool_file_cmd=$lt_cv_to_tool_file_cmd { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_to_tool_file_cmd" >&5 $as_echo "$lt_cv_to_tool_file_cmd" >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $LD option to reload object files" >&5 $as_echo_n "checking for $LD option to reload object files... " >&6; } if ${lt_cv_ld_reload_flag+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_ld_reload_flag='-r' fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_ld_reload_flag" >&5 $as_echo "$lt_cv_ld_reload_flag" >&6; } reload_flag=$lt_cv_ld_reload_flag case $reload_flag in "" | " "*) ;; *) reload_flag=" $reload_flag" ;; esac reload_cmds='$LD$reload_flag -o $output$reload_objs' case $host_os in cygwin* | mingw* | pw32* | cegcc*) if test yes != "$GCC"; then reload_cmds=false fi ;; darwin*) if test yes = "$GCC"; then reload_cmds='$LTCC $LTCFLAGS -nostdlib $wl-r -o $output$reload_objs' else reload_cmds='$LD$reload_flag -o $output$reload_objs' fi ;; esac if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}objdump", so it can be a program name with args. set dummy ${ac_tool_prefix}objdump; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_OBJDUMP+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$OBJDUMP"; then ac_cv_prog_OBJDUMP="$OBJDUMP" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_OBJDUMP="${ac_tool_prefix}objdump" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi OBJDUMP=$ac_cv_prog_OBJDUMP if test -n "$OBJDUMP"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $OBJDUMP" >&5 $as_echo "$OBJDUMP" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_prog_OBJDUMP"; then ac_ct_OBJDUMP=$OBJDUMP # Extract the first word of "objdump", so it can be a program name with args. set dummy objdump; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_OBJDUMP+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_OBJDUMP"; then ac_cv_prog_ac_ct_OBJDUMP="$ac_ct_OBJDUMP" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_OBJDUMP="objdump" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_OBJDUMP=$ac_cv_prog_ac_ct_OBJDUMP if test -n "$ac_ct_OBJDUMP"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_OBJDUMP" >&5 $as_echo "$ac_ct_OBJDUMP" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_ct_OBJDUMP" = x; then OBJDUMP="false" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac OBJDUMP=$ac_ct_OBJDUMP fi else OBJDUMP="$ac_cv_prog_OBJDUMP" fi test -z "$OBJDUMP" && OBJDUMP=objdump { $as_echo "$as_me:${as_lineno-$LINENO}: checking how to recognize dependent libraries" >&5 $as_echo_n "checking how to recognize dependent libraries... " >&6; } if ${lt_cv_deplibs_check_method+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_file_magic_cmd='$MAGIC_CMD' lt_cv_file_magic_test_file= lt_cv_deplibs_check_method='unknown' # Need to set the preceding variable on all platforms that support # interlibrary dependencies. # 'none' -- dependencies not supported. # 'unknown' -- same as none, but documents that we really don't know. # 'pass_all' -- all dependencies passed with no checks. # 'test_compile' -- check by making test program. # 'file_magic [[regex]]' -- check by looking for files in library path # that responds to the $file_magic_cmd with a given extended regex. # If you have 'file' or equivalent on your system and you're not sure # whether 'pass_all' will *always* work, you probably want this one. case $host_os in aix[4-9]*) lt_cv_deplibs_check_method=pass_all ;; beos*) lt_cv_deplibs_check_method=pass_all ;; bsdi[45]*) lt_cv_deplibs_check_method='file_magic ELF [0-9][0-9]*-bit [ML]SB (shared object|dynamic lib)' lt_cv_file_magic_cmd='/usr/bin/file -L' lt_cv_file_magic_test_file=/shlib/libc.so ;; cygwin*) # func_win32_libid is a shell function defined in ltmain.sh lt_cv_deplibs_check_method='file_magic ^x86 archive import|^x86 DLL' lt_cv_file_magic_cmd='func_win32_libid' ;; mingw* | pw32*) # Base MSYS/MinGW do not provide the 'file' command needed by # func_win32_libid shell function, so use a weaker test based on 'objdump', # unless we find 'file', for example because we are cross-compiling. if ( file / ) >/dev/null 2>&1; then lt_cv_deplibs_check_method='file_magic ^x86 archive import|^x86 DLL' lt_cv_file_magic_cmd='func_win32_libid' else # Keep this pattern in sync with the one in func_win32_libid. lt_cv_deplibs_check_method='file_magic file format (pei*-i386(.*architecture: i386)?|pe-arm-wince|pe-x86-64)' lt_cv_file_magic_cmd='$OBJDUMP -f' fi ;; cegcc*) # use the weaker test based on 'objdump'. See mingw*. lt_cv_deplibs_check_method='file_magic file format pe-arm-.*little(.*architecture: arm)?' lt_cv_file_magic_cmd='$OBJDUMP -f' ;; darwin* | rhapsody*) lt_cv_deplibs_check_method=pass_all ;; freebsd* | dragonfly*) if echo __ELF__ | $CC -E - | $GREP __ELF__ > /dev/null; then case $host_cpu in i*86 ) # Not sure whether the presence of OpenBSD here was a mistake. # Let's accept both of them until this is cleared up. lt_cv_deplibs_check_method='file_magic (FreeBSD|OpenBSD|DragonFly)/i[3-9]86 (compact )?demand paged shared library' lt_cv_file_magic_cmd=/usr/bin/file lt_cv_file_magic_test_file=`echo /usr/lib/libc.so.*` ;; esac else lt_cv_deplibs_check_method=pass_all fi ;; haiku*) lt_cv_deplibs_check_method=pass_all ;; hpux10.20* | hpux11*) lt_cv_file_magic_cmd=/usr/bin/file case $host_cpu in ia64*) lt_cv_deplibs_check_method='file_magic (s[0-9][0-9][0-9]|ELF-[0-9][0-9]) shared object file - IA64' lt_cv_file_magic_test_file=/usr/lib/hpux32/libc.so ;; hppa*64*) lt_cv_deplibs_check_method='file_magic (s[0-9][0-9][0-9]|ELF[ -][0-9][0-9])(-bit)?( [LM]SB)? shared object( file)?[, -]* PA-RISC [0-9]\.[0-9]' lt_cv_file_magic_test_file=/usr/lib/pa20_64/libc.sl ;; *) lt_cv_deplibs_check_method='file_magic (s[0-9][0-9][0-9]|PA-RISC[0-9]\.[0-9]) shared library' lt_cv_file_magic_test_file=/usr/lib/libc.sl ;; esac ;; interix[3-9]*) # PIC code is broken on Interix 3.x, that's why |\.a not |_pic\.a here lt_cv_deplibs_check_method='match_pattern /lib[^/]+(\.so|\.a)$' ;; irix5* | irix6* | nonstopux*) case $LD in *-32|*"-32 ") libmagic=32-bit;; *-n32|*"-n32 ") libmagic=N32;; *-64|*"-64 ") libmagic=64-bit;; *) libmagic=never-match;; esac lt_cv_deplibs_check_method=pass_all ;; # This must be glibc/ELF. linux* | k*bsd*-gnu | kopensolaris*-gnu | gnu*) lt_cv_deplibs_check_method=pass_all ;; netbsd*) if echo __ELF__ | $CC -E - | $GREP __ELF__ > /dev/null; then lt_cv_deplibs_check_method='match_pattern /lib[^/]+(\.so\.[0-9]+\.[0-9]+|_pic\.a)$' else lt_cv_deplibs_check_method='match_pattern /lib[^/]+(\.so|_pic\.a)$' fi ;; newos6*) lt_cv_deplibs_check_method='file_magic ELF [0-9][0-9]*-bit [ML]SB (executable|dynamic lib)' lt_cv_file_magic_cmd=/usr/bin/file lt_cv_file_magic_test_file=/usr/lib/libnls.so ;; *nto* | *qnx*) lt_cv_deplibs_check_method=pass_all ;; openbsd* | bitrig*) if test -z "`echo __ELF__ | $CC -E - | $GREP __ELF__`"; then lt_cv_deplibs_check_method='match_pattern /lib[^/]+(\.so\.[0-9]+\.[0-9]+|\.so|_pic\.a)$' else lt_cv_deplibs_check_method='match_pattern /lib[^/]+(\.so\.[0-9]+\.[0-9]+|_pic\.a)$' fi ;; osf3* | osf4* | osf5*) lt_cv_deplibs_check_method=pass_all ;; rdos*) lt_cv_deplibs_check_method=pass_all ;; solaris*) lt_cv_deplibs_check_method=pass_all ;; sysv5* | sco3.2v5* | sco5v6* | unixware* | OpenUNIX* | sysv4*uw2*) lt_cv_deplibs_check_method=pass_all ;; sysv4 | sysv4.3*) case $host_vendor in motorola) lt_cv_deplibs_check_method='file_magic ELF [0-9][0-9]*-bit [ML]SB (shared object|dynamic lib) M[0-9][0-9]* Version [0-9]' lt_cv_file_magic_test_file=`echo /usr/lib/libc.so*` ;; ncr) lt_cv_deplibs_check_method=pass_all ;; sequent) lt_cv_file_magic_cmd='/bin/file' lt_cv_deplibs_check_method='file_magic ELF [0-9][0-9]*-bit [LM]SB (shared object|dynamic lib )' ;; sni) lt_cv_file_magic_cmd='/bin/file' lt_cv_deplibs_check_method="file_magic ELF [0-9][0-9]*-bit [LM]SB dynamic lib" lt_cv_file_magic_test_file=/lib/libc.so ;; siemens) lt_cv_deplibs_check_method=pass_all ;; pc) lt_cv_deplibs_check_method=pass_all ;; esac ;; tpf*) lt_cv_deplibs_check_method=pass_all ;; os2*) lt_cv_deplibs_check_method=pass_all ;; esac fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_deplibs_check_method" >&5 $as_echo "$lt_cv_deplibs_check_method" >&6; } file_magic_glob= want_nocaseglob=no if test "$build" = "$host"; then case $host_os in mingw* | pw32*) if ( shopt | grep nocaseglob ) >/dev/null 2>&1; then want_nocaseglob=yes else file_magic_glob=`echo aAbBcCdDeEfFgGhHiIjJkKlLmMnNoOpPqQrRsStTuUvVwWxXyYzZ | $SED -e "s/\(..\)/s\/[\1]\/[\1]\/g;/g"` fi ;; esac fi file_magic_cmd=$lt_cv_file_magic_cmd deplibs_check_method=$lt_cv_deplibs_check_method test -z "$deplibs_check_method" && deplibs_check_method=unknown if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}dlltool", so it can be a program name with args. set dummy ${ac_tool_prefix}dlltool; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_DLLTOOL+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$DLLTOOL"; then ac_cv_prog_DLLTOOL="$DLLTOOL" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_DLLTOOL="${ac_tool_prefix}dlltool" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi DLLTOOL=$ac_cv_prog_DLLTOOL if test -n "$DLLTOOL"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $DLLTOOL" >&5 $as_echo "$DLLTOOL" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_prog_DLLTOOL"; then ac_ct_DLLTOOL=$DLLTOOL # Extract the first word of "dlltool", so it can be a program name with args. set dummy dlltool; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_DLLTOOL+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_DLLTOOL"; then ac_cv_prog_ac_ct_DLLTOOL="$ac_ct_DLLTOOL" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_DLLTOOL="dlltool" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_DLLTOOL=$ac_cv_prog_ac_ct_DLLTOOL if test -n "$ac_ct_DLLTOOL"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_DLLTOOL" >&5 $as_echo "$ac_ct_DLLTOOL" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_ct_DLLTOOL" = x; then DLLTOOL="false" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac DLLTOOL=$ac_ct_DLLTOOL fi else DLLTOOL="$ac_cv_prog_DLLTOOL" fi test -z "$DLLTOOL" && DLLTOOL=dlltool { $as_echo "$as_me:${as_lineno-$LINENO}: checking how to associate runtime and link libraries" >&5 $as_echo_n "checking how to associate runtime and link libraries... " >&6; } if ${lt_cv_sharedlib_from_linklib_cmd+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_sharedlib_from_linklib_cmd='unknown' case $host_os in cygwin* | mingw* | pw32* | cegcc*) # two different shell functions defined in ltmain.sh; # decide which one to use based on capabilities of $DLLTOOL case `$DLLTOOL --help 2>&1` in *--identify-strict*) lt_cv_sharedlib_from_linklib_cmd=func_cygming_dll_for_implib ;; *) lt_cv_sharedlib_from_linklib_cmd=func_cygming_dll_for_implib_fallback ;; esac ;; *) # fallback: assume linklib IS sharedlib lt_cv_sharedlib_from_linklib_cmd=$ECHO ;; esac fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_sharedlib_from_linklib_cmd" >&5 $as_echo "$lt_cv_sharedlib_from_linklib_cmd" >&6; } sharedlib_from_linklib_cmd=$lt_cv_sharedlib_from_linklib_cmd test -z "$sharedlib_from_linklib_cmd" && sharedlib_from_linklib_cmd=$ECHO if test -n "$ac_tool_prefix"; then for ac_prog in ar do # Extract the first word of "$ac_tool_prefix$ac_prog", so it can be a program name with args. set dummy $ac_tool_prefix$ac_prog; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_AR+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$AR"; then ac_cv_prog_AR="$AR" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_AR="$ac_tool_prefix$ac_prog" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi AR=$ac_cv_prog_AR if test -n "$AR"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $AR" >&5 $as_echo "$AR" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi test -n "$AR" && break done fi if test -z "$AR"; then ac_ct_AR=$AR for ac_prog in ar do # Extract the first word of "$ac_prog", so it can be a program name with args. set dummy $ac_prog; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_AR+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_AR"; then ac_cv_prog_ac_ct_AR="$ac_ct_AR" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_AR="$ac_prog" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_AR=$ac_cv_prog_ac_ct_AR if test -n "$ac_ct_AR"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_AR" >&5 $as_echo "$ac_ct_AR" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi test -n "$ac_ct_AR" && break done if test "x$ac_ct_AR" = x; then AR="false" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac AR=$ac_ct_AR fi fi : ${AR=ar} : ${AR_FLAGS=cru} { $as_echo "$as_me:${as_lineno-$LINENO}: checking for archiver @FILE support" >&5 $as_echo_n "checking for archiver @FILE support... " >&6; } if ${lt_cv_ar_at_file+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_ar_at_file=no cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : echo conftest.$ac_objext > conftest.lst lt_ar_try='$AR $AR_FLAGS libconftest.a @conftest.lst >&5' { { eval echo "\"\$as_me\":${as_lineno-$LINENO}: \"$lt_ar_try\""; } >&5 (eval $lt_ar_try) 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } if test 0 -eq "$ac_status"; then # Ensure the archiver fails upon bogus file names. rm -f conftest.$ac_objext libconftest.a { { eval echo "\"\$as_me\":${as_lineno-$LINENO}: \"$lt_ar_try\""; } >&5 (eval $lt_ar_try) 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } if test 0 -ne "$ac_status"; then lt_cv_ar_at_file=@ fi fi rm -f conftest.* libconftest.a fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_ar_at_file" >&5 $as_echo "$lt_cv_ar_at_file" >&6; } if test no = "$lt_cv_ar_at_file"; then archiver_list_spec= else archiver_list_spec=$lt_cv_ar_at_file fi if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}strip", so it can be a program name with args. set dummy ${ac_tool_prefix}strip; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_STRIP+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$STRIP"; then ac_cv_prog_STRIP="$STRIP" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_STRIP="${ac_tool_prefix}strip" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi STRIP=$ac_cv_prog_STRIP if test -n "$STRIP"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $STRIP" >&5 $as_echo "$STRIP" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_prog_STRIP"; then ac_ct_STRIP=$STRIP # Extract the first word of "strip", so it can be a program name with args. set dummy strip; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_STRIP+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_STRIP"; then ac_cv_prog_ac_ct_STRIP="$ac_ct_STRIP" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_STRIP="strip" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_STRIP=$ac_cv_prog_ac_ct_STRIP if test -n "$ac_ct_STRIP"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_STRIP" >&5 $as_echo "$ac_ct_STRIP" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_ct_STRIP" = x; then STRIP=":" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac STRIP=$ac_ct_STRIP fi else STRIP="$ac_cv_prog_STRIP" fi test -z "$STRIP" && STRIP=: if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}ranlib", so it can be a program name with args. set dummy ${ac_tool_prefix}ranlib; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_RANLIB+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$RANLIB"; then ac_cv_prog_RANLIB="$RANLIB" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_RANLIB="${ac_tool_prefix}ranlib" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi RANLIB=$ac_cv_prog_RANLIB if test -n "$RANLIB"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $RANLIB" >&5 $as_echo "$RANLIB" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_prog_RANLIB"; then ac_ct_RANLIB=$RANLIB # Extract the first word of "ranlib", so it can be a program name with args. set dummy ranlib; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_RANLIB+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_RANLIB"; then ac_cv_prog_ac_ct_RANLIB="$ac_ct_RANLIB" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_RANLIB="ranlib" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_RANLIB=$ac_cv_prog_ac_ct_RANLIB if test -n "$ac_ct_RANLIB"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_RANLIB" >&5 $as_echo "$ac_ct_RANLIB" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_ct_RANLIB" = x; then RANLIB=":" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac RANLIB=$ac_ct_RANLIB fi else RANLIB="$ac_cv_prog_RANLIB" fi test -z "$RANLIB" && RANLIB=: # Determine commands to create old-style static archives. old_archive_cmds='$AR $AR_FLAGS $oldlib$oldobjs' old_postinstall_cmds='chmod 644 $oldlib' old_postuninstall_cmds= if test -n "$RANLIB"; then case $host_os in bitrig* | openbsd*) old_postinstall_cmds="$old_postinstall_cmds~\$RANLIB -t \$tool_oldlib" ;; *) old_postinstall_cmds="$old_postinstall_cmds~\$RANLIB \$tool_oldlib" ;; esac old_archive_cmds="$old_archive_cmds~\$RANLIB \$tool_oldlib" fi case $host_os in darwin*) lock_old_archive_extraction=yes ;; *) lock_old_archive_extraction=no ;; esac # If no C compiler was specified, use CC. LTCC=${LTCC-"$CC"} # If no C compiler flags were specified, use CFLAGS. LTCFLAGS=${LTCFLAGS-"$CFLAGS"} # Allow CC to be a program name with arguments. compiler=$CC # Check for command to grab the raw symbol name followed by C symbol from nm. { $as_echo "$as_me:${as_lineno-$LINENO}: checking command to parse $NM output from $compiler object" >&5 $as_echo_n "checking command to parse $NM output from $compiler object... " >&6; } if ${lt_cv_sys_global_symbol_pipe+:} false; then : $as_echo_n "(cached) " >&6 else # These are sane defaults that work on at least a few old systems. # [They come from Ultrix. What could be older than Ultrix?!! ;)] # Character class describing NM global symbol codes. symcode='[BCDEGRST]' # Regexp to match symbols that can be accessed directly from C. sympat='\([_A-Za-z][_A-Za-z0-9]*\)' # Define system-specific variables. case $host_os in aix*) symcode='[BCDT]' ;; cygwin* | mingw* | pw32* | cegcc*) symcode='[ABCDGISTW]' ;; hpux*) if test ia64 = "$host_cpu"; then symcode='[ABCDEGRST]' fi ;; irix* | nonstopux*) symcode='[BCDEGRST]' ;; osf*) symcode='[BCDEGQRST]' ;; solaris*) symcode='[BDRT]' ;; sco3.2v5*) symcode='[DT]' ;; sysv4.2uw2*) symcode='[DT]' ;; sysv5* | sco5v6* | unixware* | OpenUNIX*) symcode='[ABDT]' ;; sysv4) symcode='[DFNSTU]' ;; esac # If we're using GNU nm, then use its standard symbol codes. case `$NM -V 2>&1` in *GNU* | *'with BFD'*) symcode='[ABCDGIRSTW]' ;; esac if test "$lt_cv_nm_interface" = "MS dumpbin"; then # Gets list of data symbols to import. lt_cv_sys_global_symbol_to_import="sed -n -e 's/^I .* \(.*\)$/\1/p'" # Adjust the below global symbol transforms to fixup imported variables. lt_cdecl_hook=" -e 's/^I .* \(.*\)$/extern __declspec(dllimport) char \1;/p'" lt_c_name_hook=" -e 's/^I .* \(.*\)$/ {\"\1\", (void *) 0},/p'" lt_c_name_lib_hook="\ -e 's/^I .* \(lib.*\)$/ {\"\1\", (void *) 0},/p'\ -e 's/^I .* \(.*\)$/ {\"lib\1\", (void *) 0},/p'" else # Disable hooks by default. lt_cv_sys_global_symbol_to_import= lt_cdecl_hook= lt_c_name_hook= lt_c_name_lib_hook= fi # Transform an extracted symbol line into a proper C declaration. # Some systems (esp. on ia64) link data and code symbols differently, # so use this general approach. lt_cv_sys_global_symbol_to_cdecl="sed -n"\ $lt_cdecl_hook\ " -e 's/^T .* \(.*\)$/extern int \1();/p'"\ " -e 's/^$symcode$symcode* .* \(.*\)$/extern char \1;/p'" # Transform an extracted symbol line into symbol name and symbol address lt_cv_sys_global_symbol_to_c_name_address="sed -n"\ $lt_c_name_hook\ " -e 's/^: \(.*\) .*$/ {\"\1\", (void *) 0},/p'"\ " -e 's/^$symcode$symcode* .* \(.*\)$/ {\"\1\", (void *) \&\1},/p'" # Transform an extracted symbol line into symbol name with lib prefix and # symbol address. lt_cv_sys_global_symbol_to_c_name_address_lib_prefix="sed -n"\ $lt_c_name_lib_hook\ " -e 's/^: \(.*\) .*$/ {\"\1\", (void *) 0},/p'"\ " -e 's/^$symcode$symcode* .* \(lib.*\)$/ {\"\1\", (void *) \&\1},/p'"\ " -e 's/^$symcode$symcode* .* \(.*\)$/ {\"lib\1\", (void *) \&\1},/p'" # Handle CRLF in mingw tool chain opt_cr= case $build_os in mingw*) opt_cr=`$ECHO 'x\{0,1\}' | tr x '\015'` # option cr in regexp ;; esac # Try without a prefix underscore, then with it. for ac_symprfx in "" "_"; do # Transform symcode, sympat, and symprfx into a raw symbol and a C symbol. symxfrm="\\1 $ac_symprfx\\2 \\2" # Write the raw and C identifiers. if test "$lt_cv_nm_interface" = "MS dumpbin"; then # Fake it for dumpbin and say T for any non-static function, # D for any global variable and I for any imported variable. # Also find C++ and __fastcall symbols from MSVC++, # which start with @ or ?. lt_cv_sys_global_symbol_pipe="$AWK '"\ " {last_section=section; section=\$ 3};"\ " /^COFF SYMBOL TABLE/{for(i in hide) delete hide[i]};"\ " /Section length .*#relocs.*(pick any)/{hide[last_section]=1};"\ " /^ *Symbol name *: /{split(\$ 0,sn,\":\"); si=substr(sn[2],2)};"\ " /^ *Type *: code/{print \"T\",si,substr(si,length(prfx))};"\ " /^ *Type *: data/{print \"I\",si,substr(si,length(prfx))};"\ " \$ 0!~/External *\|/{next};"\ " / 0+ UNDEF /{next}; / UNDEF \([^|]\)*()/{next};"\ " {if(hide[section]) next};"\ " {f=\"D\"}; \$ 0~/\(\).*\|/{f=\"T\"};"\ " {split(\$ 0,a,/\||\r/); split(a[2],s)};"\ " s[1]~/^[@?]/{print f,s[1],s[1]; next};"\ " s[1]~prfx {split(s[1],t,\"@\"); print f,t[1],substr(t[1],length(prfx))}"\ " ' prfx=^$ac_symprfx" else lt_cv_sys_global_symbol_pipe="sed -n -e 's/^.*[ ]\($symcode$symcode*\)[ ][ ]*$ac_symprfx$sympat$opt_cr$/$symxfrm/p'" fi lt_cv_sys_global_symbol_pipe="$lt_cv_sys_global_symbol_pipe | sed '/ __gnu_lto/d'" # Check to see that the pipe works correctly. pipe_works=no rm -f conftest* cat > conftest.$ac_ext <<_LT_EOF #ifdef __cplusplus extern "C" { #endif char nm_test_var; void nm_test_func(void); void nm_test_func(void){} #ifdef __cplusplus } #endif int main(){nm_test_var='a';nm_test_func();return(0);} _LT_EOF if { { eval echo "\"\$as_me\":${as_lineno-$LINENO}: \"$ac_compile\""; } >&5 (eval $ac_compile) 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then # Now try to grab the symbols. nlist=conftest.nm if { { eval echo "\"\$as_me\":${as_lineno-$LINENO}: \"$NM conftest.$ac_objext \| "$lt_cv_sys_global_symbol_pipe" \> $nlist\""; } >&5 (eval $NM conftest.$ac_objext \| "$lt_cv_sys_global_symbol_pipe" \> $nlist) 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } && test -s "$nlist"; then # Try sorting and uniquifying the output. if sort "$nlist" | uniq > "$nlist"T; then mv -f "$nlist"T "$nlist" else rm -f "$nlist"T fi # Make sure that we snagged all the symbols we need. if $GREP ' nm_test_var$' "$nlist" >/dev/null; then if $GREP ' nm_test_func$' "$nlist" >/dev/null; then cat <<_LT_EOF > conftest.$ac_ext /* Keep this code in sync between libtool.m4, ltmain, lt_system.h, and tests. */ #if defined _WIN32 || defined __CYGWIN__ || defined _WIN32_WCE /* DATA imports from DLLs on WIN32 can't be const, because runtime relocations are performed -- see ld's documentation on pseudo-relocs. */ # define LT_DLSYM_CONST #elif defined __osf__ /* This system does not cope well with relocations in const data. */ # define LT_DLSYM_CONST #else # define LT_DLSYM_CONST const #endif #ifdef __cplusplus extern "C" { #endif _LT_EOF # Now generate the symbol file. eval "$lt_cv_sys_global_symbol_to_cdecl"' < "$nlist" | $GREP -v main >> conftest.$ac_ext' cat <<_LT_EOF >> conftest.$ac_ext /* The mapping between symbol names and symbols. */ LT_DLSYM_CONST struct { const char *name; void *address; } lt__PROGRAM__LTX_preloaded_symbols[] = { { "@PROGRAM@", (void *) 0 }, _LT_EOF $SED "s/^$symcode$symcode* .* \(.*\)$/ {\"\1\", (void *) \&\1},/" < "$nlist" | $GREP -v main >> conftest.$ac_ext cat <<\_LT_EOF >> conftest.$ac_ext {0, (void *) 0} }; /* This works around a problem in FreeBSD linker */ #ifdef FREEBSD_WORKAROUND static const void *lt_preloaded_setup() { return lt__PROGRAM__LTX_preloaded_symbols; } #endif #ifdef __cplusplus } #endif _LT_EOF # Now try linking the two files. mv conftest.$ac_objext conftstm.$ac_objext lt_globsym_save_LIBS=$LIBS lt_globsym_save_CFLAGS=$CFLAGS LIBS=conftstm.$ac_objext CFLAGS="$CFLAGS$lt_prog_compiler_no_builtin_flag" if { { eval echo "\"\$as_me\":${as_lineno-$LINENO}: \"$ac_link\""; } >&5 (eval $ac_link) 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } && test -s conftest$ac_exeext; then pipe_works=yes fi LIBS=$lt_globsym_save_LIBS CFLAGS=$lt_globsym_save_CFLAGS else echo "cannot find nm_test_func in $nlist" >&5 fi else echo "cannot find nm_test_var in $nlist" >&5 fi else echo "cannot run $lt_cv_sys_global_symbol_pipe" >&5 fi else echo "$progname: failed program was:" >&5 cat conftest.$ac_ext >&5 fi rm -rf conftest* conftst* # Do not use the global_symbol_pipe unless it works. if test yes = "$pipe_works"; then break else lt_cv_sys_global_symbol_pipe= fi done fi if test -z "$lt_cv_sys_global_symbol_pipe"; then lt_cv_sys_global_symbol_to_cdecl= fi if test -z "$lt_cv_sys_global_symbol_pipe$lt_cv_sys_global_symbol_to_cdecl"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: failed" >&5 $as_echo "failed" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: ok" >&5 $as_echo "ok" >&6; } fi # Response file support. if test "$lt_cv_nm_interface" = "MS dumpbin"; then nm_file_list_spec='@' elif $NM --help 2>/dev/null | grep '[@]FILE' >/dev/null; then nm_file_list_spec='@' fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking for sysroot" >&5 $as_echo_n "checking for sysroot... " >&6; } # Check whether --with-sysroot was given. if test "${with_sysroot+set}" = set; then : withval=$with_sysroot; else with_sysroot=no fi lt_sysroot= case $with_sysroot in #( yes) if test yes = "$GCC"; then lt_sysroot=`$CC --print-sysroot 2>/dev/null` fi ;; #( /*) lt_sysroot=`echo "$with_sysroot" | sed -e "$sed_quote_subst"` ;; #( no|'') ;; #( *) { $as_echo "$as_me:${as_lineno-$LINENO}: result: $with_sysroot" >&5 $as_echo "$with_sysroot" >&6; } as_fn_error $? "The sysroot must be an absolute path." "$LINENO" 5 ;; esac { $as_echo "$as_me:${as_lineno-$LINENO}: result: ${lt_sysroot:-no}" >&5 $as_echo "${lt_sysroot:-no}" >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: checking for a working dd" >&5 $as_echo_n "checking for a working dd... " >&6; } if ${ac_cv_path_lt_DD+:} false; then : $as_echo_n "(cached) " >&6 else printf 0123456789abcdef0123456789abcdef >conftest.i cat conftest.i conftest.i >conftest2.i : ${lt_DD:=$DD} if test -z "$lt_DD"; then ac_path_lt_DD_found=false # Loop through the user's path and test for each of PROGNAME-LIST as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_prog in dd; do for ac_exec_ext in '' $ac_executable_extensions; do ac_path_lt_DD="$as_dir/$ac_prog$ac_exec_ext" as_fn_executable_p "$ac_path_lt_DD" || continue if "$ac_path_lt_DD" bs=32 count=1 conftest.out 2>/dev/null; then cmp -s conftest.i conftest.out \ && ac_cv_path_lt_DD="$ac_path_lt_DD" ac_path_lt_DD_found=: fi $ac_path_lt_DD_found && break 3 done done done IFS=$as_save_IFS if test -z "$ac_cv_path_lt_DD"; then : fi else ac_cv_path_lt_DD=$lt_DD fi rm -f conftest.i conftest2.i conftest.out fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_path_lt_DD" >&5 $as_echo "$ac_cv_path_lt_DD" >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: checking how to truncate binary pipes" >&5 $as_echo_n "checking how to truncate binary pipes... " >&6; } if ${lt_cv_truncate_bin+:} false; then : $as_echo_n "(cached) " >&6 else printf 0123456789abcdef0123456789abcdef >conftest.i cat conftest.i conftest.i >conftest2.i lt_cv_truncate_bin= if "$ac_cv_path_lt_DD" bs=32 count=1 conftest.out 2>/dev/null; then cmp -s conftest.i conftest.out \ && lt_cv_truncate_bin="$ac_cv_path_lt_DD bs=4096 count=1" fi rm -f conftest.i conftest2.i conftest.out test -z "$lt_cv_truncate_bin" && lt_cv_truncate_bin="$SED -e 4q" fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_truncate_bin" >&5 $as_echo "$lt_cv_truncate_bin" >&6; } # Calculate cc_basename. Skip known compiler wrappers and cross-prefix. func_cc_basename () { for cc_temp in $*""; do case $cc_temp in compile | *[\\/]compile | ccache | *[\\/]ccache ) ;; distcc | *[\\/]distcc | purify | *[\\/]purify ) ;; \-*) ;; *) break;; esac done func_cc_basename_result=`$ECHO "$cc_temp" | $SED "s%.*/%%; s%^$host_alias-%%"` } # Check whether --enable-libtool-lock was given. if test "${enable_libtool_lock+set}" = set; then : enableval=$enable_libtool_lock; fi test no = "$enable_libtool_lock" || enable_libtool_lock=yes # Some flags need to be propagated to the compiler or linker for good # libtool support. case $host in ia64-*-hpux*) # Find out what ABI is being produced by ac_compile, and set mode # options accordingly. echo 'int i;' > conftest.$ac_ext if { { eval echo "\"\$as_me\":${as_lineno-$LINENO}: \"$ac_compile\""; } >&5 (eval $ac_compile) 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then case `/usr/bin/file conftest.$ac_objext` in *ELF-32*) HPUX_IA64_MODE=32 ;; *ELF-64*) HPUX_IA64_MODE=64 ;; esac fi rm -rf conftest* ;; *-*-irix6*) # Find out what ABI is being produced by ac_compile, and set linker # options accordingly. echo '#line '$LINENO' "configure"' > conftest.$ac_ext if { { eval echo "\"\$as_me\":${as_lineno-$LINENO}: \"$ac_compile\""; } >&5 (eval $ac_compile) 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then if test yes = "$lt_cv_prog_gnu_ld"; then case `/usr/bin/file conftest.$ac_objext` in *32-bit*) LD="${LD-ld} -melf32bsmip" ;; *N32*) LD="${LD-ld} -melf32bmipn32" ;; *64-bit*) LD="${LD-ld} -melf64bmip" ;; esac else case `/usr/bin/file conftest.$ac_objext` in *32-bit*) LD="${LD-ld} -32" ;; *N32*) LD="${LD-ld} -n32" ;; *64-bit*) LD="${LD-ld} -64" ;; esac fi fi rm -rf conftest* ;; mips64*-*linux*) # Find out what ABI is being produced by ac_compile, and set linker # options accordingly. echo '#line '$LINENO' "configure"' > conftest.$ac_ext if { { eval echo "\"\$as_me\":${as_lineno-$LINENO}: \"$ac_compile\""; } >&5 (eval $ac_compile) 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then emul=elf case `/usr/bin/file conftest.$ac_objext` in *32-bit*) emul="${emul}32" ;; *64-bit*) emul="${emul}64" ;; esac case `/usr/bin/file conftest.$ac_objext` in *MSB*) emul="${emul}btsmip" ;; *LSB*) emul="${emul}ltsmip" ;; esac case `/usr/bin/file conftest.$ac_objext` in *N32*) emul="${emul}n32" ;; esac LD="${LD-ld} -m $emul" fi rm -rf conftest* ;; x86_64-*kfreebsd*-gnu|x86_64-*linux*|powerpc*-*linux*| \ s390*-*linux*|s390*-*tpf*|sparc*-*linux*) # Find out what ABI is being produced by ac_compile, and set linker # options accordingly. Note that the listed cases only cover the # situations where additional linker options are needed (such as when # doing 32-bit compilation for a host where ld defaults to 64-bit, or # vice versa); the common cases where no linker options are needed do # not appear in the list. echo 'int i;' > conftest.$ac_ext if { { eval echo "\"\$as_me\":${as_lineno-$LINENO}: \"$ac_compile\""; } >&5 (eval $ac_compile) 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then case `/usr/bin/file conftest.o` in *32-bit*) case $host in x86_64-*kfreebsd*-gnu) LD="${LD-ld} -m elf_i386_fbsd" ;; x86_64-*linux*) case `/usr/bin/file conftest.o` in *x86-64*) LD="${LD-ld} -m elf32_x86_64" ;; *) LD="${LD-ld} -m elf_i386" ;; esac ;; powerpc64le-*linux*) LD="${LD-ld} -m elf32lppclinux" ;; powerpc64-*linux*) LD="${LD-ld} -m elf32ppclinux" ;; s390x-*linux*) LD="${LD-ld} -m elf_s390" ;; sparc64-*linux*) LD="${LD-ld} -m elf32_sparc" ;; esac ;; *64-bit*) case $host in x86_64-*kfreebsd*-gnu) LD="${LD-ld} -m elf_x86_64_fbsd" ;; x86_64-*linux*) LD="${LD-ld} -m elf_x86_64" ;; powerpcle-*linux*) LD="${LD-ld} -m elf64lppc" ;; powerpc-*linux*) LD="${LD-ld} -m elf64ppc" ;; s390*-*linux*|s390*-*tpf*) LD="${LD-ld} -m elf64_s390" ;; sparc*-*linux*) LD="${LD-ld} -m elf64_sparc" ;; esac ;; esac fi rm -rf conftest* ;; *-*-sco3.2v5*) # On SCO OpenServer 5, we need -belf to get full-featured binaries. SAVE_CFLAGS=$CFLAGS CFLAGS="$CFLAGS -belf" { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether the C compiler needs -belf" >&5 $as_echo_n "checking whether the C compiler needs -belf... " >&6; } if ${lt_cv_cc_needs_belf+:} false; then : $as_echo_n "(cached) " >&6 else ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : lt_cv_cc_needs_belf=yes else lt_cv_cc_needs_belf=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_cc_needs_belf" >&5 $as_echo "$lt_cv_cc_needs_belf" >&6; } if test yes != "$lt_cv_cc_needs_belf"; then # this is probably gcc 2.8.0, egcs 1.0 or newer; no need for -belf CFLAGS=$SAVE_CFLAGS fi ;; *-*solaris*) # Find out what ABI is being produced by ac_compile, and set linker # options accordingly. echo 'int i;' > conftest.$ac_ext if { { eval echo "\"\$as_me\":${as_lineno-$LINENO}: \"$ac_compile\""; } >&5 (eval $ac_compile) 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then case `/usr/bin/file conftest.o` in *64-bit*) case $lt_cv_prog_gnu_ld in yes*) case $host in i?86-*-solaris*|x86_64-*-solaris*) LD="${LD-ld} -m elf_x86_64" ;; sparc*-*-solaris*) LD="${LD-ld} -m elf64_sparc" ;; esac # GNU ld 2.21 introduced _sol2 emulations. Use them if available. if ${LD-ld} -V | grep _sol2 >/dev/null 2>&1; then LD=${LD-ld}_sol2 fi ;; *) if ${LD-ld} -64 -r -o conftest2.o conftest.o >/dev/null 2>&1; then LD="${LD-ld} -64" fi ;; esac ;; esac fi rm -rf conftest* ;; esac need_locks=$enable_libtool_lock if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}mt", so it can be a program name with args. set dummy ${ac_tool_prefix}mt; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_MANIFEST_TOOL+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$MANIFEST_TOOL"; then ac_cv_prog_MANIFEST_TOOL="$MANIFEST_TOOL" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_MANIFEST_TOOL="${ac_tool_prefix}mt" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi MANIFEST_TOOL=$ac_cv_prog_MANIFEST_TOOL if test -n "$MANIFEST_TOOL"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $MANIFEST_TOOL" >&5 $as_echo "$MANIFEST_TOOL" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_prog_MANIFEST_TOOL"; then ac_ct_MANIFEST_TOOL=$MANIFEST_TOOL # Extract the first word of "mt", so it can be a program name with args. set dummy mt; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_MANIFEST_TOOL+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_MANIFEST_TOOL"; then ac_cv_prog_ac_ct_MANIFEST_TOOL="$ac_ct_MANIFEST_TOOL" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_MANIFEST_TOOL="mt" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_MANIFEST_TOOL=$ac_cv_prog_ac_ct_MANIFEST_TOOL if test -n "$ac_ct_MANIFEST_TOOL"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_MANIFEST_TOOL" >&5 $as_echo "$ac_ct_MANIFEST_TOOL" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_ct_MANIFEST_TOOL" = x; then MANIFEST_TOOL=":" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac MANIFEST_TOOL=$ac_ct_MANIFEST_TOOL fi else MANIFEST_TOOL="$ac_cv_prog_MANIFEST_TOOL" fi test -z "$MANIFEST_TOOL" && MANIFEST_TOOL=mt { $as_echo "$as_me:${as_lineno-$LINENO}: checking if $MANIFEST_TOOL is a manifest tool" >&5 $as_echo_n "checking if $MANIFEST_TOOL is a manifest tool... " >&6; } if ${lt_cv_path_mainfest_tool+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_path_mainfest_tool=no echo "$as_me:$LINENO: $MANIFEST_TOOL '-?'" >&5 $MANIFEST_TOOL '-?' 2>conftest.err > conftest.out cat conftest.err >&5 if $GREP 'Manifest Tool' conftest.out > /dev/null; then lt_cv_path_mainfest_tool=yes fi rm -f conftest* fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_path_mainfest_tool" >&5 $as_echo "$lt_cv_path_mainfest_tool" >&6; } if test yes != "$lt_cv_path_mainfest_tool"; then MANIFEST_TOOL=: fi case $host_os in rhapsody* | darwin*) if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}dsymutil", so it can be a program name with args. set dummy ${ac_tool_prefix}dsymutil; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_DSYMUTIL+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$DSYMUTIL"; then ac_cv_prog_DSYMUTIL="$DSYMUTIL" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_DSYMUTIL="${ac_tool_prefix}dsymutil" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi DSYMUTIL=$ac_cv_prog_DSYMUTIL if test -n "$DSYMUTIL"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $DSYMUTIL" >&5 $as_echo "$DSYMUTIL" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_prog_DSYMUTIL"; then ac_ct_DSYMUTIL=$DSYMUTIL # Extract the first word of "dsymutil", so it can be a program name with args. set dummy dsymutil; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_DSYMUTIL+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_DSYMUTIL"; then ac_cv_prog_ac_ct_DSYMUTIL="$ac_ct_DSYMUTIL" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_DSYMUTIL="dsymutil" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_DSYMUTIL=$ac_cv_prog_ac_ct_DSYMUTIL if test -n "$ac_ct_DSYMUTIL"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_DSYMUTIL" >&5 $as_echo "$ac_ct_DSYMUTIL" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_ct_DSYMUTIL" = x; then DSYMUTIL=":" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac DSYMUTIL=$ac_ct_DSYMUTIL fi else DSYMUTIL="$ac_cv_prog_DSYMUTIL" fi if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}nmedit", so it can be a program name with args. set dummy ${ac_tool_prefix}nmedit; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_NMEDIT+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$NMEDIT"; then ac_cv_prog_NMEDIT="$NMEDIT" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_NMEDIT="${ac_tool_prefix}nmedit" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi NMEDIT=$ac_cv_prog_NMEDIT if test -n "$NMEDIT"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $NMEDIT" >&5 $as_echo "$NMEDIT" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_prog_NMEDIT"; then ac_ct_NMEDIT=$NMEDIT # Extract the first word of "nmedit", so it can be a program name with args. set dummy nmedit; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_NMEDIT+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_NMEDIT"; then ac_cv_prog_ac_ct_NMEDIT="$ac_ct_NMEDIT" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_NMEDIT="nmedit" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_NMEDIT=$ac_cv_prog_ac_ct_NMEDIT if test -n "$ac_ct_NMEDIT"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_NMEDIT" >&5 $as_echo "$ac_ct_NMEDIT" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_ct_NMEDIT" = x; then NMEDIT=":" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac NMEDIT=$ac_ct_NMEDIT fi else NMEDIT="$ac_cv_prog_NMEDIT" fi if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}lipo", so it can be a program name with args. set dummy ${ac_tool_prefix}lipo; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_LIPO+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$LIPO"; then ac_cv_prog_LIPO="$LIPO" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_LIPO="${ac_tool_prefix}lipo" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi LIPO=$ac_cv_prog_LIPO if test -n "$LIPO"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $LIPO" >&5 $as_echo "$LIPO" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_prog_LIPO"; then ac_ct_LIPO=$LIPO # Extract the first word of "lipo", so it can be a program name with args. set dummy lipo; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_LIPO+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_LIPO"; then ac_cv_prog_ac_ct_LIPO="$ac_ct_LIPO" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_LIPO="lipo" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_LIPO=$ac_cv_prog_ac_ct_LIPO if test -n "$ac_ct_LIPO"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_LIPO" >&5 $as_echo "$ac_ct_LIPO" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_ct_LIPO" = x; then LIPO=":" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac LIPO=$ac_ct_LIPO fi else LIPO="$ac_cv_prog_LIPO" fi if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}otool", so it can be a program name with args. set dummy ${ac_tool_prefix}otool; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_OTOOL+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$OTOOL"; then ac_cv_prog_OTOOL="$OTOOL" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_OTOOL="${ac_tool_prefix}otool" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi OTOOL=$ac_cv_prog_OTOOL if test -n "$OTOOL"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $OTOOL" >&5 $as_echo "$OTOOL" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_prog_OTOOL"; then ac_ct_OTOOL=$OTOOL # Extract the first word of "otool", so it can be a program name with args. set dummy otool; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_OTOOL+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_OTOOL"; then ac_cv_prog_ac_ct_OTOOL="$ac_ct_OTOOL" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_OTOOL="otool" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_OTOOL=$ac_cv_prog_ac_ct_OTOOL if test -n "$ac_ct_OTOOL"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_OTOOL" >&5 $as_echo "$ac_ct_OTOOL" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_ct_OTOOL" = x; then OTOOL=":" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac OTOOL=$ac_ct_OTOOL fi else OTOOL="$ac_cv_prog_OTOOL" fi if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}otool64", so it can be a program name with args. set dummy ${ac_tool_prefix}otool64; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_OTOOL64+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$OTOOL64"; then ac_cv_prog_OTOOL64="$OTOOL64" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_OTOOL64="${ac_tool_prefix}otool64" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi OTOOL64=$ac_cv_prog_OTOOL64 if test -n "$OTOOL64"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $OTOOL64" >&5 $as_echo "$OTOOL64" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_prog_OTOOL64"; then ac_ct_OTOOL64=$OTOOL64 # Extract the first word of "otool64", so it can be a program name with args. set dummy otool64; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_OTOOL64+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_OTOOL64"; then ac_cv_prog_ac_ct_OTOOL64="$ac_ct_OTOOL64" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_OTOOL64="otool64" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_OTOOL64=$ac_cv_prog_ac_ct_OTOOL64 if test -n "$ac_ct_OTOOL64"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_OTOOL64" >&5 $as_echo "$ac_ct_OTOOL64" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_ct_OTOOL64" = x; then OTOOL64=":" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac OTOOL64=$ac_ct_OTOOL64 fi else OTOOL64="$ac_cv_prog_OTOOL64" fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking for -single_module linker flag" >&5 $as_echo_n "checking for -single_module linker flag... " >&6; } if ${lt_cv_apple_cc_single_mod+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_apple_cc_single_mod=no if test -z "$LT_MULTI_MODULE"; then # By default we will add the -single_module flag. You can override # by either setting the environment variable LT_MULTI_MODULE # non-empty at configure time, or by adding -multi_module to the # link flags. rm -rf libconftest.dylib* echo "int foo(void){return 1;}" > conftest.c echo "$LTCC $LTCFLAGS $LDFLAGS -o libconftest.dylib \ -dynamiclib -Wl,-single_module conftest.c" >&5 $LTCC $LTCFLAGS $LDFLAGS -o libconftest.dylib \ -dynamiclib -Wl,-single_module conftest.c 2>conftest.err _lt_result=$? # If there is a non-empty error log, and "single_module" # appears in it, assume the flag caused a linker warning if test -s conftest.err && $GREP single_module conftest.err; then cat conftest.err >&5 # Otherwise, if the output was created with a 0 exit code from # the compiler, it worked. elif test -f libconftest.dylib && test 0 = "$_lt_result"; then lt_cv_apple_cc_single_mod=yes else cat conftest.err >&5 fi rm -rf libconftest.dylib* rm -f conftest.* fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_apple_cc_single_mod" >&5 $as_echo "$lt_cv_apple_cc_single_mod" >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: checking for -exported_symbols_list linker flag" >&5 $as_echo_n "checking for -exported_symbols_list linker flag... " >&6; } if ${lt_cv_ld_exported_symbols_list+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_ld_exported_symbols_list=no save_LDFLAGS=$LDFLAGS echo "_main" > conftest.sym LDFLAGS="$LDFLAGS -Wl,-exported_symbols_list,conftest.sym" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : lt_cv_ld_exported_symbols_list=yes else lt_cv_ld_exported_symbols_list=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LDFLAGS=$save_LDFLAGS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_ld_exported_symbols_list" >&5 $as_echo "$lt_cv_ld_exported_symbols_list" >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: checking for -force_load linker flag" >&5 $as_echo_n "checking for -force_load linker flag... " >&6; } if ${lt_cv_ld_force_load+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_ld_force_load=no cat > conftest.c << _LT_EOF int forced_loaded() { return 2;} _LT_EOF echo "$LTCC $LTCFLAGS -c -o conftest.o conftest.c" >&5 $LTCC $LTCFLAGS -c -o conftest.o conftest.c 2>&5 echo "$AR cru libconftest.a conftest.o" >&5 $AR cru libconftest.a conftest.o 2>&5 echo "$RANLIB libconftest.a" >&5 $RANLIB libconftest.a 2>&5 cat > conftest.c << _LT_EOF int main() { return 0;} _LT_EOF echo "$LTCC $LTCFLAGS $LDFLAGS -o conftest conftest.c -Wl,-force_load,./libconftest.a" >&5 $LTCC $LTCFLAGS $LDFLAGS -o conftest conftest.c -Wl,-force_load,./libconftest.a 2>conftest.err _lt_result=$? if test -s conftest.err && $GREP force_load conftest.err; then cat conftest.err >&5 elif test -f conftest && test 0 = "$_lt_result" && $GREP forced_load conftest >/dev/null 2>&1; then lt_cv_ld_force_load=yes else cat conftest.err >&5 fi rm -f conftest.err libconftest.a conftest conftest.c rm -rf conftest.dSYM fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_ld_force_load" >&5 $as_echo "$lt_cv_ld_force_load" >&6; } case $host_os in rhapsody* | darwin1.[012]) _lt_dar_allow_undefined='$wl-undefined ${wl}suppress' ;; darwin1.*) _lt_dar_allow_undefined='$wl-flat_namespace $wl-undefined ${wl}suppress' ;; darwin*) # darwin 5.x on # if running on 10.5 or later, the deployment target defaults # to the OS version, if on x86, and 10.4, the deployment # target defaults to 10.4. Don't you love it? case ${MACOSX_DEPLOYMENT_TARGET-10.0},$host in 10.0,*86*-darwin8*|10.0,*-darwin[91]*) _lt_dar_allow_undefined='$wl-undefined ${wl}dynamic_lookup' ;; 10.[012][,.]*) _lt_dar_allow_undefined='$wl-flat_namespace $wl-undefined ${wl}suppress' ;; 10.*) _lt_dar_allow_undefined='$wl-undefined ${wl}dynamic_lookup' ;; esac ;; esac if test yes = "$lt_cv_apple_cc_single_mod"; then _lt_dar_single_mod='$single_module' fi if test yes = "$lt_cv_ld_exported_symbols_list"; then _lt_dar_export_syms=' $wl-exported_symbols_list,$output_objdir/$libname-symbols.expsym' else _lt_dar_export_syms='~$NMEDIT -s $output_objdir/$libname-symbols.expsym $lib' fi if test : != "$DSYMUTIL" && test no = "$lt_cv_ld_force_load"; then _lt_dsymutil='~$DSYMUTIL $lib || :' else _lt_dsymutil= fi ;; esac # func_munge_path_list VARIABLE PATH # ----------------------------------- # VARIABLE is name of variable containing _space_ separated list of # directories to be munged by the contents of PATH, which is string # having a format: # "DIR[:DIR]:" # string "DIR[ DIR]" will be prepended to VARIABLE # ":DIR[:DIR]" # string "DIR[ DIR]" will be appended to VARIABLE # "DIRP[:DIRP]::[DIRA:]DIRA" # string "DIRP[ DIRP]" will be prepended to VARIABLE and string # "DIRA[ DIRA]" will be appended to VARIABLE # "DIR[:DIR]" # VARIABLE will be replaced by "DIR[ DIR]" func_munge_path_list () { case x$2 in x) ;; *:) eval $1=\"`$ECHO $2 | $SED 's/:/ /g'` \$$1\" ;; x:*) eval $1=\"\$$1 `$ECHO $2 | $SED 's/:/ /g'`\" ;; *::*) eval $1=\"\$$1\ `$ECHO $2 | $SED -e 's/.*:://' -e 's/:/ /g'`\" eval $1=\"`$ECHO $2 | $SED -e 's/::.*//' -e 's/:/ /g'`\ \$$1\" ;; *) eval $1=\"`$ECHO $2 | $SED 's/:/ /g'`\" ;; esac } for ac_header in dlfcn.h do : ac_fn_c_check_header_compile "$LINENO" "dlfcn.h" "ac_cv_header_dlfcn_h" "$ac_includes_default " if test "x$ac_cv_header_dlfcn_h" = xyes; then : cat >>confdefs.h <<_ACEOF #define HAVE_DLFCN_H 1 _ACEOF fi done # Set options enable_dlopen=no enable_win32_dll=no # Check whether --with-pic was given. if test "${with_pic+set}" = set; then : withval=$with_pic; lt_p=${PACKAGE-default} case $withval in yes|no) pic_mode=$withval ;; *) pic_mode=default # Look at the argument we got. We use all the common list separators. lt_save_ifs=$IFS; IFS=$IFS$PATH_SEPARATOR, for lt_pkg in $withval; do IFS=$lt_save_ifs if test "X$lt_pkg" = "X$lt_p"; then pic_mode=yes fi done IFS=$lt_save_ifs ;; esac else pic_mode=default fi # Check whether --enable-fast-install was given. if test "${enable_fast_install+set}" = set; then : enableval=$enable_fast_install; p=${PACKAGE-default} case $enableval in yes) enable_fast_install=yes ;; no) enable_fast_install=no ;; *) enable_fast_install=no # Look at the argument we got. We use all the common list separators. lt_save_ifs=$IFS; IFS=$IFS$PATH_SEPARATOR, for pkg in $enableval; do IFS=$lt_save_ifs if test "X$pkg" = "X$p"; then enable_fast_install=yes fi done IFS=$lt_save_ifs ;; esac else enable_fast_install=yes fi shared_archive_member_spec= case $host,$enable_shared in power*-*-aix[5-9]*,yes) { $as_echo "$as_me:${as_lineno-$LINENO}: checking which variant of shared library versioning to provide" >&5 $as_echo_n "checking which variant of shared library versioning to provide... " >&6; } # Check whether --with-aix-soname was given. if test "${with_aix_soname+set}" = set; then : withval=$with_aix_soname; case $withval in aix|svr4|both) ;; *) as_fn_error $? "Unknown argument to --with-aix-soname" "$LINENO" 5 ;; esac lt_cv_with_aix_soname=$with_aix_soname else if ${lt_cv_with_aix_soname+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_with_aix_soname=aix fi with_aix_soname=$lt_cv_with_aix_soname fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $with_aix_soname" >&5 $as_echo "$with_aix_soname" >&6; } if test aix != "$with_aix_soname"; then # For the AIX way of multilib, we name the shared archive member # based on the bitwidth used, traditionally 'shr.o' or 'shr_64.o', # and 'shr.imp' or 'shr_64.imp', respectively, for the Import File. # Even when GNU compilers ignore OBJECT_MODE but need '-maix64' flag, # the AIX toolchain works better with OBJECT_MODE set (default 32). if test 64 = "${OBJECT_MODE-32}"; then shared_archive_member_spec=shr_64 else shared_archive_member_spec=shr fi fi ;; *) with_aix_soname=aix ;; esac # This can be used to rebuild libtool when needed LIBTOOL_DEPS=$ltmain # Always use our own libtool. LIBTOOL='$(SHELL) $(top_builddir)/libtool' test -z "$LN_S" && LN_S="ln -s" if test -n "${ZSH_VERSION+set}"; then setopt NO_GLOB_SUBST fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking for objdir" >&5 $as_echo_n "checking for objdir... " >&6; } if ${lt_cv_objdir+:} false; then : $as_echo_n "(cached) " >&6 else rm -f .libs 2>/dev/null mkdir .libs 2>/dev/null if test -d .libs; then lt_cv_objdir=.libs else # MS-DOS does not allow filenames that begin with a dot. lt_cv_objdir=_libs fi rmdir .libs 2>/dev/null fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_objdir" >&5 $as_echo "$lt_cv_objdir" >&6; } objdir=$lt_cv_objdir cat >>confdefs.h <<_ACEOF #define LT_OBJDIR "$lt_cv_objdir/" _ACEOF case $host_os in aix3*) # AIX sometimes has problems with the GCC collect2 program. For some # reason, if we set the COLLECT_NAMES environment variable, the problems # vanish in a puff of smoke. if test set != "${COLLECT_NAMES+set}"; then COLLECT_NAMES= export COLLECT_NAMES fi ;; esac # Global variables: ofile=libtool can_build_shared=yes # All known linkers require a '.a' archive for static linking (except MSVC, # which needs '.lib'). libext=a with_gnu_ld=$lt_cv_prog_gnu_ld old_CC=$CC old_CFLAGS=$CFLAGS # Set sane defaults for various variables test -z "$CC" && CC=cc test -z "$LTCC" && LTCC=$CC test -z "$LTCFLAGS" && LTCFLAGS=$CFLAGS test -z "$LD" && LD=ld test -z "$ac_objext" && ac_objext=o func_cc_basename $compiler cc_basename=$func_cc_basename_result # Only perform the check for file, if the check method requires it test -z "$MAGIC_CMD" && MAGIC_CMD=file case $deplibs_check_method in file_magic*) if test "$file_magic_cmd" = '$MAGIC_CMD'; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for ${ac_tool_prefix}file" >&5 $as_echo_n "checking for ${ac_tool_prefix}file... " >&6; } if ${lt_cv_path_MAGIC_CMD+:} false; then : $as_echo_n "(cached) " >&6 else case $MAGIC_CMD in [\\/*] | ?:[\\/]*) lt_cv_path_MAGIC_CMD=$MAGIC_CMD # Let the user override the test with a path. ;; *) lt_save_MAGIC_CMD=$MAGIC_CMD lt_save_ifs=$IFS; IFS=$PATH_SEPARATOR ac_dummy="/usr/bin$PATH_SEPARATOR$PATH" for ac_dir in $ac_dummy; do IFS=$lt_save_ifs test -z "$ac_dir" && ac_dir=. if test -f "$ac_dir/${ac_tool_prefix}file"; then lt_cv_path_MAGIC_CMD=$ac_dir/"${ac_tool_prefix}file" if test -n "$file_magic_test_file"; then case $deplibs_check_method in "file_magic "*) file_magic_regex=`expr "$deplibs_check_method" : "file_magic \(.*\)"` MAGIC_CMD=$lt_cv_path_MAGIC_CMD if eval $file_magic_cmd \$file_magic_test_file 2> /dev/null | $EGREP "$file_magic_regex" > /dev/null; then : else cat <<_LT_EOF 1>&2 *** Warning: the command libtool uses to detect shared libraries, *** $file_magic_cmd, produces output that libtool cannot recognize. *** The result is that libtool may fail to recognize shared libraries *** as such. This will affect the creation of libtool libraries that *** depend on shared libraries, but programs linked with such libtool *** libraries will work regardless of this problem. Nevertheless, you *** may want to report the problem to your system manager and/or to *** bug-libtool@gnu.org _LT_EOF fi ;; esac fi break fi done IFS=$lt_save_ifs MAGIC_CMD=$lt_save_MAGIC_CMD ;; esac fi MAGIC_CMD=$lt_cv_path_MAGIC_CMD if test -n "$MAGIC_CMD"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $MAGIC_CMD" >&5 $as_echo "$MAGIC_CMD" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test -z "$lt_cv_path_MAGIC_CMD"; then if test -n "$ac_tool_prefix"; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for file" >&5 $as_echo_n "checking for file... " >&6; } if ${lt_cv_path_MAGIC_CMD+:} false; then : $as_echo_n "(cached) " >&6 else case $MAGIC_CMD in [\\/*] | ?:[\\/]*) lt_cv_path_MAGIC_CMD=$MAGIC_CMD # Let the user override the test with a path. ;; *) lt_save_MAGIC_CMD=$MAGIC_CMD lt_save_ifs=$IFS; IFS=$PATH_SEPARATOR ac_dummy="/usr/bin$PATH_SEPARATOR$PATH" for ac_dir in $ac_dummy; do IFS=$lt_save_ifs test -z "$ac_dir" && ac_dir=. if test -f "$ac_dir/file"; then lt_cv_path_MAGIC_CMD=$ac_dir/"file" if test -n "$file_magic_test_file"; then case $deplibs_check_method in "file_magic "*) file_magic_regex=`expr "$deplibs_check_method" : "file_magic \(.*\)"` MAGIC_CMD=$lt_cv_path_MAGIC_CMD if eval $file_magic_cmd \$file_magic_test_file 2> /dev/null | $EGREP "$file_magic_regex" > /dev/null; then : else cat <<_LT_EOF 1>&2 *** Warning: the command libtool uses to detect shared libraries, *** $file_magic_cmd, produces output that libtool cannot recognize. *** The result is that libtool may fail to recognize shared libraries *** as such. This will affect the creation of libtool libraries that *** depend on shared libraries, but programs linked with such libtool *** libraries will work regardless of this problem. Nevertheless, you *** may want to report the problem to your system manager and/or to *** bug-libtool@gnu.org _LT_EOF fi ;; esac fi break fi done IFS=$lt_save_ifs MAGIC_CMD=$lt_save_MAGIC_CMD ;; esac fi MAGIC_CMD=$lt_cv_path_MAGIC_CMD if test -n "$MAGIC_CMD"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $MAGIC_CMD" >&5 $as_echo "$MAGIC_CMD" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi else MAGIC_CMD=: fi fi fi ;; esac # Use C for the default configuration in the libtool script lt_save_CC=$CC ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu # Source file extension for C test sources. ac_ext=c # Object file extension for compiled C test sources. objext=o objext=$objext # Code to be used in simple compile tests lt_simple_compile_test_code="int some_variable = 0;" # Code to be used in simple link tests lt_simple_link_test_code='int main(){return(0);}' # If no C compiler was specified, use CC. LTCC=${LTCC-"$CC"} # If no C compiler flags were specified, use CFLAGS. LTCFLAGS=${LTCFLAGS-"$CFLAGS"} # Allow CC to be a program name with arguments. compiler=$CC # Save the default compiler, since it gets overwritten when the other # tags are being tested, and _LT_TAGVAR(compiler, []) is a NOP. compiler_DEFAULT=$CC # save warnings/boilerplate of simple test code ac_outfile=conftest.$ac_objext echo "$lt_simple_compile_test_code" >conftest.$ac_ext eval "$ac_compile" 2>&1 >/dev/null | $SED '/^$/d; /^ *+/d' >conftest.err _lt_compiler_boilerplate=`cat conftest.err` $RM conftest* ac_outfile=conftest.$ac_objext echo "$lt_simple_link_test_code" >conftest.$ac_ext eval "$ac_link" 2>&1 >/dev/null | $SED '/^$/d; /^ *+/d' >conftest.err _lt_linker_boilerplate=`cat conftest.err` $RM -r conftest* ## CAVEAT EMPTOR: ## There is no encapsulation within the following macros, do not change ## the running order or otherwise move them around unless you know exactly ## what you are doing... if test -n "$compiler"; then lt_prog_compiler_no_builtin_flag= if test yes = "$GCC"; then case $cc_basename in nvcc*) lt_prog_compiler_no_builtin_flag=' -Xcompiler -fno-builtin' ;; *) lt_prog_compiler_no_builtin_flag=' -fno-builtin' ;; esac { $as_echo "$as_me:${as_lineno-$LINENO}: checking if $compiler supports -fno-rtti -fno-exceptions" >&5 $as_echo_n "checking if $compiler supports -fno-rtti -fno-exceptions... " >&6; } if ${lt_cv_prog_compiler_rtti_exceptions+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_prog_compiler_rtti_exceptions=no ac_outfile=conftest.$ac_objext echo "$lt_simple_compile_test_code" > conftest.$ac_ext lt_compiler_flag="-fno-rtti -fno-exceptions" ## exclude from sc_useless_quotes_in_assignment # Insert the option either (1) after the last *FLAGS variable, or # (2) before a word containing "conftest.", or (3) at the end. # Note that $ac_compile itself does not contain backslashes and begins # with a dollar sign (not a hyphen), so the echo should work correctly. # The option is referenced via a variable to avoid confusing sed. lt_compile=`echo "$ac_compile" | $SED \ -e 's:.*FLAGS}\{0,1\} :&$lt_compiler_flag :; t' \ -e 's: [^ ]*conftest\.: $lt_compiler_flag&:; t' \ -e 's:$: $lt_compiler_flag:'` (eval echo "\"\$as_me:$LINENO: $lt_compile\"" >&5) (eval "$lt_compile" 2>conftest.err) ac_status=$? cat conftest.err >&5 echo "$as_me:$LINENO: \$? = $ac_status" >&5 if (exit $ac_status) && test -s "$ac_outfile"; then # The compiler can only warn and ignore the option if not recognized # So say no if there are warnings other than the usual output. $ECHO "$_lt_compiler_boilerplate" | $SED '/^$/d' >conftest.exp $SED '/^$/d; /^ *+/d' conftest.err >conftest.er2 if test ! -s conftest.er2 || diff conftest.exp conftest.er2 >/dev/null; then lt_cv_prog_compiler_rtti_exceptions=yes fi fi $RM conftest* fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_prog_compiler_rtti_exceptions" >&5 $as_echo "$lt_cv_prog_compiler_rtti_exceptions" >&6; } if test yes = "$lt_cv_prog_compiler_rtti_exceptions"; then lt_prog_compiler_no_builtin_flag="$lt_prog_compiler_no_builtin_flag -fno-rtti -fno-exceptions" else : fi fi lt_prog_compiler_wl= lt_prog_compiler_pic= lt_prog_compiler_static= if test yes = "$GCC"; then lt_prog_compiler_wl='-Wl,' lt_prog_compiler_static='-static' case $host_os in aix*) # All AIX code is PIC. if test ia64 = "$host_cpu"; then # AIX 5 now supports IA64 processor lt_prog_compiler_static='-Bstatic' fi lt_prog_compiler_pic='-fPIC' ;; amigaos*) case $host_cpu in powerpc) # see comment about AmigaOS4 .so support lt_prog_compiler_pic='-fPIC' ;; m68k) # FIXME: we need at least 68020 code to build shared libraries, but # adding the '-m68020' flag to GCC prevents building anything better, # like '-m68040'. lt_prog_compiler_pic='-m68020 -resident32 -malways-restore-a4' ;; esac ;; beos* | irix5* | irix6* | nonstopux* | osf3* | osf4* | osf5*) # PIC is the default for these OSes. ;; mingw* | cygwin* | pw32* | os2* | cegcc*) # This hack is so that the source file can tell whether it is being # built for inclusion in a dll (and should export symbols for example). # Although the cygwin gcc ignores -fPIC, still need this for old-style # (--disable-auto-import) libraries lt_prog_compiler_pic='-DDLL_EXPORT' case $host_os in os2*) lt_prog_compiler_static='$wl-static' ;; esac ;; darwin* | rhapsody*) # PIC is the default on this platform # Common symbols not allowed in MH_DYLIB files lt_prog_compiler_pic='-fno-common' ;; haiku*) # PIC is the default for Haiku. # The "-static" flag exists, but is broken. lt_prog_compiler_static= ;; hpux*) # PIC is the default for 64-bit PA HP-UX, but not for 32-bit # PA HP-UX. On IA64 HP-UX, PIC is the default but the pic flag # sets the default TLS model and affects inlining. case $host_cpu in hppa*64*) # +Z the default ;; *) lt_prog_compiler_pic='-fPIC' ;; esac ;; interix[3-9]*) # Interix 3.x gcc -fpic/-fPIC options generate broken code. # Instead, we relocate shared libraries at runtime. ;; msdosdjgpp*) # Just because we use GCC doesn't mean we suddenly get shared libraries # on systems that don't support them. lt_prog_compiler_can_build_shared=no enable_shared=no ;; *nto* | *qnx*) # QNX uses GNU C++, but need to define -shared option too, otherwise # it will coredump. lt_prog_compiler_pic='-fPIC -shared' ;; sysv4*MP*) if test -d /usr/nec; then lt_prog_compiler_pic=-Kconform_pic fi ;; *) lt_prog_compiler_pic='-fPIC' ;; esac case $cc_basename in nvcc*) # Cuda Compiler Driver 2.2 lt_prog_compiler_wl='-Xlinker ' if test -n "$lt_prog_compiler_pic"; then lt_prog_compiler_pic="-Xcompiler $lt_prog_compiler_pic" fi ;; esac else # PORTME Check for flag to pass linker flags through the system compiler. case $host_os in aix*) lt_prog_compiler_wl='-Wl,' if test ia64 = "$host_cpu"; then # AIX 5 now supports IA64 processor lt_prog_compiler_static='-Bstatic' else lt_prog_compiler_static='-bnso -bI:/lib/syscalls.exp' fi ;; darwin* | rhapsody*) # PIC is the default on this platform # Common symbols not allowed in MH_DYLIB files lt_prog_compiler_pic='-fno-common' case $cc_basename in nagfor*) # NAG Fortran compiler lt_prog_compiler_wl='-Wl,-Wl,,' lt_prog_compiler_pic='-PIC' lt_prog_compiler_static='-Bstatic' ;; esac ;; mingw* | cygwin* | pw32* | os2* | cegcc*) # This hack is so that the source file can tell whether it is being # built for inclusion in a dll (and should export symbols for example). lt_prog_compiler_pic='-DDLL_EXPORT' case $host_os in os2*) lt_prog_compiler_static='$wl-static' ;; esac ;; hpux9* | hpux10* | hpux11*) lt_prog_compiler_wl='-Wl,' # PIC is the default for IA64 HP-UX and 64-bit HP-UX, but # not for PA HP-UX. case $host_cpu in hppa*64*|ia64*) # +Z the default ;; *) lt_prog_compiler_pic='+Z' ;; esac # Is there a better lt_prog_compiler_static that works with the bundled CC? lt_prog_compiler_static='$wl-a ${wl}archive' ;; irix5* | irix6* | nonstopux*) lt_prog_compiler_wl='-Wl,' # PIC (with -KPIC) is the default. lt_prog_compiler_static='-non_shared' ;; linux* | k*bsd*-gnu | kopensolaris*-gnu | gnu*) case $cc_basename in # old Intel for x86_64, which still supported -KPIC. ecc*) lt_prog_compiler_wl='-Wl,' lt_prog_compiler_pic='-KPIC' lt_prog_compiler_static='-static' ;; # icc used to be incompatible with GCC. # ICC 10 doesn't accept -KPIC any more. icc* | ifort*) lt_prog_compiler_wl='-Wl,' lt_prog_compiler_pic='-fPIC' lt_prog_compiler_static='-static' ;; # Lahey Fortran 8.1. lf95*) lt_prog_compiler_wl='-Wl,' lt_prog_compiler_pic='--shared' lt_prog_compiler_static='--static' ;; nagfor*) # NAG Fortran compiler lt_prog_compiler_wl='-Wl,-Wl,,' lt_prog_compiler_pic='-PIC' lt_prog_compiler_static='-Bstatic' ;; tcc*) # Fabrice Bellard et al's Tiny C Compiler lt_prog_compiler_wl='-Wl,' lt_prog_compiler_pic='-fPIC' lt_prog_compiler_static='-static' ;; pgcc* | pgf77* | pgf90* | pgf95* | pgfortran*) # Portland Group compilers (*not* the Pentium gcc compiler, # which looks to be a dead project) lt_prog_compiler_wl='-Wl,' lt_prog_compiler_pic='-fpic' lt_prog_compiler_static='-Bstatic' ;; ccc*) lt_prog_compiler_wl='-Wl,' # All Alpha code is PIC. lt_prog_compiler_static='-non_shared' ;; xl* | bgxl* | bgf* | mpixl*) # IBM XL C 8.0/Fortran 10.1, 11.1 on PPC and BlueGene lt_prog_compiler_wl='-Wl,' lt_prog_compiler_pic='-qpic' lt_prog_compiler_static='-qstaticlink' ;; *) case `$CC -V 2>&1 | sed 5q` in *Sun\ Ceres\ Fortran* | *Sun*Fortran*\ [1-7].* | *Sun*Fortran*\ 8.[0-3]*) # Sun Fortran 8.3 passes all unrecognized flags to the linker lt_prog_compiler_pic='-KPIC' lt_prog_compiler_static='-Bstatic' lt_prog_compiler_wl='' ;; *Sun\ F* | *Sun*Fortran*) lt_prog_compiler_pic='-KPIC' lt_prog_compiler_static='-Bstatic' lt_prog_compiler_wl='-Qoption ld ' ;; *Sun\ C*) # Sun C 5.9 lt_prog_compiler_pic='-KPIC' lt_prog_compiler_static='-Bstatic' lt_prog_compiler_wl='-Wl,' ;; *Intel*\ [CF]*Compiler*) lt_prog_compiler_wl='-Wl,' lt_prog_compiler_pic='-fPIC' lt_prog_compiler_static='-static' ;; *Portland\ Group*) lt_prog_compiler_wl='-Wl,' lt_prog_compiler_pic='-fpic' lt_prog_compiler_static='-Bstatic' ;; esac ;; esac ;; newsos6) lt_prog_compiler_pic='-KPIC' lt_prog_compiler_static='-Bstatic' ;; *nto* | *qnx*) # QNX uses GNU C++, but need to define -shared option too, otherwise # it will coredump. lt_prog_compiler_pic='-fPIC -shared' ;; osf3* | osf4* | osf5*) lt_prog_compiler_wl='-Wl,' # All OSF/1 code is PIC. lt_prog_compiler_static='-non_shared' ;; rdos*) lt_prog_compiler_static='-non_shared' ;; solaris*) lt_prog_compiler_pic='-KPIC' lt_prog_compiler_static='-Bstatic' case $cc_basename in f77* | f90* | f95* | sunf77* | sunf90* | sunf95*) lt_prog_compiler_wl='-Qoption ld ';; *) lt_prog_compiler_wl='-Wl,';; esac ;; sunos4*) lt_prog_compiler_wl='-Qoption ld ' lt_prog_compiler_pic='-PIC' lt_prog_compiler_static='-Bstatic' ;; sysv4 | sysv4.2uw2* | sysv4.3*) lt_prog_compiler_wl='-Wl,' lt_prog_compiler_pic='-KPIC' lt_prog_compiler_static='-Bstatic' ;; sysv4*MP*) if test -d /usr/nec; then lt_prog_compiler_pic='-Kconform_pic' lt_prog_compiler_static='-Bstatic' fi ;; sysv5* | unixware* | sco3.2v5* | sco5v6* | OpenUNIX*) lt_prog_compiler_wl='-Wl,' lt_prog_compiler_pic='-KPIC' lt_prog_compiler_static='-Bstatic' ;; unicos*) lt_prog_compiler_wl='-Wl,' lt_prog_compiler_can_build_shared=no ;; uts4*) lt_prog_compiler_pic='-pic' lt_prog_compiler_static='-Bstatic' ;; *) lt_prog_compiler_can_build_shared=no ;; esac fi case $host_os in # For platforms that do not support PIC, -DPIC is meaningless: *djgpp*) lt_prog_compiler_pic= ;; *) lt_prog_compiler_pic="$lt_prog_compiler_pic -DPIC" ;; esac { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $compiler option to produce PIC" >&5 $as_echo_n "checking for $compiler option to produce PIC... " >&6; } if ${lt_cv_prog_compiler_pic+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_prog_compiler_pic=$lt_prog_compiler_pic fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_prog_compiler_pic" >&5 $as_echo "$lt_cv_prog_compiler_pic" >&6; } lt_prog_compiler_pic=$lt_cv_prog_compiler_pic # # Check to make sure the PIC flag actually works. # if test -n "$lt_prog_compiler_pic"; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking if $compiler PIC flag $lt_prog_compiler_pic works" >&5 $as_echo_n "checking if $compiler PIC flag $lt_prog_compiler_pic works... " >&6; } if ${lt_cv_prog_compiler_pic_works+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_prog_compiler_pic_works=no ac_outfile=conftest.$ac_objext echo "$lt_simple_compile_test_code" > conftest.$ac_ext lt_compiler_flag="$lt_prog_compiler_pic -DPIC" ## exclude from sc_useless_quotes_in_assignment # Insert the option either (1) after the last *FLAGS variable, or # (2) before a word containing "conftest.", or (3) at the end. # Note that $ac_compile itself does not contain backslashes and begins # with a dollar sign (not a hyphen), so the echo should work correctly. # The option is referenced via a variable to avoid confusing sed. lt_compile=`echo "$ac_compile" | $SED \ -e 's:.*FLAGS}\{0,1\} :&$lt_compiler_flag :; t' \ -e 's: [^ ]*conftest\.: $lt_compiler_flag&:; t' \ -e 's:$: $lt_compiler_flag:'` (eval echo "\"\$as_me:$LINENO: $lt_compile\"" >&5) (eval "$lt_compile" 2>conftest.err) ac_status=$? cat conftest.err >&5 echo "$as_me:$LINENO: \$? = $ac_status" >&5 if (exit $ac_status) && test -s "$ac_outfile"; then # The compiler can only warn and ignore the option if not recognized # So say no if there are warnings other than the usual output. $ECHO "$_lt_compiler_boilerplate" | $SED '/^$/d' >conftest.exp $SED '/^$/d; /^ *+/d' conftest.err >conftest.er2 if test ! -s conftest.er2 || diff conftest.exp conftest.er2 >/dev/null; then lt_cv_prog_compiler_pic_works=yes fi fi $RM conftest* fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_prog_compiler_pic_works" >&5 $as_echo "$lt_cv_prog_compiler_pic_works" >&6; } if test yes = "$lt_cv_prog_compiler_pic_works"; then case $lt_prog_compiler_pic in "" | " "*) ;; *) lt_prog_compiler_pic=" $lt_prog_compiler_pic" ;; esac else lt_prog_compiler_pic= lt_prog_compiler_can_build_shared=no fi fi # # Check to make sure the static flag actually works. # wl=$lt_prog_compiler_wl eval lt_tmp_static_flag=\"$lt_prog_compiler_static\" { $as_echo "$as_me:${as_lineno-$LINENO}: checking if $compiler static flag $lt_tmp_static_flag works" >&5 $as_echo_n "checking if $compiler static flag $lt_tmp_static_flag works... " >&6; } if ${lt_cv_prog_compiler_static_works+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_prog_compiler_static_works=no save_LDFLAGS=$LDFLAGS LDFLAGS="$LDFLAGS $lt_tmp_static_flag" echo "$lt_simple_link_test_code" > conftest.$ac_ext if (eval $ac_link 2>conftest.err) && test -s conftest$ac_exeext; then # The linker can only warn and ignore the option if not recognized # So say no if there are warnings if test -s conftest.err; then # Append any errors to the config.log. cat conftest.err 1>&5 $ECHO "$_lt_linker_boilerplate" | $SED '/^$/d' > conftest.exp $SED '/^$/d; /^ *+/d' conftest.err >conftest.er2 if diff conftest.exp conftest.er2 >/dev/null; then lt_cv_prog_compiler_static_works=yes fi else lt_cv_prog_compiler_static_works=yes fi fi $RM -r conftest* LDFLAGS=$save_LDFLAGS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_prog_compiler_static_works" >&5 $as_echo "$lt_cv_prog_compiler_static_works" >&6; } if test yes = "$lt_cv_prog_compiler_static_works"; then : else lt_prog_compiler_static= fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking if $compiler supports -c -o file.$ac_objext" >&5 $as_echo_n "checking if $compiler supports -c -o file.$ac_objext... " >&6; } if ${lt_cv_prog_compiler_c_o+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_prog_compiler_c_o=no $RM -r conftest 2>/dev/null mkdir conftest cd conftest mkdir out echo "$lt_simple_compile_test_code" > conftest.$ac_ext lt_compiler_flag="-o out/conftest2.$ac_objext" # Insert the option either (1) after the last *FLAGS variable, or # (2) before a word containing "conftest.", or (3) at the end. # Note that $ac_compile itself does not contain backslashes and begins # with a dollar sign (not a hyphen), so the echo should work correctly. lt_compile=`echo "$ac_compile" | $SED \ -e 's:.*FLAGS}\{0,1\} :&$lt_compiler_flag :; t' \ -e 's: [^ ]*conftest\.: $lt_compiler_flag&:; t' \ -e 's:$: $lt_compiler_flag:'` (eval echo "\"\$as_me:$LINENO: $lt_compile\"" >&5) (eval "$lt_compile" 2>out/conftest.err) ac_status=$? cat out/conftest.err >&5 echo "$as_me:$LINENO: \$? = $ac_status" >&5 if (exit $ac_status) && test -s out/conftest2.$ac_objext then # The compiler can only warn and ignore the option if not recognized # So say no if there are warnings $ECHO "$_lt_compiler_boilerplate" | $SED '/^$/d' > out/conftest.exp $SED '/^$/d; /^ *+/d' out/conftest.err >out/conftest.er2 if test ! -s out/conftest.er2 || diff out/conftest.exp out/conftest.er2 >/dev/null; then lt_cv_prog_compiler_c_o=yes fi fi chmod u+w . 2>&5 $RM conftest* # SGI C++ compiler will create directory out/ii_files/ for # template instantiation test -d out/ii_files && $RM out/ii_files/* && rmdir out/ii_files $RM out/* && rmdir out cd .. $RM -r conftest $RM conftest* fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_prog_compiler_c_o" >&5 $as_echo "$lt_cv_prog_compiler_c_o" >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: checking if $compiler supports -c -o file.$ac_objext" >&5 $as_echo_n "checking if $compiler supports -c -o file.$ac_objext... " >&6; } if ${lt_cv_prog_compiler_c_o+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_prog_compiler_c_o=no $RM -r conftest 2>/dev/null mkdir conftest cd conftest mkdir out echo "$lt_simple_compile_test_code" > conftest.$ac_ext lt_compiler_flag="-o out/conftest2.$ac_objext" # Insert the option either (1) after the last *FLAGS variable, or # (2) before a word containing "conftest.", or (3) at the end. # Note that $ac_compile itself does not contain backslashes and begins # with a dollar sign (not a hyphen), so the echo should work correctly. lt_compile=`echo "$ac_compile" | $SED \ -e 's:.*FLAGS}\{0,1\} :&$lt_compiler_flag :; t' \ -e 's: [^ ]*conftest\.: $lt_compiler_flag&:; t' \ -e 's:$: $lt_compiler_flag:'` (eval echo "\"\$as_me:$LINENO: $lt_compile\"" >&5) (eval "$lt_compile" 2>out/conftest.err) ac_status=$? cat out/conftest.err >&5 echo "$as_me:$LINENO: \$? = $ac_status" >&5 if (exit $ac_status) && test -s out/conftest2.$ac_objext then # The compiler can only warn and ignore the option if not recognized # So say no if there are warnings $ECHO "$_lt_compiler_boilerplate" | $SED '/^$/d' > out/conftest.exp $SED '/^$/d; /^ *+/d' out/conftest.err >out/conftest.er2 if test ! -s out/conftest.er2 || diff out/conftest.exp out/conftest.er2 >/dev/null; then lt_cv_prog_compiler_c_o=yes fi fi chmod u+w . 2>&5 $RM conftest* # SGI C++ compiler will create directory out/ii_files/ for # template instantiation test -d out/ii_files && $RM out/ii_files/* && rmdir out/ii_files $RM out/* && rmdir out cd .. $RM -r conftest $RM conftest* fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_prog_compiler_c_o" >&5 $as_echo "$lt_cv_prog_compiler_c_o" >&6; } hard_links=nottested if test no = "$lt_cv_prog_compiler_c_o" && test no != "$need_locks"; then # do not overwrite the value of need_locks provided by the user { $as_echo "$as_me:${as_lineno-$LINENO}: checking if we can lock with hard links" >&5 $as_echo_n "checking if we can lock with hard links... " >&6; } hard_links=yes $RM conftest* ln conftest.a conftest.b 2>/dev/null && hard_links=no touch conftest.a ln conftest.a conftest.b 2>&5 || hard_links=no ln conftest.a conftest.b 2>/dev/null && hard_links=no { $as_echo "$as_me:${as_lineno-$LINENO}: result: $hard_links" >&5 $as_echo "$hard_links" >&6; } if test no = "$hard_links"; then { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: '$CC' does not support '-c -o', so 'make -j' may be unsafe" >&5 $as_echo "$as_me: WARNING: '$CC' does not support '-c -o', so 'make -j' may be unsafe" >&2;} need_locks=warn fi else need_locks=no fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether the $compiler linker ($LD) supports shared libraries" >&5 $as_echo_n "checking whether the $compiler linker ($LD) supports shared libraries... " >&6; } runpath_var= allow_undefined_flag= always_export_symbols=no archive_cmds= archive_expsym_cmds= compiler_needs_object=no enable_shared_with_static_runtimes=no export_dynamic_flag_spec= export_symbols_cmds='$NM $libobjs $convenience | $global_symbol_pipe | $SED '\''s/.* //'\'' | sort | uniq > $export_symbols' hardcode_automatic=no hardcode_direct=no hardcode_direct_absolute=no hardcode_libdir_flag_spec= hardcode_libdir_separator= hardcode_minus_L=no hardcode_shlibpath_var=unsupported inherit_rpath=no link_all_deplibs=unknown module_cmds= module_expsym_cmds= old_archive_from_new_cmds= old_archive_from_expsyms_cmds= thread_safe_flag_spec= whole_archive_flag_spec= # include_expsyms should be a list of space-separated symbols to be *always* # included in the symbol list include_expsyms= # exclude_expsyms can be an extended regexp of symbols to exclude # it will be wrapped by ' (' and ')$', so one must not match beginning or # end of line. Example: 'a|bc|.*d.*' will exclude the symbols 'a' and 'bc', # as well as any symbol that contains 'd'. exclude_expsyms='_GLOBAL_OFFSET_TABLE_|_GLOBAL__F[ID]_.*' # Although _GLOBAL_OFFSET_TABLE_ is a valid symbol C name, most a.out # platforms (ab)use it in PIC code, but their linkers get confused if # the symbol is explicitly referenced. Since portable code cannot # rely on this symbol name, it's probably fine to never include it in # preloaded symbol tables. # Exclude shared library initialization/finalization symbols. extract_expsyms_cmds= case $host_os in cygwin* | mingw* | pw32* | cegcc*) # FIXME: the MSVC++ port hasn't been tested in a loooong time # When not using gcc, we currently assume that we are using # Microsoft Visual C++. if test yes != "$GCC"; then with_gnu_ld=no fi ;; interix*) # we just hope/assume this is gcc and not c89 (= MSVC++) with_gnu_ld=yes ;; openbsd* | bitrig*) with_gnu_ld=no ;; esac ld_shlibs=yes # On some targets, GNU ld is compatible enough with the native linker # that we're better off using the native interface for both. lt_use_gnu_ld_interface=no if test yes = "$with_gnu_ld"; then case $host_os in aix*) # The AIX port of GNU ld has always aspired to compatibility # with the native linker. However, as the warning in the GNU ld # block says, versions before 2.19.5* couldn't really create working # shared libraries, regardless of the interface used. case `$LD -v 2>&1` in *\ \(GNU\ Binutils\)\ 2.19.5*) ;; *\ \(GNU\ Binutils\)\ 2.[2-9]*) ;; *\ \(GNU\ Binutils\)\ [3-9]*) ;; *) lt_use_gnu_ld_interface=yes ;; esac ;; *) lt_use_gnu_ld_interface=yes ;; esac fi if test yes = "$lt_use_gnu_ld_interface"; then # If archive_cmds runs LD, not CC, wlarc should be empty wlarc='$wl' # Set some defaults for GNU ld with shared library support. These # are reset later if shared libraries are not supported. Putting them # here allows them to be overridden if necessary. runpath_var=LD_RUN_PATH hardcode_libdir_flag_spec='$wl-rpath $wl$libdir' export_dynamic_flag_spec='$wl--export-dynamic' # ancient GNU ld didn't support --whole-archive et. al. if $LD --help 2>&1 | $GREP 'no-whole-archive' > /dev/null; then whole_archive_flag_spec=$wlarc'--whole-archive$convenience '$wlarc'--no-whole-archive' else whole_archive_flag_spec= fi supports_anon_versioning=no case `$LD -v | $SED -e 's/(^)\+)\s\+//' 2>&1` in *GNU\ gold*) supports_anon_versioning=yes ;; *\ [01].* | *\ 2.[0-9].* | *\ 2.10.*) ;; # catch versions < 2.11 *\ 2.11.93.0.2\ *) supports_anon_versioning=yes ;; # RH7.3 ... *\ 2.11.92.0.12\ *) supports_anon_versioning=yes ;; # Mandrake 8.2 ... *\ 2.11.*) ;; # other 2.11 versions *) supports_anon_versioning=yes ;; esac # See if GNU ld supports shared libraries. case $host_os in aix[3-9]*) # On AIX/PPC, the GNU linker is very broken if test ia64 != "$host_cpu"; then ld_shlibs=no cat <<_LT_EOF 1>&2 *** Warning: the GNU linker, at least up to release 2.19, is reported *** to be unable to reliably create shared libraries on AIX. *** Therefore, libtool is disabling shared libraries support. If you *** really care for shared libraries, you may want to install binutils *** 2.20 or above, or modify your PATH so that a non-GNU linker is found. *** You will then need to restart the configuration process. _LT_EOF fi ;; amigaos*) case $host_cpu in powerpc) # see comment about AmigaOS4 .so support archive_cmds='$CC -shared $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' archive_expsym_cmds='' ;; m68k) archive_cmds='$RM $output_objdir/a2ixlibrary.data~$ECHO "#define NAME $libname" > $output_objdir/a2ixlibrary.data~$ECHO "#define LIBRARY_ID 1" >> $output_objdir/a2ixlibrary.data~$ECHO "#define VERSION $major" >> $output_objdir/a2ixlibrary.data~$ECHO "#define REVISION $revision" >> $output_objdir/a2ixlibrary.data~$AR $AR_FLAGS $lib $libobjs~$RANLIB $lib~(cd $output_objdir && a2ixlibrary -32)' hardcode_libdir_flag_spec='-L$libdir' hardcode_minus_L=yes ;; esac ;; beos*) if $LD --help 2>&1 | $GREP ': supported targets:.* elf' > /dev/null; then allow_undefined_flag=unsupported # Joseph Beckenbach says some releases of gcc # support --undefined. This deserves some investigation. FIXME archive_cmds='$CC -nostart $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' else ld_shlibs=no fi ;; cygwin* | mingw* | pw32* | cegcc*) # _LT_TAGVAR(hardcode_libdir_flag_spec, ) is actually meaningless, # as there is no search path for DLLs. hardcode_libdir_flag_spec='-L$libdir' export_dynamic_flag_spec='$wl--export-all-symbols' allow_undefined_flag=unsupported always_export_symbols=no enable_shared_with_static_runtimes=yes export_symbols_cmds='$NM $libobjs $convenience | $global_symbol_pipe | $SED -e '\''/^[BCDGRS][ ]/s/.*[ ]\([^ ]*\)/\1 DATA/;s/^.*[ ]__nm__\([^ ]*\)[ ][^ ]*/\1 DATA/;/^I[ ]/d;/^[AITW][ ]/s/.* //'\'' | sort | uniq > $export_symbols' exclude_expsyms='[_]+GLOBAL_OFFSET_TABLE_|[_]+GLOBAL__[FID]_.*|[_]+head_[A-Za-z0-9_]+_dll|[A-Za-z0-9_]+_dll_iname' if $LD --help 2>&1 | $GREP 'auto-import' > /dev/null; then archive_cmds='$CC -shared $libobjs $deplibs $compiler_flags -o $output_objdir/$soname $wl--enable-auto-image-base -Xlinker --out-implib -Xlinker $lib' # If the export-symbols file already is a .def file, use it as # is; otherwise, prepend EXPORTS... archive_expsym_cmds='if test DEF = "`$SED -n -e '\''s/^[ ]*//'\'' -e '\''/^\(;.*\)*$/d'\'' -e '\''s/^\(EXPORTS\|LIBRARY\)\([ ].*\)*$/DEF/p'\'' -e q $export_symbols`" ; then cp $export_symbols $output_objdir/$soname.def; else echo EXPORTS > $output_objdir/$soname.def; cat $export_symbols >> $output_objdir/$soname.def; fi~ $CC -shared $output_objdir/$soname.def $libobjs $deplibs $compiler_flags -o $output_objdir/$soname $wl--enable-auto-image-base -Xlinker --out-implib -Xlinker $lib' else ld_shlibs=no fi ;; haiku*) archive_cmds='$CC -shared $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' link_all_deplibs=yes ;; os2*) hardcode_libdir_flag_spec='-L$libdir' hardcode_minus_L=yes allow_undefined_flag=unsupported shrext_cmds=.dll archive_cmds='$ECHO "LIBRARY ${soname%$shared_ext} INITINSTANCE TERMINSTANCE" > $output_objdir/$libname.def~ $ECHO "DESCRIPTION \"$libname\"" >> $output_objdir/$libname.def~ $ECHO "DATA MULTIPLE NONSHARED" >> $output_objdir/$libname.def~ $ECHO EXPORTS >> $output_objdir/$libname.def~ emxexp $libobjs | $SED /"_DLL_InitTerm"/d >> $output_objdir/$libname.def~ $CC -Zdll -Zcrtdll -o $output_objdir/$soname $libobjs $deplibs $compiler_flags $output_objdir/$libname.def~ emximp -o $lib $output_objdir/$libname.def' archive_expsym_cmds='$ECHO "LIBRARY ${soname%$shared_ext} INITINSTANCE TERMINSTANCE" > $output_objdir/$libname.def~ $ECHO "DESCRIPTION \"$libname\"" >> $output_objdir/$libname.def~ $ECHO "DATA MULTIPLE NONSHARED" >> $output_objdir/$libname.def~ $ECHO EXPORTS >> $output_objdir/$libname.def~ prefix_cmds="$SED"~ if test EXPORTS = "`$SED 1q $export_symbols`"; then prefix_cmds="$prefix_cmds -e 1d"; fi~ prefix_cmds="$prefix_cmds -e \"s/^\(.*\)$/_\1/g\""~ cat $export_symbols | $prefix_cmds >> $output_objdir/$libname.def~ $CC -Zdll -Zcrtdll -o $output_objdir/$soname $libobjs $deplibs $compiler_flags $output_objdir/$libname.def~ emximp -o $lib $output_objdir/$libname.def' old_archive_From_new_cmds='emximp -o $output_objdir/${libname}_dll.a $output_objdir/$libname.def' enable_shared_with_static_runtimes=yes ;; interix[3-9]*) hardcode_direct=no hardcode_shlibpath_var=no hardcode_libdir_flag_spec='$wl-rpath,$libdir' export_dynamic_flag_spec='$wl-E' # Hack: On Interix 3.x, we cannot compile PIC because of a broken gcc. # Instead, shared libraries are loaded at an image base (0x10000000 by # default) and relocated if they conflict, which is a slow very memory # consuming and fragmenting process. To avoid this, we pick a random, # 256 KiB-aligned image base between 0x50000000 and 0x6FFC0000 at link # time. Moving up from 0x10000000 also allows more sbrk(2) space. archive_cmds='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-h,$soname $wl--image-base,`expr ${RANDOM-$$} % 4096 / 2 \* 262144 + 1342177280` -o $lib' archive_expsym_cmds='sed "s|^|_|" $export_symbols >$output_objdir/$soname.expsym~$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-h,$soname $wl--retain-symbols-file,$output_objdir/$soname.expsym $wl--image-base,`expr ${RANDOM-$$} % 4096 / 2 \* 262144 + 1342177280` -o $lib' ;; gnu* | linux* | tpf* | k*bsd*-gnu | kopensolaris*-gnu) tmp_diet=no if test linux-dietlibc = "$host_os"; then case $cc_basename in diet\ *) tmp_diet=yes;; # linux-dietlibc with static linking (!diet-dyn) esac fi if $LD --help 2>&1 | $EGREP ': supported targets:.* elf' > /dev/null \ && test no = "$tmp_diet" then tmp_addflag=' $pic_flag' tmp_sharedflag='-shared' case $cc_basename,$host_cpu in pgcc*) # Portland Group C compiler whole_archive_flag_spec='$wl--whole-archive`for conv in $convenience\"\"; do test -n \"$conv\" && new_convenience=\"$new_convenience,$conv\"; done; func_echo_all \"$new_convenience\"` $wl--no-whole-archive' tmp_addflag=' $pic_flag' ;; pgf77* | pgf90* | pgf95* | pgfortran*) # Portland Group f77 and f90 compilers whole_archive_flag_spec='$wl--whole-archive`for conv in $convenience\"\"; do test -n \"$conv\" && new_convenience=\"$new_convenience,$conv\"; done; func_echo_all \"$new_convenience\"` $wl--no-whole-archive' tmp_addflag=' $pic_flag -Mnomain' ;; ecc*,ia64* | icc*,ia64*) # Intel C compiler on ia64 tmp_addflag=' -i_dynamic' ;; efc*,ia64* | ifort*,ia64*) # Intel Fortran compiler on ia64 tmp_addflag=' -i_dynamic -nofor_main' ;; ifc* | ifort*) # Intel Fortran compiler tmp_addflag=' -nofor_main' ;; lf95*) # Lahey Fortran 8.1 whole_archive_flag_spec= tmp_sharedflag='--shared' ;; nagfor*) # NAGFOR 5.3 tmp_sharedflag='-Wl,-shared' ;; xl[cC]* | bgxl[cC]* | mpixl[cC]*) # IBM XL C 8.0 on PPC (deal with xlf below) tmp_sharedflag='-qmkshrobj' tmp_addflag= ;; nvcc*) # Cuda Compiler Driver 2.2 whole_archive_flag_spec='$wl--whole-archive`for conv in $convenience\"\"; do test -n \"$conv\" && new_convenience=\"$new_convenience,$conv\"; done; func_echo_all \"$new_convenience\"` $wl--no-whole-archive' compiler_needs_object=yes ;; esac case `$CC -V 2>&1 | sed 5q` in *Sun\ C*) # Sun C 5.9 whole_archive_flag_spec='$wl--whole-archive`new_convenience=; for conv in $convenience\"\"; do test -z \"$conv\" || new_convenience=\"$new_convenience,$conv\"; done; func_echo_all \"$new_convenience\"` $wl--no-whole-archive' compiler_needs_object=yes tmp_sharedflag='-G' ;; *Sun\ F*) # Sun Fortran 8.3 tmp_sharedflag='-G' ;; esac archive_cmds='$CC '"$tmp_sharedflag""$tmp_addflag"' $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' if test yes = "$supports_anon_versioning"; then archive_expsym_cmds='echo "{ global:" > $output_objdir/$libname.ver~ cat $export_symbols | sed -e "s/\(.*\)/\1;/" >> $output_objdir/$libname.ver~ echo "local: *; };" >> $output_objdir/$libname.ver~ $CC '"$tmp_sharedflag""$tmp_addflag"' $libobjs $deplibs $compiler_flags $wl-soname $wl$soname $wl-version-script $wl$output_objdir/$libname.ver -o $lib' fi case $cc_basename in tcc*) export_dynamic_flag_spec='-rdynamic' ;; xlf* | bgf* | bgxlf* | mpixlf*) # IBM XL Fortran 10.1 on PPC cannot create shared libs itself whole_archive_flag_spec='--whole-archive$convenience --no-whole-archive' hardcode_libdir_flag_spec='$wl-rpath $wl$libdir' archive_cmds='$LD -shared $libobjs $deplibs $linker_flags -soname $soname -o $lib' if test yes = "$supports_anon_versioning"; then archive_expsym_cmds='echo "{ global:" > $output_objdir/$libname.ver~ cat $export_symbols | sed -e "s/\(.*\)/\1;/" >> $output_objdir/$libname.ver~ echo "local: *; };" >> $output_objdir/$libname.ver~ $LD -shared $libobjs $deplibs $linker_flags -soname $soname -version-script $output_objdir/$libname.ver -o $lib' fi ;; esac else ld_shlibs=no fi ;; netbsd*) if echo __ELF__ | $CC -E - | $GREP __ELF__ >/dev/null; then archive_cmds='$LD -Bshareable $libobjs $deplibs $linker_flags -o $lib' wlarc= else archive_cmds='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' archive_expsym_cmds='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-soname $wl$soname $wl-retain-symbols-file $wl$export_symbols -o $lib' fi ;; solaris*) if $LD -v 2>&1 | $GREP 'BFD 2\.8' > /dev/null; then ld_shlibs=no cat <<_LT_EOF 1>&2 *** Warning: The releases 2.8.* of the GNU linker cannot reliably *** create shared libraries on Solaris systems. Therefore, libtool *** is disabling shared libraries support. We urge you to upgrade GNU *** binutils to release 2.9.1 or newer. Another option is to modify *** your PATH or compiler configuration so that the native linker is *** used, and then restart. _LT_EOF elif $LD --help 2>&1 | $GREP ': supported targets:.* elf' > /dev/null; then archive_cmds='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' archive_expsym_cmds='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-soname $wl$soname $wl-retain-symbols-file $wl$export_symbols -o $lib' else ld_shlibs=no fi ;; sysv5* | sco3.2v5* | sco5v6* | unixware* | OpenUNIX*) case `$LD -v 2>&1` in *\ [01].* | *\ 2.[0-9].* | *\ 2.1[0-5].*) ld_shlibs=no cat <<_LT_EOF 1>&2 *** Warning: Releases of the GNU linker prior to 2.16.91.0.3 cannot *** reliably create shared libraries on SCO systems. Therefore, libtool *** is disabling shared libraries support. We urge you to upgrade GNU *** binutils to release 2.16.91.0.3 or newer. Another option is to modify *** your PATH or compiler configuration so that the native linker is *** used, and then restart. _LT_EOF ;; *) # For security reasons, it is highly recommended that you always # use absolute paths for naming shared libraries, and exclude the # DT_RUNPATH tag from executables and libraries. But doing so # requires that you compile everything twice, which is a pain. if $LD --help 2>&1 | $GREP ': supported targets:.* elf' > /dev/null; then hardcode_libdir_flag_spec='$wl-rpath $wl$libdir' archive_cmds='$CC -shared $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' archive_expsym_cmds='$CC -shared $libobjs $deplibs $compiler_flags $wl-soname $wl$soname $wl-retain-symbols-file $wl$export_symbols -o $lib' else ld_shlibs=no fi ;; esac ;; sunos4*) archive_cmds='$LD -assert pure-text -Bshareable -o $lib $libobjs $deplibs $linker_flags' wlarc= hardcode_direct=yes hardcode_shlibpath_var=no ;; *) if $LD --help 2>&1 | $GREP ': supported targets:.* elf' > /dev/null; then archive_cmds='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' archive_expsym_cmds='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-soname $wl$soname $wl-retain-symbols-file $wl$export_symbols -o $lib' else ld_shlibs=no fi ;; esac if test no = "$ld_shlibs"; then runpath_var= hardcode_libdir_flag_spec= export_dynamic_flag_spec= whole_archive_flag_spec= fi else # PORTME fill in a description of your system's linker (not GNU ld) case $host_os in aix3*) allow_undefined_flag=unsupported always_export_symbols=yes archive_expsym_cmds='$LD -o $output_objdir/$soname $libobjs $deplibs $linker_flags -bE:$export_symbols -T512 -H512 -bM:SRE~$AR $AR_FLAGS $lib $output_objdir/$soname' # Note: this linker hardcodes the directories in LIBPATH if there # are no directories specified by -L. hardcode_minus_L=yes if test yes = "$GCC" && test -z "$lt_prog_compiler_static"; then # Neither direct hardcoding nor static linking is supported with a # broken collect2. hardcode_direct=unsupported fi ;; aix[4-9]*) if test ia64 = "$host_cpu"; then # On IA64, the linker does run time linking by default, so we don't # have to do anything special. aix_use_runtimelinking=no exp_sym_flag='-Bexport' no_entry_flag= else # If we're using GNU nm, then we don't want the "-C" option. # -C means demangle to GNU nm, but means don't demangle to AIX nm. # Without the "-l" option, or with the "-B" option, AIX nm treats # weak defined symbols like other global defined symbols, whereas # GNU nm marks them as "W". # While the 'weak' keyword is ignored in the Export File, we need # it in the Import File for the 'aix-soname' feature, so we have # to replace the "-B" option with "-P" for AIX nm. if $NM -V 2>&1 | $GREP 'GNU' > /dev/null; then export_symbols_cmds='$NM -Bpg $libobjs $convenience | awk '\''{ if (((\$ 2 == "T") || (\$ 2 == "D") || (\$ 2 == "B") || (\$ 2 == "W")) && (substr(\$ 3,1,1) != ".")) { if (\$ 2 == "W") { print \$ 3 " weak" } else { print \$ 3 } } }'\'' | sort -u > $export_symbols' else export_symbols_cmds='`func_echo_all $NM | $SED -e '\''s/B\([^B]*\)$/P\1/'\''` -PCpgl $libobjs $convenience | awk '\''{ if (((\$ 2 == "T") || (\$ 2 == "D") || (\$ 2 == "B") || (\$ 2 == "W") || (\$ 2 == "V") || (\$ 2 == "Z")) && (substr(\$ 1,1,1) != ".")) { if ((\$ 2 == "W") || (\$ 2 == "V") || (\$ 2 == "Z")) { print \$ 1 " weak" } else { print \$ 1 } } }'\'' | sort -u > $export_symbols' fi aix_use_runtimelinking=no # Test if we are trying to use run time linking or normal # AIX style linking. If -brtl is somewhere in LDFLAGS, we # have runtime linking enabled, and use it for executables. # For shared libraries, we enable/disable runtime linking # depending on the kind of the shared library created - # when "with_aix_soname,aix_use_runtimelinking" is: # "aix,no" lib.a(lib.so.V) shared, rtl:no, for executables # "aix,yes" lib.so shared, rtl:yes, for executables # lib.a static archive # "both,no" lib.so.V(shr.o) shared, rtl:yes # lib.a(lib.so.V) shared, rtl:no, for executables # "both,yes" lib.so.V(shr.o) shared, rtl:yes, for executables # lib.a(lib.so.V) shared, rtl:no # "svr4,*" lib.so.V(shr.o) shared, rtl:yes, for executables # lib.a static archive case $host_os in aix4.[23]|aix4.[23].*|aix[5-9]*) for ld_flag in $LDFLAGS; do if (test x-brtl = "x$ld_flag" || test x-Wl,-brtl = "x$ld_flag"); then aix_use_runtimelinking=yes break fi done if test svr4,no = "$with_aix_soname,$aix_use_runtimelinking"; then # With aix-soname=svr4, we create the lib.so.V shared archives only, # so we don't have lib.a shared libs to link our executables. # We have to force runtime linking in this case. aix_use_runtimelinking=yes LDFLAGS="$LDFLAGS -Wl,-brtl" fi ;; esac exp_sym_flag='-bexport' no_entry_flag='-bnoentry' fi # When large executables or shared objects are built, AIX ld can # have problems creating the table of contents. If linking a library # or program results in "error TOC overflow" add -mminimal-toc to # CXXFLAGS/CFLAGS for g++/gcc. In the cases where that is not # enough to fix the problem, add -Wl,-bbigtoc to LDFLAGS. archive_cmds='' hardcode_direct=yes hardcode_direct_absolute=yes hardcode_libdir_separator=':' link_all_deplibs=yes file_list_spec='$wl-f,' case $with_aix_soname,$aix_use_runtimelinking in aix,*) ;; # traditional, no import file svr4,* | *,yes) # use import file # The Import File defines what to hardcode. hardcode_direct=no hardcode_direct_absolute=no ;; esac if test yes = "$GCC"; then case $host_os in aix4.[012]|aix4.[012].*) # We only want to do this on AIX 4.2 and lower, the check # below for broken collect2 doesn't work under 4.3+ collect2name=`$CC -print-prog-name=collect2` if test -f "$collect2name" && strings "$collect2name" | $GREP resolve_lib_name >/dev/null then # We have reworked collect2 : else # We have old collect2 hardcode_direct=unsupported # It fails to find uninstalled libraries when the uninstalled # path is not listed in the libpath. Setting hardcode_minus_L # to unsupported forces relinking hardcode_minus_L=yes hardcode_libdir_flag_spec='-L$libdir' hardcode_libdir_separator= fi ;; esac shared_flag='-shared' if test yes = "$aix_use_runtimelinking"; then shared_flag="$shared_flag "'$wl-G' fi # Need to ensure runtime linking is disabled for the traditional # shared library, or the linker may eventually find shared libraries # /with/ Import File - we do not want to mix them. shared_flag_aix='-shared' shared_flag_svr4='-shared $wl-G' else # not using gcc if test ia64 = "$host_cpu"; then # VisualAge C++, Version 5.5 for AIX 5L for IA-64, Beta 3 Release # chokes on -Wl,-G. The following line is correct: shared_flag='-G' else if test yes = "$aix_use_runtimelinking"; then shared_flag='$wl-G' else shared_flag='$wl-bM:SRE' fi shared_flag_aix='$wl-bM:SRE' shared_flag_svr4='$wl-G' fi fi export_dynamic_flag_spec='$wl-bexpall' # It seems that -bexpall does not export symbols beginning with # underscore (_), so it is better to generate a list of symbols to export. always_export_symbols=yes if test aix,yes = "$with_aix_soname,$aix_use_runtimelinking"; then # Warning - without using the other runtime loading flags (-brtl), # -berok will link without error, but may produce a broken library. allow_undefined_flag='-berok' # Determine the default libpath from the value encoded in an # empty executable. if test set = "${lt_cv_aix_libpath+set}"; then aix_libpath=$lt_cv_aix_libpath else if ${lt_cv_aix_libpath_+:} false; then : $as_echo_n "(cached) " >&6 else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : lt_aix_libpath_sed=' /Import File Strings/,/^$/ { /^0/ { s/^0 *\([^ ]*\) *$/\1/ p } }' lt_cv_aix_libpath_=`dump -H conftest$ac_exeext 2>/dev/null | $SED -n -e "$lt_aix_libpath_sed"` # Check for a 64-bit object if we didn't find anything. if test -z "$lt_cv_aix_libpath_"; then lt_cv_aix_libpath_=`dump -HX64 conftest$ac_exeext 2>/dev/null | $SED -n -e "$lt_aix_libpath_sed"` fi fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext if test -z "$lt_cv_aix_libpath_"; then lt_cv_aix_libpath_=/usr/lib:/lib fi fi aix_libpath=$lt_cv_aix_libpath_ fi hardcode_libdir_flag_spec='$wl-blibpath:$libdir:'"$aix_libpath" archive_expsym_cmds='$CC -o $output_objdir/$soname $libobjs $deplibs $wl'$no_entry_flag' $compiler_flags `if test -n "$allow_undefined_flag"; then func_echo_all "$wl$allow_undefined_flag"; else :; fi` $wl'$exp_sym_flag:\$export_symbols' '$shared_flag else if test ia64 = "$host_cpu"; then hardcode_libdir_flag_spec='$wl-R $libdir:/usr/lib:/lib' allow_undefined_flag="-z nodefs" archive_expsym_cmds="\$CC $shared_flag"' -o $output_objdir/$soname $libobjs $deplibs '"\$wl$no_entry_flag"' $compiler_flags $wl$allow_undefined_flag '"\$wl$exp_sym_flag:\$export_symbols" else # Determine the default libpath from the value encoded in an # empty executable. if test set = "${lt_cv_aix_libpath+set}"; then aix_libpath=$lt_cv_aix_libpath else if ${lt_cv_aix_libpath_+:} false; then : $as_echo_n "(cached) " >&6 else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : lt_aix_libpath_sed=' /Import File Strings/,/^$/ { /^0/ { s/^0 *\([^ ]*\) *$/\1/ p } }' lt_cv_aix_libpath_=`dump -H conftest$ac_exeext 2>/dev/null | $SED -n -e "$lt_aix_libpath_sed"` # Check for a 64-bit object if we didn't find anything. if test -z "$lt_cv_aix_libpath_"; then lt_cv_aix_libpath_=`dump -HX64 conftest$ac_exeext 2>/dev/null | $SED -n -e "$lt_aix_libpath_sed"` fi fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext if test -z "$lt_cv_aix_libpath_"; then lt_cv_aix_libpath_=/usr/lib:/lib fi fi aix_libpath=$lt_cv_aix_libpath_ fi hardcode_libdir_flag_spec='$wl-blibpath:$libdir:'"$aix_libpath" # Warning - without using the other run time loading flags, # -berok will link without error, but may produce a broken library. no_undefined_flag=' $wl-bernotok' allow_undefined_flag=' $wl-berok' if test yes = "$with_gnu_ld"; then # We only use this code for GNU lds that support --whole-archive. whole_archive_flag_spec='$wl--whole-archive$convenience $wl--no-whole-archive' else # Exported symbols can be pulled into shared objects from archives whole_archive_flag_spec='$convenience' fi archive_cmds_need_lc=yes archive_expsym_cmds='$RM -r $output_objdir/$realname.d~$MKDIR $output_objdir/$realname.d' # -brtl affects multiple linker settings, -berok does not and is overridden later compiler_flags_filtered='`func_echo_all "$compiler_flags " | $SED -e "s%-brtl\\([, ]\\)%-berok\\1%g"`' if test svr4 != "$with_aix_soname"; then # This is similar to how AIX traditionally builds its shared libraries. archive_expsym_cmds="$archive_expsym_cmds"'~$CC '$shared_flag_aix' -o $output_objdir/$realname.d/$soname $libobjs $deplibs $wl-bnoentry '$compiler_flags_filtered'$wl-bE:$export_symbols$allow_undefined_flag~$AR $AR_FLAGS $output_objdir/$libname$release.a $output_objdir/$realname.d/$soname' fi if test aix != "$with_aix_soname"; then archive_expsym_cmds="$archive_expsym_cmds"'~$CC '$shared_flag_svr4' -o $output_objdir/$realname.d/$shared_archive_member_spec.o $libobjs $deplibs $wl-bnoentry '$compiler_flags_filtered'$wl-bE:$export_symbols$allow_undefined_flag~$STRIP -e $output_objdir/$realname.d/$shared_archive_member_spec.o~( func_echo_all "#! $soname($shared_archive_member_spec.o)"; if test shr_64 = "$shared_archive_member_spec"; then func_echo_all "# 64"; else func_echo_all "# 32"; fi; cat $export_symbols ) > $output_objdir/$realname.d/$shared_archive_member_spec.imp~$AR $AR_FLAGS $output_objdir/$soname $output_objdir/$realname.d/$shared_archive_member_spec.o $output_objdir/$realname.d/$shared_archive_member_spec.imp' else # used by -dlpreopen to get the symbols archive_expsym_cmds="$archive_expsym_cmds"'~$MV $output_objdir/$realname.d/$soname $output_objdir' fi archive_expsym_cmds="$archive_expsym_cmds"'~$RM -r $output_objdir/$realname.d' fi fi ;; amigaos*) case $host_cpu in powerpc) # see comment about AmigaOS4 .so support archive_cmds='$CC -shared $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' archive_expsym_cmds='' ;; m68k) archive_cmds='$RM $output_objdir/a2ixlibrary.data~$ECHO "#define NAME $libname" > $output_objdir/a2ixlibrary.data~$ECHO "#define LIBRARY_ID 1" >> $output_objdir/a2ixlibrary.data~$ECHO "#define VERSION $major" >> $output_objdir/a2ixlibrary.data~$ECHO "#define REVISION $revision" >> $output_objdir/a2ixlibrary.data~$AR $AR_FLAGS $lib $libobjs~$RANLIB $lib~(cd $output_objdir && a2ixlibrary -32)' hardcode_libdir_flag_spec='-L$libdir' hardcode_minus_L=yes ;; esac ;; bsdi[45]*) export_dynamic_flag_spec=-rdynamic ;; cygwin* | mingw* | pw32* | cegcc*) # When not using gcc, we currently assume that we are using # Microsoft Visual C++. # hardcode_libdir_flag_spec is actually meaningless, as there is # no search path for DLLs. case $cc_basename in cl*) # Native MSVC hardcode_libdir_flag_spec=' ' allow_undefined_flag=unsupported always_export_symbols=yes file_list_spec='@' # Tell ltmain to make .lib files, not .a files. libext=lib # Tell ltmain to make .dll files, not .so files. shrext_cmds=.dll # FIXME: Setting linknames here is a bad hack. archive_cmds='$CC -o $output_objdir/$soname $libobjs $compiler_flags $deplibs -Wl,-DLL,-IMPLIB:"$tool_output_objdir$libname.dll.lib"~linknames=' archive_expsym_cmds='if test DEF = "`$SED -n -e '\''s/^[ ]*//'\'' -e '\''/^\(;.*\)*$/d'\'' -e '\''s/^\(EXPORTS\|LIBRARY\)\([ ].*\)*$/DEF/p'\'' -e q $export_symbols`" ; then cp "$export_symbols" "$output_objdir/$soname.def"; echo "$tool_output_objdir$soname.def" > "$output_objdir/$soname.exp"; else $SED -e '\''s/^/-link -EXPORT:/'\'' < $export_symbols > $output_objdir/$soname.exp; fi~ $CC -o $tool_output_objdir$soname $libobjs $compiler_flags $deplibs "@$tool_output_objdir$soname.exp" -Wl,-DLL,-IMPLIB:"$tool_output_objdir$libname.dll.lib"~ linknames=' # The linker will not automatically build a static lib if we build a DLL. # _LT_TAGVAR(old_archive_from_new_cmds, )='true' enable_shared_with_static_runtimes=yes exclude_expsyms='_NULL_IMPORT_DESCRIPTOR|_IMPORT_DESCRIPTOR_.*' export_symbols_cmds='$NM $libobjs $convenience | $global_symbol_pipe | $SED -e '\''/^[BCDGRS][ ]/s/.*[ ]\([^ ]*\)/\1,DATA/'\'' | $SED -e '\''/^[AITW][ ]/s/.*[ ]//'\'' | sort | uniq > $export_symbols' # Don't use ranlib old_postinstall_cmds='chmod 644 $oldlib' postlink_cmds='lt_outputfile="@OUTPUT@"~ lt_tool_outputfile="@TOOL_OUTPUT@"~ case $lt_outputfile in *.exe|*.EXE) ;; *) lt_outputfile=$lt_outputfile.exe lt_tool_outputfile=$lt_tool_outputfile.exe ;; esac~ if test : != "$MANIFEST_TOOL" && test -f "$lt_outputfile.manifest"; then $MANIFEST_TOOL -manifest "$lt_tool_outputfile.manifest" -outputresource:"$lt_tool_outputfile" || exit 1; $RM "$lt_outputfile.manifest"; fi' ;; *) # Assume MSVC wrapper hardcode_libdir_flag_spec=' ' allow_undefined_flag=unsupported # Tell ltmain to make .lib files, not .a files. libext=lib # Tell ltmain to make .dll files, not .so files. shrext_cmds=.dll # FIXME: Setting linknames here is a bad hack. archive_cmds='$CC -o $lib $libobjs $compiler_flags `func_echo_all "$deplibs" | $SED '\''s/ -lc$//'\''` -link -dll~linknames=' # The linker will automatically build a .lib file if we build a DLL. old_archive_from_new_cmds='true' # FIXME: Should let the user specify the lib program. old_archive_cmds='lib -OUT:$oldlib$oldobjs$old_deplibs' enable_shared_with_static_runtimes=yes ;; esac ;; darwin* | rhapsody*) archive_cmds_need_lc=no hardcode_direct=no hardcode_automatic=yes hardcode_shlibpath_var=unsupported if test yes = "$lt_cv_ld_force_load"; then whole_archive_flag_spec='`for conv in $convenience\"\"; do test -n \"$conv\" && new_convenience=\"$new_convenience $wl-force_load,$conv\"; done; func_echo_all \"$new_convenience\"`' else whole_archive_flag_spec='' fi link_all_deplibs=yes allow_undefined_flag=$_lt_dar_allow_undefined case $cc_basename in ifort*|nagfor*) _lt_dar_can_shared=yes ;; *) _lt_dar_can_shared=$GCC ;; esac if test yes = "$_lt_dar_can_shared"; then output_verbose_link_cmd=func_echo_all archive_cmds="\$CC -dynamiclib \$allow_undefined_flag -o \$lib \$libobjs \$deplibs \$compiler_flags -install_name \$rpath/\$soname \$verstring $_lt_dar_single_mod$_lt_dsymutil" module_cmds="\$CC \$allow_undefined_flag -o \$lib -bundle \$libobjs \$deplibs \$compiler_flags$_lt_dsymutil" archive_expsym_cmds="sed 's|^|_|' < \$export_symbols > \$output_objdir/\$libname-symbols.expsym~\$CC -dynamiclib \$allow_undefined_flag -o \$lib \$libobjs \$deplibs \$compiler_flags -install_name \$rpath/\$soname \$verstring $_lt_dar_single_mod$_lt_dar_export_syms$_lt_dsymutil" module_expsym_cmds="sed -e 's|^|_|' < \$export_symbols > \$output_objdir/\$libname-symbols.expsym~\$CC \$allow_undefined_flag -o \$lib -bundle \$libobjs \$deplibs \$compiler_flags$_lt_dar_export_syms$_lt_dsymutil" else ld_shlibs=no fi ;; dgux*) archive_cmds='$LD -G -h $soname -o $lib $libobjs $deplibs $linker_flags' hardcode_libdir_flag_spec='-L$libdir' hardcode_shlibpath_var=no ;; # FreeBSD 2.2.[012] allows us to include c++rt0.o to get C++ constructor # support. Future versions do this automatically, but an explicit c++rt0.o # does not break anything, and helps significantly (at the cost of a little # extra space). freebsd2.2*) archive_cmds='$LD -Bshareable -o $lib $libobjs $deplibs $linker_flags /usr/lib/c++rt0.o' hardcode_libdir_flag_spec='-R$libdir' hardcode_direct=yes hardcode_shlibpath_var=no ;; # Unfortunately, older versions of FreeBSD 2 do not have this feature. freebsd2.*) archive_cmds='$LD -Bshareable -o $lib $libobjs $deplibs $linker_flags' hardcode_direct=yes hardcode_minus_L=yes hardcode_shlibpath_var=no ;; # FreeBSD 3 and greater uses gcc -shared to do shared libraries. freebsd* | dragonfly*) archive_cmds='$CC -shared $pic_flag -o $lib $libobjs $deplibs $compiler_flags' hardcode_libdir_flag_spec='-R$libdir' hardcode_direct=yes hardcode_shlibpath_var=no ;; hpux9*) if test yes = "$GCC"; then archive_cmds='$RM $output_objdir/$soname~$CC -shared $pic_flag $wl+b $wl$install_libdir -o $output_objdir/$soname $libobjs $deplibs $compiler_flags~test "x$output_objdir/$soname" = "x$lib" || mv $output_objdir/$soname $lib' else archive_cmds='$RM $output_objdir/$soname~$LD -b +b $install_libdir -o $output_objdir/$soname $libobjs $deplibs $linker_flags~test "x$output_objdir/$soname" = "x$lib" || mv $output_objdir/$soname $lib' fi hardcode_libdir_flag_spec='$wl+b $wl$libdir' hardcode_libdir_separator=: hardcode_direct=yes # hardcode_minus_L: Not really in the search PATH, # but as the default location of the library. hardcode_minus_L=yes export_dynamic_flag_spec='$wl-E' ;; hpux10*) if test yes,no = "$GCC,$with_gnu_ld"; then archive_cmds='$CC -shared $pic_flag $wl+h $wl$soname $wl+b $wl$install_libdir -o $lib $libobjs $deplibs $compiler_flags' else archive_cmds='$LD -b +h $soname +b $install_libdir -o $lib $libobjs $deplibs $linker_flags' fi if test no = "$with_gnu_ld"; then hardcode_libdir_flag_spec='$wl+b $wl$libdir' hardcode_libdir_separator=: hardcode_direct=yes hardcode_direct_absolute=yes export_dynamic_flag_spec='$wl-E' # hardcode_minus_L: Not really in the search PATH, # but as the default location of the library. hardcode_minus_L=yes fi ;; hpux11*) if test yes,no = "$GCC,$with_gnu_ld"; then case $host_cpu in hppa*64*) archive_cmds='$CC -shared $wl+h $wl$soname -o $lib $libobjs $deplibs $compiler_flags' ;; ia64*) archive_cmds='$CC -shared $pic_flag $wl+h $wl$soname $wl+nodefaultrpath -o $lib $libobjs $deplibs $compiler_flags' ;; *) archive_cmds='$CC -shared $pic_flag $wl+h $wl$soname $wl+b $wl$install_libdir -o $lib $libobjs $deplibs $compiler_flags' ;; esac else case $host_cpu in hppa*64*) archive_cmds='$CC -b $wl+h $wl$soname -o $lib $libobjs $deplibs $compiler_flags' ;; ia64*) archive_cmds='$CC -b $wl+h $wl$soname $wl+nodefaultrpath -o $lib $libobjs $deplibs $compiler_flags' ;; *) # Older versions of the 11.00 compiler do not understand -b yet # (HP92453-01 A.11.01.20 doesn't, HP92453-01 B.11.X.35175-35176.GP does) { $as_echo "$as_me:${as_lineno-$LINENO}: checking if $CC understands -b" >&5 $as_echo_n "checking if $CC understands -b... " >&6; } if ${lt_cv_prog_compiler__b+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_prog_compiler__b=no save_LDFLAGS=$LDFLAGS LDFLAGS="$LDFLAGS -b" echo "$lt_simple_link_test_code" > conftest.$ac_ext if (eval $ac_link 2>conftest.err) && test -s conftest$ac_exeext; then # The linker can only warn and ignore the option if not recognized # So say no if there are warnings if test -s conftest.err; then # Append any errors to the config.log. cat conftest.err 1>&5 $ECHO "$_lt_linker_boilerplate" | $SED '/^$/d' > conftest.exp $SED '/^$/d; /^ *+/d' conftest.err >conftest.er2 if diff conftest.exp conftest.er2 >/dev/null; then lt_cv_prog_compiler__b=yes fi else lt_cv_prog_compiler__b=yes fi fi $RM -r conftest* LDFLAGS=$save_LDFLAGS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_prog_compiler__b" >&5 $as_echo "$lt_cv_prog_compiler__b" >&6; } if test yes = "$lt_cv_prog_compiler__b"; then archive_cmds='$CC -b $wl+h $wl$soname $wl+b $wl$install_libdir -o $lib $libobjs $deplibs $compiler_flags' else archive_cmds='$LD -b +h $soname +b $install_libdir -o $lib $libobjs $deplibs $linker_flags' fi ;; esac fi if test no = "$with_gnu_ld"; then hardcode_libdir_flag_spec='$wl+b $wl$libdir' hardcode_libdir_separator=: case $host_cpu in hppa*64*|ia64*) hardcode_direct=no hardcode_shlibpath_var=no ;; *) hardcode_direct=yes hardcode_direct_absolute=yes export_dynamic_flag_spec='$wl-E' # hardcode_minus_L: Not really in the search PATH, # but as the default location of the library. hardcode_minus_L=yes ;; esac fi ;; irix5* | irix6* | nonstopux*) if test yes = "$GCC"; then archive_cmds='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-soname $wl$soname `test -n "$verstring" && func_echo_all "$wl-set_version $wl$verstring"` $wl-update_registry $wl$output_objdir/so_locations -o $lib' # Try to use the -exported_symbol ld option, if it does not # work, assume that -exports_file does not work either and # implicitly export all symbols. # This should be the same for all languages, so no per-tag cache variable. { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether the $host_os linker accepts -exported_symbol" >&5 $as_echo_n "checking whether the $host_os linker accepts -exported_symbol... " >&6; } if ${lt_cv_irix_exported_symbol+:} false; then : $as_echo_n "(cached) " >&6 else save_LDFLAGS=$LDFLAGS LDFLAGS="$LDFLAGS -shared $wl-exported_symbol ${wl}foo $wl-update_registry $wl/dev/null" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int foo (void) { return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : lt_cv_irix_exported_symbol=yes else lt_cv_irix_exported_symbol=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LDFLAGS=$save_LDFLAGS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_irix_exported_symbol" >&5 $as_echo "$lt_cv_irix_exported_symbol" >&6; } if test yes = "$lt_cv_irix_exported_symbol"; then archive_expsym_cmds='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-soname $wl$soname `test -n "$verstring" && func_echo_all "$wl-set_version $wl$verstring"` $wl-update_registry $wl$output_objdir/so_locations $wl-exports_file $wl$export_symbols -o $lib' fi else archive_cmds='$CC -shared $libobjs $deplibs $compiler_flags -soname $soname `test -n "$verstring" && func_echo_all "-set_version $verstring"` -update_registry $output_objdir/so_locations -o $lib' archive_expsym_cmds='$CC -shared $libobjs $deplibs $compiler_flags -soname $soname `test -n "$verstring" && func_echo_all "-set_version $verstring"` -update_registry $output_objdir/so_locations -exports_file $export_symbols -o $lib' fi archive_cmds_need_lc='no' hardcode_libdir_flag_spec='$wl-rpath $wl$libdir' hardcode_libdir_separator=: inherit_rpath=yes link_all_deplibs=yes ;; linux*) case $cc_basename in tcc*) # Fabrice Bellard et al's Tiny C Compiler ld_shlibs=yes archive_cmds='$CC -shared $pic_flag -o $lib $libobjs $deplibs $compiler_flags' ;; esac ;; netbsd*) if echo __ELF__ | $CC -E - | $GREP __ELF__ >/dev/null; then archive_cmds='$LD -Bshareable -o $lib $libobjs $deplibs $linker_flags' # a.out else archive_cmds='$LD -shared -o $lib $libobjs $deplibs $linker_flags' # ELF fi hardcode_libdir_flag_spec='-R$libdir' hardcode_direct=yes hardcode_shlibpath_var=no ;; newsos6) archive_cmds='$LD -G -h $soname -o $lib $libobjs $deplibs $linker_flags' hardcode_direct=yes hardcode_libdir_flag_spec='$wl-rpath $wl$libdir' hardcode_libdir_separator=: hardcode_shlibpath_var=no ;; *nto* | *qnx*) ;; openbsd* | bitrig*) if test -f /usr/libexec/ld.so; then hardcode_direct=yes hardcode_shlibpath_var=no hardcode_direct_absolute=yes if test -z "`echo __ELF__ | $CC -E - | $GREP __ELF__`"; then archive_cmds='$CC -shared $pic_flag -o $lib $libobjs $deplibs $compiler_flags' archive_expsym_cmds='$CC -shared $pic_flag -o $lib $libobjs $deplibs $compiler_flags $wl-retain-symbols-file,$export_symbols' hardcode_libdir_flag_spec='$wl-rpath,$libdir' export_dynamic_flag_spec='$wl-E' else archive_cmds='$CC -shared $pic_flag -o $lib $libobjs $deplibs $compiler_flags' hardcode_libdir_flag_spec='$wl-rpath,$libdir' fi else ld_shlibs=no fi ;; os2*) hardcode_libdir_flag_spec='-L$libdir' hardcode_minus_L=yes allow_undefined_flag=unsupported shrext_cmds=.dll archive_cmds='$ECHO "LIBRARY ${soname%$shared_ext} INITINSTANCE TERMINSTANCE" > $output_objdir/$libname.def~ $ECHO "DESCRIPTION \"$libname\"" >> $output_objdir/$libname.def~ $ECHO "DATA MULTIPLE NONSHARED" >> $output_objdir/$libname.def~ $ECHO EXPORTS >> $output_objdir/$libname.def~ emxexp $libobjs | $SED /"_DLL_InitTerm"/d >> $output_objdir/$libname.def~ $CC -Zdll -Zcrtdll -o $output_objdir/$soname $libobjs $deplibs $compiler_flags $output_objdir/$libname.def~ emximp -o $lib $output_objdir/$libname.def' archive_expsym_cmds='$ECHO "LIBRARY ${soname%$shared_ext} INITINSTANCE TERMINSTANCE" > $output_objdir/$libname.def~ $ECHO "DESCRIPTION \"$libname\"" >> $output_objdir/$libname.def~ $ECHO "DATA MULTIPLE NONSHARED" >> $output_objdir/$libname.def~ $ECHO EXPORTS >> $output_objdir/$libname.def~ prefix_cmds="$SED"~ if test EXPORTS = "`$SED 1q $export_symbols`"; then prefix_cmds="$prefix_cmds -e 1d"; fi~ prefix_cmds="$prefix_cmds -e \"s/^\(.*\)$/_\1/g\""~ cat $export_symbols | $prefix_cmds >> $output_objdir/$libname.def~ $CC -Zdll -Zcrtdll -o $output_objdir/$soname $libobjs $deplibs $compiler_flags $output_objdir/$libname.def~ emximp -o $lib $output_objdir/$libname.def' old_archive_From_new_cmds='emximp -o $output_objdir/${libname}_dll.a $output_objdir/$libname.def' enable_shared_with_static_runtimes=yes ;; osf3*) if test yes = "$GCC"; then allow_undefined_flag=' $wl-expect_unresolved $wl\*' archive_cmds='$CC -shared$allow_undefined_flag $libobjs $deplibs $compiler_flags $wl-soname $wl$soname `test -n "$verstring" && func_echo_all "$wl-set_version $wl$verstring"` $wl-update_registry $wl$output_objdir/so_locations -o $lib' else allow_undefined_flag=' -expect_unresolved \*' archive_cmds='$CC -shared$allow_undefined_flag $libobjs $deplibs $compiler_flags -soname $soname `test -n "$verstring" && func_echo_all "-set_version $verstring"` -update_registry $output_objdir/so_locations -o $lib' fi archive_cmds_need_lc='no' hardcode_libdir_flag_spec='$wl-rpath $wl$libdir' hardcode_libdir_separator=: ;; osf4* | osf5*) # as osf3* with the addition of -msym flag if test yes = "$GCC"; then allow_undefined_flag=' $wl-expect_unresolved $wl\*' archive_cmds='$CC -shared$allow_undefined_flag $pic_flag $libobjs $deplibs $compiler_flags $wl-msym $wl-soname $wl$soname `test -n "$verstring" && func_echo_all "$wl-set_version $wl$verstring"` $wl-update_registry $wl$output_objdir/so_locations -o $lib' hardcode_libdir_flag_spec='$wl-rpath $wl$libdir' else allow_undefined_flag=' -expect_unresolved \*' archive_cmds='$CC -shared$allow_undefined_flag $libobjs $deplibs $compiler_flags -msym -soname $soname `test -n "$verstring" && func_echo_all "-set_version $verstring"` -update_registry $output_objdir/so_locations -o $lib' archive_expsym_cmds='for i in `cat $export_symbols`; do printf "%s %s\\n" -exported_symbol "\$i" >> $lib.exp; done; printf "%s\\n" "-hidden">> $lib.exp~ $CC -shared$allow_undefined_flag $wl-input $wl$lib.exp $compiler_flags $libobjs $deplibs -soname $soname `test -n "$verstring" && $ECHO "-set_version $verstring"` -update_registry $output_objdir/so_locations -o $lib~$RM $lib.exp' # Both c and cxx compiler support -rpath directly hardcode_libdir_flag_spec='-rpath $libdir' fi archive_cmds_need_lc='no' hardcode_libdir_separator=: ;; solaris*) no_undefined_flag=' -z defs' if test yes = "$GCC"; then wlarc='$wl' archive_cmds='$CC -shared $pic_flag $wl-z ${wl}text $wl-h $wl$soname -o $lib $libobjs $deplibs $compiler_flags' archive_expsym_cmds='echo "{ global:" > $lib.exp~cat $export_symbols | $SED -e "s/\(.*\)/\1;/" >> $lib.exp~echo "local: *; };" >> $lib.exp~ $CC -shared $pic_flag $wl-z ${wl}text $wl-M $wl$lib.exp $wl-h $wl$soname -o $lib $libobjs $deplibs $compiler_flags~$RM $lib.exp' else case `$CC -V 2>&1` in *"Compilers 5.0"*) wlarc='' archive_cmds='$LD -G$allow_undefined_flag -h $soname -o $lib $libobjs $deplibs $linker_flags' archive_expsym_cmds='echo "{ global:" > $lib.exp~cat $export_symbols | $SED -e "s/\(.*\)/\1;/" >> $lib.exp~echo "local: *; };" >> $lib.exp~ $LD -G$allow_undefined_flag -M $lib.exp -h $soname -o $lib $libobjs $deplibs $linker_flags~$RM $lib.exp' ;; *) wlarc='$wl' archive_cmds='$CC -G$allow_undefined_flag -h $soname -o $lib $libobjs $deplibs $compiler_flags' archive_expsym_cmds='echo "{ global:" > $lib.exp~cat $export_symbols | $SED -e "s/\(.*\)/\1;/" >> $lib.exp~echo "local: *; };" >> $lib.exp~ $CC -G$allow_undefined_flag -M $lib.exp -h $soname -o $lib $libobjs $deplibs $compiler_flags~$RM $lib.exp' ;; esac fi hardcode_libdir_flag_spec='-R$libdir' hardcode_shlibpath_var=no case $host_os in solaris2.[0-5] | solaris2.[0-5].*) ;; *) # The compiler driver will combine and reorder linker options, # but understands '-z linker_flag'. GCC discards it without '$wl', # but is careful enough not to reorder. # Supported since Solaris 2.6 (maybe 2.5.1?) if test yes = "$GCC"; then whole_archive_flag_spec='$wl-z ${wl}allextract$convenience $wl-z ${wl}defaultextract' else whole_archive_flag_spec='-z allextract$convenience -z defaultextract' fi ;; esac link_all_deplibs=yes ;; sunos4*) if test sequent = "$host_vendor"; then # Use $CC to link under sequent, because it throws in some extra .o # files that make .init and .fini sections work. archive_cmds='$CC -G $wl-h $soname -o $lib $libobjs $deplibs $compiler_flags' else archive_cmds='$LD -assert pure-text -Bstatic -o $lib $libobjs $deplibs $linker_flags' fi hardcode_libdir_flag_spec='-L$libdir' hardcode_direct=yes hardcode_minus_L=yes hardcode_shlibpath_var=no ;; sysv4) case $host_vendor in sni) archive_cmds='$LD -G -h $soname -o $lib $libobjs $deplibs $linker_flags' hardcode_direct=yes # is this really true??? ;; siemens) ## LD is ld it makes a PLAMLIB ## CC just makes a GrossModule. archive_cmds='$LD -G -o $lib $libobjs $deplibs $linker_flags' reload_cmds='$CC -r -o $output$reload_objs' hardcode_direct=no ;; motorola) archive_cmds='$LD -G -h $soname -o $lib $libobjs $deplibs $linker_flags' hardcode_direct=no #Motorola manual says yes, but my tests say they lie ;; esac runpath_var='LD_RUN_PATH' hardcode_shlibpath_var=no ;; sysv4.3*) archive_cmds='$LD -G -h $soname -o $lib $libobjs $deplibs $linker_flags' hardcode_shlibpath_var=no export_dynamic_flag_spec='-Bexport' ;; sysv4*MP*) if test -d /usr/nec; then archive_cmds='$LD -G -h $soname -o $lib $libobjs $deplibs $linker_flags' hardcode_shlibpath_var=no runpath_var=LD_RUN_PATH hardcode_runpath_var=yes ld_shlibs=yes fi ;; sysv4*uw2* | sysv5OpenUNIX* | sysv5UnixWare7.[01].[10]* | unixware7* | sco3.2v5.0.[024]*) no_undefined_flag='$wl-z,text' archive_cmds_need_lc=no hardcode_shlibpath_var=no runpath_var='LD_RUN_PATH' if test yes = "$GCC"; then archive_cmds='$CC -shared $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' archive_expsym_cmds='$CC -shared $wl-Bexport:$export_symbols $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' else archive_cmds='$CC -G $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' archive_expsym_cmds='$CC -G $wl-Bexport:$export_symbols $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' fi ;; sysv5* | sco3.2v5* | sco5v6*) # Note: We CANNOT use -z defs as we might desire, because we do not # link with -lc, and that would cause any symbols used from libc to # always be unresolved, which means just about no library would # ever link correctly. If we're not using GNU ld we use -z text # though, which does catch some bad symbols but isn't as heavy-handed # as -z defs. no_undefined_flag='$wl-z,text' allow_undefined_flag='$wl-z,nodefs' archive_cmds_need_lc=no hardcode_shlibpath_var=no hardcode_libdir_flag_spec='$wl-R,$libdir' hardcode_libdir_separator=':' link_all_deplibs=yes export_dynamic_flag_spec='$wl-Bexport' runpath_var='LD_RUN_PATH' if test yes = "$GCC"; then archive_cmds='$CC -shared $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' archive_expsym_cmds='$CC -shared $wl-Bexport:$export_symbols $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' else archive_cmds='$CC -G $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' archive_expsym_cmds='$CC -G $wl-Bexport:$export_symbols $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' fi ;; uts4*) archive_cmds='$LD -G -h $soname -o $lib $libobjs $deplibs $linker_flags' hardcode_libdir_flag_spec='-L$libdir' hardcode_shlibpath_var=no ;; *) ld_shlibs=no ;; esac if test sni = "$host_vendor"; then case $host in sysv4 | sysv4.2uw2* | sysv4.3* | sysv5*) export_dynamic_flag_spec='$wl-Blargedynsym' ;; esac fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ld_shlibs" >&5 $as_echo "$ld_shlibs" >&6; } test no = "$ld_shlibs" && can_build_shared=no with_gnu_ld=$with_gnu_ld # # Do we need to explicitly link libc? # case "x$archive_cmds_need_lc" in x|xyes) # Assume -lc should be added archive_cmds_need_lc=yes if test yes,yes = "$GCC,$enable_shared"; then case $archive_cmds in *'~'*) # FIXME: we may have to deal with multi-command sequences. ;; '$CC '*) # Test whether the compiler implicitly links with -lc since on some # systems, -lgcc has to come before -lc. If gcc already passes -lc # to ld, don't add -lc before -lgcc. { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether -lc should be explicitly linked in" >&5 $as_echo_n "checking whether -lc should be explicitly linked in... " >&6; } if ${lt_cv_archive_cmds_need_lc+:} false; then : $as_echo_n "(cached) " >&6 else $RM conftest* echo "$lt_simple_compile_test_code" > conftest.$ac_ext if { { eval echo "\"\$as_me\":${as_lineno-$LINENO}: \"$ac_compile\""; } >&5 (eval $ac_compile) 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } 2>conftest.err; then soname=conftest lib=conftest libobjs=conftest.$ac_objext deplibs= wl=$lt_prog_compiler_wl pic_flag=$lt_prog_compiler_pic compiler_flags=-v linker_flags=-v verstring= output_objdir=. libname=conftest lt_save_allow_undefined_flag=$allow_undefined_flag allow_undefined_flag= if { { eval echo "\"\$as_me\":${as_lineno-$LINENO}: \"$archive_cmds 2\>\&1 \| $GREP \" -lc \" \>/dev/null 2\>\&1\""; } >&5 (eval $archive_cmds 2\>\&1 \| $GREP \" -lc \" \>/dev/null 2\>\&1) 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } then lt_cv_archive_cmds_need_lc=no else lt_cv_archive_cmds_need_lc=yes fi allow_undefined_flag=$lt_save_allow_undefined_flag else cat conftest.err 1>&5 fi $RM conftest* fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_archive_cmds_need_lc" >&5 $as_echo "$lt_cv_archive_cmds_need_lc" >&6; } archive_cmds_need_lc=$lt_cv_archive_cmds_need_lc ;; esac fi ;; esac { $as_echo "$as_me:${as_lineno-$LINENO}: checking dynamic linker characteristics" >&5 $as_echo_n "checking dynamic linker characteristics... " >&6; } if test yes = "$GCC"; then case $host_os in darwin*) lt_awk_arg='/^libraries:/,/LR/' ;; *) lt_awk_arg='/^libraries:/' ;; esac case $host_os in mingw* | cegcc*) lt_sed_strip_eq='s|=\([A-Za-z]:\)|\1|g' ;; *) lt_sed_strip_eq='s|=/|/|g' ;; esac lt_search_path_spec=`$CC -print-search-dirs | awk $lt_awk_arg | $SED -e "s/^libraries://" -e $lt_sed_strip_eq` case $lt_search_path_spec in *\;*) # if the path contains ";" then we assume it to be the separator # otherwise default to the standard path separator (i.e. ":") - it is # assumed that no part of a normal pathname contains ";" but that should # okay in the real world where ";" in dirpaths is itself problematic. lt_search_path_spec=`$ECHO "$lt_search_path_spec" | $SED 's/;/ /g'` ;; *) lt_search_path_spec=`$ECHO "$lt_search_path_spec" | $SED "s/$PATH_SEPARATOR/ /g"` ;; esac # Ok, now we have the path, separated by spaces, we can step through it # and add multilib dir if necessary... lt_tmp_lt_search_path_spec= lt_multi_os_dir=/`$CC $CPPFLAGS $CFLAGS $LDFLAGS -print-multi-os-directory 2>/dev/null` # ...but if some path component already ends with the multilib dir we assume # that all is fine and trust -print-search-dirs as is (GCC 4.2? or newer). case "$lt_multi_os_dir; $lt_search_path_spec " in "/; "* | "/.; "* | "/./; "* | *"$lt_multi_os_dir "* | *"$lt_multi_os_dir/ "*) lt_multi_os_dir= ;; esac for lt_sys_path in $lt_search_path_spec; do if test -d "$lt_sys_path$lt_multi_os_dir"; then lt_tmp_lt_search_path_spec="$lt_tmp_lt_search_path_spec $lt_sys_path$lt_multi_os_dir" elif test -n "$lt_multi_os_dir"; then test -d "$lt_sys_path" && \ lt_tmp_lt_search_path_spec="$lt_tmp_lt_search_path_spec $lt_sys_path" fi done lt_search_path_spec=`$ECHO "$lt_tmp_lt_search_path_spec" | awk ' BEGIN {RS = " "; FS = "/|\n";} { lt_foo = ""; lt_count = 0; for (lt_i = NF; lt_i > 0; lt_i--) { if ($lt_i != "" && $lt_i != ".") { if ($lt_i == "..") { lt_count++; } else { if (lt_count == 0) { lt_foo = "/" $lt_i lt_foo; } else { lt_count--; } } } } if (lt_foo != "") { lt_freq[lt_foo]++; } if (lt_freq[lt_foo] == 1) { print lt_foo; } }'` # AWK program above erroneously prepends '/' to C:/dos/paths # for these hosts. case $host_os in mingw* | cegcc*) lt_search_path_spec=`$ECHO "$lt_search_path_spec" |\ $SED 's|/\([A-Za-z]:\)|\1|g'` ;; esac sys_lib_search_path_spec=`$ECHO "$lt_search_path_spec" | $lt_NL2SP` else sys_lib_search_path_spec="/lib /usr/lib /usr/local/lib" fi library_names_spec= libname_spec='lib$name' soname_spec= shrext_cmds=.so postinstall_cmds= postuninstall_cmds= finish_cmds= finish_eval= shlibpath_var= shlibpath_overrides_runpath=unknown version_type=none dynamic_linker="$host_os ld.so" sys_lib_dlsearch_path_spec="/lib /usr/lib" need_lib_prefix=unknown hardcode_into_libs=no # when you set need_version to no, make sure it does not cause -set_version # flags to be left without arguments need_version=unknown case $host_os in aix3*) version_type=linux # correct to gnu/linux during the next big refactor library_names_spec='$libname$release$shared_ext$versuffix $libname.a' shlibpath_var=LIBPATH # AIX 3 has no versioning support, so we append a major version to the name. soname_spec='$libname$release$shared_ext$major' ;; aix[4-9]*) version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no hardcode_into_libs=yes if test ia64 = "$host_cpu"; then # AIX 5 supports IA64 library_names_spec='$libname$release$shared_ext$major $libname$release$shared_ext$versuffix $libname$shared_ext' shlibpath_var=LD_LIBRARY_PATH else # With GCC up to 2.95.x, collect2 would create an import file # for dependence libraries. The import file would start with # the line '#! .'. This would cause the generated library to # depend on '.', always an invalid library. This was fixed in # development snapshots of GCC prior to 3.0. case $host_os in aix4 | aix4.[01] | aix4.[01].*) if { echo '#if __GNUC__ > 2 || (__GNUC__ == 2 && __GNUC_MINOR__ >= 97)' echo ' yes ' echo '#endif'; } | $CC -E - | $GREP yes > /dev/null; then : else can_build_shared=no fi ;; esac # Using Import Files as archive members, it is possible to support # filename-based versioning of shared library archives on AIX. While # this would work for both with and without runtime linking, it will # prevent static linking of such archives. So we do filename-based # shared library versioning with .so extension only, which is used # when both runtime linking and shared linking is enabled. # Unfortunately, runtime linking may impact performance, so we do # not want this to be the default eventually. Also, we use the # versioned .so libs for executables only if there is the -brtl # linker flag in LDFLAGS as well, or --with-aix-soname=svr4 only. # To allow for filename-based versioning support, we need to create # libNAME.so.V as an archive file, containing: # *) an Import File, referring to the versioned filename of the # archive as well as the shared archive member, telling the # bitwidth (32 or 64) of that shared object, and providing the # list of exported symbols of that shared object, eventually # decorated with the 'weak' keyword # *) the shared object with the F_LOADONLY flag set, to really avoid # it being seen by the linker. # At run time we better use the real file rather than another symlink, # but for link time we create the symlink libNAME.so -> libNAME.so.V case $with_aix_soname,$aix_use_runtimelinking in # AIX (on Power*) has no versioning support, so currently we cannot hardcode correct # soname into executable. Probably we can add versioning support to # collect2, so additional links can be useful in future. aix,yes) # traditional libtool dynamic_linker='AIX unversionable lib.so' # If using run time linking (on AIX 4.2 or later) use lib.so # instead of lib.a to let people know that these are not # typical AIX shared libraries. library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' ;; aix,no) # traditional AIX only dynamic_linker='AIX lib.a(lib.so.V)' # We preserve .a as extension for shared libraries through AIX4.2 # and later when we are not doing run time linking. library_names_spec='$libname$release.a $libname.a' soname_spec='$libname$release$shared_ext$major' ;; svr4,*) # full svr4 only dynamic_linker="AIX lib.so.V($shared_archive_member_spec.o)" library_names_spec='$libname$release$shared_ext$major $libname$shared_ext' # We do not specify a path in Import Files, so LIBPATH fires. shlibpath_overrides_runpath=yes ;; *,yes) # both, prefer svr4 dynamic_linker="AIX lib.so.V($shared_archive_member_spec.o), lib.a(lib.so.V)" library_names_spec='$libname$release$shared_ext$major $libname$shared_ext' # unpreferred sharedlib libNAME.a needs extra handling postinstall_cmds='test -n "$linkname" || linkname="$realname"~func_stripname "" ".so" "$linkname"~$install_shared_prog "$dir/$func_stripname_result.$libext" "$destdir/$func_stripname_result.$libext"~test -z "$tstripme" || test -z "$striplib" || $striplib "$destdir/$func_stripname_result.$libext"' postuninstall_cmds='for n in $library_names $old_library; do :; done~func_stripname "" ".so" "$n"~test "$func_stripname_result" = "$n" || func_append rmfiles " $odir/$func_stripname_result.$libext"' # We do not specify a path in Import Files, so LIBPATH fires. shlibpath_overrides_runpath=yes ;; *,no) # both, prefer aix dynamic_linker="AIX lib.a(lib.so.V), lib.so.V($shared_archive_member_spec.o)" library_names_spec='$libname$release.a $libname.a' soname_spec='$libname$release$shared_ext$major' # unpreferred sharedlib libNAME.so.V and symlink libNAME.so need extra handling postinstall_cmds='test -z "$dlname" || $install_shared_prog $dir/$dlname $destdir/$dlname~test -z "$tstripme" || test -z "$striplib" || $striplib $destdir/$dlname~test -n "$linkname" || linkname=$realname~func_stripname "" ".a" "$linkname"~(cd "$destdir" && $LN_S -f $dlname $func_stripname_result.so)' postuninstall_cmds='test -z "$dlname" || func_append rmfiles " $odir/$dlname"~for n in $old_library $library_names; do :; done~func_stripname "" ".a" "$n"~func_append rmfiles " $odir/$func_stripname_result.so"' ;; esac shlibpath_var=LIBPATH fi ;; amigaos*) case $host_cpu in powerpc) # Since July 2007 AmigaOS4 officially supports .so libraries. # When compiling the executable, add -use-dynld -Lsobjs: to the compileline. library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' ;; m68k) library_names_spec='$libname.ixlibrary $libname.a' # Create ${libname}_ixlibrary.a entries in /sys/libs. finish_eval='for lib in `ls $libdir/*.ixlibrary 2>/dev/null`; do libname=`func_echo_all "$lib" | $SED '\''s%^.*/\([^/]*\)\.ixlibrary$%\1%'\''`; $RM /sys/libs/${libname}_ixlibrary.a; $show "cd /sys/libs && $LN_S $lib ${libname}_ixlibrary.a"; cd /sys/libs && $LN_S $lib ${libname}_ixlibrary.a || exit 1; done' ;; esac ;; beos*) library_names_spec='$libname$shared_ext' dynamic_linker="$host_os ld.so" shlibpath_var=LIBRARY_PATH ;; bsdi[45]*) version_type=linux # correct to gnu/linux during the next big refactor need_version=no library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' finish_cmds='PATH="\$PATH:/sbin" ldconfig $libdir' shlibpath_var=LD_LIBRARY_PATH sys_lib_search_path_spec="/shlib /usr/lib /usr/X11/lib /usr/contrib/lib /lib /usr/local/lib" sys_lib_dlsearch_path_spec="/shlib /usr/lib /usr/local/lib" # the default ld.so.conf also contains /usr/contrib/lib and # /usr/X11R6/lib (/usr/X11 is a link to /usr/X11R6), but let us allow # libtool to hard-code these into programs ;; cygwin* | mingw* | pw32* | cegcc*) version_type=windows shrext_cmds=.dll need_version=no need_lib_prefix=no case $GCC,$cc_basename in yes,*) # gcc library_names_spec='$libname.dll.a' # DLL is installed to $(libdir)/../bin by postinstall_cmds postinstall_cmds='base_file=`basename \$file`~ dlpath=`$SHELL 2>&1 -c '\''. $dir/'\''\$base_file'\''i; echo \$dlname'\''`~ dldir=$destdir/`dirname \$dlpath`~ test -d \$dldir || mkdir -p \$dldir~ $install_prog $dir/$dlname \$dldir/$dlname~ chmod a+x \$dldir/$dlname~ if test -n '\''$stripme'\'' && test -n '\''$striplib'\''; then eval '\''$striplib \$dldir/$dlname'\'' || exit \$?; fi' postuninstall_cmds='dldll=`$SHELL 2>&1 -c '\''. $file; echo \$dlname'\''`~ dlpath=$dir/\$dldll~ $RM \$dlpath' shlibpath_overrides_runpath=yes case $host_os in cygwin*) # Cygwin DLLs use 'cyg' prefix rather than 'lib' soname_spec='`echo $libname | sed -e 's/^lib/cyg/'``echo $release | $SED -e 's/[.]/-/g'`$versuffix$shared_ext' sys_lib_search_path_spec="$sys_lib_search_path_spec /usr/lib/w32api" ;; mingw* | cegcc*) # MinGW DLLs use traditional 'lib' prefix soname_spec='$libname`echo $release | $SED -e 's/[.]/-/g'`$versuffix$shared_ext' ;; pw32*) # pw32 DLLs use 'pw' prefix rather than 'lib' library_names_spec='`echo $libname | sed -e 's/^lib/pw/'``echo $release | $SED -e 's/[.]/-/g'`$versuffix$shared_ext' ;; esac dynamic_linker='Win32 ld.exe' ;; *,cl*) # Native MSVC libname_spec='$name' soname_spec='$libname`echo $release | $SED -e 's/[.]/-/g'`$versuffix$shared_ext' library_names_spec='$libname.dll.lib' case $build_os in mingw*) sys_lib_search_path_spec= lt_save_ifs=$IFS IFS=';' for lt_path in $LIB do IFS=$lt_save_ifs # Let DOS variable expansion print the short 8.3 style file name. lt_path=`cd "$lt_path" 2>/dev/null && cmd //C "for %i in (".") do @echo %~si"` sys_lib_search_path_spec="$sys_lib_search_path_spec $lt_path" done IFS=$lt_save_ifs # Convert to MSYS style. sys_lib_search_path_spec=`$ECHO "$sys_lib_search_path_spec" | sed -e 's|\\\\|/|g' -e 's| \\([a-zA-Z]\\):| /\\1|g' -e 's|^ ||'` ;; cygwin*) # Convert to unix form, then to dos form, then back to unix form # but this time dos style (no spaces!) so that the unix form looks # like /cygdrive/c/PROGRA~1:/cygdr... sys_lib_search_path_spec=`cygpath --path --unix "$LIB"` sys_lib_search_path_spec=`cygpath --path --dos "$sys_lib_search_path_spec" 2>/dev/null` sys_lib_search_path_spec=`cygpath --path --unix "$sys_lib_search_path_spec" | $SED -e "s/$PATH_SEPARATOR/ /g"` ;; *) sys_lib_search_path_spec=$LIB if $ECHO "$sys_lib_search_path_spec" | $GREP ';[c-zC-Z]:/' >/dev/null; then # It is most probably a Windows format PATH. sys_lib_search_path_spec=`$ECHO "$sys_lib_search_path_spec" | $SED -e 's/;/ /g'` else sys_lib_search_path_spec=`$ECHO "$sys_lib_search_path_spec" | $SED -e "s/$PATH_SEPARATOR/ /g"` fi # FIXME: find the short name or the path components, as spaces are # common. (e.g. "Program Files" -> "PROGRA~1") ;; esac # DLL is installed to $(libdir)/../bin by postinstall_cmds postinstall_cmds='base_file=`basename \$file`~ dlpath=`$SHELL 2>&1 -c '\''. $dir/'\''\$base_file'\''i; echo \$dlname'\''`~ dldir=$destdir/`dirname \$dlpath`~ test -d \$dldir || mkdir -p \$dldir~ $install_prog $dir/$dlname \$dldir/$dlname' postuninstall_cmds='dldll=`$SHELL 2>&1 -c '\''. $file; echo \$dlname'\''`~ dlpath=$dir/\$dldll~ $RM \$dlpath' shlibpath_overrides_runpath=yes dynamic_linker='Win32 link.exe' ;; *) # Assume MSVC wrapper library_names_spec='$libname`echo $release | $SED -e 's/[.]/-/g'`$versuffix$shared_ext $libname.lib' dynamic_linker='Win32 ld.exe' ;; esac # FIXME: first we should search . and the directory the executable is in shlibpath_var=PATH ;; darwin* | rhapsody*) dynamic_linker="$host_os dyld" version_type=darwin need_lib_prefix=no need_version=no library_names_spec='$libname$release$major$shared_ext $libname$shared_ext' soname_spec='$libname$release$major$shared_ext' shlibpath_overrides_runpath=yes shlibpath_var=DYLD_LIBRARY_PATH shrext_cmds='`test .$module = .yes && echo .so || echo .dylib`' sys_lib_search_path_spec="$sys_lib_search_path_spec /usr/local/lib" sys_lib_dlsearch_path_spec='/usr/local/lib /lib /usr/lib' ;; dgux*) version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' shlibpath_var=LD_LIBRARY_PATH ;; freebsd* | dragonfly*) # DragonFly does not have aout. When/if they implement a new # versioning mechanism, adjust this. if test -x /usr/bin/objformat; then objformat=`/usr/bin/objformat` else case $host_os in freebsd[23].*) objformat=aout ;; *) objformat=elf ;; esac fi version_type=freebsd-$objformat case $version_type in freebsd-elf*) library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' need_version=no need_lib_prefix=no ;; freebsd-*) library_names_spec='$libname$release$shared_ext$versuffix $libname$shared_ext$versuffix' need_version=yes ;; esac shlibpath_var=LD_LIBRARY_PATH case $host_os in freebsd2.*) shlibpath_overrides_runpath=yes ;; freebsd3.[01]* | freebsdelf3.[01]*) shlibpath_overrides_runpath=yes hardcode_into_libs=yes ;; freebsd3.[2-9]* | freebsdelf3.[2-9]* | \ freebsd4.[0-5] | freebsdelf4.[0-5] | freebsd4.1.1 | freebsdelf4.1.1) shlibpath_overrides_runpath=no hardcode_into_libs=yes ;; *) # from 4.6 on, and DragonFly shlibpath_overrides_runpath=yes hardcode_into_libs=yes ;; esac ;; haiku*) version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no dynamic_linker="$host_os runtime_loader" library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' shlibpath_var=LIBRARY_PATH shlibpath_overrides_runpath=no sys_lib_dlsearch_path_spec='/boot/home/config/lib /boot/common/lib /boot/system/lib' hardcode_into_libs=yes ;; hpux9* | hpux10* | hpux11*) # Give a soname corresponding to the major version so that dld.sl refuses to # link against other versions. version_type=sunos need_lib_prefix=no need_version=no case $host_cpu in ia64*) shrext_cmds='.so' hardcode_into_libs=yes dynamic_linker="$host_os dld.so" shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes # Unless +noenvvar is specified. library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' if test 32 = "$HPUX_IA64_MODE"; then sys_lib_search_path_spec="/usr/lib/hpux32 /usr/local/lib/hpux32 /usr/local/lib" sys_lib_dlsearch_path_spec=/usr/lib/hpux32 else sys_lib_search_path_spec="/usr/lib/hpux64 /usr/local/lib/hpux64" sys_lib_dlsearch_path_spec=/usr/lib/hpux64 fi ;; hppa*64*) shrext_cmds='.sl' hardcode_into_libs=yes dynamic_linker="$host_os dld.sl" shlibpath_var=LD_LIBRARY_PATH # How should we handle SHLIB_PATH shlibpath_overrides_runpath=yes # Unless +noenvvar is specified. library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' sys_lib_search_path_spec="/usr/lib/pa20_64 /usr/ccs/lib/pa20_64" sys_lib_dlsearch_path_spec=$sys_lib_search_path_spec ;; *) shrext_cmds='.sl' dynamic_linker="$host_os dld.sl" shlibpath_var=SHLIB_PATH shlibpath_overrides_runpath=no # +s is required to enable SHLIB_PATH library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' ;; esac # HP-UX runs *really* slowly unless shared libraries are mode 555, ... postinstall_cmds='chmod 555 $lib' # or fails outright, so override atomically: install_override_mode=555 ;; interix[3-9]*) version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' dynamic_linker='Interix 3.x ld.so.1 (PE, like ELF)' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=no hardcode_into_libs=yes ;; irix5* | irix6* | nonstopux*) case $host_os in nonstopux*) version_type=nonstopux ;; *) if test yes = "$lt_cv_prog_gnu_ld"; then version_type=linux # correct to gnu/linux during the next big refactor else version_type=irix fi ;; esac need_lib_prefix=no need_version=no soname_spec='$libname$release$shared_ext$major' library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$release$shared_ext $libname$shared_ext' case $host_os in irix5* | nonstopux*) libsuff= shlibsuff= ;; *) case $LD in # libtool.m4 will add one of these switches to LD *-32|*"-32 "|*-melf32bsmip|*"-melf32bsmip ") libsuff= shlibsuff= libmagic=32-bit;; *-n32|*"-n32 "|*-melf32bmipn32|*"-melf32bmipn32 ") libsuff=32 shlibsuff=N32 libmagic=N32;; *-64|*"-64 "|*-melf64bmip|*"-melf64bmip ") libsuff=64 shlibsuff=64 libmagic=64-bit;; *) libsuff= shlibsuff= libmagic=never-match;; esac ;; esac shlibpath_var=LD_LIBRARY${shlibsuff}_PATH shlibpath_overrides_runpath=no sys_lib_search_path_spec="/usr/lib$libsuff /lib$libsuff /usr/local/lib$libsuff" sys_lib_dlsearch_path_spec="/usr/lib$libsuff /lib$libsuff" hardcode_into_libs=yes ;; # No shared lib support for Linux oldld, aout, or coff. linux*oldld* | linux*aout* | linux*coff*) dynamic_linker=no ;; linux*android*) version_type=none # Android doesn't support versioned libraries. need_lib_prefix=no need_version=no library_names_spec='$libname$release$shared_ext' soname_spec='$libname$release$shared_ext' finish_cmds= shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes # This implies no fast_install, which is unacceptable. # Some rework will be needed to allow for fast_install # before this can be enabled. hardcode_into_libs=yes dynamic_linker='Android linker' # Don't embed -rpath directories since the linker doesn't support them. hardcode_libdir_flag_spec='-L$libdir' ;; # This must be glibc/ELF. linux* | k*bsd*-gnu | kopensolaris*-gnu | gnu*) version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' finish_cmds='PATH="\$PATH:/sbin" ldconfig -n $libdir' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=no # Some binutils ld are patched to set DT_RUNPATH if ${lt_cv_shlibpath_overrides_runpath+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_shlibpath_overrides_runpath=no save_LDFLAGS=$LDFLAGS save_libdir=$libdir eval "libdir=/foo; wl=\"$lt_prog_compiler_wl\"; \ LDFLAGS=\"\$LDFLAGS $hardcode_libdir_flag_spec\"" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : if ($OBJDUMP -p conftest$ac_exeext) 2>/dev/null | grep "RUNPATH.*$libdir" >/dev/null; then : lt_cv_shlibpath_overrides_runpath=yes fi fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LDFLAGS=$save_LDFLAGS libdir=$save_libdir fi shlibpath_overrides_runpath=$lt_cv_shlibpath_overrides_runpath # This implies no fast_install, which is unacceptable. # Some rework will be needed to allow for fast_install # before this can be enabled. hardcode_into_libs=yes # Add ABI-specific directories to the system library path. sys_lib_dlsearch_path_spec="/lib64 /usr/lib64 /lib /usr/lib" # Ideally, we could use ldconfig to report *all* directores which are # searched for libraries, however this is still not possible. Aside from not # being certain /sbin/ldconfig is available, command # 'ldconfig -N -X -v | grep ^/' on 64bit Fedora does not report /usr/lib64, # even though it is searched at run-time. Try to do the best guess by # appending ld.so.conf contents (and includes) to the search path. if test -f /etc/ld.so.conf; then lt_ld_extra=`awk '/^include / { system(sprintf("cd /etc; cat %s 2>/dev/null", \$2)); skip = 1; } { if (!skip) print \$0; skip = 0; }' < /etc/ld.so.conf | $SED -e 's/#.*//;/^[ ]*hwcap[ ]/d;s/[:, ]/ /g;s/=[^=]*$//;s/=[^= ]* / /g;s/"//g;/^$/d' | tr '\n' ' '` sys_lib_dlsearch_path_spec="$sys_lib_dlsearch_path_spec $lt_ld_extra" fi # We used to test for /lib/ld.so.1 and disable shared libraries on # powerpc, because MkLinux only supported shared libraries with the # GNU dynamic linker. Since this was broken with cross compilers, # most powerpc-linux boxes support dynamic linking these days and # people can always --disable-shared, the test was removed, and we # assume the GNU/Linux dynamic linker is in use. dynamic_linker='GNU/Linux ld.so' ;; netbsd*) version_type=sunos need_lib_prefix=no need_version=no if echo __ELF__ | $CC -E - | $GREP __ELF__ >/dev/null; then library_names_spec='$libname$release$shared_ext$versuffix $libname$shared_ext$versuffix' finish_cmds='PATH="\$PATH:/sbin" ldconfig -m $libdir' dynamic_linker='NetBSD (a.out) ld.so' else library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' dynamic_linker='NetBSD ld.elf_so' fi shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes hardcode_into_libs=yes ;; newsos6) version_type=linux # correct to gnu/linux during the next big refactor library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes ;; *nto* | *qnx*) version_type=qnx need_lib_prefix=no need_version=no library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=no hardcode_into_libs=yes dynamic_linker='ldqnx.so' ;; openbsd* | bitrig*) version_type=sunos sys_lib_dlsearch_path_spec=/usr/lib need_lib_prefix=no if test -z "`echo __ELF__ | $CC -E - | $GREP __ELF__`"; then need_version=no else need_version=yes fi library_names_spec='$libname$release$shared_ext$versuffix $libname$shared_ext$versuffix' finish_cmds='PATH="\$PATH:/sbin" ldconfig -m $libdir' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes ;; os2*) libname_spec='$name' version_type=windows shrext_cmds=.dll need_version=no need_lib_prefix=no # OS/2 can only load a DLL with a base name of 8 characters or less. soname_spec='`test -n "$os2dllname" && libname="$os2dllname"; v=$($ECHO $release$versuffix | tr -d .-); n=$($ECHO $libname | cut -b -$((8 - ${#v})) | tr . _); $ECHO $n$v`$shared_ext' library_names_spec='${libname}_dll.$libext' dynamic_linker='OS/2 ld.exe' shlibpath_var=BEGINLIBPATH sys_lib_search_path_spec="/lib /usr/lib /usr/local/lib" sys_lib_dlsearch_path_spec=$sys_lib_search_path_spec postinstall_cmds='base_file=`basename \$file`~ dlpath=`$SHELL 2>&1 -c '\''. $dir/'\''\$base_file'\''i; $ECHO \$dlname'\''`~ dldir=$destdir/`dirname \$dlpath`~ test -d \$dldir || mkdir -p \$dldir~ $install_prog $dir/$dlname \$dldir/$dlname~ chmod a+x \$dldir/$dlname~ if test -n '\''$stripme'\'' && test -n '\''$striplib'\''; then eval '\''$striplib \$dldir/$dlname'\'' || exit \$?; fi' postuninstall_cmds='dldll=`$SHELL 2>&1 -c '\''. $file; $ECHO \$dlname'\''`~ dlpath=$dir/\$dldll~ $RM \$dlpath' ;; osf3* | osf4* | osf5*) version_type=osf need_lib_prefix=no need_version=no soname_spec='$libname$release$shared_ext$major' library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' shlibpath_var=LD_LIBRARY_PATH sys_lib_search_path_spec="/usr/shlib /usr/ccs/lib /usr/lib/cmplrs/cc /usr/lib /usr/local/lib /var/shlib" sys_lib_dlsearch_path_spec=$sys_lib_search_path_spec ;; rdos*) dynamic_linker=no ;; solaris*) version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes hardcode_into_libs=yes # ldd complains unless libraries are executable postinstall_cmds='chmod +x $lib' ;; sunos4*) version_type=sunos library_names_spec='$libname$release$shared_ext$versuffix $libname$shared_ext$versuffix' finish_cmds='PATH="\$PATH:/usr/etc" ldconfig $libdir' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes if test yes = "$with_gnu_ld"; then need_lib_prefix=no fi need_version=yes ;; sysv4 | sysv4.3*) version_type=linux # correct to gnu/linux during the next big refactor library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' shlibpath_var=LD_LIBRARY_PATH case $host_vendor in sni) shlibpath_overrides_runpath=no need_lib_prefix=no runpath_var=LD_RUN_PATH ;; siemens) need_lib_prefix=no ;; motorola) need_lib_prefix=no need_version=no shlibpath_overrides_runpath=no sys_lib_search_path_spec='/lib /usr/lib /usr/ccs/lib' ;; esac ;; sysv4*MP*) if test -d /usr/nec; then version_type=linux # correct to gnu/linux during the next big refactor library_names_spec='$libname$shared_ext.$versuffix $libname$shared_ext.$major $libname$shared_ext' soname_spec='$libname$shared_ext.$major' shlibpath_var=LD_LIBRARY_PATH fi ;; sysv5* | sco3.2v5* | sco5v6* | unixware* | OpenUNIX* | sysv4*uw2*) version_type=sco need_lib_prefix=no need_version=no library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes hardcode_into_libs=yes if test yes = "$with_gnu_ld"; then sys_lib_search_path_spec='/usr/local/lib /usr/gnu/lib /usr/ccs/lib /usr/lib /lib' else sys_lib_search_path_spec='/usr/ccs/lib /usr/lib' case $host_os in sco3.2v5*) sys_lib_search_path_spec="$sys_lib_search_path_spec /lib" ;; esac fi sys_lib_dlsearch_path_spec='/usr/lib' ;; tpf*) # TPF is a cross-target only. Preferred cross-host = GNU/Linux. version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=no hardcode_into_libs=yes ;; uts4*) version_type=linux # correct to gnu/linux during the next big refactor library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' shlibpath_var=LD_LIBRARY_PATH ;; *) dynamic_linker=no ;; esac { $as_echo "$as_me:${as_lineno-$LINENO}: result: $dynamic_linker" >&5 $as_echo "$dynamic_linker" >&6; } test no = "$dynamic_linker" && can_build_shared=no variables_saved_for_relink="PATH $shlibpath_var $runpath_var" if test yes = "$GCC"; then variables_saved_for_relink="$variables_saved_for_relink GCC_EXEC_PREFIX COMPILER_PATH LIBRARY_PATH" fi if test set = "${lt_cv_sys_lib_search_path_spec+set}"; then sys_lib_search_path_spec=$lt_cv_sys_lib_search_path_spec fi if test set = "${lt_cv_sys_lib_dlsearch_path_spec+set}"; then sys_lib_dlsearch_path_spec=$lt_cv_sys_lib_dlsearch_path_spec fi # remember unaugmented sys_lib_dlsearch_path content for libtool script decls... configure_time_dlsearch_path=$sys_lib_dlsearch_path_spec # ... but it needs LT_SYS_LIBRARY_PATH munging for other configure-time code func_munge_path_list sys_lib_dlsearch_path_spec "$LT_SYS_LIBRARY_PATH" # to be used as default LT_SYS_LIBRARY_PATH value in generated libtool configure_time_lt_sys_library_path=$LT_SYS_LIBRARY_PATH { $as_echo "$as_me:${as_lineno-$LINENO}: checking how to hardcode library paths into programs" >&5 $as_echo_n "checking how to hardcode library paths into programs... " >&6; } hardcode_action= if test -n "$hardcode_libdir_flag_spec" || test -n "$runpath_var" || test yes = "$hardcode_automatic"; then # We can hardcode non-existent directories. if test no != "$hardcode_direct" && # If the only mechanism to avoid hardcoding is shlibpath_var, we # have to relink, otherwise we might link with an installed library # when we should be linking with a yet-to-be-installed one ## test no != "$_LT_TAGVAR(hardcode_shlibpath_var, )" && test no != "$hardcode_minus_L"; then # Linking always hardcodes the temporary library directory. hardcode_action=relink else # We can link without hardcoding, and we can hardcode nonexisting dirs. hardcode_action=immediate fi else # We cannot hardcode anything, or else we can only hardcode existing # directories. hardcode_action=unsupported fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $hardcode_action" >&5 $as_echo "$hardcode_action" >&6; } if test relink = "$hardcode_action" || test yes = "$inherit_rpath"; then # Fast installation is not supported enable_fast_install=no elif test yes = "$shlibpath_overrides_runpath" || test no = "$enable_shared"; then # Fast installation is not necessary enable_fast_install=needless fi if test yes != "$enable_dlopen"; then enable_dlopen=unknown enable_dlopen_self=unknown enable_dlopen_self_static=unknown else lt_cv_dlopen=no lt_cv_dlopen_libs= case $host_os in beos*) lt_cv_dlopen=load_add_on lt_cv_dlopen_libs= lt_cv_dlopen_self=yes ;; mingw* | pw32* | cegcc*) lt_cv_dlopen=LoadLibrary lt_cv_dlopen_libs= ;; cygwin*) lt_cv_dlopen=dlopen lt_cv_dlopen_libs= ;; darwin*) # if libdl is installed we need to link against it { $as_echo "$as_me:${as_lineno-$LINENO}: checking for dlopen in -ldl" >&5 $as_echo_n "checking for dlopen in -ldl... " >&6; } if ${ac_cv_lib_dl_dlopen+:} false; then : $as_echo_n "(cached) " >&6 else ac_check_lib_save_LIBS=$LIBS LIBS="-ldl $LIBS" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ /* Override any GCC internal prototype to avoid an error. Use char because int might match the return type of a GCC builtin and then its argument prototype would still apply. */ #ifdef __cplusplus extern "C" #endif char dlopen (); int main () { return dlopen (); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ac_cv_lib_dl_dlopen=yes else ac_cv_lib_dl_dlopen=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS=$ac_check_lib_save_LIBS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_lib_dl_dlopen" >&5 $as_echo "$ac_cv_lib_dl_dlopen" >&6; } if test "x$ac_cv_lib_dl_dlopen" = xyes; then : lt_cv_dlopen=dlopen lt_cv_dlopen_libs=-ldl else lt_cv_dlopen=dyld lt_cv_dlopen_libs= lt_cv_dlopen_self=yes fi ;; tpf*) # Don't try to run any link tests for TPF. We know it's impossible # because TPF is a cross-compiler, and we know how we open DSOs. lt_cv_dlopen=dlopen lt_cv_dlopen_libs= lt_cv_dlopen_self=no ;; *) ac_fn_c_check_func "$LINENO" "shl_load" "ac_cv_func_shl_load" if test "x$ac_cv_func_shl_load" = xyes; then : lt_cv_dlopen=shl_load else { $as_echo "$as_me:${as_lineno-$LINENO}: checking for shl_load in -ldld" >&5 $as_echo_n "checking for shl_load in -ldld... " >&6; } if ${ac_cv_lib_dld_shl_load+:} false; then : $as_echo_n "(cached) " >&6 else ac_check_lib_save_LIBS=$LIBS LIBS="-ldld $LIBS" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ /* Override any GCC internal prototype to avoid an error. Use char because int might match the return type of a GCC builtin and then its argument prototype would still apply. */ #ifdef __cplusplus extern "C" #endif char shl_load (); int main () { return shl_load (); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ac_cv_lib_dld_shl_load=yes else ac_cv_lib_dld_shl_load=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS=$ac_check_lib_save_LIBS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_lib_dld_shl_load" >&5 $as_echo "$ac_cv_lib_dld_shl_load" >&6; } if test "x$ac_cv_lib_dld_shl_load" = xyes; then : lt_cv_dlopen=shl_load lt_cv_dlopen_libs=-ldld else ac_fn_c_check_func "$LINENO" "dlopen" "ac_cv_func_dlopen" if test "x$ac_cv_func_dlopen" = xyes; then : lt_cv_dlopen=dlopen else { $as_echo "$as_me:${as_lineno-$LINENO}: checking for dlopen in -ldl" >&5 $as_echo_n "checking for dlopen in -ldl... " >&6; } if ${ac_cv_lib_dl_dlopen+:} false; then : $as_echo_n "(cached) " >&6 else ac_check_lib_save_LIBS=$LIBS LIBS="-ldl $LIBS" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ /* Override any GCC internal prototype to avoid an error. Use char because int might match the return type of a GCC builtin and then its argument prototype would still apply. */ #ifdef __cplusplus extern "C" #endif char dlopen (); int main () { return dlopen (); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ac_cv_lib_dl_dlopen=yes else ac_cv_lib_dl_dlopen=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS=$ac_check_lib_save_LIBS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_lib_dl_dlopen" >&5 $as_echo "$ac_cv_lib_dl_dlopen" >&6; } if test "x$ac_cv_lib_dl_dlopen" = xyes; then : lt_cv_dlopen=dlopen lt_cv_dlopen_libs=-ldl else { $as_echo "$as_me:${as_lineno-$LINENO}: checking for dlopen in -lsvld" >&5 $as_echo_n "checking for dlopen in -lsvld... " >&6; } if ${ac_cv_lib_svld_dlopen+:} false; then : $as_echo_n "(cached) " >&6 else ac_check_lib_save_LIBS=$LIBS LIBS="-lsvld $LIBS" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ /* Override any GCC internal prototype to avoid an error. Use char because int might match the return type of a GCC builtin and then its argument prototype would still apply. */ #ifdef __cplusplus extern "C" #endif char dlopen (); int main () { return dlopen (); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ac_cv_lib_svld_dlopen=yes else ac_cv_lib_svld_dlopen=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS=$ac_check_lib_save_LIBS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_lib_svld_dlopen" >&5 $as_echo "$ac_cv_lib_svld_dlopen" >&6; } if test "x$ac_cv_lib_svld_dlopen" = xyes; then : lt_cv_dlopen=dlopen lt_cv_dlopen_libs=-lsvld else { $as_echo "$as_me:${as_lineno-$LINENO}: checking for dld_link in -ldld" >&5 $as_echo_n "checking for dld_link in -ldld... " >&6; } if ${ac_cv_lib_dld_dld_link+:} false; then : $as_echo_n "(cached) " >&6 else ac_check_lib_save_LIBS=$LIBS LIBS="-ldld $LIBS" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ /* Override any GCC internal prototype to avoid an error. Use char because int might match the return type of a GCC builtin and then its argument prototype would still apply. */ #ifdef __cplusplus extern "C" #endif char dld_link (); int main () { return dld_link (); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ac_cv_lib_dld_dld_link=yes else ac_cv_lib_dld_dld_link=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS=$ac_check_lib_save_LIBS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_lib_dld_dld_link" >&5 $as_echo "$ac_cv_lib_dld_dld_link" >&6; } if test "x$ac_cv_lib_dld_dld_link" = xyes; then : lt_cv_dlopen=dld_link lt_cv_dlopen_libs=-ldld fi fi fi fi fi fi ;; esac if test no = "$lt_cv_dlopen"; then enable_dlopen=no else enable_dlopen=yes fi case $lt_cv_dlopen in dlopen) save_CPPFLAGS=$CPPFLAGS test yes = "$ac_cv_header_dlfcn_h" && CPPFLAGS="$CPPFLAGS -DHAVE_DLFCN_H" save_LDFLAGS=$LDFLAGS wl=$lt_prog_compiler_wl eval LDFLAGS=\"\$LDFLAGS $export_dynamic_flag_spec\" save_LIBS=$LIBS LIBS="$lt_cv_dlopen_libs $LIBS" { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether a program can dlopen itself" >&5 $as_echo_n "checking whether a program can dlopen itself... " >&6; } if ${lt_cv_dlopen_self+:} false; then : $as_echo_n "(cached) " >&6 else if test yes = "$cross_compiling"; then : lt_cv_dlopen_self=cross else lt_dlunknown=0; lt_dlno_uscore=1; lt_dlneed_uscore=2 lt_status=$lt_dlunknown cat > conftest.$ac_ext <<_LT_EOF #line $LINENO "configure" #include "confdefs.h" #if HAVE_DLFCN_H #include #endif #include #ifdef RTLD_GLOBAL # define LT_DLGLOBAL RTLD_GLOBAL #else # ifdef DL_GLOBAL # define LT_DLGLOBAL DL_GLOBAL # else # define LT_DLGLOBAL 0 # endif #endif /* We may have to define LT_DLLAZY_OR_NOW in the command line if we find out it does not work in some platform. */ #ifndef LT_DLLAZY_OR_NOW # ifdef RTLD_LAZY # define LT_DLLAZY_OR_NOW RTLD_LAZY # else # ifdef DL_LAZY # define LT_DLLAZY_OR_NOW DL_LAZY # else # ifdef RTLD_NOW # define LT_DLLAZY_OR_NOW RTLD_NOW # else # ifdef DL_NOW # define LT_DLLAZY_OR_NOW DL_NOW # else # define LT_DLLAZY_OR_NOW 0 # endif # endif # endif # endif #endif /* When -fvisibility=hidden is used, assume the code has been annotated correspondingly for the symbols needed. */ #if defined __GNUC__ && (((__GNUC__ == 3) && (__GNUC_MINOR__ >= 3)) || (__GNUC__ > 3)) int fnord () __attribute__((visibility("default"))); #endif int fnord () { return 42; } int main () { void *self = dlopen (0, LT_DLGLOBAL|LT_DLLAZY_OR_NOW); int status = $lt_dlunknown; if (self) { if (dlsym (self,"fnord")) status = $lt_dlno_uscore; else { if (dlsym( self,"_fnord")) status = $lt_dlneed_uscore; else puts (dlerror ()); } /* dlclose (self); */ } else puts (dlerror ()); return status; } _LT_EOF if { { eval echo "\"\$as_me\":${as_lineno-$LINENO}: \"$ac_link\""; } >&5 (eval $ac_link) 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } && test -s "conftest$ac_exeext" 2>/dev/null; then (./conftest; exit; ) >&5 2>/dev/null lt_status=$? case x$lt_status in x$lt_dlno_uscore) lt_cv_dlopen_self=yes ;; x$lt_dlneed_uscore) lt_cv_dlopen_self=yes ;; x$lt_dlunknown|x*) lt_cv_dlopen_self=no ;; esac else : # compilation failed lt_cv_dlopen_self=no fi fi rm -fr conftest* fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_dlopen_self" >&5 $as_echo "$lt_cv_dlopen_self" >&6; } if test yes = "$lt_cv_dlopen_self"; then wl=$lt_prog_compiler_wl eval LDFLAGS=\"\$LDFLAGS $lt_prog_compiler_static\" { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether a statically linked program can dlopen itself" >&5 $as_echo_n "checking whether a statically linked program can dlopen itself... " >&6; } if ${lt_cv_dlopen_self_static+:} false; then : $as_echo_n "(cached) " >&6 else if test yes = "$cross_compiling"; then : lt_cv_dlopen_self_static=cross else lt_dlunknown=0; lt_dlno_uscore=1; lt_dlneed_uscore=2 lt_status=$lt_dlunknown cat > conftest.$ac_ext <<_LT_EOF #line $LINENO "configure" #include "confdefs.h" #if HAVE_DLFCN_H #include #endif #include #ifdef RTLD_GLOBAL # define LT_DLGLOBAL RTLD_GLOBAL #else # ifdef DL_GLOBAL # define LT_DLGLOBAL DL_GLOBAL # else # define LT_DLGLOBAL 0 # endif #endif /* We may have to define LT_DLLAZY_OR_NOW in the command line if we find out it does not work in some platform. */ #ifndef LT_DLLAZY_OR_NOW # ifdef RTLD_LAZY # define LT_DLLAZY_OR_NOW RTLD_LAZY # else # ifdef DL_LAZY # define LT_DLLAZY_OR_NOW DL_LAZY # else # ifdef RTLD_NOW # define LT_DLLAZY_OR_NOW RTLD_NOW # else # ifdef DL_NOW # define LT_DLLAZY_OR_NOW DL_NOW # else # define LT_DLLAZY_OR_NOW 0 # endif # endif # endif # endif #endif /* When -fvisibility=hidden is used, assume the code has been annotated correspondingly for the symbols needed. */ #if defined __GNUC__ && (((__GNUC__ == 3) && (__GNUC_MINOR__ >= 3)) || (__GNUC__ > 3)) int fnord () __attribute__((visibility("default"))); #endif int fnord () { return 42; } int main () { void *self = dlopen (0, LT_DLGLOBAL|LT_DLLAZY_OR_NOW); int status = $lt_dlunknown; if (self) { if (dlsym (self,"fnord")) status = $lt_dlno_uscore; else { if (dlsym( self,"_fnord")) status = $lt_dlneed_uscore; else puts (dlerror ()); } /* dlclose (self); */ } else puts (dlerror ()); return status; } _LT_EOF if { { eval echo "\"\$as_me\":${as_lineno-$LINENO}: \"$ac_link\""; } >&5 (eval $ac_link) 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } && test -s "conftest$ac_exeext" 2>/dev/null; then (./conftest; exit; ) >&5 2>/dev/null lt_status=$? case x$lt_status in x$lt_dlno_uscore) lt_cv_dlopen_self_static=yes ;; x$lt_dlneed_uscore) lt_cv_dlopen_self_static=yes ;; x$lt_dlunknown|x*) lt_cv_dlopen_self_static=no ;; esac else : # compilation failed lt_cv_dlopen_self_static=no fi fi rm -fr conftest* fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_dlopen_self_static" >&5 $as_echo "$lt_cv_dlopen_self_static" >&6; } fi CPPFLAGS=$save_CPPFLAGS LDFLAGS=$save_LDFLAGS LIBS=$save_LIBS ;; esac case $lt_cv_dlopen_self in yes|no) enable_dlopen_self=$lt_cv_dlopen_self ;; *) enable_dlopen_self=unknown ;; esac case $lt_cv_dlopen_self_static in yes|no) enable_dlopen_self_static=$lt_cv_dlopen_self_static ;; *) enable_dlopen_self_static=unknown ;; esac fi striplib= old_striplib= { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether stripping libraries is possible" >&5 $as_echo_n "checking whether stripping libraries is possible... " >&6; } if test -n "$STRIP" && $STRIP -V 2>&1 | $GREP "GNU strip" >/dev/null; then test -z "$old_striplib" && old_striplib="$STRIP --strip-debug" test -z "$striplib" && striplib="$STRIP --strip-unneeded" { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else # FIXME - insert some real tests, host_os isn't really good enough case $host_os in darwin*) if test -n "$STRIP"; then striplib="$STRIP -x" old_striplib="$STRIP -S" { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi ;; *) { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } ;; esac fi # Report what library types will actually be built { $as_echo "$as_me:${as_lineno-$LINENO}: checking if libtool supports shared libraries" >&5 $as_echo_n "checking if libtool supports shared libraries... " >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: result: $can_build_shared" >&5 $as_echo "$can_build_shared" >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether to build shared libraries" >&5 $as_echo_n "checking whether to build shared libraries... " >&6; } test no = "$can_build_shared" && enable_shared=no # On AIX, shared libraries and static libraries use the same namespace, and # are all built from PIC. case $host_os in aix3*) test yes = "$enable_shared" && enable_static=no if test -n "$RANLIB"; then archive_cmds="$archive_cmds~\$RANLIB \$lib" postinstall_cmds='$RANLIB $lib' fi ;; aix[4-9]*) if test ia64 != "$host_cpu"; then case $enable_shared,$with_aix_soname,$aix_use_runtimelinking in yes,aix,yes) ;; # shared object as lib.so file only yes,svr4,*) ;; # shared object as lib.so archive member only yes,*) enable_static=no ;; # shared object in lib.a archive as well esac fi ;; esac { $as_echo "$as_me:${as_lineno-$LINENO}: result: $enable_shared" >&5 $as_echo "$enable_shared" >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether to build static libraries" >&5 $as_echo_n "checking whether to build static libraries... " >&6; } # Make sure either enable_shared or enable_static is yes. test yes = "$enable_shared" || enable_static=yes { $as_echo "$as_me:${as_lineno-$LINENO}: result: $enable_static" >&5 $as_echo "$enable_static" >&6; } fi ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu CC=$lt_save_CC ac_config_commands="$ac_config_commands libtool" # Only expand once: if test "$use_openbsd_libtool" = "true" && test -x /usr/bin/libtool; then echo using OpenBSD libtool LIBTOOL=/usr/bin/libtool fi if test "$use_openbsd_libtool" = "true" ; then OPENBSD_LIBTOOL_TRUE= OPENBSD_LIBTOOL_FALSE='#' else OPENBSD_LIBTOOL_TRUE='#' OPENBSD_LIBTOOL_FALSE= fi # Check whether --enable-symvers was given. if test "${enable_symvers+set}" = set; then : enableval=$enable_symvers; want_symvers=$enableval else want_symvers=yes fi if test x$want_symvers = xyes; then : { $as_echo "$as_me:${as_lineno-$LINENO}: checking linker version script flag" >&5 $as_echo_n "checking linker version script flag... " >&6; } if ${ax_cv_check_vscript_flag+:} false; then : $as_echo_n "(cached) " >&6 else ax_cv_check_vscript_flag=unsupported ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu ax_check_vscript_save_flags="$LDFLAGS" echo "V1 { global: show; local: *; };" > conftest.map if test x = xyes; then : echo "{" >> conftest.map fi LDFLAGS="$LDFLAGS -Wl,--version-script,conftest.map" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int show, hide; int main () { ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ax_cv_check_vscript_flag=--version-script fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LDFLAGS="$ax_check_vscript_save_flags" rm -f conftest.map ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu if test x$ax_cv_check_vscript_flag = xunsupported; then : ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu ax_check_vscript_save_flags="$LDFLAGS" echo "V1 { global: show; local: *; };" > conftest.map if test x = xyes; then : echo "{" >> conftest.map fi LDFLAGS="$LDFLAGS -Wl,-M,conftest.map" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int show, hide; int main () { ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ax_cv_check_vscript_flag=-M fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LDFLAGS="$ax_check_vscript_save_flags" rm -f conftest.map ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu fi if test x$ax_cv_check_vscript_flag != xunsupported; then : ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu ax_check_vscript_save_flags="$LDFLAGS" echo "V1 { global: show; local: *; };" > conftest.map if test xyes = xyes; then : echo "{" >> conftest.map fi LDFLAGS="$LDFLAGS -Wl,$ax_cv_check_vscript_flag,conftest.map" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int show, hide; int main () { ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ax_cv_check_vscript_flag=unsupported fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LDFLAGS="$ax_check_vscript_save_flags" rm -f conftest.map ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ax_cv_check_vscript_flag" >&5 $as_echo "$ax_cv_check_vscript_flag" >&6; } if test x$ax_cv_check_vscript_flag != xunsupported; then : ax_check_vscript_flag=$ax_cv_check_vscript_flag { $as_echo "$as_me:${as_lineno-$LINENO}: checking if version scripts can use complex wildcards" >&5 $as_echo_n "checking if version scripts can use complex wildcards... " >&6; } if ${ax_cv_check_vscript_complex_wildcards+:} false; then : $as_echo_n "(cached) " >&6 else ax_cv_check_vscript_complex_wildcards=no ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu ax_check_vscript_save_flags="$LDFLAGS" echo "V1 { global: sh*; local: *; };" > conftest.map if test x = xyes; then : echo "{" >> conftest.map fi LDFLAGS="$LDFLAGS -Wl,$ax_cv_check_vscript_flag,conftest.map" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int show, hide; int main () { ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ax_cv_check_vscript_complex_wildcards=yes fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LDFLAGS="$ax_check_vscript_save_flags" rm -f conftest.map ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ax_cv_check_vscript_complex_wildcards" >&5 $as_echo "$ax_cv_check_vscript_complex_wildcards" >&6; } ax_check_vscript_complex_wildcards="$ax_cv_check_vscript_complex_wildcards" else ax_check_vscript_flag= ax_check_vscript_complex_wildcards=no fi else { $as_echo "$as_me:${as_lineno-$LINENO}: checking linker version script flag" >&5 $as_echo_n "checking linker version script flag... " >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: result: disabled" >&5 $as_echo "disabled" >&6; } ax_check_vscript_flag= ax_check_vscript_complex_wildcards=no fi if test x$ax_check_vscript_flag != x; then : VSCRIPT_LDFLAGS="-Wl,$ax_check_vscript_flag" fi if test x$ax_check_vscript_flag != x; then HAVE_VSCRIPT_TRUE= HAVE_VSCRIPT_FALSE='#' else HAVE_VSCRIPT_TRUE='#' HAVE_VSCRIPT_FALSE= fi if test x$ax_check_vscript_complex_wildcards = xyes; then HAVE_VSCRIPT_COMPLEX_TRUE= HAVE_VSCRIPT_COMPLEX_FALSE='#' else HAVE_VSCRIPT_COMPLEX_TRUE='#' HAVE_VSCRIPT_COMPLEX_FALSE= fi pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for LIBXML2" >&5 $as_echo_n "checking for LIBXML2... " >&6; } if test -n "$LIBXML2_CFLAGS"; then pkg_cv_LIBXML2_CFLAGS="$LIBXML2_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libxml-2.0\""; } >&5 ($PKG_CONFIG --exists --print-errors "libxml-2.0") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_LIBXML2_CFLAGS=`$PKG_CONFIG --cflags "libxml-2.0" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$LIBXML2_LIBS"; then pkg_cv_LIBXML2_LIBS="$LIBXML2_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libxml-2.0\""; } >&5 ($PKG_CONFIG --exists --print-errors "libxml-2.0") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_LIBXML2_LIBS=`$PKG_CONFIG --libs "libxml-2.0" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then LIBXML2_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "libxml-2.0" 2>&1` else LIBXML2_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "libxml-2.0" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$LIBXML2_PKG_ERRORS" >&5 as_fn_error $? "Package requirements (libxml-2.0) were not met: $LIBXML2_PKG_ERRORS Consider adjusting the PKG_CONFIG_PATH environment variable if you installed software in a non-standard prefix. Alternatively, you may set the environment variables LIBXML2_CFLAGS and LIBXML2_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details." "$LINENO" 5 elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "The pkg-config script could not be found or is too old. Make sure it is in your PATH or set the PKG_CONFIG environment variable to the full path to pkg-config. Alternatively, you may set the environment variables LIBXML2_CFLAGS and LIBXML2_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details. To get pkg-config, see . See \`config.log' for more details" "$LINENO" 5; } else LIBXML2_CFLAGS=$pkg_cv_LIBXML2_CFLAGS LIBXML2_LIBS=$pkg_cv_LIBXML2_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } fi pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for ZLIB" >&5 $as_echo_n "checking for ZLIB... " >&6; } if test -n "$ZLIB_CFLAGS"; then pkg_cv_ZLIB_CFLAGS="$ZLIB_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"zlib\""; } >&5 ($PKG_CONFIG --exists --print-errors "zlib") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_ZLIB_CFLAGS=`$PKG_CONFIG --cflags "zlib" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$ZLIB_LIBS"; then pkg_cv_ZLIB_LIBS="$ZLIB_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"zlib\""; } >&5 ($PKG_CONFIG --exists --print-errors "zlib") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_ZLIB_LIBS=`$PKG_CONFIG --libs "zlib" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then ZLIB_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "zlib" 2>&1` else ZLIB_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "zlib" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$ZLIB_PKG_ERRORS" >&5 oldLIBS="$LIBS" LIBS="$LIBS -lz" { $as_echo "$as_me:${as_lineno-$LINENO}: checking for zlib without pkg-config" >&5 $as_echo_n "checking for zlib without pkg-config... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { z_stream zs; deflateInit2(&zs, Z_DEFAULT_COMPRESSION, Z_DEFLATED, -12, 9, Z_DEFAULT_STRATEGY); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } ZLIB_LIBS=-lz else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } as_fn_error $? "Could not build against zlib" "$LINENO" 5 fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$oldLIBS" elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } oldLIBS="$LIBS" LIBS="$LIBS -lz" { $as_echo "$as_me:${as_lineno-$LINENO}: checking for zlib without pkg-config" >&5 $as_echo_n "checking for zlib without pkg-config... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { z_stream zs; deflateInit2(&zs, Z_DEFAULT_COMPRESSION, Z_DEFLATED, -12, 9, Z_DEFAULT_STRATEGY); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } ZLIB_LIBS=-lz else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } as_fn_error $? "Could not build against zlib" "$LINENO" 5 fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$oldLIBS" else ZLIB_CFLAGS=$pkg_cv_ZLIB_CFLAGS ZLIB_LIBS=$pkg_cv_ZLIB_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } ZLIB_PC=zlib fi # Check whether --with-libproxy was given. if test "${with_libproxy+set}" = set; then : withval=$with_libproxy; fi if test "x$with_libproxy" != "xno"; then : pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for LIBPROXY" >&5 $as_echo_n "checking for LIBPROXY... " >&6; } if test -n "$LIBPROXY_CFLAGS"; then pkg_cv_LIBPROXY_CFLAGS="$LIBPROXY_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libproxy-1.0\""; } >&5 ($PKG_CONFIG --exists --print-errors "libproxy-1.0") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_LIBPROXY_CFLAGS=`$PKG_CONFIG --cflags "libproxy-1.0" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$LIBPROXY_LIBS"; then pkg_cv_LIBPROXY_LIBS="$LIBPROXY_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libproxy-1.0\""; } >&5 ($PKG_CONFIG --exists --print-errors "libproxy-1.0") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_LIBPROXY_LIBS=`$PKG_CONFIG --libs "libproxy-1.0" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then LIBPROXY_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "libproxy-1.0" 2>&1` else LIBPROXY_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "libproxy-1.0" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$LIBPROXY_PKG_ERRORS" >&5 libproxy_pkg=no elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } libproxy_pkg=no else LIBPROXY_CFLAGS=$pkg_cv_LIBPROXY_CFLAGS LIBPROXY_LIBS=$pkg_cv_LIBPROXY_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } LIBPROXY_PC=libproxy-1.0 $as_echo "#define LIBPROXY_HDR \"proxy.h\"" >>confdefs.h libproxy_pkg=yes fi else libproxy_pkg=disabled fi if (test "$libproxy_pkg" = "no"); then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for libproxy" >&5 $as_echo_n "checking for libproxy... " >&6; } oldLIBS="$LIBS" LIBS="$LIBS -lproxy" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { (void)px_proxy_factory_new(); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes (with libproxy.h)" >&5 $as_echo "yes (with libproxy.h)" >&6; } $as_echo "#define LIBPROXY_HDR \"libproxy.h\"" >>confdefs.h LIBPROXY_LIBS=-lproxy libproxy_pkg=yes else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { (void)px_proxy_factory_new(); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes (with proxy.h)" >&5 $as_echo "yes (with proxy.h)" >&6; } $as_echo "#define LIBPROXY_HDR \"proxy.h\"" >>confdefs.h LIBPROXY_LIBS=-lproxy libproxy_pkg=yes else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$oldLIBS" fi # Check whether --with-stoken was given. if test "${with_stoken+set}" = set; then : withval=$with_stoken; fi if test "x$with_stoken" != "xno"; then : pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for LIBSTOKEN" >&5 $as_echo_n "checking for LIBSTOKEN... " >&6; } if test -n "$LIBSTOKEN_CFLAGS"; then pkg_cv_LIBSTOKEN_CFLAGS="$LIBSTOKEN_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"stoken\""; } >&5 ($PKG_CONFIG --exists --print-errors "stoken") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_LIBSTOKEN_CFLAGS=`$PKG_CONFIG --cflags "stoken" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$LIBSTOKEN_LIBS"; then pkg_cv_LIBSTOKEN_LIBS="$LIBSTOKEN_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"stoken\""; } >&5 ($PKG_CONFIG --exists --print-errors "stoken") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_LIBSTOKEN_LIBS=`$PKG_CONFIG --libs "stoken" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then LIBSTOKEN_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "stoken" 2>&1` else LIBSTOKEN_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "stoken" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$LIBSTOKEN_PKG_ERRORS" >&5 libstoken_pkg=no elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } libstoken_pkg=no else LIBSTOKEN_CFLAGS=$pkg_cv_LIBSTOKEN_CFLAGS LIBSTOKEN_LIBS=$pkg_cv_LIBSTOKEN_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } LIBSTOKEN_PC=stoken $as_echo "#define HAVE_LIBSTOKEN 1" >>confdefs.h libstoken_pkg=yes fi else libstoken_pkg=disabled fi if test "$libstoken_pkg" = "yes"; then OPENCONNECT_STOKEN_TRUE= OPENCONNECT_STOKEN_FALSE='#' else OPENCONNECT_STOKEN_TRUE='#' OPENCONNECT_STOKEN_FALSE= fi # Check whether --with-libpcsclite was given. if test "${with_libpcsclite+set}" = set; then : withval=$with_libpcsclite; fi if test "x$with_libpcsclite" != "xno"; then : if test "$system_pcsc_libs" != ""; then LIBPCSCLITE_LIBS="$system_pcsc_libs" LIBPCSCLITE_CFLAGS="$system_pcsc_cflags" libpcsclite_pkg=yes else pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for LIBPCSCLITE" >&5 $as_echo_n "checking for LIBPCSCLITE... " >&6; } if test -n "$LIBPCSCLITE_CFLAGS"; then pkg_cv_LIBPCSCLITE_CFLAGS="$LIBPCSCLITE_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libpcsclite\""; } >&5 ($PKG_CONFIG --exists --print-errors "libpcsclite") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_LIBPCSCLITE_CFLAGS=`$PKG_CONFIG --cflags "libpcsclite" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$LIBPCSCLITE_LIBS"; then pkg_cv_LIBPCSCLITE_LIBS="$LIBPCSCLITE_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libpcsclite\""; } >&5 ($PKG_CONFIG --exists --print-errors "libpcsclite") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_LIBPCSCLITE_LIBS=`$PKG_CONFIG --libs "libpcsclite" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then LIBPCSCLITE_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "libpcsclite" 2>&1` else LIBPCSCLITE_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "libpcsclite" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$LIBPCSCLITE_PKG_ERRORS" >&5 libpcsclite_pkg=no elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } libpcsclite_pkg=no else LIBPCSCLITE_CFLAGS=$pkg_cv_LIBPCSCLITE_CFLAGS LIBPCSCLITE_LIBS=$pkg_cv_LIBPCSCLITE_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } LIBPCSCLITE_PC=libpcsclite libpcsclite_pkg=yes fi fi else libpcsclite_pkg=disabled fi if test "$libpcsclite_pkg" = "yes"; then $as_echo "#define HAVE_LIBPCSCLITE 1" >>confdefs.h fi if test "$libpcsclite_pkg" = "yes"; then OPENCONNECT_LIBPCSCLITE_TRUE= OPENCONNECT_LIBPCSCLITE_FALSE='#' else OPENCONNECT_LIBPCSCLITE_TRUE='#' OPENCONNECT_LIBPCSCLITE_FALSE= fi # Check whether --with-libpskc was given. if test "${with_libpskc+set}" = set; then : withval=$with_libpskc; fi if test "x$with_libpskc" != "xno"; then : pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for LIBPSKC" >&5 $as_echo_n "checking for LIBPSKC... " >&6; } if test -n "$LIBPSKC_CFLAGS"; then pkg_cv_LIBPSKC_CFLAGS="$LIBPSKC_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libpskc >= 2.2.0\""; } >&5 ($PKG_CONFIG --exists --print-errors "libpskc >= 2.2.0") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_LIBPSKC_CFLAGS=`$PKG_CONFIG --cflags "libpskc >= 2.2.0" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$LIBPSKC_LIBS"; then pkg_cv_LIBPSKC_LIBS="$LIBPSKC_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libpskc >= 2.2.0\""; } >&5 ($PKG_CONFIG --exists --print-errors "libpskc >= 2.2.0") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_LIBPSKC_LIBS=`$PKG_CONFIG --libs "libpskc >= 2.2.0" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then LIBPSKC_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "libpskc >= 2.2.0" 2>&1` else LIBPSKC_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "libpskc >= 2.2.0" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$LIBPSKC_PKG_ERRORS" >&5 libpskc_pkg=no elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } libpskc_pkg=no else LIBPSKC_CFLAGS=$pkg_cv_LIBPSKC_CFLAGS LIBPSKC_LIBS=$pkg_cv_LIBPSKC_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } LIBPSKC_PC=libpskc $as_echo "#define HAVE_LIBPSKC 1" >>confdefs.h libpskc_pkg=yes fi fi linked_gssapi=no # Check whether --with-gssapi was given. if test "${with_gssapi+set}" = set; then : withval=$with_gssapi; fi # Attempt to work out how to build with GSSAPI. Mostly, krb5-config will # exist and work. Tested on FreeBSD 9, OpenBSD 5.5, NetBSD 6.1.4. Solaris # has krb5-config but it doesn't do GSSAPI so hard-code the results there. # Older OpenBSD (I tested 5.2) lacks krb5-config so leave that as an example. if test "$with_gssapi" != "no"; then found_gssapi=no if test "${with_gssapi}" != "yes" -a "${with_gssapi}" != "" ; then gssapi_root="${with_gssapi}" else gssapi_root="" fi # First: if they specify GSSAPI_LIBS and/or GSSAPI_CFLAGS then use them. if test "$GSSAPI_LIBS$GSSAPI_CFLAGS" != ""; then found_gssapi=yes fi # Second: try finding a viable krb5-config that supports gssapi if test "$found_gssapi" = "no"; then if test -n "${gssapi_root}"; then krb5path="${gssapi_root}/bin:$PATH" else krb5path="/usr/kerberos/bin:$PATH" fi if test -n "$host_alias"; then # Extract the first word of "${host_alias}-krb5-config", so it can be a program name with args. set dummy ${host_alias}-krb5-config; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_path_KRB5_CONFIG+:} false; then : $as_echo_n "(cached) " >&6 else case $KRB5_CONFIG in [\\/]* | ?:[\\/]*) ac_cv_path_KRB5_CONFIG="$KRB5_CONFIG" # Let the user override the test with a path. ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $krb5path do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_path_KRB5_CONFIG="$as_dir/$ac_word$ac_exec_ext" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS ;; esac fi KRB5_CONFIG=$ac_cv_path_KRB5_CONFIG if test -n "$KRB5_CONFIG"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $KRB5_CONFIG" >&5 $as_echo "$KRB5_CONFIG" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test "$KRB5_CONFIG" = ""; then # Extract the first word of "krb5-config", so it can be a program name with args. set dummy krb5-config; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_path_KRB5_CONFIG+:} false; then : $as_echo_n "(cached) " >&6 else case $KRB5_CONFIG in [\\/]* | ?:[\\/]*) ac_cv_path_KRB5_CONFIG="$KRB5_CONFIG" # Let the user override the test with a path. ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $krb5path do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_path_KRB5_CONFIG="$as_dir/$ac_word$ac_exec_ext" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS ;; esac fi KRB5_CONFIG=$ac_cv_path_KRB5_CONFIG if test -n "$KRB5_CONFIG"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $KRB5_CONFIG" >&5 $as_echo "$KRB5_CONFIG" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test "$KRB5_CONFIG" != ""; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether $KRB5_CONFIG supports gssapi" >&5 $as_echo_n "checking whether $KRB5_CONFIG supports gssapi... " >&6; } if "${KRB5_CONFIG}" --cflags gssapi > /dev/null 2>/dev/null; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } found_gssapi=yes GSSAPI_LIBS="`"${KRB5_CONFIG}" --libs gssapi`" GSSAPI_CFLAGS="`"${KRB5_CONFIG}" --cflags gssapi`" else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi fi # Third: look for or in some likely places, # and we'll worry about how to *link* it in a moment... if test "$found_gssapi" = "no"; then if test -n "${gssapi_root}"; then if test -r "${with_gssapi}/include/gssapi.h" -o \ -r "${with_gssapi}/include/gssapi/gssapi.h"; then GSSAPI_CFLAGS="-I\"${with_gssapi}/include\"" fi else if test -r /usr/kerberos/include/gssapi.h -o \ -r /usr/kerberos/include/gssapi/gssapi.h; then GSSAPI_CFLAGS=-I/usr/kerberos/include elif test -r /usr/include/kerberosV/gssapi.h -o \ -r /usr/include/kerberosV/gssapi/gssapi.h; then # OpenBSD 5.2 puts it here GSSAPI_CFLAGS=-I/usr/include/kerberosV else # Maybe it'll Just Work GSSAPI_CFLAGS= fi fi fi oldcflags="$CFLAGS" CFLAGS="$CFLAGS ${GSSAPI_CFLAGS}" # OK, now see if we've correctly managed to find gssapi.h at least... gssapi_hdr= ac_fn_c_check_header_mongrel "$LINENO" "gssapi/gssapi.h" "ac_cv_header_gssapi_gssapi_h" "$ac_includes_default" if test "x$ac_cv_header_gssapi_gssapi_h" = xyes; then : gssapi_hdr="" else ac_fn_c_check_header_mongrel "$LINENO" "gssapi.h" "ac_cv_header_gssapi_h" "$ac_includes_default" if test "x$ac_cv_header_gssapi_h" = xyes; then : gssapi_hdr="" else { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: Cannot find or " >&5 $as_echo "$as_me: WARNING: Cannot find or " >&2;} fi fi # Finally, unless we've already failed, see if we can link it. linked_gssapi=no if test -n "${gssapi_hdr}"; then cat >>confdefs.h <<_ACEOF #define GSSAPI_HDR $gssapi_hdr _ACEOF if test "$found_gssapi" = "yes"; then # We think we have GSSAPI_LIBS already so try it... gss_old_libs="$LIBS" LIBS="$LIBS ${GSSAPI_LIBS}" { $as_echo "$as_me:${as_lineno-$LINENO}: checking GSSAPI compilation with \"${GSSAPI_LIBS}\"" >&5 $as_echo_n "checking GSSAPI compilation with \"${GSSAPI_LIBS}\"... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include GSSAPI_HDR int main () { OM_uint32 major, minor; gss_buffer_desc b = GSS_C_EMPTY_BUFFER; gss_ctx_id_t ctx = GSS_C_NO_CONTEXT; gss_init_sec_context(&minor, GSS_C_NO_CREDENTIAL, &ctx, GSS_C_NO_NAME, GSS_C_NO_OID, GSS_C_MUTUAL_FLAG, GSS_C_INDEFINITE, GSS_C_NO_CHANNEL_BINDINGS, NULL, NULL, NULL, NULL, NULL); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : linked_gssapi=yes { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else linked_gssapi=no { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$gss_old_libs" else LFLAG= if test -n "$gssapi_root"; then LFLAG="-L\"${gssapi_root}/lib$libsuff\"" fi # Solaris, HPUX, etc. GSSAPI_LIBS="$LFLAG -lgss" gss_old_libs="$LIBS" LIBS="$LIBS ${GSSAPI_LIBS}" { $as_echo "$as_me:${as_lineno-$LINENO}: checking GSSAPI compilation with \"${GSSAPI_LIBS}\"" >&5 $as_echo_n "checking GSSAPI compilation with \"${GSSAPI_LIBS}\"... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include GSSAPI_HDR int main () { OM_uint32 major, minor; gss_buffer_desc b = GSS_C_EMPTY_BUFFER; gss_ctx_id_t ctx = GSS_C_NO_CONTEXT; gss_init_sec_context(&minor, GSS_C_NO_CREDENTIAL, &ctx, GSS_C_NO_NAME, GSS_C_NO_OID, GSS_C_MUTUAL_FLAG, GSS_C_INDEFINITE, GSS_C_NO_CHANNEL_BINDINGS, NULL, NULL, NULL, NULL, NULL); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : linked_gssapi=yes { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else linked_gssapi=no { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$gss_old_libs" if test "$linked_gssapi" = "no"; then GSSAPI_LIBS="$LFLAG -lgssapi" gss_old_libs="$LIBS" LIBS="$LIBS ${GSSAPI_LIBS}" { $as_echo "$as_me:${as_lineno-$LINENO}: checking GSSAPI compilation with \"${GSSAPI_LIBS}\"" >&5 $as_echo_n "checking GSSAPI compilation with \"${GSSAPI_LIBS}\"... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include GSSAPI_HDR int main () { OM_uint32 major, minor; gss_buffer_desc b = GSS_C_EMPTY_BUFFER; gss_ctx_id_t ctx = GSS_C_NO_CONTEXT; gss_init_sec_context(&minor, GSS_C_NO_CREDENTIAL, &ctx, GSS_C_NO_NAME, GSS_C_NO_OID, GSS_C_MUTUAL_FLAG, GSS_C_INDEFINITE, GSS_C_NO_CHANNEL_BINDINGS, NULL, NULL, NULL, NULL, NULL); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : linked_gssapi=yes { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else linked_gssapi=no { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$gss_old_libs" fi if test "$linked_gssapi" = "no"; then GSSAPI_LIBS="$LFLAG -lgssapi_krb5" gss_old_libs="$LIBS" LIBS="$LIBS ${GSSAPI_LIBS}" { $as_echo "$as_me:${as_lineno-$LINENO}: checking GSSAPI compilation with \"${GSSAPI_LIBS}\"" >&5 $as_echo_n "checking GSSAPI compilation with \"${GSSAPI_LIBS}\"... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include GSSAPI_HDR int main () { OM_uint32 major, minor; gss_buffer_desc b = GSS_C_EMPTY_BUFFER; gss_ctx_id_t ctx = GSS_C_NO_CONTEXT; gss_init_sec_context(&minor, GSS_C_NO_CREDENTIAL, &ctx, GSS_C_NO_NAME, GSS_C_NO_OID, GSS_C_MUTUAL_FLAG, GSS_C_INDEFINITE, GSS_C_NO_CHANNEL_BINDINGS, NULL, NULL, NULL, NULL, NULL); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : linked_gssapi=yes { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else linked_gssapi=no { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$gss_old_libs" fi if test "$linked_gssapi" = "no"; then # OpenBSD 5.2 at least GSSAPI_LIBS="$LFLAG -lgssapi -lkrb5 -lcrypto" gss_old_libs="$LIBS" LIBS="$LIBS ${GSSAPI_LIBS}" { $as_echo "$as_me:${as_lineno-$LINENO}: checking GSSAPI compilation with \"${GSSAPI_LIBS}\"" >&5 $as_echo_n "checking GSSAPI compilation with \"${GSSAPI_LIBS}\"... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include GSSAPI_HDR int main () { OM_uint32 major, minor; gss_buffer_desc b = GSS_C_EMPTY_BUFFER; gss_ctx_id_t ctx = GSS_C_NO_CONTEXT; gss_init_sec_context(&minor, GSS_C_NO_CREDENTIAL, &ctx, GSS_C_NO_NAME, GSS_C_NO_OID, GSS_C_MUTUAL_FLAG, GSS_C_INDEFINITE, GSS_C_NO_CHANNEL_BINDINGS, NULL, NULL, NULL, NULL, NULL); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : linked_gssapi=yes { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else linked_gssapi=no { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$gss_old_libs" fi if test "$linked_gssapi" = "no"; then # MIT GSSAPI_LIBS="$LFLAG -lgssapi_krb5 -lkrb5 -lk5crypto -lcom_err" gss_old_libs="$LIBS" LIBS="$LIBS ${GSSAPI_LIBS}" { $as_echo "$as_me:${as_lineno-$LINENO}: checking GSSAPI compilation with \"${GSSAPI_LIBS}\"" >&5 $as_echo_n "checking GSSAPI compilation with \"${GSSAPI_LIBS}\"... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include GSSAPI_HDR int main () { OM_uint32 major, minor; gss_buffer_desc b = GSS_C_EMPTY_BUFFER; gss_ctx_id_t ctx = GSS_C_NO_CONTEXT; gss_init_sec_context(&minor, GSS_C_NO_CREDENTIAL, &ctx, GSS_C_NO_NAME, GSS_C_NO_OID, GSS_C_MUTUAL_FLAG, GSS_C_INDEFINITE, GSS_C_NO_CHANNEL_BINDINGS, NULL, NULL, NULL, NULL, NULL); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : linked_gssapi=yes { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else linked_gssapi=no { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$gss_old_libs" fi if test "$linked_gssapi" = "no"; then # Heimdal GSSAPI_LIBS="$LFLAG -lkrb5 -lcrypto -lasn1 -lcom_err -lroken -lgssapi" gss_old_libs="$LIBS" LIBS="$LIBS ${GSSAPI_LIBS}" { $as_echo "$as_me:${as_lineno-$LINENO}: checking GSSAPI compilation with \"${GSSAPI_LIBS}\"" >&5 $as_echo_n "checking GSSAPI compilation with \"${GSSAPI_LIBS}\"... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include GSSAPI_HDR int main () { OM_uint32 major, minor; gss_buffer_desc b = GSS_C_EMPTY_BUFFER; gss_ctx_id_t ctx = GSS_C_NO_CONTEXT; gss_init_sec_context(&minor, GSS_C_NO_CREDENTIAL, &ctx, GSS_C_NO_NAME, GSS_C_NO_OID, GSS_C_MUTUAL_FLAG, GSS_C_INDEFINITE, GSS_C_NO_CHANNEL_BINDINGS, NULL, NULL, NULL, NULL, NULL); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : linked_gssapi=yes { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else linked_gssapi=no { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$gss_old_libs" fi if test "$linked_gssapi" = "no"; then { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: Cannot find GSSAPI. Try setting GSSAPI_LIBS and GSSAPI_CFLAGS manually" >&5 $as_echo "$as_me: WARNING: Cannot find GSSAPI. Try setting GSSAPI_LIBS and GSSAPI_CFLAGS manually" >&2;} fi fi fi CFLAGS="$oldcflags" if test "$linked_gssapi" = "yes"; then $as_echo "#define HAVE_GSSAPI 1" >>confdefs.h elif test "$with_gssapi" = ""; then { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: Building without GSSAPI support" >&5 $as_echo "$as_me: WARNING: Building without GSSAPI support" >&2;}; unset GSSAPI_CFLAGS unset GSSAPI_LIBS else as_fn_error $? "GSSAPI support requested but not found. Try setting GSSAPI_LIBS/GSSAPI_CFLAGS" "$LINENO" 5 fi fi if test "$linked_gssapi" = "yes"; then OPENCONNECT_GSSAPI_TRUE= OPENCONNECT_GSSAPI_FALSE='#' else OPENCONNECT_GSSAPI_TRUE='#' OPENCONNECT_GSSAPI_FALSE= fi # Check whether --with-java was given. if test "${with_java+set}" = set; then : withval=$with_java; else with_java=no fi if test "$with_java" = "yes"; then JNI_INCLUDE_DIRS="" if test "x$JAVA_HOME" != x; then _JTOPDIR="$JAVA_HOME" else if test "x$JAVAC" = x; then JAVAC=javac fi # Extract the first word of "$JAVAC", so it can be a program name with args. set dummy $JAVAC; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_path__ACJNI_JAVAC+:} false; then : $as_echo_n "(cached) " >&6 else case $_ACJNI_JAVAC in [\\/]* | ?:[\\/]*) ac_cv_path__ACJNI_JAVAC="$_ACJNI_JAVAC" # Let the user override the test with a path. ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_path__ACJNI_JAVAC="$as_dir/$ac_word$ac_exec_ext" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS test -z "$ac_cv_path__ACJNI_JAVAC" && ac_cv_path__ACJNI_JAVAC="no" ;; esac fi _ACJNI_JAVAC=$ac_cv_path__ACJNI_JAVAC if test -n "$_ACJNI_JAVAC"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $_ACJNI_JAVAC" >&5 $as_echo "$_ACJNI_JAVAC" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$_ACJNI_JAVAC" = xno; then as_fn_error $? "cannot find JDK; try setting \$JAVAC or \$JAVA_HOME" "$LINENO" 5 fi # find the include directory relative to the javac executable _cur=""$_ACJNI_JAVAC"" while ls -ld "$_cur" 2>/dev/null | grep " -> " >/dev/null; do { $as_echo "$as_me:${as_lineno-$LINENO}: checking symlink for $_cur" >&5 $as_echo_n "checking symlink for $_cur... " >&6; } _slink=`ls -ld "$_cur" | sed 's/.* -> //'` case "$_slink" in /*) _cur="$_slink";; # 'X' avoids triggering unwanted echo options. *) _cur=`echo "X$_cur" | sed -e 's/^X//' -e 's:[^/]*$::'`"$_slink";; esac { $as_echo "$as_me:${as_lineno-$LINENO}: result: $_cur" >&5 $as_echo "$_cur" >&6; } done _ACJNI_FOLLOWED="$_cur" _JTOPDIR=`echo "$_ACJNI_FOLLOWED" | sed -e 's://*:/:g' -e 's:/[^/]*$::'` fi case "$host_os" in darwin*) _JTOPDIR=`echo "$_JTOPDIR" | sed -e 's:/[^/]*$::'` _JINC="$_JTOPDIR/Headers";; *) _JINC="$_JTOPDIR/include";; esac $as_echo "$as_me:${as_lineno-$LINENO}: _JTOPDIR=$_JTOPDIR" >&5 $as_echo "$as_me:${as_lineno-$LINENO}: _JINC=$_JINC" >&5 # On Mac OS X 10.6.4, jni.h is a symlink: # /System/Library/Frameworks/JavaVM.framework/Versions/Current/Headers/jni.h # -> ../../CurrentJDK/Headers/jni.h. as_ac_File=`$as_echo "ac_cv_file_$_JINC/jni.h" | $as_tr_sh` { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $_JINC/jni.h" >&5 $as_echo_n "checking for $_JINC/jni.h... " >&6; } if eval \${$as_ac_File+:} false; then : $as_echo_n "(cached) " >&6 else test "$cross_compiling" = yes && as_fn_error $? "cannot check for file existence when cross compiling" "$LINENO" 5 if test -r "$_JINC/jni.h"; then eval "$as_ac_File=yes" else eval "$as_ac_File=no" fi fi eval ac_res=\$$as_ac_File { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_res" >&5 $as_echo "$ac_res" >&6; } if eval test \"x\$"$as_ac_File"\" = x"yes"; then : JNI_INCLUDE_DIRS="$JNI_INCLUDE_DIRS $_JINC" else _JTOPDIR=`echo "$_JTOPDIR" | sed -e 's:/[^/]*$::'` as_ac_File=`$as_echo "ac_cv_file_$_JTOPDIR/include/jni.h" | $as_tr_sh` { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $_JTOPDIR/include/jni.h" >&5 $as_echo_n "checking for $_JTOPDIR/include/jni.h... " >&6; } if eval \${$as_ac_File+:} false; then : $as_echo_n "(cached) " >&6 else test "$cross_compiling" = yes && as_fn_error $? "cannot check for file existence when cross compiling" "$LINENO" 5 if test -r "$_JTOPDIR/include/jni.h"; then eval "$as_ac_File=yes" else eval "$as_ac_File=no" fi fi eval ac_res=\$$as_ac_File { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_res" >&5 $as_echo "$ac_res" >&6; } if eval test \"x\$"$as_ac_File"\" = x"yes"; then : JNI_INCLUDE_DIRS="$JNI_INCLUDE_DIRS $_JTOPDIR/include" else as_fn_error $? "cannot find JDK header files" "$LINENO" 5 fi fi # get the likely subdirectories for system specific java includes case "$host_os" in bsdi*) _JNI_INC_SUBDIRS="bsdos";; freebsd*) _JNI_INC_SUBDIRS="freebsd";; linux*) _JNI_INC_SUBDIRS="linux genunix";; osf*) _JNI_INC_SUBDIRS="alpha";; solaris*) _JNI_INC_SUBDIRS="solaris";; mingw*) _JNI_INC_SUBDIRS="win32";; cygwin*) _JNI_INC_SUBDIRS="win32";; *) _JNI_INC_SUBDIRS="genunix";; esac # add any subdirectories that are present for JINCSUBDIR in $_JNI_INC_SUBDIRS do if test -d "$_JTOPDIR/include/$JINCSUBDIR"; then JNI_INCLUDE_DIRS="$JNI_INCLUDE_DIRS $_JTOPDIR/include/$JINCSUBDIR" fi done for JNI_INCLUDE_DIR in $JNI_INCLUDE_DIRS; do JNI_CFLAGS="$JNI_CFLAGS -I$JNI_INCLUDE_DIR" done elif test "$with_java" = "no"; then JNI_CFLAGS="" else JNI_CFLAGS="-I$with_java" fi if test "x$JNI_CFLAGS" != "x"; then oldCFLAGS="$CFLAGS" CFLAGS="$CFLAGS $JNI_CFLAGS" { $as_echo "$as_me:${as_lineno-$LINENO}: checking jni.h usability" >&5 $as_echo_n "checking jni.h usability... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { jint foo = 0; (void)foo; ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } as_fn_error $? "unable to compile JNI test program" "$LINENO" 5 fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext CFLAGS="$oldCFLAGS" JNI_CFLAGS=$JNI_CFLAGS fi if test "$JNI_CFLAGS" != ""; then OPENCONNECT_JNI_TRUE= OPENCONNECT_JNI_FALSE='#' else OPENCONNECT_JNI_TRUE='#' OPENCONNECT_JNI_FALSE= fi # Check whether --enable-jni-standalone was given. if test "${enable_jni_standalone+set}" = set; then : enableval=$enable_jni_standalone; jni_standalone=$enableval else jni_standalone=no fi if test $jni_standalone = yes; then JNI_STANDALONE_TRUE= JNI_STANDALONE_FALSE='#' else JNI_STANDALONE_TRUE='#' JNI_STANDALONE_FALSE= fi symver_java= if test "$jni_standalone" = "yes" ; then symver_java=$(sed -n '/JNIEXPORT/{s/^JNIEXPORT.*\(Java_.*\) *(/\1;/ p}' ${srcdir}/jni.c) # Remove the newlines between each item. symver_java=$(echo $symver_java) fi SYMVER_JAVA=$symver_java ac_fn_c_check_header_mongrel "$LINENO" "if_tun.h" "ac_cv_header_if_tun_h" "$ac_includes_default" if test "x$ac_cv_header_if_tun_h" = xyes; then : $as_echo "#define IF_TUN_HDR \"if_tun.h\"" >>confdefs.h else ac_fn_c_check_header_mongrel "$LINENO" "linux/if_tun.h" "ac_cv_header_linux_if_tun_h" "$ac_includes_default" if test "x$ac_cv_header_linux_if_tun_h" = xyes; then : $as_echo "#define IF_TUN_HDR \"linux/if_tun.h\"" >>confdefs.h else ac_fn_c_check_header_mongrel "$LINENO" "net/if_tun.h" "ac_cv_header_net_if_tun_h" "$ac_includes_default" if test "x$ac_cv_header_net_if_tun_h" = xyes; then : $as_echo "#define IF_TUN_HDR \"net/if_tun.h\"" >>confdefs.h else ac_fn_c_check_header_mongrel "$LINENO" "net/tun/if_tun.h" "ac_cv_header_net_tun_if_tun_h" "$ac_includes_default" if test "x$ac_cv_header_net_tun_if_tun_h" = xyes; then : $as_echo "#define IF_TUN_HDR \"net/tun/if_tun.h\"" >>confdefs.h fi fi fi fi ac_fn_c_check_header_compile "$LINENO" "net/if_utun.h" "ac_cv_header_net_if_utun_h" "#include " if test "x$ac_cv_header_net_if_utun_h" = xyes; then : $as_echo "#define HAVE_NET_UTUN_H 1" >>confdefs.h fi ac_fn_c_check_header_mongrel "$LINENO" "alloca.h" "ac_cv_header_alloca_h" "$ac_includes_default" if test "x$ac_cv_header_alloca_h" = xyes; then : $as_echo "#define HAVE_ALLOCA_H 1" >>confdefs.h fi ac_fn_c_check_header_mongrel "$LINENO" "endian.h" "ac_cv_header_endian_h" "$ac_includes_default" if test "x$ac_cv_header_endian_h" = xyes; then : $as_echo "#define ENDIAN_HDR " >>confdefs.h else ac_fn_c_check_header_mongrel "$LINENO" "sys/endian.h" "ac_cv_header_sys_endian_h" "$ac_includes_default" if test "x$ac_cv_header_sys_endian_h" = xyes; then : $as_echo "#define ENDIAN_HDR " >>confdefs.h else ac_fn_c_check_header_mongrel "$LINENO" "sys/isa_defs.h" "ac_cv_header_sys_isa_defs_h" "$ac_includes_default" if test "x$ac_cv_header_sys_isa_defs_h" = xyes; then : $as_echo "#define ENDIAN_HDR " >>confdefs.h fi fi fi build_www=yes for ac_prog in python3 python2 python do # Extract the first word of "$ac_prog", so it can be a program name with args. set dummy $ac_prog; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_path_PYTHON+:} false; then : $as_echo_n "(cached) " >&6 else case $PYTHON in [\\/]* | ?:[\\/]*) ac_cv_path_PYTHON="$PYTHON" # Let the user override the test with a path. ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR as_dummy="$PATH:/bin:/usr/bin" for as_dir in $as_dummy do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_path_PYTHON="$as_dir/$ac_word$ac_exec_ext" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS ;; esac fi PYTHON=$ac_cv_path_PYTHON if test -n "$PYTHON"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $PYTHON" >&5 $as_echo "$PYTHON" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi test -n "$PYTHON" && break done if test -z "${ac_cv_path_PYTHON}"; then { $as_echo "$as_me:${as_lineno-$LINENO}: Python not found; not building HTML pages" >&5 $as_echo "$as_me: Python not found; not building HTML pages" >&6;} build_www=no fi if test "${build_www}" = "yes"; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking if groff can create UTF-8 XHTML" >&5 $as_echo_n "checking if groff can create UTF-8 XHTML... " >&6; } if test -z "$GROFF"; then ac_path_GROFF_found=false # Loop through the user's path and test for each of PROGNAME-LIST as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_prog in groff; do for ac_exec_ext in '' $ac_executable_extensions; do ac_path_GROFF="$as_dir/$ac_prog$ac_exec_ext" as_fn_executable_p "$ac_path_GROFF" || continue $ac_path_GROFF -t -K UTF-8 -mandoc -Txhtml /dev/null > /dev/null 2>&1 && ac_cv_path_GROFF=$ac_path_GROFF $ac_path_GROFF_found && break 3 done done done IFS=$as_save_IFS if test -z "$ac_cv_path_GROFF"; then : fi else ac_cv_path_GROFF=$GROFF fi if test -n "$ac_cv_path_GROFF"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } GROFF=${ac_cv_path_GROFF} else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no. Not building HTML pages" >&5 $as_echo "no. Not building HTML pages" >&6; } build_www=no fi fi if test "${build_www}" = "yes"; then BUILD_WWW_TRUE= BUILD_WWW_FALSE='#' else BUILD_WWW_TRUE='#' BUILD_WWW_FALSE= fi # Checks for tests pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for CWRAP" >&5 $as_echo_n "checking for CWRAP... " >&6; } if test -n "$CWRAP_CFLAGS"; then pkg_cv_CWRAP_CFLAGS="$CWRAP_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"uid_wrapper, socket_wrapper\""; } >&5 ($PKG_CONFIG --exists --print-errors "uid_wrapper, socket_wrapper") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_CWRAP_CFLAGS=`$PKG_CONFIG --cflags "uid_wrapper, socket_wrapper" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$CWRAP_LIBS"; then pkg_cv_CWRAP_LIBS="$CWRAP_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"uid_wrapper, socket_wrapper\""; } >&5 ($PKG_CONFIG --exists --print-errors "uid_wrapper, socket_wrapper") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_CWRAP_LIBS=`$PKG_CONFIG --libs "uid_wrapper, socket_wrapper" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then CWRAP_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "uid_wrapper, socket_wrapper" 2>&1` else CWRAP_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "uid_wrapper, socket_wrapper" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$CWRAP_PKG_ERRORS" >&5 have_cwrap=no elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } have_cwrap=no else CWRAP_CFLAGS=$pkg_cv_CWRAP_CFLAGS CWRAP_LIBS=$pkg_cv_CWRAP_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } have_cwrap=yes fi if test "x$have_cwrap" != xno; then HAVE_CWRAP_TRUE= HAVE_CWRAP_FALSE='#' else HAVE_CWRAP_TRUE='#' HAVE_CWRAP_FALSE= fi have_netns=no # Extract the first word of "nuttcp", so it can be a program name with args. set dummy nuttcp; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_path_NUTTCP+:} false; then : $as_echo_n "(cached) " >&6 else case $NUTTCP in [\\/]* | ?:[\\/]*) ac_cv_path_NUTTCP="$NUTTCP" # Let the user override the test with a path. ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_path_NUTTCP="$as_dir/$ac_word$ac_exec_ext" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS ;; esac fi NUTTCP=$ac_cv_path_NUTTCP if test -n "$NUTTCP"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $NUTTCP" >&5 $as_echo "$NUTTCP" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test -n "$ac_cv_path_NUTTCP"; then # Extract the first word of "ip", so it can be a program name with args. set dummy ip; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_path_IP+:} false; then : $as_echo_n "(cached) " >&6 else case $IP in [\\/]* | ?:[\\/]*) ac_cv_path_IP="$IP" # Let the user override the test with a path. ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR as_dummy="$PATH:/sbin:/usr/sbin" for as_dir in $as_dummy do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_path_IP="$as_dir/$ac_word$ac_exec_ext" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS ;; esac fi IP=$ac_cv_path_IP if test -n "$IP"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $IP" >&5 $as_echo "$IP" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test -n "$ac_cv_path_IP"; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking For network namespaces" >&5 $as_echo_n "checking For network namespaces... " >&6; } NETNS=openconnect-configure-test-$$ if ip netns add $NETNS >/dev/null 2>/dev/null; then ip netns delete $NETNS have_netns=yes fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $have_netns" >&5 $as_echo "$have_netns" >&6; } fi fi if test "x$have_netns" != xno; then HAVE_NETNS_TRUE= HAVE_NETNS_FALSE='#' else HAVE_NETNS_TRUE='#' HAVE_NETNS_FALSE= fi CONFIG_STATUS_DEPENDENCIES='$(top_srcdir)/po/LINGUAS \ $(top_srcdir)/openconnect.h \ $(top_srcdir)/libopenconnect.map.in \ $(top_srcdir)/openconnect.8.in \ $(top_srcdir)/tests/softhsm2.conf.in \ $(top_srcdir)/tests/configs/test-user-cert.config.in \ $(top_srcdir)/tests/configs/test-user-pass.config.in' RAWLINGUAS=`sed -e "/^#/d" -e "s/#.*//" "${srcdir}/po/LINGUAS"` # Remove newlines LINGUAS=`echo $RAWLINGUAS` APIMAJOR="`sed -n 's/^#define OPENCONNECT_API_VERSION_MAJOR \(.*\)/\1/p' ${srcdir}/openconnect.h`" APIMINOR="`sed -n 's/^#define OPENCONNECT_API_VERSION_MINOR \(.*\)/\1/p' ${srcdir}/openconnect.h`" # We want version.c to depend on the files that would affect the # output of version.sh. But we cannot assume that they'll exist, # and we cannot use $(wildcard) in a non-GNU makefile. So we just # depend on the files which happen to exist at configure time. GITVERSIONDEPS= for a in ${srcdir}/.git/index ${srcdir}/.git/packed-refs \ ${srcdir}/.git/refs/tags ${srcdir}/.git/HEAD; do if test -r $a ; then GITVERSIONDEPS="$GITVERSIONDEPS $a" fi done OCSERV_USER=$(whoami) OCSERV_GROUP=$(groups|cut -f 1 -d ' ') ac_config_files="$ac_config_files Makefile openconnect.pc po/Makefile www/Makefile libopenconnect.map openconnect.8 www/styles/Makefile www/inc/Makefile www/images/Makefile tests/Makefile tests/softhsm2.conf tests/configs/test-user-cert.config tests/configs/test-user-pass.config" cat >confcache <<\_ACEOF # This file is a shell script that caches the results of configure # tests run on this system so they can be shared between configure # scripts and configure runs, see configure's option --config-cache. # It is not useful on other systems. If it contains results you don't # want to keep, you may remove or edit it. # # config.status only pays attention to the cache file if you give it # the --recheck option to rerun configure. # # `ac_cv_env_foo' variables (set or unset) will be overridden when # loading this file, other *unset* `ac_cv_foo' will be assigned the # following values. _ACEOF # The following way of writing the cache mishandles newlines in values, # but we know of no workaround that is simple, portable, and efficient. # So, we kill variables containing newlines. # Ultrix sh set writes to stderr and can't be redirected directly, # and sets the high bit in the cache file unless we assign to the vars. ( for ac_var in `(set) 2>&1 | sed -n 's/^\([a-zA-Z_][a-zA-Z0-9_]*\)=.*/\1/p'`; do eval ac_val=\$$ac_var case $ac_val in #( *${as_nl}*) case $ac_var in #( *_cv_*) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: cache variable $ac_var contains a newline" >&5 $as_echo "$as_me: WARNING: cache variable $ac_var contains a newline" >&2;} ;; esac case $ac_var in #( _ | IFS | as_nl) ;; #( BASH_ARGV | BASH_SOURCE) eval $ac_var= ;; #( *) { eval $ac_var=; unset $ac_var;} ;; esac ;; esac done (set) 2>&1 | case $as_nl`(ac_space=' '; set) 2>&1` in #( *${as_nl}ac_space=\ *) # `set' does not quote correctly, so add quotes: double-quote # substitution turns \\\\ into \\, and sed turns \\ into \. sed -n \ "s/'/'\\\\''/g; s/^\\([_$as_cr_alnum]*_cv_[_$as_cr_alnum]*\\)=\\(.*\\)/\\1='\\2'/p" ;; #( *) # `set' quotes correctly as required by POSIX, so do not add quotes. sed -n "/^[_$as_cr_alnum]*_cv_[_$as_cr_alnum]*=/p" ;; esac | sort ) | sed ' /^ac_cv_env_/b end t clear :clear s/^\([^=]*\)=\(.*[{}].*\)$/test "${\1+set}" = set || &/ t end s/^\([^=]*\)=\(.*\)$/\1=${\1=\2}/ :end' >>confcache if diff "$cache_file" confcache >/dev/null 2>&1; then :; else if test -w "$cache_file"; then if test "x$cache_file" != "x/dev/null"; then { $as_echo "$as_me:${as_lineno-$LINENO}: updating cache $cache_file" >&5 $as_echo "$as_me: updating cache $cache_file" >&6;} if test ! -f "$cache_file" || test -h "$cache_file"; then cat confcache >"$cache_file" else case $cache_file in #( */* | ?:*) mv -f confcache "$cache_file"$$ && mv -f "$cache_file"$$ "$cache_file" ;; #( *) mv -f confcache "$cache_file" ;; esac fi fi else { $as_echo "$as_me:${as_lineno-$LINENO}: not updating unwritable cache $cache_file" >&5 $as_echo "$as_me: not updating unwritable cache $cache_file" >&6;} fi fi rm -f confcache test "x$prefix" = xNONE && prefix=$ac_default_prefix # Let make expand exec_prefix. test "x$exec_prefix" = xNONE && exec_prefix='${prefix}' DEFS=-DHAVE_CONFIG_H ac_libobjs= ac_ltlibobjs= U= for ac_i in : $LIBOBJS; do test "x$ac_i" = x: && continue # 1. Remove the extension, and $U if already installed. ac_script='s/\$U\././;s/\.o$//;s/\.obj$//' ac_i=`$as_echo "$ac_i" | sed "$ac_script"` # 2. Prepend LIBOBJDIR. When used with automake>=1.10 LIBOBJDIR # will be set to the directory where LIBOBJS objects are built. as_fn_append ac_libobjs " \${LIBOBJDIR}$ac_i\$U.$ac_objext" as_fn_append ac_ltlibobjs " \${LIBOBJDIR}$ac_i"'$U.lo' done LIBOBJS=$ac_libobjs LTLIBOBJS=$ac_ltlibobjs if test -z "${MAINTAINER_MODE_TRUE}" && test -z "${MAINTAINER_MODE_FALSE}"; then as_fn_error $? "conditional \"MAINTAINER_MODE\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking that generated files are newer than configure" >&5 $as_echo_n "checking that generated files are newer than configure... " >&6; } if test -n "$am_sleep_pid"; then # Hide warnings about reused PIDs. wait $am_sleep_pid 2>/dev/null fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: done" >&5 $as_echo "done" >&6; } if test -n "$EXEEXT"; then am__EXEEXT_TRUE= am__EXEEXT_FALSE='#' else am__EXEEXT_TRUE='#' am__EXEEXT_FALSE= fi if test -z "${OPENCONNECT_WIN32_TRUE}" && test -z "${OPENCONNECT_WIN32_FALSE}"; then as_fn_error $? "conditional \"OPENCONNECT_WIN32\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${AMDEP_TRUE}" && test -z "${AMDEP_FALSE}"; then as_fn_error $? "conditional \"AMDEP\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${am__fastdepCC_TRUE}" && test -z "${am__fastdepCC_FALSE}"; then as_fn_error $? "conditional \"am__fastdepCC\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${OPENCONNECT_ICONV_TRUE}" && test -z "${OPENCONNECT_ICONV_FALSE}"; then as_fn_error $? "conditional \"OPENCONNECT_ICONV\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${USE_NLS_TRUE}" && test -z "${USE_NLS_FALSE}"; then as_fn_error $? "conditional \"USE_NLS\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${OPENCONNECT_TSS2_ESYS_TRUE}" && test -z "${OPENCONNECT_TSS2_ESYS_FALSE}"; then as_fn_error $? "conditional \"OPENCONNECT_TSS2_ESYS\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${OPENCONNECT_TSS2_IBM_TRUE}" && test -z "${OPENCONNECT_TSS2_IBM_FALSE}"; then as_fn_error $? "conditional \"OPENCONNECT_TSS2_IBM\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${TEST_PKCS11_TRUE}" && test -z "${TEST_PKCS11_FALSE}"; then as_fn_error $? "conditional \"TEST_PKCS11\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${CHECK_DTLS_TRUE}" && test -z "${CHECK_DTLS_FALSE}"; then as_fn_error $? "conditional \"CHECK_DTLS\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${DTLS_XFAIL_TRUE}" && test -z "${DTLS_XFAIL_FALSE}"; then as_fn_error $? "conditional \"DTLS_XFAIL\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${TEST_DSA_TRUE}" && test -z "${TEST_DSA_FALSE}"; then as_fn_error $? "conditional \"TEST_DSA\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${OPENCONNECT_GNUTLS_TRUE}" && test -z "${OPENCONNECT_GNUTLS_FALSE}"; then as_fn_error $? "conditional \"OPENCONNECT_GNUTLS\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${OPENCONNECT_OPENSSL_TRUE}" && test -z "${OPENCONNECT_OPENSSL_FALSE}"; then as_fn_error $? "conditional \"OPENCONNECT_OPENSSL\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${OPENCONNECT_ESP_TRUE}" && test -z "${OPENCONNECT_ESP_FALSE}"; then as_fn_error $? "conditional \"OPENCONNECT_ESP\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${OPENCONNECT_DTLS_TRUE}" && test -z "${OPENCONNECT_DTLS_FALSE}"; then as_fn_error $? "conditional \"OPENCONNECT_DTLS\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${OPENBSD_LIBTOOL_TRUE}" && test -z "${OPENBSD_LIBTOOL_FALSE}"; then as_fn_error $? "conditional \"OPENBSD_LIBTOOL\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${HAVE_VSCRIPT_TRUE}" && test -z "${HAVE_VSCRIPT_FALSE}"; then as_fn_error $? "conditional \"HAVE_VSCRIPT\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${HAVE_VSCRIPT_COMPLEX_TRUE}" && test -z "${HAVE_VSCRIPT_COMPLEX_FALSE}"; then as_fn_error $? "conditional \"HAVE_VSCRIPT_COMPLEX\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${OPENCONNECT_STOKEN_TRUE}" && test -z "${OPENCONNECT_STOKEN_FALSE}"; then as_fn_error $? "conditional \"OPENCONNECT_STOKEN\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${OPENCONNECT_LIBPCSCLITE_TRUE}" && test -z "${OPENCONNECT_LIBPCSCLITE_FALSE}"; then as_fn_error $? "conditional \"OPENCONNECT_LIBPCSCLITE\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${OPENCONNECT_GSSAPI_TRUE}" && test -z "${OPENCONNECT_GSSAPI_FALSE}"; then as_fn_error $? "conditional \"OPENCONNECT_GSSAPI\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${OPENCONNECT_JNI_TRUE}" && test -z "${OPENCONNECT_JNI_FALSE}"; then as_fn_error $? "conditional \"OPENCONNECT_JNI\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${JNI_STANDALONE_TRUE}" && test -z "${JNI_STANDALONE_FALSE}"; then as_fn_error $? "conditional \"JNI_STANDALONE\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${BUILD_WWW_TRUE}" && test -z "${BUILD_WWW_FALSE}"; then as_fn_error $? "conditional \"BUILD_WWW\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${HAVE_CWRAP_TRUE}" && test -z "${HAVE_CWRAP_FALSE}"; then as_fn_error $? "conditional \"HAVE_CWRAP\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${HAVE_NETNS_TRUE}" && test -z "${HAVE_NETNS_FALSE}"; then as_fn_error $? "conditional \"HAVE_NETNS\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi : "${CONFIG_STATUS=./config.status}" ac_write_fail=0 ac_clean_files_save=$ac_clean_files ac_clean_files="$ac_clean_files $CONFIG_STATUS" { $as_echo "$as_me:${as_lineno-$LINENO}: creating $CONFIG_STATUS" >&5 $as_echo "$as_me: creating $CONFIG_STATUS" >&6;} as_write_fail=0 cat >$CONFIG_STATUS <<_ASEOF || as_write_fail=1 #! $SHELL # Generated by $as_me. # Run this file to recreate the current configuration. # Compiler output produced by configure, useful for debugging # configure, is in config.log if it exists. debug=false ac_cs_recheck=false ac_cs_silent=false SHELL=\${CONFIG_SHELL-$SHELL} export SHELL _ASEOF cat >>$CONFIG_STATUS <<\_ASEOF || as_write_fail=1 ## -------------------- ## ## M4sh Initialization. ## ## -------------------- ## # Be more Bourne compatible DUALCASE=1; export DUALCASE # for MKS sh if test -n "${ZSH_VERSION+set}" && (emulate sh) >/dev/null 2>&1; then : emulate sh NULLCMD=: # Pre-4.2 versions of Zsh do word splitting on ${1+"$@"}, which # is contrary to our usage. Disable this feature. alias -g '${1+"$@"}'='"$@"' setopt NO_GLOB_SUBST else case `(set -o) 2>/dev/null` in #( *posix*) : set -o posix ;; #( *) : ;; esac fi as_nl=' ' export as_nl # Printing a long string crashes Solaris 7 /usr/bin/printf. as_echo='\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\' as_echo=$as_echo$as_echo$as_echo$as_echo$as_echo as_echo=$as_echo$as_echo$as_echo$as_echo$as_echo$as_echo # Prefer a ksh shell builtin over an external printf program on Solaris, # but without wasting forks for bash or zsh. if test -z "$BASH_VERSION$ZSH_VERSION" \ && (test "X`print -r -- $as_echo`" = "X$as_echo") 2>/dev/null; then as_echo='print -r --' as_echo_n='print -rn --' elif (test "X`printf %s $as_echo`" = "X$as_echo") 2>/dev/null; then as_echo='printf %s\n' as_echo_n='printf %s' else if test "X`(/usr/ucb/echo -n -n $as_echo) 2>/dev/null`" = "X-n $as_echo"; then as_echo_body='eval /usr/ucb/echo -n "$1$as_nl"' as_echo_n='/usr/ucb/echo -n' else as_echo_body='eval expr "X$1" : "X\\(.*\\)"' as_echo_n_body='eval arg=$1; case $arg in #( *"$as_nl"*) expr "X$arg" : "X\\(.*\\)$as_nl"; arg=`expr "X$arg" : ".*$as_nl\\(.*\\)"`;; esac; expr "X$arg" : "X\\(.*\\)" | tr -d "$as_nl" ' export as_echo_n_body as_echo_n='sh -c $as_echo_n_body as_echo' fi export as_echo_body as_echo='sh -c $as_echo_body as_echo' fi # The user is always right. if test "${PATH_SEPARATOR+set}" != set; then PATH_SEPARATOR=: (PATH='/bin;/bin'; FPATH=$PATH; sh -c :) >/dev/null 2>&1 && { (PATH='/bin:/bin'; FPATH=$PATH; sh -c :) >/dev/null 2>&1 || PATH_SEPARATOR=';' } fi # IFS # We need space, tab and new line, in precisely that order. Quoting is # there to prevent editors from complaining about space-tab. # (If _AS_PATH_WALK were called with IFS unset, it would disable word # splitting by setting IFS to empty value.) IFS=" "" $as_nl" # Find who we are. Look in the path if we contain no directory separator. as_myself= case $0 in #(( *[\\/]* ) as_myself=$0 ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. test -r "$as_dir/$0" && as_myself=$as_dir/$0 && break done IFS=$as_save_IFS ;; esac # We did not find ourselves, most probably we were run as `sh COMMAND' # in which case we are not to be found in the path. if test "x$as_myself" = x; then as_myself=$0 fi if test ! -f "$as_myself"; then $as_echo "$as_myself: error: cannot find myself; rerun with an absolute file name" >&2 exit 1 fi # Unset variables that we do not need and which cause bugs (e.g. in # pre-3.0 UWIN ksh). But do not cause bugs in bash 2.01; the "|| exit 1" # suppresses any "Segmentation fault" message there. '((' could # trigger a bug in pdksh 5.2.14. for as_var in BASH_ENV ENV MAIL MAILPATH do eval test x\${$as_var+set} = xset \ && ( (unset $as_var) || exit 1) >/dev/null 2>&1 && unset $as_var || : done PS1='$ ' PS2='> ' PS4='+ ' # NLS nuisances. LC_ALL=C export LC_ALL LANGUAGE=C export LANGUAGE # CDPATH. (unset CDPATH) >/dev/null 2>&1 && unset CDPATH # as_fn_error STATUS ERROR [LINENO LOG_FD] # ---------------------------------------- # Output "`basename $0`: error: ERROR" to stderr. If LINENO and LOG_FD are # provided, also output the error to LOG_FD, referencing LINENO. Then exit the # script with STATUS, using 1 if that was 0. as_fn_error () { as_status=$1; test $as_status -eq 0 && as_status=1 if test "$4"; then as_lineno=${as_lineno-"$3"} as_lineno_stack=as_lineno_stack=$as_lineno_stack $as_echo "$as_me:${as_lineno-$LINENO}: error: $2" >&$4 fi $as_echo "$as_me: error: $2" >&2 as_fn_exit $as_status } # as_fn_error # as_fn_set_status STATUS # ----------------------- # Set $? to STATUS, without forking. as_fn_set_status () { return $1 } # as_fn_set_status # as_fn_exit STATUS # ----------------- # Exit the shell with STATUS, even in a "trap 0" or "set -e" context. as_fn_exit () { set +e as_fn_set_status $1 exit $1 } # as_fn_exit # as_fn_unset VAR # --------------- # Portably unset VAR. as_fn_unset () { { eval $1=; unset $1;} } as_unset=as_fn_unset # as_fn_append VAR VALUE # ---------------------- # Append the text in VALUE to the end of the definition contained in VAR. Take # advantage of any shell optimizations that allow amortized linear growth over # repeated appends, instead of the typical quadratic growth present in naive # implementations. if (eval "as_var=1; as_var+=2; test x\$as_var = x12") 2>/dev/null; then : eval 'as_fn_append () { eval $1+=\$2 }' else as_fn_append () { eval $1=\$$1\$2 } fi # as_fn_append # as_fn_arith ARG... # ------------------ # Perform arithmetic evaluation on the ARGs, and store the result in the # global $as_val. Take advantage of shells that can avoid forks. The arguments # must be portable across $(()) and expr. if (eval "test \$(( 1 + 1 )) = 2") 2>/dev/null; then : eval 'as_fn_arith () { as_val=$(( $* )) }' else as_fn_arith () { as_val=`expr "$@" || test $? -eq 1` } fi # as_fn_arith if expr a : '\(a\)' >/dev/null 2>&1 && test "X`expr 00001 : '.*\(...\)'`" = X001; then as_expr=expr else as_expr=false fi if (basename -- /) >/dev/null 2>&1 && test "X`basename -- / 2>&1`" = "X/"; then as_basename=basename else as_basename=false fi if (as_dir=`dirname -- /` && test "X$as_dir" = X/) >/dev/null 2>&1; then as_dirname=dirname else as_dirname=false fi as_me=`$as_basename -- "$0" || $as_expr X/"$0" : '.*/\([^/][^/]*\)/*$' \| \ X"$0" : 'X\(//\)$' \| \ X"$0" : 'X\(/\)' \| . 2>/dev/null || $as_echo X/"$0" | sed '/^.*\/\([^/][^/]*\)\/*$/{ s//\1/ q } /^X\/\(\/\/\)$/{ s//\1/ q } /^X\/\(\/\).*/{ s//\1/ q } s/.*/./; q'` # Avoid depending upon Character Ranges. as_cr_letters='abcdefghijklmnopqrstuvwxyz' as_cr_LETTERS='ABCDEFGHIJKLMNOPQRSTUVWXYZ' as_cr_Letters=$as_cr_letters$as_cr_LETTERS as_cr_digits='0123456789' as_cr_alnum=$as_cr_Letters$as_cr_digits ECHO_C= ECHO_N= ECHO_T= case `echo -n x` in #((((( -n*) case `echo 'xy\c'` in *c*) ECHO_T=' ';; # ECHO_T is single tab character. xy) ECHO_C='\c';; *) echo `echo ksh88 bug on AIX 6.1` > /dev/null ECHO_T=' ';; esac;; *) ECHO_N='-n';; esac rm -f conf$$ conf$$.exe conf$$.file if test -d conf$$.dir; then rm -f conf$$.dir/conf$$.file else rm -f conf$$.dir mkdir conf$$.dir 2>/dev/null fi if (echo >conf$$.file) 2>/dev/null; then if ln -s conf$$.file conf$$ 2>/dev/null; then as_ln_s='ln -s' # ... but there are two gotchas: # 1) On MSYS, both `ln -s file dir' and `ln file dir' fail. # 2) DJGPP < 2.04 has no symlinks; `ln -s' creates a wrapper executable. # In both cases, we have to default to `cp -pR'. ln -s conf$$.file conf$$.dir 2>/dev/null && test ! -f conf$$.exe || as_ln_s='cp -pR' elif ln conf$$.file conf$$ 2>/dev/null; then as_ln_s=ln else as_ln_s='cp -pR' fi else as_ln_s='cp -pR' fi rm -f conf$$ conf$$.exe conf$$.dir/conf$$.file conf$$.file rmdir conf$$.dir 2>/dev/null # as_fn_mkdir_p # ------------- # Create "$as_dir" as a directory, including parents if necessary. as_fn_mkdir_p () { case $as_dir in #( -*) as_dir=./$as_dir;; esac test -d "$as_dir" || eval $as_mkdir_p || { as_dirs= while :; do case $as_dir in #( *\'*) as_qdir=`$as_echo "$as_dir" | sed "s/'/'\\\\\\\\''/g"`;; #'( *) as_qdir=$as_dir;; esac as_dirs="'$as_qdir' $as_dirs" as_dir=`$as_dirname -- "$as_dir" || $as_expr X"$as_dir" : 'X\(.*[^/]\)//*[^/][^/]*/*$' \| \ X"$as_dir" : 'X\(//\)[^/]' \| \ X"$as_dir" : 'X\(//\)$' \| \ X"$as_dir" : 'X\(/\)' \| . 2>/dev/null || $as_echo X"$as_dir" | sed '/^X\(.*[^/]\)\/\/*[^/][^/]*\/*$/{ s//\1/ q } /^X\(\/\/\)[^/].*/{ s//\1/ q } /^X\(\/\/\)$/{ s//\1/ q } /^X\(\/\).*/{ s//\1/ q } s/.*/./; q'` test -d "$as_dir" && break done test -z "$as_dirs" || eval "mkdir $as_dirs" } || test -d "$as_dir" || as_fn_error $? "cannot create directory $as_dir" } # as_fn_mkdir_p if mkdir -p . 2>/dev/null; then as_mkdir_p='mkdir -p "$as_dir"' else test -d ./-p && rmdir ./-p as_mkdir_p=false fi # as_fn_executable_p FILE # ----------------------- # Test if FILE is an executable regular file. as_fn_executable_p () { test -f "$1" && test -x "$1" } # as_fn_executable_p as_test_x='test -x' as_executable_p=as_fn_executable_p # Sed expression to map a string onto a valid CPP name. as_tr_cpp="eval sed 'y%*$as_cr_letters%P$as_cr_LETTERS%;s%[^_$as_cr_alnum]%_%g'" # Sed expression to map a string onto a valid variable name. as_tr_sh="eval sed 'y%*+%pp%;s%[^_$as_cr_alnum]%_%g'" exec 6>&1 ## ----------------------------------- ## ## Main body of $CONFIG_STATUS script. ## ## ----------------------------------- ## _ASEOF test $as_write_fail = 0 && chmod +x $CONFIG_STATUS || ac_write_fail=1 cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1 # Save the log message, to keep $0 and so on meaningful, and to # report actual input values of CONFIG_FILES etc. instead of their # values after options handling. ac_log=" This file was extended by openconnect $as_me 8.05, which was generated by GNU Autoconf 2.69. Invocation command line was CONFIG_FILES = $CONFIG_FILES CONFIG_HEADERS = $CONFIG_HEADERS CONFIG_LINKS = $CONFIG_LINKS CONFIG_COMMANDS = $CONFIG_COMMANDS $ $0 $@ on `(hostname || uname -n) 2>/dev/null | sed 1q` " _ACEOF case $ac_config_files in *" "*) set x $ac_config_files; shift; ac_config_files=$*;; esac case $ac_config_headers in *" "*) set x $ac_config_headers; shift; ac_config_headers=$*;; esac cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 # Files that config.status was made for. config_files="$ac_config_files" config_headers="$ac_config_headers" config_commands="$ac_config_commands" _ACEOF cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1 ac_cs_usage="\ \`$as_me' instantiates files and other configuration actions from templates according to the current configuration. Unless the files and actions are specified as TAGs, all are instantiated by default. Usage: $0 [OPTION]... [TAG]... -h, --help print this help, then exit -V, --version print version number and configuration settings, then exit --config print configuration, then exit -q, --quiet, --silent do not print progress messages -d, --debug don't remove temporary files --recheck update $as_me by reconfiguring in the same conditions --file=FILE[:TEMPLATE] instantiate the configuration file FILE --header=FILE[:TEMPLATE] instantiate the configuration header FILE Configuration files: $config_files Configuration headers: $config_headers Configuration commands: $config_commands Report bugs to the package provider." _ACEOF cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 ac_cs_config="`$as_echo "$ac_configure_args" | sed 's/^ //; s/[\\""\`\$]/\\\\&/g'`" ac_cs_version="\\ openconnect config.status 8.05 configured by $0, generated by GNU Autoconf 2.69, with options \\"\$ac_cs_config\\" Copyright (C) 2012 Free Software Foundation, Inc. This config.status script is free software; the Free Software Foundation gives unlimited permission to copy, distribute and modify it." ac_pwd='$ac_pwd' srcdir='$srcdir' INSTALL='$INSTALL' MKDIR_P='$MKDIR_P' AWK='$AWK' test -n "\$AWK" || AWK=awk _ACEOF cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1 # The default lists apply if the user does not specify any file. ac_need_defaults=: while test $# != 0 do case $1 in --*=?*) ac_option=`expr "X$1" : 'X\([^=]*\)='` ac_optarg=`expr "X$1" : 'X[^=]*=\(.*\)'` ac_shift=: ;; --*=) ac_option=`expr "X$1" : 'X\([^=]*\)='` ac_optarg= ac_shift=: ;; *) ac_option=$1 ac_optarg=$2 ac_shift=shift ;; esac case $ac_option in # Handling of the options. -recheck | --recheck | --rechec | --reche | --rech | --rec | --re | --r) ac_cs_recheck=: ;; --version | --versio | --versi | --vers | --ver | --ve | --v | -V ) $as_echo "$ac_cs_version"; exit ;; --config | --confi | --conf | --con | --co | --c ) $as_echo "$ac_cs_config"; exit ;; --debug | --debu | --deb | --de | --d | -d ) debug=: ;; --file | --fil | --fi | --f ) $ac_shift case $ac_optarg in *\'*) ac_optarg=`$as_echo "$ac_optarg" | sed "s/'/'\\\\\\\\''/g"` ;; '') as_fn_error $? "missing file argument" ;; esac as_fn_append CONFIG_FILES " '$ac_optarg'" ac_need_defaults=false;; --header | --heade | --head | --hea ) $ac_shift case $ac_optarg in *\'*) ac_optarg=`$as_echo "$ac_optarg" | sed "s/'/'\\\\\\\\''/g"` ;; esac as_fn_append CONFIG_HEADERS " '$ac_optarg'" ac_need_defaults=false;; --he | --h) # Conflict between --help and --header as_fn_error $? "ambiguous option: \`$1' Try \`$0 --help' for more information.";; --help | --hel | -h ) $as_echo "$ac_cs_usage"; exit ;; -q | -quiet | --quiet | --quie | --qui | --qu | --q \ | -silent | --silent | --silen | --sile | --sil | --si | --s) ac_cs_silent=: ;; # This is an error. -*) as_fn_error $? "unrecognized option: \`$1' Try \`$0 --help' for more information." ;; *) as_fn_append ac_config_targets " $1" ac_need_defaults=false ;; esac shift done ac_configure_extra_args= if $ac_cs_silent; then exec 6>/dev/null ac_configure_extra_args="$ac_configure_extra_args --silent" fi _ACEOF cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 if \$ac_cs_recheck; then set X $SHELL '$0' $ac_configure_args \$ac_configure_extra_args --no-create --no-recursion shift \$as_echo "running CONFIG_SHELL=$SHELL \$*" >&6 CONFIG_SHELL='$SHELL' export CONFIG_SHELL exec "\$@" fi _ACEOF cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1 exec 5>>config.log { echo sed 'h;s/./-/g;s/^.../## /;s/...$/ ##/;p;x;p;x' <<_ASBOX ## Running $as_me. ## _ASBOX $as_echo "$ac_log" } >&5 _ACEOF cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 # # INIT-COMMANDS # AMDEP_TRUE="$AMDEP_TRUE" MAKE="${MAKE-make}" # The HP-UX ksh and POSIX shell print the target directory to stdout # if CDPATH is set. (unset CDPATH) >/dev/null 2>&1 && unset CDPATH sed_quote_subst='$sed_quote_subst' double_quote_subst='$double_quote_subst' delay_variable_subst='$delay_variable_subst' enable_shared='`$ECHO "$enable_shared" | $SED "$delay_single_quote_subst"`' enable_static='`$ECHO "$enable_static" | $SED "$delay_single_quote_subst"`' macro_version='`$ECHO "$macro_version" | $SED "$delay_single_quote_subst"`' macro_revision='`$ECHO "$macro_revision" | $SED "$delay_single_quote_subst"`' pic_mode='`$ECHO "$pic_mode" | $SED "$delay_single_quote_subst"`' enable_fast_install='`$ECHO "$enable_fast_install" | $SED "$delay_single_quote_subst"`' shared_archive_member_spec='`$ECHO "$shared_archive_member_spec" | $SED "$delay_single_quote_subst"`' SHELL='`$ECHO "$SHELL" | $SED "$delay_single_quote_subst"`' ECHO='`$ECHO "$ECHO" | $SED "$delay_single_quote_subst"`' PATH_SEPARATOR='`$ECHO "$PATH_SEPARATOR" | $SED "$delay_single_quote_subst"`' host_alias='`$ECHO "$host_alias" | $SED "$delay_single_quote_subst"`' host='`$ECHO "$host" | $SED "$delay_single_quote_subst"`' host_os='`$ECHO "$host_os" | $SED "$delay_single_quote_subst"`' build_alias='`$ECHO "$build_alias" | $SED "$delay_single_quote_subst"`' build='`$ECHO "$build" | $SED "$delay_single_quote_subst"`' build_os='`$ECHO "$build_os" | $SED "$delay_single_quote_subst"`' SED='`$ECHO "$SED" | $SED "$delay_single_quote_subst"`' Xsed='`$ECHO "$Xsed" | $SED "$delay_single_quote_subst"`' GREP='`$ECHO "$GREP" | $SED "$delay_single_quote_subst"`' EGREP='`$ECHO "$EGREP" | $SED "$delay_single_quote_subst"`' FGREP='`$ECHO "$FGREP" | $SED "$delay_single_quote_subst"`' LD='`$ECHO "$LD" | $SED "$delay_single_quote_subst"`' NM='`$ECHO "$NM" | $SED "$delay_single_quote_subst"`' LN_S='`$ECHO "$LN_S" | $SED "$delay_single_quote_subst"`' max_cmd_len='`$ECHO "$max_cmd_len" | $SED "$delay_single_quote_subst"`' ac_objext='`$ECHO "$ac_objext" | $SED "$delay_single_quote_subst"`' exeext='`$ECHO "$exeext" | $SED "$delay_single_quote_subst"`' lt_unset='`$ECHO "$lt_unset" | $SED "$delay_single_quote_subst"`' lt_SP2NL='`$ECHO "$lt_SP2NL" | $SED "$delay_single_quote_subst"`' lt_NL2SP='`$ECHO "$lt_NL2SP" | $SED "$delay_single_quote_subst"`' lt_cv_to_host_file_cmd='`$ECHO "$lt_cv_to_host_file_cmd" | $SED "$delay_single_quote_subst"`' lt_cv_to_tool_file_cmd='`$ECHO "$lt_cv_to_tool_file_cmd" | $SED "$delay_single_quote_subst"`' reload_flag='`$ECHO "$reload_flag" | $SED "$delay_single_quote_subst"`' reload_cmds='`$ECHO "$reload_cmds" | $SED "$delay_single_quote_subst"`' OBJDUMP='`$ECHO "$OBJDUMP" | $SED "$delay_single_quote_subst"`' deplibs_check_method='`$ECHO "$deplibs_check_method" | $SED "$delay_single_quote_subst"`' file_magic_cmd='`$ECHO "$file_magic_cmd" | $SED "$delay_single_quote_subst"`' file_magic_glob='`$ECHO "$file_magic_glob" | $SED "$delay_single_quote_subst"`' want_nocaseglob='`$ECHO "$want_nocaseglob" | $SED "$delay_single_quote_subst"`' DLLTOOL='`$ECHO "$DLLTOOL" | $SED "$delay_single_quote_subst"`' sharedlib_from_linklib_cmd='`$ECHO "$sharedlib_from_linklib_cmd" | $SED "$delay_single_quote_subst"`' AR='`$ECHO "$AR" | $SED "$delay_single_quote_subst"`' AR_FLAGS='`$ECHO "$AR_FLAGS" | $SED "$delay_single_quote_subst"`' archiver_list_spec='`$ECHO "$archiver_list_spec" | $SED "$delay_single_quote_subst"`' STRIP='`$ECHO "$STRIP" | $SED "$delay_single_quote_subst"`' RANLIB='`$ECHO "$RANLIB" | $SED "$delay_single_quote_subst"`' old_postinstall_cmds='`$ECHO "$old_postinstall_cmds" | $SED "$delay_single_quote_subst"`' old_postuninstall_cmds='`$ECHO "$old_postuninstall_cmds" | $SED "$delay_single_quote_subst"`' old_archive_cmds='`$ECHO "$old_archive_cmds" | $SED "$delay_single_quote_subst"`' lock_old_archive_extraction='`$ECHO "$lock_old_archive_extraction" | $SED "$delay_single_quote_subst"`' CC='`$ECHO "$CC" | $SED "$delay_single_quote_subst"`' CFLAGS='`$ECHO "$CFLAGS" | $SED "$delay_single_quote_subst"`' compiler='`$ECHO "$compiler" | $SED "$delay_single_quote_subst"`' GCC='`$ECHO "$GCC" | $SED "$delay_single_quote_subst"`' lt_cv_sys_global_symbol_pipe='`$ECHO "$lt_cv_sys_global_symbol_pipe" | $SED "$delay_single_quote_subst"`' lt_cv_sys_global_symbol_to_cdecl='`$ECHO "$lt_cv_sys_global_symbol_to_cdecl" | $SED "$delay_single_quote_subst"`' lt_cv_sys_global_symbol_to_import='`$ECHO "$lt_cv_sys_global_symbol_to_import" | $SED "$delay_single_quote_subst"`' lt_cv_sys_global_symbol_to_c_name_address='`$ECHO "$lt_cv_sys_global_symbol_to_c_name_address" | $SED "$delay_single_quote_subst"`' lt_cv_sys_global_symbol_to_c_name_address_lib_prefix='`$ECHO "$lt_cv_sys_global_symbol_to_c_name_address_lib_prefix" | $SED "$delay_single_quote_subst"`' lt_cv_nm_interface='`$ECHO "$lt_cv_nm_interface" | $SED "$delay_single_quote_subst"`' nm_file_list_spec='`$ECHO "$nm_file_list_spec" | $SED "$delay_single_quote_subst"`' lt_sysroot='`$ECHO "$lt_sysroot" | $SED "$delay_single_quote_subst"`' lt_cv_truncate_bin='`$ECHO "$lt_cv_truncate_bin" | $SED "$delay_single_quote_subst"`' objdir='`$ECHO "$objdir" | $SED "$delay_single_quote_subst"`' MAGIC_CMD='`$ECHO "$MAGIC_CMD" | $SED "$delay_single_quote_subst"`' lt_prog_compiler_no_builtin_flag='`$ECHO "$lt_prog_compiler_no_builtin_flag" | $SED "$delay_single_quote_subst"`' lt_prog_compiler_pic='`$ECHO "$lt_prog_compiler_pic" | $SED "$delay_single_quote_subst"`' lt_prog_compiler_wl='`$ECHO "$lt_prog_compiler_wl" | $SED "$delay_single_quote_subst"`' lt_prog_compiler_static='`$ECHO "$lt_prog_compiler_static" | $SED "$delay_single_quote_subst"`' lt_cv_prog_compiler_c_o='`$ECHO "$lt_cv_prog_compiler_c_o" | $SED "$delay_single_quote_subst"`' need_locks='`$ECHO "$need_locks" | $SED "$delay_single_quote_subst"`' MANIFEST_TOOL='`$ECHO "$MANIFEST_TOOL" | $SED "$delay_single_quote_subst"`' DSYMUTIL='`$ECHO "$DSYMUTIL" | $SED "$delay_single_quote_subst"`' NMEDIT='`$ECHO "$NMEDIT" | $SED "$delay_single_quote_subst"`' LIPO='`$ECHO "$LIPO" | $SED "$delay_single_quote_subst"`' OTOOL='`$ECHO "$OTOOL" | $SED "$delay_single_quote_subst"`' OTOOL64='`$ECHO "$OTOOL64" | $SED "$delay_single_quote_subst"`' libext='`$ECHO "$libext" | $SED "$delay_single_quote_subst"`' shrext_cmds='`$ECHO "$shrext_cmds" | $SED "$delay_single_quote_subst"`' extract_expsyms_cmds='`$ECHO "$extract_expsyms_cmds" | $SED "$delay_single_quote_subst"`' archive_cmds_need_lc='`$ECHO "$archive_cmds_need_lc" | $SED "$delay_single_quote_subst"`' enable_shared_with_static_runtimes='`$ECHO "$enable_shared_with_static_runtimes" | $SED "$delay_single_quote_subst"`' export_dynamic_flag_spec='`$ECHO "$export_dynamic_flag_spec" | $SED "$delay_single_quote_subst"`' whole_archive_flag_spec='`$ECHO "$whole_archive_flag_spec" | $SED "$delay_single_quote_subst"`' compiler_needs_object='`$ECHO "$compiler_needs_object" | $SED "$delay_single_quote_subst"`' old_archive_from_new_cmds='`$ECHO "$old_archive_from_new_cmds" | $SED "$delay_single_quote_subst"`' old_archive_from_expsyms_cmds='`$ECHO "$old_archive_from_expsyms_cmds" | $SED "$delay_single_quote_subst"`' archive_cmds='`$ECHO "$archive_cmds" | $SED "$delay_single_quote_subst"`' archive_expsym_cmds='`$ECHO "$archive_expsym_cmds" | $SED "$delay_single_quote_subst"`' module_cmds='`$ECHO "$module_cmds" | $SED "$delay_single_quote_subst"`' module_expsym_cmds='`$ECHO "$module_expsym_cmds" | $SED "$delay_single_quote_subst"`' with_gnu_ld='`$ECHO "$with_gnu_ld" | $SED "$delay_single_quote_subst"`' allow_undefined_flag='`$ECHO "$allow_undefined_flag" | $SED "$delay_single_quote_subst"`' no_undefined_flag='`$ECHO "$no_undefined_flag" | $SED "$delay_single_quote_subst"`' hardcode_libdir_flag_spec='`$ECHO "$hardcode_libdir_flag_spec" | $SED "$delay_single_quote_subst"`' hardcode_libdir_separator='`$ECHO "$hardcode_libdir_separator" | $SED "$delay_single_quote_subst"`' hardcode_direct='`$ECHO "$hardcode_direct" | $SED "$delay_single_quote_subst"`' hardcode_direct_absolute='`$ECHO "$hardcode_direct_absolute" | $SED "$delay_single_quote_subst"`' hardcode_minus_L='`$ECHO "$hardcode_minus_L" | $SED "$delay_single_quote_subst"`' hardcode_shlibpath_var='`$ECHO "$hardcode_shlibpath_var" | $SED "$delay_single_quote_subst"`' hardcode_automatic='`$ECHO "$hardcode_automatic" | $SED "$delay_single_quote_subst"`' inherit_rpath='`$ECHO "$inherit_rpath" | $SED "$delay_single_quote_subst"`' link_all_deplibs='`$ECHO "$link_all_deplibs" | $SED "$delay_single_quote_subst"`' always_export_symbols='`$ECHO "$always_export_symbols" | $SED "$delay_single_quote_subst"`' export_symbols_cmds='`$ECHO "$export_symbols_cmds" | $SED "$delay_single_quote_subst"`' exclude_expsyms='`$ECHO "$exclude_expsyms" | $SED "$delay_single_quote_subst"`' include_expsyms='`$ECHO "$include_expsyms" | $SED "$delay_single_quote_subst"`' prelink_cmds='`$ECHO "$prelink_cmds" | $SED "$delay_single_quote_subst"`' postlink_cmds='`$ECHO "$postlink_cmds" | $SED "$delay_single_quote_subst"`' file_list_spec='`$ECHO "$file_list_spec" | $SED "$delay_single_quote_subst"`' variables_saved_for_relink='`$ECHO "$variables_saved_for_relink" | $SED "$delay_single_quote_subst"`' need_lib_prefix='`$ECHO "$need_lib_prefix" | $SED "$delay_single_quote_subst"`' need_version='`$ECHO "$need_version" | $SED "$delay_single_quote_subst"`' version_type='`$ECHO "$version_type" | $SED "$delay_single_quote_subst"`' runpath_var='`$ECHO "$runpath_var" | $SED "$delay_single_quote_subst"`' shlibpath_var='`$ECHO "$shlibpath_var" | $SED "$delay_single_quote_subst"`' shlibpath_overrides_runpath='`$ECHO "$shlibpath_overrides_runpath" | $SED "$delay_single_quote_subst"`' libname_spec='`$ECHO "$libname_spec" | $SED "$delay_single_quote_subst"`' library_names_spec='`$ECHO "$library_names_spec" | $SED "$delay_single_quote_subst"`' soname_spec='`$ECHO "$soname_spec" | $SED "$delay_single_quote_subst"`' install_override_mode='`$ECHO "$install_override_mode" | $SED "$delay_single_quote_subst"`' postinstall_cmds='`$ECHO "$postinstall_cmds" | $SED "$delay_single_quote_subst"`' postuninstall_cmds='`$ECHO "$postuninstall_cmds" | $SED "$delay_single_quote_subst"`' finish_cmds='`$ECHO "$finish_cmds" | $SED "$delay_single_quote_subst"`' finish_eval='`$ECHO "$finish_eval" | $SED "$delay_single_quote_subst"`' hardcode_into_libs='`$ECHO "$hardcode_into_libs" | $SED "$delay_single_quote_subst"`' sys_lib_search_path_spec='`$ECHO "$sys_lib_search_path_spec" | $SED "$delay_single_quote_subst"`' configure_time_dlsearch_path='`$ECHO "$configure_time_dlsearch_path" | $SED "$delay_single_quote_subst"`' configure_time_lt_sys_library_path='`$ECHO "$configure_time_lt_sys_library_path" | $SED "$delay_single_quote_subst"`' hardcode_action='`$ECHO "$hardcode_action" | $SED "$delay_single_quote_subst"`' enable_dlopen='`$ECHO "$enable_dlopen" | $SED "$delay_single_quote_subst"`' enable_dlopen_self='`$ECHO "$enable_dlopen_self" | $SED "$delay_single_quote_subst"`' enable_dlopen_self_static='`$ECHO "$enable_dlopen_self_static" | $SED "$delay_single_quote_subst"`' old_striplib='`$ECHO "$old_striplib" | $SED "$delay_single_quote_subst"`' striplib='`$ECHO "$striplib" | $SED "$delay_single_quote_subst"`' LTCC='$LTCC' LTCFLAGS='$LTCFLAGS' compiler='$compiler_DEFAULT' # A function that is used when there is no print builtin or printf. func_fallback_echo () { eval 'cat <<_LTECHO_EOF \$1 _LTECHO_EOF' } # Quote evaled strings. for var in SHELL \ ECHO \ PATH_SEPARATOR \ SED \ GREP \ EGREP \ FGREP \ LD \ NM \ LN_S \ lt_SP2NL \ lt_NL2SP \ reload_flag \ OBJDUMP \ deplibs_check_method \ file_magic_cmd \ file_magic_glob \ want_nocaseglob \ DLLTOOL \ sharedlib_from_linklib_cmd \ AR \ AR_FLAGS \ archiver_list_spec \ STRIP \ RANLIB \ CC \ CFLAGS \ compiler \ lt_cv_sys_global_symbol_pipe \ lt_cv_sys_global_symbol_to_cdecl \ lt_cv_sys_global_symbol_to_import \ lt_cv_sys_global_symbol_to_c_name_address \ lt_cv_sys_global_symbol_to_c_name_address_lib_prefix \ lt_cv_nm_interface \ nm_file_list_spec \ lt_cv_truncate_bin \ lt_prog_compiler_no_builtin_flag \ lt_prog_compiler_pic \ lt_prog_compiler_wl \ lt_prog_compiler_static \ lt_cv_prog_compiler_c_o \ need_locks \ MANIFEST_TOOL \ DSYMUTIL \ NMEDIT \ LIPO \ OTOOL \ OTOOL64 \ shrext_cmds \ export_dynamic_flag_spec \ whole_archive_flag_spec \ compiler_needs_object \ with_gnu_ld \ allow_undefined_flag \ no_undefined_flag \ hardcode_libdir_flag_spec \ hardcode_libdir_separator \ exclude_expsyms \ include_expsyms \ file_list_spec \ variables_saved_for_relink \ libname_spec \ library_names_spec \ soname_spec \ install_override_mode \ finish_eval \ old_striplib \ striplib; do case \`eval \\\\\$ECHO \\\\""\\\\\$\$var"\\\\"\` in *[\\\\\\\`\\"\\\$]*) eval "lt_\$var=\\\\\\"\\\`\\\$ECHO \\"\\\$\$var\\" | \\\$SED \\"\\\$sed_quote_subst\\"\\\`\\\\\\"" ## exclude from sc_prohibit_nested_quotes ;; *) eval "lt_\$var=\\\\\\"\\\$\$var\\\\\\"" ;; esac done # Double-quote double-evaled strings. for var in reload_cmds \ old_postinstall_cmds \ old_postuninstall_cmds \ old_archive_cmds \ extract_expsyms_cmds \ old_archive_from_new_cmds \ old_archive_from_expsyms_cmds \ archive_cmds \ archive_expsym_cmds \ module_cmds \ module_expsym_cmds \ export_symbols_cmds \ prelink_cmds \ postlink_cmds \ postinstall_cmds \ postuninstall_cmds \ finish_cmds \ sys_lib_search_path_spec \ configure_time_dlsearch_path \ configure_time_lt_sys_library_path; do case \`eval \\\\\$ECHO \\\\""\\\\\$\$var"\\\\"\` in *[\\\\\\\`\\"\\\$]*) eval "lt_\$var=\\\\\\"\\\`\\\$ECHO \\"\\\$\$var\\" | \\\$SED -e \\"\\\$double_quote_subst\\" -e \\"\\\$sed_quote_subst\\" -e \\"\\\$delay_variable_subst\\"\\\`\\\\\\"" ## exclude from sc_prohibit_nested_quotes ;; *) eval "lt_\$var=\\\\\\"\\\$\$var\\\\\\"" ;; esac done ac_aux_dir='$ac_aux_dir' # See if we are running on zsh, and set the options that allow our # commands through without removal of \ escapes INIT. if test -n "\${ZSH_VERSION+set}"; then setopt NO_GLOB_SUBST fi PACKAGE='$PACKAGE' VERSION='$VERSION' RM='$RM' ofile='$ofile' _ACEOF cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1 # Handling of arguments. for ac_config_target in $ac_config_targets do case $ac_config_target in "config.h") CONFIG_HEADERS="$CONFIG_HEADERS config.h" ;; "depfiles") CONFIG_COMMANDS="$CONFIG_COMMANDS depfiles" ;; "libtool") CONFIG_COMMANDS="$CONFIG_COMMANDS libtool" ;; "Makefile") CONFIG_FILES="$CONFIG_FILES Makefile" ;; "openconnect.pc") CONFIG_FILES="$CONFIG_FILES openconnect.pc" ;; "po/Makefile") CONFIG_FILES="$CONFIG_FILES po/Makefile" ;; "www/Makefile") CONFIG_FILES="$CONFIG_FILES www/Makefile" ;; "libopenconnect.map") CONFIG_FILES="$CONFIG_FILES libopenconnect.map" ;; "openconnect.8") CONFIG_FILES="$CONFIG_FILES openconnect.8" ;; "www/styles/Makefile") CONFIG_FILES="$CONFIG_FILES www/styles/Makefile" ;; "www/inc/Makefile") CONFIG_FILES="$CONFIG_FILES www/inc/Makefile" ;; "www/images/Makefile") CONFIG_FILES="$CONFIG_FILES www/images/Makefile" ;; "tests/Makefile") CONFIG_FILES="$CONFIG_FILES tests/Makefile" ;; "tests/softhsm2.conf") CONFIG_FILES="$CONFIG_FILES tests/softhsm2.conf" ;; "tests/configs/test-user-cert.config") CONFIG_FILES="$CONFIG_FILES tests/configs/test-user-cert.config" ;; "tests/configs/test-user-pass.config") CONFIG_FILES="$CONFIG_FILES tests/configs/test-user-pass.config" ;; *) as_fn_error $? "invalid argument: \`$ac_config_target'" "$LINENO" 5;; esac done # If the user did not use the arguments to specify the items to instantiate, # then the envvar interface is used. Set only those that are not. # We use the long form for the default assignment because of an extremely # bizarre bug on SunOS 4.1.3. if $ac_need_defaults; then test "${CONFIG_FILES+set}" = set || CONFIG_FILES=$config_files test "${CONFIG_HEADERS+set}" = set || CONFIG_HEADERS=$config_headers test "${CONFIG_COMMANDS+set}" = set || CONFIG_COMMANDS=$config_commands fi # Have a temporary directory for convenience. Make it in the build tree # simply because there is no reason against having it here, and in addition, # creating and moving files from /tmp can sometimes cause problems. # Hook for its removal unless debugging. # Note that there is a small window in which the directory will not be cleaned: # after its creation but before its name has been assigned to `$tmp'. $debug || { tmp= ac_tmp= trap 'exit_status=$? : "${ac_tmp:=$tmp}" { test ! -d "$ac_tmp" || rm -fr "$ac_tmp"; } && exit $exit_status ' 0 trap 'as_fn_exit 1' 1 2 13 15 } # Create a (secure) tmp directory for tmp files. { tmp=`(umask 077 && mktemp -d "./confXXXXXX") 2>/dev/null` && test -d "$tmp" } || { tmp=./conf$$-$RANDOM (umask 077 && mkdir "$tmp") } || as_fn_error $? "cannot create a temporary directory in ." "$LINENO" 5 ac_tmp=$tmp # Set up the scripts for CONFIG_FILES section. # No need to generate them if there are no CONFIG_FILES. # This happens for instance with `./config.status config.h'. if test -n "$CONFIG_FILES"; then ac_cr=`echo X | tr X '\015'` # On cygwin, bash can eat \r inside `` if the user requested igncr. # But we know of no other shell where ac_cr would be empty at this # point, so we can use a bashism as a fallback. if test "x$ac_cr" = x; then eval ac_cr=\$\'\\r\' fi ac_cs_awk_cr=`$AWK 'BEGIN { print "a\rb" }' /dev/null` if test "$ac_cs_awk_cr" = "a${ac_cr}b"; then ac_cs_awk_cr='\\r' else ac_cs_awk_cr=$ac_cr fi echo 'BEGIN {' >"$ac_tmp/subs1.awk" && _ACEOF { echo "cat >conf$$subs.awk <<_ACEOF" && echo "$ac_subst_vars" | sed 's/.*/&!$&$ac_delim/' && echo "_ACEOF" } >conf$$subs.sh || as_fn_error $? "could not make $CONFIG_STATUS" "$LINENO" 5 ac_delim_num=`echo "$ac_subst_vars" | grep -c '^'` ac_delim='%!_!# ' for ac_last_try in false false false false false :; do . ./conf$$subs.sh || as_fn_error $? "could not make $CONFIG_STATUS" "$LINENO" 5 ac_delim_n=`sed -n "s/.*$ac_delim\$/X/p" conf$$subs.awk | grep -c X` if test $ac_delim_n = $ac_delim_num; then break elif $ac_last_try; then as_fn_error $? "could not make $CONFIG_STATUS" "$LINENO" 5 else ac_delim="$ac_delim!$ac_delim _$ac_delim!! " fi done rm -f conf$$subs.sh cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 cat >>"\$ac_tmp/subs1.awk" <<\\_ACAWK && _ACEOF sed -n ' h s/^/S["/; s/!.*/"]=/ p g s/^[^!]*!// :repl t repl s/'"$ac_delim"'$// t delim :nl h s/\(.\{148\}\)..*/\1/ t more1 s/["\\]/\\&/g; s/^/"/; s/$/\\n"\\/ p n b repl :more1 s/["\\]/\\&/g; s/^/"/; s/$/"\\/ p g s/.\{148\}// t nl :delim h s/\(.\{148\}\)..*/\1/ t more2 s/["\\]/\\&/g; s/^/"/; s/$/"/ p b :more2 s/["\\]/\\&/g; s/^/"/; s/$/"\\/ p g s/.\{148\}// t delim ' >$CONFIG_STATUS || ac_write_fail=1 rm -f conf$$subs.awk cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 _ACAWK cat >>"\$ac_tmp/subs1.awk" <<_ACAWK && for (key in S) S_is_set[key] = 1 FS = "" } { line = $ 0 nfields = split(line, field, "@") substed = 0 len = length(field[1]) for (i = 2; i < nfields; i++) { key = field[i] keylen = length(key) if (S_is_set[key]) { value = S[key] line = substr(line, 1, len) "" value "" substr(line, len + keylen + 3) len += length(value) + length(field[++i]) substed = 1 } else len += 1 + keylen } print line } _ACAWK _ACEOF cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1 if sed "s/$ac_cr//" < /dev/null > /dev/null 2>&1; then sed "s/$ac_cr\$//; s/$ac_cr/$ac_cs_awk_cr/g" else cat fi < "$ac_tmp/subs1.awk" > "$ac_tmp/subs.awk" \ || as_fn_error $? "could not setup config files machinery" "$LINENO" 5 _ACEOF # VPATH may cause trouble with some makes, so we remove sole $(srcdir), # ${srcdir} and @srcdir@ entries from VPATH if srcdir is ".", strip leading and # trailing colons and then remove the whole line if VPATH becomes empty # (actually we leave an empty line to preserve line numbers). if test "x$srcdir" = x.; then ac_vpsub='/^[ ]*VPATH[ ]*=[ ]*/{ h s/// s/^/:/ s/[ ]*$/:/ s/:\$(srcdir):/:/g s/:\${srcdir}:/:/g s/:@srcdir@:/:/g s/^:*// s/:*$// x s/\(=[ ]*\).*/\1/ G s/\n// s/^[^=]*=[ ]*$// }' fi cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1 fi # test -n "$CONFIG_FILES" # Set up the scripts for CONFIG_HEADERS section. # No need to generate them if there are no CONFIG_HEADERS. # This happens for instance with `./config.status Makefile'. if test -n "$CONFIG_HEADERS"; then cat >"$ac_tmp/defines.awk" <<\_ACAWK || BEGIN { _ACEOF # Transform confdefs.h into an awk script `defines.awk', embedded as # here-document in config.status, that substitutes the proper values into # config.h.in to produce config.h. # Create a delimiter string that does not exist in confdefs.h, to ease # handling of long lines. ac_delim='%!_!# ' for ac_last_try in false false :; do ac_tt=`sed -n "/$ac_delim/p" confdefs.h` if test -z "$ac_tt"; then break elif $ac_last_try; then as_fn_error $? "could not make $CONFIG_HEADERS" "$LINENO" 5 else ac_delim="$ac_delim!$ac_delim _$ac_delim!! " fi done # For the awk script, D is an array of macro values keyed by name, # likewise P contains macro parameters if any. Preserve backslash # newline sequences. ac_word_re=[_$as_cr_Letters][_$as_cr_alnum]* sed -n ' s/.\{148\}/&'"$ac_delim"'/g t rset :rset s/^[ ]*#[ ]*define[ ][ ]*/ / t def d :def s/\\$// t bsnl s/["\\]/\\&/g s/^ \('"$ac_word_re"'\)\(([^()]*)\)[ ]*\(.*\)/P["\1"]="\2"\ D["\1"]=" \3"/p s/^ \('"$ac_word_re"'\)[ ]*\(.*\)/D["\1"]=" \2"/p d :bsnl s/["\\]/\\&/g s/^ \('"$ac_word_re"'\)\(([^()]*)\)[ ]*\(.*\)/P["\1"]="\2"\ D["\1"]=" \3\\\\\\n"\\/p t cont s/^ \('"$ac_word_re"'\)[ ]*\(.*\)/D["\1"]=" \2\\\\\\n"\\/p t cont d :cont n s/.\{148\}/&'"$ac_delim"'/g t clear :clear s/\\$// t bsnlc s/["\\]/\\&/g; s/^/"/; s/$/"/p d :bsnlc s/["\\]/\\&/g; s/^/"/; s/$/\\\\\\n"\\/p b cont ' >$CONFIG_STATUS || ac_write_fail=1 cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 for (key in D) D_is_set[key] = 1 FS = "" } /^[\t ]*#[\t ]*(define|undef)[\t ]+$ac_word_re([\t (]|\$)/ { line = \$ 0 split(line, arg, " ") if (arg[1] == "#") { defundef = arg[2] mac1 = arg[3] } else { defundef = substr(arg[1], 2) mac1 = arg[2] } split(mac1, mac2, "(") #) macro = mac2[1] prefix = substr(line, 1, index(line, defundef) - 1) if (D_is_set[macro]) { # Preserve the white space surrounding the "#". print prefix "define", macro P[macro] D[macro] next } else { # Replace #undef with comments. This is necessary, for example, # in the case of _POSIX_SOURCE, which is predefined and required # on some systems where configure will not decide to define it. if (defundef == "undef") { print "/*", prefix defundef, macro, "*/" next } } } { print } _ACAWK _ACEOF cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1 as_fn_error $? "could not setup config headers machinery" "$LINENO" 5 fi # test -n "$CONFIG_HEADERS" eval set X " :F $CONFIG_FILES :H $CONFIG_HEADERS :C $CONFIG_COMMANDS" shift for ac_tag do case $ac_tag in :[FHLC]) ac_mode=$ac_tag; continue;; esac case $ac_mode$ac_tag in :[FHL]*:*);; :L* | :C*:*) as_fn_error $? "invalid tag \`$ac_tag'" "$LINENO" 5;; :[FH]-) ac_tag=-:-;; :[FH]*) ac_tag=$ac_tag:$ac_tag.in;; esac ac_save_IFS=$IFS IFS=: set x $ac_tag IFS=$ac_save_IFS shift ac_file=$1 shift case $ac_mode in :L) ac_source=$1;; :[FH]) ac_file_inputs= for ac_f do case $ac_f in -) ac_f="$ac_tmp/stdin";; *) # Look for the file first in the build tree, then in the source tree # (if the path is not absolute). The absolute path cannot be DOS-style, # because $ac_f cannot contain `:'. test -f "$ac_f" || case $ac_f in [\\/$]*) false;; *) test -f "$srcdir/$ac_f" && ac_f="$srcdir/$ac_f";; esac || as_fn_error 1 "cannot find input file: \`$ac_f'" "$LINENO" 5;; esac case $ac_f in *\'*) ac_f=`$as_echo "$ac_f" | sed "s/'/'\\\\\\\\''/g"`;; esac as_fn_append ac_file_inputs " '$ac_f'" done # Let's still pretend it is `configure' which instantiates (i.e., don't # use $as_me), people would be surprised to read: # /* config.h. Generated by config.status. */ configure_input='Generated from '` $as_echo "$*" | sed 's|^[^:]*/||;s|:[^:]*/|, |g' `' by configure.' if test x"$ac_file" != x-; then configure_input="$ac_file. $configure_input" { $as_echo "$as_me:${as_lineno-$LINENO}: creating $ac_file" >&5 $as_echo "$as_me: creating $ac_file" >&6;} fi # Neutralize special characters interpreted by sed in replacement strings. case $configure_input in #( *\&* | *\|* | *\\* ) ac_sed_conf_input=`$as_echo "$configure_input" | sed 's/[\\\\&|]/\\\\&/g'`;; #( *) ac_sed_conf_input=$configure_input;; esac case $ac_tag in *:-:* | *:-) cat >"$ac_tmp/stdin" \ || as_fn_error $? "could not create $ac_file" "$LINENO" 5 ;; esac ;; esac ac_dir=`$as_dirname -- "$ac_file" || $as_expr X"$ac_file" : 'X\(.*[^/]\)//*[^/][^/]*/*$' \| \ X"$ac_file" : 'X\(//\)[^/]' \| \ X"$ac_file" : 'X\(//\)$' \| \ X"$ac_file" : 'X\(/\)' \| . 2>/dev/null || $as_echo X"$ac_file" | sed '/^X\(.*[^/]\)\/\/*[^/][^/]*\/*$/{ s//\1/ q } /^X\(\/\/\)[^/].*/{ s//\1/ q } /^X\(\/\/\)$/{ s//\1/ q } /^X\(\/\).*/{ s//\1/ q } s/.*/./; q'` as_dir="$ac_dir"; as_fn_mkdir_p ac_builddir=. case "$ac_dir" in .) ac_dir_suffix= ac_top_builddir_sub=. ac_top_build_prefix= ;; *) ac_dir_suffix=/`$as_echo "$ac_dir" | sed 's|^\.[\\/]||'` # A ".." for each directory in $ac_dir_suffix. ac_top_builddir_sub=`$as_echo "$ac_dir_suffix" | sed 's|/[^\\/]*|/..|g;s|/||'` case $ac_top_builddir_sub in "") ac_top_builddir_sub=. ac_top_build_prefix= ;; *) ac_top_build_prefix=$ac_top_builddir_sub/ ;; esac ;; esac ac_abs_top_builddir=$ac_pwd ac_abs_builddir=$ac_pwd$ac_dir_suffix # for backward compatibility: ac_top_builddir=$ac_top_build_prefix case $srcdir in .) # We are building in place. ac_srcdir=. ac_top_srcdir=$ac_top_builddir_sub ac_abs_top_srcdir=$ac_pwd ;; [\\/]* | ?:[\\/]* ) # Absolute name. ac_srcdir=$srcdir$ac_dir_suffix; ac_top_srcdir=$srcdir ac_abs_top_srcdir=$srcdir ;; *) # Relative name. ac_srcdir=$ac_top_build_prefix$srcdir$ac_dir_suffix ac_top_srcdir=$ac_top_build_prefix$srcdir ac_abs_top_srcdir=$ac_pwd/$srcdir ;; esac ac_abs_srcdir=$ac_abs_top_srcdir$ac_dir_suffix case $ac_mode in :F) # # CONFIG_FILE # case $INSTALL in [\\/$]* | ?:[\\/]* ) ac_INSTALL=$INSTALL ;; *) ac_INSTALL=$ac_top_build_prefix$INSTALL ;; esac ac_MKDIR_P=$MKDIR_P case $MKDIR_P in [\\/$]* | ?:[\\/]* ) ;; */*) ac_MKDIR_P=$ac_top_build_prefix$MKDIR_P ;; esac _ACEOF cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1 # If the template does not know about datarootdir, expand it. # FIXME: This hack should be removed a few years after 2.60. ac_datarootdir_hack=; ac_datarootdir_seen= ac_sed_dataroot=' /datarootdir/ { p q } /@datadir@/p /@docdir@/p /@infodir@/p /@localedir@/p /@mandir@/p' case `eval "sed -n \"\$ac_sed_dataroot\" $ac_file_inputs"` in *datarootdir*) ac_datarootdir_seen=yes;; *@datadir@*|*@docdir@*|*@infodir@*|*@localedir@*|*@mandir@*) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: $ac_file_inputs seems to ignore the --datarootdir setting" >&5 $as_echo "$as_me: WARNING: $ac_file_inputs seems to ignore the --datarootdir setting" >&2;} _ACEOF cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 ac_datarootdir_hack=' s&@datadir@&$datadir&g s&@docdir@&$docdir&g s&@infodir@&$infodir&g s&@localedir@&$localedir&g s&@mandir@&$mandir&g s&\\\${datarootdir}&$datarootdir&g' ;; esac _ACEOF # Neutralize VPATH when `$srcdir' = `.'. # Shell code in configure.ac might set extrasub. # FIXME: do we really want to maintain this feature? cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 ac_sed_extra="$ac_vpsub $extrasub _ACEOF cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1 :t /@[a-zA-Z_][a-zA-Z_0-9]*@/!b s|@configure_input@|$ac_sed_conf_input|;t t s&@top_builddir@&$ac_top_builddir_sub&;t t s&@top_build_prefix@&$ac_top_build_prefix&;t t s&@srcdir@&$ac_srcdir&;t t s&@abs_srcdir@&$ac_abs_srcdir&;t t s&@top_srcdir@&$ac_top_srcdir&;t t s&@abs_top_srcdir@&$ac_abs_top_srcdir&;t t s&@builddir@&$ac_builddir&;t t s&@abs_builddir@&$ac_abs_builddir&;t t s&@abs_top_builddir@&$ac_abs_top_builddir&;t t s&@INSTALL@&$ac_INSTALL&;t t s&@MKDIR_P@&$ac_MKDIR_P&;t t $ac_datarootdir_hack " eval sed \"\$ac_sed_extra\" "$ac_file_inputs" | $AWK -f "$ac_tmp/subs.awk" \ >$ac_tmp/out || as_fn_error $? "could not create $ac_file" "$LINENO" 5 test -z "$ac_datarootdir_hack$ac_datarootdir_seen" && { ac_out=`sed -n '/\${datarootdir}/p' "$ac_tmp/out"`; test -n "$ac_out"; } && { ac_out=`sed -n '/^[ ]*datarootdir[ ]*:*=/p' \ "$ac_tmp/out"`; test -z "$ac_out"; } && { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: $ac_file contains a reference to the variable \`datarootdir' which seems to be undefined. Please make sure it is defined" >&5 $as_echo "$as_me: WARNING: $ac_file contains a reference to the variable \`datarootdir' which seems to be undefined. Please make sure it is defined" >&2;} rm -f "$ac_tmp/stdin" case $ac_file in -) cat "$ac_tmp/out" && rm -f "$ac_tmp/out";; *) rm -f "$ac_file" && mv "$ac_tmp/out" "$ac_file";; esac \ || as_fn_error $? "could not create $ac_file" "$LINENO" 5 ;; :H) # # CONFIG_HEADER # if test x"$ac_file" != x-; then { $as_echo "/* $configure_input */" \ && eval '$AWK -f "$ac_tmp/defines.awk"' "$ac_file_inputs" } >"$ac_tmp/config.h" \ || as_fn_error $? "could not create $ac_file" "$LINENO" 5 if diff "$ac_file" "$ac_tmp/config.h" >/dev/null 2>&1; then { $as_echo "$as_me:${as_lineno-$LINENO}: $ac_file is unchanged" >&5 $as_echo "$as_me: $ac_file is unchanged" >&6;} else rm -f "$ac_file" mv "$ac_tmp/config.h" "$ac_file" \ || as_fn_error $? "could not create $ac_file" "$LINENO" 5 fi else $as_echo "/* $configure_input */" \ && eval '$AWK -f "$ac_tmp/defines.awk"' "$ac_file_inputs" \ || as_fn_error $? "could not create -" "$LINENO" 5 fi # Compute "$ac_file"'s index in $config_headers. _am_arg="$ac_file" _am_stamp_count=1 for _am_header in $config_headers :; do case $_am_header in $_am_arg | $_am_arg:* ) break ;; * ) _am_stamp_count=`expr $_am_stamp_count + 1` ;; esac done echo "timestamp for $_am_arg" >`$as_dirname -- "$_am_arg" || $as_expr X"$_am_arg" : 'X\(.*[^/]\)//*[^/][^/]*/*$' \| \ X"$_am_arg" : 'X\(//\)[^/]' \| \ X"$_am_arg" : 'X\(//\)$' \| \ X"$_am_arg" : 'X\(/\)' \| . 2>/dev/null || $as_echo X"$_am_arg" | sed '/^X\(.*[^/]\)\/\/*[^/][^/]*\/*$/{ s//\1/ q } /^X\(\/\/\)[^/].*/{ s//\1/ q } /^X\(\/\/\)$/{ s//\1/ q } /^X\(\/\).*/{ s//\1/ q } s/.*/./; q'`/stamp-h$_am_stamp_count ;; :C) { $as_echo "$as_me:${as_lineno-$LINENO}: executing $ac_file commands" >&5 $as_echo "$as_me: executing $ac_file commands" >&6;} ;; esac case $ac_file$ac_mode in "depfiles":C) test x"$AMDEP_TRUE" != x"" || { # Older Autoconf quotes --file arguments for eval, but not when files # are listed without --file. Let's play safe and only enable the eval # if we detect the quoting. # TODO: see whether this extra hack can be removed once we start # requiring Autoconf 2.70 or later. case $CONFIG_FILES in #( *\'*) : eval set x "$CONFIG_FILES" ;; #( *) : set x $CONFIG_FILES ;; #( *) : ;; esac shift # Used to flag and report bootstrapping failures. am_rc=0 for am_mf do # Strip MF so we end up with the name of the file. am_mf=`$as_echo "$am_mf" | sed -e 's/:.*$//'` # Check whether this is an Automake generated Makefile which includes # dependency-tracking related rules and includes. # Grep'ing the whole file directly is not great: AIX grep has a line # limit of 2048, but all sed's we know have understand at least 4000. sed -n 's,^am--depfiles:.*,X,p' "$am_mf" | grep X >/dev/null 2>&1 \ || continue am_dirpart=`$as_dirname -- "$am_mf" || $as_expr X"$am_mf" : 'X\(.*[^/]\)//*[^/][^/]*/*$' \| \ X"$am_mf" : 'X\(//\)[^/]' \| \ X"$am_mf" : 'X\(//\)$' \| \ X"$am_mf" : 'X\(/\)' \| . 2>/dev/null || $as_echo X"$am_mf" | sed '/^X\(.*[^/]\)\/\/*[^/][^/]*\/*$/{ s//\1/ q } /^X\(\/\/\)[^/].*/{ s//\1/ q } /^X\(\/\/\)$/{ s//\1/ q } /^X\(\/\).*/{ s//\1/ q } s/.*/./; q'` am_filepart=`$as_basename -- "$am_mf" || $as_expr X/"$am_mf" : '.*/\([^/][^/]*\)/*$' \| \ X"$am_mf" : 'X\(//\)$' \| \ X"$am_mf" : 'X\(/\)' \| . 2>/dev/null || $as_echo X/"$am_mf" | sed '/^.*\/\([^/][^/]*\)\/*$/{ s//\1/ q } /^X\/\(\/\/\)$/{ s//\1/ q } /^X\/\(\/\).*/{ s//\1/ q } s/.*/./; q'` { echo "$as_me:$LINENO: cd "$am_dirpart" \ && sed -e '/# am--include-marker/d' "$am_filepart" \ | $MAKE -f - am--depfiles" >&5 (cd "$am_dirpart" \ && sed -e '/# am--include-marker/d' "$am_filepart" \ | $MAKE -f - am--depfiles) >&5 2>&5 ac_status=$? echo "$as_me:$LINENO: \$? = $ac_status" >&5 (exit $ac_status); } || am_rc=$? done if test $am_rc -ne 0; then { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "Something went wrong bootstrapping makefile fragments for automatic dependency tracking. Try re-running configure with the '--disable-dependency-tracking' option to at least be able to build the package (albeit without support for automatic dependency tracking). See \`config.log' for more details" "$LINENO" 5; } fi { am_dirpart=; unset am_dirpart;} { am_filepart=; unset am_filepart;} { am_mf=; unset am_mf;} { am_rc=; unset am_rc;} rm -f conftest-deps.mk } ;; "libtool":C) # See if we are running on zsh, and set the options that allow our # commands through without removal of \ escapes. if test -n "${ZSH_VERSION+set}"; then setopt NO_GLOB_SUBST fi cfgfile=${ofile}T trap "$RM \"$cfgfile\"; exit 1" 1 2 15 $RM "$cfgfile" cat <<_LT_EOF >> "$cfgfile" #! $SHELL # Generated automatically by $as_me ($PACKAGE) $VERSION # Libtool was configured on host `(hostname || uname -n) 2>/dev/null | sed 1q`: # NOTE: Changes made to this file will be lost: look at ltmain.sh. # Provide generalized library-building support services. # Written by Gordon Matzigkeit, 1996 # Copyright (C) 2014 Free Software Foundation, Inc. # This is free software; see the source for copying conditions. There is NO # warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. # GNU Libtool is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 2 of of the License, or # (at your option) any later version. # # As a special exception to the GNU General Public License, if you # distribute this file as part of a program or library that is built # using GNU Libtool, you may include this file under the same # distribution terms that you use for the rest of that program. # # GNU Libtool is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program. If not, see . # The names of the tagged configurations supported by this script. available_tags='' # Configured defaults for sys_lib_dlsearch_path munging. : \${LT_SYS_LIBRARY_PATH="$configure_time_lt_sys_library_path"} # ### BEGIN LIBTOOL CONFIG # Whether or not to build shared libraries. build_libtool_libs=$enable_shared # Whether or not to build static libraries. build_old_libs=$enable_static # Which release of libtool.m4 was used? macro_version=$macro_version macro_revision=$macro_revision # What type of objects to build. pic_mode=$pic_mode # Whether or not to optimize for fast installation. fast_install=$enable_fast_install # Shared archive member basename,for filename based shared library versioning on AIX. shared_archive_member_spec=$shared_archive_member_spec # Shell to use when invoking shell scripts. SHELL=$lt_SHELL # An echo program that protects backslashes. ECHO=$lt_ECHO # The PATH separator for the build system. PATH_SEPARATOR=$lt_PATH_SEPARATOR # The host system. host_alias=$host_alias host=$host host_os=$host_os # The build system. build_alias=$build_alias build=$build build_os=$build_os # A sed program that does not truncate output. SED=$lt_SED # Sed that helps us avoid accidentally triggering echo(1) options like -n. Xsed="\$SED -e 1s/^X//" # A grep program that handles long lines. GREP=$lt_GREP # An ERE matcher. EGREP=$lt_EGREP # A literal string matcher. FGREP=$lt_FGREP # A BSD- or MS-compatible name lister. NM=$lt_NM # Whether we need soft or hard links. LN_S=$lt_LN_S # What is the maximum length of a command? max_cmd_len=$max_cmd_len # Object file suffix (normally "o"). objext=$ac_objext # Executable file suffix (normally ""). exeext=$exeext # whether the shell understands "unset". lt_unset=$lt_unset # turn spaces into newlines. SP2NL=$lt_lt_SP2NL # turn newlines into spaces. NL2SP=$lt_lt_NL2SP # convert \$build file names to \$host format. to_host_file_cmd=$lt_cv_to_host_file_cmd # convert \$build files to toolchain format. to_tool_file_cmd=$lt_cv_to_tool_file_cmd # An object symbol dumper. OBJDUMP=$lt_OBJDUMP # Method to check whether dependent libraries are shared objects. deplibs_check_method=$lt_deplibs_check_method # Command to use when deplibs_check_method = "file_magic". file_magic_cmd=$lt_file_magic_cmd # How to find potential files when deplibs_check_method = "file_magic". file_magic_glob=$lt_file_magic_glob # Find potential files using nocaseglob when deplibs_check_method = "file_magic". want_nocaseglob=$lt_want_nocaseglob # DLL creation program. DLLTOOL=$lt_DLLTOOL # Command to associate shared and link libraries. sharedlib_from_linklib_cmd=$lt_sharedlib_from_linklib_cmd # The archiver. AR=$lt_AR # Flags to create an archive. AR_FLAGS=$lt_AR_FLAGS # How to feed a file listing to the archiver. archiver_list_spec=$lt_archiver_list_spec # A symbol stripping program. STRIP=$lt_STRIP # Commands used to install an old-style archive. RANLIB=$lt_RANLIB old_postinstall_cmds=$lt_old_postinstall_cmds old_postuninstall_cmds=$lt_old_postuninstall_cmds # Whether to use a lock for old archive extraction. lock_old_archive_extraction=$lock_old_archive_extraction # A C compiler. LTCC=$lt_CC # LTCC compiler flags. LTCFLAGS=$lt_CFLAGS # Take the output of nm and produce a listing of raw symbols and C names. global_symbol_pipe=$lt_lt_cv_sys_global_symbol_pipe # Transform the output of nm in a proper C declaration. global_symbol_to_cdecl=$lt_lt_cv_sys_global_symbol_to_cdecl # Transform the output of nm into a list of symbols to manually relocate. global_symbol_to_import=$lt_lt_cv_sys_global_symbol_to_import # Transform the output of nm in a C name address pair. global_symbol_to_c_name_address=$lt_lt_cv_sys_global_symbol_to_c_name_address # Transform the output of nm in a C name address pair when lib prefix is needed. global_symbol_to_c_name_address_lib_prefix=$lt_lt_cv_sys_global_symbol_to_c_name_address_lib_prefix # The name lister interface. nm_interface=$lt_lt_cv_nm_interface # Specify filename containing input files for \$NM. nm_file_list_spec=$lt_nm_file_list_spec # The root where to search for dependent libraries,and where our libraries should be installed. lt_sysroot=$lt_sysroot # Command to truncate a binary pipe. lt_truncate_bin=$lt_lt_cv_truncate_bin # The name of the directory that contains temporary libtool files. objdir=$objdir # Used to examine libraries when file_magic_cmd begins with "file". MAGIC_CMD=$MAGIC_CMD # Must we lock files when doing compilation? need_locks=$lt_need_locks # Manifest tool. MANIFEST_TOOL=$lt_MANIFEST_TOOL # Tool to manipulate archived DWARF debug symbol files on Mac OS X. DSYMUTIL=$lt_DSYMUTIL # Tool to change global to local symbols on Mac OS X. NMEDIT=$lt_NMEDIT # Tool to manipulate fat objects and archives on Mac OS X. LIPO=$lt_LIPO # ldd/readelf like tool for Mach-O binaries on Mac OS X. OTOOL=$lt_OTOOL # ldd/readelf like tool for 64 bit Mach-O binaries on Mac OS X 10.4. OTOOL64=$lt_OTOOL64 # Old archive suffix (normally "a"). libext=$libext # Shared library suffix (normally ".so"). shrext_cmds=$lt_shrext_cmds # The commands to extract the exported symbol list from a shared archive. extract_expsyms_cmds=$lt_extract_expsyms_cmds # Variables whose values should be saved in libtool wrapper scripts and # restored at link time. variables_saved_for_relink=$lt_variables_saved_for_relink # Do we need the "lib" prefix for modules? need_lib_prefix=$need_lib_prefix # Do we need a version for libraries? need_version=$need_version # Library versioning type. version_type=$version_type # Shared library runtime path variable. runpath_var=$runpath_var # Shared library path variable. shlibpath_var=$shlibpath_var # Is shlibpath searched before the hard-coded library search path? shlibpath_overrides_runpath=$shlibpath_overrides_runpath # Format of library name prefix. libname_spec=$lt_libname_spec # List of archive names. First name is the real one, the rest are links. # The last name is the one that the linker finds with -lNAME library_names_spec=$lt_library_names_spec # The coded name of the library, if different from the real name. soname_spec=$lt_soname_spec # Permission mode override for installation of shared libraries. install_override_mode=$lt_install_override_mode # Command to use after installation of a shared archive. postinstall_cmds=$lt_postinstall_cmds # Command to use after uninstallation of a shared archive. postuninstall_cmds=$lt_postuninstall_cmds # Commands used to finish a libtool library installation in a directory. finish_cmds=$lt_finish_cmds # As "finish_cmds", except a single script fragment to be evaled but # not shown. finish_eval=$lt_finish_eval # Whether we should hardcode library paths into libraries. hardcode_into_libs=$hardcode_into_libs # Compile-time system search path for libraries. sys_lib_search_path_spec=$lt_sys_lib_search_path_spec # Detected run-time system search path for libraries. sys_lib_dlsearch_path_spec=$lt_configure_time_dlsearch_path # Explicit LT_SYS_LIBRARY_PATH set during ./configure time. configure_time_lt_sys_library_path=$lt_configure_time_lt_sys_library_path # Whether dlopen is supported. dlopen_support=$enable_dlopen # Whether dlopen of programs is supported. dlopen_self=$enable_dlopen_self # Whether dlopen of statically linked programs is supported. dlopen_self_static=$enable_dlopen_self_static # Commands to strip libraries. old_striplib=$lt_old_striplib striplib=$lt_striplib # The linker used to build libraries. LD=$lt_LD # How to create reloadable object files. reload_flag=$lt_reload_flag reload_cmds=$lt_reload_cmds # Commands used to build an old-style archive. old_archive_cmds=$lt_old_archive_cmds # A language specific compiler. CC=$lt_compiler # Is the compiler the GNU compiler? with_gcc=$GCC # Compiler flag to turn off builtin functions. no_builtin_flag=$lt_lt_prog_compiler_no_builtin_flag # Additional compiler flags for building library objects. pic_flag=$lt_lt_prog_compiler_pic # How to pass a linker flag through the compiler. wl=$lt_lt_prog_compiler_wl # Compiler flag to prevent dynamic linking. link_static_flag=$lt_lt_prog_compiler_static # Does compiler simultaneously support -c and -o options? compiler_c_o=$lt_lt_cv_prog_compiler_c_o # Whether or not to add -lc for building shared libraries. build_libtool_need_lc=$archive_cmds_need_lc # Whether or not to disallow shared libs when runtime libs are static. allow_libtool_libs_with_static_runtimes=$enable_shared_with_static_runtimes # Compiler flag to allow reflexive dlopens. export_dynamic_flag_spec=$lt_export_dynamic_flag_spec # Compiler flag to generate shared objects directly from archives. whole_archive_flag_spec=$lt_whole_archive_flag_spec # Whether the compiler copes with passing no objects directly. compiler_needs_object=$lt_compiler_needs_object # Create an old-style archive from a shared archive. old_archive_from_new_cmds=$lt_old_archive_from_new_cmds # Create a temporary old-style archive to link instead of a shared archive. old_archive_from_expsyms_cmds=$lt_old_archive_from_expsyms_cmds # Commands used to build a shared archive. archive_cmds=$lt_archive_cmds archive_expsym_cmds=$lt_archive_expsym_cmds # Commands used to build a loadable module if different from building # a shared archive. module_cmds=$lt_module_cmds module_expsym_cmds=$lt_module_expsym_cmds # Whether we are building with GNU ld or not. with_gnu_ld=$lt_with_gnu_ld # Flag that allows shared libraries with undefined symbols to be built. allow_undefined_flag=$lt_allow_undefined_flag # Flag that enforces no undefined symbols. no_undefined_flag=$lt_no_undefined_flag # Flag to hardcode \$libdir into a binary during linking. # This must work even if \$libdir does not exist hardcode_libdir_flag_spec=$lt_hardcode_libdir_flag_spec # Whether we need a single "-rpath" flag with a separated argument. hardcode_libdir_separator=$lt_hardcode_libdir_separator # Set to "yes" if using DIR/libNAME\$shared_ext during linking hardcodes # DIR into the resulting binary. hardcode_direct=$hardcode_direct # Set to "yes" if using DIR/libNAME\$shared_ext during linking hardcodes # DIR into the resulting binary and the resulting library dependency is # "absolute",i.e impossible to change by setting \$shlibpath_var if the # library is relocated. hardcode_direct_absolute=$hardcode_direct_absolute # Set to "yes" if using the -LDIR flag during linking hardcodes DIR # into the resulting binary. hardcode_minus_L=$hardcode_minus_L # Set to "yes" if using SHLIBPATH_VAR=DIR during linking hardcodes DIR # into the resulting binary. hardcode_shlibpath_var=$hardcode_shlibpath_var # Set to "yes" if building a shared library automatically hardcodes DIR # into the library and all subsequent libraries and executables linked # against it. hardcode_automatic=$hardcode_automatic # Set to yes if linker adds runtime paths of dependent libraries # to runtime path list. inherit_rpath=$inherit_rpath # Whether libtool must link a program against all its dependency libraries. link_all_deplibs=$link_all_deplibs # Set to "yes" if exported symbols are required. always_export_symbols=$always_export_symbols # The commands to list exported symbols. export_symbols_cmds=$lt_export_symbols_cmds # Symbols that should not be listed in the preloaded symbols. exclude_expsyms=$lt_exclude_expsyms # Symbols that must always be exported. include_expsyms=$lt_include_expsyms # Commands necessary for linking programs (against libraries) with templates. prelink_cmds=$lt_prelink_cmds # Commands necessary for finishing linking programs. postlink_cmds=$lt_postlink_cmds # Specify filename containing input files. file_list_spec=$lt_file_list_spec # How to hardcode a shared library path into an executable. hardcode_action=$hardcode_action # ### END LIBTOOL CONFIG _LT_EOF cat <<'_LT_EOF' >> "$cfgfile" # ### BEGIN FUNCTIONS SHARED WITH CONFIGURE # func_munge_path_list VARIABLE PATH # ----------------------------------- # VARIABLE is name of variable containing _space_ separated list of # directories to be munged by the contents of PATH, which is string # having a format: # "DIR[:DIR]:" # string "DIR[ DIR]" will be prepended to VARIABLE # ":DIR[:DIR]" # string "DIR[ DIR]" will be appended to VARIABLE # "DIRP[:DIRP]::[DIRA:]DIRA" # string "DIRP[ DIRP]" will be prepended to VARIABLE and string # "DIRA[ DIRA]" will be appended to VARIABLE # "DIR[:DIR]" # VARIABLE will be replaced by "DIR[ DIR]" func_munge_path_list () { case x$2 in x) ;; *:) eval $1=\"`$ECHO $2 | $SED 's/:/ /g'` \$$1\" ;; x:*) eval $1=\"\$$1 `$ECHO $2 | $SED 's/:/ /g'`\" ;; *::*) eval $1=\"\$$1\ `$ECHO $2 | $SED -e 's/.*:://' -e 's/:/ /g'`\" eval $1=\"`$ECHO $2 | $SED -e 's/::.*//' -e 's/:/ /g'`\ \$$1\" ;; *) eval $1=\"`$ECHO $2 | $SED 's/:/ /g'`\" ;; esac } # Calculate cc_basename. Skip known compiler wrappers and cross-prefix. func_cc_basename () { for cc_temp in $*""; do case $cc_temp in compile | *[\\/]compile | ccache | *[\\/]ccache ) ;; distcc | *[\\/]distcc | purify | *[\\/]purify ) ;; \-*) ;; *) break;; esac done func_cc_basename_result=`$ECHO "$cc_temp" | $SED "s%.*/%%; s%^$host_alias-%%"` } # ### END FUNCTIONS SHARED WITH CONFIGURE _LT_EOF case $host_os in aix3*) cat <<\_LT_EOF >> "$cfgfile" # AIX sometimes has problems with the GCC collect2 program. For some # reason, if we set the COLLECT_NAMES environment variable, the problems # vanish in a puff of smoke. if test set != "${COLLECT_NAMES+set}"; then COLLECT_NAMES= export COLLECT_NAMES fi _LT_EOF ;; esac ltmain=$ac_aux_dir/ltmain.sh # We use sed instead of cat because bash on DJGPP gets confused if # if finds mixed CR/LF and LF-only lines. Since sed operates in # text mode, it properly converts lines to CR/LF. This bash problem # is reportedly fixed, but why not run on old versions too? sed '$q' "$ltmain" >> "$cfgfile" \ || (rm -f "$cfgfile"; exit 1) mv -f "$cfgfile" "$ofile" || (rm -f "$ofile" && cp "$cfgfile" "$ofile" && rm -f "$cfgfile") chmod +x "$ofile" ;; esac done # for ac_tag as_fn_exit 0 _ACEOF ac_clean_files=$ac_clean_files_save test $ac_write_fail = 0 || as_fn_error $? "write failure creating $CONFIG_STATUS" "$LINENO" 5 # configure is writing to config.log, and then calls config.status. # config.status does its own redirection, appending to config.log. # Unfortunately, on DOS this fails, as config.log is still kept open # by configure, so config.status won't be able to write to it; its # output is simply discarded. So we exec the FD to /dev/null, # effectively closing config.log, so it can be properly (re)opened and # appended to by config.status. When coming back to configure, we # need to make the FD available again. if test "$no_create" != yes; then ac_cs_success=: ac_config_status_args= test "$silent" = yes && ac_config_status_args="$ac_config_status_args --quiet" exec 5>/dev/null $SHELL $CONFIG_STATUS $ac_config_status_args || ac_cs_success=false exec 5>>config.log # Use ||, not &&, to avoid exiting from the if with $? = 1, which # would make configure fail if this is the last instruction. $ac_cs_success || as_fn_exit 1 fi if test -n "$ac_unrecognized_opts" && test "$enable_option_checking" != no; then { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: unrecognized options: $ac_unrecognized_opts" >&5 $as_echo "$as_me: WARNING: unrecognized options: $ac_unrecognized_opts" >&2;} fi echo "BUILD OPTIONS:" pretty="$ssl_library" if test "$pretty" = "openssl"; then pretty=OpenSSL elif test "$pretty" = "gnutls" -o "$pretty" = "both"; then pretty=GnuTLS elif test "$pretty" = ""; then pretty=no fi echo " SSL library: $pretty" pretty="$pkcs11_support" if test "$pretty" = "openssl"; then pretty=OpenSSL elif test "$pretty" = "gnutls" -o "$pretty" = "both"; then pretty=GnuTLS elif test "$pretty" = ""; then pretty=no fi echo " PKCS#11 support: $pretty" pretty="$dtls" if test "$pretty" = "openssl"; then pretty=OpenSSL elif test "$pretty" = "gnutls" -o "$pretty" = "both"; then pretty=GnuTLS elif test "$pretty" = ""; then pretty=no fi echo " DTLS support: $pretty" pretty="$esp" if test "$pretty" = "openssl"; then pretty=OpenSSL elif test "$pretty" = "gnutls" -o "$pretty" = "both"; then pretty=GnuTLS elif test "$pretty" = ""; then pretty=no fi echo " ESP support: $pretty" pretty="$libproxy_pkg" if test "$pretty" = "openssl"; then pretty=OpenSSL elif test "$pretty" = "gnutls" -o "$pretty" = "both"; then pretty=GnuTLS elif test "$pretty" = ""; then pretty=no fi echo " libproxy support: $pretty" pretty="$libstoken_pkg" if test "$pretty" = "openssl"; then pretty=OpenSSL elif test "$pretty" = "gnutls" -o "$pretty" = "both"; then pretty=GnuTLS elif test "$pretty" = ""; then pretty=no fi echo " RSA SecurID support: $pretty" pretty="$libpskc_pkg" if test "$pretty" = "openssl"; then pretty=OpenSSL elif test "$pretty" = "gnutls" -o "$pretty" = "both"; then pretty=GnuTLS elif test "$pretty" = ""; then pretty=no fi echo " PSKC OATH file support: $pretty" pretty="$linked_gssapi" if test "$pretty" = "openssl"; then pretty=OpenSSL elif test "$pretty" = "gnutls" -o "$pretty" = "both"; then pretty=GnuTLS elif test "$pretty" = ""; then pretty=no fi echo " GSSAPI support: $pretty" pretty="$libpcsclite_pkg" if test "$pretty" = "openssl"; then pretty=OpenSSL elif test "$pretty" = "gnutls" -o "$pretty" = "both"; then pretty=GnuTLS elif test "$pretty" = ""; then pretty=no fi echo " Yubikey support: $pretty" pretty="$lz4_pkg" if test "$pretty" = "openssl"; then pretty=OpenSSL elif test "$pretty" = "gnutls" -o "$pretty" = "both"; then pretty=GnuTLS elif test "$pretty" = ""; then pretty=no fi echo " LZ4 compression: $pretty" pretty="$with_java" if test "$pretty" = "openssl"; then pretty=OpenSSL elif test "$pretty" = "gnutls" -o "$pretty" = "both"; then pretty=GnuTLS elif test "$pretty" = ""; then pretty=no fi echo " Java bindings: $pretty" pretty="$build_www" if test "$pretty" = "openssl"; then pretty=OpenSSL elif test "$pretty" = "gnutls" -o "$pretty" = "both"; then pretty=GnuTLS elif test "$pretty" = ""; then pretty=no fi echo " Build docs: $pretty" pretty="$have_cwrap" if test "$pretty" = "openssl"; then pretty=OpenSSL elif test "$pretty" = "gnutls" -o "$pretty" = "both"; then pretty=GnuTLS elif test "$pretty" = ""; then pretty=no fi echo " Unit tests: $pretty" pretty="$have_netns" if test "$pretty" = "openssl"; then pretty=OpenSSL elif test "$pretty" = "gnutls" -o "$pretty" = "both"; then pretty=GnuTLS elif test "$pretty" = ""; then pretty=no fi echo " Net namespace tests: $pretty" if test "$ssl_library" = "OpenSSL"; then { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: *** *** Be sure to run \"make check\" to verify OpenSSL DTLS support *** " >&5 $as_echo "$as_me: WARNING: *** *** Be sure to run \"make check\" to verify OpenSSL DTLS support *** " >&2;} fi openconnect-8.05/acinclude.m40000664000076400007640000001267712727726520017755 0ustar00dwoodhoudwoodhou00000000000000dnl as-compiler-flag.m4 0.1.0 dnl autostars m4 macro for detection of compiler flags dnl David Schleef dnl $Id: as-compiler-flag.m4,v 1.1 2005/12/15 23:35:19 ds Exp $ dnl AS_COMPILER_FLAG(CFLAGS, ACTION-IF-ACCEPTED, [ACTION-IF-NOT-ACCEPTED]) dnl Tries to compile with the given CFLAGS. dnl Runs ACTION-IF-ACCEPTED if the compiler can compile with the flags, dnl and ACTION-IF-NOT-ACCEPTED otherwise. AC_DEFUN([AS_COMPILER_FLAG], [ AC_MSG_CHECKING([to see if compiler understands $1]) save_CFLAGS="$CFLAGS" CFLAGS="$CFLAGS $1" AC_TRY_COMPILE([ ], [], [flag_ok=yes], [flag_ok=no]) CFLAGS="$save_CFLAGS" if test "X$flag_ok" = Xyes ; then m4_ifvaln([$2],[$2]) true else m4_ifvaln([$3],[$3]) true fi AC_MSG_RESULT([$flag_ok]) ]) dnl AS_COMPILER_FLAGS(VAR, FLAGS) dnl Tries to compile with the given CFLAGS. AC_DEFUN([AS_COMPILER_FLAGS], [ list=$2 flags_supported="" flags_unsupported="" AC_MSG_CHECKING([for supported compiler flags]) for each in $list do save_CFLAGS="$CFLAGS" CFLAGS="$CFLAGS $each" AC_TRY_COMPILE([ ], [], [flag_ok=yes], [flag_ok=no]) CFLAGS="$save_CFLAGS" if test "X$flag_ok" = Xyes ; then flags_supported="$flags_supported $each" else flags_unsupported="$flags_unsupported $each" fi done AC_MSG_RESULT([$flags_supported]) if test "X$flags_unsupported" != X ; then AC_MSG_WARN([unsupported compiler flags: $flags_unsupported]) fi $1="$$1 $flags_supported" ]) # =========================================================================== # http://www.gnu.org/software/autoconf-archive/ax_jni_include_dir.html # =========================================================================== # # SYNOPSIS # # AX_JNI_INCLUDE_DIR # # DESCRIPTION # # AX_JNI_INCLUDE_DIR finds include directories needed for compiling # programs using the JNI interface. # # JNI include directories are usually in the Java distribution. This is # deduced from the value of $JAVA_HOME, $JAVAC, or the path to "javac", # in that order. When this macro completes, a list of directories is left # in the variable JNI_INCLUDE_DIRS. # # Example usage follows: # # AX_JNI_INCLUDE_DIR # # for JNI_INCLUDE_DIR in $JNI_INCLUDE_DIRS # do # CPPFLAGS="$CPPFLAGS -I$JNI_INCLUDE_DIR" # done # # If you want to force a specific compiler: # # - at the configure.in level, set JAVAC=yourcompiler before calling # AX_JNI_INCLUDE_DIR # # - at the configure level, setenv JAVAC # # Note: This macro can work with the autoconf M4 macros for Java programs. # This particular macro is not part of the original set of macros. # # LICENSE # # Copyright (c) 2008 Don Anderson # # Copying and distribution of this file, with or without modification, are # permitted in any medium without royalty provided the copyright notice # and this notice are preserved. This file is offered as-is, without any # warranty. AU_ALIAS([AC_JNI_INCLUDE_DIR], [AX_JNI_INCLUDE_DIR]) AC_DEFUN([AX_JNI_INCLUDE_DIR],[ JNI_INCLUDE_DIRS="" if test "x$JAVA_HOME" != x; then _JTOPDIR="$JAVA_HOME" else if test "x$JAVAC" = x; then JAVAC=javac fi AC_PATH_PROG([_ACJNI_JAVAC], [$JAVAC], [no]) if test "x$_ACJNI_JAVAC" = xno; then AC_MSG_ERROR([cannot find JDK; try setting \$JAVAC or \$JAVA_HOME]) fi _ACJNI_FOLLOW_SYMLINKS("$_ACJNI_JAVAC") _JTOPDIR=`echo "$_ACJNI_FOLLOWED" | sed -e 's://*:/:g' -e 's:/[[^/]]*$::'` fi case "$host_os" in darwin*) _JTOPDIR=`echo "$_JTOPDIR" | sed -e 's:/[[^/]]*$::'` _JINC="$_JTOPDIR/Headers";; *) _JINC="$_JTOPDIR/include";; esac _AS_ECHO_LOG([_JTOPDIR=$_JTOPDIR]) _AS_ECHO_LOG([_JINC=$_JINC]) # On Mac OS X 10.6.4, jni.h is a symlink: # /System/Library/Frameworks/JavaVM.framework/Versions/Current/Headers/jni.h # -> ../../CurrentJDK/Headers/jni.h. AC_CHECK_FILE([$_JINC/jni.h], [JNI_INCLUDE_DIRS="$JNI_INCLUDE_DIRS $_JINC"], [_JTOPDIR=`echo "$_JTOPDIR" | sed -e 's:/[[^/]]*$::'` AC_CHECK_FILE([$_JTOPDIR/include/jni.h], [JNI_INCLUDE_DIRS="$JNI_INCLUDE_DIRS $_JTOPDIR/include"], AC_MSG_ERROR([cannot find JDK header files])) ]) # get the likely subdirectories for system specific java includes case "$host_os" in bsdi*) _JNI_INC_SUBDIRS="bsdos";; freebsd*) _JNI_INC_SUBDIRS="freebsd";; linux*) _JNI_INC_SUBDIRS="linux genunix";; osf*) _JNI_INC_SUBDIRS="alpha";; solaris*) _JNI_INC_SUBDIRS="solaris";; mingw*) _JNI_INC_SUBDIRS="win32";; cygwin*) _JNI_INC_SUBDIRS="win32";; *) _JNI_INC_SUBDIRS="genunix";; esac # add any subdirectories that are present for JINCSUBDIR in $_JNI_INC_SUBDIRS do if test -d "$_JTOPDIR/include/$JINCSUBDIR"; then JNI_INCLUDE_DIRS="$JNI_INCLUDE_DIRS $_JTOPDIR/include/$JINCSUBDIR" fi done ]) # _ACJNI_FOLLOW_SYMLINKS # Follows symbolic links on , # finally setting variable _ACJNI_FOLLOWED # ---------------------------------------- AC_DEFUN([_ACJNI_FOLLOW_SYMLINKS],[ # find the include directory relative to the javac executable _cur="$1" while ls -ld "$_cur" 2>/dev/null | grep " -> " >/dev/null; do AC_MSG_CHECKING([symlink for $_cur]) _slink=`ls -ld "$_cur" | sed 's/.* -> //'` case "$_slink" in /*) _cur="$_slink";; # 'X' avoids triggering unwanted echo options. *) _cur=`echo "X$_cur" | sed -e 's/^X//' -e 's:[[^/]]*$::'`"$_slink";; esac AC_MSG_RESULT([$_cur]) done _ACJNI_FOLLOWED="$_cur" ])# _ACJNI openconnect-8.05/aclocal.m40000664000076400007640000015633513536301673017421 0ustar00dwoodhoudwoodhou00000000000000# generated automatically by aclocal 1.16.1 -*- Autoconf -*- # Copyright (C) 1996-2018 Free Software Foundation, Inc. # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY, to the extent permitted by law; without # even the implied warranty of MERCHANTABILITY or FITNESS FOR A # PARTICULAR PURPOSE. m4_ifndef([AC_CONFIG_MACRO_DIRS], [m4_defun([_AM_CONFIG_MACRO_DIRS], [])m4_defun([AC_CONFIG_MACRO_DIRS], [_AM_CONFIG_MACRO_DIRS($@)])]) m4_ifndef([AC_AUTOCONF_VERSION], [m4_copy([m4_PACKAGE_VERSION], [AC_AUTOCONF_VERSION])])dnl m4_if(m4_defn([AC_AUTOCONF_VERSION]), [2.69],, [m4_warning([this file was generated for autoconf 2.69. You have another version of autoconf. It may work, but is not guaranteed to. If you have problems, you may need to regenerate the build system entirely. To do so, use the procedure documented by the package, typically 'autoreconf'.])]) # pkg.m4 - Macros to locate and utilise pkg-config. -*- Autoconf -*- # serial 11 (pkg-config-0.29.1) dnl Copyright © 2004 Scott James Remnant . dnl Copyright © 2012-2015 Dan Nicholson dnl dnl This program is free software; you can redistribute it and/or modify dnl it under the terms of the GNU General Public License as published by dnl the Free Software Foundation; either version 2 of the License, or dnl (at your option) any later version. dnl dnl This program is distributed in the hope that it will be useful, but dnl WITHOUT ANY WARRANTY; without even the implied warranty of dnl MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU dnl General Public License for more details. dnl dnl You should have received a copy of the GNU General Public License dnl along with this program; if not, write to the Free Software dnl Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA dnl 02111-1307, USA. dnl dnl As a special exception to the GNU General Public License, if you dnl distribute this file as part of a program that contains a dnl configuration script generated by Autoconf, you may include it under dnl the same distribution terms that you use for the rest of that dnl program. dnl PKG_PREREQ(MIN-VERSION) dnl ----------------------- dnl Since: 0.29 dnl dnl Verify that the version of the pkg-config macros are at least dnl MIN-VERSION. Unlike PKG_PROG_PKG_CONFIG, which checks the user's dnl installed version of pkg-config, this checks the developer's version dnl of pkg.m4 when generating configure. dnl dnl To ensure that this macro is defined, also add: dnl m4_ifndef([PKG_PREREQ], dnl [m4_fatal([must install pkg-config 0.29 or later before running autoconf/autogen])]) dnl dnl See the "Since" comment for each macro you use to see what version dnl of the macros you require. m4_defun([PKG_PREREQ], [m4_define([PKG_MACROS_VERSION], [0.29.1]) m4_if(m4_version_compare(PKG_MACROS_VERSION, [$1]), -1, [m4_fatal([pkg.m4 version $1 or higher is required but ]PKG_MACROS_VERSION[ found])]) ])dnl PKG_PREREQ dnl PKG_PROG_PKG_CONFIG([MIN-VERSION]) dnl ---------------------------------- dnl Since: 0.16 dnl dnl Search for the pkg-config tool and set the PKG_CONFIG variable to dnl first found in the path. Checks that the version of pkg-config found dnl is at least MIN-VERSION. If MIN-VERSION is not specified, 0.9.0 is dnl used since that's the first version where most current features of dnl pkg-config existed. AC_DEFUN([PKG_PROG_PKG_CONFIG], [m4_pattern_forbid([^_?PKG_[A-Z_]+$]) m4_pattern_allow([^PKG_CONFIG(_(PATH|LIBDIR|SYSROOT_DIR|ALLOW_SYSTEM_(CFLAGS|LIBS)))?$]) m4_pattern_allow([^PKG_CONFIG_(DISABLE_UNINSTALLED|TOP_BUILD_DIR|DEBUG_SPEW)$]) AC_ARG_VAR([PKG_CONFIG], [path to pkg-config utility]) AC_ARG_VAR([PKG_CONFIG_PATH], [directories to add to pkg-config's search path]) AC_ARG_VAR([PKG_CONFIG_LIBDIR], [path overriding pkg-config's built-in search path]) if test "x$ac_cv_env_PKG_CONFIG_set" != "xset"; then AC_PATH_TOOL([PKG_CONFIG], [pkg-config]) fi if test -n "$PKG_CONFIG"; then _pkg_min_version=m4_default([$1], [0.9.0]) AC_MSG_CHECKING([pkg-config is at least version $_pkg_min_version]) if $PKG_CONFIG --atleast-pkgconfig-version $_pkg_min_version; then AC_MSG_RESULT([yes]) else AC_MSG_RESULT([no]) PKG_CONFIG="" fi fi[]dnl ])dnl PKG_PROG_PKG_CONFIG dnl PKG_CHECK_EXISTS(MODULES, [ACTION-IF-FOUND], [ACTION-IF-NOT-FOUND]) dnl ------------------------------------------------------------------- dnl Since: 0.18 dnl dnl Check to see whether a particular set of modules exists. Similar to dnl PKG_CHECK_MODULES(), but does not set variables or print errors. dnl dnl Please remember that m4 expands AC_REQUIRE([PKG_PROG_PKG_CONFIG]) dnl only at the first occurence in configure.ac, so if the first place dnl it's called might be skipped (such as if it is within an "if", you dnl have to call PKG_CHECK_EXISTS manually AC_DEFUN([PKG_CHECK_EXISTS], [AC_REQUIRE([PKG_PROG_PKG_CONFIG])dnl if test -n "$PKG_CONFIG" && \ AC_RUN_LOG([$PKG_CONFIG --exists --print-errors "$1"]); then m4_default([$2], [:]) m4_ifvaln([$3], [else $3])dnl fi]) dnl _PKG_CONFIG([VARIABLE], [COMMAND], [MODULES]) dnl --------------------------------------------- dnl Internal wrapper calling pkg-config via PKG_CONFIG and setting dnl pkg_failed based on the result. m4_define([_PKG_CONFIG], [if test -n "$$1"; then pkg_cv_[]$1="$$1" elif test -n "$PKG_CONFIG"; then PKG_CHECK_EXISTS([$3], [pkg_cv_[]$1=`$PKG_CONFIG --[]$2 "$3" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes ], [pkg_failed=yes]) else pkg_failed=untried fi[]dnl ])dnl _PKG_CONFIG dnl _PKG_SHORT_ERRORS_SUPPORTED dnl --------------------------- dnl Internal check to see if pkg-config supports short errors. AC_DEFUN([_PKG_SHORT_ERRORS_SUPPORTED], [AC_REQUIRE([PKG_PROG_PKG_CONFIG]) if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi[]dnl ])dnl _PKG_SHORT_ERRORS_SUPPORTED dnl PKG_CHECK_MODULES(VARIABLE-PREFIX, MODULES, [ACTION-IF-FOUND], dnl [ACTION-IF-NOT-FOUND]) dnl -------------------------------------------------------------- dnl Since: 0.4.0 dnl dnl Note that if there is a possibility the first call to dnl PKG_CHECK_MODULES might not happen, you should be sure to include an dnl explicit call to PKG_PROG_PKG_CONFIG in your configure.ac AC_DEFUN([PKG_CHECK_MODULES], [AC_REQUIRE([PKG_PROG_PKG_CONFIG])dnl AC_ARG_VAR([$1][_CFLAGS], [C compiler flags for $1, overriding pkg-config])dnl AC_ARG_VAR([$1][_LIBS], [linker flags for $1, overriding pkg-config])dnl pkg_failed=no AC_MSG_CHECKING([for $1]) _PKG_CONFIG([$1][_CFLAGS], [cflags], [$2]) _PKG_CONFIG([$1][_LIBS], [libs], [$2]) m4_define([_PKG_TEXT], [Alternatively, you may set the environment variables $1[]_CFLAGS and $1[]_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details.]) if test $pkg_failed = yes; then AC_MSG_RESULT([no]) _PKG_SHORT_ERRORS_SUPPORTED if test $_pkg_short_errors_supported = yes; then $1[]_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "$2" 2>&1` else $1[]_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "$2" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$$1[]_PKG_ERRORS" >&AS_MESSAGE_LOG_FD m4_default([$4], [AC_MSG_ERROR( [Package requirements ($2) were not met: $$1_PKG_ERRORS Consider adjusting the PKG_CONFIG_PATH environment variable if you installed software in a non-standard prefix. _PKG_TEXT])[]dnl ]) elif test $pkg_failed = untried; then AC_MSG_RESULT([no]) m4_default([$4], [AC_MSG_FAILURE( [The pkg-config script could not be found or is too old. Make sure it is in your PATH or set the PKG_CONFIG environment variable to the full path to pkg-config. _PKG_TEXT To get pkg-config, see .])[]dnl ]) else $1[]_CFLAGS=$pkg_cv_[]$1[]_CFLAGS $1[]_LIBS=$pkg_cv_[]$1[]_LIBS AC_MSG_RESULT([yes]) $3 fi[]dnl ])dnl PKG_CHECK_MODULES dnl PKG_CHECK_MODULES_STATIC(VARIABLE-PREFIX, MODULES, [ACTION-IF-FOUND], dnl [ACTION-IF-NOT-FOUND]) dnl --------------------------------------------------------------------- dnl Since: 0.29 dnl dnl Checks for existence of MODULES and gathers its build flags with dnl static libraries enabled. Sets VARIABLE-PREFIX_CFLAGS from --cflags dnl and VARIABLE-PREFIX_LIBS from --libs. dnl dnl Note that if there is a possibility the first call to dnl PKG_CHECK_MODULES_STATIC might not happen, you should be sure to dnl include an explicit call to PKG_PROG_PKG_CONFIG in your dnl configure.ac. AC_DEFUN([PKG_CHECK_MODULES_STATIC], [AC_REQUIRE([PKG_PROG_PKG_CONFIG])dnl _save_PKG_CONFIG=$PKG_CONFIG PKG_CONFIG="$PKG_CONFIG --static" PKG_CHECK_MODULES($@) PKG_CONFIG=$_save_PKG_CONFIG[]dnl ])dnl PKG_CHECK_MODULES_STATIC dnl PKG_INSTALLDIR([DIRECTORY]) dnl ------------------------- dnl Since: 0.27 dnl dnl Substitutes the variable pkgconfigdir as the location where a module dnl should install pkg-config .pc files. By default the directory is dnl $libdir/pkgconfig, but the default can be changed by passing dnl DIRECTORY. The user can override through the --with-pkgconfigdir dnl parameter. AC_DEFUN([PKG_INSTALLDIR], [m4_pushdef([pkg_default], [m4_default([$1], ['${libdir}/pkgconfig'])]) m4_pushdef([pkg_description], [pkg-config installation directory @<:@]pkg_default[@:>@]) AC_ARG_WITH([pkgconfigdir], [AS_HELP_STRING([--with-pkgconfigdir], pkg_description)],, [with_pkgconfigdir=]pkg_default) AC_SUBST([pkgconfigdir], [$with_pkgconfigdir]) m4_popdef([pkg_default]) m4_popdef([pkg_description]) ])dnl PKG_INSTALLDIR dnl PKG_NOARCH_INSTALLDIR([DIRECTORY]) dnl -------------------------------- dnl Since: 0.27 dnl dnl Substitutes the variable noarch_pkgconfigdir as the location where a dnl module should install arch-independent pkg-config .pc files. By dnl default the directory is $datadir/pkgconfig, but the default can be dnl changed by passing DIRECTORY. The user can override through the dnl --with-noarch-pkgconfigdir parameter. AC_DEFUN([PKG_NOARCH_INSTALLDIR], [m4_pushdef([pkg_default], [m4_default([$1], ['${datadir}/pkgconfig'])]) m4_pushdef([pkg_description], [pkg-config arch-independent installation directory @<:@]pkg_default[@:>@]) AC_ARG_WITH([noarch-pkgconfigdir], [AS_HELP_STRING([--with-noarch-pkgconfigdir], pkg_description)],, [with_noarch_pkgconfigdir=]pkg_default) AC_SUBST([noarch_pkgconfigdir], [$with_noarch_pkgconfigdir]) m4_popdef([pkg_default]) m4_popdef([pkg_description]) ])dnl PKG_NOARCH_INSTALLDIR dnl PKG_CHECK_VAR(VARIABLE, MODULE, CONFIG-VARIABLE, dnl [ACTION-IF-FOUND], [ACTION-IF-NOT-FOUND]) dnl ------------------------------------------- dnl Since: 0.28 dnl dnl Retrieves the value of the pkg-config variable for the given module. AC_DEFUN([PKG_CHECK_VAR], [AC_REQUIRE([PKG_PROG_PKG_CONFIG])dnl AC_ARG_VAR([$1], [value of $3 for $2, overriding pkg-config])dnl _PKG_CONFIG([$1], [variable="][$3]["], [$2]) AS_VAR_COPY([$1], [pkg_cv_][$1]) AS_VAR_IF([$1], [""], [$5], [$4])dnl ])dnl PKG_CHECK_VAR dnl PKG_WITH_MODULES(VARIABLE-PREFIX, MODULES, dnl [ACTION-IF-FOUND],[ACTION-IF-NOT-FOUND], dnl [DESCRIPTION], [DEFAULT]) dnl ------------------------------------------ dnl dnl Prepare a "--with-" configure option using the lowercase dnl [VARIABLE-PREFIX] name, merging the behaviour of AC_ARG_WITH and dnl PKG_CHECK_MODULES in a single macro. AC_DEFUN([PKG_WITH_MODULES], [ m4_pushdef([with_arg], m4_tolower([$1])) m4_pushdef([description], [m4_default([$5], [build with ]with_arg[ support])]) m4_pushdef([def_arg], [m4_default([$6], [auto])]) m4_pushdef([def_action_if_found], [AS_TR_SH([with_]with_arg)=yes]) m4_pushdef([def_action_if_not_found], [AS_TR_SH([with_]with_arg)=no]) m4_case(def_arg, [yes],[m4_pushdef([with_without], [--without-]with_arg)], [m4_pushdef([with_without],[--with-]with_arg)]) AC_ARG_WITH(with_arg, AS_HELP_STRING(with_without, description[ @<:@default=]def_arg[@:>@]),, [AS_TR_SH([with_]with_arg)=def_arg]) AS_CASE([$AS_TR_SH([with_]with_arg)], [yes],[PKG_CHECK_MODULES([$1],[$2],$3,$4)], [auto],[PKG_CHECK_MODULES([$1],[$2], [m4_n([def_action_if_found]) $3], [m4_n([def_action_if_not_found]) $4])]) m4_popdef([with_arg]) m4_popdef([description]) m4_popdef([def_arg]) ])dnl PKG_WITH_MODULES dnl PKG_HAVE_WITH_MODULES(VARIABLE-PREFIX, MODULES, dnl [DESCRIPTION], [DEFAULT]) dnl ----------------------------------------------- dnl dnl Convenience macro to trigger AM_CONDITIONAL after PKG_WITH_MODULES dnl check._[VARIABLE-PREFIX] is exported as make variable. AC_DEFUN([PKG_HAVE_WITH_MODULES], [ PKG_WITH_MODULES([$1],[$2],,,[$3],[$4]) AM_CONDITIONAL([HAVE_][$1], [test "$AS_TR_SH([with_]m4_tolower([$1]))" = "yes"]) ])dnl PKG_HAVE_WITH_MODULES dnl PKG_HAVE_DEFINE_WITH_MODULES(VARIABLE-PREFIX, MODULES, dnl [DESCRIPTION], [DEFAULT]) dnl ------------------------------------------------------ dnl dnl Convenience macro to run AM_CONDITIONAL and AC_DEFINE after dnl PKG_WITH_MODULES check. HAVE_[VARIABLE-PREFIX] is exported as make dnl and preprocessor variable. AC_DEFUN([PKG_HAVE_DEFINE_WITH_MODULES], [ PKG_HAVE_WITH_MODULES([$1],[$2],[$3],[$4]) AS_IF([test "$AS_TR_SH([with_]m4_tolower([$1]))" = "yes"], [AC_DEFINE([HAVE_][$1], 1, [Enable ]m4_tolower([$1])[ support])]) ])dnl PKG_HAVE_DEFINE_WITH_MODULES # Copyright (C) 2002-2018 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # AM_AUTOMAKE_VERSION(VERSION) # ---------------------------- # Automake X.Y traces this macro to ensure aclocal.m4 has been # generated from the m4 files accompanying Automake X.Y. # (This private macro should not be called outside this file.) AC_DEFUN([AM_AUTOMAKE_VERSION], [am__api_version='1.16' dnl Some users find AM_AUTOMAKE_VERSION and mistake it for a way to dnl require some minimum version. Point them to the right macro. m4_if([$1], [1.16.1], [], [AC_FATAL([Do not call $0, use AM_INIT_AUTOMAKE([$1]).])])dnl ]) # _AM_AUTOCONF_VERSION(VERSION) # ----------------------------- # aclocal traces this macro to find the Autoconf version. # This is a private macro too. Using m4_define simplifies # the logic in aclocal, which can simply ignore this definition. m4_define([_AM_AUTOCONF_VERSION], []) # AM_SET_CURRENT_AUTOMAKE_VERSION # ------------------------------- # Call AM_AUTOMAKE_VERSION and AM_AUTOMAKE_VERSION so they can be traced. # This function is AC_REQUIREd by AM_INIT_AUTOMAKE. AC_DEFUN([AM_SET_CURRENT_AUTOMAKE_VERSION], [AM_AUTOMAKE_VERSION([1.16.1])dnl m4_ifndef([AC_AUTOCONF_VERSION], [m4_copy([m4_PACKAGE_VERSION], [AC_AUTOCONF_VERSION])])dnl _AM_AUTOCONF_VERSION(m4_defn([AC_AUTOCONF_VERSION]))]) # AM_AUX_DIR_EXPAND -*- Autoconf -*- # Copyright (C) 2001-2018 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # For projects using AC_CONFIG_AUX_DIR([foo]), Autoconf sets # $ac_aux_dir to '$srcdir/foo'. In other projects, it is set to # '$srcdir', '$srcdir/..', or '$srcdir/../..'. # # Of course, Automake must honor this variable whenever it calls a # tool from the auxiliary directory. The problem is that $srcdir (and # therefore $ac_aux_dir as well) can be either absolute or relative, # depending on how configure is run. This is pretty annoying, since # it makes $ac_aux_dir quite unusable in subdirectories: in the top # source directory, any form will work fine, but in subdirectories a # relative path needs to be adjusted first. # # $ac_aux_dir/missing # fails when called from a subdirectory if $ac_aux_dir is relative # $top_srcdir/$ac_aux_dir/missing # fails if $ac_aux_dir is absolute, # fails when called from a subdirectory in a VPATH build with # a relative $ac_aux_dir # # The reason of the latter failure is that $top_srcdir and $ac_aux_dir # are both prefixed by $srcdir. In an in-source build this is usually # harmless because $srcdir is '.', but things will broke when you # start a VPATH build or use an absolute $srcdir. # # So we could use something similar to $top_srcdir/$ac_aux_dir/missing, # iff we strip the leading $srcdir from $ac_aux_dir. That would be: # am_aux_dir='\$(top_srcdir)/'`expr "$ac_aux_dir" : "$srcdir//*\(.*\)"` # and then we would define $MISSING as # MISSING="\${SHELL} $am_aux_dir/missing" # This will work as long as MISSING is not called from configure, because # unfortunately $(top_srcdir) has no meaning in configure. # However there are other variables, like CC, which are often used in # configure, and could therefore not use this "fixed" $ac_aux_dir. # # Another solution, used here, is to always expand $ac_aux_dir to an # absolute PATH. The drawback is that using absolute paths prevent a # configured tree to be moved without reconfiguration. AC_DEFUN([AM_AUX_DIR_EXPAND], [AC_REQUIRE([AC_CONFIG_AUX_DIR_DEFAULT])dnl # Expand $ac_aux_dir to an absolute path. am_aux_dir=`cd "$ac_aux_dir" && pwd` ]) # AM_CONDITIONAL -*- Autoconf -*- # Copyright (C) 1997-2018 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # AM_CONDITIONAL(NAME, SHELL-CONDITION) # ------------------------------------- # Define a conditional. AC_DEFUN([AM_CONDITIONAL], [AC_PREREQ([2.52])dnl m4_if([$1], [TRUE], [AC_FATAL([$0: invalid condition: $1])], [$1], [FALSE], [AC_FATAL([$0: invalid condition: $1])])dnl AC_SUBST([$1_TRUE])dnl AC_SUBST([$1_FALSE])dnl _AM_SUBST_NOTMAKE([$1_TRUE])dnl _AM_SUBST_NOTMAKE([$1_FALSE])dnl m4_define([_AM_COND_VALUE_$1], [$2])dnl if $2; then $1_TRUE= $1_FALSE='#' else $1_TRUE='#' $1_FALSE= fi AC_CONFIG_COMMANDS_PRE( [if test -z "${$1_TRUE}" && test -z "${$1_FALSE}"; then AC_MSG_ERROR([[conditional "$1" was never defined. Usually this means the macro was only invoked conditionally.]]) fi])]) # Copyright (C) 1999-2018 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # There are a few dirty hacks below to avoid letting 'AC_PROG_CC' be # written in clear, in which case automake, when reading aclocal.m4, # will think it sees a *use*, and therefore will trigger all it's # C support machinery. Also note that it means that autoscan, seeing # CC etc. in the Makefile, will ask for an AC_PROG_CC use... # _AM_DEPENDENCIES(NAME) # ---------------------- # See how the compiler implements dependency checking. # NAME is "CC", "CXX", "OBJC", "OBJCXX", "UPC", or "GJC". # We try a few techniques and use that to set a single cache variable. # # We don't AC_REQUIRE the corresponding AC_PROG_CC since the latter was # modified to invoke _AM_DEPENDENCIES(CC); we would have a circular # dependency, and given that the user is not expected to run this macro, # just rely on AC_PROG_CC. AC_DEFUN([_AM_DEPENDENCIES], [AC_REQUIRE([AM_SET_DEPDIR])dnl AC_REQUIRE([AM_OUTPUT_DEPENDENCY_COMMANDS])dnl AC_REQUIRE([AM_MAKE_INCLUDE])dnl AC_REQUIRE([AM_DEP_TRACK])dnl m4_if([$1], [CC], [depcc="$CC" am_compiler_list=], [$1], [CXX], [depcc="$CXX" am_compiler_list=], [$1], [OBJC], [depcc="$OBJC" am_compiler_list='gcc3 gcc'], [$1], [OBJCXX], [depcc="$OBJCXX" am_compiler_list='gcc3 gcc'], [$1], [UPC], [depcc="$UPC" am_compiler_list=], [$1], [GCJ], [depcc="$GCJ" am_compiler_list='gcc3 gcc'], [depcc="$$1" am_compiler_list=]) AC_CACHE_CHECK([dependency style of $depcc], [am_cv_$1_dependencies_compiler_type], [if test -z "$AMDEP_TRUE" && test -f "$am_depcomp"; then # We make a subdir and do the tests there. Otherwise we can end up # making bogus files that we don't know about and never remove. For # instance it was reported that on HP-UX the gcc test will end up # making a dummy file named 'D' -- because '-MD' means "put the output # in D". rm -rf conftest.dir mkdir conftest.dir # Copy depcomp to subdir because otherwise we won't find it if we're # using a relative directory. cp "$am_depcomp" conftest.dir cd conftest.dir # We will build objects and dependencies in a subdirectory because # it helps to detect inapplicable dependency modes. For instance # both Tru64's cc and ICC support -MD to output dependencies as a # side effect of compilation, but ICC will put the dependencies in # the current directory while Tru64 will put them in the object # directory. mkdir sub am_cv_$1_dependencies_compiler_type=none if test "$am_compiler_list" = ""; then am_compiler_list=`sed -n ['s/^#*\([a-zA-Z0-9]*\))$/\1/p'] < ./depcomp` fi am__universal=false m4_case([$1], [CC], [case " $depcc " in #( *\ -arch\ *\ -arch\ *) am__universal=true ;; esac], [CXX], [case " $depcc " in #( *\ -arch\ *\ -arch\ *) am__universal=true ;; esac]) for depmode in $am_compiler_list; do # Setup a source with many dependencies, because some compilers # like to wrap large dependency lists on column 80 (with \), and # we should not choose a depcomp mode which is confused by this. # # We need to recreate these files for each test, as the compiler may # overwrite some of them when testing with obscure command lines. # This happens at least with the AIX C compiler. : > sub/conftest.c for i in 1 2 3 4 5 6; do echo '#include "conftst'$i'.h"' >> sub/conftest.c # Using ": > sub/conftst$i.h" creates only sub/conftst1.h with # Solaris 10 /bin/sh. echo '/* dummy */' > sub/conftst$i.h done echo "${am__include} ${am__quote}sub/conftest.Po${am__quote}" > confmf # We check with '-c' and '-o' for the sake of the "dashmstdout" # mode. It turns out that the SunPro C++ compiler does not properly # handle '-M -o', and we need to detect this. Also, some Intel # versions had trouble with output in subdirs. am__obj=sub/conftest.${OBJEXT-o} am__minus_obj="-o $am__obj" case $depmode in gcc) # This depmode causes a compiler race in universal mode. test "$am__universal" = false || continue ;; nosideeffect) # After this tag, mechanisms are not by side-effect, so they'll # only be used when explicitly requested. if test "x$enable_dependency_tracking" = xyes; then continue else break fi ;; msvc7 | msvc7msys | msvisualcpp | msvcmsys) # This compiler won't grok '-c -o', but also, the minuso test has # not run yet. These depmodes are late enough in the game, and # so weak that their functioning should not be impacted. am__obj=conftest.${OBJEXT-o} am__minus_obj= ;; none) break ;; esac if depmode=$depmode \ source=sub/conftest.c object=$am__obj \ depfile=sub/conftest.Po tmpdepfile=sub/conftest.TPo \ $SHELL ./depcomp $depcc -c $am__minus_obj sub/conftest.c \ >/dev/null 2>conftest.err && grep sub/conftst1.h sub/conftest.Po > /dev/null 2>&1 && grep sub/conftst6.h sub/conftest.Po > /dev/null 2>&1 && grep $am__obj sub/conftest.Po > /dev/null 2>&1 && ${MAKE-make} -s -f confmf > /dev/null 2>&1; then # icc doesn't choke on unknown options, it will just issue warnings # or remarks (even with -Werror). So we grep stderr for any message # that says an option was ignored or not supported. # When given -MP, icc 7.0 and 7.1 complain thusly: # icc: Command line warning: ignoring option '-M'; no argument required # The diagnosis changed in icc 8.0: # icc: Command line remark: option '-MP' not supported if (grep 'ignoring option' conftest.err || grep 'not supported' conftest.err) >/dev/null 2>&1; then :; else am_cv_$1_dependencies_compiler_type=$depmode break fi fi done cd .. rm -rf conftest.dir else am_cv_$1_dependencies_compiler_type=none fi ]) AC_SUBST([$1DEPMODE], [depmode=$am_cv_$1_dependencies_compiler_type]) AM_CONDITIONAL([am__fastdep$1], [ test "x$enable_dependency_tracking" != xno \ && test "$am_cv_$1_dependencies_compiler_type" = gcc3]) ]) # AM_SET_DEPDIR # ------------- # Choose a directory name for dependency files. # This macro is AC_REQUIREd in _AM_DEPENDENCIES. AC_DEFUN([AM_SET_DEPDIR], [AC_REQUIRE([AM_SET_LEADING_DOT])dnl AC_SUBST([DEPDIR], ["${am__leading_dot}deps"])dnl ]) # AM_DEP_TRACK # ------------ AC_DEFUN([AM_DEP_TRACK], [AC_ARG_ENABLE([dependency-tracking], [dnl AS_HELP_STRING( [--enable-dependency-tracking], [do not reject slow dependency extractors]) AS_HELP_STRING( [--disable-dependency-tracking], [speeds up one-time build])]) if test "x$enable_dependency_tracking" != xno; then am_depcomp="$ac_aux_dir/depcomp" AMDEPBACKSLASH='\' am__nodep='_no' fi AM_CONDITIONAL([AMDEP], [test "x$enable_dependency_tracking" != xno]) AC_SUBST([AMDEPBACKSLASH])dnl _AM_SUBST_NOTMAKE([AMDEPBACKSLASH])dnl AC_SUBST([am__nodep])dnl _AM_SUBST_NOTMAKE([am__nodep])dnl ]) # Generate code to set up dependency tracking. -*- Autoconf -*- # Copyright (C) 1999-2018 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # _AM_OUTPUT_DEPENDENCY_COMMANDS # ------------------------------ AC_DEFUN([_AM_OUTPUT_DEPENDENCY_COMMANDS], [{ # Older Autoconf quotes --file arguments for eval, but not when files # are listed without --file. Let's play safe and only enable the eval # if we detect the quoting. # TODO: see whether this extra hack can be removed once we start # requiring Autoconf 2.70 or later. AS_CASE([$CONFIG_FILES], [*\'*], [eval set x "$CONFIG_FILES"], [*], [set x $CONFIG_FILES]) shift # Used to flag and report bootstrapping failures. am_rc=0 for am_mf do # Strip MF so we end up with the name of the file. am_mf=`AS_ECHO(["$am_mf"]) | sed -e 's/:.*$//'` # Check whether this is an Automake generated Makefile which includes # dependency-tracking related rules and includes. # Grep'ing the whole file directly is not great: AIX grep has a line # limit of 2048, but all sed's we know have understand at least 4000. sed -n 's,^am--depfiles:.*,X,p' "$am_mf" | grep X >/dev/null 2>&1 \ || continue am_dirpart=`AS_DIRNAME(["$am_mf"])` am_filepart=`AS_BASENAME(["$am_mf"])` AM_RUN_LOG([cd "$am_dirpart" \ && sed -e '/# am--include-marker/d' "$am_filepart" \ | $MAKE -f - am--depfiles]) || am_rc=$? done if test $am_rc -ne 0; then AC_MSG_FAILURE([Something went wrong bootstrapping makefile fragments for automatic dependency tracking. Try re-running configure with the '--disable-dependency-tracking' option to at least be able to build the package (albeit without support for automatic dependency tracking).]) fi AS_UNSET([am_dirpart]) AS_UNSET([am_filepart]) AS_UNSET([am_mf]) AS_UNSET([am_rc]) rm -f conftest-deps.mk } ])# _AM_OUTPUT_DEPENDENCY_COMMANDS # AM_OUTPUT_DEPENDENCY_COMMANDS # ----------------------------- # This macro should only be invoked once -- use via AC_REQUIRE. # # This code is only required when automatic dependency tracking is enabled. # This creates each '.Po' and '.Plo' makefile fragment that we'll need in # order to bootstrap the dependency handling code. AC_DEFUN([AM_OUTPUT_DEPENDENCY_COMMANDS], [AC_CONFIG_COMMANDS([depfiles], [test x"$AMDEP_TRUE" != x"" || _AM_OUTPUT_DEPENDENCY_COMMANDS], [AMDEP_TRUE="$AMDEP_TRUE" MAKE="${MAKE-make}"])]) # Do all the work for Automake. -*- Autoconf -*- # Copyright (C) 1996-2018 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # This macro actually does too much. Some checks are only needed if # your package does certain things. But this isn't really a big deal. dnl Redefine AC_PROG_CC to automatically invoke _AM_PROG_CC_C_O. m4_define([AC_PROG_CC], m4_defn([AC_PROG_CC]) [_AM_PROG_CC_C_O ]) # AM_INIT_AUTOMAKE(PACKAGE, VERSION, [NO-DEFINE]) # AM_INIT_AUTOMAKE([OPTIONS]) # ----------------------------------------------- # The call with PACKAGE and VERSION arguments is the old style # call (pre autoconf-2.50), which is being phased out. PACKAGE # and VERSION should now be passed to AC_INIT and removed from # the call to AM_INIT_AUTOMAKE. # We support both call styles for the transition. After # the next Automake release, Autoconf can make the AC_INIT # arguments mandatory, and then we can depend on a new Autoconf # release and drop the old call support. AC_DEFUN([AM_INIT_AUTOMAKE], [AC_PREREQ([2.65])dnl dnl Autoconf wants to disallow AM_ names. We explicitly allow dnl the ones we care about. m4_pattern_allow([^AM_[A-Z]+FLAGS$])dnl AC_REQUIRE([AM_SET_CURRENT_AUTOMAKE_VERSION])dnl AC_REQUIRE([AC_PROG_INSTALL])dnl if test "`cd $srcdir && pwd`" != "`pwd`"; then # Use -I$(srcdir) only when $(srcdir) != ., so that make's output # is not polluted with repeated "-I." AC_SUBST([am__isrc], [' -I$(srcdir)'])_AM_SUBST_NOTMAKE([am__isrc])dnl # test to see if srcdir already configured if test -f $srcdir/config.status; then AC_MSG_ERROR([source directory already configured; run "make distclean" there first]) fi fi # test whether we have cygpath if test -z "$CYGPATH_W"; then if (cygpath --version) >/dev/null 2>/dev/null; then CYGPATH_W='cygpath -w' else CYGPATH_W=echo fi fi AC_SUBST([CYGPATH_W]) # Define the identity of the package. dnl Distinguish between old-style and new-style calls. m4_ifval([$2], [AC_DIAGNOSE([obsolete], [$0: two- and three-arguments forms are deprecated.]) m4_ifval([$3], [_AM_SET_OPTION([no-define])])dnl AC_SUBST([PACKAGE], [$1])dnl AC_SUBST([VERSION], [$2])], [_AM_SET_OPTIONS([$1])dnl dnl Diagnose old-style AC_INIT with new-style AM_AUTOMAKE_INIT. m4_if( m4_ifdef([AC_PACKAGE_NAME], [ok]):m4_ifdef([AC_PACKAGE_VERSION], [ok]), [ok:ok],, [m4_fatal([AC_INIT should be called with package and version arguments])])dnl AC_SUBST([PACKAGE], ['AC_PACKAGE_TARNAME'])dnl AC_SUBST([VERSION], ['AC_PACKAGE_VERSION'])])dnl _AM_IF_OPTION([no-define],, [AC_DEFINE_UNQUOTED([PACKAGE], ["$PACKAGE"], [Name of package]) AC_DEFINE_UNQUOTED([VERSION], ["$VERSION"], [Version number of package])])dnl # Some tools Automake needs. AC_REQUIRE([AM_SANITY_CHECK])dnl AC_REQUIRE([AC_ARG_PROGRAM])dnl AM_MISSING_PROG([ACLOCAL], [aclocal-${am__api_version}]) AM_MISSING_PROG([AUTOCONF], [autoconf]) AM_MISSING_PROG([AUTOMAKE], [automake-${am__api_version}]) AM_MISSING_PROG([AUTOHEADER], [autoheader]) AM_MISSING_PROG([MAKEINFO], [makeinfo]) AC_REQUIRE([AM_PROG_INSTALL_SH])dnl AC_REQUIRE([AM_PROG_INSTALL_STRIP])dnl AC_REQUIRE([AC_PROG_MKDIR_P])dnl # For better backward compatibility. To be removed once Automake 1.9.x # dies out for good. For more background, see: # # AC_SUBST([mkdir_p], ['$(MKDIR_P)']) # We need awk for the "check" target (and possibly the TAP driver). The # system "awk" is bad on some platforms. AC_REQUIRE([AC_PROG_AWK])dnl AC_REQUIRE([AC_PROG_MAKE_SET])dnl AC_REQUIRE([AM_SET_LEADING_DOT])dnl _AM_IF_OPTION([tar-ustar], [_AM_PROG_TAR([ustar])], [_AM_IF_OPTION([tar-pax], [_AM_PROG_TAR([pax])], [_AM_PROG_TAR([v7])])]) _AM_IF_OPTION([no-dependencies],, [AC_PROVIDE_IFELSE([AC_PROG_CC], [_AM_DEPENDENCIES([CC])], [m4_define([AC_PROG_CC], m4_defn([AC_PROG_CC])[_AM_DEPENDENCIES([CC])])])dnl AC_PROVIDE_IFELSE([AC_PROG_CXX], [_AM_DEPENDENCIES([CXX])], [m4_define([AC_PROG_CXX], m4_defn([AC_PROG_CXX])[_AM_DEPENDENCIES([CXX])])])dnl AC_PROVIDE_IFELSE([AC_PROG_OBJC], [_AM_DEPENDENCIES([OBJC])], [m4_define([AC_PROG_OBJC], m4_defn([AC_PROG_OBJC])[_AM_DEPENDENCIES([OBJC])])])dnl AC_PROVIDE_IFELSE([AC_PROG_OBJCXX], [_AM_DEPENDENCIES([OBJCXX])], [m4_define([AC_PROG_OBJCXX], m4_defn([AC_PROG_OBJCXX])[_AM_DEPENDENCIES([OBJCXX])])])dnl ]) AC_REQUIRE([AM_SILENT_RULES])dnl dnl The testsuite driver may need to know about EXEEXT, so add the dnl 'am__EXEEXT' conditional if _AM_COMPILER_EXEEXT was seen. This dnl macro is hooked onto _AC_COMPILER_EXEEXT early, see below. AC_CONFIG_COMMANDS_PRE(dnl [m4_provide_if([_AM_COMPILER_EXEEXT], [AM_CONDITIONAL([am__EXEEXT], [test -n "$EXEEXT"])])])dnl # POSIX will say in a future version that running "rm -f" with no argument # is OK; and we want to be able to make that assumption in our Makefile # recipes. So use an aggressive probe to check that the usage we want is # actually supported "in the wild" to an acceptable degree. # See automake bug#10828. # To make any issue more visible, cause the running configure to be aborted # by default if the 'rm' program in use doesn't match our expectations; the # user can still override this though. if rm -f && rm -fr && rm -rf; then : OK; else cat >&2 <<'END' Oops! Your 'rm' program seems unable to run without file operands specified on the command line, even when the '-f' option is present. This is contrary to the behaviour of most rm programs out there, and not conforming with the upcoming POSIX standard: Please tell bug-automake@gnu.org about your system, including the value of your $PATH and any error possibly output before this message. This can help us improve future automake versions. END if test x"$ACCEPT_INFERIOR_RM_PROGRAM" = x"yes"; then echo 'Configuration will proceed anyway, since you have set the' >&2 echo 'ACCEPT_INFERIOR_RM_PROGRAM variable to "yes"' >&2 echo >&2 else cat >&2 <<'END' Aborting the configuration process, to ensure you take notice of the issue. You can download and install GNU coreutils to get an 'rm' implementation that behaves properly: . If you want to complete the configuration process using your problematic 'rm' anyway, export the environment variable ACCEPT_INFERIOR_RM_PROGRAM to "yes", and re-run configure. END AC_MSG_ERROR([Your 'rm' program is bad, sorry.]) fi fi dnl The trailing newline in this macro's definition is deliberate, for dnl backward compatibility and to allow trailing 'dnl'-style comments dnl after the AM_INIT_AUTOMAKE invocation. See automake bug#16841. ]) dnl Hook into '_AC_COMPILER_EXEEXT' early to learn its expansion. Do not dnl add the conditional right here, as _AC_COMPILER_EXEEXT may be further dnl mangled by Autoconf and run in a shell conditional statement. m4_define([_AC_COMPILER_EXEEXT], m4_defn([_AC_COMPILER_EXEEXT])[m4_provide([_AM_COMPILER_EXEEXT])]) # When config.status generates a header, we must update the stamp-h file. # This file resides in the same directory as the config header # that is generated. The stamp files are numbered to have different names. # Autoconf calls _AC_AM_CONFIG_HEADER_HOOK (when defined) in the # loop where config.status creates the headers, so we can generate # our stamp files there. AC_DEFUN([_AC_AM_CONFIG_HEADER_HOOK], [# Compute $1's index in $config_headers. _am_arg=$1 _am_stamp_count=1 for _am_header in $config_headers :; do case $_am_header in $_am_arg | $_am_arg:* ) break ;; * ) _am_stamp_count=`expr $_am_stamp_count + 1` ;; esac done echo "timestamp for $_am_arg" >`AS_DIRNAME(["$_am_arg"])`/stamp-h[]$_am_stamp_count]) # Copyright (C) 2001-2018 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # AM_PROG_INSTALL_SH # ------------------ # Define $install_sh. AC_DEFUN([AM_PROG_INSTALL_SH], [AC_REQUIRE([AM_AUX_DIR_EXPAND])dnl if test x"${install_sh+set}" != xset; then case $am_aux_dir in *\ * | *\ *) install_sh="\${SHELL} '$am_aux_dir/install-sh'" ;; *) install_sh="\${SHELL} $am_aux_dir/install-sh" esac fi AC_SUBST([install_sh])]) # Copyright (C) 2003-2018 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # Check whether the underlying file-system supports filenames # with a leading dot. For instance MS-DOS doesn't. AC_DEFUN([AM_SET_LEADING_DOT], [rm -rf .tst 2>/dev/null mkdir .tst 2>/dev/null if test -d .tst; then am__leading_dot=. else am__leading_dot=_ fi rmdir .tst 2>/dev/null AC_SUBST([am__leading_dot])]) # Add --enable-maintainer-mode option to configure. -*- Autoconf -*- # From Jim Meyering # Copyright (C) 1996-2018 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # AM_MAINTAINER_MODE([DEFAULT-MODE]) # ---------------------------------- # Control maintainer-specific portions of Makefiles. # Default is to disable them, unless 'enable' is passed literally. # For symmetry, 'disable' may be passed as well. Anyway, the user # can override the default with the --enable/--disable switch. AC_DEFUN([AM_MAINTAINER_MODE], [m4_case(m4_default([$1], [disable]), [enable], [m4_define([am_maintainer_other], [disable])], [disable], [m4_define([am_maintainer_other], [enable])], [m4_define([am_maintainer_other], [enable]) m4_warn([syntax], [unexpected argument to AM@&t@_MAINTAINER_MODE: $1])]) AC_MSG_CHECKING([whether to enable maintainer-specific portions of Makefiles]) dnl maintainer-mode's default is 'disable' unless 'enable' is passed AC_ARG_ENABLE([maintainer-mode], [AS_HELP_STRING([--]am_maintainer_other[-maintainer-mode], am_maintainer_other[ make rules and dependencies not useful (and sometimes confusing) to the casual installer])], [USE_MAINTAINER_MODE=$enableval], [USE_MAINTAINER_MODE=]m4_if(am_maintainer_other, [enable], [no], [yes])) AC_MSG_RESULT([$USE_MAINTAINER_MODE]) AM_CONDITIONAL([MAINTAINER_MODE], [test $USE_MAINTAINER_MODE = yes]) MAINT=$MAINTAINER_MODE_TRUE AC_SUBST([MAINT])dnl ] ) # Check to see how 'make' treats includes. -*- Autoconf -*- # Copyright (C) 2001-2018 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # AM_MAKE_INCLUDE() # ----------------- # Check whether make has an 'include' directive that can support all # the idioms we need for our automatic dependency tracking code. AC_DEFUN([AM_MAKE_INCLUDE], [AC_MSG_CHECKING([whether ${MAKE-make} supports the include directive]) cat > confinc.mk << 'END' am__doit: @echo this is the am__doit target >confinc.out .PHONY: am__doit END am__include="#" am__quote= # BSD make does it like this. echo '.include "confinc.mk" # ignored' > confmf.BSD # Other make implementations (GNU, Solaris 10, AIX) do it like this. echo 'include confinc.mk # ignored' > confmf.GNU _am_result=no for s in GNU BSD; do AM_RUN_LOG([${MAKE-make} -f confmf.$s && cat confinc.out]) AS_CASE([$?:`cat confinc.out 2>/dev/null`], ['0:this is the am__doit target'], [AS_CASE([$s], [BSD], [am__include='.include' am__quote='"'], [am__include='include' am__quote=''])]) if test "$am__include" != "#"; then _am_result="yes ($s style)" break fi done rm -f confinc.* confmf.* AC_MSG_RESULT([${_am_result}]) AC_SUBST([am__include])]) AC_SUBST([am__quote])]) # Fake the existence of programs that GNU maintainers use. -*- Autoconf -*- # Copyright (C) 1997-2018 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # AM_MISSING_PROG(NAME, PROGRAM) # ------------------------------ AC_DEFUN([AM_MISSING_PROG], [AC_REQUIRE([AM_MISSING_HAS_RUN]) $1=${$1-"${am_missing_run}$2"} AC_SUBST($1)]) # AM_MISSING_HAS_RUN # ------------------ # Define MISSING if not defined so far and test if it is modern enough. # If it is, set am_missing_run to use it, otherwise, to nothing. AC_DEFUN([AM_MISSING_HAS_RUN], [AC_REQUIRE([AM_AUX_DIR_EXPAND])dnl AC_REQUIRE_AUX_FILE([missing])dnl if test x"${MISSING+set}" != xset; then case $am_aux_dir in *\ * | *\ *) MISSING="\${SHELL} \"$am_aux_dir/missing\"" ;; *) MISSING="\${SHELL} $am_aux_dir/missing" ;; esac fi # Use eval to expand $SHELL if eval "$MISSING --is-lightweight"; then am_missing_run="$MISSING " else am_missing_run= AC_MSG_WARN(['missing' script is too old or missing]) fi ]) # Helper functions for option handling. -*- Autoconf -*- # Copyright (C) 2001-2018 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # _AM_MANGLE_OPTION(NAME) # ----------------------- AC_DEFUN([_AM_MANGLE_OPTION], [[_AM_OPTION_]m4_bpatsubst($1, [[^a-zA-Z0-9_]], [_])]) # _AM_SET_OPTION(NAME) # -------------------- # Set option NAME. Presently that only means defining a flag for this option. AC_DEFUN([_AM_SET_OPTION], [m4_define(_AM_MANGLE_OPTION([$1]), [1])]) # _AM_SET_OPTIONS(OPTIONS) # ------------------------ # OPTIONS is a space-separated list of Automake options. AC_DEFUN([_AM_SET_OPTIONS], [m4_foreach_w([_AM_Option], [$1], [_AM_SET_OPTION(_AM_Option)])]) # _AM_IF_OPTION(OPTION, IF-SET, [IF-NOT-SET]) # ------------------------------------------- # Execute IF-SET if OPTION is set, IF-NOT-SET otherwise. AC_DEFUN([_AM_IF_OPTION], [m4_ifset(_AM_MANGLE_OPTION([$1]), [$2], [$3])]) # Copyright (C) 1999-2018 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # _AM_PROG_CC_C_O # --------------- # Like AC_PROG_CC_C_O, but changed for automake. We rewrite AC_PROG_CC # to automatically call this. AC_DEFUN([_AM_PROG_CC_C_O], [AC_REQUIRE([AM_AUX_DIR_EXPAND])dnl AC_REQUIRE_AUX_FILE([compile])dnl AC_LANG_PUSH([C])dnl AC_CACHE_CHECK( [whether $CC understands -c and -o together], [am_cv_prog_cc_c_o], [AC_LANG_CONFTEST([AC_LANG_PROGRAM([])]) # Make sure it works both with $CC and with simple cc. # Following AC_PROG_CC_C_O, we do the test twice because some # compilers refuse to overwrite an existing .o file with -o, # though they will create one. am_cv_prog_cc_c_o=yes for am_i in 1 2; do if AM_RUN_LOG([$CC -c conftest.$ac_ext -o conftest2.$ac_objext]) \ && test -f conftest2.$ac_objext; then : OK else am_cv_prog_cc_c_o=no break fi done rm -f core conftest* unset am_i]) if test "$am_cv_prog_cc_c_o" != yes; then # Losing compiler, so override with the script. # FIXME: It is wrong to rewrite CC. # But if we don't then we get into trouble of one sort or another. # A longer-term fix would be to have automake use am__CC in this case, # and then we could set am__CC="\$(top_srcdir)/compile \$(CC)" CC="$am_aux_dir/compile $CC" fi AC_LANG_POP([C])]) # For backward compatibility. AC_DEFUN_ONCE([AM_PROG_CC_C_O], [AC_REQUIRE([AC_PROG_CC])]) # Copyright (C) 2001-2018 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # AM_RUN_LOG(COMMAND) # ------------------- # Run COMMAND, save the exit status in ac_status, and log it. # (This has been adapted from Autoconf's _AC_RUN_LOG macro.) AC_DEFUN([AM_RUN_LOG], [{ echo "$as_me:$LINENO: $1" >&AS_MESSAGE_LOG_FD ($1) >&AS_MESSAGE_LOG_FD 2>&AS_MESSAGE_LOG_FD ac_status=$? echo "$as_me:$LINENO: \$? = $ac_status" >&AS_MESSAGE_LOG_FD (exit $ac_status); }]) # Check to make sure that the build environment is sane. -*- Autoconf -*- # Copyright (C) 1996-2018 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # AM_SANITY_CHECK # --------------- AC_DEFUN([AM_SANITY_CHECK], [AC_MSG_CHECKING([whether build environment is sane]) # Reject unsafe characters in $srcdir or the absolute working directory # name. Accept space and tab only in the latter. am_lf=' ' case `pwd` in *[[\\\"\#\$\&\'\`$am_lf]]*) AC_MSG_ERROR([unsafe absolute working directory name]);; esac case $srcdir in *[[\\\"\#\$\&\'\`$am_lf\ \ ]]*) AC_MSG_ERROR([unsafe srcdir value: '$srcdir']);; esac # Do 'set' in a subshell so we don't clobber the current shell's # arguments. Must try -L first in case configure is actually a # symlink; some systems play weird games with the mod time of symlinks # (eg FreeBSD returns the mod time of the symlink's containing # directory). if ( am_has_slept=no for am_try in 1 2; do echo "timestamp, slept: $am_has_slept" > conftest.file set X `ls -Lt "$srcdir/configure" conftest.file 2> /dev/null` if test "$[*]" = "X"; then # -L didn't work. set X `ls -t "$srcdir/configure" conftest.file` fi if test "$[*]" != "X $srcdir/configure conftest.file" \ && test "$[*]" != "X conftest.file $srcdir/configure"; then # If neither matched, then we have a broken ls. This can happen # if, for instance, CONFIG_SHELL is bash and it inherits a # broken ls alias from the environment. This has actually # happened. Such a system could not be considered "sane". AC_MSG_ERROR([ls -t appears to fail. Make sure there is not a broken alias in your environment]) fi if test "$[2]" = conftest.file || test $am_try -eq 2; then break fi # Just in case. sleep 1 am_has_slept=yes done test "$[2]" = conftest.file ) then # Ok. : else AC_MSG_ERROR([newly created file is older than distributed files! Check your system clock]) fi AC_MSG_RESULT([yes]) # If we didn't sleep, we still need to ensure time stamps of config.status and # generated files are strictly newer. am_sleep_pid= if grep 'slept: no' conftest.file >/dev/null 2>&1; then ( sleep 1 ) & am_sleep_pid=$! fi AC_CONFIG_COMMANDS_PRE( [AC_MSG_CHECKING([that generated files are newer than configure]) if test -n "$am_sleep_pid"; then # Hide warnings about reused PIDs. wait $am_sleep_pid 2>/dev/null fi AC_MSG_RESULT([done])]) rm -f conftest.file ]) # Copyright (C) 2009-2018 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # AM_SILENT_RULES([DEFAULT]) # -------------------------- # Enable less verbose build rules; with the default set to DEFAULT # ("yes" being less verbose, "no" or empty being verbose). AC_DEFUN([AM_SILENT_RULES], [AC_ARG_ENABLE([silent-rules], [dnl AS_HELP_STRING( [--enable-silent-rules], [less verbose build output (undo: "make V=1")]) AS_HELP_STRING( [--disable-silent-rules], [verbose build output (undo: "make V=0")])dnl ]) case $enable_silent_rules in @%:@ ((( yes) AM_DEFAULT_VERBOSITY=0;; no) AM_DEFAULT_VERBOSITY=1;; *) AM_DEFAULT_VERBOSITY=m4_if([$1], [yes], [0], [1]);; esac dnl dnl A few 'make' implementations (e.g., NonStop OS and NextStep) dnl do not support nested variable expansions. dnl See automake bug#9928 and bug#10237. am_make=${MAKE-make} AC_CACHE_CHECK([whether $am_make supports nested variables], [am_cv_make_support_nested_variables], [if AS_ECHO([['TRUE=$(BAR$(V)) BAR0=false BAR1=true V=1 am__doit: @$(TRUE) .PHONY: am__doit']]) | $am_make -f - >/dev/null 2>&1; then am_cv_make_support_nested_variables=yes else am_cv_make_support_nested_variables=no fi]) if test $am_cv_make_support_nested_variables = yes; then dnl Using '$V' instead of '$(V)' breaks IRIX make. AM_V='$(V)' AM_DEFAULT_V='$(AM_DEFAULT_VERBOSITY)' else AM_V=$AM_DEFAULT_VERBOSITY AM_DEFAULT_V=$AM_DEFAULT_VERBOSITY fi AC_SUBST([AM_V])dnl AM_SUBST_NOTMAKE([AM_V])dnl AC_SUBST([AM_DEFAULT_V])dnl AM_SUBST_NOTMAKE([AM_DEFAULT_V])dnl AC_SUBST([AM_DEFAULT_VERBOSITY])dnl AM_BACKSLASH='\' AC_SUBST([AM_BACKSLASH])dnl _AM_SUBST_NOTMAKE([AM_BACKSLASH])dnl ]) # Copyright (C) 2001-2018 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # AM_PROG_INSTALL_STRIP # --------------------- # One issue with vendor 'install' (even GNU) is that you can't # specify the program used to strip binaries. This is especially # annoying in cross-compiling environments, where the build's strip # is unlikely to handle the host's binaries. # Fortunately install-sh will honor a STRIPPROG variable, so we # always use install-sh in "make install-strip", and initialize # STRIPPROG with the value of the STRIP variable (set by the user). AC_DEFUN([AM_PROG_INSTALL_STRIP], [AC_REQUIRE([AM_PROG_INSTALL_SH])dnl # Installed binaries are usually stripped using 'strip' when the user # run "make install-strip". However 'strip' might not be the right # tool to use in cross-compilation environments, therefore Automake # will honor the 'STRIP' environment variable to overrule this program. dnl Don't test for $cross_compiling = yes, because it might be 'maybe'. if test "$cross_compiling" != no; then AC_CHECK_TOOL([STRIP], [strip], :) fi INSTALL_STRIP_PROGRAM="\$(install_sh) -c -s" AC_SUBST([INSTALL_STRIP_PROGRAM])]) # Copyright (C) 2006-2018 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # _AM_SUBST_NOTMAKE(VARIABLE) # --------------------------- # Prevent Automake from outputting VARIABLE = @VARIABLE@ in Makefile.in. # This macro is traced by Automake. AC_DEFUN([_AM_SUBST_NOTMAKE]) # AM_SUBST_NOTMAKE(VARIABLE) # -------------------------- # Public sister of _AM_SUBST_NOTMAKE. AC_DEFUN([AM_SUBST_NOTMAKE], [_AM_SUBST_NOTMAKE($@)]) # Check how to create a tarball. -*- Autoconf -*- # Copyright (C) 2004-2018 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # _AM_PROG_TAR(FORMAT) # -------------------- # Check how to create a tarball in format FORMAT. # FORMAT should be one of 'v7', 'ustar', or 'pax'. # # Substitute a variable $(am__tar) that is a command # writing to stdout a FORMAT-tarball containing the directory # $tardir. # tardir=directory && $(am__tar) > result.tar # # Substitute a variable $(am__untar) that extract such # a tarball read from stdin. # $(am__untar) < result.tar # AC_DEFUN([_AM_PROG_TAR], [# Always define AMTAR for backward compatibility. Yes, it's still used # in the wild :-( We should find a proper way to deprecate it ... AC_SUBST([AMTAR], ['$${TAR-tar}']) # We'll loop over all known methods to create a tar archive until one works. _am_tools='gnutar m4_if([$1], [ustar], [plaintar]) pax cpio none' m4_if([$1], [v7], [am__tar='$${TAR-tar} chof - "$$tardir"' am__untar='$${TAR-tar} xf -'], [m4_case([$1], [ustar], [# The POSIX 1988 'ustar' format is defined with fixed-size fields. # There is notably a 21 bits limit for the UID and the GID. In fact, # the 'pax' utility can hang on bigger UID/GID (see automake bug#8343 # and bug#13588). am_max_uid=2097151 # 2^21 - 1 am_max_gid=$am_max_uid # The $UID and $GID variables are not portable, so we need to resort # to the POSIX-mandated id(1) utility. Errors in the 'id' calls # below are definitely unexpected, so allow the users to see them # (that is, avoid stderr redirection). am_uid=`id -u || echo unknown` am_gid=`id -g || echo unknown` AC_MSG_CHECKING([whether UID '$am_uid' is supported by ustar format]) if test $am_uid -le $am_max_uid; then AC_MSG_RESULT([yes]) else AC_MSG_RESULT([no]) _am_tools=none fi AC_MSG_CHECKING([whether GID '$am_gid' is supported by ustar format]) if test $am_gid -le $am_max_gid; then AC_MSG_RESULT([yes]) else AC_MSG_RESULT([no]) _am_tools=none fi], [pax], [], [m4_fatal([Unknown tar format])]) AC_MSG_CHECKING([how to create a $1 tar archive]) # Go ahead even if we have the value already cached. We do so because we # need to set the values for the 'am__tar' and 'am__untar' variables. _am_tools=${am_cv_prog_tar_$1-$_am_tools} for _am_tool in $_am_tools; do case $_am_tool in gnutar) for _am_tar in tar gnutar gtar; do AM_RUN_LOG([$_am_tar --version]) && break done am__tar="$_am_tar --format=m4_if([$1], [pax], [posix], [$1]) -chf - "'"$$tardir"' am__tar_="$_am_tar --format=m4_if([$1], [pax], [posix], [$1]) -chf - "'"$tardir"' am__untar="$_am_tar -xf -" ;; plaintar) # Must skip GNU tar: if it does not support --format= it doesn't create # ustar tarball either. (tar --version) >/dev/null 2>&1 && continue am__tar='tar chf - "$$tardir"' am__tar_='tar chf - "$tardir"' am__untar='tar xf -' ;; pax) am__tar='pax -L -x $1 -w "$$tardir"' am__tar_='pax -L -x $1 -w "$tardir"' am__untar='pax -r' ;; cpio) am__tar='find "$$tardir" -print | cpio -o -H $1 -L' am__tar_='find "$tardir" -print | cpio -o -H $1 -L' am__untar='cpio -i -H $1 -d' ;; none) am__tar=false am__tar_=false am__untar=false ;; esac # If the value was cached, stop now. We just wanted to have am__tar # and am__untar set. test -n "${am_cv_prog_tar_$1}" && break # tar/untar a dummy directory, and stop if the command works. rm -rf conftest.dir mkdir conftest.dir echo GrepMe > conftest.dir/file AM_RUN_LOG([tardir=conftest.dir && eval $am__tar_ >conftest.tar]) rm -rf conftest.dir if test -s conftest.tar; then AM_RUN_LOG([$am__untar /dev/null 2>&1 && break fi done rm -rf conftest.dir AC_CACHE_VAL([am_cv_prog_tar_$1], [am_cv_prog_tar_$1=$_am_tool]) AC_MSG_RESULT([$am_cv_prog_tar_$1])]) AC_SUBST([am__tar]) AC_SUBST([am__untar]) ]) # _AM_PROG_TAR m4_include([m4/ax_check_vscript.m4]) m4_include([m4/iconv.m4]) m4_include([m4/lib-ld.m4]) m4_include([m4/lib-link.m4]) m4_include([m4/lib-prefix.m4]) m4_include([m4/libtool.m4]) m4_include([m4/ltoptions.m4]) m4_include([m4/ltsugar.m4]) m4_include([m4/ltversion.m4]) m4_include([m4/lt~obsolete.m4]) m4_include([acinclude.m4]) openconnect-8.05/openconnect.h0000664000076400007640000006655013536301670020241 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2016 Intel Corporation. * Copyright © 2008 Nick Andrew * Copyright © 2013 John Morrissey * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #ifndef __OPENCONNECT_H__ #define __OPENCONNECT_H__ #include #include #include #ifdef __cplusplus extern "C" { #endif #ifdef _WIN32 #define uid_t unsigned #endif #define OPENCONNECT_API_VERSION_MAJOR 5 #define OPENCONNECT_API_VERSION_MINOR 5 /* * API version 5.5 (v8.00; 2019-01-05): * - add openconnect_set_version_string() * - add openconnect_set_key_password() * - Add openconnect_has_tss2_blob_support() * - Add openconnect_get_supported_protocols() * - Add openconnect_free_supported_protocols() * - Add openconnect_get_protocol() * - Add openconnect_get_idle_timeout() * * API version 5.4 (v7.08; 2016-12-13): * - Add openconnect_set_pass_tos() * * API version 5.3 (v7.07; 2016-07-11): * - Add openconnect_set_localname(). * - Add openconnect_override_getaddrinfo(). * - Add openconnect_get_cstp_compression(). * - Add openconnect_get_dtls_compression(). * - Add openconnect_disable_ipv6(). * - Add ip_info->gateway_addr. * - Add openconnect_set_setup_tun_handler(). * - Add openconnect_set_reconnected_handler(). * - Add openconnect_get_dnsname(). * - Add openconnect_get_peer_cert_chain() and * openconnect_free_peer_cert_chain(). * * API version 5.2 (v7.05; 2015-03-10): * - Add openconnect_set_http_auth(), openconnect_set_protocol(). * * API version 5.1 (v7.05; 2015-03-10): * - Add openconnect_set_compression_mode(), openconnect_set_loglevel() * * (Note: API 5.1 and openconnect_set_compression_mode() were present in * this file in the v7.04 release on 2015-01-25, but the symbol versioning * for the new function was OPENCONNECT_5_0, and openconnect_set_loglevel() * was not yet present.) * * API version 5.0 (v7.00; 2014-11-27): * - Remove OPENCONNECT_X509 and openconnect_get_peer_cert(). * - Change openconnect_get_cert_der() to openconnect_get_peer_cert_DER() etc. * - Add openconnect_check_peer_cert_hash(). * - Remove openconnect_set_server_cert_sha1(). * - Add openconnect_has_yubioath_support() and OC_TOKEN_MODE_YUBIOATH. * - Add openconnect_has_system_key_support(). * * API version 4.1 (v7.00; 2014-11-27): * - Add openconnect_get_cstp_cipher(), openconnect_get_dtls_cipher(), * openconnect_set_system_trust(), openconnect_set_csd_environ(). * - Change openconnect_init_ssl() to return int. * * API version 4.0 (v7.00; 2014-11-27): * - Change string handling to never transfer ownership of allocations. * - Add openconnect_set_option_value(), openconnect_free_cert_info(). * * API version 3.4 (v7.00; 2014-11-27): * - Add openconnect_set_token_callbacks() * * API version 3.3 (v6.00; 2014-07-08): * - Add openconnect_set_pfs(), openconnect_set_dpd(), * openconnect_set_proxy_auth() * * API version 3.2 (v5.99; 2014-03-05): * - Add OC_TOKEN_MODE_HOTP and allow openconnect_has_oath_support() to * return 2 to indicate that it is present. * * API version 3.1 (v5.99; 2014-03-05): * - Add openconnect_setup_cmd_pipe(), openconnect_mainloop(), * openconnect_setup_tun_device(), openconnect_setup_tun_script(), * openconnect_setup_tun_fd(), openconnect_setup_dtls(), * openconnect_make_cstp_connection(), openconnect_set_server_cert_sha1(), * openconnect_get_ifname(), openconnect_set_reqmtu(), * openconnect_get_ip_info(), openconnect_set_protect_socket_handler(), * openconnect_set_mobile_info(), openconnect_set_xmlpost(), * openconnect_set_stats_handler() * * API version 3.0 (v5.99; 2014-03-05): * - Change oc_form_opt_select->choices to an array of pointers * - Add oc_form_opt->flags * - Add OC_FORM_RESULT_* and oc_auth_form->authgroup_* * * API version 2.2 (v5.00; 2013-05-16): * - Add openconnect_set_token_mode(), openconnect_has_oath_support() * - Deprecate openconnect_set_stoken_mode() * * API version 2.1 (v4.99; 2013-02-07): * - Add openconnect_set_reported_os() * - Add openconnect_set_stoken_mode(), openconnect_has_stoken_support() * * API version 2.0 (v3.99; 2012-06-13): * - OPENCONNECT_X509 is now an opaque type. * - Add openconnect_has_pkcs11_support(), openconnect_has_tss_blob_support() * - Rename openconnect_init_openssl() -> openconnect_init_ssl() * - Rename openconnect_vpninfo_new_with_cbdata() -> openconnect_vpninfo_new() * and kill the old openconnect_vpninfo_new() and its callback types. * * API version 1.5 (v3.99; 2012-06-13): * - Add openconnect_get_cert_details(), openconnect_get_cert_DER(). * * API version 1.4 (v3.19; 2012-05-17): * - Add openconnect_set_cancel_fd() * * API version 1.3 (v3.13; 2011-09-30): * - Add openconnect_set_cert_expiry_warning() to change from default 60 days * * API version 1.2 (v3.10; 2011-06-30) * - Add openconnect_vpninfo_new_with_cbdata() * * API version 1.1 (v3.02; 2011-04-19): * - Add openconnect_vpninfo_free() * * API version 1.0 (v3.00; 2011-03-09): * - Initial version * * NEW LIBRARY FUNCTION CHECKLIST: * * 1) Bump the API version if the current API version has already appeared * in a release * 2) Add function to the above changelog * 3) Add function to libopenconnect.map.in * 4) Add declaration + comments in the latter part of this file * 5) Add function to jni.c, then test with ./configure --with-java && make * 6) Add declaration to LibOpenConnect.java, then run "cd java && ant" to test */ /* Before API version 1.4 (OpenConnect 3.19) this macro didn't exist. * Somewhat ironic, that the API version check itself needs to be * conditionally used depending on the API version. A very simple way * for users to handle this with an approximately correct answer is * #include * #ifndef OPENCONNECT_CHECK_VER * #define OPENCONNECT_CHECK_VER(x,y) 0 * #endif */ #define OPENCONNECT_CHECK_VER(maj, min) \ (OPENCONNECT_API_VERSION_MAJOR > (maj) || \ (OPENCONNECT_API_VERSION_MAJOR == (maj) && \ OPENCONNECT_API_VERSION_MINOR >= (min))) /****************************************************************************/ /* Enumeration of supported VPN protocols */ #define OC_PROTO_PROXY (1<<0) #define OC_PROTO_CSD (1<<1) #define OC_PROTO_AUTH_CERT (1<<2) #define OC_PROTO_AUTH_OTP (1<<3) #define OC_PROTO_AUTH_STOKEN (1<<4) struct oc_vpn_proto { const char *name; const char *pretty_name; const char *description; unsigned int flags; }; /****************************************************************************/ /* Authentication form processing */ #define OC_FORM_OPT_TEXT 1 #define OC_FORM_OPT_PASSWORD 2 #define OC_FORM_OPT_SELECT 3 #define OC_FORM_OPT_HIDDEN 4 #define OC_FORM_OPT_TOKEN 5 #define OC_FORM_RESULT_ERR -1 #define OC_FORM_RESULT_OK 0 #define OC_FORM_RESULT_CANCELLED 1 #define OC_FORM_RESULT_NEWGROUP 2 #ifdef __OPENCONNECT_PRIVATE__ #define OC_FORM_RESULT_LOGGEDIN 255 #define OC_FORM_OPT_SECOND_AUTH 0x8000 #endif #define OC_FORM_OPT_IGNORE 0x0001 #define OC_FORM_OPT_NUMERIC 0x0002 /* char * fields are static (owned by XML parser) and don't need to be freed by the form handling code — except for value, which for TEXT and PASSWORD options is allocated by openconnect_set_option_value() when process_form() interacts with the user and must be freed. */ struct oc_form_opt { struct oc_form_opt *next; int type; char *name; char *label; char *_value; /* Use openconnect_set_option_value() to set this */ unsigned int flags; void *reserved; }; /* To set the value to a form use the following function */ int openconnect_set_option_value(struct oc_form_opt *opt, const char *value); /* All fields are static, owned by the XML parser */ struct oc_choice { char *name; char *label; char *auth_type; char *override_name; char *override_label; #ifdef __OPENCONNECT_PRIVATE__ int second_auth; char *secondary_username; int secondary_username_editable; int noaaa; #endif }; struct oc_form_opt_select { struct oc_form_opt form; int nr_choices; struct oc_choice **choices; }; /* All char * fields are static, owned by the XML parser */ struct oc_auth_form { char *banner; char *message; char *error; char *auth_id; char *method; char *action; struct oc_form_opt *opts; struct oc_form_opt_select *authgroup_opt; int authgroup_selection; }; struct oc_split_include { const char *route; struct oc_split_include *next; }; struct oc_ip_info { const char *addr; const char *netmask; const char *addr6; const char *netmask6; const char *dns[3]; const char *nbns[3]; const char *domain; const char *proxy_pac; int mtu; struct oc_split_include *split_dns; struct oc_split_include *split_includes; struct oc_split_include *split_excludes; /* The elements above this line come from server-provided CSTP headers, * so they should be handled with caution. gateway_addr is generated * locally from getnameinfo(). */ char *gateway_addr; }; struct oc_vpn_option { char *option; char *value; struct oc_vpn_option *next; }; struct oc_stats { uint64_t tx_pkts; uint64_t tx_bytes; uint64_t rx_pkts; uint64_t rx_bytes; }; struct oc_cert { int der_len; unsigned char *der_data; void *reserved; }; /****************************************************************************/ #define PRG_ERR 0 #define PRG_INFO 1 #define PRG_DEBUG 2 #define PRG_TRACE 3 /* Byte commands to write into the cmd_fd: * * CANCEL closes network connections, logs off the session (cookie) * and shuts down the tun device. * PAUSE closes network connections and returns. The caller is expected * to call openconnect_mainloop() again soon. * DETACH closes network connections and shuts down the tun device. * It is not legal to call openconnect_mainloop() again after this, * but a new instance of openconnect can be started using the same * cookie. * STATS calls the stats_handler. */ #define OC_CMD_CANCEL 'x' #define OC_CMD_PAUSE 'p' #define OC_CMD_DETACH 'd' #define OC_CMD_STATS 's' #define RECONNECT_INTERVAL_MIN 10 #define RECONNECT_INTERVAL_MAX 100 struct openconnect_info; typedef enum { OC_TOKEN_MODE_NONE, OC_TOKEN_MODE_STOKEN, OC_TOKEN_MODE_TOTP, OC_TOKEN_MODE_HOTP, OC_TOKEN_MODE_YUBIOATH, } oc_token_mode_t; typedef enum { OC_COMPRESSION_MODE_NONE, OC_COMPRESSION_MODE_STATELESS, OC_COMPRESSION_MODE_ALL, } oc_compression_mode_t; /* All strings are UTF-8. If operating in a legacy environment where nl_langinfo(CODESET) returns anything other than UTF-8, or on Windows, the library will take appropriate steps to convert back to the legacy character set (or UTF-16) for file handling and wherever else it is appropriate to do so. Library functions may (but probably don't yet) return -EILSEQ if passed invalid UTF-8 strings. */ /* Unlike previous versions of openconnect, no functions will take ownership of the provided strings. */ /* Provide environment variables to be set in the CSD trojan environment before spawning it. Some callers may need to set $TMPDIR, $PATH and other such things if not running from a standard UNIX-like environment. To ensure that a variable is unset, pass its name with value==NULL. To clear all settings and allow the CSD trojan to inherit an unmodified environment, call with name==NULL. */ int openconnect_set_csd_environ(struct openconnect_info *vpninfo, const char *name, const char *value); /* This string is static, valid only while the connection lasts. If you * are going to cache this to remember which certs the user has accepted, * make sure you also store the host/port for which it was accepted and * don't just accept this cert from *anywhere*. Also use use the check * function below instead of manually comparing. When this function * returns a string which *doesn't* match the previously-stored hash * matched with openconnect_check_peer_cert_hash(), you should store * the new result from this function in place of the old. It means * we have upgraded to a better hash function. */ const char *openconnect_get_peer_cert_hash(struct openconnect_info *vpninfo); /* Check if the current peer certificate matches a hash previously * obtained from openconect_get_peer_cert_hash(). Clients should not * attempt to do this using strcmp() and the *current* result of * openconnect_get_peer_cert_hash() because it might use * a different hash function today. This function will get it right. * Returns 0 on match; 1 on mismatch, -errno on failure. */ int openconnect_check_peer_cert_hash(struct openconnect_info *vpninfo, const char *old_hash); /* The buffers returned by these two functions must be freed with openconnect_free_cert_info(), especially on Windows. */ char *openconnect_get_peer_cert_details(struct openconnect_info *vpninfo); /* Returns the length of the created DER output, in a newly-allocated buffer that will need to be freed by openconnect_free_cert_info(). */ int openconnect_get_peer_cert_DER(struct openconnect_info *vpninfo, unsigned char **buf); void openconnect_free_cert_info(struct openconnect_info *vpninfo, void *buf); /* Creates a list of all certs in the peer's chain, returning the number of certs in the chain (or <0 on error). Only valid inside the validate_peer_cert callback. The caller should free the chain, but should not modify the contents. */ int openconnect_get_peer_cert_chain(struct openconnect_info *vpninfo, struct oc_cert **chain); void openconnect_free_peer_cert_chain(struct openconnect_info *vpninfo, struct oc_cert *chain); /* Contains a comma-separated list of authentication methods to enabled. Currently supported: Negotiate,NTLM,Digest,Basic */ int openconnect_set_http_auth(struct openconnect_info *vpninfo, const char *methods); int openconnect_set_proxy_auth(struct openconnect_info *vpninfo, const char *methods); int openconnect_set_http_proxy(struct openconnect_info *vpninfo, const char *proxy); int openconnect_passphrase_from_fsid(struct openconnect_info *vpninfo); int openconnect_obtain_cookie(struct openconnect_info *vpninfo); int openconnect_init_ssl(void); /* These are strictly cosmetic. The strings differ depending on * whether OpenSSL or GnuTLS is being used. And even depending on the * version of GnuTLS. Do *not* attempt to do anything meaningful based * on matching these strings; if you want to do something like that then * ask for an API that *does* offer you what you need. */ const char *openconnect_get_cstp_cipher(struct openconnect_info *); const char *openconnect_get_dtls_cipher(struct openconnect_info *); /* These return a descriptive string of the compression algorithm * in use (LZS, LZ4, ...). If no compression then NULL is returned. */ const char *openconnect_get_cstp_compression(struct openconnect_info *); const char *openconnect_get_dtls_compression(struct openconnect_info *); /* Returns the IP address of the exact host to which the connection * was made. In --cookieonly mode or in any other scenario involving * a "two stage" connection, it is important to reconnect by IP because * the server side may be using DNS trickery for load balancing. * * If the IP address is unavailable due to the use of a proxy, this will * fall back to returning the DNS name. */ const char *openconnect_get_hostname(struct openconnect_info *); /* Returns the hostname parsed out of the server name URL. This is * intended to be used by the validate_peer_cert callback to check that * the certificate matches the server name. */ const char *openconnect_get_dnsname(struct openconnect_info *); int openconnect_set_hostname(struct openconnect_info *, const char *); char *openconnect_get_urlpath(struct openconnect_info *); int openconnect_set_urlpath(struct openconnect_info *, const char *); int openconnect_set_localname(struct openconnect_info *, const char *); /* Some software tokens, such as HOTP tokens, include a counter which * needs to be stored in persistent storage. * * For such tokens, the lock function is first invoked to obtain a lock * on the storage because we're about to generate a new code. It is * permitted to call openconnect_set_token_mode() from the lock function, * if the token storage has been updated since it was first loaded. The * token mode must not change; only the token secret. * * The unlock function is called when a token code has been generated, * with a new token secret to be written to the persistent storage. The * secret will be in the same format as it was originally received by * openconnect_set_token_mode(). The new token may be NULL if an error * was encountered generating the code, in which case it is only * necessary for the callback function to unlock the storage. */ typedef int (*openconnect_lock_token_vfn)(void *tokdata); typedef int (*openconnect_unlock_token_vfn)(void *tokdata, const char *new_tok); int openconnect_set_token_callbacks(struct openconnect_info *, void *tokdata, openconnect_lock_token_vfn, openconnect_unlock_token_vfn); int openconnect_set_token_mode(struct openconnect_info *, oc_token_mode_t, const char *token_str); /* Legacy stoken-only function; do not use */ int openconnect_set_stoken_mode(struct openconnect_info *, int, const char *); int openconnect_set_compression_mode(struct openconnect_info *, oc_compression_mode_t); /* The size must be 41 bytes, since that's the size of a 20-byte SHA1 represented as hex with a trailing NUL. */ void openconnect_set_xmlsha1(struct openconnect_info *, const char *, int size); int openconnect_set_cafile(struct openconnect_info *, const char *); /* call this function to disable the system trust from being used to * verify the server certificate. @val is a boolean value. * * For backwards compatibility reasons this is enabled by default. */ void openconnect_set_system_trust(struct openconnect_info *vpninfo, unsigned val); int openconnect_setup_csd(struct openconnect_info *, uid_t, int silent, const char *wrapper); void openconnect_set_xmlpost(struct openconnect_info *, int enable); /* Valid choices are: "linux", "linux-64", "win", "mac-intel", "android", and "apple-ios". This also selects the corresponding CSD trojan binary. */ int openconnect_set_reported_os(struct openconnect_info *, const char *os); int openconnect_set_version_string(struct openconnect_info *vpninfo, const char *version_string); int openconnect_set_mobile_info(struct openconnect_info *vpninfo, const char *mobile_platform_version, const char *mobile_device_type, const char *mobile_device_uniqueid); int openconnect_set_client_cert(struct openconnect_info *, const char *cert, const char *sslkey); int openconnect_set_key_password(struct openconnect_info *vpninfo, const char *pass); const char *openconnect_get_ifname(struct openconnect_info *); void openconnect_set_reqmtu(struct openconnect_info *, int reqmtu); void openconnect_set_dpd(struct openconnect_info *, int min_seconds); int openconnect_get_idle_timeout(struct openconnect_info *); /* The returned structures are owned by the library and may be freed/replaced due to rekey or reconnect. Assume that once the mainloop starts, the pointers are no longer valid. For similar reasons, it is unsafe to call this function from another thread. */ int openconnect_get_ip_info(struct openconnect_info *, const struct oc_ip_info **info, const struct oc_vpn_option **cstp_options, const struct oc_vpn_option **dtls_options); int openconnect_get_port(struct openconnect_info *); const char *openconnect_get_cookie(struct openconnect_info *); void openconnect_clear_cookie(struct openconnect_info *); void openconnect_disable_ipv6(struct openconnect_info *vpninfo); void openconnect_reset_ssl(struct openconnect_info *vpninfo); int openconnect_parse_url(struct openconnect_info *vpninfo, const char *url); void openconnect_set_cert_expiry_warning(struct openconnect_info *vpninfo, int seconds); void openconnect_set_pfs(struct openconnect_info *vpninfo, unsigned val); /* If this is set, then openconnect_obtain_cookie() will abort and return failure if the file descriptor is readable. Typically a user may create a pair of pipes with the pipe(2) system call, hand the readable one to this function, and then write a byte to the other end if it ever wants to cancel the connection. This way, a multi-threaded UI (which will be running openconnect_obtain_cookie() in a separate thread since it blocks) has the ability to cancel that call, reap its thread and free the vpninfo structure (or retry). An 'fd' argument of -1 will render the cancellation mechanism inactive. */ void openconnect_set_cancel_fd(struct openconnect_info *vpninfo, int fd); /* Create a nonblocking pipe used to send cancellations and other commands to the library. This returns a file descriptor to the write side of the pipe. Both sides will be closed by openconnect_vpninfo_free(). This replaces openconnect_set_cancel_fd(). */ #ifdef _WIN32 SOCKET #else int #endif openconnect_setup_cmd_pipe(struct openconnect_info *vpninfo); const char *openconnect_get_version(void); /* Open CSTP connection; on success, IP information will be available. */ int openconnect_make_cstp_connection(struct openconnect_info *vpninfo); /* Create a tun device through the OS kernel (typical use case). Both strings are optional and can be NULL if desired. */ int openconnect_setup_tun_device(struct openconnect_info *vpninfo, const char *vpnc_script, const char *ifname); /* Pass traffic to a script program (no tun device). */ int openconnect_setup_tun_script(struct openconnect_info *vpninfo, const char *tun_script); #ifdef _WIN32 /* Caller will provide an overlap-capable handle for the tunnel traffic. */ int openconnect_setup_tun_fd(struct openconnect_info *vpninfo, intptr_t tun_fd); #else /* Caller will provide a file descriptor for the tunnel traffic. */ int openconnect_setup_tun_fd(struct openconnect_info *vpninfo, int tun_fd); #endif /* Optional call to enable DTLS on the connection. */ int openconnect_setup_dtls(struct openconnect_info *vpninfo, int dtls_attempt_period); /* Start the main loop; exits if OC_CMD_CANCEL is received on cmd_fd or the remote site aborts. */ int openconnect_mainloop(struct openconnect_info *vpninfo, int reconnect_timeout, int reconnect_interval); /* The first (privdata) argument to each of these functions is either the privdata argument provided to openconnect_vpninfo_new_with_cbdata(), or if that argument was NULL then it'll be the vpninfo itself. */ /* When the server's certificate fails validation via the normal means, this function is called with the offending certificate along with a textual reason for the failure (which may not be translated, if it comes directly from OpenSSL, but will be if it is rejected for "certificate does not match hostname", because that check is done in OpenConnect and *is* translated). The function shall return zero if the certificate is (or has in the past been) explicitly accepted by the user, and non-zero to abort the connection. */ typedef int (*openconnect_validate_peer_cert_vfn) (void *privdata, const char *reason); /* On a successful connection, the server may provide us with a new XML configuration file. This contains the list of servers that can be chosen by the user to connect to, amongst other stuff that we mostly ignore. By "new", we mean that the SHA1 indicated by the server does not match the SHA1 set with the openconnect_set_xmlsha1() above. If they don't match, or openconnect_set_xmlsha1() has not been called, then the new XML is downloaded and this function is invoked. */ typedef int (*openconnect_write_new_config_vfn) (void *privdata, const char *buf, int buflen); /* Handle an authentication form, requesting input from the user. * Return value: * < 0, on error * = 0, when form was parsed and POST required * = 1, when response was cancelled by user */ typedef int (*openconnect_process_auth_form_vfn) (void *privdata, struct oc_auth_form *form); /* Logging output which the user *may* want to see. */ typedef void __attribute__ ((format(printf, 3, 4))) (*openconnect_progress_vfn) (void *privdata, int level, const char *fmt, ...); struct openconnect_info *openconnect_vpninfo_new(const char *useragent, openconnect_validate_peer_cert_vfn, openconnect_write_new_config_vfn, openconnect_process_auth_form_vfn, openconnect_progress_vfn, void *privdata); void openconnect_vpninfo_free(struct openconnect_info *vpninfo); /* Callback to allow binding a newly created socket's file descriptor to a specific interface, e.g. with SO_BINDTODEVICE. This tells the kernel not to route the traffic in question over the VPN tunnel. */ typedef void (*openconnect_protect_socket_vfn) (void *privdata, int fd); void openconnect_set_protect_socket_handler(struct openconnect_info *vpninfo, openconnect_protect_socket_vfn protect_socket); void openconnect_set_loglevel(struct openconnect_info *vpninfo, int level); void openconnect_set_pass_tos(struct openconnect_info *vpninfo, int enable); /* Callback for obtaining traffic stats via OC_CMD_STATS. */ typedef void (*openconnect_stats_vfn) (void *privdata, const struct oc_stats *stats); void openconnect_set_stats_handler(struct openconnect_info *vpninfo, openconnect_stats_vfn stats_handler); /* SSL certificate capabilities. openconnect_has_pkcs11_support() means that we can accept PKCS#11 URLs in place of filenames, for the certificate and key. */ int openconnect_has_pkcs11_support(void); /* The OpenSSL TPM ENGINE stores keys in a PEM file labelled with the string -----BEGIN TSS KEY BLOB-----. */ int openconnect_has_tss_blob_support(void); int openconnect_has_tss2_blob_support(void); /* Software token capabilities. */ int openconnect_has_stoken_support(void); int openconnect_has_oath_support(void); int openconnect_has_yubioath_support(void); int openconnect_has_system_key_support(void); /* Query and select from among supported protocols */ int openconnect_get_supported_protocols(struct oc_vpn_proto **protos); void openconnect_free_supported_protocols(struct oc_vpn_proto *protos); const char *openconnect_get_protocol(struct openconnect_info *vpninfo); int openconnect_set_protocol(struct openconnect_info *vpninfo, const char *protocol); struct addrinfo; typedef int (*openconnect_getaddrinfo_vfn) (void *privdata, const char *node, const char *service, const struct addrinfo *hints, struct addrinfo **res); void openconnect_override_getaddrinfo(struct openconnect_info *vpninfo, openconnect_getaddrinfo_vfn gai_fn); /* Callback for configuring the interface after MTU detection finishes. */ typedef void (*openconnect_setup_tun_vfn) (void *privdata); void openconnect_set_setup_tun_handler(struct openconnect_info *vpninfo, openconnect_setup_tun_vfn setup_tun); /* Callback for indicating that a TCP reconnection succeeded. */ typedef void (*openconnect_reconnected_vfn) (void *privdata); void openconnect_set_reconnected_handler(struct openconnect_info *vpninfo, openconnect_reconnected_vfn reconnected_fn); #ifdef __cplusplus } #endif #endif /* __OPENCONNECT_H__ */ openconnect-8.05/library.c0000664000076400007640000007510113521074144017352 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * Copyright © 2013 John Morrissey * * Authors: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include #include #ifdef HAVE_LIBSTOKEN #include #endif #include #include #include "openconnect-internal.h" #if defined(OPENCONNECT_GNUTLS) #include "gnutls.h" #endif #if defined(OPENCONNECT_OPENSSL) #include #endif struct openconnect_info *openconnect_vpninfo_new(const char *useragent, openconnect_validate_peer_cert_vfn validate_peer_cert, openconnect_write_new_config_vfn write_new_config, openconnect_process_auth_form_vfn process_auth_form, openconnect_progress_vfn progress, void *privdata) { struct openconnect_info *vpninfo = calloc(sizeof(*vpninfo), 1); #ifdef HAVE_ICONV char *charset = nl_langinfo(CODESET); #endif if (!vpninfo) return NULL; #ifdef HAVE_ICONV if (charset && strcmp(charset, "UTF-8")) { vpninfo->ic_utf8_to_legacy = iconv_open(charset, "UTF-8"); vpninfo->ic_legacy_to_utf8 = iconv_open("UTF-8", charset); } else { vpninfo->ic_utf8_to_legacy = (iconv_t)-1; vpninfo->ic_legacy_to_utf8 = (iconv_t)-1; } #endif #ifndef _WIN32 vpninfo->tun_fd = -1; #endif init_pkt_queue(&vpninfo->incoming_queue); init_pkt_queue(&vpninfo->outgoing_queue); init_pkt_queue(&vpninfo->oncp_control_queue); vpninfo->dtls_tos_current = 0; vpninfo->dtls_pass_tos = 0; vpninfo->ssl_fd = vpninfo->dtls_fd = -1; vpninfo->cmd_fd = vpninfo->cmd_fd_write = -1; vpninfo->tncc_fd = -1; vpninfo->cert_expire_warning = 60 * 86400; vpninfo->req_compr = COMPR_STATELESS; vpninfo->max_qlen = 10; vpninfo->localname = strdup("localhost"); vpninfo->useragent = openconnect_create_useragent(useragent); vpninfo->validate_peer_cert = validate_peer_cert; vpninfo->write_new_config = write_new_config; vpninfo->process_auth_form = process_auth_form; vpninfo->progress = progress; vpninfo->cbdata = privdata ? : vpninfo; vpninfo->xmlpost = 1; vpninfo->verbose = PRG_TRACE; vpninfo->try_http_auth = 1; vpninfo->proxy_auth[AUTH_TYPE_BASIC].state = AUTH_DEFAULT_DISABLED; vpninfo->http_auth[AUTH_TYPE_BASIC].state = AUTH_DEFAULT_DISABLED; openconnect_set_reported_os(vpninfo, NULL); if (!vpninfo->localname || !vpninfo->useragent) goto err; #ifdef ENABLE_NLS bindtextdomain("openconnect", LOCALEDIR); #endif openconnect_set_protocol(vpninfo, "anyconnect"); return vpninfo; err: free(vpninfo->localname); free(vpninfo->useragent); free(vpninfo); return NULL; } const struct vpn_proto openconnect_protos[] = { { .name = "anyconnect", .pretty_name = N_("Cisco AnyConnect or openconnect"), .description = N_("Compatible with Cisco AnyConnect SSL VPN, as well as ocserv"), .flags = OC_PROTO_PROXY | OC_PROTO_CSD | OC_PROTO_AUTH_CERT | OC_PROTO_AUTH_OTP | OC_PROTO_AUTH_STOKEN, .vpn_close_session = cstp_bye, .tcp_connect = cstp_connect, .tcp_mainloop = cstp_mainloop, .add_http_headers = cstp_common_headers, .obtain_cookie = cstp_obtain_cookie, .udp_protocol = "DTLS", #ifdef HAVE_DTLS .udp_setup = dtls_setup, .udp_mainloop = dtls_mainloop, .udp_close = dtls_close, .udp_shutdown = dtls_shutdown, #endif }, { .name = "nc", .pretty_name = N_("Juniper Network Connect"), .description = N_("Compatible with Juniper Network Connect"), .flags = OC_PROTO_PROXY | OC_PROTO_CSD | OC_PROTO_AUTH_CERT | OC_PROTO_AUTH_OTP, .vpn_close_session = oncp_bye, .tcp_connect = oncp_connect, .tcp_mainloop = oncp_mainloop, .add_http_headers = oncp_common_headers, .obtain_cookie = oncp_obtain_cookie, .udp_protocol = "ESP", #ifdef HAVE_ESP .udp_setup = esp_setup, .udp_mainloop = esp_mainloop, .udp_close = oncp_esp_close, .udp_shutdown = esp_shutdown, .udp_send_probes = oncp_esp_send_probes, .udp_catch_probe = oncp_esp_catch_probe, #endif }, { .name = "gp", .pretty_name = N_("Palo Alto Networks GlobalProtect"), .description = N_("Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN"), .flags = OC_PROTO_PROXY | OC_PROTO_CSD | OC_PROTO_AUTH_CERT | OC_PROTO_AUTH_OTP | OC_PROTO_AUTH_STOKEN, .vpn_close_session = gpst_bye, .tcp_connect = gpst_setup, .tcp_mainloop = gpst_mainloop, .add_http_headers = gpst_common_headers, .obtain_cookie = gpst_obtain_cookie, .udp_protocol = "ESP", #ifdef HAVE_ESP .udp_setup = esp_setup, .udp_mainloop = esp_mainloop, .udp_close = esp_close, .udp_shutdown = esp_shutdown, .udp_send_probes = gpst_esp_send_probes, .udp_catch_probe = gpst_esp_catch_probe, #endif }, { .name = "pulse", .pretty_name = N_("Pulse Connect Secure"), .description = N_("Compatible with Pulse Connect Secure SSL VPN"), .flags = OC_PROTO_PROXY, .vpn_close_session = pulse_bye, .tcp_connect = pulse_connect, .tcp_mainloop = pulse_mainloop, .add_http_headers = http_common_headers, .obtain_cookie = pulse_obtain_cookie, .udp_protocol = "ESP", #ifdef HAVE_ESP .udp_setup = esp_setup, .udp_mainloop = esp_mainloop, .udp_close = esp_close, .udp_shutdown = esp_shutdown, .udp_send_probes = oncp_esp_send_probes, .udp_catch_probe = oncp_esp_catch_probe, #endif }, { /* NULL */ } }; int openconnect_get_supported_protocols(struct oc_vpn_proto **protos) { struct oc_vpn_proto *pr; const struct vpn_proto *p; *protos = pr = calloc(sizeof(openconnect_protos)/sizeof(*openconnect_protos), sizeof(*pr)); if (!pr) return -ENOMEM; for (p = openconnect_protos; p->name; p++, pr++) { pr->name = p->name; pr->pretty_name = _(p->pretty_name); pr->description = _(p->description); pr->flags = p->flags; } return (p - openconnect_protos); } void openconnect_free_supported_protocols(struct oc_vpn_proto *protos) { free((void *)protos); } const char *openconnect_get_protocol(struct openconnect_info *vpninfo) { return vpninfo->proto->name; } int openconnect_set_protocol(struct openconnect_info *vpninfo, const char *protocol) { const struct vpn_proto *p; for (p = openconnect_protos; p->name; p++) { if (strcasecmp(p->name, protocol)) continue; vpninfo->proto = p; if (!p->udp_setup) vpninfo->dtls_state = DTLS_DISABLED; return 0; } vpn_progress(vpninfo, PRG_ERR, _("Unknown VPN protocol '%s'\n"), protocol); return -EINVAL; } void openconnect_set_pass_tos(struct openconnect_info *vpninfo, int enable) { vpninfo->dtls_pass_tos = enable; } void openconnect_set_loglevel(struct openconnect_info *vpninfo, int level) { vpninfo->verbose = level; } int openconnect_setup_dtls(struct openconnect_info *vpninfo, int attempt_period) { if (vpninfo->proto->udp_setup) return vpninfo->proto->udp_setup(vpninfo, attempt_period); vpn_progress(vpninfo, PRG_ERR, _("Built against SSL library with no Cisco DTLS support\n")); return -EINVAL; } int openconnect_obtain_cookie(struct openconnect_info *vpninfo) { #ifdef HAVE_LIBSTOKEN int ret; if (vpninfo->token_mode == OC_TOKEN_MODE_STOKEN) { ret = prepare_stoken(vpninfo); if (ret) return ret; } #endif return vpninfo->proto->obtain_cookie(vpninfo); } int openconnect_make_cstp_connection(struct openconnect_info *vpninfo) { return vpninfo->proto->tcp_connect(vpninfo); } int openconnect_set_reported_os(struct openconnect_info *vpninfo, const char *os) { if (!os) { #if defined(__APPLE__) os = "mac-intel"; #elif defined(__ANDROID__) os = "android"; #else os = sizeof(long) > 4 ? "linux-64" : "linux"; #endif } if (!strcmp(os, "mac-intel")) vpninfo->csd_xmltag = "csdMac"; else if (!strcmp(os, "linux") || !strcmp(os, "linux-64")) vpninfo->csd_xmltag = "csdLinux"; else if (!strcmp(os, "android") || !strcmp(os, "apple-ios")) { vpninfo->csd_xmltag = "csdLinux"; vpninfo->csd_nostub = 1; } else if (!strcmp(os, "win")) vpninfo->csd_xmltag = "csd"; else return -EINVAL; STRDUP(vpninfo->platname, os); return 0; } int openconnect_set_mobile_info(struct openconnect_info *vpninfo, const char *mobile_platform_version, const char *mobile_device_type, const char *mobile_device_uniqueid) { STRDUP(vpninfo->mobile_platform_version, mobile_platform_version); STRDUP(vpninfo->mobile_device_type, mobile_device_type); STRDUP(vpninfo->mobile_device_uniqueid, mobile_device_uniqueid); return 0; } int openconnect_set_version_string(struct openconnect_info *vpninfo, const char *version_string) { STRDUP(vpninfo->version_string, version_string); return 0; } void free_optlist(struct oc_vpn_option *opt) { struct oc_vpn_option *next; for (; opt; opt = next) { next = opt->next; free(opt->option); free(opt->value); free(opt); } } void openconnect_vpninfo_free(struct openconnect_info *vpninfo) { openconnect_close_https(vpninfo, 1); if (vpninfo->proto->udp_shutdown) vpninfo->proto->udp_shutdown(vpninfo); if (vpninfo->tncc_fd != -1) closesocket(vpninfo->tncc_fd); if (vpninfo->cmd_fd_write != -1) { closesocket(vpninfo->cmd_fd); closesocket(vpninfo->cmd_fd_write); } #ifdef HAVE_ICONV if (vpninfo->ic_utf8_to_legacy != (iconv_t)-1) iconv_close(vpninfo->ic_utf8_to_legacy); if (vpninfo->ic_legacy_to_utf8 != (iconv_t)-1) iconv_close(vpninfo->ic_legacy_to_utf8); #endif #ifdef _WIN32 if (vpninfo->cmd_event) CloseHandle(vpninfo->cmd_event); if (vpninfo->ssl_event) CloseHandle(vpninfo->ssl_event); if (vpninfo->dtls_event) CloseHandle(vpninfo->dtls_event); #endif free(vpninfo->peer_addr); free(vpninfo->ip_info.gateway_addr); free_optlist(vpninfo->csd_env); free_optlist(vpninfo->script_env); free_optlist(vpninfo->cookies); free_optlist(vpninfo->cstp_options); free_optlist(vpninfo->dtls_options); free_split_routes(vpninfo); free(vpninfo->hostname); free(vpninfo->unique_hostname); free(vpninfo->urlpath); free(vpninfo->redirect_url); free_pass(&vpninfo->cookie); free(vpninfo->proxy_type); free(vpninfo->proxy); free(vpninfo->proxy_user); free_pass(&vpninfo->proxy_pass); free_pass(&vpninfo->cert_password); free(vpninfo->vpnc_script); free(vpninfo->cafile); free(vpninfo->ifname); free(vpninfo->dtls_cipher); free(vpninfo->peer_cert_hash); #if defined(OPENCONNECT_OPENSSL) && defined (HAVE_BIO_METH_FREE) if (vpninfo->ttls_bio_meth) BIO_meth_free(vpninfo->ttls_bio_meth); #elif defined(OPENCONNECT_GNUTLS) gnutls_free(vpninfo->cstp_cipher); /* In OpenSSL this is const */ #ifdef HAVE_DTLS gnutls_free(vpninfo->gnutls_dtls_cipher); #endif #endif free(vpninfo->dtls_addr); if (vpninfo->csd_scriptname) { unlink(vpninfo->csd_scriptname); free(vpninfo->csd_scriptname); } free(vpninfo->mobile_platform_version); free(vpninfo->mobile_device_type); free(vpninfo->mobile_device_uniqueid); free(vpninfo->csd_token); free(vpninfo->csd_ticket); free(vpninfo->csd_stuburl); free(vpninfo->csd_starturl); free(vpninfo->csd_waiturl); free(vpninfo->csd_preurl); free(vpninfo->platname); if (vpninfo->opaque_srvdata) xmlFreeNode(vpninfo->opaque_srvdata); free(vpninfo->profile_url); free(vpninfo->profile_sha1); /* These are const in openconnect itself, but for consistency of the library API we do take ownership of the strings we're given, and thus we have to free them too. */ if (vpninfo->cert != vpninfo->sslkey) free((void *)vpninfo->sslkey); free((void *)vpninfo->cert); if (vpninfo->peer_cert) { #if defined(OPENCONNECT_OPENSSL) X509_free(vpninfo->peer_cert); #elif defined(OPENCONNECT_GNUTLS) gnutls_x509_crt_deinit(vpninfo->peer_cert); #endif vpninfo->peer_cert = NULL; } while (vpninfo->pin_cache) { struct pin_cache *cache = vpninfo->pin_cache; free(cache->token); memset(cache->pin, 0x5a, strlen(cache->pin)); free(cache->pin); vpninfo->pin_cache = cache->next; free(cache); } free(vpninfo->localname); free(vpninfo->useragent); free(vpninfo->authgroup); #ifdef HAVE_LIBSTOKEN if (vpninfo->stoken_pin) free_pass(&vpninfo->stoken_pin); if (vpninfo->stoken_ctx) stoken_destroy(vpninfo->stoken_ctx); #endif if (vpninfo->oath_secret) { #ifdef HAVE_LIBPSKC if (vpninfo->pskc) pskc_done(vpninfo->pskc); else #endif /* HAVE_LIBPSKC */ free_pass(&vpninfo->oath_secret); } #ifdef HAVE_LIBPCSCLITE release_pcsc_ctx(vpninfo); #endif #ifdef HAVE_LIBP11 if (vpninfo->pkcs11_ctx) { if (vpninfo->pkcs11_slot_list) PKCS11_release_all_slots(vpninfo->pkcs11_ctx, vpninfo->pkcs11_slot_list, vpninfo->pkcs11_slot_count); PKCS11_CTX_unload(vpninfo->pkcs11_ctx); PKCS11_CTX_free(vpninfo->pkcs11_ctx); } free(vpninfo->pkcs11_cert_id); #endif /* These check strm->state so they are safe to call multiple times */ inflateEnd(&vpninfo->inflate_strm); deflateEnd(&vpninfo->deflate_strm); free(vpninfo->deflate_pkt); free(vpninfo->tun_pkt); free(vpninfo->dtls_pkt); free(vpninfo->cstp_pkt); free(vpninfo); } const char *openconnect_get_hostname(struct openconnect_info *vpninfo) { return vpninfo->unique_hostname?:vpninfo->hostname; } const char *openconnect_get_dnsname(struct openconnect_info *vpninfo) { return vpninfo->hostname; } int openconnect_set_hostname(struct openconnect_info *vpninfo, const char *hostname) { UTF8CHECK(hostname); STRDUP(vpninfo->hostname, hostname); free(vpninfo->unique_hostname); vpninfo->unique_hostname = NULL; free(vpninfo->peer_addr); vpninfo->peer_addr = NULL; free(vpninfo->ip_info.gateway_addr); vpninfo->ip_info.gateway_addr = NULL; return 0; } char *openconnect_get_urlpath(struct openconnect_info *vpninfo) { return vpninfo->urlpath; } int openconnect_set_urlpath(struct openconnect_info *vpninfo, const char *urlpath) { UTF8CHECK(urlpath); STRDUP(vpninfo->urlpath, urlpath); return 0; } int openconnect_set_localname(struct openconnect_info *vpninfo, const char *localname) { UTF8CHECK(localname); STRDUP(vpninfo->localname, localname); return 0; } void openconnect_set_xmlsha1(struct openconnect_info *vpninfo, const char *xmlsha1, int size) { if (size != sizeof(vpninfo->xmlsha1)) return; memcpy(&vpninfo->xmlsha1, xmlsha1, size); } void openconnect_disable_ipv6(struct openconnect_info *vpninfo) { vpninfo->disable_ipv6 = 1; } int openconnect_set_cafile(struct openconnect_info *vpninfo, const char *cafile) { UTF8CHECK(cafile); STRDUP(vpninfo->cafile, cafile); return 0; } void openconnect_set_system_trust(struct openconnect_info *vpninfo, unsigned val) { vpninfo->no_system_trust = !val; } const char *openconnect_get_ifname(struct openconnect_info *vpninfo) { return vpninfo->ifname; } void openconnect_set_reqmtu(struct openconnect_info *vpninfo, int reqmtu) { vpninfo->reqmtu = reqmtu; } void openconnect_set_dpd(struct openconnect_info *vpninfo, int min_seconds) { /* Make sure (ka->dpd / 2), our computed midway point, isn't 0 */ if (!min_seconds || min_seconds >= 2) vpninfo->dtls_times.dpd = vpninfo->ssl_times.dpd = min_seconds; else if (min_seconds == 1) vpninfo->dtls_times.dpd = vpninfo->ssl_times.dpd = 2; } int openconnect_get_idle_timeout(struct openconnect_info *vpninfo) { return vpninfo->idle_timeout; } int openconnect_get_ip_info(struct openconnect_info *vpninfo, const struct oc_ip_info **info, const struct oc_vpn_option **cstp_options, const struct oc_vpn_option **dtls_options) { if (info) *info = &vpninfo->ip_info; if (cstp_options) *cstp_options = vpninfo->cstp_options; if (dtls_options) *dtls_options = vpninfo->dtls_options; return 0; } int openconnect_setup_csd(struct openconnect_info *vpninfo, uid_t uid, int silent, const char *wrapper) { #ifndef _WIN32 vpninfo->uid_csd = uid; vpninfo->uid_csd_given = silent ? 2 : 1; #endif STRDUP(vpninfo->csd_wrapper, wrapper); return 0; } void openconnect_set_xmlpost(struct openconnect_info *vpninfo, int enable) { vpninfo->xmlpost = enable; } int openconnect_set_client_cert(struct openconnect_info *vpninfo, const char *cert, const char *sslkey) { UTF8CHECK(cert); UTF8CHECK(sslkey); /* Avoid freeing it twice if it's the same */ if (vpninfo->sslkey == vpninfo->cert) vpninfo->sslkey = NULL; STRDUP(vpninfo->cert, cert); if (sslkey) { STRDUP(vpninfo->sslkey, sslkey); } else { vpninfo->sslkey = vpninfo->cert; } return 0; } int openconnect_get_port(struct openconnect_info *vpninfo) { return vpninfo->port; } const char *openconnect_get_cookie(struct openconnect_info *vpninfo) { return vpninfo->cookie; } void openconnect_clear_cookie(struct openconnect_info *vpninfo) { if (vpninfo->cookie) memset(vpninfo->cookie, 0, strlen(vpninfo->cookie)); } void openconnect_reset_ssl(struct openconnect_info *vpninfo) { vpninfo->got_cancel_cmd = 0; openconnect_close_https(vpninfo, 0); free(vpninfo->peer_addr); vpninfo->peer_addr = NULL; vpninfo->dtls_tos_optname = 0; free(vpninfo->ip_info.gateway_addr); vpninfo->ip_info.gateway_addr = NULL; openconnect_clear_cookies(vpninfo); } int openconnect_parse_url(struct openconnect_info *vpninfo, const char *url) { char *scheme = NULL; int ret; UTF8CHECK(url); openconnect_set_hostname(vpninfo, NULL); free(vpninfo->urlpath); vpninfo->urlpath = NULL; ret = internal_parse_url(url, &scheme, &vpninfo->hostname, &vpninfo->port, &vpninfo->urlpath, 443); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse server URL '%s'\n"), url); return ret; } if (scheme && strcmp(scheme, "https")) { vpn_progress(vpninfo, PRG_ERR, _("Only https:// permitted for server URL\n")); ret = -EINVAL; } free(scheme); return ret; } void openconnect_set_cert_expiry_warning(struct openconnect_info *vpninfo, int seconds) { vpninfo->cert_expire_warning = seconds; } int openconnect_set_key_password(struct openconnect_info *vpninfo, const char *pass) { STRDUP(vpninfo->cert_password, pass); return 0; } void openconnect_set_pfs(struct openconnect_info *vpninfo, unsigned val) { vpninfo->pfs = val; } void openconnect_set_cancel_fd(struct openconnect_info *vpninfo, int fd) { vpninfo->cmd_fd = fd; } #ifdef _WIN32 # define CMD_PIPE_ERR INVALID_SOCKET #else # define CMD_PIPE_ERR -EIO #endif OPENCONNECT_CMD_SOCKET openconnect_setup_cmd_pipe(struct openconnect_info *vpninfo) { OPENCONNECT_CMD_SOCKET pipefd[2]; #ifdef _WIN32 if (dumb_socketpair(pipefd, 0)) return CMD_PIPE_ERR; #else if (pipe(pipefd) < 0) return CMD_PIPE_ERR; #endif if (set_sock_nonblock(pipefd[0]) || set_sock_nonblock(pipefd[1])) { closesocket(pipefd[0]); closesocket(pipefd[1]); return CMD_PIPE_ERR; } vpninfo->cmd_fd = pipefd[0]; vpninfo->cmd_fd_write = pipefd[1]; return vpninfo->cmd_fd_write; } const char *openconnect_get_version(void) { return openconnect_version_str; } int openconnect_has_pkcs11_support(void) { #if defined(OPENCONNECT_GNUTLS) && defined(HAVE_P11KIT) return 1; #elif defined(OPENCONNECT_OPENSSL) && defined(HAVE_LIBP11) return 1; #else return 0; #endif } #if defined(OPENCONNECT_OPENSSL) && defined(HAVE_ENGINE) #include #endif int openconnect_has_tss_blob_support(void) { #if defined(OPENCONNECT_OPENSSL) && defined(HAVE_ENGINE) ENGINE *e; ENGINE_load_builtin_engines(); e = ENGINE_by_id("tpm"); if (e) { ENGINE_free(e); return 1; } #elif defined(OPENCONNECT_GNUTLS) && defined(HAVE_TROUSERS) return 1; #endif return 0; } int openconnect_has_tss2_blob_support(void) { #if defined(OPENCONNECT_OPENSSL) && defined(HAVE_ENGINE) ENGINE *e; ENGINE_load_builtin_engines(); e = ENGINE_by_id("tpm2"); if (e) { ENGINE_free(e); return 1; } #elif defined(OPENCONNECT_GNUTLS) && defined(HAVE_TSS2) return 1; #endif return 0; } int openconnect_has_stoken_support(void) { #ifdef HAVE_LIBSTOKEN return 1; #else return 0; #endif } int openconnect_has_oath_support(void) { return 2; } int openconnect_has_yubioath_support(void) { #ifdef HAVE_LIBPCSCLITE return 1; #else return 0; #endif } int openconnect_has_system_key_support(void) { #ifdef HAVE_GNUTLS_SYSTEM_KEYS return 1; #else return 0; #endif } int openconnect_set_token_callbacks(struct openconnect_info *vpninfo, void *tokdata, openconnect_lock_token_vfn lock, openconnect_unlock_token_vfn unlock) { vpninfo->lock_token = lock; vpninfo->unlock_token = unlock; vpninfo->tok_cbdata = tokdata; return 0; } /* * Enable software token generation. * * If token_mode is OC_TOKEN_MODE_STOKEN and token_str is NULL, * read the token data from ~/.stokenrc. * * Return value: * = -EILSEQ, if token_str is not valid UTF-8 * = -EOPNOTSUPP, if the underlying library (libstoken, liboath) is not * available or an invalid token_mode was provided * = -EINVAL, if the token string is invalid (token_str was provided) * = -ENOENT, if token_mode is OC_TOKEN_MODE_STOKEN and ~/.stokenrc is * missing (token_str was NULL) * = -EIO, for other failures in the underlying library (libstoken, liboath) * = 0, on success */ int openconnect_set_token_mode(struct openconnect_info *vpninfo, oc_token_mode_t token_mode, const char *token_str) { vpninfo->token_mode = OC_TOKEN_MODE_NONE; UTF8CHECK(token_str); switch (token_mode) { case OC_TOKEN_MODE_NONE: return 0; #ifdef HAVE_LIBSTOKEN case OC_TOKEN_MODE_STOKEN: return set_libstoken_mode(vpninfo, token_str); #endif case OC_TOKEN_MODE_TOTP: return set_totp_mode(vpninfo, token_str); case OC_TOKEN_MODE_HOTP: return set_hotp_mode(vpninfo, token_str); #ifdef HAVE_LIBPCSCLITE case OC_TOKEN_MODE_YUBIOATH: return set_yubikey_mode(vpninfo, token_str); #endif default: return -EOPNOTSUPP; } } /* * Enable libstoken token generation if use_stoken == 1. * * If token_str is not NULL, try to parse the string. Otherwise, try to read * the token data from ~/.stokenrc * * DEPRECATED: use openconnect_set_stoken_mode() instead. * * Return value: * = -EILSEQ, if token_str is not valid UTF-8 * = -EOPNOTSUPP, if libstoken is not available * = -EINVAL, if the token string is invalid (token_str was provided) * = -ENOENT, if ~/.stokenrc is missing (token_str was NULL) * = -EIO, for other libstoken failures * = 0, on success */ int openconnect_set_stoken_mode(struct openconnect_info *vpninfo, int use_stoken, const char *token_str) { oc_token_mode_t token_mode = OC_TOKEN_MODE_NONE; if (use_stoken) token_mode = OC_TOKEN_MODE_STOKEN; return openconnect_set_token_mode(vpninfo, token_mode, token_str); } void openconnect_set_protect_socket_handler(struct openconnect_info *vpninfo, openconnect_protect_socket_vfn protect_socket) { vpninfo->protect_socket = protect_socket; } void openconnect_override_getaddrinfo(struct openconnect_info *vpninfo, openconnect_getaddrinfo_vfn gai_fn) { vpninfo->getaddrinfo_override = gai_fn; } void openconnect_set_setup_tun_handler(struct openconnect_info *vpninfo, openconnect_setup_tun_vfn setup_tun) { vpninfo->setup_tun = setup_tun; } void openconnect_set_reconnected_handler(struct openconnect_info *vpninfo, openconnect_reconnected_vfn reconnected) { vpninfo->reconnected = reconnected; } void openconnect_set_stats_handler(struct openconnect_info *vpninfo, openconnect_stats_vfn stats_handler) { vpninfo->stats_handler = stats_handler; } /* Set up a traditional OS-based tunnel device, optionally specified in 'ifname'. */ int openconnect_setup_tun_device(struct openconnect_info *vpninfo, const char *vpnc_script, const char *ifname) { intptr_t tun_fd; char *legacy_ifname; UTF8CHECK(vpnc_script); UTF8CHECK(ifname); STRDUP(vpninfo->vpnc_script, vpnc_script); STRDUP(vpninfo->ifname, ifname); prepare_script_env(vpninfo); script_config_tun(vpninfo, "pre-init"); tun_fd = os_setup_tun(vpninfo); if (tun_fd < 0) return tun_fd; #ifdef _WIN32 if (vpninfo->tun_idx != -1) script_setenv_int(vpninfo, "TUNIDX", vpninfo->tun_idx); #endif legacy_ifname = openconnect_utf8_to_legacy(vpninfo, vpninfo->ifname); script_setenv(vpninfo, "TUNDEV", legacy_ifname, 0, 0); if (legacy_ifname != vpninfo->ifname) free(legacy_ifname); script_config_tun(vpninfo, "connect"); return openconnect_setup_tun_fd(vpninfo, tun_fd); } static const char *compr_name_map[] = { [COMPR_DEFLATE] = "Deflate", [COMPR_LZS] = "LZS", [COMPR_LZ4] = "LZ4", [COMPR_LZO] = "LZO", }; const char *openconnect_get_cstp_compression(struct openconnect_info * vpninfo) { if (vpninfo->cstp_compr <= 0 || vpninfo->cstp_compr > COMPR_MAX) return NULL; return compr_name_map[vpninfo->cstp_compr]; } const char *openconnect_get_dtls_compression(struct openconnect_info * vpninfo) { if (vpninfo->dtls_compr <= 0 || vpninfo->dtls_compr > COMPR_MAX) return NULL; return compr_name_map[vpninfo->dtls_compr]; } const char *openconnect_get_dtls_cipher(struct openconnect_info *vpninfo) { #if defined(OPENCONNECT_GNUTLS) if (vpninfo->dtls_state != DTLS_CONNECTED) { gnutls_free(vpninfo->gnutls_dtls_cipher); vpninfo->gnutls_dtls_cipher = NULL; return NULL; } /* in DTLS rehandshakes don't switch the ciphersuite as only * one is enabled. */ if (vpninfo->gnutls_dtls_cipher == NULL) vpninfo->gnutls_dtls_cipher = get_gnutls_cipher(vpninfo->dtls_ssl); return vpninfo->gnutls_dtls_cipher; #else if (vpninfo->dtls_ssl) return SSL_get_cipher(vpninfo->dtls_ssl); else return NULL; #endif } int openconnect_set_csd_environ(struct openconnect_info *vpninfo, const char *name, const char *value) { struct oc_vpn_option *p; if (!name) { free_optlist(vpninfo->csd_env); vpninfo->csd_env = NULL; return 0; } for (p = vpninfo->csd_env; p; p = p->next) { if (!strcmp(name, p->option)) { char *valdup = strdup(value); if (!valdup) return -ENOMEM; free(p->value); p->value = valdup; return 0; } } p = malloc(sizeof(*p)); if (!p) return -ENOMEM; p->option = strdup(name); if (!p->option) { free(p); return -ENOMEM; } p->value = strdup(value); if (!p->value) { free(p->option); free(p); return -ENOMEM; } p->next = vpninfo->csd_env; vpninfo->csd_env = p; return 0; } int openconnect_check_peer_cert_hash(struct openconnect_info *vpninfo, const char *old_hash) { char *fingerprint = NULL; unsigned min_match_len; unsigned real_min_match_len = 4; unsigned old_len, fingerprint_len; int ret = 0; if (strchr(old_hash, ':')) { if (strncmp(old_hash, "sha1:", 5) == 0) { fingerprint = openconnect_bin2hex("sha1:", vpninfo->peer_cert_sha1_raw, sizeof(vpninfo->peer_cert_sha1_raw)); min_match_len = real_min_match_len + sizeof("sha1:")-1; } else if (strncmp(old_hash, "sha256:", 7) == 0) { fingerprint = openconnect_bin2hex("sha256:", vpninfo->peer_cert_sha256_raw, sizeof(vpninfo->peer_cert_sha256_raw)); min_match_len = real_min_match_len + sizeof("sha256:")-1; } else if (strncmp(old_hash, "pin-sha256:", 11) == 0) { fingerprint = openconnect_bin2base64("pin-sha256:", vpninfo->peer_cert_sha256_raw, sizeof(vpninfo->peer_cert_sha256_raw)); min_match_len = real_min_match_len + sizeof("pin-sha256:")-1; } else { vpn_progress(vpninfo, PRG_ERR, _("Unknown certificate hash: %s.\n"), old_hash); return -EIO; } } else { unsigned char *cert; int len; unsigned char sha1_bin[SHA1_SIZE]; len = openconnect_get_peer_cert_DER(vpninfo, &cert); if (len < 0) return len; if (openconnect_sha1(sha1_bin, cert, len)) return -EIO; fingerprint = openconnect_bin2hex(NULL, sha1_bin, sizeof(sha1_bin)); min_match_len = real_min_match_len; } if (!fingerprint) return -EIO; old_len = strlen(old_hash); fingerprint_len = strlen(fingerprint); /* allow partial matches */ if (old_len < fingerprint_len) { if (strncasecmp(old_hash, fingerprint, MAX(min_match_len, old_len))) { if (old_len < min_match_len) { vpn_progress(vpninfo, PRG_ERR, _("The size of the provided fingerprint is less than the minimum required (%u).\n"), real_min_match_len); } ret = 1; } } else if (strcasecmp(old_hash, fingerprint)) { ret = 1; } free(fingerprint); return ret; } const char *openconnect_get_cstp_cipher(struct openconnect_info *vpninfo) { return vpninfo->cstp_cipher; } const char *openconnect_get_peer_cert_hash(struct openconnect_info *vpninfo) { if (vpninfo->peer_cert_hash == NULL) vpninfo->peer_cert_hash = openconnect_bin2base64("pin-sha256:", vpninfo->peer_cert_sha256_raw, sizeof(vpninfo->peer_cert_sha256_raw)); return vpninfo->peer_cert_hash; } int openconnect_set_compression_mode(struct openconnect_info *vpninfo, oc_compression_mode_t mode) { switch(mode) { case OC_COMPRESSION_MODE_NONE: vpninfo->req_compr = 0; return 0; case OC_COMPRESSION_MODE_STATELESS: vpninfo->req_compr = COMPR_STATELESS; return 0; case OC_COMPRESSION_MODE_ALL: vpninfo->req_compr = COMPR_ALL; return 0; default: return -EINVAL; } } void nuke_opt_values(struct oc_form_opt *opt) { for (; opt; opt = opt->next) { if (opt->type == OC_FORM_OPT_TEXT || opt->type == OC_FORM_OPT_PASSWORD) { free(opt->_value); opt->_value = NULL; } } } int process_auth_form(struct openconnect_info *vpninfo, struct oc_auth_form *form) { int ret; struct oc_form_opt_select *grp = form->authgroup_opt; struct oc_choice *auth_choice; struct oc_form_opt *opt; if (!vpninfo->process_auth_form) { vpn_progress(vpninfo, PRG_ERR, _("No form handler; cannot authenticate.\n")); return OC_FORM_RESULT_ERR; } retry: auth_choice = NULL; if (grp && grp->nr_choices) { /* Set group selection from authgroup */ if (vpninfo->authgroup) { int i; for (i = 0; i < grp->nr_choices; i++) if (!strcmp(grp->choices[i]->name, vpninfo->authgroup)) form->authgroup_selection = i; } auth_choice = grp->choices[form->authgroup_selection]; } for (opt = form->opts; opt; opt = opt->next) { int second_auth = opt->flags & OC_FORM_OPT_SECOND_AUTH; opt->flags &= ~OC_FORM_OPT_IGNORE; if (!auth_choice || (opt->type != OC_FORM_OPT_TEXT && opt->type != OC_FORM_OPT_PASSWORD)) continue; if (auth_choice->noaaa || (!auth_choice->second_auth && second_auth)) opt->flags |= OC_FORM_OPT_IGNORE; else if (!strcmp(opt->name, "secondary_username") && second_auth) { if (auth_choice->secondary_username) { free(opt->_value); opt->_value = strdup(auth_choice->secondary_username); } if (!auth_choice->secondary_username_editable) opt->flags |= OC_FORM_OPT_IGNORE; } } ret = vpninfo->process_auth_form(vpninfo->cbdata, form); if (ret == OC_FORM_RESULT_NEWGROUP && form->authgroup_opt && form->authgroup_opt->form._value) { free(vpninfo->authgroup); vpninfo->authgroup = strdup(form->authgroup_opt->form._value); if (!vpninfo->xmlpost) goto retry; } if (ret == OC_FORM_RESULT_CANCELLED || ret < 0) nuke_opt_values(form->opts); return ret; } openconnect-8.05/auth-juniper.c0000664000076400007640000004664413446377733020353 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ /* * Grateful thanks to Tiebing Zhang, who did much of the hard work * of analysing and decoding the protocol. */ #include #include #include #include #include #include #include #include #include #include #include #include #ifndef _WIN32 #include #endif #include #include #include "openconnect-internal.h" /* XX: This is actually a lot of duplication with the CSTP version. */ void oncp_common_headers(struct openconnect_info *vpninfo, struct oc_text_buf *buf) { http_common_headers(vpninfo, buf); // buf_append(buf, "Content-Length: 256\r\n"); buf_append(buf, "NCP-Version: 3\r\n"); // buf_append(buf, "Accept-Encoding: gzip\r\n"); } static xmlNodePtr htmlnode_next(xmlNodePtr top, xmlNodePtr node) { if (node->children) return node->children; while (!node->next) { node = node->parent; if (!node || node == top) return NULL; } return node->next; } static int oncp_can_gen_tokencode(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt) { if (vpninfo->token_mode == OC_TOKEN_MODE_NONE || vpninfo->token_bypassed) return -EINVAL; if (strcmp(form->auth_id, "frmDefender") && strcmp(form->auth_id, "frmNextToken") && strcmp(form->auth_id, "frmTotpToken")) return -EINVAL; return can_gen_tokencode(vpninfo, form, opt); } static int parse_input_node(struct openconnect_info *vpninfo, struct oc_auth_form *form, xmlNodePtr node, const char *submit_button) { char *type = (char *)xmlGetProp(node, (unsigned char *)"type"); struct oc_form_opt **p = &form->opts; struct oc_form_opt *opt; int ret = 0; if (!type) return -EINVAL; opt = calloc(1, sizeof(*opt)); if (!opt) { ret = -ENOMEM; goto out; } if (!strcasecmp(type, "hidden")) { opt->type = OC_FORM_OPT_HIDDEN; xmlnode_get_prop(node, "name", &opt->name); xmlnode_get_prop(node, "value", &opt->_value); /* XXX: Handle tz_offset / tz */ } else if (!strcasecmp(type, "password")) { opt->type = OC_FORM_OPT_PASSWORD; xmlnode_get_prop(node, "name", &opt->name); if (asprintf(&opt->label, "%s:", opt->name) == -1) { ret = -ENOMEM; goto out; } if (!oncp_can_gen_tokencode(vpninfo, form, opt)) opt->type = OC_FORM_OPT_TOKEN; } else if (!strcasecmp(type, "text")) { opt->type = OC_FORM_OPT_TEXT; xmlnode_get_prop(node, "name", &opt->name); if (asprintf(&opt->label, "%s:", opt->name) == -1) { ret = -ENOMEM; goto out; } } else if (!strcasecmp(type, "username")) { opt->type = OC_FORM_OPT_TEXT; xmlnode_get_prop(node, "name", &opt->name); if (asprintf(&opt->label, "%s:", opt->name) == -1) { ret = -ENOMEM; goto out; } } else if (!strcasecmp(type, "submit")) { xmlnode_get_prop(node, "name", &opt->name); if (opt->name && (!strcmp(opt->name, submit_button) || !strcmp(opt->name, "sn-postauth-proceed") || !strcmp(opt->name, "sn-preauth-proceed"))) { /* Use this as the 'Submit' action for the form, by implicitly adding it as a hidden option. */ xmlnode_get_prop(node, "value", &opt->_value); opt->type = OC_FORM_OPT_HIDDEN; } else { vpn_progress(vpninfo, PRG_DEBUG, _("Ignoring unknown form submit item '%s'\n"), opt->name); ret = -EINVAL; goto out; } } else if (!strcasecmp(type, "checkbox")) { opt->type = OC_FORM_OPT_HIDDEN; xmlnode_get_prop(node, "name", &opt->name); xmlnode_get_prop(node, "value", &opt->_value); } else { vpn_progress(vpninfo, PRG_DEBUG, _("Ignoring unknown form input type '%s'\n"), type); ret = -EINVAL; goto out; } /* Append to the existing list */ while (*p) { if (!strcmp((*p)->name, opt->name)) { vpn_progress(vpninfo, PRG_DEBUG, _("Discarding duplicate option '%s'\n"), opt->name); goto out; } p = &(*p)->next; } *p = opt; out: if (ret) free_opt(opt); free(type); return ret; } static int parse_select_node(struct openconnect_info *vpninfo, struct oc_auth_form *form, xmlNodePtr node) { xmlNodePtr child; struct oc_form_opt_select *opt; struct oc_choice *choice; opt = calloc(1, sizeof(*opt)); if (!opt) return -ENOMEM; xmlnode_get_prop(node, "name", &opt->form.name); opt->form.label = strdup(opt->form.name); opt->form.type = OC_FORM_OPT_SELECT; if (!strcmp(opt->form.name, "realm")) form->authgroup_opt = opt; for (child = node->children; child; child = child->next) { struct oc_choice **new_choices; if (!child->name || strcasecmp((const char *)child->name, "option")) continue; choice = calloc(1, sizeof(*choice)); if (!choice) return -ENOMEM; xmlnode_get_prop(node, "name", &choice->name); choice->label = (char *)xmlNodeGetContent(child); choice->name = strdup(choice->label); new_choices = realloc(opt->choices, sizeof(opt->choices[0]) * (opt->nr_choices+1)); if (!new_choices) { free_opt((void *)opt); free(choice); return -ENOMEM; } opt->choices = new_choices; opt->choices[opt->nr_choices++] = choice; } /* Prepend to the existing list */ opt->form.next = form->opts; form->opts = &opt->form; return 0; } static struct oc_auth_form *parse_form_node(struct openconnect_info *vpninfo, xmlNodePtr node, const char *submit_button) { struct oc_auth_form *form = calloc(1, sizeof(*form)); xmlNodePtr child; if (!form) return NULL; xmlnode_get_prop(node, "method", &form->method); xmlnode_get_prop(node, "action", &form->action); if (!form->method || strcasecmp(form->method, "POST") || !form->action || !form->action[0]) { vpn_progress(vpninfo, PRG_ERR, _("Cannot handle form method='%s', action='%s'\n"), form->method, form->action); free(form); return NULL; } xmlnode_get_prop(node, "name", &form->auth_id); form->banner = strdup(form->auth_id); for (child = htmlnode_next(node, node); child && child != node; child = htmlnode_next(node, child)) { if (!child->name) continue; if (!strcasecmp((char *)child->name, "input")) parse_input_node(vpninfo, form, child, submit_button); else if (!strcasecmp((char *)child->name, "select")) { parse_select_node(vpninfo, form, child); /* Skip its children */ while (child->children) child = child->last; } else if (!strcasecmp((char *)child->name, "textarea")) { /* display the post sign-in message, if any */ char *fieldname = (char *)xmlGetProp(child, (unsigned char *)"name"); if (fieldname && (!strcasecmp(fieldname, "sn-postauth-text") || !strcasecmp(fieldname, "sn-preauth-text"))) { char *postauth_msg = (char *)xmlNodeGetContent(child); if (postauth_msg) { free(form->banner); form->banner = postauth_msg; } } else { vpn_progress(vpninfo, PRG_ERR, _("Unknown textarea field: '%s'\n"), fieldname); } free(fieldname); } } return form; } static xmlNodePtr find_form_node(xmlDocPtr doc) { xmlNodePtr root, node; for (root = node = xmlDocGetRootElement(doc); node; node = htmlnode_next(root, node)) { if (node->name && !strcasecmp((char *)node->name, "form")) return node; } return NULL; } static int check_cookie_success(struct openconnect_info *vpninfo) { const char *dslast = NULL, *dsfirst = NULL, *dsurl = NULL, *dsid = NULL, *dspreauth = NULL; struct oc_vpn_option *cookie; struct oc_text_buf *buf; for (cookie = vpninfo->cookies; cookie; cookie = cookie->next) { if (!strcmp(cookie->option, "DSFirstAccess")) dsfirst = cookie->value; else if (!strcmp(cookie->option, "DSLastAccess")) dslast = cookie->value; else if (!strcmp(cookie->option, "DSID")) dsid = cookie->value; else if (!strcmp(cookie->option, "DSSignInUrl")) dsurl = cookie->value; else if (!strcmp(cookie->option, "DSPREAUTH")) dspreauth = cookie->value; } if (!dsid) return -ENOENT; buf = buf_alloc(); if (vpninfo->tncc_fd != -1) { buf_append(buf, "setcookie\n"); buf_append(buf, "Cookie=%s\n", dspreauth); if (buf_error(buf)) return buf_free(buf); send(vpninfo->tncc_fd, buf->data, buf->pos, 0); buf_truncate(buf); } /* XXX: Do these need escaping? Could they theoreetically have semicolons in? */ buf_append(buf, "DSID=%s", dsid); if (dsfirst) buf_append(buf, "; DSFirst=%s", dsfirst); if (dslast) buf_append(buf, "; DSLast=%s", dslast); if (dsurl) buf_append(buf, "; DSSignInUrl=%s", dsurl); if (buf_error(buf)) return buf_free(buf); free(vpninfo->cookie); vpninfo->cookie = buf->data; buf->data = NULL; buf_free(buf); return 0; } #ifdef _WIN32 static int tncc_preauth(struct openconnect_info *vpninfo) { vpn_progress(vpninfo, PRG_ERR, _("TNCC support not implemented yet on Windows\n")); return -EOPNOTSUPP; } #else static int tncc_preauth(struct openconnect_info *vpninfo) { int sockfd[2]; pid_t pid; struct oc_text_buf *buf; struct oc_vpn_option *cookie; const char *dspreauth = NULL, *dssignin = "null"; char recvbuf[1024]; int len, count; for (cookie = vpninfo->cookies; cookie; cookie = cookie->next) { if (!strcmp(cookie->option, "DSPREAUTH")) dspreauth = cookie->value; else if (!strcmp(cookie->option, "DSSIGNIN")) dssignin = cookie->value; } if (!dspreauth) { vpn_progress(vpninfo, PRG_ERR, _("No DSPREAUTH cookie; not attempting TNCC\n")); return -EINVAL; } #ifdef SOCK_CLOEXEC if (socketpair(AF_UNIX, SOCK_STREAM | SOCK_CLOEXEC, 0, sockfd)) #endif { if (socketpair(AF_UNIX, SOCK_STREAM, 0, sockfd)) return -errno; set_fd_cloexec(sockfd[0]); set_fd_cloexec(sockfd[1]); } pid = fork(); if (pid == -1) { close(sockfd[0]); close(sockfd[1]); return -errno; } if (!pid) { int i; /* Fork again to detach grandchild */ if (fork()) exit(1); close(sockfd[1]); /* The duplicated fd does not have O_CLOEXEC */ dup2(sockfd[0], 0); /* We really don't want anything going to our stdout. Redirect the child's stdout, to our stderr. */ dup2(2, 1); /* And close everything else.*/ for (i = 3; i < 1024 ; i++) close(i); execl(vpninfo->csd_wrapper, vpninfo->csd_wrapper, vpninfo->hostname, NULL); fprintf(stderr, _("Failed to exec TNCC script %s: %s\n"), vpninfo->csd_wrapper, strerror(errno)); exit(1); } waitpid(pid, NULL, 0); close(sockfd[0]); buf = buf_alloc(); buf_append(buf, "start\n"); buf_append(buf, "IC=%s\n", vpninfo->hostname); buf_append(buf, "Cookie=%s\n", dspreauth); buf_append(buf, "DSSIGNIN=%s\n", dssignin); if (buf_error(buf)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to allocate memory for communication with TNCC\n")); close(sockfd[1]); return buf_free(buf); } if (cancellable_send(vpninfo, sockfd[1], buf->data, buf->pos) != buf->pos) { vpn_progress(vpninfo, PRG_ERR, _("Failed to send start command to TNCC\n")); buf_free(buf); close(sockfd[1]); return -EIO; } buf_free(buf); vpn_progress(vpninfo, PRG_DEBUG, _("Sent start; waiting for response from TNCC\n")); /* First line: HTTP-like response code. */ len = cancellable_gets(vpninfo, sockfd[1], recvbuf, sizeof(recvbuf)); if (len < 0) { respfail: vpn_progress(vpninfo, PRG_ERR, _("Failed to read response from TNCC\n")); close(sockfd[1]); return -EIO; } if (strcmp(recvbuf, "200")) { vpn_progress(vpninfo, PRG_ERR, _("Received unsuccessful %s response from TNCC\n"), recvbuf); close(sockfd[1]); return -EINVAL; } vpn_progress(vpninfo, PRG_TRACE, _("TNCC response 200 OK\n")); /* We're not sure what the second line is. We ignore it. */ len = cancellable_gets(vpninfo, sockfd[1], recvbuf, sizeof(recvbuf)); if (len < 0) goto respfail; vpn_progress(vpninfo, PRG_TRACE, _("Second line of TNCC response: '%s'\n"), recvbuf); /* Third line is the DSPREAUTH cookie */ len = cancellable_gets(vpninfo, sockfd[1], recvbuf, sizeof(recvbuf)); if (len < 0) goto respfail; vpn_progress(vpninfo, PRG_DEBUG, _("Got new DSPREAUTH cookie from TNCC: %s\n"), recvbuf); http_add_cookie(vpninfo, "DSPREAUTH", recvbuf, 1); vpninfo->tncc_fd = sockfd[1]; count = 0; do { len = cancellable_gets(vpninfo, sockfd[1], recvbuf, sizeof(recvbuf)); if (len < 0) goto respfail; if (len > 0) vpn_progress(vpninfo, PRG_DEBUG, _("Unexpected non-empty line from TNCC " "after DSPREAUTH cookie: '%s'\n"), recvbuf); } while (len && (count++ < 10)); if (len > 0) { vpn_progress(vpninfo, PRG_ERR, _("Too many non-empty lines from TNCC after " "DSPREAUTH cookie\n")); goto respfail; } return 0; } #endif static struct oc_auth_form *parse_roles_table_node(xmlNodePtr node) { struct oc_auth_form *form; xmlNodePtr table_itr; xmlNodePtr row_itr; xmlNodePtr data_itr; struct oc_form_opt_select *opt; struct oc_choice *choice; form = calloc(1, sizeof(*form)); if (!form) return NULL; opt = calloc(1, sizeof(*opt)); if (!opt) { free(form); return NULL; } form->opts = &opt->form; opt->form.label = strdup("frmSelectRoles"); opt->form.name = strdup("frmSelectRoles"); opt->form.type = OC_FORM_OPT_SELECT; for (table_itr = node->children; table_itr; table_itr = table_itr->next) { if (!table_itr->name || strcasecmp((const char *)table_itr->name, "tr")) continue; for (row_itr = table_itr->children; row_itr; row_itr = row_itr->next) { if (!row_itr->name || strcasecmp((const char *)row_itr->name, "td")) continue; for (data_itr = row_itr->children; data_itr; data_itr = data_itr->next) { struct oc_choice **new_choices; char *role_link = NULL; char *role_name = NULL; if (!data_itr->name || strcasecmp((const char *)data_itr->name, "a")) continue; // Discovered tag with role selection. role_link = (char *)xmlGetProp(data_itr, (unsigned char *)"href"); if (!role_link) continue; role_name = (char *)xmlNodeGetContent(data_itr); if (!role_name) { // some weird case? free(role_link); continue; } choice = calloc(1, sizeof(*choice)); if (!choice) { free(role_name); free(role_link); free_auth_form(form); return NULL; } choice->label = role_name; choice->name = role_link; new_choices = realloc(opt->choices, sizeof(opt->choices[0]) * (opt->nr_choices+1)); if (!new_choices) { free(choice); free(role_name); free(role_link); free_auth_form(form); return NULL; } opt->choices = new_choices; opt->choices[opt->nr_choices++] = choice; } } } return form; } static struct oc_auth_form *parse_roles_form_node(xmlNodePtr node) { struct oc_auth_form *form = NULL; xmlNodePtr child; // Set form->action here as a redirect url with keys and ids. for (child = htmlnode_next(node, node); child && child != node; child = htmlnode_next(node, child)) { if (child->name && !strcasecmp((char *)child->name, "table")) { char *table_id = (char *)xmlGetProp(child, (unsigned char *)"id"); if (table_id) { if (!strcmp(table_id, "TABLE_SelectRole_1")) form = parse_roles_table_node(child); free(table_id); if (form) break; } } } return form; } int oncp_obtain_cookie(struct openconnect_info *vpninfo) { int ret; struct oc_text_buf *resp_buf = NULL; xmlDocPtr doc = NULL; xmlNodePtr node; struct oc_auth_form *form = NULL; char *form_id = NULL; int try_tncc = !!vpninfo->csd_wrapper; resp_buf = buf_alloc(); if (buf_error(resp_buf)) return -ENOMEM; while (1) { char *form_buf = NULL; int role_select = 0; struct oc_text_buf *url; if (resp_buf && resp_buf->pos) ret = do_https_request(vpninfo, "POST", "application/x-www-form-urlencoded", resp_buf, &form_buf, 2); else ret = do_https_request(vpninfo, "GET", NULL, NULL, &form_buf, 2); if (ret < 0) break; url = buf_alloc(); buf_append(url, "https://%s", vpninfo->hostname); if (vpninfo->port != 443) buf_append(url, ":%d", vpninfo->port); buf_append(url, "/"); if (vpninfo->urlpath) buf_append(url, "%s", vpninfo->urlpath); if (buf_error(url)) { free(form_buf); ret = buf_free(url); break; } if (!check_cookie_success(vpninfo)) { buf_free(url); free(form_buf); ret = 0; break; } doc = htmlReadMemory(form_buf, ret, url->data, NULL, HTML_PARSE_RECOVER|HTML_PARSE_NOERROR|HTML_PARSE_NOWARNING|HTML_PARSE_NONET); buf_free(url); free(form_buf); if (!doc) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse HTML document\n")); ret = -EINVAL; break; } buf_truncate(resp_buf); node = find_form_node(doc); if (!node) { if (try_tncc) { try_tncc = 0; ret = tncc_preauth(vpninfo); if (ret) return ret; goto tncc_done; } vpn_progress(vpninfo, PRG_ERR, _("Failed to find or parse web form in login page\n")); ret = -EINVAL; break; } free(form_id); form_id = (char *)xmlGetProp(node, (unsigned char *)"name"); if (!form_id) { vpn_progress(vpninfo, PRG_ERR, _("Encountered form with no ID\n")); goto dump_form; } else if (!strcmp(form_id, "frmLogin")) { form = parse_form_node(vpninfo, node, "btnSubmit"); if (!form) { ret = -EINVAL; break; } } else if (!strcmp(form_id, "frmDefender") || !strcmp(form_id, "frmNextToken")) { form = parse_form_node(vpninfo, node, "btnAction"); if (!form) { ret = -EINVAL; break; } } else if (!strcmp(form_id, "frmConfirmation")) { form = parse_form_node(vpninfo, node, "btnContinue"); if (!form) { ret = -EINVAL; break; } /* XXX: Actually ask the user? */ goto form_done; } else if (!strcmp(form_id, "frmSelectRoles")) { form = parse_roles_form_node(node); if (!form) { ret = -EINVAL; break; } role_select = 1; } else if (!strcmp(form_id, "frmTotpToken")) { form = parse_form_node(vpninfo, node, "totpactionEnter"); if (!form) { ret = -EINVAL; break; } } else { vpn_progress(vpninfo, PRG_ERR, _("Unknown form ID '%s'\n"), form_id); dump_form: fprintf(stderr, _("Dumping unknown HTML form:\n")); htmlNodeDumpFileFormat(stderr, node->doc, node, NULL, 1); ret = -EINVAL; break; } do { ret = process_auth_form(vpninfo, form); } while (ret == OC_FORM_RESULT_NEWGROUP); if (ret) goto out; ret = do_gen_tokencode(vpninfo, form); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("Failed to generate OTP tokencode; disabling token\n")); vpninfo->token_bypassed = 1; goto out; } /* frmSelectRoles is special; it's actually *links*, not a form. So * we need to process it differently... */ if (role_select) { vpninfo->redirect_url = strdup(form->opts[0]._value); goto do_redirect; } form_done: append_form_opts(vpninfo, form, resp_buf); ret = buf_error(resp_buf); if (ret) break; vpninfo->redirect_url = form->action; form->action = NULL; do_redirect: free_auth_form(form); form = NULL; handle_redirect(vpninfo); tncc_done: xmlFreeDoc(doc); doc = NULL; } out: if (doc) xmlFreeDoc(doc); free(form_id); if (form) free_auth_form(form); buf_free(resp_buf); return ret; } openconnect-8.05/esp.c0000664000076400007640000003136413536301641016501 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include #include #include "openconnect-internal.h" #include "lzo.h" int print_esp_keys(struct openconnect_info *vpninfo, const char *name, struct esp *esp) { int i; const char *enctype, *mactype; char enckey[256], mackey[256]; switch(vpninfo->esp_enc) { case ENC_AES_128_CBC: enctype = "AES-128-CBC (RFC3602)"; break; case ENC_AES_256_CBC: enctype = "AES-256-CBC (RFC3602)"; break; default: return -EINVAL; } switch(vpninfo->esp_hmac) { case HMAC_MD5: mactype = "HMAC-MD5-96 (RFC2403)"; break; case HMAC_SHA1: mactype = "HMAC-SHA-1-96 (RFC2404)"; break; case HMAC_SHA256: mactype = "HMAC-SHA-256-128 (RFC4868)"; break; default: return -EINVAL; } for (i = 0; i < vpninfo->enc_key_len; i++) sprintf(enckey + (2 * i), "%02x", esp->enc_key[i]); for (i = 0; i < vpninfo->hmac_key_len; i++) sprintf(mackey + (2 * i), "%02x", esp->hmac_key[i]); vpn_progress(vpninfo, PRG_TRACE, _("Parameters for %s ESP: SPI 0x%08x\n"), name, (unsigned)ntohl(esp->spi)); vpn_progress(vpninfo, PRG_TRACE, _("ESP encryption type %s key 0x%s\n"), enctype, enckey); vpn_progress(vpninfo, PRG_TRACE, _("ESP authentication type %s key 0x%s\n"), mactype, mackey); return 0; } int esp_setup(struct openconnect_info *vpninfo, int dtls_attempt_period) { if (vpninfo->dtls_state == DTLS_DISABLED || vpninfo->dtls_state == DTLS_NOSECRET) return -EINVAL; if (vpninfo->esp_ssl_fallback) vpninfo->dtls_times.dpd = vpninfo->esp_ssl_fallback; else vpninfo->dtls_times.dpd = dtls_attempt_period; vpninfo->dtls_attempt_period = dtls_attempt_period; print_esp_keys(vpninfo, _("incoming"), &vpninfo->esp_in[vpninfo->current_esp_in]); print_esp_keys(vpninfo, _("outgoing"), &vpninfo->esp_out); vpn_progress(vpninfo, PRG_DEBUG, _("Send ESP probes\n")); if (vpninfo->proto->udp_send_probes) vpninfo->proto->udp_send_probes(vpninfo); return 0; } int construct_esp_packet(struct openconnect_info *vpninfo, struct pkt *pkt, uint8_t next_hdr) { const int blksize = 16; int i, padlen, ret; if (!next_hdr) { if ((pkt->data[0] & 0xf0) == 0x60) /* iph->ip_v */ next_hdr = IPPROTO_IPV6; else next_hdr = IPPROTO_IPIP; } /* This gets much more fun if the IV is variable-length */ pkt->esp.spi = vpninfo->esp_out.spi; pkt->esp.seq = htonl(vpninfo->esp_out.seq++); padlen = blksize - 1 - ((pkt->len + 1) % blksize); for (i=0; idata[pkt->len + i] = i + 1; pkt->data[pkt->len + padlen] = padlen; pkt->data[pkt->len + padlen + 1] = next_hdr; memcpy(pkt->esp.iv, vpninfo->esp_out.iv, sizeof(pkt->esp.iv)); ret = encrypt_esp_packet(vpninfo, pkt, pkt->len + padlen + 2); if (ret) return ret; return sizeof(pkt->esp) + pkt->len + padlen + 2 + vpninfo->hmac_out_len; } int esp_mainloop(struct openconnect_info *vpninfo, int *timeout, int readable) { struct esp *esp = &vpninfo->esp_in[vpninfo->current_esp_in]; struct esp *old_esp = &vpninfo->esp_in[vpninfo->current_esp_in ^ 1]; struct pkt *this; int work_done = 0; int ret; /* Some servers send us packets that are larger than negotiated MTU, or lack the ability to negotiate MTU (see gpst.c). We reserve some extra space to handle that */ int receive_mtu = MAX(2048, vpninfo->ip_info.mtu + 256); if (vpninfo->dtls_state == DTLS_SLEEPING) { if (ka_check_deadline(timeout, time(NULL), vpninfo->new_dtls_started + vpninfo->dtls_attempt_period) || vpninfo->dtls_need_reconnect) { vpn_progress(vpninfo, PRG_DEBUG, _("Send ESP probes\n")); if (vpninfo->proto->udp_send_probes) vpninfo->proto->udp_send_probes(vpninfo); } } if (vpninfo->dtls_fd == -1) return 0; while (readable) { int len = receive_mtu + vpninfo->pkt_trailer; int i; struct pkt *pkt; if (!vpninfo->dtls_pkt) { vpninfo->dtls_pkt = malloc(sizeof(struct pkt) + len); if (!vpninfo->dtls_pkt) { vpn_progress(vpninfo, PRG_ERR, _("Allocation failed\n")); break; } } pkt = vpninfo->dtls_pkt; len = recv(vpninfo->dtls_fd, (void *)&pkt->esp, len + sizeof(pkt->esp), 0); if (len <= 0) break; vpn_progress(vpninfo, PRG_TRACE, _("Received ESP packet of %d bytes\n"), len); work_done = 1; /* both supported algos (SHA1 and MD5) have 12-byte MAC lengths (RFC2403 and RFC2404) */ if (len <= sizeof(pkt->esp) + vpninfo->hmac_out_len) continue; len -= sizeof(pkt->esp) + vpninfo->hmac_out_len; pkt->len = len; if (pkt->esp.spi == esp->spi) { if (decrypt_esp_packet(vpninfo, esp, pkt)) continue; } else if (pkt->esp.spi == old_esp->spi && ntohl(pkt->esp.seq) + esp->seq < vpninfo->old_esp_maxseq) { vpn_progress(vpninfo, PRG_TRACE, _("Received ESP packet from old SPI 0x%x, seq %u\n"), (unsigned)ntohl(old_esp->spi), (unsigned)ntohl(pkt->esp.seq)); if (decrypt_esp_packet(vpninfo, old_esp, pkt)) continue; } else { vpn_progress(vpninfo, PRG_DEBUG, _("Received ESP packet with invalid SPI 0x%08x\n"), (unsigned)ntohl(pkt->esp.spi)); continue; } /* Possible values of the Next Header field are: 0x04: IP[v4]-in-IP 0x05: supposed to mean Internet Stream Protocol (XXX: but used for LZO compressed packets by Juniper) 0x29: IPv6 encapsulation */ if (pkt->data[len - 1] != 0x04 && pkt->data[len - 1] != 0x29 && pkt->data[len - 1] != 0x05) { vpn_progress(vpninfo, PRG_ERR, _("Received ESP packet with unrecognised payload type %02x\n"), pkt->data[len-1]); continue; } if (len <= 2 + pkt->data[len - 2]) { vpn_progress(vpninfo, PRG_ERR, _("Invalid padding length %02x in ESP\n"), pkt->data[len - 2]); continue; } pkt->len = len - 2 - pkt->data[len - 2]; for (i = 0 ; i < pkt->data[len - 2]; i++) { if (pkt->data[pkt->len + i] != i + 1) break; /* We can't just 'continue' here because it * would only break out of this 'for' loop */ } if (i != pkt->data[len - 2]) { vpn_progress(vpninfo, PRG_ERR, _("Invalid padding bytes in ESP\n")); continue; /* We can here, though */ } vpninfo->dtls_times.last_rx = time(NULL); if (vpninfo->proto->udp_catch_probe) { if (vpninfo->proto->udp_catch_probe(vpninfo, pkt)) { if (vpninfo->dtls_state == DTLS_SLEEPING) { vpn_progress(vpninfo, PRG_INFO, _("ESP session established with server\n")); vpninfo->dtls_state = DTLS_CONNECTING; } continue; } } if (pkt->data[len - 1] == 0x05) { struct pkt *newpkt = malloc(sizeof(*pkt) + receive_mtu + vpninfo->pkt_trailer); int newlen = receive_mtu; if (!newpkt) { vpn_progress(vpninfo, PRG_ERR, _("Failed to allocate memory to decrypt ESP packet\n")); continue; } if (av_lzo1x_decode(newpkt->data, &newlen, pkt->data, &pkt->len) || pkt->len) { vpn_progress(vpninfo, PRG_ERR, _("LZO decompression of ESP packet failed\n")); free(newpkt); continue; } newpkt->len = receive_mtu - newlen; vpn_progress(vpninfo, PRG_TRACE, _("LZO decompressed %d bytes into %d\n"), len - 2 - pkt->data[len-2], newpkt->len); queue_packet(&vpninfo->incoming_queue, newpkt); } else { queue_packet(&vpninfo->incoming_queue, pkt); vpninfo->dtls_pkt = NULL; } } if (vpninfo->dtls_state != DTLS_CONNECTED) return 0; switch (keepalive_action(&vpninfo->dtls_times, timeout)) { case KA_REKEY: vpn_progress(vpninfo, PRG_ERR, _("Rekey not implemented for ESP\n")); break; case KA_DPD_DEAD: vpn_progress(vpninfo, PRG_ERR, _("ESP detected dead peer\n")); if (vpninfo->proto->udp_close) vpninfo->proto->udp_close(vpninfo); if (vpninfo->proto->udp_send_probes) vpninfo->proto->udp_send_probes(vpninfo); return 1; case KA_DPD: vpn_progress(vpninfo, PRG_DEBUG, _("Send ESP probes for DPD\n")); if (vpninfo->proto->udp_send_probes) vpninfo->proto->udp_send_probes(vpninfo); work_done = 1; break; case KA_KEEPALIVE: vpn_progress(vpninfo, PRG_ERR, _("Keepalive not implemented for ESP\n")); break; case KA_NONE: break; } while (1) { int len; if (vpninfo->deflate_pkt) { this = vpninfo->deflate_pkt; len = this->len; } else { this = dequeue_packet(&vpninfo->outgoing_queue); if (!this) break; if (vpninfo->proto->udp_send_probes == oncp_esp_send_probes) { uint8_t dontsend; /* Pulse/NC can only accept ESP of the same protocol as the one * you connected to it with. The other has to go over IF-T/TLS. */ if (vpninfo->dtls_addr->sa_family == AF_INET6) dontsend = 0x40; else dontsend = 0x60; if ( (this->data[0] & 0xf0) == dontsend) { store_be32(&this->pulse.vendor, 0xa4c); store_be32(&this->pulse.type, 4); store_be32(&this->pulse.len, this->len + 16); queue_packet(&vpninfo->oncp_control_queue, this); work_done = 1; continue; } } len = construct_esp_packet(vpninfo, this, 0); if (len < 0) { /* Should we disable ESP? */ free(this); work_done = 1; continue; } } ret = send(vpninfo->dtls_fd, (void *)&this->esp, len, 0); if (ret < 0) { /* Not that this is likely to happen with UDP, but... */ if (errno == ENOBUFS || errno == EAGAIN || errno == EWOULDBLOCK) { int err = errno; vpninfo->deflate_pkt = this; this->len = len; vpn_progress(vpninfo, PRG_DEBUG, _("Requeueing failed ESP send: %s\n"), strerror(err)); monitor_write_fd(vpninfo, dtls); return work_done; } else { /* A real error in sending. Fall back to TCP? */ vpn_progress(vpninfo, PRG_ERR, _("Failed to send ESP packet: %s\n"), strerror(errno)); } } else { vpninfo->dtls_times.last_tx = time(NULL); vpn_progress(vpninfo, PRG_TRACE, _("Sent ESP packet of %d bytes\n"), len); } if (this == vpninfo->deflate_pkt) { unmonitor_write_fd(vpninfo, dtls); vpninfo->deflate_pkt = NULL; } free(this); work_done = 1; } return work_done; } void esp_close(struct openconnect_info *vpninfo) { /* We close and reopen the socket in case we roamed and our local IP address has changed. */ if (vpninfo->dtls_fd != -1) { closesocket(vpninfo->dtls_fd); unmonitor_read_fd(vpninfo, dtls); unmonitor_write_fd(vpninfo, dtls); unmonitor_except_fd(vpninfo, dtls); vpninfo->dtls_fd = -1; } if (vpninfo->dtls_state > DTLS_DISABLED) vpninfo->dtls_state = DTLS_SLEEPING; if (vpninfo->deflate_pkt) { free(vpninfo->deflate_pkt); vpninfo->deflate_pkt = NULL; } } void esp_shutdown(struct openconnect_info *vpninfo) { destroy_esp_ciphers(&vpninfo->esp_in[0]); destroy_esp_ciphers(&vpninfo->esp_in[1]); destroy_esp_ciphers(&vpninfo->esp_out); if (vpninfo->proto->udp_close) vpninfo->proto->udp_close(vpninfo); if (vpninfo->dtls_state != DTLS_DISABLED) vpninfo->dtls_state = DTLS_NOSECRET; } int openconnect_setup_esp_keys(struct openconnect_info *vpninfo, int new_keys) { struct esp *esp_in; int ret; if (vpninfo->dtls_state == DTLS_DISABLED) return -EOPNOTSUPP; if (!vpninfo->dtls_addr) return -EINVAL; if (vpninfo->esp_hmac == HMAC_SHA256) vpninfo->hmac_out_len = 16; else /* MD5 and SHA1 */ vpninfo->hmac_out_len = 12; if (new_keys) { vpninfo->old_esp_maxseq = vpninfo->esp_in[vpninfo->current_esp_in].seq + 32; vpninfo->current_esp_in ^= 1; } esp_in = &vpninfo->esp_in[vpninfo->current_esp_in]; if (new_keys) { if (openconnect_random(&esp_in->spi, sizeof(esp_in->spi)) || openconnect_random((void *)&esp_in->enc_key, vpninfo->enc_key_len) || openconnect_random((void *)&esp_in->hmac_key, vpninfo->hmac_key_len)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to generate random keys for ESP\n")); return -EIO; } } if (openconnect_random(vpninfo->esp_out.iv, sizeof(vpninfo->esp_out.iv))) { vpn_progress(vpninfo, PRG_ERR, _("Failed to generate initial IV for ESP\n")); return -EIO; } /* This is the minimum; some implementations may increase it */ vpninfo->pkt_trailer = MAX_ESP_PAD + MAX_IV_SIZE + MAX_HMAC_SIZE; vpninfo->esp_out.seq = vpninfo->esp_out.seq_backlog = 0; esp_in->seq = esp_in->seq_backlog = 0; ret = init_esp_ciphers(vpninfo, &vpninfo->esp_out, esp_in); if (ret) return ret; if (vpninfo->dtls_state == DTLS_NOSECRET) vpninfo->dtls_state = DTLS_SECRET; return 0; } openconnect-8.05/openssl.c0000664000076400007640000015100013500134272017356 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include "openconnect-internal.h" #include #include #include #include #include #include #include #include #include #include #include #if OPENSSL_VERSION_NUMBER < 0x10100000L || defined(LIBRESSL_VERSION_NUMBER) #define X509_up_ref(x) CRYPTO_add(&(x)->references, 1, CRYPTO_LOCK_X509) #define X509_get0_notAfter(x) X509_get_notAfter(x) #define EVP_MD_CTX_new EVP_MD_CTX_create #define EVP_MD_CTX_free EVP_MD_CTX_destroy #define X509_STORE_CTX_get0_chain(ctx) ((ctx)->chain) #define X509_STORE_CTX_get0_untrusted(ctx) ((ctx)->untrusted) #define X509_STORE_CTX_get0_cert(ctx) ((ctx)->cert) typedef int (*X509_STORE_CTX_get_issuer_fn)(X509 **issuer, X509_STORE_CTX *ctx, X509 *x); #define X509_STORE_CTX_get_get_issuer(ctx) ((ctx)->get_issuer) #endif int openconnect_sha1(unsigned char *result, void *data, int len) { EVP_MD_CTX *c = EVP_MD_CTX_new(); if (!c) return -ENOMEM; EVP_Digest(data, len, result, NULL, EVP_sha1(), NULL); EVP_MD_CTX_free(c); return 0; } int openconnect_sha256(unsigned char *result, void *data, int len) { EVP_MD_CTX *c = EVP_MD_CTX_new(); if (!c) return -ENOMEM; EVP_Digest(data, len, result, NULL, EVP_sha256(), NULL); EVP_MD_CTX_free(c); return 0; } int openconnect_md5(unsigned char *result, void *data, int len) { EVP_MD_CTX *c = EVP_MD_CTX_new(); if (!c) return -ENOMEM; EVP_Digest(data, len, result, NULL, EVP_md5(), NULL); EVP_MD_CTX_free(c); return 0; } int openconnect_get_peer_cert_DER(struct openconnect_info *vpninfo, unsigned char **buf) { BIO *bp = BIO_new(BIO_s_mem()); BUF_MEM *certinfo; size_t l; if (!i2d_X509_bio(bp, vpninfo->peer_cert)) { BIO_free(bp); return -EIO; } BIO_get_mem_ptr(bp, &certinfo); l = certinfo->length; *buf = malloc(l); if (!*buf) { BIO_free(bp); return -ENOMEM; } memcpy(*buf, certinfo->data, l); BIO_free(bp); return l; } int openconnect_random(void *bytes, int len) { if (RAND_bytes(bytes, len) != 1) return -EIO; return 0; } /* Helper functions for reading/writing lines over SSL. We could use cURL for the HTTP stuff, but it's overkill */ static int _openconnect_openssl_write(SSL *ssl, int fd, struct openconnect_info *vpninfo, char *buf, size_t len) { size_t orig_len = len; while (len) { int done = SSL_write(ssl, buf, len); if (done > 0) len -= done; else { int err = SSL_get_error(ssl, done); fd_set wr_set, rd_set; int maxfd = fd; FD_ZERO(&wr_set); FD_ZERO(&rd_set); if (err == SSL_ERROR_WANT_READ) FD_SET(fd, &rd_set); else if (err == SSL_ERROR_WANT_WRITE) FD_SET(fd, &wr_set); else { vpn_progress(vpninfo, PRG_ERR, _("Failed to write to SSL socket\n")); openconnect_report_ssl_errors(vpninfo); return -EIO; } cmd_fd_set(vpninfo, &rd_set, &maxfd); select(maxfd + 1, &rd_set, &wr_set, NULL, NULL); if (is_cancel_pending(vpninfo, &rd_set)) { vpn_progress(vpninfo, PRG_ERR, _("SSL write cancelled\n")); return -EINTR; } } } return orig_len; } static int openconnect_openssl_write(struct openconnect_info *vpninfo, char *buf, size_t len) { return _openconnect_openssl_write(vpninfo->https_ssl, vpninfo->ssl_fd, vpninfo, buf, len); } int openconnect_dtls_write(struct openconnect_info *vpninfo, void *buf, size_t len) { return _openconnect_openssl_write(vpninfo->dtls_ssl, vpninfo->dtls_fd, vpninfo, buf, len); } /* set ms to zero for no timeout */ static int _openconnect_openssl_read(SSL *ssl, int fd, struct openconnect_info *vpninfo, char *buf, size_t len, unsigned ms) { int done, ret; struct timeval timeout, *tv = NULL; if (ms) { timeout.tv_sec = ms/1000; timeout.tv_usec = (ms%1000)*1000; tv = &timeout; } while ((done = SSL_read(ssl, buf, len)) == -1) { int err = SSL_get_error(ssl, done); fd_set wr_set, rd_set; int maxfd = fd; FD_ZERO(&wr_set); FD_ZERO(&rd_set); if (err == SSL_ERROR_WANT_READ) FD_SET(fd, &rd_set); else if (err == SSL_ERROR_WANT_WRITE) FD_SET(fd, &wr_set); else { vpn_progress(vpninfo, PRG_ERR, _("Failed to read from SSL socket\n")); openconnect_report_ssl_errors(vpninfo); return -EIO; } cmd_fd_set(vpninfo, &rd_set, &maxfd); ret = select(maxfd + 1, &rd_set, &wr_set, NULL, tv); if (is_cancel_pending(vpninfo, &rd_set)) { vpn_progress(vpninfo, PRG_ERR, _("SSL read cancelled\n")); return -EINTR; } if (ret == 0) { return -ETIMEDOUT; } } return done; } static int openconnect_openssl_read(struct openconnect_info *vpninfo, char *buf, size_t len) { return _openconnect_openssl_read(vpninfo->https_ssl, vpninfo->ssl_fd, vpninfo, buf, len, 0); } int openconnect_dtls_read(struct openconnect_info *vpninfo, void *buf, size_t len, unsigned ms) { return _openconnect_openssl_read(vpninfo->dtls_ssl, vpninfo->dtls_fd, vpninfo, buf, len, ms); } static int openconnect_openssl_gets(struct openconnect_info *vpninfo, char *buf, size_t len) { int i = 0; int ret; if (len < 2) return -EINVAL; while (1) { ret = SSL_read(vpninfo->https_ssl, buf + i, 1); if (ret == 1) { if (buf[i] == '\n') { buf[i] = 0; if (i && buf[i-1] == '\r') { buf[i-1] = 0; i--; } return i; } i++; if (i >= len - 1) { buf[i] = 0; return i; } } else { fd_set rd_set, wr_set; int maxfd = vpninfo->ssl_fd; FD_ZERO(&rd_set); FD_ZERO(&wr_set); ret = SSL_get_error(vpninfo->https_ssl, ret); if (ret == SSL_ERROR_WANT_READ) FD_SET(vpninfo->ssl_fd, &rd_set); else if (ret == SSL_ERROR_WANT_WRITE) FD_SET(vpninfo->ssl_fd, &wr_set); else { vpn_progress(vpninfo, PRG_ERR, _("Failed to read from SSL socket\n")); openconnect_report_ssl_errors(vpninfo); ret = -EIO; break; } cmd_fd_set(vpninfo, &rd_set, &maxfd); select(maxfd + 1, &rd_set, &wr_set, NULL, NULL); if (is_cancel_pending(vpninfo, &rd_set)) { vpn_progress(vpninfo, PRG_ERR, _("SSL read cancelled\n")); ret = -EINTR; break; } } } buf[i] = 0; return i ?: ret; } int ssl_nonblock_read(struct openconnect_info *vpninfo, void *buf, int maxlen) { int len, ret; len = SSL_read(vpninfo->https_ssl, buf, maxlen); if (len > 0) return len; ret = SSL_get_error(vpninfo->https_ssl, len); if (ret == SSL_ERROR_SYSCALL || ret == SSL_ERROR_ZERO_RETURN) { vpn_progress(vpninfo, PRG_ERR, _("SSL read error %d (server probably closed connection); reconnecting.\n"), ret); return -EIO; } return 0; } int ssl_nonblock_write(struct openconnect_info *vpninfo, void *buf, int buflen) { int ret; ret = SSL_write(vpninfo->https_ssl, buf, buflen); if (ret > 0) return ret; ret = SSL_get_error(vpninfo->https_ssl, ret); switch (ret) { case SSL_ERROR_WANT_WRITE: /* Waiting for the socket to become writable -- it's probably stalled, and/or the buffers are full */ monitor_write_fd(vpninfo, ssl); case SSL_ERROR_WANT_READ: return 0; default: vpn_progress(vpninfo, PRG_ERR, _("SSL_write failed: %d\n"), ret); openconnect_report_ssl_errors(vpninfo); return -1; } } /* UI handling. All this just to handle the PIN callback from the TPM ENGINE, and turn it into a call to our ->process_auth_form function */ struct ui_data { struct openconnect_info *vpninfo; struct oc_form_opt **last_opt; struct oc_auth_form form; }; struct ui_form_opt { struct oc_form_opt opt; UI_STRING *uis; }; #ifdef HAVE_ENGINE static int ui_open(UI *ui) { struct openconnect_info *vpninfo = UI_get0_user_data(ui); struct ui_data *ui_data; if (!vpninfo || !vpninfo->process_auth_form) return 0; ui_data = malloc(sizeof(*ui_data)); if (!ui_data) return 0; memset(ui_data, 0, sizeof(*ui_data)); ui_data->last_opt = &ui_data->form.opts; ui_data->vpninfo = vpninfo; ui_data->form.auth_id = (char *)"openssl_ui"; UI_add_user_data(ui, ui_data); return 1; } static int ui_write(UI *ui, UI_STRING *uis) { struct ui_data *ui_data = UI_get0_user_data(ui); struct ui_form_opt *opt; switch (UI_get_string_type(uis)) { case UIT_ERROR: ui_data->form.error = (char *)UI_get0_output_string(uis); break; case UIT_INFO: ui_data->form.message = (char *)UI_get0_output_string(uis); break; case UIT_PROMPT: opt = malloc(sizeof(*opt)); if (!opt) return 1; memset(opt, 0, sizeof(*opt)); opt->uis = uis; opt->opt.label = opt->opt.name = (char *)UI_get0_output_string(uis); if (UI_get_input_flags(uis) & UI_INPUT_FLAG_ECHO) opt->opt.type = OC_FORM_OPT_TEXT; else opt->opt.type = OC_FORM_OPT_PASSWORD; *(ui_data->last_opt) = &opt->opt; ui_data->last_opt = &opt->opt.next; break; default: vpn_progress(ui_data->vpninfo, PRG_ERR, _("Unhandled SSL UI request type %d\n"), UI_get_string_type(uis)); return 0; } return 1; } static int ui_flush(UI *ui) { struct ui_data *ui_data = UI_get0_user_data(ui); struct openconnect_info *vpninfo = ui_data->vpninfo; struct ui_form_opt *opt; int ret; ret = process_auth_form(vpninfo, &ui_data->form); if (ret) return 0; for (opt = (struct ui_form_opt *)ui_data->form.opts; opt; opt = (struct ui_form_opt *)opt->opt.next) { if (opt->opt._value && opt->uis) UI_set_result(ui, opt->uis, opt->opt._value); } return 1; } static int ui_close(UI *ui) { struct ui_data *ui_data = UI_get0_user_data(ui); struct ui_form_opt *opt, *next_opt; opt = (struct ui_form_opt *)ui_data->form.opts; while (opt) { next_opt = (struct ui_form_opt *)opt->opt.next; if (opt->opt._value) free(opt->opt._value); free(opt); opt = next_opt; } free(ui_data); UI_add_user_data(ui, NULL); return 1; } static UI_METHOD *create_openssl_ui(void) { UI_METHOD *ui_method = UI_create_method((char *)"AnyConnect VPN UI"); /* Set up a UI method of our own for password/passphrase requests */ UI_method_set_opener(ui_method, ui_open); UI_method_set_writer(ui_method, ui_write); UI_method_set_flusher(ui_method, ui_flush); UI_method_set_closer(ui_method, ui_close); return ui_method; } #endif static int pem_pw_cb(char *buf, int len, int w, void *v) { struct openconnect_info *vpninfo = v; char *pass = NULL; int plen; if (vpninfo->cert_password) { pass = vpninfo->cert_password; vpninfo->cert_password = NULL; } else if (request_passphrase(vpninfo, "openconnect_pem", &pass, _("Enter PEM pass phrase:"))) return -1; plen = strlen(pass); if (len <= plen) { vpn_progress(vpninfo, PRG_ERR, _("PEM password too long (%d >= %d)\n"), plen, len); free_pass(&pass); return -1; } memcpy(buf, pass, plen+1); free_pass(&pass); return plen; } static int install_extra_certs(struct openconnect_info *vpninfo, const char *source, STACK_OF(X509) *ca) { X509 *cert = vpninfo->cert_x509; int i; if (!cert) return -EINVAL; next: for (i = 0; i < sk_X509_num(ca); i++) { X509 *cert2 = sk_X509_value(ca, i); if (X509_check_issued(cert2, cert) == X509_V_OK) { char buf[200]; if (cert2 == cert) break; if (X509_check_issued(cert2, cert2) == X509_V_OK) break; X509_NAME_oneline(X509_get_subject_name(cert2), buf, sizeof(buf)); vpn_progress(vpninfo, PRG_DEBUG, _("Extra cert from %s: '%s'\n"), source, buf); X509_up_ref(cert2); SSL_CTX_add_extra_chain_cert(vpninfo->https_ctx, cert2); cert = cert2; goto next; } } sk_X509_pop_free(ca, X509_free); return 0; } static int load_pkcs12_certificate(struct openconnect_info *vpninfo, PKCS12 *p12) { EVP_PKEY *pkey = NULL; X509 *cert = NULL; STACK_OF(X509) *ca; int ret = 0; char *pass; pass = vpninfo->cert_password; vpninfo->cert_password = NULL; retrypass: /* We do this every time round the loop, to work around a bug in OpenSSL < 1.0.0-beta2 -- where the stack at *ca will be freed when PKCS12_parse() returns an error, but *ca is left pointing to the freed memory. */ ca = NULL; if (!PKCS12_parse(p12, pass, &pkey, &cert, &ca)) { unsigned long err = ERR_peek_error(); if (ERR_GET_LIB(err) == ERR_LIB_PKCS12 && ERR_GET_FUNC(err) == PKCS12_F_PKCS12_PARSE && ERR_GET_REASON(err) == PKCS12_R_MAC_VERIFY_FAILURE) { if (pass) vpn_progress(vpninfo, PRG_ERR, _("Failed to decrypt PKCS#12 certificate file\n")); free_pass(&pass); if (request_passphrase(vpninfo, "openconnect_pkcs12", &pass, _("Enter PKCS#12 pass phrase:")) < 0) { PKCS12_free(p12); return -EINVAL; } goto retrypass; } openconnect_report_ssl_errors(vpninfo); vpn_progress(vpninfo, PRG_ERR, _("Parse PKCS#12 failed (see above errors)\n")); PKCS12_free(p12); free_pass(&pass); return -EINVAL; } free_pass(&pass); if (cert) { char buf[200]; vpninfo->cert_x509 = cert; SSL_CTX_use_certificate(vpninfo->https_ctx, cert); X509_NAME_oneline(X509_get_subject_name(cert), buf, sizeof(buf)); vpn_progress(vpninfo, PRG_INFO, _("Using client certificate '%s'\n"), buf); } else { vpn_progress(vpninfo, PRG_ERR, _("PKCS#12 contained no certificate!\n")); ret = -EINVAL; } if (pkey) { SSL_CTX_use_PrivateKey(vpninfo->https_ctx, pkey); EVP_PKEY_free(pkey); } else { vpn_progress(vpninfo, PRG_ERR, _("PKCS#12 contained no private key!\n")); ret = -EINVAL; } if (ca) install_extra_certs(vpninfo, _("PKCS#12"), ca); PKCS12_free(p12); return ret; } #ifdef HAVE_ENGINE static int load_tpm_certificate(struct openconnect_info *vpninfo, const char *engine) { ENGINE *e; EVP_PKEY *key; UI_METHOD *meth = NULL; int ret = 0; ENGINE_load_builtin_engines(); e = ENGINE_by_id(engine); if (!e && !strcmp(engine, "tpm2")) { ERR_clear_error(); e = ENGINE_by_id("tpm2tss"); } if (!e) { vpn_progress(vpninfo, PRG_ERR, _("Can't load TPM engine.\n")); openconnect_report_ssl_errors(vpninfo); return -EINVAL; } if (!ENGINE_init(e) || !ENGINE_set_default_RSA(e) || !ENGINE_set_default_RAND(e)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to init TPM engine\n")); openconnect_report_ssl_errors(vpninfo); ENGINE_free(e); return -EINVAL; } if (vpninfo->cert_password) { if (!ENGINE_ctrl_cmd(e, "PIN", strlen(vpninfo->cert_password), vpninfo->cert_password, NULL, 0)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to set TPM SRK password\n")); openconnect_report_ssl_errors(vpninfo); } free_pass(&vpninfo->cert_password); } /* Provide our own UI method to handle the PIN callback. */ meth = create_openssl_ui(); key = ENGINE_load_private_key(e, vpninfo->sslkey, meth, vpninfo); if (meth) UI_destroy_method(meth); if (!key) { vpn_progress(vpninfo, PRG_ERR, _("Failed to load TPM private key\n")); openconnect_report_ssl_errors(vpninfo); ret = -EINVAL; goto out; } if (!SSL_CTX_use_PrivateKey(vpninfo->https_ctx, key)) { vpn_progress(vpninfo, PRG_ERR, _("Add key from TPM failed\n")); openconnect_report_ssl_errors(vpninfo); ret = -EINVAL; } EVP_PKEY_free(key); out: ENGINE_finish(e); ENGINE_free(e); return ret; } #else static int load_tpm_certificate(struct openconnect_info *vpninfo, const char *engine) { vpn_progress(vpninfo, PRG_ERR, _("This version of OpenConnect was built without TPM support\n")); return -EINVAL; } #endif /* This is a reimplementation of SSL_CTX_use_certificate_chain_file(). * We do this for three reasons: * * - Firstly, we have no way to obtain the primary X509 certificate * after SSL_CTX_use_certificate_chain_file() has loaded it, and we * need to inspect it to check for expiry and report its name etc. * So in the past we've opened the cert file again and read the cert * again in a reload_pem_cert() function which was a partial * reimplementation anyway. * * - Secondly, on Windows, OpenSSL only partially handles UTF-8 filenames. * Specifically, BIO_new_file() will convert UTF-8 to UTF-16 and attempt * to use _wfopen() to open the file, but BIO_read_filename() will not. * It is BIO_read_filename() which the SSL_CTX_*_file functions use, and * thus they don't work with UTF-8 file names. This is filed as RT#3479: * http://rt.openssl.org/Ticket/Display.html?id=3479 * * - Finally, and least importantly, it does actually matter which supporting * certs we offer on the wire because of RT#1942. Doing this for ourselves * allows us to explicitly print the supporting certs that we're using, * which may assist in diagnosing problems. */ static int load_cert_chain_file(struct openconnect_info *vpninfo) { BIO *b; FILE *f = openconnect_fopen_utf8(vpninfo, vpninfo->cert, "rb"); STACK_OF(X509) *extra_certs = NULL; char buf[200]; if (!f) { vpn_progress(vpninfo, PRG_ERR, _("Failed to open certificate file %s: %s\n"), vpninfo->cert, strerror(errno)); return -ENOENT; } b = BIO_new_fp(f, 1); if (!b) { fclose(f); err: vpn_progress(vpninfo, PRG_ERR, _("Loading certificate failed\n")); openconnect_report_ssl_errors(vpninfo); return -EIO; } vpninfo->cert_x509 = PEM_read_bio_X509_AUX(b, NULL, NULL, NULL); if (!vpninfo->cert_x509) { BIO_free(b); goto err; } X509_NAME_oneline(X509_get_subject_name(vpninfo->cert_x509), buf, sizeof(buf)); vpn_progress(vpninfo, PRG_INFO, _("Using client certificate '%s'\n"), buf); if (!SSL_CTX_use_certificate(vpninfo->https_ctx, vpninfo->cert_x509)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to install certificate in OpenSSL context\n")); openconnect_report_ssl_errors(vpninfo); BIO_free(b); return -EIO; } while (1) { X509 *x = PEM_read_bio_X509(b, NULL, NULL, NULL); if (!x) { unsigned long err = ERR_peek_last_error(); if (ERR_GET_LIB(err) == ERR_LIB_PEM && ERR_GET_REASON(err) == PEM_R_NO_START_LINE) ERR_clear_error(); else goto err_extra; break; } if (!extra_certs) extra_certs = sk_X509_new_null(); if (!extra_certs) { err_extra: vpn_progress(vpninfo, PRG_ERR, _("Failed to process all supporting certs. Trying anyway...\n")); openconnect_report_ssl_errors(vpninfo); X509_free(x); /* It might work without... */ break; } if (!sk_X509_push(extra_certs, x)) goto err_extra; } BIO_free(b); if (extra_certs) install_extra_certs(vpninfo, _("PEM file"), extra_certs); return 0; } #ifdef ANDROID_KEYSTORE static BIO *BIO_from_keystore(struct openconnect_info *vpninfo, const char *item) { unsigned char *content; BIO *b; int len; const char *p = item + 9; /* Skip first two slashes if the user has given it as keystore://foo ... */ if (*p == '/') p++; if (*p == '/') p++; len = keystore_fetch(p, &content); if (len < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to load item '%s' from keystore: %s\n"), p, keystore_strerror(len)); return NULL; } if (!(b = BIO_new(BIO_s_mem())) || BIO_write(b, content, len) != len) { vpn_progress(vpninfo, PRG_ERR, _("Failed to create BIO for keystore item '%s'\n"), p); free(content); BIO_free(b); return NULL; } free(content); return b; } #endif static int is_pem_password_error(struct openconnect_info *vpninfo) { unsigned long err = ERR_peek_error(); openconnect_report_ssl_errors(vpninfo); #ifndef EVP_F_EVP_DECRYPTFINAL_EX #define EVP_F_EVP_DECRYPTFINAL_EX EVP_F_EVP_DECRYPTFINAL #endif /* If the user fat-fingered the passphrase, try again */ if (ERR_GET_LIB(err) == ERR_LIB_EVP && ERR_GET_FUNC(err) == EVP_F_EVP_DECRYPTFINAL_EX && ERR_GET_REASON(err) == EVP_R_BAD_DECRYPT) { vpn_progress(vpninfo, PRG_ERR, _("Loading private key failed (wrong passphrase?)\n")); ERR_clear_error(); return 1; } vpn_progress(vpninfo, PRG_ERR, _("Loading private key failed (see above errors)\n")); return 0; } static int load_certificate(struct openconnect_info *vpninfo) { EVP_PKEY *key; FILE *f; char buf[256]; int ret; if (!strncmp(vpninfo->cert, "pkcs11:", 7)) { int ret = load_pkcs11_certificate(vpninfo); if (ret) return ret; goto got_cert; } vpn_progress(vpninfo, PRG_DEBUG, _("Using certificate file %s\n"), vpninfo->cert); if (strncmp(vpninfo->cert, "keystore:", 9)) { PKCS12 *p12; f = openconnect_fopen_utf8(vpninfo, vpninfo->cert, "rb"); if (!f) { vpn_progress(vpninfo, PRG_ERR, _("Failed to open certificate file %s: %s\n"), vpninfo->cert, strerror(errno)); return -ENOENT; } p12 = d2i_PKCS12_fp(f, NULL); fclose(f); if (p12) return load_pkcs12_certificate(vpninfo, p12); /* Not PKCS#12. Clear error and fall through to see if it's a PEM file... */ ERR_clear_error(); } /* It's PEM or TPM now, and either way we need to load the plain cert: */ #ifdef ANDROID_KEYSTORE if (!strncmp(vpninfo->cert, "keystore:", 9)) { BIO *b = BIO_from_keystore(vpninfo, vpninfo->cert); if (!b) return -EINVAL; vpninfo->cert_x509 = PEM_read_bio_X509_AUX(b, NULL, pem_pw_cb, vpninfo); BIO_free(b); if (!vpninfo->cert_x509) { vpn_progress(vpninfo, PRG_ERR, _("Failed to load X509 certificate from keystore\n")); openconnect_report_ssl_errors(vpninfo); return -EINVAL; } if (!SSL_CTX_use_certificate(vpninfo->https_ctx, vpninfo->cert_x509)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to use X509 certificate from keystore\n")); openconnect_report_ssl_errors(vpninfo); X509_free(vpninfo->cert_x509); vpninfo->cert_x509 = NULL; return -EINVAL; } } else #endif /* ANDROID_KEYSTORE */ { int ret = load_cert_chain_file(vpninfo); if (ret) return ret; } got_cert: #ifdef ANDROID_KEYSTORE if (!strncmp(vpninfo->sslkey, "keystore:", 9)) { BIO *b; again_android: b = BIO_from_keystore(vpninfo, vpninfo->sslkey); if (!b) return -EINVAL; key = PEM_read_bio_PrivateKey(b, NULL, pem_pw_cb, vpninfo); BIO_free(b); if (!key) { if (is_pem_password_error(vpninfo)) goto again_android; return -EINVAL; } if (!SSL_CTX_use_PrivateKey(vpninfo->https_ctx, key)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to use private key from keystore\n")); EVP_PKEY_free(key); X509_free(vpninfo->cert_x509); vpninfo->cert_x509 = NULL; return -EINVAL; } EVP_PKEY_free(key); return 0; } #endif /* ANDROID_KEYSTORE */ if (!strncmp(vpninfo->sslkey, "pkcs11:", 7)) return load_pkcs11_key(vpninfo); f = openconnect_fopen_utf8(vpninfo, vpninfo->sslkey, "rb"); if (!f) { vpn_progress(vpninfo, PRG_ERR, _("Failed to open private key file %s: %s\n"), vpninfo->sslkey, strerror(errno)); return -ENOENT; } buf[255] = 0; while (fgets(buf, 255, f)) { if (!strcmp(buf, "-----BEGIN TSS KEY BLOB-----\n")) { fclose(f); return load_tpm_certificate(vpninfo, "tpm"); } else if (!strcmp(buf, "-----BEGIN TSS2 KEY BLOB-----\n") || !strcmp(buf, "-----BEGIN TSS2 PRIVATE KEY-----\n")) { fclose(f); return load_tpm_certificate(vpninfo, "tpm2"); } else if (!strcmp(buf, "-----BEGIN RSA PRIVATE KEY-----\n") || !strcmp(buf, "-----BEGIN DSA PRIVATE KEY-----\n") || !strcmp(buf, "-----BEGIN EC PRIVATE KEY-----\n") || !strcmp(buf, "-----BEGIN ENCRYPTED PRIVATE KEY-----\n") || !strcmp(buf, "-----BEGIN PRIVATE KEY-----\n")) { BIO *b = BIO_new_fp(f, BIO_CLOSE); if (!b) { fclose(f); vpn_progress(vpninfo, PRG_ERR, _("Loading private key failed\n")); openconnect_report_ssl_errors(vpninfo); } again: fseek(f, 0, SEEK_SET); key = PEM_read_bio_PrivateKey(b, NULL, pem_pw_cb, vpninfo); if (!key) { if (is_pem_password_error(vpninfo)) goto again; BIO_free(b); return -EINVAL; } ret = 0; if (!SSL_CTX_use_PrivateKey(vpninfo->https_ctx, key)) { vpn_progress(vpninfo, PRG_ERR, _("Loading private key failed\n")); openconnect_report_ssl_errors(vpninfo); ret = -EINVAL; } EVP_PKEY_free(key); BIO_free(b); return ret; } } /* Not PEM? Try DER... */ fseek(f, 0, SEEK_SET); /* This will catch PKCS#1 and unencrypted PKCS#8 * (except in OpenSSL 0.9.8 where it doesn't handle * the latter but nobody cares about 0.9.8 any more. */ key = d2i_PrivateKey_fp(f, NULL); if (key) { ret = 0; if (!SSL_CTX_use_PrivateKey(vpninfo->https_ctx, key)) { vpn_progress(vpninfo, PRG_ERR, _("Loading private key failed\n")); openconnect_report_ssl_errors(vpninfo); ret = -EINVAL; } EVP_PKEY_free(key); fclose(f); return ret; } else { /* Encrypted PKCS#8 DER */ X509_SIG *p8; fseek(f, 0, SEEK_SET); p8 = d2i_PKCS8_fp(f, NULL); if (p8) { PKCS8_PRIV_KEY_INFO *p8inf; char *pass = vpninfo->cert_password; fclose(f); while (!(p8inf = PKCS8_decrypt(p8, pass ? : "", pass ? strlen(pass) : 0))) { unsigned long err = ERR_peek_error(); if (ERR_GET_LIB(err) == ERR_LIB_EVP && ERR_GET_FUNC(err) == EVP_F_EVP_DECRYPTFINAL_EX && ERR_GET_REASON(err) == EVP_R_BAD_DECRYPT) { ERR_clear_error(); if (pass) { vpn_progress(vpninfo, PRG_ERR, _("Failed to decrypt PKCS#8 certificate file\n")); free_pass(&pass); pass = NULL; } if (request_passphrase(vpninfo, "openconnect_pkcs8", &pass, _("Enter PKCS#8 pass phrase:")) >= 0) continue; } else { vpn_progress(vpninfo, PRG_ERR, _("Failed to decrypt PKCS#8 certificate file\n")); openconnect_report_ssl_errors(vpninfo); } free_pass(&pass); vpninfo->cert_password = NULL; X509_SIG_free(p8); return -EINVAL; } free_pass(&pass); vpninfo->cert_password = NULL; key = EVP_PKCS82PKEY(p8inf); PKCS8_PRIV_KEY_INFO_free(p8inf); X509_SIG_free(p8); if (key == NULL) { vpn_progress(vpninfo, PRG_ERR, _("Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n")); return -EIO; } ret = 0; if (!SSL_CTX_use_PrivateKey(vpninfo->https_ctx, key)) { vpn_progress(vpninfo, PRG_ERR, _("Loading private key failed\n")); openconnect_report_ssl_errors(vpninfo); ret = -EINVAL; } EVP_PKEY_free(key); return ret; } } fclose(f); vpn_progress(vpninfo, PRG_ERR, _("Failed to identify private key type in '%s'\n"), vpninfo->sslkey); return -EINVAL; } static int get_cert_fingerprint(struct openconnect_info *vpninfo, X509 *cert, const EVP_MD *type, char *buf) { unsigned char md[EVP_MAX_MD_SIZE]; unsigned int i, n; if (!X509_digest(cert, type, md, &n)) return -ENOMEM; for (i = 0; i < n; i++) sprintf(&buf[i*2], "%02X", md[i]); return 0; } int get_cert_md5_fingerprint(struct openconnect_info *vpninfo, void *cert, char *buf) { return get_cert_fingerprint(vpninfo, cert, EVP_md5(), buf); } static int set_peer_cert_hash(struct openconnect_info *vpninfo) { EVP_PKEY *pkey; BIO *bp = BIO_new(BIO_s_mem()); BUF_MEM *keyinfo; /* We can't use X509_pubkey_digest() because it only hashes the subjectPublicKey BIT STRING, and not the whole of the SubjectPublicKeyInfo SEQUENCE. */ pkey = X509_get_pubkey(vpninfo->peer_cert); if (!i2d_PUBKEY_bio(bp, pkey)) { EVP_PKEY_free(pkey); BIO_free(bp); return -ENOMEM; } EVP_PKEY_free(pkey); BIO_get_mem_ptr(bp, &keyinfo); openconnect_sha256(vpninfo->peer_cert_sha256_raw, keyinfo->data, keyinfo->length); openconnect_sha1(vpninfo->peer_cert_sha1_raw, keyinfo->data, keyinfo->length); BIO_free(bp); return 0; } #if OPENSSL_VERSION_NUMBER < 0x10002000L || defined(LIBRESSL_VERSION_NUMBER) static int match_hostname_elem(const char *hostname, int helem_len, const char *match, int melem_len) { if (!helem_len && !melem_len) return 0; if (!helem_len || !melem_len) return -1; if (match[0] == '*') { int i; for (i = 1 ; i <= helem_len; i++) { if (!match_hostname_elem(hostname + i, helem_len - i, match + 1, melem_len - 1)) return 0; } return -1; } /* From the NetBSD (5.1) man page for ctype(3): Values of type char or signed char must first be cast to unsigned char, to ensure that the values are within the correct range. The result should then be cast to int to avoid warnings from some compilers. We do indeed get warning "array subscript has type 'char'" without the casts. Ick. */ if (toupper((int)(unsigned char)hostname[0]) == toupper((int)(unsigned char)match[0])) return match_hostname_elem(hostname + 1, helem_len - 1, match + 1, melem_len - 1); return -1; } static int match_hostname(const char *hostname, const char *match) { while (*match) { const char *h_dot, *m_dot; int helem_len, melem_len; h_dot = strchr(hostname, '.'); m_dot = strchr(match, '.'); if (h_dot && m_dot) { helem_len = h_dot - hostname + 1; melem_len = m_dot - match + 1; } else if (!h_dot && !m_dot) { helem_len = strlen(hostname); melem_len = strlen(match); } else return -1; if (match_hostname_elem(hostname, helem_len, match, melem_len)) return -1; hostname += helem_len; match += melem_len; } if (*hostname) return -1; return 0; } /* cf. RFC2818 and RFC2459 */ static int match_cert_hostname(struct openconnect_info *vpninfo, X509 *peer_cert, const unsigned char *ipaddr, int ipaddrlen) { STACK_OF(GENERAL_NAME) *altnames; X509_NAME *subjname; ASN1_STRING *subjasn1; char *subjstr = NULL; int i, altdns = 0; int ret; altnames = X509_get_ext_d2i(peer_cert, NID_subject_alt_name, NULL, NULL); for (i = 0; i < sk_GENERAL_NAME_num(altnames); i++) { const GENERAL_NAME *this = sk_GENERAL_NAME_value(altnames, i); if (this->type == GEN_DNS) { char *str; int len = ASN1_STRING_to_UTF8((void *)&str, this->d.ia5); if (len < 0) continue; altdns = 1; /* We don't like names with embedded NUL */ if (strlen(str) != len) continue; if (!match_hostname(vpninfo->hostname, str)) { vpn_progress(vpninfo, PRG_DEBUG, _("Matched DNS altname '%s'\n"), str); GENERAL_NAMES_free(altnames); OPENSSL_free(str); return 0; } else { vpn_progress(vpninfo, PRG_DEBUG, _("No match for altname '%s'\n"), str); } OPENSSL_free(str); } else if (this->type == GEN_IPADD && ipaddrlen) { char host[80]; int family; if (this->d.ip->length == 4) { family = AF_INET; } else if (this->d.ip->length == 16) { family = AF_INET6; } else { vpn_progress(vpninfo, PRG_ERR, _("Certificate has GEN_IPADD altname with bogus length %d\n"), this->d.ip->length); continue; } /* We only do this for the debug messages */ inet_ntop(family, this->d.ip->data, host, sizeof(host)); if (this->d.ip->length == ipaddrlen && !memcmp(ipaddr, this->d.ip->data, ipaddrlen)) { vpn_progress(vpninfo, PRG_DEBUG, _("Matched %s address '%s'\n"), (family == AF_INET6) ? "IPv6" : "IPv4", host); GENERAL_NAMES_free(altnames); return 0; } else { vpn_progress(vpninfo, PRG_DEBUG, _("No match for %s address '%s'\n"), (family == AF_INET6) ? "IPv6" : "IPv4", host); } } else if (this->type == GEN_URI) { char *str; char *url_proto, *url_host, *url_path, *url_host2; int url_port; int len = ASN1_STRING_to_UTF8((void *)&str, this->d.ia5); if (len < 0) continue; /* We don't like names with embedded NUL */ if (strlen(str) != len) continue; if (internal_parse_url(str, &url_proto, &url_host, &url_port, &url_path, 0)) { OPENSSL_free(str); continue; } if (!url_proto || strcasecmp(url_proto, "https")) goto no_uri_match; if (url_port != vpninfo->port) goto no_uri_match; /* Leave url_host as it was so that it can be freed */ url_host2 = url_host; if (ipaddrlen == 16 && vpninfo->hostname[0] != '[' && url_host[0] == '[' && url_host[strlen(url_host)-1] == ']') { /* Cope with https://[IPv6]/ when the hostname is bare IPv6 */ url_host[strlen(url_host)-1] = 0; url_host2++; } if (strcasecmp(vpninfo->hostname, url_host2)) goto no_uri_match; if (url_path) { vpn_progress(vpninfo, PRG_DEBUG, _("URI '%s' has non-empty path; ignoring\n"), str); goto no_uri_match_silent; } vpn_progress(vpninfo, PRG_DEBUG, _("Matched URI '%s'\n"), str); free(url_proto); free(url_host); free(url_path); OPENSSL_free(str); GENERAL_NAMES_free(altnames); return 0; no_uri_match: vpn_progress(vpninfo, PRG_DEBUG, _("No match for URI '%s'\n"), str); no_uri_match_silent: free(url_proto); free(url_host); free(url_path); OPENSSL_free(str); } } GENERAL_NAMES_free(altnames); /* According to RFC2818, we don't use the legacy subject name if there was an altname with DNS type. */ if (altdns) { vpn_progress(vpninfo, PRG_ERR, _("No altname in peer cert matched '%s'\n"), vpninfo->hostname); return -EINVAL; } subjname = X509_get_subject_name(peer_cert); if (!subjname) { vpn_progress(vpninfo, PRG_ERR, _("No subject name in peer cert!\n")); return -EINVAL; } /* Find the _last_ (most specific) commonName */ i = -1; while (1) { int j = X509_NAME_get_index_by_NID(subjname, NID_commonName, i); if (j >= 0) i = j; else break; } subjasn1 = X509_NAME_ENTRY_get_data(X509_NAME_get_entry(subjname, i)); i = ASN1_STRING_to_UTF8((void *)&subjstr, subjasn1); if (!subjstr || strlen(subjstr) != i) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse subject name in peer cert\n")); return -EINVAL; } ret = 0; if (match_hostname(vpninfo->hostname, subjstr)) { vpn_progress(vpninfo, PRG_ERR, _("Peer cert subject mismatch ('%s' != '%s')\n"), subjstr, vpninfo->hostname); ret = -EINVAL; } else { vpn_progress(vpninfo, PRG_DEBUG, _("Matched peer certificate subject name '%s'\n"), subjstr); } OPENSSL_free(subjstr); return ret; } #else static int match_cert_hostname(struct openconnect_info *vpninfo, X509 *peer_cert, const unsigned char *ipaddr, int ipaddrlen) { char *matched = NULL; if (ipaddrlen && X509_check_ip(peer_cert, ipaddr, ipaddrlen, 0)) { if (vpninfo->verbose >= PRG_DEBUG) { char host[80]; int family; if (ipaddrlen == 4) family = AF_INET; else family = AF_INET6; /* In Windows, the 'src' argument of inet_ntop() isn't const */ inet_ntop(family, (void *)ipaddr, host, sizeof(host)); vpn_progress(vpninfo, PRG_DEBUG, _("Matched %s address '%s'\n"), (family == AF_INET6) ? "IPv6" : "IPv4", host); } return 0; } if (X509_check_host(peer_cert, vpninfo->hostname, 0, 0, &matched)) { vpn_progress(vpninfo, PRG_DEBUG, _("Matched peer certificate subject name '%s'\n"), matched); OPENSSL_free(matched); return 0; } /* We do it like this because these two strings are already * translated in gnutls.c */ vpn_progress(vpninfo, PRG_INFO, _("Server certificate verify failed: %s\n"), _("certificate does not match hostname")); return -EINVAL; } #endif /* OpenSSL < 1.0.2 */ /* Before OpenSSL 1.1 we could do this directly. And needed to. */ #ifndef SSL_CTX_get_extra_chain_certs_only #define SSL_CTX_get_extra_chain_certs_only(ctx, st) \ do { *(st) = (ctx)->extra_certs; } while(0) #endif static void workaround_openssl_certchain_bug(struct openconnect_info *vpninfo, SSL *ssl) { /* OpenSSL has problems with certificate chains -- if there are multiple certs with the same name, it doesn't necessarily choose the _right_ one. (RT#1942) Pick the right ones for ourselves and add them manually. */ X509 *cert = SSL_get_certificate(ssl); X509 *cert2; X509_STORE *store = SSL_CTX_get_cert_store(vpninfo->https_ctx); X509_STORE_CTX *ctx; void *extra_certs; X509_STORE_CTX_get_issuer_fn issuer_fn; if (!cert || !store) return; /* If we already have 'supporting' certs, don't add them again */ SSL_CTX_get_extra_chain_certs_only(vpninfo->https_ctx, &extra_certs); if (extra_certs) return; ctx = X509_STORE_CTX_new(); if (!ctx) return; if (X509_STORE_CTX_init(ctx, store, NULL, NULL)) goto out; issuer_fn = X509_STORE_CTX_get_get_issuer(ctx); while (issuer_fn(&cert2, ctx, cert) == 1) { char buf[200]; if (cert2 == cert) break; if (X509_check_issued(cert2, cert2) == X509_V_OK) break; cert = cert2; X509_NAME_oneline(X509_get_subject_name(cert), buf, sizeof(buf)); vpn_progress(vpninfo, PRG_DEBUG, _("Extra cert from cafile: '%s'\n"), buf); SSL_CTX_add_extra_chain_cert(vpninfo->https_ctx, cert); } out: X509_STORE_CTX_free(ctx); } int openconnect_get_peer_cert_chain(struct openconnect_info *vpninfo, struct oc_cert **chainp) { struct oc_cert *chain, *p; X509_STORE_CTX *ctx = vpninfo->cert_list_handle; STACK_OF(X509) *untrusted = X509_STORE_CTX_get0_untrusted(ctx); int i, cert_list_size; if (!ctx) return -EINVAL; cert_list_size = sk_X509_num(untrusted); if (!cert_list_size) return -EIO; p = chain = calloc(cert_list_size, sizeof(struct oc_cert)); if (!chain) return -ENOMEM; for (i = 0; i < cert_list_size; i++, p++) { X509 *cert = sk_X509_value(untrusted, i); p->der_len = i2d_X509(cert, &p->der_data); if (p->der_len < 0) { openconnect_free_peer_cert_chain(vpninfo, chain); return -ENOMEM; } } *chainp = chain; return cert_list_size; } void openconnect_free_peer_cert_chain(struct openconnect_info *vpninfo, struct oc_cert *chain) { int i; for (i = 0; i < vpninfo->cert_list_size; i++) OPENSSL_free(chain[i].der_data); free(chain); } static int ssl_app_verify_callback(X509_STORE_CTX *ctx, void *arg) { struct openconnect_info *vpninfo = arg; const char *err_string = NULL; X509 *cert = X509_STORE_CTX_get0_cert(ctx); #ifdef X509_V_FLAG_PARTIAL_CHAIN X509_VERIFY_PARAM *param; #endif if (vpninfo->peer_cert) { /* This is a *rehandshake*. Require that the server * presents exactly the same certificate as the * first time. */ if (X509_cmp(cert, vpninfo->peer_cert)) { vpn_progress(vpninfo, PRG_ERR, _("Server presented different cert on rehandshake\n")); return 0; } vpn_progress(vpninfo, PRG_TRACE, _("Server presented identical cert on rehandshake\n")); return 1; } vpninfo->peer_cert = cert; X509_up_ref(cert); set_peer_cert_hash(vpninfo); #ifdef X509_V_FLAG_PARTIAL_CHAIN param = X509_STORE_CTX_get0_param(ctx); if (param) X509_VERIFY_PARAM_set_flags(param, X509_V_FLAG_PARTIAL_CHAIN); #endif if (!X509_verify_cert(ctx)) { err_string = X509_verify_cert_error_string(X509_STORE_CTX_get_error(ctx)); } else { unsigned char addrbuf[sizeof(struct in6_addr)]; int addrlen = 0; if (inet_pton(AF_INET, vpninfo->hostname, addrbuf) > 0) addrlen = 4; else if (inet_pton(AF_INET6, vpninfo->hostname, addrbuf) > 0) addrlen = 16; else if (vpninfo->hostname[0] == '[' && vpninfo->hostname[strlen(vpninfo->hostname)-1] == ']') { char *p = &vpninfo->hostname[strlen(vpninfo->hostname)-1]; *p = 0; if (inet_pton(AF_INET6, vpninfo->hostname + 1, addrbuf) > 0) addrlen = 16; *p = ']'; } if (match_cert_hostname(vpninfo, vpninfo->peer_cert, addrbuf, addrlen)) err_string = _("certificate does not match hostname"); else return 1; } vpn_progress(vpninfo, PRG_INFO, _("Server certificate verify failed: %s\n"), err_string); if (vpninfo->validate_peer_cert) { int ret; vpninfo->cert_list_handle = ctx; ret = vpninfo->validate_peer_cert(vpninfo->cbdata, err_string); vpninfo->cert_list_handle = NULL; if (!ret) return 1; } return 0; } static int check_certificate_expiry(struct openconnect_info *vpninfo) { method_const ASN1_TIME *notAfter; const char *reason = NULL; time_t t; int i; if (!vpninfo->cert_x509) return 0; t = time(NULL); notAfter = X509_get0_notAfter(vpninfo->cert_x509); i = X509_cmp_time(notAfter, &t); if (!i) { vpn_progress(vpninfo, PRG_ERR, _("Error in client cert notAfter field\n")); return -EINVAL; } else if (i < 0) { reason = _("Client certificate has expired at"); } else { t += vpninfo->cert_expire_warning; i = X509_cmp_time(notAfter, &t); if (i < 0) reason = _("Client certificate expires soon at"); } if (reason) { BIO *bp = BIO_new(BIO_s_mem()); BUF_MEM *bm; const char *expiry = _(""); char zero = 0; if (bp) { ASN1_TIME_print(bp, notAfter); BIO_write(bp, &zero, 1); BIO_get_mem_ptr(bp, &bm); expiry = bm->data; } vpn_progress(vpninfo, PRG_ERR, "%s: %s\n", reason, expiry); if (bp) BIO_free(bp); } return 0; } int openconnect_open_https(struct openconnect_info *vpninfo) { SSL *https_ssl; BIO *https_bio; int ssl_sock; int err; if (vpninfo->https_ssl) return 0; if (vpninfo->peer_cert) { X509_free(vpninfo->peer_cert); vpninfo->peer_cert = NULL; } free(vpninfo->peer_cert_hash); vpninfo->peer_cert_hash = NULL; vpninfo->cstp_cipher = NULL; ssl_sock = connect_https_socket(vpninfo); if (ssl_sock < 0) return ssl_sock; if (!vpninfo->https_ctx) { #if OPENSSL_VERSION_NUMBER < 0x10100000L || defined(LIBRESSL_VERSION_NUMBER) vpninfo->https_ctx = SSL_CTX_new(SSLv23_client_method()); if (vpninfo->https_ctx) SSL_CTX_set_options(vpninfo->https_ctx, SSL_OP_NO_SSLv2|SSL_OP_NO_SSLv3); #else vpninfo->https_ctx = SSL_CTX_new(TLS_client_method()); if (vpninfo->https_ctx && !SSL_CTX_set_min_proto_version(vpninfo->https_ctx, TLS1_VERSION)) { SSL_CTX_free(vpninfo->https_ctx); vpninfo->https_ctx = NULL; } #endif if (!vpninfo->https_ctx) { vpn_progress(vpninfo, PRG_ERR, _("Create TLSv1 CTX failed\n")); openconnect_report_ssl_errors(vpninfo); return -EINVAL; } /* Try to work around the broken firewalls which reject ClientHello * packets in certain size ranges. If we have SSL_OP_TLSEXT_PADDING * use it, else fall back to SSL_OP_NO_TICKET which mostly worked for * a long time. */ #if defined(SSL_OP_TLSEXT_PADDING) SSL_CTX_set_options(vpninfo->https_ctx, SSL_OP_TLSEXT_PADDING); #elif defined(SSL_OP_NO_TICKET) SSL_CTX_set_options(vpninfo->https_ctx, SSL_OP_NO_TICKET); #endif if (vpninfo->cert) { err = load_certificate(vpninfo); if (!err && !SSL_CTX_check_private_key(vpninfo->https_ctx)) { vpn_progress(vpninfo, PRG_ERR, _("SSL certificate and key do not match\n")); err = -EINVAL; } if (err) { vpn_progress(vpninfo, PRG_ERR, _("Loading certificate failed. Aborting.\n")); SSL_CTX_free(vpninfo->https_ctx); vpninfo->https_ctx = NULL; closesocket(ssl_sock); return err; } check_certificate_expiry(vpninfo); } /* We've seen certificates in the wild which don't have the purpose fields filled in correctly */ SSL_CTX_set_purpose(vpninfo->https_ctx, X509_PURPOSE_ANY); SSL_CTX_set_cert_verify_callback(vpninfo->https_ctx, ssl_app_verify_callback, vpninfo); if (!vpninfo->no_system_trust) SSL_CTX_set_default_verify_paths(vpninfo->https_ctx); if (vpninfo->pfs) SSL_CTX_set_cipher_list(vpninfo->https_ctx, "HIGH:!aNULL:!eNULL:-RSA"); #ifdef ANDROID_KEYSTORE if (vpninfo->cafile && !strncmp(vpninfo->cafile, "keystore:", 9)) { STACK_OF(X509_INFO) *stack; X509_STORE *store; X509_INFO *info; BIO *b = BIO_from_keystore(vpninfo, vpninfo->cafile); if (!b) { SSL_CTX_free(vpninfo->https_ctx); vpninfo->https_ctx = NULL; closesocket(ssl_sock); return -EINVAL; } stack = PEM_X509_INFO_read_bio(b, NULL, NULL, NULL); BIO_free(b); if (!stack) { vpn_progress(vpninfo, PRG_ERR, _("Failed to read certs from CA file '%s'\n"), vpninfo->cafile); openconnect_report_ssl_errors(vpninfo); SSL_CTX_free(vpninfo->https_ctx); vpninfo->https_ctx = NULL; closesocket(ssl_sock); return -ENOENT; } store = SSL_CTX_get_cert_store(vpninfo->https_ctx); while ((info = sk_X509_INFO_pop(stack))) { if (info->x509) X509_STORE_add_cert(store, info->x509); if (info->crl) X509_STORE_add_crl(store, info->crl); X509_INFO_free(info); } sk_X509_INFO_free(stack); } else #endif if (vpninfo->cafile) { /* OpenSSL does actually manage to cope with UTF-8 for this one, under Windows. So only convert for legacy UNIX. */ char *cafile = openconnect_utf8_to_legacy(vpninfo, vpninfo->cafile); err = SSL_CTX_load_verify_locations(vpninfo->https_ctx, cafile, NULL); if (cafile != vpninfo->cafile) free(cafile); if (!err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to open CA file '%s'\n"), vpninfo->cafile); openconnect_report_ssl_errors(vpninfo); SSL_CTX_free(vpninfo->https_ctx); vpninfo->https_ctx = NULL; closesocket(ssl_sock); return -EINVAL; } } } https_ssl = SSL_new(vpninfo->https_ctx); workaround_openssl_certchain_bug(vpninfo, https_ssl); https_bio = BIO_new_socket(ssl_sock, BIO_NOCLOSE); BIO_set_nbio(https_bio, 1); SSL_set_bio(https_ssl, https_bio, https_bio); /* * If a ClientHello is between 256 and 511 bytes, the * server cannot distinguish between a SSLv2 formatted * packet and a SSLv3 formatted packet. * * F5 BIG-IP reverse proxies in particular will * silently drop an ambiguous ClientHello. * * OpenSSL fixes this in v1.0.1g+ by padding ClientHello * packets to at least 512 bytes. * * For older versions of OpenSSL, we try to avoid long * packets by silently disabling extensions such as SNI. * * Discussion: * http://www.ietf.org/mail-archive/web/tls/current/msg10423.html * * OpenSSL commits: * 4fcdd66fff5fea0cfa1055c6680a76a4303f28a2 * cd6bd5ffda616822b52104fee0c4c7d623fd4f53 */ #if OPENSSL_VERSION_NUMBER >= 0x10001070 && !defined(LIBRESSL_VERSION_NUMBER) if (string_is_hostname(vpninfo->hostname)) SSL_set_tlsext_host_name(https_ssl, vpninfo->hostname); #endif SSL_set_verify(https_ssl, SSL_VERIFY_PEER, NULL); vpn_progress(vpninfo, PRG_INFO, _("SSL negotiation with %s\n"), vpninfo->hostname); while ((err = SSL_connect(https_ssl)) <= 0) { fd_set wr_set, rd_set; int maxfd = ssl_sock; FD_ZERO(&wr_set); FD_ZERO(&rd_set); err = SSL_get_error(https_ssl, err); if (err == SSL_ERROR_WANT_READ) FD_SET(ssl_sock, &rd_set); else if (err == SSL_ERROR_WANT_WRITE) FD_SET(ssl_sock, &wr_set); else { vpn_progress(vpninfo, PRG_ERR, _("SSL connection failure\n")); openconnect_report_ssl_errors(vpninfo); SSL_free(https_ssl); closesocket(ssl_sock); return -EINVAL; } cmd_fd_set(vpninfo, &rd_set, &maxfd); select(maxfd + 1, &rd_set, &wr_set, NULL, NULL); if (is_cancel_pending(vpninfo, &rd_set)) { vpn_progress(vpninfo, PRG_ERR, _("SSL connection cancelled\n")); SSL_free(https_ssl); closesocket(ssl_sock); return -EINVAL; } } vpninfo->cstp_cipher = (char *)SSL_get_cipher_name(https_ssl); vpninfo->ssl_fd = ssl_sock; vpninfo->https_ssl = https_ssl; vpninfo->ssl_read = openconnect_openssl_read; vpninfo->ssl_write = openconnect_openssl_write; vpninfo->ssl_gets = openconnect_openssl_gets; vpn_progress(vpninfo, PRG_INFO, _("Connected to HTTPS on %s\n"), vpninfo->hostname); return 0; } int cstp_handshake(struct openconnect_info *vpninfo, unsigned init) { return -EOPNOTSUPP; } void openconnect_close_https(struct openconnect_info *vpninfo, int final) { if (vpninfo->https_ssl) { SSL_free(vpninfo->https_ssl); vpninfo->https_ssl = NULL; } if (vpninfo->ssl_fd != -1) { closesocket(vpninfo->ssl_fd); unmonitor_read_fd(vpninfo, ssl); unmonitor_write_fd(vpninfo, ssl); unmonitor_except_fd(vpninfo, ssl); vpninfo->ssl_fd = -1; } if (final) { if (vpninfo->https_ctx) { SSL_CTX_free(vpninfo->https_ctx); vpninfo->https_ctx = NULL; } if (vpninfo->cert_x509) { X509_free(vpninfo->cert_x509); vpninfo->cert_x509 = NULL; } } } int openconnect_init_ssl(void) { #ifdef _WIN32 int ret = openconnect__win32_sock_init(); if (ret) return ret; #endif #if OPENSSL_VERSION_NUMBER < 0x10100000L || defined(LIBRESSL_VERSION_NUMBER) SSL_library_init(); ERR_clear_error(); SSL_load_error_strings(); OpenSSL_add_all_algorithms(); #endif return 0; } char *openconnect_get_peer_cert_details(struct openconnect_info *vpninfo) { BIO *bp = BIO_new(BIO_s_mem()); BUF_MEM *certinfo; char zero = 0; char *ret; X509_print_ex(bp, vpninfo->peer_cert, 0, 0); BIO_write(bp, &zero, 1); BIO_get_mem_ptr(bp, &certinfo); ret = strdup(certinfo->data); BIO_free(bp); return ret; } void openconnect_free_cert_info(struct openconnect_info *vpninfo, void *buf) { free(buf); } int openconnect_local_cert_md5(struct openconnect_info *vpninfo, char *buf) { buf[0] = 0; if (!vpninfo->cert_x509) return -EIO; if (get_cert_md5_fingerprint(vpninfo, vpninfo->cert_x509, buf)) return -EIO; return 0; } #ifdef HAVE_LIBPCSCLITE int openconnect_hash_yubikey_password(struct openconnect_info *vpninfo, const char *password, int pwlen, const void *ident, int id_len) { if (!PKCS5_PBKDF2_HMAC_SHA1(password, pwlen, ident, id_len, 1000, 16, vpninfo->yubikey_pwhash)) return -EIO; return 0; } int openconnect_yubikey_chalresp(struct openconnect_info *vpninfo, const void *challenge, int chall_len, void *result) { unsigned int mdlen = SHA1_SIZE; if (!HMAC(EVP_sha1(), vpninfo->yubikey_pwhash, 16, challenge, chall_len, result, &mdlen)) return -EIO; return 0; } #endif int hotp_hmac(struct openconnect_info *vpninfo, const void *challenge) { unsigned char hash[64]; /* Enough for a SHA256 */ unsigned int hashlen = sizeof(hash); const EVP_MD *alg; switch(vpninfo->oath_hmac_alg) { case OATH_ALG_HMAC_SHA1: alg = EVP_sha1(); break; case OATH_ALG_HMAC_SHA256: alg = EVP_sha256(); break; case OATH_ALG_HMAC_SHA512: alg = EVP_sha512(); break; default: vpn_progress(vpninfo, PRG_ERR, _("Unsupported OATH HMAC algorithm\n")); return -EINVAL; } if (!HMAC(alg, vpninfo->oath_secret, vpninfo->oath_secret_len, challenge, 8, hash, &hashlen)) { vpninfo->progress(vpninfo, PRG_ERR, _("Failed to calculate OATH HMAC\n")); openconnect_report_ssl_errors(vpninfo); return -EINVAL; } hashlen = hash[hashlen - 1] & 15; return load_be32(&hash[hashlen]) & 0x7fffffff; } static long ttls_ctrl_func(BIO *b, int cmd, long larg, void *iarg); static int ttls_pull_func(BIO *b, char *buf, int len); static int ttls_push_func(BIO *b, const char *buf, int len); #ifdef HAVE_BIO_METH_FREE static BIO_METHOD *eap_ttls_method(void) { BIO_METHOD *meth = BIO_meth_new(BIO_get_new_index(), "EAP-TTLS"); BIO_meth_set_write(meth, ttls_push_func); BIO_meth_set_read(meth, ttls_pull_func); BIO_meth_set_ctrl(meth, ttls_ctrl_func); return meth; } #else /* !HAVE_BIO_METH_FREE */ #define BIO_TYPE_EAP_TTLS 0x80 static BIO_METHOD ttls_bio_meth = { .type = BIO_TYPE_EAP_TTLS, .name = "EAP-TTLS", .bwrite = ttls_push_func, .bread = ttls_pull_func, .ctrl = ttls_ctrl_func, }; static BIO_METHOD *eap_ttls_method(void) { return &ttls_bio_meth; } static inline void BIO_set_data(BIO *b, void *p) { b->ptr = p; } static inline void *BIO_get_data(BIO *b) { return b->ptr; } static void BIO_set_init(BIO *b, int i) { b->init = i; } #endif /* !HAVE_BIO_METH_FREE */ static int ttls_push_func(BIO *b, const char *buf, int len) { struct openconnect_info *vpninfo = BIO_get_data(b); int ret = pulse_eap_ttls_send(vpninfo, buf, len); if (ret >= 0) return ret; return 0; } static int ttls_pull_func(BIO *b, char *buf, int len) { struct openconnect_info *vpninfo = BIO_get_data(b); int ret = pulse_eap_ttls_recv(vpninfo, buf, len); if (ret >= 0) return ret; return 0; } static long ttls_ctrl_func(BIO *b, int cmd, long larg, void *iarg) { switch(cmd) { case BIO_CTRL_FLUSH: return 1; default: return 0; } } void *establish_eap_ttls(struct openconnect_info *vpninfo) { SSL *ttls_ssl = NULL; BIO *bio; int err; if (!vpninfo->ttls_bio_meth) vpninfo->ttls_bio_meth = eap_ttls_method(); bio = BIO_new(vpninfo->ttls_bio_meth); BIO_set_data(bio, vpninfo); BIO_set_init(bio, 1); ttls_ssl = SSL_new(vpninfo->https_ctx); workaround_openssl_certchain_bug(vpninfo, ttls_ssl); SSL_set_bio(ttls_ssl, bio, bio); SSL_set_verify(ttls_ssl, SSL_VERIFY_PEER, NULL); vpn_progress(vpninfo, PRG_INFO, _("EAP-TTLS negotiation with %s\n"), vpninfo->hostname); err = SSL_connect(ttls_ssl); if (err == 1) { vpn_progress(vpninfo, PRG_TRACE, _("Established EAP-TTLS session\n")); return ttls_ssl; } err = SSL_get_error(ttls_ssl, err); vpn_progress(vpninfo, PRG_ERR, _("EAP-TTLS connection failure %d\n"), err); openconnect_report_ssl_errors(vpninfo); SSL_free(ttls_ssl); return NULL; } void destroy_eap_ttls(struct openconnect_info *vpninfo, void *ttls) { SSL_free(ttls); /* Leave the BIO_METH for now. It may get reused and we don't want to * have to call BIO_get_new_index() more times than is necessary */ } openconnect-8.05/digest.c0000664000076400007640000001375113025070326017165 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include "openconnect-internal.h" #define ALGO_MD5 0 #define ALGO_MD5_SESS 1 static struct oc_text_buf *get_qs(char **str) { struct oc_text_buf *res; int escaped = 0; char *p = *str; if (*p != '\"') return NULL; res = buf_alloc(); while (*++p) { if (!escaped && *p == '\"') { *str = p+1; if (buf_error(res)) break; return res; } if (escaped) escaped = 0; else if (*p == '\\') escaped = 1; buf_append_bytes(res, p, 1); } buf_free(res); return NULL; } static void buf_append_unq(struct oc_text_buf *buf, const char *str) { while (*str) { if (*str == '\"' || *str == '\\') buf_append(buf, "\\"); buf_append_bytes(buf, str, 1); str++; } } static void buf_append_md5(struct oc_text_buf *buf, void *data, int len) { unsigned char md5[16]; if (openconnect_md5(md5, data, len)) { buf->error = -EIO; return; } buf_append_hex(buf, md5, 16); } int digest_authorization(struct openconnect_info *vpninfo, int proxy, struct http_auth_state *auth_state, struct oc_text_buf *hdrbuf) { char *chall; int ret = -EINVAL; int algo = ALGO_MD5; int qop_auth = 0; int nc = 1; struct oc_text_buf *realm = NULL, *nonce = NULL, *opaque = NULL; struct oc_text_buf *a1 = NULL, *a2 = NULL, *kd = NULL; struct oc_text_buf *cnonce = NULL; unsigned char cnonce_random[32]; const char *user, *pass; if (proxy) { user = vpninfo->proxy_user; pass = vpninfo->proxy_pass; } else { /* Need to parse this out of the URL */ return -EINVAL; } if (!user || !pass) return -EINVAL; if (auth_state->state < AUTH_AVAILABLE) return -EINVAL; if (auth_state->state == AUTH_IN_PROGRESS) { auth_state->state = AUTH_FAILED; return -EAGAIN; } chall = auth_state->challenge; if (!chall) return -EINVAL; while (*chall) { if (!realm && !strncmp(chall, "realm=", 6)) { chall += 6; realm = get_qs(&chall); if (!realm) goto err; } else if (!nonce && !strncmp(chall, "nonce=", 6)) { chall += 6; nonce = get_qs(&chall); if (!nonce) goto err; } else if (!strncmp(chall, "qop=", 4)) { chall += 4; if (strncmp(chall, "\"auth\"", 6)) { /* We don't support "auth-int" */ goto err; } qop_auth = 1; chall += 6; } else if (!opaque && !strncmp(chall, "opaque=", 7)) { chall += 7; opaque = get_qs(&chall); if (!opaque) goto err; } else if (!strncmp(chall, "algorithm=", 10)) { chall += 10; if (!strncmp(chall, "MD5-sess", 8)) { algo = ALGO_MD5_SESS; chall += 8; } else if (!strncmp(chall, "MD5", 3)) { algo = ALGO_MD5; chall += 3; } } else { char *p = strchr(chall, '='); if (!p) goto err; p++; if (*p == '\"') { /* Eat and discard a quoted-string */ int escaped = 0; p++; do { if (escaped) escaped = 0; else if (*p == '\\') escaped = 1; if (!*p) goto err; } while (escaped || *p != '\"'); chall = p+1; } else { /* Not quoted. Just find the next comma (or EOL) */ p = strchr(p, ','); if (!p) break; chall = p; } } while (isspace((int)(unsigned char)*chall)) chall++; if (!*chall) break; if (*chall != ',') goto err; chall++; while (isspace((int)(unsigned char)*chall)) chall++; if (!*chall) break; } if (!nonce || !realm) goto err; if (openconnect_random(&cnonce_random, sizeof(cnonce_random))) goto err; cnonce = buf_alloc(); buf_append_base64(cnonce, cnonce_random, sizeof(cnonce_random)); if (buf_error(cnonce)) goto err; /* * According to RFC2617 §3.2.2.2: * A1 = unq(username-value) ":" unq(realm-value) ":" passwd * So the username is escaped, while the password isn't. */ a1 = buf_alloc(); buf_append_unq(a1, user); buf_append(a1, ":%s:%s", realm->data, pass); if (buf_error(a1)) goto err; if (algo == ALGO_MD5_SESS) { struct oc_text_buf *old_a1 = a1; a1 = buf_alloc(); buf_append_md5(a1, old_a1->data, old_a1->pos); buf_free(old_a1); buf_append(a1, ":%s:%s\n", nonce->data, cnonce->data); if (buf_error(a1)) goto err; } a2 = buf_alloc(); buf_append(a2, "CONNECT:%s:%d", vpninfo->hostname, vpninfo->port); if (buf_error(a2)) goto err; kd = buf_alloc(); buf_append_md5(kd, a1->data, a1->pos); buf_append(kd, ":%s:", nonce->data); if (qop_auth) { buf_append(kd, "%08x:%s:auth:", nc, cnonce->data); } buf_append_md5(kd, a2->data, a2->pos); if (buf_error(kd)) goto err; buf_append(hdrbuf, "%sAuthorization: Digest username=\"", proxy ? "Proxy-" : ""); buf_append_unq(hdrbuf, user); buf_append(hdrbuf, "\", realm=\"%s\", nonce=\"%s\", uri=\"%s:%d\", ", realm->data, nonce->data, vpninfo->hostname, vpninfo->port); if (qop_auth) buf_append(hdrbuf, "cnonce=\"%s\", nc=%08x, qop=auth, ", cnonce->data, nc); if (opaque) buf_append(hdrbuf, "opaque=\"%s\", ", opaque->data); buf_append(hdrbuf, "response=\""); buf_append_md5(hdrbuf, kd->data, kd->pos); buf_append(hdrbuf, "\"\r\n"); ret = 0; auth_state->state = AUTH_IN_PROGRESS; if (proxy) vpn_progress(vpninfo, PRG_INFO, _("Attempting Digest authentication to proxy\n")); else vpn_progress(vpninfo, PRG_INFO, _("Attempting Digest authentication to server '%s'\n"), vpninfo->hostname); err: if (a1 && a1->data) memset(a1->data, 0, a1->pos); buf_free(a1); buf_free(a2); buf_free(kd); buf_free(realm); buf_free(nonce); buf_free(cnonce); buf_free(opaque); return ret; } openconnect-8.05/auth.c0000664000076400007640000012031313470043037016643 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * Copyright © 2013 John Morrissey * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include #include #include #include #include #ifndef _WIN32 #include #include #include #endif #include #include #include "openconnect-internal.h" static int xmlpost_append_form_opts(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_text_buf *body); static int cstp_can_gen_tokencode(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt); int openconnect_set_option_value(struct oc_form_opt *opt, const char *value) { if (opt->type == OC_FORM_OPT_SELECT) { struct oc_form_opt_select *sopt = (void *)opt; int i; for (i=0; inr_choices; i++) { if (!strcmp(value, sopt->choices[i]->name)) { opt->_value = sopt->choices[i]->name; return 0; } } return -EINVAL; } opt->_value = strdup(value); if (!opt->_value) return -ENOMEM; return 0; } static int prop_equals(xmlNode *xml_node, const char *name, const char *value) { char *tmp = (char *)xmlGetProp(xml_node, (unsigned char *)name); int ret = 0; if (tmp && !strcasecmp(tmp, value)) ret = 1; free(tmp); return ret; } static int parse_auth_choice(struct openconnect_info *vpninfo, struct oc_auth_form *form, xmlNode *xml_node) { struct oc_form_opt_select *opt; xmlNode *opt_node; int max_choices = 0, selection = 0; opt = calloc(1, sizeof(*opt)); if (!opt) return -ENOMEM; opt->form.type = OC_FORM_OPT_SELECT; opt->form.name = (char *)xmlGetProp(xml_node, (unsigned char *)"name"); opt->form.label = (char *)xmlGetProp(xml_node, (unsigned char *)"label"); if (!opt->form.name) { vpn_progress(vpninfo, PRG_ERR, _("Form choice has no name\n")); free_opt((struct oc_form_opt *)opt); return -EINVAL; } for (opt_node = xml_node->children; opt_node; opt_node = opt_node->next) max_choices++; opt->choices = calloc(1, max_choices * sizeof(struct oc_choice *)); if (!opt->choices) { free_opt((struct oc_form_opt *)opt); return -ENOMEM; } for (xml_node = xml_node->children; xml_node; xml_node = xml_node->next) { char *form_id; struct oc_choice *choice; if (xml_node->type != XML_ELEMENT_NODE) continue; if (strcmp((char *)xml_node->name, "option")) continue; form_id = (char *)xmlGetProp(xml_node, (unsigned char *)"value"); if (!form_id) form_id = (char *)xmlNodeGetContent(xml_node); if (!form_id) continue; choice = calloc(1, sizeof(*choice)); if (!choice) { free_opt((struct oc_form_opt *)opt); return -ENOMEM; } choice->name = form_id; choice->label = (char *)xmlNodeGetContent(xml_node); choice->auth_type = (char *)xmlGetProp(xml_node, (unsigned char *)"auth-type"); choice->override_name = (char *)xmlGetProp(xml_node, (unsigned char *)"override-name"); choice->override_label = (char *)xmlGetProp(xml_node, (unsigned char *)"override-label"); choice->second_auth = prop_equals(xml_node, "second-auth", "1"); choice->secondary_username = (char *)xmlGetProp(xml_node, (unsigned char *)"secondary_username"); choice->secondary_username_editable = prop_equals(xml_node, "secondary_username_editable", "true"); choice->noaaa = prop_equals(xml_node, "noaaa", "1"); if (prop_equals(xml_node, "selected", "true")) selection = opt->nr_choices; opt->choices[opt->nr_choices++] = choice; } if (!strcmp(opt->form.name, "group_list")) { form->authgroup_opt = opt; form->authgroup_selection = selection; } /* We link the choice _first_ so it's at the top of what we present to the user */ opt->form.next = form->opts; form->opts = &opt->form; return 0; } static int parse_form(struct openconnect_info *vpninfo, struct oc_auth_form *form, xmlNode *xml_node) { char *input_type, *input_name, *input_label; for (xml_node = xml_node->children; xml_node; xml_node = xml_node->next) { struct oc_form_opt *opt, **p; if (xml_node->type != XML_ELEMENT_NODE) continue; if (!strcmp((char *)xml_node->name, "select")) { if (parse_auth_choice(vpninfo, form, xml_node)) return -EINVAL; continue; } if (strcmp((char *)xml_node->name, "input")) { vpn_progress(vpninfo, PRG_DEBUG, _("name %s not input\n"), xml_node->name); continue; } input_type = (char *)xmlGetProp(xml_node, (unsigned char *)"type"); if (!input_type) { vpn_progress(vpninfo, PRG_INFO, _("No input type in form\n")); continue; } if (!strcmp(input_type, "submit") || !strcmp(input_type, "reset")) { free(input_type); continue; } input_name = (char *)xmlGetProp(xml_node, (unsigned char *)"name"); if (!input_name) { vpn_progress(vpninfo, PRG_INFO, _("No input name in form\n")); free(input_type); continue; } input_label = (char *)xmlGetProp(xml_node, (unsigned char *)"label"); opt = calloc(1, sizeof(*opt)); if (!opt) { free(input_type); free(input_name); free(input_label); return -ENOMEM; } opt->name = input_name; opt->label = input_label; opt->flags = prop_equals(xml_node, "second-auth", "1") ? OC_FORM_OPT_SECOND_AUTH : 0; if (!strcmp(input_type, "hidden")) { opt->type = OC_FORM_OPT_HIDDEN; opt->_value = (char *)xmlGetProp(xml_node, (unsigned char *)"value"); } else if (!strcmp(input_type, "text")) { opt->type = OC_FORM_OPT_TEXT; } else if (!strcmp(input_type, "password")) { if (!cstp_can_gen_tokencode(vpninfo, form, opt)) opt->type = OC_FORM_OPT_TOKEN; else opt->type = OC_FORM_OPT_PASSWORD; } else { vpn_progress(vpninfo, PRG_INFO, _("Unknown input type %s in form\n"), input_type); free(input_type); free(input_name); free(input_label); free(opt); continue; } free(input_type); p = &form->opts; while (*p) p = &(*p)->next; *p = opt; } return 0; } static char *xmlnode_msg(xmlNode *xml_node) { char *fmt = (char *)xmlNodeGetContent(xml_node); char *result, *params[2], *pct; int len; int nr_params = 0; if (!fmt || !fmt[0]) { free(fmt); return NULL; } len = strlen(fmt) + 1; params[0] = (char *)xmlGetProp(xml_node, (unsigned char *)"param1"); if (params[0]) len += strlen(params[0]); params[1] = (char *)xmlGetProp(xml_node, (unsigned char *)"param2"); if (params[1]) len += strlen(params[1]); result = malloc(len); if (!result) { result = fmt; goto out; } strcpy(result, fmt); free(fmt); for (pct = strchr(result, '%'); pct; (pct = strchr(pct, '%'))) { int paramlen; /* We only cope with '%s' */ if (pct[1] != 's') goto out; if (params[nr_params]) { paramlen = strlen(params[nr_params]); /* Move rest of fmt string up... */ memmove(pct + paramlen, pct + 2, strlen(pct + 2) + 1); /* ... and put the string parameter in where the '%s' was */ memcpy(pct, params[nr_params], paramlen); pct += paramlen; } else pct++; if (++nr_params == 2) break; } out: free(params[0]); free(params[1]); return result; } static int xmlnode_get_text(xmlNode *xml_node, const char *name, char **var) { char *str; if (name && !xmlnode_is_named(xml_node, name)) return -EINVAL; str = xmlnode_msg(xml_node); if (!str) return -ENOENT; free(*var); *var = str; return 0; } /* * Legacy server response looks like: * * "> * <!-- title to display to user --> * * * * * Please enter your username and password. *
* * * * * *
* * * New server response looks like: * * * * * * * foobar * 1234567 * * banner); xmlnode_get_text(xml_node, "message", &form->message); xmlnode_get_text(xml_node, "error", &form->error); if (xmlnode_is_named(xml_node, "form")) { /* defaults for new XML POST */ form->method = strdup("POST"); form->action = strdup("/"); xmlnode_get_prop(xml_node, "method", &form->method); xmlnode_get_prop(xml_node, "action", &form->action); if (!form->method || !form->action || strcasecmp(form->method, "POST") || !form->action[0]) { vpn_progress(vpninfo, PRG_ERR, _("Cannot handle form method='%s', action='%s'\n"), form->method, form->action); ret = -EINVAL; goto out; } ret = parse_form(vpninfo, form, xml_node); if (ret < 0) goto out; } else if (!vpninfo->csd_scriptname && xmlnode_is_named(xml_node, "csd")) { xmlnode_get_prop(xml_node, "token", &vpninfo->csd_token); xmlnode_get_prop(xml_node, "ticket", &vpninfo->csd_ticket); } else if (xmlnode_is_named(xml_node, "authentication-complete")) { /* Ick. Since struct oc_auth_form is public there's no * simple way to add a flag to it. So let's abuse the * auth_id string instead. */ free(form->auth_id); form->auth_id = strdup("openconnect_authentication_complete"); } /* For Windows, vpninfo->csd_xmltag will be "csd" and there are *two* nodes; one with token/ticket and one with the URLs. Process them both the same and rely on the fact that xmlnode_get_prop() will not *clear* the variable if no such property is found. */ if (!vpninfo->csd_scriptname && xmlnode_is_named(xml_node, vpninfo->csd_xmltag)) { /* ignore the CSD trojan binary on mobile platforms */ if (!vpninfo->csd_nostub) xmlnode_get_prop(xml_node, "stuburl", &vpninfo->csd_stuburl); xmlnode_get_prop(xml_node, "starturl", &vpninfo->csd_starturl); xmlnode_get_prop(xml_node, "waiturl", &vpninfo->csd_waiturl); vpninfo->csd_preurl = strdup(vpninfo->urlpath); } } out: return ret; } static int parse_host_scan_node(struct openconnect_info *vpninfo, xmlNode *xml_node) { /* ignore this whole section if the CSD trojan has already run */ if (vpninfo->csd_scriptname) return 0; for (xml_node = xml_node->children; xml_node; xml_node = xml_node->next) { if (xml_node->type != XML_ELEMENT_NODE) continue; xmlnode_get_text(xml_node, "host-scan-ticket", &vpninfo->csd_ticket); xmlnode_get_text(xml_node, "host-scan-token", &vpninfo->csd_token); xmlnode_get_text(xml_node, "host-scan-base-uri", &vpninfo->csd_starturl); xmlnode_get_text(xml_node, "host-scan-wait-uri", &vpninfo->csd_waiturl); } return 0; } static void parse_profile_node(struct openconnect_info *vpninfo, xmlNode *xml_node) { /* ignore this whole section if we already have a URL */ if (vpninfo->profile_url && vpninfo->profile_sha1) return; /* Find child... */ xml_node = xml_node->children; while (1) { if (!xml_node) return; if (xml_node->type == XML_ELEMENT_NODE && xmlnode_is_named(xml_node, "vpn") && !xmlnode_match_prop(xml_node, "rev", "1.0")) break; xml_node = xml_node->next; } /* Find */ xml_node = xml_node->children; while (1) { if (!xml_node) return; if (xml_node->type == XML_ELEMENT_NODE && xmlnode_is_named(xml_node, "file") && !xmlnode_match_prop(xml_node, "type", "profile") && !xmlnode_match_prop(xml_node, "service-type", "user")) break; xml_node = xml_node->next; } for (xml_node = xml_node->children; xml_node; xml_node = xml_node->next) { if (xml_node->type != XML_ELEMENT_NODE) continue; xmlnode_get_text(xml_node, "uri", &vpninfo->profile_url); /* FIXME: Check for */ xmlnode_get_text(xml_node, "hash", &vpninfo->profile_sha1); } } static void parse_config_node(struct openconnect_info *vpninfo, xmlNode *xml_node) { for (xml_node = xml_node->children; xml_node; xml_node = xml_node->next) { if (xml_node->type != XML_ELEMENT_NODE) continue; if (xmlnode_is_named(xml_node, "vpn-profile-manifest")) parse_profile_node(vpninfo, xml_node); } } /* Return value: * < 0, on error * = 0, on success; *form is populated */ static int parse_xml_response(struct openconnect_info *vpninfo, char *response, struct oc_auth_form **formp, int *cert_rq) { struct oc_auth_form *form; xmlDocPtr xml_doc; xmlNode *xml_node; int ret; if (*formp) { free_auth_form(*formp); *formp = NULL; } if (cert_rq) *cert_rq = 0; if (!response) { vpn_progress(vpninfo, PRG_DEBUG, _("Empty response from server\n")); return -EINVAL; } form = calloc(1, sizeof(*form)); if (!form) return -ENOMEM; xml_doc = xmlReadMemory(response, strlen(response), "noname.xml", NULL, XML_PARSE_NOERROR|XML_PARSE_RECOVER); if (!xml_doc) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse server response\n")); vpn_progress(vpninfo, PRG_DEBUG, _("Response was:%s\n"), response); free(form); return -EINVAL; } xml_node = xmlDocGetRootElement(xml_doc); while (xml_node) { ret = 0; if (xml_node->type != XML_ELEMENT_NODE) { xml_node = xml_node->next; continue; } if (xmlnode_is_named(xml_node, "config-auth")) { /* if we do have a config-auth node, it is the root element */ xml_node = xml_node->children; continue; } else if (xmlnode_is_named(xml_node, "client-cert-request")) { if (cert_rq) *cert_rq = 1; else { vpn_progress(vpninfo, PRG_ERR, _("Received when not expected.\n")); ret = -EINVAL; } } else if (xmlnode_is_named(xml_node, "auth")) { xmlnode_get_prop(xml_node, "id", &form->auth_id); ret = parse_auth_node(vpninfo, xml_node, form); } else if (xmlnode_is_named(xml_node, "opaque")) { if (vpninfo->opaque_srvdata) xmlFreeNode(vpninfo->opaque_srvdata); vpninfo->opaque_srvdata = xmlCopyNode(xml_node, 1); if (!vpninfo->opaque_srvdata) ret = -ENOMEM; } else if (xmlnode_is_named(xml_node, "host-scan")) { ret = parse_host_scan_node(vpninfo, xml_node); } else if (xmlnode_is_named(xml_node, "config")) { parse_config_node(vpninfo, xml_node); } else { xmlnode_get_text(xml_node, "session-token", &vpninfo->cookie); xmlnode_get_text(xml_node, "error", &form->error); } if (ret) goto out; xml_node = xml_node->next; } if (!form->auth_id && (!cert_rq || !*cert_rq)) { vpn_progress(vpninfo, PRG_ERR, _("XML response has no \"auth\" node\n")); ret = -EINVAL; goto out; } *formp = form; xmlFreeDoc(xml_doc); return 0; out: xmlFreeDoc(xml_doc); free_auth_form(form); return ret; } /* Return value: * < 0, on error * = OC_FORM_RESULT_OK (0), when form parsed and POST required * = OC_FORM_RESULT_CANCELLED, when response was cancelled by user * = OC_FORM_RESULT_LOGGEDIN, when form indicates that login was already successful */ static int handle_auth_form(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_text_buf *request_body, const char **method, const char **request_body_type) { int ret; struct oc_vpn_option *opt, *next; if (!strcmp(form->auth_id, "success")) return OC_FORM_RESULT_LOGGEDIN; if (vpninfo->nopasswd) { vpn_progress(vpninfo, PRG_ERR, _("Asked for password but '--no-passwd' set\n")); return -EPERM; } if (vpninfo->csd_token && vpninfo->csd_ticket && vpninfo->csd_starturl && vpninfo->csd_waiturl) { /* AB: remove all cookies */ for (opt = vpninfo->cookies; opt; opt = next) { next = opt->next; free(opt->option); free(opt->value); free(opt); } vpninfo->cookies = NULL; return OC_FORM_RESULT_OK; } if (!form->opts) { if (form->message) vpn_progress(vpninfo, PRG_INFO, "%s\n", form->message); if (form->error) vpn_progress(vpninfo, PRG_ERR, "%s\n", form->error); if (!strcmp(form->auth_id, "openconnect_authentication_complete")) goto justpost; return -EPERM; } ret = process_auth_form(vpninfo, form); if (ret) return ret; /* tokencode generation is deferred until after username prompts and CSD */ ret = do_gen_tokencode(vpninfo, form); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("Failed to generate OTP tokencode; disabling token\n")); vpninfo->token_bypassed = 1; return ret; } justpost: ret = vpninfo->xmlpost ? xmlpost_append_form_opts(vpninfo, form, request_body) : append_form_opts(vpninfo, form, request_body); if (!ret) { *method = "POST"; *request_body_type = "application/x-www-form-urlencoded"; } return ret; } /* * Old submission format is just an HTTP query string: * * password=12345678&username=joe * * New XML format is more complicated: * * * * * * * * * For init only, add: * https:// * * For auth-reply only, add: * * * * * * */ #define XCAST(x) ((const xmlChar *)(x)) static xmlDocPtr xmlpost_new_query(struct openconnect_info *vpninfo, const char *type, xmlNodePtr *rootp) { xmlDocPtr doc; xmlNodePtr root, node; doc = xmlNewDoc(XCAST("1.0")); if (!doc) return NULL; *rootp = root = xmlNewNode(NULL, XCAST("config-auth")); if (!root) goto bad; if (!xmlNewProp(root, XCAST("client"), XCAST("vpn"))) goto bad; if (!xmlNewProp(root, XCAST("type"), XCAST(type))) goto bad; xmlDocSetRootElement(doc, root); node = xmlNewTextChild(root, NULL, XCAST("version"), XCAST(vpninfo->version_string ? : openconnect_version_str)); if (!node) goto bad; if (!xmlNewProp(node, XCAST("who"), XCAST("vpn"))) goto bad; node = xmlNewTextChild(root, NULL, XCAST("device-id"), XCAST(vpninfo->platname)); if (!node) goto bad; if (vpninfo->mobile_platform_version) { if (!xmlNewProp(node, XCAST("platform-version"), XCAST(vpninfo->mobile_platform_version)) || !xmlNewProp(node, XCAST("device-type"), XCAST(vpninfo->mobile_device_type)) || !xmlNewProp(node, XCAST("unique-id"), XCAST(vpninfo->mobile_device_uniqueid))) goto bad; } return doc; bad: xmlFreeDoc(doc); return NULL; } static int xmlpost_complete(xmlDocPtr doc, struct oc_text_buf *body) { xmlChar *mem = NULL; int len, ret = 0; if (!body) { xmlFree(doc); return 0; } xmlDocDumpMemoryEnc(doc, &mem, &len, "UTF-8"); if (!mem) { xmlFreeDoc(doc); return -ENOMEM; } buf_append_bytes(body, mem, len); xmlFreeDoc(doc); xmlFree(mem); return ret; } static int xmlpost_initial_req(struct openconnect_info *vpninfo, struct oc_text_buf *request_body, int cert_fail) { xmlNodePtr root, node; xmlDocPtr doc = xmlpost_new_query(vpninfo, "init", &root); struct oc_text_buf *url_buf; if (!doc) return -ENOMEM; url_buf = buf_alloc(); buf_append(url_buf, "https://%s", vpninfo->hostname); if (vpninfo->port != 443) buf_append(url_buf, ":%d", vpninfo->port); /* Do we *need* to omit the trailing / here when no path? */ if (vpninfo->urlpath) buf_append(url_buf, "/%s", vpninfo->urlpath); if (buf_error(url_buf)) { buf_free(url_buf); goto bad; } node = xmlNewTextChild(root, NULL, XCAST("group-access"), XCAST(url_buf->data)); buf_free(url_buf); if (!node) goto bad; if (cert_fail) { node = xmlNewTextChild(root, NULL, XCAST("client-cert-fail"), NULL); if (!node) goto bad; } if (vpninfo->authgroup) { node = xmlNewTextChild(root, NULL, XCAST("group-select"), XCAST(vpninfo->authgroup)); if (!node) goto bad; } return xmlpost_complete(doc, request_body); bad: buf_free(url_buf); xmlpost_complete(doc, NULL); return -ENOMEM; } static int xmlpost_append_form_opts(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_text_buf *body) { xmlNodePtr root, node; xmlDocPtr doc = xmlpost_new_query(vpninfo, "auth-reply", &root); struct oc_form_opt *opt; if (!doc) return -ENOMEM; if (vpninfo->opaque_srvdata) { node = xmlCopyNode(vpninfo->opaque_srvdata, 1); if (!node) goto bad; if (!xmlAddChild(root, node)) goto bad; } node = xmlNewChild(root, NULL, XCAST("auth"), NULL); if (!node) goto bad; for (opt = form->opts; opt; opt = opt->next) { /* group_list: create a new node under */ if (!strcmp(opt->name, "group_list")) { if (!xmlNewTextChild(root, NULL, XCAST("group-select"), XCAST(opt->_value))) goto bad; continue; } /* answer,whichpin,new_password: rename to "password" */ if (!strcmp(opt->name, "answer") || !strcmp(opt->name, "whichpin") || !strcmp(opt->name, "new_password")) { if (!xmlNewTextChild(node, NULL, XCAST("password"), XCAST(opt->_value))) goto bad; continue; } /* verify_pin,verify_password: ignore */ if (!strcmp(opt->name, "verify_pin") || !strcmp(opt->name, "verify_password")) { continue; } /* everything else: create user_input under */ if (!xmlNewTextChild(node, NULL, XCAST(opt->name), XCAST(opt->_value))) goto bad; } if (vpninfo->csd_token && !xmlNewTextChild(root, NULL, XCAST("host-scan-token"), XCAST(vpninfo->csd_token))) goto bad; return xmlpost_complete(doc, body); bad: xmlpost_complete(doc, NULL); return -ENOMEM; } /* Return value: * < 0, if unable to generate a tokencode * = 0, on success */ static int cstp_can_gen_tokencode(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt) { if (vpninfo->token_mode == OC_TOKEN_MODE_NONE || vpninfo->token_bypassed) return -EINVAL; #ifdef HAVE_LIBSTOKEN if (vpninfo->token_mode == OC_TOKEN_MODE_STOKEN) { if (strcmp(opt->name, "password") && strcmp(opt->name, "answer")) return -EINVAL; return can_gen_stoken_code(vpninfo, form, opt); } #endif /* Otherwise it's an OATH token of some kind. */ if (!strcmp(opt->name, "secondary_password") || (form->auth_id && !strcmp(form->auth_id, "challenge"))) return can_gen_tokencode(vpninfo, form, opt); return -EINVAL; } static int fetch_config(struct openconnect_info *vpninfo) { struct oc_text_buf *buf; int result; unsigned char local_sha1_bin[SHA1_SIZE]; char local_sha1_ascii[(SHA1_SIZE * 2)+1]; int i; if (!vpninfo->profile_url || !vpninfo->profile_sha1 || !vpninfo->write_new_config) return -ENOENT; if (!strncasecmp(vpninfo->xmlsha1, vpninfo->profile_sha1, SHA1_SIZE * 2)) { vpn_progress(vpninfo, PRG_TRACE, _("Not downloading XML profile because SHA1 already matches\n")); return 0; } if ((result = openconnect_open_https(vpninfo))) { vpn_progress(vpninfo, PRG_ERR, _("Failed to open HTTPS connection to %s\n"), vpninfo->hostname); return result; } buf = buf_alloc(); if (vpninfo->port != 443) buf_append(buf, "GET %s:%d HTTP/1.1\r\n", vpninfo->profile_url, vpninfo->port); else buf_append(buf, "GET %s HTTP/1.1\r\n", vpninfo->profile_url); cstp_common_headers(vpninfo, buf); if (vpninfo->xmlpost) buf_append(buf, "Cookie: webvpn=%s\r\n", vpninfo->cookie); buf_append(buf, "\r\n"); if (buf_error(buf)) return buf_free(buf); if (vpninfo->ssl_write(vpninfo, buf->data, buf->pos) != buf->pos) { vpn_progress(vpninfo, PRG_ERR, _("Failed to send GET request for new config\n")); buf_free(buf); return -EIO; } result = process_http_response(vpninfo, 0, NULL, buf); if (result < 0) { /* We'll already have complained about whatever offended us */ buf_free(buf); return -EINVAL; } if (result != 200) { buf_free(buf); return -EINVAL; } openconnect_sha1(local_sha1_bin, buf->data, buf->pos); for (i = 0; i < SHA1_SIZE; i++) sprintf(&local_sha1_ascii[i*2], "%02x", local_sha1_bin[i]); if (strcasecmp(vpninfo->profile_sha1, local_sha1_ascii)) { vpn_progress(vpninfo, PRG_ERR, _("Downloaded config file did not match intended SHA1\n")); buf_free(buf); return -EINVAL; } vpn_progress(vpninfo, PRG_DEBUG, _("Downloaded new XML profile\n")); result = vpninfo->write_new_config(vpninfo->cbdata, buf->data, buf->pos); buf_free(buf); return result; } int set_csd_user(struct openconnect_info *vpninfo) { #if defined(_WIN32) || defined(__native_client__) vpn_progress(vpninfo, PRG_ERR, _("Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet implemented.\n")); return -EPERM; #else setsid(); if (vpninfo->uid_csd_given && vpninfo->uid_csd != getuid()) { struct passwd *pw; int e; if (setgid(vpninfo->gid_csd)) { e = errno; fprintf(stderr, _("Failed to set gid %ld: %s\n"), (long)vpninfo->uid_csd, strerror(e)); return -e; } if (setgroups(1, &vpninfo->gid_csd)) { e = errno; fprintf(stderr, _("Failed to set groups to %ld: %s\n"), (long)vpninfo->uid_csd, strerror(e)); return -e; } if (setuid(vpninfo->uid_csd)) { e = errno; fprintf(stderr, _("Failed to set uid %ld: %s\n"), (long)vpninfo->uid_csd, strerror(e)); return -e; } if (!(pw = getpwuid(vpninfo->uid_csd))) { e = errno; fprintf(stderr, _("Invalid user uid=%ld: %s\n"), (long)vpninfo->uid_csd, strerror(e)); return -e; } setenv("HOME", pw->pw_dir, 1); if (chdir(pw->pw_dir)) { e = errno; fprintf(stderr, _("Failed to change to CSD home directory '%s': %s\n"), pw->pw_dir, strerror(e)); return -e; } } return 0; #endif } static int run_csd_script(struct openconnect_info *vpninfo, char *buf, int buflen) { #if defined(_WIN32) || defined(__native_client__) vpn_progress(vpninfo, PRG_ERR, _("Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet implemented.\n")); return -EPERM; #else char fname[64]; int fd, ret; pid_t child; if (!vpninfo->csd_wrapper && !buflen) { vpn_progress(vpninfo, PRG_ERR, _("Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n")); return -EINVAL; } if (!vpninfo->uid_csd_given && !vpninfo->csd_wrapper) { vpn_progress(vpninfo, PRG_ERR, _("Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish to enable it.\n")); return -EPERM; } #ifndef __linux__ vpn_progress(vpninfo, PRG_INFO, _("Trying to run Linux CSD trojan script.\n")); #endif fname[0] = 0; if (buflen) { struct oc_vpn_option *opt; const char *tmpdir = NULL; /* If the caller wanted $TMPDIR set for the CSD script, that means for us too; look through the csd_env for a TMPDIR override. */ for (opt = vpninfo->csd_env; opt; opt = opt->next) { if (!strcmp(opt->option, "TMPDIR")) { tmpdir = opt->value; break; } } if (!opt) tmpdir = getenv("TMPDIR"); if (!tmpdir && !access("/var/tmp", W_OK)) tmpdir = "/var/tmp"; if (!tmpdir) tmpdir = "/tmp"; if (access(tmpdir, W_OK)) vpn_progress(vpninfo, PRG_ERR, _("Temporary directory '%s' is not writable: %s\n"), tmpdir, strerror(errno)); snprintf(fname, 64, "%s/csdXXXXXX", tmpdir); fd = mkstemp(fname); if (fd < 0) { int err = -errno; vpn_progress(vpninfo, PRG_ERR, _("Failed to open temporary CSD script file: %s\n"), strerror(errno)); return err; } ret = write(fd, (void *)buf, buflen); if (ret != buflen) { int err = -errno; vpn_progress(vpninfo, PRG_ERR, _("Failed to write temporary CSD script file: %s\n"), strerror(errno)); return err; } fchmod(fd, 0755); close(fd); } child = fork(); if (child == -1) { goto out; } else if (child > 0) { /* in parent: must reap child process */ int status; waitpid(child, &status, 0); } else { /* in child: run CSD script as daemon */ if (fork()) { /* child must use _exit(2) */ _exit(0); } else { /* in grandchild: will be reaped by init */ char scertbuf[MD5_SIZE * 2 + 1]; char ccertbuf[MD5_SIZE * 2 + 1]; char *csd_argv[32]; int i = 0; if (set_csd_user(vpninfo) < 0) exit(1); if (getuid() == 0 && !vpninfo->csd_wrapper) { fprintf(stderr, _("Warning: you are running insecure " "CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n")); } /* Spurious stdout output from the CSD trojan will break both the NM tool and the various cookieonly modes. */ dup2(2, 1); if (vpninfo->csd_wrapper) csd_argv[i++] = openconnect_utf8_to_legacy(vpninfo, vpninfo->csd_wrapper); csd_argv[i++] = fname; csd_argv[i++] = (char *)"-ticket"; if (asprintf(&csd_argv[i++], "\"%s\"", vpninfo->csd_ticket) == -1) goto out; csd_argv[i++] = (char *)"-stub"; csd_argv[i++] = (char *)"\"0\""; csd_argv[i++] = (char *)"-group"; if (asprintf(&csd_argv[i++], "\"%s\"", vpninfo->authgroup?:"") == -1) goto out; openconnect_local_cert_md5(vpninfo, ccertbuf); scertbuf[0] = 0; get_cert_md5_fingerprint(vpninfo, vpninfo->peer_cert, scertbuf); csd_argv[i++] = (char *)"-certhash"; if (asprintf(&csd_argv[i++], "\"%s:%s\"", scertbuf, ccertbuf) == -1) goto out; csd_argv[i++] = (char *)"-url"; if (asprintf(&csd_argv[i++], "\"https://%s%s\"", openconnect_get_hostname(vpninfo), vpninfo->csd_starturl) == -1) goto out; csd_argv[i++] = (char *)"-langselen"; csd_argv[i++] = NULL; if (setenv("CSD_SHA256", openconnect_get_peer_cert_hash(vpninfo)+11, 1)) /* remove initial 'pin-sha256:' */ goto out; if (setenv("CSD_TOKEN", vpninfo->csd_token, 1)) goto out; if (setenv("CSD_HOSTNAME", openconnect_get_hostname(vpninfo), 1)) goto out; apply_script_env(vpninfo->csd_env); execv(csd_argv[0], csd_argv); out: vpn_progress(vpninfo, PRG_ERR, _("Failed to exec CSD script %s\n"), csd_argv[0]); exit(1); } } free(vpninfo->csd_stuburl); vpninfo->csd_stuburl = NULL; free(vpninfo->urlpath); vpninfo->urlpath = strdup(vpninfo->csd_waiturl + (vpninfo->csd_waiturl[0] == '/' ? 1 : 0)); free(vpninfo->csd_waiturl); vpninfo->csd_waiturl = NULL; vpninfo->csd_scriptname = strdup(fname); http_add_cookie(vpninfo, "sdesktop", vpninfo->csd_token, 1); return 0; #endif /* !_WIN32 && !__native_client__ */ } /* Return value: * < 0, if the data is unrecognized * = 0, if the page contains an XML document * = 1, if the page is a wait/refresh HTML page */ static int check_response_type(struct openconnect_info *vpninfo, char *form_buf) { if (strncmp(form_buf, " 0, no cookie (user cancel) * = 0, obtained cookie */ int cstp_obtain_cookie(struct openconnect_info *vpninfo) { struct oc_vpn_option *opt; char *form_buf = NULL; struct oc_auth_form *form = NULL; int result, buflen, tries; struct oc_text_buf *request_body = buf_alloc(); const char *request_body_type = "application/x-www-form-urlencoded"; const char *method = "POST"; char *orig_host = NULL, *orig_path = NULL, *form_path = NULL; int orig_port = 0; int cert_rq, cert_sent = !vpninfo->cert; int newgroup_attempts = 5; if (!vpninfo->xmlpost) goto no_xmlpost; /* * Step 2: Probe for XML POST compatibility * * This can get stuck in a redirect loop, so give up after any of: * * a) HTTP error (e.g. 400 Bad Request) * b) Same-host redirect (e.g. Location: /foo/bar) * c) Three redirects without seeing a plausible login form */ newgroup: if (newgroup_attempts-- <= 0) { result = -1; goto out; } buf_truncate(request_body); result = xmlpost_initial_req(vpninfo, request_body, 0); if (result < 0) goto out; free(orig_host); free(orig_path); orig_host = strdup(vpninfo->hostname); orig_path = vpninfo->urlpath ? strdup(vpninfo->urlpath) : NULL; orig_port = vpninfo->port; for (tries = 0; ; tries++) { if (tries == 3) { fail: if (vpninfo->xmlpost) { no_xmlpost: /* Try without XML POST this time... */ tries = 0; vpninfo->xmlpost = 0; request_body_type = NULL; buf_truncate(request_body); method = "GET"; if (orig_host) { openconnect_set_hostname(vpninfo, orig_host); free(orig_host); orig_host = NULL; free(vpninfo->urlpath); vpninfo->urlpath = orig_path; orig_path = NULL; vpninfo->port = orig_port; } openconnect_close_https(vpninfo, 0); } else { result = -EIO; goto out; } } result = do_https_request(vpninfo, method, request_body_type, request_body, &form_buf, 0); if (vpninfo->got_cancel_cmd) { result = 1; goto out; } if (result == -EINVAL) goto fail; if (result < 0) goto out; /* Some ASAs forget to send the TLS cert request on the initial connection. * If we have a client cert, disable HTTP keepalive until we get a real * login form (not a redirect). */ if (!cert_sent) openconnect_close_https(vpninfo, 0); /* XML POST does not allow local redirects, but GET does. */ if (vpninfo->xmlpost && vpninfo->redirect_type == REDIR_TYPE_LOCAL) goto fail; else if (vpninfo->redirect_type != REDIR_TYPE_NONE) continue; result = parse_xml_response(vpninfo, form_buf, &form, &cert_rq); if (result < 0) goto fail; if (cert_rq) { int cert_failed = 0; free_auth_form(form); form = NULL; if (!cert_sent && vpninfo->cert) { /* Try again on a fresh connection. */ cert_sent = 1; } else if (cert_sent && vpninfo->cert) { /* Try again with in the request */ vpn_progress(vpninfo, PRG_ERR, _("Server requested SSL client certificate after one was provided\n")); cert_failed = 1; } else { vpn_progress(vpninfo, PRG_INFO, _("Server requested SSL client certificate; none was configured\n")); cert_failed = 1; } buf_truncate(request_body); result = xmlpost_initial_req(vpninfo, request_body, cert_failed); if (result < 0) goto fail; continue; } if (form && form->action) { vpninfo->redirect_url = strdup(form->action); handle_redirect(vpninfo); } break; } if (vpninfo->xmlpost) vpn_progress(vpninfo, PRG_INFO, _("XML POST enabled\n")); /* Step 4: Run the CSD trojan, if applicable */ if (vpninfo->csd_starturl && vpninfo->csd_waiturl) { buflen = 0; if (vpninfo->urlpath) { form_path = strdup(vpninfo->urlpath); if (!form_path) { result = -ENOMEM; goto out; } } /* fetch the CSD program, if available */ if (vpninfo->csd_stuburl) { vpninfo->redirect_url = vpninfo->csd_stuburl; vpninfo->csd_stuburl = NULL; handle_redirect(vpninfo); buflen = do_https_request(vpninfo, "GET", NULL, NULL, &form_buf, 0); if (buflen <= 0) { result = -EINVAL; goto out; } } /* This is the CSD stub script, which we now need to run */ result = run_csd_script(vpninfo, form_buf, buflen); if (result) goto out; /* vpninfo->urlpath now points to the wait page */ while (1) { result = do_https_request(vpninfo, "GET", NULL, NULL, &form_buf, 0); if (result <= 0) break; result = check_response_type(vpninfo, form_buf); if (result <= 0) break; vpn_progress(vpninfo, PRG_INFO, _("Refreshing %s after 1 second...\n"), vpninfo->urlpath); sleep(1); } if (result < 0) goto out; /* refresh the form page, to see if we're authorized now */ free(vpninfo->urlpath); vpninfo->urlpath = form_path; form_path = NULL; result = do_https_request(vpninfo, vpninfo->xmlpost ? "POST" : "GET", request_body_type, request_body, &form_buf, 1); if (result < 0) goto out; result = parse_xml_response(vpninfo, form_buf, &form, NULL); if (result < 0) goto out; } /* Step 5: Ask the user to fill in the auth form; repeat as necessary */ while (1) { buf_truncate(request_body); result = handle_auth_form(vpninfo, form, request_body, &method, &request_body_type); if (result < 0 || result == OC_FORM_RESULT_CANCELLED) goto out; if (result == OC_FORM_RESULT_LOGGEDIN) break; if (result == OC_FORM_RESULT_NEWGROUP) { free(form_buf); form_buf = NULL; free_auth_form(form); form = NULL; goto newgroup; } result = do_https_request(vpninfo, method, request_body_type, request_body, &form_buf, 1); if (result < 0) goto out; result = parse_xml_response(vpninfo, form_buf, &form, NULL); if (result < 0) goto out; if (form->action) { vpninfo->redirect_url = strdup(form->action); handle_redirect(vpninfo); } } /* A return value of 2 means the XML form indicated success. We _should_ have a cookie... */ for (opt = vpninfo->cookies; opt; opt = opt->next) { if (!strcmp(opt->option, "webvpn")) { free(vpninfo->cookie); vpninfo->cookie = strdup(opt->value); } else if (vpninfo->write_new_config && !strcmp(opt->option, "webvpnc")) { char *tok = opt->value; char *bu = NULL, *fu = NULL, *sha = NULL; do { if (tok != opt->value) *(tok++) = 0; if (!strncmp(tok, "bu:", 3)) bu = tok + 3; else if (!strncmp(tok, "fu:", 3)) fu = tok + 3; else if (!strncmp(tok, "fh:", 3)) sha = tok + 3; } while ((tok = strchr(tok, '&'))); if (bu && fu && sha) { if (asprintf(&vpninfo->profile_url, "%s%s", bu, fu) == -1) { result = -ENOMEM; goto out; } vpninfo->profile_sha1 = strdup(sha); } } } result = 0; fetch_config(vpninfo); out: buf_free(request_body); free (orig_host); free (orig_path); free(form_path); free(form_buf); free_auth_form(form); if (vpninfo->csd_scriptname) { unlink(vpninfo->csd_scriptname); free(vpninfo->csd_scriptname); vpninfo->csd_scriptname = NULL; } return result; } openconnect-8.05/gssapi.c0000664000076400007640000002467212727726520017214 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include "openconnect-internal.h" static void print_gss_err(struct openconnect_info *vpninfo, const char *where, gss_OID mech, OM_uint32 err_maj, OM_uint32 err_min) { OM_uint32 major, minor, msg_ctx = 0; gss_buffer_desc status; do { major = gss_display_status(&minor, err_maj, GSS_C_GSS_CODE, mech, &msg_ctx, &status); if (GSS_ERROR(major)) break; vpn_progress(vpninfo, PRG_ERR, "%s: %s\n", where, (char *)status.value); gss_release_buffer(&minor, &status); } while (msg_ctx); msg_ctx = 0; do { major = gss_display_status(&minor, err_min, GSS_C_MECH_CODE, mech, &msg_ctx, &status); if (GSS_ERROR(major)) break; vpn_progress(vpninfo, PRG_ERR, "%s: %s\n", where, (char *)status.value); gss_release_buffer(&minor, &status); } while (msg_ctx); } static const char spnego_OID[] = "\x2b\x06\x01\x05\x05\x02"; static const gss_OID_desc gss_mech_spnego = { 6, (void *)&spnego_OID }; static int gssapi_setup(struct openconnect_info *vpninfo, struct http_auth_state *auth_state, const char *service, int proxy) { OM_uint32 major, minor; gss_buffer_desc token = GSS_C_EMPTY_BUFFER; char *name; if (asprintf(&name, "%s@%s", service, proxy ? vpninfo->proxy : vpninfo->hostname) == -1) return -ENOMEM; token.length = strlen(name); token.value = name; major = gss_import_name(&minor, &token, (gss_OID)GSS_C_NT_HOSTBASED_SERVICE, &auth_state->gss_target_name); free(name); if (GSS_ERROR(major)) { vpn_progress(vpninfo, PRG_ERR, _("Error importing GSSAPI name for authentication:\n")); print_gss_err(vpninfo, "gss_import_name()", GSS_C_NO_OID, major, minor); return -EIO; } return 0; } #define GSSAPI_CONTINUE 2 #define GSSAPI_COMPLETE 3 int gssapi_authorization(struct openconnect_info *vpninfo, int proxy, struct http_auth_state *auth_state, struct oc_text_buf *hdrbuf) { OM_uint32 major, minor; gss_buffer_desc in = GSS_C_EMPTY_BUFFER; gss_buffer_desc out = GSS_C_EMPTY_BUFFER; gss_OID mech = GSS_C_NO_OID; if (auth_state->state == AUTH_AVAILABLE && gssapi_setup(vpninfo, auth_state, "HTTP", proxy)) { auth_state->state = AUTH_FAILED; return -EIO; } if (auth_state->challenge && *auth_state->challenge) { int len = -EINVAL; in.value = openconnect_base64_decode(&len, auth_state->challenge); if (!in.value) return len; in.length = len; } else if (auth_state->state > AUTH_AVAILABLE) { /* This indicates failure. We were trying, but got an empty 'Proxy-Authorization: Negotiate' header back from the server implying that we should start again... */ goto fail_gssapi; } major = gss_init_sec_context(&minor, GSS_C_NO_CREDENTIAL, &auth_state->gss_context, auth_state->gss_target_name, (gss_OID)&gss_mech_spnego, GSS_C_MUTUAL_FLAG, GSS_C_INDEFINITE, GSS_C_NO_CHANNEL_BINDINGS, &in, &mech, &out, NULL, NULL); if (in.value) free(in.value); if (major == GSS_S_COMPLETE) auth_state->state = GSSAPI_COMPLETE; else if (major == GSS_S_CONTINUE_NEEDED) auth_state->state = GSSAPI_CONTINUE; else { vpn_progress(vpninfo, PRG_ERR, _("Error generating GSSAPI response:\n")); print_gss_err(vpninfo, "gss_init_sec_context()", mech, major, minor); fail_gssapi: auth_state->state = AUTH_FAILED; cleanup_gssapi_auth(vpninfo, auth_state); /* If we were *trying*, then -EAGAIN. Else -ENOENT to let another auth method try without having to reconnect first. */ return in.value ? -EAGAIN : -ENOENT; } buf_append(hdrbuf, "%sAuthorization: Negotiate ", proxy ? "Proxy-" : ""); buf_append_base64(hdrbuf, out.value, out.length); buf_append(hdrbuf, "\r\n"); gss_release_buffer(&minor, &out); if (!auth_state->challenge) { if (proxy) vpn_progress(vpninfo, PRG_INFO, _("Attempting GSSAPI authentication to proxy\n")); else vpn_progress(vpninfo, PRG_INFO, _("Attempting GSSAPI authentication to server '%s'\n"), vpninfo->hostname); } return 0; } /* auth_state is NULL when called from socks_gssapi_auth() */ void cleanup_gssapi_auth(struct openconnect_info *vpninfo, struct http_auth_state *auth_state) { OM_uint32 minor; if (auth_state->gss_target_name != GSS_C_NO_NAME) gss_release_name(&minor, &auth_state->gss_target_name); if (auth_state->gss_context != GSS_C_NO_CONTEXT) gss_delete_sec_context(&minor, &auth_state->gss_context, GSS_C_NO_BUFFER); /* Shouldn't be necessary, but make sure... */ auth_state->gss_target_name = GSS_C_NO_NAME; auth_state->gss_context = GSS_C_NO_CONTEXT; } int socks_gssapi_auth(struct openconnect_info *vpninfo) { gss_buffer_desc in = GSS_C_EMPTY_BUFFER; gss_buffer_desc out = GSS_C_EMPTY_BUFFER; gss_OID mech = GSS_C_NO_OID; OM_uint32 major, minor; unsigned char *pktbuf; int i; int ret = -EIO; struct http_auth_state *auth_state = &vpninfo->proxy_auth[AUTH_TYPE_GSSAPI]; if (gssapi_setup(vpninfo, auth_state, "rcmd", 1)) return -EIO; pktbuf = malloc(65538); if (!pktbuf) return -ENOMEM; while (1) { major = gss_init_sec_context(&minor, GSS_C_NO_CREDENTIAL, &auth_state->gss_context, auth_state->gss_target_name, (gss_OID)&gss_mech_spnego, GSS_C_MUTUAL_FLAG | GSS_C_REPLAY_FLAG | GSS_C_DELEG_FLAG | GSS_C_SEQUENCE_FLAG, GSS_C_INDEFINITE, GSS_C_NO_CHANNEL_BINDINGS, &in, &mech, &out, NULL, NULL); in.value = NULL; if (major == GSS_S_COMPLETE) { /* If we still have a token to send, send it. */ if (!out.length) { vpn_progress(vpninfo, PRG_DEBUG, _("GSSAPI authentication completed\n")); gss_release_buffer(&minor, &out); ret = 0; break; } } else if (major != GSS_S_CONTINUE_NEEDED) { print_gss_err(vpninfo, "gss_init_sec_context()", mech, major, minor); break; } if (out.length > 65535) { vpn_progress(vpninfo, PRG_ERR, _("GSSAPI token too large (%zd bytes)\n"), out.length); break; } pktbuf[0] = 1; /* ver */ pktbuf[1] = 1; /* mtyp */ store_be16(pktbuf + 2, out.length); memcpy(pktbuf + 4, out.value, out.length); free(out.value); vpn_progress(vpninfo, PRG_TRACE, _("Sending GSSAPI token of %zu bytes\n"), out.length + 4); i = vpninfo->ssl_write(vpninfo, (void *)pktbuf, out.length + 4); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to send GSSAPI authentication token to proxy: %s\n"), strerror(-i)); break; } i = vpninfo->ssl_read(vpninfo, (void *)pktbuf, 4); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to receive GSSAPI authentication token from proxy: %s\n"), strerror(-i)); break; } if (pktbuf[1] == 0xff) { vpn_progress(vpninfo, PRG_ERR, _("SOCKS server reported GSSAPI context failure\n")); break; } else if (pktbuf[1] != 1) { vpn_progress(vpninfo, PRG_ERR, _("Unknown GSSAPI status response (0x%02x) from SOCKS server\n"), pktbuf[1]); break; } in.length = load_be16(pktbuf + 2); in.value = pktbuf; if (!in.length) { vpn_progress(vpninfo, PRG_DEBUG, _("GSSAPI authentication completed\n")); ret = 0; break; } i = vpninfo->ssl_read(vpninfo, (void *)pktbuf, in.length); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to receive GSSAPI authentication token from proxy: %s\n"), strerror(-i)); break; } vpn_progress(vpninfo, PRG_TRACE, _("Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n"), in.length, pktbuf[0], pktbuf[1], pktbuf[2], pktbuf[3]); } if (!ret) { ret = -EIO; pktbuf[0] = 0; in.value = pktbuf; in.length = 1; major = gss_wrap(&minor, auth_state->gss_context, 0, GSS_C_QOP_DEFAULT, &in, NULL, &out); if (major != GSS_S_COMPLETE) { print_gss_err(vpninfo, "gss_wrap()", mech, major, minor); goto err; } pktbuf[0] = 1; pktbuf[1] = 2; store_be16(pktbuf + 2, out.length); memcpy(pktbuf + 4, out.value, out.length); free(out.value); vpn_progress(vpninfo, PRG_TRACE, _("Sending GSSAPI protection negotiation of %zu bytes\n"), out.length + 4); i = vpninfo->ssl_write(vpninfo, (void *)pktbuf, out.length + 4); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to send GSSAPI protection response to proxy: %s\n"), strerror(-i)); goto err; } i = vpninfo->ssl_read(vpninfo, (void *)pktbuf, 4); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to receive GSSAPI protection response from proxy: %s\n"), strerror(-i)); goto err; } in.length = load_be16(pktbuf + 2); in.value = pktbuf; i = vpninfo->ssl_read(vpninfo, (void *)pktbuf, in.length); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to receive GSSAPI protection response from proxy: %s\n"), strerror(-i)); goto err; } vpn_progress(vpninfo, PRG_TRACE, _("Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n"), in.length, pktbuf[0], pktbuf[1], pktbuf[2], pktbuf[3]); major = gss_unwrap(&minor, auth_state->gss_context, &in, &out, NULL, GSS_C_QOP_DEFAULT); if (major != GSS_S_COMPLETE) { print_gss_err(vpninfo, "gss_unwrap()", mech, major, minor); goto err; } if (out.length != 1) { vpn_progress(vpninfo, PRG_ERR, _("Invalid GSSAPI protection response from proxy (%zu bytes)\n"), out.length); gss_release_buffer(&minor, &out); goto err; } i = *(char *)out.value; gss_release_buffer(&minor, &out); if (i == 1) { vpn_progress(vpninfo, PRG_ERR, _("SOCKS proxy demands message integrity, which is not supported\n")); goto err; } else if (i == 2) { vpn_progress(vpninfo, PRG_ERR, _("SOCKS proxy demands message confidentiality, which is not supported\n")); goto err; } else if (i) { vpn_progress(vpninfo, PRG_ERR, _("SOCKS proxy demands protection unknown type 0x%02x\n"), (unsigned char)i); goto err; } ret = 0; } err: cleanup_gssapi_auth(vpninfo, NULL); free(pktbuf); return ret; } openconnect-8.05/auth-common.c0000664000076400007640000001206113414105142020123 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include #include #include #include #include #include #include "openconnect-internal.h" int xmlnode_is_named(xmlNode *xml_node, const char *name) { return !strcmp((char *)xml_node->name, name); } /* similar to auth.c's xmlnode_get_text, including that *var should be freed by the caller, but without the hackish param / %s handling that Cisco needs. */ int xmlnode_get_val(xmlNode *xml_node, const char *name, char **var) { char *str; if (name && !xmlnode_is_named(xml_node, name)) return -EINVAL; str = (char *)xmlNodeGetContent(xml_node); if (!str) return -ENOENT; free(*var); *var = str; return 0; } int xmlnode_get_prop(xmlNode *xml_node, const char *name, char **var) { char *str = (char *)xmlGetProp(xml_node, (unsigned char *)name); if (!str) return -ENOENT; free(*var); *var = str; return 0; } int xmlnode_match_prop(xmlNode *xml_node, const char *name, const char *match) { char *str = (char *)xmlGetProp(xml_node, (unsigned char *)name); int ret = 0; if (!str) return -ENOENT; if (strcmp(str, match)) ret = -EEXIST; free(str); return ret; } int append_opt(struct oc_text_buf *body, const char *opt, const char *name) { if (buf_error(body)) return buf_error(body); if (body->pos) buf_append(body, "&"); buf_append_urlencoded(body, opt); buf_append(body, "="); buf_append_urlencoded(body, name); return 0; } int append_form_opts(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_text_buf *body) { struct oc_form_opt *opt; int ret; for (opt = form->opts; opt; opt = opt->next) { ret = append_opt(body, opt->name, opt->_value); if (ret) return ret; } return 0; } void clear_mem(void *p, size_t s) { #if defined(HAVE_MEMSET_S) memset_s(p, s, 0x5a, s); #elif defined(HAVE_EXPLICIT_MEMSET) explicit_memset(p, 0x5a, s); #elif defined(HAVE_EXPLICIT_BZERO) explicit_bzero(p, s); #elif defined(_WIN32) SecureZeroMemory(p, s); #else volatile char *pp = (volatile char *)p; while (s--) *(pp++) = 0x5a; #endif } void free_pass(char **p) { if (!*p) return; clear_mem(*p, strlen(*p)); free(*p); *p = NULL; } void free_opt(struct oc_form_opt *opt) { /* for SELECT options, opt->value is a pointer to oc_choice->name */ if (opt->type != OC_FORM_OPT_SELECT) { free_pass(&opt->_value); } else { struct oc_form_opt_select *sel = (void *)opt; int i; for (i = 0; i < sel->nr_choices; i++) { free(sel->choices[i]->name); free(sel->choices[i]->label); free(sel->choices[i]->auth_type); free(sel->choices[i]->override_name); free(sel->choices[i]->override_label); free(sel->choices[i]); } free(sel->choices); } free(opt->name); free(opt->label); free(opt); } void free_auth_form(struct oc_auth_form *form) { if (!form) return; while (form->opts) { struct oc_form_opt *tmp = form->opts->next; free_opt(form->opts); form->opts = tmp; } free(form->error); free(form->message); free(form->banner); free(form->auth_id); free(form->method); free(form->action); free(form); } /* Return value: * < 0, if unable to generate a tokencode * = 0, on success */ int do_gen_tokencode(struct openconnect_info *vpninfo, struct oc_auth_form *form) { struct oc_form_opt *opt; for (opt = form->opts; ; opt = opt->next) { /* this form might not have anything for us to do */ if (!opt) return 0; if (opt->type == OC_FORM_OPT_TOKEN) break; } switch (vpninfo->token_mode) { #ifdef HAVE_LIBSTOKEN case OC_TOKEN_MODE_STOKEN: return do_gen_stoken_code(vpninfo, form, opt); #endif case OC_TOKEN_MODE_TOTP: return do_gen_totp_code(vpninfo, form, opt); case OC_TOKEN_MODE_HOTP: return do_gen_hotp_code(vpninfo, form, opt); #ifdef HAVE_LIBPCSCLITE case OC_TOKEN_MODE_YUBIOATH: return do_gen_yubikey_code(vpninfo, form, opt); #endif default: return -EINVAL; } } int can_gen_tokencode(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt) { switch (vpninfo->token_mode) { #ifdef HAVE_LIBSTOKEN case OC_TOKEN_MODE_STOKEN: return can_gen_stoken_code(vpninfo, form, opt); #endif case OC_TOKEN_MODE_TOTP: return can_gen_totp_code(vpninfo, form, opt); case OC_TOKEN_MODE_HOTP: return can_gen_hotp_code(vpninfo, form, opt); #ifdef HAVE_LIBPCSCLITE case OC_TOKEN_MODE_YUBIOATH: return can_gen_yubikey_code(vpninfo, form, opt); #endif default: return -EINVAL; } } openconnect-8.05/lzo.h0000664000076400007640000000465612727726520016537 0ustar00dwoodhoudwoodhou00000000000000/* * LZO 1x decompression * copyright (c) 2006 Reimar Doeffinger * * This file is part of FFmpeg. * * FFmpeg is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public * License as published by the Free Software Foundation; either * version 2.1 of the License, or (at your option) any later version. * * FFmpeg is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. * * You should have received a copy of the GNU Lesser General Public * License along with FFmpeg; if not, write to the Free Software * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA */ #ifndef AVUTIL_LZO_H #define AVUTIL_LZO_H /** * @defgroup lavu_lzo LZO * @ingroup lavu_crypto * * @{ */ #include /** @name Error flags returned by av_lzo1x_decode * @{ */ /// end of the input buffer reached before decoding finished #define AV_LZO_INPUT_DEPLETED 1 /// decoded data did not fit into output buffer #define AV_LZO_OUTPUT_FULL 2 /// a reference to previously decoded data was wrong #define AV_LZO_INVALID_BACKPTR 4 /// a non-specific error in the compressed bitstream #define AV_LZO_ERROR 8 /** @} */ #define AV_LZO_INPUT_PADDING 8 #define AV_LZO_OUTPUT_PADDING 12 /** * @brief Decodes LZO 1x compressed data. * @param out output buffer * @param outlen size of output buffer, number of bytes left are returned here * @param in input buffer * @param inlen size of input buffer, number of bytes left are returned here * @return 0 on success, otherwise a combination of the error flags above * * Make sure all buffers are appropriately padded, in must provide * AV_LZO_INPUT_PADDING, out must provide AV_LZO_OUTPUT_PADDING additional bytes. */ int av_lzo1x_decode(void *out, int *outlen, const void *in, int *inlen); /** * @} */ #define FFMAX(x,y) ({ typeof(x) _x = (x) ; typeof(y) _y = (y); \ _x > _y ? _x : _y; }) struct lzo_packed_uint32 { uint32_t d; } __attribute__((packed)); #define AV_COPY32U(dst,src) do { \ ((struct lzo_packed_uint32 *)dst)->d = \ ((struct lzo_packed_uint32 *)src)->d; \ } while (0) static inline void av_memcpy_backptr(unsigned char *dst, int back, int cnt) { while (cnt--) { *dst = *(dst - back); dst++; } } #endif /* AVUTIL_LZO_H */ openconnect-8.05/gnutls-esp.c0000664000076400007640000001070713477413651020022 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include #include #include "openconnect-internal.h" void destroy_esp_ciphers(struct esp *esp) { if (esp->cipher) { gnutls_cipher_deinit(esp->cipher); esp->cipher = NULL; } if (esp->hmac) { gnutls_hmac_deinit(esp->hmac, NULL); esp->hmac = NULL; } } static int init_esp_cipher(struct openconnect_info *vpninfo, struct esp *esp, gnutls_mac_algorithm_t macalg, gnutls_cipher_algorithm_t encalg) { gnutls_datum_t enc_key; int err; destroy_esp_ciphers(esp); enc_key.size = gnutls_cipher_get_key_size(encalg); enc_key.data = esp->enc_key; err = gnutls_cipher_init(&esp->cipher, encalg, &enc_key, NULL); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to initialise ESP cipher: %s\n"), gnutls_strerror(err)); return -EIO; } err = gnutls_hmac_init(&esp->hmac, macalg, esp->hmac_key, gnutls_hmac_get_len(macalg)); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to initialize ESP HMAC: %s\n"), gnutls_strerror(err)); destroy_esp_ciphers(esp); } return 0; } int init_esp_ciphers(struct openconnect_info *vpninfo, struct esp *esp_out, struct esp *esp_in) { gnutls_mac_algorithm_t macalg; gnutls_cipher_algorithm_t encalg; int ret; switch (vpninfo->esp_enc) { case ENC_AES_128_CBC: encalg = GNUTLS_CIPHER_AES_128_CBC; break; case ENC_AES_256_CBC: encalg = GNUTLS_CIPHER_AES_256_CBC; break; default: return -EINVAL; } switch (vpninfo->esp_hmac) { case HMAC_MD5: macalg = GNUTLS_MAC_MD5; break; case HMAC_SHA1: macalg = GNUTLS_MAC_SHA1; break; case HMAC_SHA256: macalg = GNUTLS_MAC_SHA256; break; default: return -EINVAL; } ret = init_esp_cipher(vpninfo, esp_out, macalg, encalg); if (ret) return ret; gnutls_cipher_set_iv(esp_out->cipher, esp_out->iv, sizeof(esp_out->iv)); ret = init_esp_cipher(vpninfo, esp_in, macalg, encalg); if (ret) { destroy_esp_ciphers(esp_out); return ret; } return 0; } /* pkt->len shall be the *payload* length. Omitting the header and the 12-byte HMAC */ int decrypt_esp_packet(struct openconnect_info *vpninfo, struct esp *esp, struct pkt *pkt) { unsigned char hmac_buf[MAX_HMAC_SIZE]; int err; err = gnutls_hmac(esp->hmac, &pkt->esp, sizeof(pkt->esp) + pkt->len); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to calculate HMAC for ESP packet: %s\n"), gnutls_strerror(err)); return -EIO; } gnutls_hmac_output(esp->hmac, hmac_buf); if (memcmp(hmac_buf, pkt->data + pkt->len, vpninfo->hmac_out_len)) { vpn_progress(vpninfo, PRG_DEBUG, _("Received ESP packet with invalid HMAC\n")); return -EINVAL; } if (verify_packet_seqno(vpninfo, esp, ntohl(pkt->esp.seq))) return -EINVAL; gnutls_cipher_set_iv(esp->cipher, pkt->esp.iv, sizeof(pkt->esp.iv)); err = gnutls_cipher_decrypt(esp->cipher, pkt->data, pkt->len); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Decrypting ESP packet failed: %s\n"), gnutls_strerror(err)); return -EINVAL; } return 0; } int encrypt_esp_packet(struct openconnect_info *vpninfo, struct pkt *pkt, int crypt_len) { const int blksize = 16; int err; err = gnutls_cipher_encrypt(vpninfo->esp_out.cipher, pkt->data, crypt_len); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to encrypt ESP packet: %s\n"), gnutls_strerror(err)); return -EIO; } err = gnutls_hmac(vpninfo->esp_out.hmac, &pkt->esp, sizeof(pkt->esp) + crypt_len); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to calculate HMAC for ESP packet: %s\n"), gnutls_strerror(err)); return -EIO; } gnutls_hmac_output(vpninfo->esp_out.hmac, pkt->data + crypt_len); memcpy(vpninfo->esp_out.iv, pkt->data + crypt_len, blksize); gnutls_cipher_encrypt(vpninfo->esp_out.cipher, vpninfo->esp_out.iv, blksize); return 0; } openconnect-8.05/version.c0000664000076400007640000000005713536301704017372 0ustar00dwoodhoudwoodhou00000000000000const char *openconnect_version_str = "v8.05"; openconnect-8.05/gnutls.h0000664000076400007640000000462613360376477017252 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #ifndef __OPENCONNECT_GNUTLS_H__ #define __OPENCONNECT_GNUTLS_H__ #include #include #include #include "openconnect-internal.h" int load_tpm1_key(struct openconnect_info *vpninfo, gnutls_datum_t *fdata, gnutls_privkey_t *pkey, gnutls_datum_t *pkey_sig); void release_tpm1_ctx(struct openconnect_info *info); int load_tpm2_key(struct openconnect_info *vpninfo, gnutls_datum_t *fdata, gnutls_privkey_t *pkey, gnutls_datum_t *pkey_sig); void release_tpm2_ctx(struct openconnect_info *info); int install_tpm2_key(struct openconnect_info *vpninfo, gnutls_privkey_t *pkey, gnutls_datum_t *pkey_sig, unsigned int parent, int emptyauth, int legacy, gnutls_datum_t *privdata, gnutls_datum_t *pubdata); int tpm2_rsa_sign_hash_fn(gnutls_privkey_t key, gnutls_sign_algorithm_t algo, void *_vpninfo, unsigned int flags, const gnutls_datum_t *data, gnutls_datum_t *sig); int tpm2_ec_sign_hash_fn(gnutls_privkey_t key, gnutls_sign_algorithm_t algo, void *_vpninfo, unsigned int flags, const gnutls_datum_t *data, gnutls_datum_t *sig); int oc_pkcs1_pad(struct openconnect_info *vpninfo, unsigned char *buf, int size, const gnutls_datum_t *data); /* GnuTLS 3.6.0+ provides this. We have our own for older GnuTLS. There is * also _gnutls_encode_ber_rs_raw() in some older versions, but there were * zero-padding bugs in that, and some of the... less diligently maintained * distributions (like Ubuntu even in 18.04) don't have the fix yet, two * years later. */ #if GNUTLS_VERSION_NUMBER < 0x030600 #define gnutls_encode_rs_value oc_gnutls_encode_rs_value int oc_gnutls_encode_rs_value(gnutls_datum_t *sig_value, const gnutls_datum_t *r, const gnutls_datum_t *s); #endif char *get_gnutls_cipher(gnutls_session_t session); #endif /* __OPENCONNECT_GNUTLS_H__ */ openconnect-8.05/android/0000775000076400007640000000000013536301731017157 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/android/install_symlink.sh0000775000076400007640000000047412727726520022747 0ustar00dwoodhoudwoodhou00000000000000#!/bin/bash unset SRCS unset DST while [ $# -gt 1 ]; do case "$1" in -d) MAKEDIR=1 shift ;; -c|-C|-s) shift ;; -m|-g|-o) shift 2; ;; *) SRCS="$SRCS $(readlink -f "$1")" shift ;; esac done if [ ! -z $MAKEDIR ]; then mkdir -p $1 fi cp -f $SRCS "$1" openconnect-8.05/android/run_pie.c0000664000076400007640000000720212727726520020775 0ustar00dwoodhoudwoodhou00000000000000// Copyright 2014 The Chromium Authors. All rights reserved. // // Redistribution and use in source and binary forms, with or without // modification, are permitted provided that the following conditions are // met: // // * Redistributions of source code must retain the above copyright // notice, this list of conditions and the following disclaimer. // * Redistributions in binary form must reproduce the above // copyright notice, this list of conditions and the following disclaimer // in the documentation and/or other materials provided with the // distribution. // * Neither the name of Google Inc. nor the names of its // contributors may be used to endorse or promote products derived from // this software without specific prior written permission. // // THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS // "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT // LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR // A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT // OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, // SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT // LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, // DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY // THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT // (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE // OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. #include #include #include #include #include // This is a wrapper to run position independent executables on Android ICS, // where the linker doesn't support PIE. This requires the PIE binaries to be // built with CFLAGS +=-fvisibility=default -fPIE, and LDFLAGS += -rdynamic -pie // such that the main() symbol remains exported and can be dlsym-ed. #define ERR_PREFIX "[PIE Loader] " typedef int (*main_t)(int, char**); int main(int argc, char** argv) { if (argc < 2) { printf("Usage: %s path_to_pie_executable [args]\n", argv[0]); return -1; } // Shift left the argv[]. argv is what /proc/PID/cmdline prints out. In turn // cmdline is what Android "ps" prints out. In turn "ps" is what many scripts // look for to decide which processes to kill / killall. int i; char* next_argv_start = argv[0]; for (i = 1; i < argc; ++i) { const size_t argv_len = strlen(argv[i]) + 1; memmove(argv[i - 1], argv[i], argv_len); next_argv_start += argv_len; argv[i] = next_argv_start; } argv[argc - 1] = NULL; // The last argv must be a NULL ptr. // Set also the proc name accordingly (/proc/PID/comm). prctl(PR_SET_NAME, (long) argv[0]); // dlopen should not fail, unless: // - The target binary does not exists: // - The dependent .so libs cannot be loaded. // In both cases, just bail out with an explicit error message. void* handle = dlopen(argv[0], RTLD_NOW); if (handle == NULL) { printf(ERR_PREFIX "dlopen() failed: %s.\n", dlerror()); return -1; } main_t pie_main = (main_t) dlsym(handle, "main"); if (pie_main) { return pie_main(argc - 1, argv); } // If we reached this point dlsym failed, very likely because the target // binary has not been compiled with the proper CFLAGS / LDFLAGS. // At this point the most sensible thing to do is running that normally // via exec and hope that the target binary wasn't a PIE. execv(argv[0], argv); // exevc is supposed to never return, unless it fails. printf(ERR_PREFIX "Both dlsym() and the execv() fallback failed.\n"); perror("execv"); return -1; } openconnect-8.05/android/Makefile0000664000076400007640000002735413245212704020630 0ustar00dwoodhoudwoodhou00000000000000# # This Makefile attempts to build OpenConnect and its dependencies for Android # # It doesn't do a stunning job of tracking changes in the dependencies and # automatically rebuilding them, but it's good enough for getting them built # and installed into its own local sysroot. # # As long as you have the Android NDK toolchain on your path, you should then # be able to edit fairly much anything in place and rebuild it locally. # # It should also be fairly simple to extend this to cross-compile for any target NDK := /opt/android-sdk-linux_x86/android-ndk-r16b ARCH := arm EXTRA_CFLAGS := # You should be able to just 'make ARCH=x86' and it should DTRT. ifeq ($(ARCH),arm) TRIPLET := arm-linux-androideabi API_LEVEL := 14 EXTRA_CFLAGS := -march=armv7-a -mthumb endif ifeq ($(ARCH),arm64) TRIPLET := aarch64-linux-android API_LEVEL := 26 endif ifeq ($(ARCH),x86) TRIPLET := i686-linux-android API_LEVEL := 14 endif ifeq ($(ARCH),x86_64) TRIPLET := x86_64-linux-android API_LEVEL := 21 endif TOPDIR := $(shell pwd) DESTDIR := $(TOPDIR)/$(TRIPLET)/out EXTRA_CFLAGS += -D__ANDROID_API__=$(API_LEVEL) -O2 TOOLCHAIN := $(TOPDIR)/$(TRIPLET)/toolchain TOOLCHAIN_BUILT := $(TOOLCHAIN)/.built TOOLCHAIN_OPTS := --platform=android-$(API_LEVEL) --arch=$(ARCH) \ --install-dir=$(TOOLCHAIN) PATH := $(TOOLCHAIN)/bin:$(PATH) OC_SYSROOT := $(TOOLCHAIN)/sysroot/usr PKG_CONFIG_LIBDIR := $(OC_SYSROOT)/lib/pkgconfig export PATH PKG_CONFIG_LIBDIR # PKG_CONFIG_LIBDIR gets exported to sub-makes, but not to $(shell PKG_CONFIG := PKG_CONFIG_LIBDIR=$(PKG_CONFIG_LIBDIR) pkg-config MAKEINSTALL=$(MAKE) INSTALL=$(TOPDIR)/install_symlink.sh FETCH=$(TOPDIR)/fetch.sh CONFIGURE_ARGS := --host=$(TRIPLET) --prefix=$(OC_SYSROOT) \ --disable-shared --enable-static --with-pic \ CC=$(TRIPLET)-clang CFLAGS="$(EXTRA_CFLAGS)" SOURCE_LIST = $(LIBXML2_SRC)/configure $(GMP_SRC)/configure \ $(NETTLE_SRC)/configure $(GNUTLS_SRC)/configure \ $(STOKEN_SRC)/configure $(OATH_SRC)/configure \ $(LZ4_DIR)/Makefile PKG_LIST := LIBXML2 GMP NETTLE GNUTLS STOKEN OATH LZ4 MIRROR_TEST_TARGETS := $(addprefix mirror-test-,$(PKG_LIST)) all: openconnect run_pie ##################################################################### # # Install a local cross toolchain + sysroot # # (The fallback logic is because NDK versions <= r8e can fail after trying to # use 32-bit binaries on a 64-bit NDK installation.) # $(TOOLCHAIN_BUILT): $(NDK)/build/tools/make-standalone-toolchain.sh $(TOOLCHAIN_OPTS) || \ $(NDK)/build/tools/make-standalone-toolchain.sh \ $(TOOLCHAIN_OPTS) --system=linux-x86_64 touch $@ ##################################################################### # # Build libxml2 with minimal configuration for OpenConnect # LIBXML2_VER := 2.9.7 LIBXML2_TAR := libxml2-$(LIBXML2_VER).tar.gz LIBXML2_SHA := f63c5e7d30362ed28b38bfa1ac6313f9a80230720b7fb6c80575eeab3ff5900c LIBXML2_SRC := sources/libxml2-$(LIBXML2_VER) LIBXML2_BUILD := $(TRIPLET)/libxml2 $(LIBXML2_TAR): $(FETCH) $@ $(LIBXML2_SHA) $(LIBXML2_SRC)/configure: $(LIBXML2_TAR) mkdir -p sources tar xfz $< -C sources touch $@ $(LIBXML2_BUILD)/Makefile: $(TOOLCHAIN_BUILT) $(LIBXML2_SRC)/configure mkdir -p $(LIBXML2_BUILD) cd $(LIBXML2_BUILD) && ../../$(LIBXML2_SRC)/configure $(CONFIGURE_ARGS) \ --without-c14n -without-catalog --without-debug --without-docbook \ --without-fexceptions --without-ftp --without-history \ --without-http --without-iconv --without-iconv \ --without-iso8859x --without-legacy --without-pattern \ --without-push --without-regexps --without-run-debug \ --without-sax1 --without-schemas --without-schematron \ --without-threads --without-valid --without-xinclude \ --without-xpath --without-xptr --without-zlib --without-lzma \ --without-coverage --without-python $(LIBXML2_BUILD)/libxml2.la: $(LIBXML2_BUILD)/Makefile $(MAKE) -C $(LIBXML2_BUILD) libxml2.la $(LIBXML2_BUILD)/libxml-2.0.pc: $(LIBXML2_BUILD)/Makefile $(MAKE) -C $(LIBXML2_BUILD) libxml-2.0.pc $(OC_SYSROOT)/lib/libxml2.la: $(LIBXML2_BUILD)/libxml2.la $(MAKEINSTALL) -C $(LIBXML2_BUILD) install-libLTLIBRARIES $(OC_SYSROOT)/lib/pkgconfig/libxml-2.0.pc: $(LIBXML2_BUILD)/libxml-2.0.pc $(MAKEINSTALL) -C $(LIBXML2_BUILD) install-data LIBXML_DEPS := $(OC_SYSROOT)/lib/libxml2.la $(OC_SYSROOT)/lib/pkgconfig/libxml-2.0.pc libxml: $(LIBXML_DEPS) ##################################################################### # # Build GNU MP # GMP_VER := 6.1.2 GMP_TAR := gmp-$(GMP_VER).tar.xz GMP_SHA := 87b565e89a9a684fe4ebeeddb8399dce2599f9c9049854ca8c0dfbdea0e21912 GMP_SRC := sources/gmp-$(GMP_VER) GMP_BUILD := $(TRIPLET)/gmp $(GMP_TAR): $(FETCH) $@ $(GMP_SHA) $(GMP_SRC)/configure: $(GMP_TAR) mkdir -p sources tar -xJf $< -C sources touch $@ $(GMP_BUILD)/Makefile: $(TOOLCHAIN_BUILT) $(GMP_SRC)/configure mkdir -p $(GMP_BUILD) cd $(GMP_BUILD) && ../../$(GMP_SRC)/configure $(CONFIGURE_ARGS) $(GMP_BUILD)/libgmp.la: $(GMP_BUILD)/Makefile $(MAKE) -C $(GMP_BUILD) $(OC_SYSROOT)/lib/libgmp.la: $(GMP_BUILD)/libgmp.la $(MAKEINSTALL) -C $(GMP_BUILD) install GMP_DEPS := $(OC_SYSROOT)/lib/libgmp.la gmp: $(GMP_DEPS) ##################################################################### # # Build nettle # NETTLE_VER := 3.4 NETTLE_TAR := nettle-$(NETTLE_VER).tar.gz NETTLE_SHA := ae7a42df026550b85daca8389b6a60ba6313b0567f374392e54918588a411e94 NETTLE_SRC := sources/nettle-$(NETTLE_VER) NETTLE_BUILD := $(TRIPLET)/nettle $(NETTLE_TAR): $(FETCH) $@ $(NETTLE_SHA) $(NETTLE_SRC)/configure: $(NETTLE_TAR) mkdir -p sources tar xfz $< -C sources touch $@ $(NETTLE_BUILD)/Makefile: $(TOOLCHAIN_BUILT) $(NETTLE_SRC)/configure $(GMP_DEPS) mkdir -p $(NETTLE_BUILD) cd $(NETTLE_BUILD) && ../../$(NETTLE_SRC)/configure $(CONFIGURE_ARGS) $(NETTLE_BUILD)/libnettle.a: $(NETTLE_BUILD)/Makefile $(MAKE) -C $(NETTLE_BUILD) SUBDIRS= $(OC_SYSROOT)/lib/libnettle.a: $(NETTLE_BUILD)/libnettle.a $(MAKEINSTALL) -C $(NETTLE_BUILD) SUBDIRS= install NETTLE_DEPS := $(OC_SYSROOT)/lib/libnettle.a nettle: $(NETTLE_DEPS) ##################################################################### # # Build GnuTLS # GNUTLS_VER := 3.5.17 GNUTLS_TAR := gnutls-$(GNUTLS_VER).tar.xz GNUTLS_SHA := 86b142afef587c118d63f72ccf307f3321dbc40357aae528202b65d913d20919 GNUTLS_SRC := sources/gnutls-$(GNUTLS_VER) GNUTLS_BUILD := $(TRIPLET)/gnutls $(GNUTLS_TAR): $(FETCH) $@ $(GNUTLS_SHA) $(GNUTLS_SRC)/configure: $(GNUTLS_TAR) mkdir -p sources xz -d < $< | tar xf - -C sources touch $@ #$(GNUTLS_SRC)/configure.ac: # mkdir -p sources # cd sources && git clone git://gitorious.org/gnutls/gnutls.git #$(GNUTLS_SRC)/configure: $(GNUTLS_SRC)/configure.ac # touch $(GNUTLS_SRC)/ChangeLog # cd $(GNUTLS_SRC) && autoreconf -fvi $(GNUTLS_BUILD)/Makefile: $(TOOLCHAIN_BUILT) $(GNUTLS_SRC)/configure $(NETTLE_DEPS) mkdir -p $(GNUTLS_BUILD) cd $(GNUTLS_BUILD) && ../../$(GNUTLS_SRC)/configure $(CONFIGURE_ARGS) \ AUTOGEN=/bin/true \ --disable-threads --disable-tests --without-zlib --disable-nls \ --disable-doc --disable-openssl-compatibility --disable-cxx \ --disable-openssl-compatibility --disable-ocsp \ --disable-openpgp-authentication --disable-anon-authentication \ --enable-psk-authentication --disable-srp-authentication \ --disable-dtls-srtp-support --enable-dhe --enable-ecdhe \ --disable-rsa-export --with-included-libtasn1 \ --with-included-unistring --without-p11-kit $(GNUTLS_BUILD)/lib/libgnutls.la: $(GNUTLS_BUILD)/Makefile $(MAKE) -C $(GNUTLS_BUILD) $(OC_SYSROOT)/lib/libgnutls.la: $(GNUTLS_BUILD)/lib/libgnutls.la $(MAKEINSTALL) -C $(GNUTLS_BUILD) install GNUTLS_DEPS := $(OC_SYSROOT)/lib/libgnutls.la gnutls: $(GNUTLS_DEPS) ##################################################################### # # Build libstoken # STOKEN_VER := 0.92 STOKEN_TAR := stoken-$(STOKEN_VER).tar.gz STOKEN_SHA := aa2b481b058e4caf068f7e747a2dcf5772bcbf278a4f89bc9efcbf82bcc9ef5a STOKEN_SRC := sources/stoken-$(STOKEN_VER) STOKEN_BUILD := $(TRIPLET)/stoken $(STOKEN_TAR): $(FETCH) $@ $(STOKEN_SHA) $(STOKEN_SRC)/configure: $(STOKEN_TAR) mkdir -p sources tar xfz $< -C sources touch $@ $(STOKEN_BUILD)/Makefile: $(TOOLCHAIN_BUILT) $(STOKEN_SRC)/configure $(NETTLE_DEPS) mkdir -p $(STOKEN_BUILD) cd $(STOKEN_BUILD) && ../../$(STOKEN_SRC)/configure $(CONFIGURE_ARGS) \ --without-gtk $(STOKEN_BUILD)/libstoken.la: $(STOKEN_BUILD)/Makefile $(MAKE) -C $(STOKEN_BUILD) $(OC_SYSROOT)/lib/libstoken.la: $(STOKEN_BUILD)/libstoken.la $(MAKEINSTALL) -C $(STOKEN_BUILD) install STOKEN_DEPS := $(OC_SYSROOT)/lib/libstoken.la stoken: $(STOKEN_DEPS) ##################################################################### # # Build liboath # OATH_VER := 2.6.2 OATH_TAR := oath-toolkit-$(OATH_VER).tar.gz OATH_SHA := b03446fa4b549af5ebe4d35d7aba51163442d255660558cd861ebce536824aa0 OATH_SRC := sources/oath-toolkit-$(OATH_VER) OATH_BUILD := $(TRIPLET)/oath $(OATH_TAR): $(FETCH) $@ $(OATH_SHA) $(OATH_SRC)/configure: $(OATH_TAR) mkdir -p sources tar xfz $< -C sources > $(OATH_SRC)/liboath/gl/freading.c touch $@ $(OATH_BUILD)/Makefile: $(TOOLCHAIN_BUILT) $(OATH_SRC)/configure mkdir -p $(OATH_BUILD) cd $(OATH_BUILD) && ../../$(OATH_SRC)/configure $(CONFIGURE_ARGS) \ --disable-pskc --disable-pam \ gl_cv_func_fflush_stdin=yes \ gl_cv_func_fpurge_works=yes $(OATH_BUILD)/liboath/liboath.la: $(OATH_BUILD)/Makefile $(MAKE) -C $(OATH_BUILD)/liboath $(OC_SYSROOT)/lib/liboath.la: $(OATH_BUILD)/liboath/liboath.la $(MAKEINSTALL) -C $(OATH_BUILD)/liboath install OATH_DEPS := $(OC_SYSROOT)/lib/liboath.la oath: $(OATH_DEPS) ##################################################################### # # Build liblz4 # LZ4_VER := 1.8.1.2 LZ4_TAR := lz4-v$(LZ4_VER).tar.gz LZ4_SHA := 12f3a9e776a923275b2dc78ae138b4967ad6280863b77ff733028ce89b8123f9 LZ4_DIR := $(TRIPLET)/lz4-$(LZ4_VER) $(LZ4_TAR): $(FETCH) $@ $(LZ4_SHA) $(LZ4_DIR)/Makefile: $(LZ4_TAR) mkdir -p $(TRIPLET) tar xzf $< -C $(TRIPLET) touch $@ $(OC_SYSROOT)/lib/liblz4.a: $(TOOLCHAIN_BUILT) $(LZ4_DIR)/Makefile $(MAKE) -C $(LZ4_DIR)/lib \ CC="$(TRIPLET)-clang $(EXTRA_CFLAGS)" \ AR="$(TRIPLET)-ar" \ LIBDIR=$(OC_SYSROOT)/lib \ INCLUDEDIR=$(OC_SYSROOT)/include \ install rm -f $(OC_SYSROOT)/lib/liblz4.so* LZ4_DEPS := $(OC_SYSROOT)/lib/liblz4.a lz4: $(LZ4_DEPS) ##################################################################### # # Build OpenConnect for Android # OPENCONNECT_SRC := .. OPENCONNECT_BUILD := $(TRIPLET)/openconnect $(OPENCONNECT_SRC)/configure: cd $(OPENCONNECT_SRC) && ./autogen.sh $(OPENCONNECT_BUILD)/Makefile: $(TOOLCHAIN_BUILT) $(GNUTLS_DEPS) $(LIBXML_DEPS) \ $(STOKEN_DEPS) $(OATH_DEPS) $(LZ4_DEPS) $(OPENCONNECT_SRC)/configure mkdir -p $(OPENCONNECT_BUILD) cd $(OPENCONNECT_BUILD) && ../../../configure \ --host=$(TRIPLET) --prefix=/ \ CFLAGS="$(EXTRA_CFLAGS) -fvisibility=default -fPIE" \ LDFLAGS="$(EXTRA_LDFLAGS) -rdynamic -pie" \ GNUTLS_LIBS="$(shell $(PKG_CONFIG) --static --libs gnutls)" \ LIBSTOKEN_LIBS="$(shell $(PKG_CONFIG) --static --libs stoken)" \ --enable-shared --with-vpnc-script=/etc/vpnc/vpnc-script \ --with-java=$(OC_SYSROOT)/include --enable-jni-standalone \ --disable-symvers openconnect: $(OPENCONNECT_BUILD)/Makefile make -C $(OPENCONNECT_BUILD) make -C $(OPENCONNECT_BUILD) install-strip DESTDIR=$(DESTDIR) ##################################################################### # # Build run_pie helper program # $(DESTDIR)/sbin/run_pie: run_pie.c $(TOOLCHAIN_BUILT) mkdir -p $(DESTDIR)/sbin $(TRIPLET)-clang $< -o $@ -ldl .PHONY: run_pie run_pie: $(DESTDIR)/sbin/run_pie ##################################################################### # # Special targets for maintainer use # # download + extract, but do not build .PHONY: sources sources: $(SOURCE_LIST) .PHONY: $(MIRROR_TEST_TARGETS) $(MIRROR_TEST_TARGETS) : mirror-test-% : $(FETCH) --mirror-test $($(*)_TAR) $($(*)_SHA) # (re)test all mirrors for all packages. safe for use with "make -jN" .PHONY: mirror-test mirror-test: $(MIRROR_TEST_TARGETS) openconnect-8.05/android/fetch.sh0000775000076400007640000001147513245212704020615 0ustar00dwoodhoudwoodhou00000000000000#!/bin/bash # # OpenConnect (SSL + DTLS) VPN client # # Copyright © 2014 Kevin Cernekee # # This program is free software; you can redistribute it and/or # modify it under the terms of the GNU Lesser General Public License # version 2.1, as published by the Free Software Foundation. # # This program is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # Lesser General Public License for more details. # set -e libxml2_MIRROR_0=ftp://xmlsoft.org/libxml2 libxml2_MIRROR_1=http://gd.tuwien.ac.at/pub/libxml libxml2_MIRROR_2=http://distfiles.macports.org/libxml2 gmp_MIRROR_0=http://ftp.gnu.org/gnu/gmp gmp_MIRROR_1=https://gmplib.org/download/gmp gmp_MIRROR_2=http://www.mirrorservice.org/sites/ftp.gnu.org/gnu/gmp nettle_MIRROR_0=http://www.lysator.liu.se/~nisse/archive nettle_MIRROR_1=http://ftp.gnu.org/gnu/nettle nettle_MIRROR_2=http://gd.tuwien.ac.at/gnu/gnusrc/nettle gnutls_MIRROR_0=https://www.gnupg.org/ftp/gcrypt/gnutls/v3.5 gnutls_MIRROR_1=http://ftp.heanet.ie/mirrors/ftp.gnupg.org/gcrypt/gnutls/v3.5 gnutls_MIRROR_2=http://gd.tuwien.ac.at/pub/gnupg/gnutls/v3.5 stoken_MIRROR_0=http://sourceforge.net/projects/stoken/files stoken_SUFFIX_0=/download oath_toolkit_MIRROR_0=http://download.savannah.gnu.org/releases/oath-toolkit oath_toolkit_MIRROR_1=https://download-mirror.savannah.gnu.org/releases/oath-toolkit lz4_MIRROR_0=https://github.com/lz4/lz4/archive MAX_TRIES=5 function make_url { local tarball="$1" local mirror_idx="$2" local pkg="${tarball%-*}" pkg="${pkg/-/_}" if [[ "$pkg" =~ [^[:alnum:]_] ]]; then echo "" return fi eval local mirror_base="\$${pkg}_MIRROR_${mirror_idx}" eval local mirror_suffix="\$${pkg}_SUFFIX_${mirror_idx}" if [ -z "$mirror_base" ]; then echo "" return fi if [[ "${mirror_base}" = *//github.com*/archive* ]]; then # typical format: https://github.com/USER/PKG/archive/TAG.tar.gz echo "${mirror_base}/${tarball#*-}" else # typical format: http://.../PKG-TAG.tar.gz echo "${mirror_base}/${tarball}${mirror_suffix}" fi return } function check_hash { local tarball="$1" local good_hash="$2" local actual_hash if [ "${#good_hash}" = "40" ]; then actual_hash=$(sha1sum "$tarball") actual_hash=${actual_hash:0:40} elif [ "${#good_hash}" = "64" ]; then actual_hash=$(sha256sum "$tarball") actual_hash=${actual_hash:0:64} else echo "Unrecognized hash: $good_hash" exit 1 fi if [ "$actual_hash" = "$good_hash" ]; then return 0 else echo "$tarball: hash mismatch" echo " expected: $good_hash" echo " got instead: $actual_hash" return 1 fi } function download_and_check { local url="$1" local tmpfile="$2" local hash="$3" rm -f "$tmpfile" if curl --location --connect-timeout 30 --speed-limit 1024 \ -o "$tmpfile" "$url"; then if [ -n "$hash" ]; then if ! check_hash "$tmpfile" "$hash"; then return 1 fi fi return 0 fi return 1 } # iterate through all available mirrors and make sure they have a good copy # of $tarball function mirror_test { local tarball="$1" local good_hash="$2" if [ -z "$good_hash" ]; then echo "ERROR: you must specify the hash for testing mirrors" exit 1 fi local mirror_idx=0 local tmpfile="${tarball}.mirror-test.tmp" while :; do local url=$(make_url "$tarball" "$mirror_idx") if [ -z "$url" ]; then break fi echo "" echo "Testing mirror $url" echo "" if download_and_check "$url" "$tmpfile" "$good_hash"; then echo "" echo "SHA $good_hash OK." echo "" else exit 1 fi echo "" mirror_idx=$((mirror_idx + 1)) done rm -f "$tmpfile" echo "Mirror test for $tarball PASSED" echo "" exit 0 } # # MAIN # if [ "$1" = "--mirror-test" ]; then mirror_test=1 shift else mirror_test=0 fi if [ -z "$1" ]; then echo "usage: $0 [ --mirror-test ] [ ]" exit 1 fi tarball="$1" hash="$2" if [ $mirror_test = 1 ]; then mirror_test "$tarball" "$hash" exit 1 fi if [ -e "$tarball" -a -n "$hash" ]; then if check_hash "$tarball" "$hash"; then echo "$tarball hash check passed. Done." echo "" exit 0 fi fi tries=1 tmpfile="${tarball}.tmp" while :; do mirror_idx=0 while :; do url=$(make_url "$tarball" "$mirror_idx") if [ -z "$url" ]; then if [ $mirror_idx = 0 ]; then echo "No mirrors found for $tarball" exit 1 else break fi fi echo "" echo "Attempt #$tries for mirror $url:" echo "" if download_and_check "$url" "$tmpfile" "$hash"; then mv "$tmpfile" "$tarball" exit 0 fi echo "" mirror_idx=$((mirror_idx + 1)) done tries=$((tries + 1)) if [ $tries -gt $MAX_TRIES ]; then break fi echo "All mirrors failed; sleeping 10 seconds..." echo "" sleep 10 done rm -f "$tarball" "$tmpfile" echo "ERROR: Unable to download $tarball" echo "" exit 1 openconnect-8.05/m4/0000775000076400007640000000000013536301731016057 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/m4/ltversion.m40000644000076400007640000000127313425105604020345 0ustar00dwoodhoudwoodhou00000000000000# ltversion.m4 -- version numbers -*- Autoconf -*- # # Copyright (C) 2004, 2011-2015 Free Software Foundation, Inc. # Written by Scott James Remnant, 2004 # # This file is free software; the Free Software Foundation gives # unlimited permission to copy and/or distribute it, with or without # modifications, as long as this notice is preserved. # @configure_input@ # serial 4179 ltversion.m4 # This file is part of GNU Libtool m4_define([LT_PACKAGE_VERSION], [2.4.6]) m4_define([LT_PACKAGE_REVISION], [2.4.6]) AC_DEFUN([LTVERSION_VERSION], [macro_version='2.4.6' macro_revision='2.4.6' _LT_DECL(, macro_version, 0, [Which release of libtool.m4 was used?]) _LT_DECL(, macro_revision, 0) ]) openconnect-8.05/m4/lib-ld.m40000664000076400007640000000714312727726520017501 0ustar00dwoodhoudwoodhou00000000000000# lib-ld.m4 serial 6 dnl Copyright (C) 1996-2003, 2009-2014 Free Software Foundation, Inc. dnl This file is free software; the Free Software Foundation dnl gives unlimited permission to copy and/or distribute it, dnl with or without modifications, as long as this notice is preserved. dnl Subroutines of libtool.m4, dnl with replacements s/_*LT_PATH/AC_LIB_PROG/ and s/lt_/acl_/ to avoid dnl collision with libtool.m4. dnl From libtool-2.4. Sets the variable with_gnu_ld to yes or no. AC_DEFUN([AC_LIB_PROG_LD_GNU], [AC_CACHE_CHECK([if the linker ($LD) is GNU ld], [acl_cv_prog_gnu_ld], [# I'd rather use --version here, but apparently some GNU lds only accept -v. case `$LD -v 2>&1 /dev/null 2>&1 \ && { (PATH='/bin:/bin'; FPATH=$PATH; sh -c :) >/dev/null 2>&1 \ || PATH_SEPARATOR=';' } fi ac_prog=ld if test "$GCC" = yes; then # Check if gcc -print-prog-name=ld gives a path. AC_MSG_CHECKING([for ld used by $CC]) case $host in *-*-mingw*) # gcc leaves a trailing carriage return which upsets mingw ac_prog=`($CC -print-prog-name=ld) 2>&5 | tr -d '\015'` ;; *) ac_prog=`($CC -print-prog-name=ld) 2>&5` ;; esac case $ac_prog in # Accept absolute paths. [[\\/]]* | ?:[[\\/]]*) re_direlt='/[[^/]][[^/]]*/\.\./' # Canonicalize the pathname of ld ac_prog=`echo "$ac_prog"| sed 's%\\\\%/%g'` while echo "$ac_prog" | grep "$re_direlt" > /dev/null 2>&1; do ac_prog=`echo $ac_prog| sed "s%$re_direlt%/%"` done test -z "$LD" && LD="$ac_prog" ;; "") # If it fails, then pretend we aren't using GCC. ac_prog=ld ;; *) # If it is relative, then search for the first ld in PATH. with_gnu_ld=unknown ;; esac elif test "$with_gnu_ld" = yes; then AC_MSG_CHECKING([for GNU ld]) else AC_MSG_CHECKING([for non-GNU ld]) fi AC_CACHE_VAL([acl_cv_path_LD], [if test -z "$LD"; then acl_save_ifs="$IFS"; IFS=$PATH_SEPARATOR for ac_dir in $PATH; do IFS="$acl_save_ifs" test -z "$ac_dir" && ac_dir=. if test -f "$ac_dir/$ac_prog" || test -f "$ac_dir/$ac_prog$ac_exeext"; then acl_cv_path_LD="$ac_dir/$ac_prog" # Check to see if the program is GNU ld. I'd rather use --version, # but apparently some variants of GNU ld only accept -v. # Break only if it was the GNU/non-GNU ld that we prefer. case `"$acl_cv_path_LD" -v 2>&1 = 1.10 to complain if config.rpath is missing. m4_ifdef([AC_REQUIRE_AUX_FILE], [AC_REQUIRE_AUX_FILE([config.rpath])]) AC_REQUIRE([AC_PROG_CC]) dnl we use $CC, $GCC, $LDFLAGS AC_REQUIRE([AC_LIB_PROG_LD]) dnl we use $LD, $with_gnu_ld AC_REQUIRE([AC_CANONICAL_HOST]) dnl we use $host AC_REQUIRE([AC_CONFIG_AUX_DIR_DEFAULT]) dnl we use $ac_aux_dir AC_CACHE_CHECK([for shared library run path origin], [acl_cv_rpath], [ CC="$CC" GCC="$GCC" LDFLAGS="$LDFLAGS" LD="$LD" with_gnu_ld="$with_gnu_ld" \ ${CONFIG_SHELL-/bin/sh} "$ac_aux_dir/config.rpath" "$host" > conftest.sh . ./conftest.sh rm -f ./conftest.sh acl_cv_rpath=done ]) wl="$acl_cv_wl" acl_libext="$acl_cv_libext" acl_shlibext="$acl_cv_shlibext" acl_libname_spec="$acl_cv_libname_spec" acl_library_names_spec="$acl_cv_library_names_spec" acl_hardcode_libdir_flag_spec="$acl_cv_hardcode_libdir_flag_spec" acl_hardcode_libdir_separator="$acl_cv_hardcode_libdir_separator" acl_hardcode_direct="$acl_cv_hardcode_direct" acl_hardcode_minus_L="$acl_cv_hardcode_minus_L" dnl Determine whether the user wants rpath handling at all. AC_ARG_ENABLE([rpath], [ --disable-rpath do not hardcode runtime library paths], :, enable_rpath=yes) ]) dnl AC_LIB_FROMPACKAGE(name, package) dnl declares that libname comes from the given package. The configure file dnl will then not have a --with-libname-prefix option but a dnl --with-package-prefix option. Several libraries can come from the same dnl package. This declaration must occur before an AC_LIB_LINKFLAGS or similar dnl macro call that searches for libname. AC_DEFUN([AC_LIB_FROMPACKAGE], [ pushdef([NAME],[m4_translit([$1],[abcdefghijklmnopqrstuvwxyz./+-], [ABCDEFGHIJKLMNOPQRSTUVWXYZ____])]) define([acl_frompackage_]NAME, [$2]) popdef([NAME]) pushdef([PACK],[$2]) pushdef([PACKUP],[m4_translit(PACK,[abcdefghijklmnopqrstuvwxyz./+-], [ABCDEFGHIJKLMNOPQRSTUVWXYZ____])]) define([acl_libsinpackage_]PACKUP, m4_ifdef([acl_libsinpackage_]PACKUP, [m4_defn([acl_libsinpackage_]PACKUP)[, ]],)[lib$1]) popdef([PACKUP]) popdef([PACK]) ]) dnl AC_LIB_LINKFLAGS_BODY(name [, dependencies]) searches for libname and dnl the libraries corresponding to explicit and implicit dependencies. dnl Sets the LIB${NAME}, LTLIB${NAME} and INC${NAME} variables. dnl Also, sets the LIB${NAME}_PREFIX variable to nonempty if libname was found dnl in ${LIB${NAME}_PREFIX}/$acl_libdirstem. AC_DEFUN([AC_LIB_LINKFLAGS_BODY], [ AC_REQUIRE([AC_LIB_PREPARE_MULTILIB]) pushdef([NAME],[m4_translit([$1],[abcdefghijklmnopqrstuvwxyz./+-], [ABCDEFGHIJKLMNOPQRSTUVWXYZ____])]) pushdef([PACK],[m4_ifdef([acl_frompackage_]NAME, [acl_frompackage_]NAME, lib[$1])]) pushdef([PACKUP],[m4_translit(PACK,[abcdefghijklmnopqrstuvwxyz./+-], [ABCDEFGHIJKLMNOPQRSTUVWXYZ____])]) pushdef([PACKLIBS],[m4_ifdef([acl_frompackage_]NAME, [acl_libsinpackage_]PACKUP, lib[$1])]) dnl Autoconf >= 2.61 supports dots in --with options. pushdef([P_A_C_K],[m4_if(m4_version_compare(m4_defn([m4_PACKAGE_VERSION]),[2.61]),[-1],[m4_translit(PACK,[.],[_])],PACK)]) dnl By default, look in $includedir and $libdir. use_additional=yes AC_LIB_WITH_FINAL_PREFIX([ eval additional_includedir=\"$includedir\" eval additional_libdir=\"$libdir\" ]) AC_ARG_WITH(P_A_C_K[-prefix], [[ --with-]]P_A_C_K[[-prefix[=DIR] search for ]PACKLIBS[ in DIR/include and DIR/lib --without-]]P_A_C_K[[-prefix don't search for ]PACKLIBS[ in includedir and libdir]], [ if test "X$withval" = "Xno"; then use_additional=no else if test "X$withval" = "X"; then AC_LIB_WITH_FINAL_PREFIX([ eval additional_includedir=\"$includedir\" eval additional_libdir=\"$libdir\" ]) else additional_includedir="$withval/include" additional_libdir="$withval/$acl_libdirstem" if test "$acl_libdirstem2" != "$acl_libdirstem" \ && ! test -d "$withval/$acl_libdirstem"; then additional_libdir="$withval/$acl_libdirstem2" fi fi fi ]) dnl Search the library and its dependencies in $additional_libdir and dnl $LDFLAGS. Using breadth-first-seach. LIB[]NAME= LTLIB[]NAME= INC[]NAME= LIB[]NAME[]_PREFIX= dnl HAVE_LIB${NAME} is an indicator that LIB${NAME}, LTLIB${NAME} have been dnl computed. So it has to be reset here. HAVE_LIB[]NAME= rpathdirs= ltrpathdirs= names_already_handled= names_next_round='$1 $2' while test -n "$names_next_round"; do names_this_round="$names_next_round" names_next_round= for name in $names_this_round; do already_handled= for n in $names_already_handled; do if test "$n" = "$name"; then already_handled=yes break fi done if test -z "$already_handled"; then names_already_handled="$names_already_handled $name" dnl See if it was already located by an earlier AC_LIB_LINKFLAGS dnl or AC_LIB_HAVE_LINKFLAGS call. uppername=`echo "$name" | sed -e 'y|abcdefghijklmnopqrstuvwxyz./+-|ABCDEFGHIJKLMNOPQRSTUVWXYZ____|'` eval value=\"\$HAVE_LIB$uppername\" if test -n "$value"; then if test "$value" = yes; then eval value=\"\$LIB$uppername\" test -z "$value" || LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }$value" eval value=\"\$LTLIB$uppername\" test -z "$value" || LTLIB[]NAME="${LTLIB[]NAME}${LTLIB[]NAME:+ }$value" else dnl An earlier call to AC_LIB_HAVE_LINKFLAGS has determined dnl that this library doesn't exist. So just drop it. : fi else dnl Search the library lib$name in $additional_libdir and $LDFLAGS dnl and the already constructed $LIBNAME/$LTLIBNAME. found_dir= found_la= found_so= found_a= eval libname=\"$acl_libname_spec\" # typically: libname=lib$name if test -n "$acl_shlibext"; then shrext=".$acl_shlibext" # typically: shrext=.so else shrext= fi if test $use_additional = yes; then dir="$additional_libdir" dnl The same code as in the loop below: dnl First look for a shared library. if test -n "$acl_shlibext"; then if test -f "$dir/$libname$shrext"; then found_dir="$dir" found_so="$dir/$libname$shrext" else if test "$acl_library_names_spec" = '$libname$shrext$versuffix'; then ver=`(cd "$dir" && \ for f in "$libname$shrext".*; do echo "$f"; done \ | sed -e "s,^$libname$shrext\\\\.,," \ | sort -t '.' -n -r -k1,1 -k2,2 -k3,3 -k4,4 -k5,5 \ | sed 1q ) 2>/dev/null` if test -n "$ver" && test -f "$dir/$libname$shrext.$ver"; then found_dir="$dir" found_so="$dir/$libname$shrext.$ver" fi else eval library_names=\"$acl_library_names_spec\" for f in $library_names; do if test -f "$dir/$f"; then found_dir="$dir" found_so="$dir/$f" break fi done fi fi fi dnl Then look for a static library. if test "X$found_dir" = "X"; then if test -f "$dir/$libname.$acl_libext"; then found_dir="$dir" found_a="$dir/$libname.$acl_libext" fi fi if test "X$found_dir" != "X"; then if test -f "$dir/$libname.la"; then found_la="$dir/$libname.la" fi fi fi if test "X$found_dir" = "X"; then for x in $LDFLAGS $LTLIB[]NAME; do AC_LIB_WITH_FINAL_PREFIX([eval x=\"$x\"]) case "$x" in -L*) dir=`echo "X$x" | sed -e 's/^X-L//'` dnl First look for a shared library. if test -n "$acl_shlibext"; then if test -f "$dir/$libname$shrext"; then found_dir="$dir" found_so="$dir/$libname$shrext" else if test "$acl_library_names_spec" = '$libname$shrext$versuffix'; then ver=`(cd "$dir" && \ for f in "$libname$shrext".*; do echo "$f"; done \ | sed -e "s,^$libname$shrext\\\\.,," \ | sort -t '.' -n -r -k1,1 -k2,2 -k3,3 -k4,4 -k5,5 \ | sed 1q ) 2>/dev/null` if test -n "$ver" && test -f "$dir/$libname$shrext.$ver"; then found_dir="$dir" found_so="$dir/$libname$shrext.$ver" fi else eval library_names=\"$acl_library_names_spec\" for f in $library_names; do if test -f "$dir/$f"; then found_dir="$dir" found_so="$dir/$f" break fi done fi fi fi dnl Then look for a static library. if test "X$found_dir" = "X"; then if test -f "$dir/$libname.$acl_libext"; then found_dir="$dir" found_a="$dir/$libname.$acl_libext" fi fi if test "X$found_dir" != "X"; then if test -f "$dir/$libname.la"; then found_la="$dir/$libname.la" fi fi ;; esac if test "X$found_dir" != "X"; then break fi done fi if test "X$found_dir" != "X"; then dnl Found the library. LTLIB[]NAME="${LTLIB[]NAME}${LTLIB[]NAME:+ }-L$found_dir -l$name" if test "X$found_so" != "X"; then dnl Linking with a shared library. We attempt to hardcode its dnl directory into the executable's runpath, unless it's the dnl standard /usr/lib. if test "$enable_rpath" = no \ || test "X$found_dir" = "X/usr/$acl_libdirstem" \ || test "X$found_dir" = "X/usr/$acl_libdirstem2"; then dnl No hardcoding is needed. LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }$found_so" else dnl Use an explicit option to hardcode DIR into the resulting dnl binary. dnl Potentially add DIR to ltrpathdirs. dnl The ltrpathdirs will be appended to $LTLIBNAME at the end. haveit= for x in $ltrpathdirs; do if test "X$x" = "X$found_dir"; then haveit=yes break fi done if test -z "$haveit"; then ltrpathdirs="$ltrpathdirs $found_dir" fi dnl The hardcoding into $LIBNAME is system dependent. if test "$acl_hardcode_direct" = yes; then dnl Using DIR/libNAME.so during linking hardcodes DIR into the dnl resulting binary. LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }$found_so" else if test -n "$acl_hardcode_libdir_flag_spec" && test "$acl_hardcode_minus_L" = no; then dnl Use an explicit option to hardcode DIR into the resulting dnl binary. LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }$found_so" dnl Potentially add DIR to rpathdirs. dnl The rpathdirs will be appended to $LIBNAME at the end. haveit= for x in $rpathdirs; do if test "X$x" = "X$found_dir"; then haveit=yes break fi done if test -z "$haveit"; then rpathdirs="$rpathdirs $found_dir" fi else dnl Rely on "-L$found_dir". dnl But don't add it if it's already contained in the LDFLAGS dnl or the already constructed $LIBNAME haveit= for x in $LDFLAGS $LIB[]NAME; do AC_LIB_WITH_FINAL_PREFIX([eval x=\"$x\"]) if test "X$x" = "X-L$found_dir"; then haveit=yes break fi done if test -z "$haveit"; then LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }-L$found_dir" fi if test "$acl_hardcode_minus_L" != no; then dnl FIXME: Not sure whether we should use dnl "-L$found_dir -l$name" or "-L$found_dir $found_so" dnl here. LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }$found_so" else dnl We cannot use $acl_hardcode_runpath_var and LD_RUN_PATH dnl here, because this doesn't fit in flags passed to the dnl compiler. So give up. No hardcoding. This affects only dnl very old systems. dnl FIXME: Not sure whether we should use dnl "-L$found_dir -l$name" or "-L$found_dir $found_so" dnl here. LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }-l$name" fi fi fi fi else if test "X$found_a" != "X"; then dnl Linking with a static library. LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }$found_a" else dnl We shouldn't come here, but anyway it's good to have a dnl fallback. LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }-L$found_dir -l$name" fi fi dnl Assume the include files are nearby. additional_includedir= case "$found_dir" in */$acl_libdirstem | */$acl_libdirstem/) basedir=`echo "X$found_dir" | sed -e 's,^X,,' -e "s,/$acl_libdirstem/"'*$,,'` if test "$name" = '$1'; then LIB[]NAME[]_PREFIX="$basedir" fi additional_includedir="$basedir/include" ;; */$acl_libdirstem2 | */$acl_libdirstem2/) basedir=`echo "X$found_dir" | sed -e 's,^X,,' -e "s,/$acl_libdirstem2/"'*$,,'` if test "$name" = '$1'; then LIB[]NAME[]_PREFIX="$basedir" fi additional_includedir="$basedir/include" ;; esac if test "X$additional_includedir" != "X"; then dnl Potentially add $additional_includedir to $INCNAME. dnl But don't add it dnl 1. if it's the standard /usr/include, dnl 2. if it's /usr/local/include and we are using GCC on Linux, dnl 3. if it's already present in $CPPFLAGS or the already dnl constructed $INCNAME, dnl 4. if it doesn't exist as a directory. if test "X$additional_includedir" != "X/usr/include"; then haveit= if test "X$additional_includedir" = "X/usr/local/include"; then if test -n "$GCC"; then case $host_os in linux* | gnu* | k*bsd*-gnu) haveit=yes;; esac fi fi if test -z "$haveit"; then for x in $CPPFLAGS $INC[]NAME; do AC_LIB_WITH_FINAL_PREFIX([eval x=\"$x\"]) if test "X$x" = "X-I$additional_includedir"; then haveit=yes break fi done if test -z "$haveit"; then if test -d "$additional_includedir"; then dnl Really add $additional_includedir to $INCNAME. INC[]NAME="${INC[]NAME}${INC[]NAME:+ }-I$additional_includedir" fi fi fi fi fi dnl Look for dependencies. if test -n "$found_la"; then dnl Read the .la file. It defines the variables dnl dlname, library_names, old_library, dependency_libs, current, dnl age, revision, installed, dlopen, dlpreopen, libdir. save_libdir="$libdir" case "$found_la" in */* | *\\*) . "$found_la" ;; *) . "./$found_la" ;; esac libdir="$save_libdir" dnl We use only dependency_libs. for dep in $dependency_libs; do case "$dep" in -L*) additional_libdir=`echo "X$dep" | sed -e 's/^X-L//'` dnl Potentially add $additional_libdir to $LIBNAME and $LTLIBNAME. dnl But don't add it dnl 1. if it's the standard /usr/lib, dnl 2. if it's /usr/local/lib and we are using GCC on Linux, dnl 3. if it's already present in $LDFLAGS or the already dnl constructed $LIBNAME, dnl 4. if it doesn't exist as a directory. if test "X$additional_libdir" != "X/usr/$acl_libdirstem" \ && test "X$additional_libdir" != "X/usr/$acl_libdirstem2"; then haveit= if test "X$additional_libdir" = "X/usr/local/$acl_libdirstem" \ || test "X$additional_libdir" = "X/usr/local/$acl_libdirstem2"; then if test -n "$GCC"; then case $host_os in linux* | gnu* | k*bsd*-gnu) haveit=yes;; esac fi fi if test -z "$haveit"; then haveit= for x in $LDFLAGS $LIB[]NAME; do AC_LIB_WITH_FINAL_PREFIX([eval x=\"$x\"]) if test "X$x" = "X-L$additional_libdir"; then haveit=yes break fi done if test -z "$haveit"; then if test -d "$additional_libdir"; then dnl Really add $additional_libdir to $LIBNAME. LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }-L$additional_libdir" fi fi haveit= for x in $LDFLAGS $LTLIB[]NAME; do AC_LIB_WITH_FINAL_PREFIX([eval x=\"$x\"]) if test "X$x" = "X-L$additional_libdir"; then haveit=yes break fi done if test -z "$haveit"; then if test -d "$additional_libdir"; then dnl Really add $additional_libdir to $LTLIBNAME. LTLIB[]NAME="${LTLIB[]NAME}${LTLIB[]NAME:+ }-L$additional_libdir" fi fi fi fi ;; -R*) dir=`echo "X$dep" | sed -e 's/^X-R//'` if test "$enable_rpath" != no; then dnl Potentially add DIR to rpathdirs. dnl The rpathdirs will be appended to $LIBNAME at the end. haveit= for x in $rpathdirs; do if test "X$x" = "X$dir"; then haveit=yes break fi done if test -z "$haveit"; then rpathdirs="$rpathdirs $dir" fi dnl Potentially add DIR to ltrpathdirs. dnl The ltrpathdirs will be appended to $LTLIBNAME at the end. haveit= for x in $ltrpathdirs; do if test "X$x" = "X$dir"; then haveit=yes break fi done if test -z "$haveit"; then ltrpathdirs="$ltrpathdirs $dir" fi fi ;; -l*) dnl Handle this in the next round. names_next_round="$names_next_round "`echo "X$dep" | sed -e 's/^X-l//'` ;; *.la) dnl Handle this in the next round. Throw away the .la's dnl directory; it is already contained in a preceding -L dnl option. names_next_round="$names_next_round "`echo "X$dep" | sed -e 's,^X.*/,,' -e 's,^lib,,' -e 's,\.la$,,'` ;; *) dnl Most likely an immediate library name. LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }$dep" LTLIB[]NAME="${LTLIB[]NAME}${LTLIB[]NAME:+ }$dep" ;; esac done fi else dnl Didn't find the library; assume it is in the system directories dnl known to the linker and runtime loader. (All the system dnl directories known to the linker should also be known to the dnl runtime loader, otherwise the system is severely misconfigured.) LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }-l$name" LTLIB[]NAME="${LTLIB[]NAME}${LTLIB[]NAME:+ }-l$name" fi fi fi done done if test "X$rpathdirs" != "X"; then if test -n "$acl_hardcode_libdir_separator"; then dnl Weird platform: only the last -rpath option counts, the user must dnl pass all path elements in one option. We can arrange that for a dnl single library, but not when more than one $LIBNAMEs are used. alldirs= for found_dir in $rpathdirs; do alldirs="${alldirs}${alldirs:+$acl_hardcode_libdir_separator}$found_dir" done dnl Note: acl_hardcode_libdir_flag_spec uses $libdir and $wl. acl_save_libdir="$libdir" libdir="$alldirs" eval flag=\"$acl_hardcode_libdir_flag_spec\" libdir="$acl_save_libdir" LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }$flag" else dnl The -rpath options are cumulative. for found_dir in $rpathdirs; do acl_save_libdir="$libdir" libdir="$found_dir" eval flag=\"$acl_hardcode_libdir_flag_spec\" libdir="$acl_save_libdir" LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }$flag" done fi fi if test "X$ltrpathdirs" != "X"; then dnl When using libtool, the option that works for both libraries and dnl executables is -R. The -R options are cumulative. for found_dir in $ltrpathdirs; do LTLIB[]NAME="${LTLIB[]NAME}${LTLIB[]NAME:+ }-R$found_dir" done fi popdef([P_A_C_K]) popdef([PACKLIBS]) popdef([PACKUP]) popdef([PACK]) popdef([NAME]) ]) dnl AC_LIB_APPENDTOVAR(VAR, CONTENTS) appends the elements of CONTENTS to VAR, dnl unless already present in VAR. dnl Works only for CPPFLAGS, not for LIB* variables because that sometimes dnl contains two or three consecutive elements that belong together. AC_DEFUN([AC_LIB_APPENDTOVAR], [ for element in [$2]; do haveit= for x in $[$1]; do AC_LIB_WITH_FINAL_PREFIX([eval x=\"$x\"]) if test "X$x" = "X$element"; then haveit=yes break fi done if test -z "$haveit"; then [$1]="${[$1]}${[$1]:+ }$element" fi done ]) dnl For those cases where a variable contains several -L and -l options dnl referring to unknown libraries and directories, this macro determines the dnl necessary additional linker options for the runtime path. dnl AC_LIB_LINKFLAGS_FROM_LIBS([LDADDVAR], [LIBSVALUE], [USE-LIBTOOL]) dnl sets LDADDVAR to linker options needed together with LIBSVALUE. dnl If USE-LIBTOOL evaluates to non-empty, linking with libtool is assumed, dnl otherwise linking without libtool is assumed. AC_DEFUN([AC_LIB_LINKFLAGS_FROM_LIBS], [ AC_REQUIRE([AC_LIB_RPATH]) AC_REQUIRE([AC_LIB_PREPARE_MULTILIB]) $1= if test "$enable_rpath" != no; then if test -n "$acl_hardcode_libdir_flag_spec" && test "$acl_hardcode_minus_L" = no; then dnl Use an explicit option to hardcode directories into the resulting dnl binary. rpathdirs= next= for opt in $2; do if test -n "$next"; then dir="$next" dnl No need to hardcode the standard /usr/lib. if test "X$dir" != "X/usr/$acl_libdirstem" \ && test "X$dir" != "X/usr/$acl_libdirstem2"; then rpathdirs="$rpathdirs $dir" fi next= else case $opt in -L) next=yes ;; -L*) dir=`echo "X$opt" | sed -e 's,^X-L,,'` dnl No need to hardcode the standard /usr/lib. if test "X$dir" != "X/usr/$acl_libdirstem" \ && test "X$dir" != "X/usr/$acl_libdirstem2"; then rpathdirs="$rpathdirs $dir" fi next= ;; *) next= ;; esac fi done if test "X$rpathdirs" != "X"; then if test -n ""$3""; then dnl libtool is used for linking. Use -R options. for dir in $rpathdirs; do $1="${$1}${$1:+ }-R$dir" done else dnl The linker is used for linking directly. if test -n "$acl_hardcode_libdir_separator"; then dnl Weird platform: only the last -rpath option counts, the user dnl must pass all path elements in one option. alldirs= for dir in $rpathdirs; do alldirs="${alldirs}${alldirs:+$acl_hardcode_libdir_separator}$dir" done acl_save_libdir="$libdir" libdir="$alldirs" eval flag=\"$acl_hardcode_libdir_flag_spec\" libdir="$acl_save_libdir" $1="$flag" else dnl The -rpath options are cumulative. for dir in $rpathdirs; do acl_save_libdir="$libdir" libdir="$dir" eval flag=\"$acl_hardcode_libdir_flag_spec\" libdir="$acl_save_libdir" $1="${$1}${$1:+ }$flag" done fi fi fi fi fi AC_SUBST([$1]) ]) openconnect-8.05/m4/ltoptions.m40000644000076400007640000003426213425105604020357 0ustar00dwoodhoudwoodhou00000000000000# Helper functions for option handling. -*- Autoconf -*- # # Copyright (C) 2004-2005, 2007-2009, 2011-2015 Free Software # Foundation, Inc. # Written by Gary V. Vaughan, 2004 # # This file is free software; the Free Software Foundation gives # unlimited permission to copy and/or distribute it, with or without # modifications, as long as this notice is preserved. # serial 8 ltoptions.m4 # This is to help aclocal find these macros, as it can't see m4_define. AC_DEFUN([LTOPTIONS_VERSION], [m4_if([1])]) # _LT_MANGLE_OPTION(MACRO-NAME, OPTION-NAME) # ------------------------------------------ m4_define([_LT_MANGLE_OPTION], [[_LT_OPTION_]m4_bpatsubst($1__$2, [[^a-zA-Z0-9_]], [_])]) # _LT_SET_OPTION(MACRO-NAME, OPTION-NAME) # --------------------------------------- # Set option OPTION-NAME for macro MACRO-NAME, and if there is a # matching handler defined, dispatch to it. Other OPTION-NAMEs are # saved as a flag. m4_define([_LT_SET_OPTION], [m4_define(_LT_MANGLE_OPTION([$1], [$2]))dnl m4_ifdef(_LT_MANGLE_DEFUN([$1], [$2]), _LT_MANGLE_DEFUN([$1], [$2]), [m4_warning([Unknown $1 option '$2'])])[]dnl ]) # _LT_IF_OPTION(MACRO-NAME, OPTION-NAME, IF-SET, [IF-NOT-SET]) # ------------------------------------------------------------ # Execute IF-SET if OPTION is set, IF-NOT-SET otherwise. m4_define([_LT_IF_OPTION], [m4_ifdef(_LT_MANGLE_OPTION([$1], [$2]), [$3], [$4])]) # _LT_UNLESS_OPTIONS(MACRO-NAME, OPTION-LIST, IF-NOT-SET) # ------------------------------------------------------- # Execute IF-NOT-SET unless all options in OPTION-LIST for MACRO-NAME # are set. m4_define([_LT_UNLESS_OPTIONS], [m4_foreach([_LT_Option], m4_split(m4_normalize([$2])), [m4_ifdef(_LT_MANGLE_OPTION([$1], _LT_Option), [m4_define([$0_found])])])[]dnl m4_ifdef([$0_found], [m4_undefine([$0_found])], [$3 ])[]dnl ]) # _LT_SET_OPTIONS(MACRO-NAME, OPTION-LIST) # ---------------------------------------- # OPTION-LIST is a space-separated list of Libtool options associated # with MACRO-NAME. If any OPTION has a matching handler declared with # LT_OPTION_DEFINE, dispatch to that macro; otherwise complain about # the unknown option and exit. m4_defun([_LT_SET_OPTIONS], [# Set options m4_foreach([_LT_Option], m4_split(m4_normalize([$2])), [_LT_SET_OPTION([$1], _LT_Option)]) m4_if([$1],[LT_INIT],[ dnl dnl Simply set some default values (i.e off) if boolean options were not dnl specified: _LT_UNLESS_OPTIONS([LT_INIT], [dlopen], [enable_dlopen=no ]) _LT_UNLESS_OPTIONS([LT_INIT], [win32-dll], [enable_win32_dll=no ]) dnl dnl If no reference was made to various pairs of opposing options, then dnl we run the default mode handler for the pair. For example, if neither dnl 'shared' nor 'disable-shared' was passed, we enable building of shared dnl archives by default: _LT_UNLESS_OPTIONS([LT_INIT], [shared disable-shared], [_LT_ENABLE_SHARED]) _LT_UNLESS_OPTIONS([LT_INIT], [static disable-static], [_LT_ENABLE_STATIC]) _LT_UNLESS_OPTIONS([LT_INIT], [pic-only no-pic], [_LT_WITH_PIC]) _LT_UNLESS_OPTIONS([LT_INIT], [fast-install disable-fast-install], [_LT_ENABLE_FAST_INSTALL]) _LT_UNLESS_OPTIONS([LT_INIT], [aix-soname=aix aix-soname=both aix-soname=svr4], [_LT_WITH_AIX_SONAME([aix])]) ]) ])# _LT_SET_OPTIONS ## --------------------------------- ## ## Macros to handle LT_INIT options. ## ## --------------------------------- ## # _LT_MANGLE_DEFUN(MACRO-NAME, OPTION-NAME) # ----------------------------------------- m4_define([_LT_MANGLE_DEFUN], [[_LT_OPTION_DEFUN_]m4_bpatsubst(m4_toupper([$1__$2]), [[^A-Z0-9_]], [_])]) # LT_OPTION_DEFINE(MACRO-NAME, OPTION-NAME, CODE) # ----------------------------------------------- m4_define([LT_OPTION_DEFINE], [m4_define(_LT_MANGLE_DEFUN([$1], [$2]), [$3])[]dnl ])# LT_OPTION_DEFINE # dlopen # ------ LT_OPTION_DEFINE([LT_INIT], [dlopen], [enable_dlopen=yes ]) AU_DEFUN([AC_LIBTOOL_DLOPEN], [_LT_SET_OPTION([LT_INIT], [dlopen]) AC_DIAGNOSE([obsolete], [$0: Remove this warning and the call to _LT_SET_OPTION when you put the 'dlopen' option into LT_INIT's first parameter.]) ]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AC_LIBTOOL_DLOPEN], []) # win32-dll # --------- # Declare package support for building win32 dll's. LT_OPTION_DEFINE([LT_INIT], [win32-dll], [enable_win32_dll=yes case $host in *-*-cygwin* | *-*-mingw* | *-*-pw32* | *-*-cegcc*) AC_CHECK_TOOL(AS, as, false) AC_CHECK_TOOL(DLLTOOL, dlltool, false) AC_CHECK_TOOL(OBJDUMP, objdump, false) ;; esac test -z "$AS" && AS=as _LT_DECL([], [AS], [1], [Assembler program])dnl test -z "$DLLTOOL" && DLLTOOL=dlltool _LT_DECL([], [DLLTOOL], [1], [DLL creation program])dnl test -z "$OBJDUMP" && OBJDUMP=objdump _LT_DECL([], [OBJDUMP], [1], [Object dumper program])dnl ])# win32-dll AU_DEFUN([AC_LIBTOOL_WIN32_DLL], [AC_REQUIRE([AC_CANONICAL_HOST])dnl _LT_SET_OPTION([LT_INIT], [win32-dll]) AC_DIAGNOSE([obsolete], [$0: Remove this warning and the call to _LT_SET_OPTION when you put the 'win32-dll' option into LT_INIT's first parameter.]) ]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AC_LIBTOOL_WIN32_DLL], []) # _LT_ENABLE_SHARED([DEFAULT]) # ---------------------------- # implement the --enable-shared flag, and supports the 'shared' and # 'disable-shared' LT_INIT options. # DEFAULT is either 'yes' or 'no'. If omitted, it defaults to 'yes'. m4_define([_LT_ENABLE_SHARED], [m4_define([_LT_ENABLE_SHARED_DEFAULT], [m4_if($1, no, no, yes)])dnl AC_ARG_ENABLE([shared], [AS_HELP_STRING([--enable-shared@<:@=PKGS@:>@], [build shared libraries @<:@default=]_LT_ENABLE_SHARED_DEFAULT[@:>@])], [p=${PACKAGE-default} case $enableval in yes) enable_shared=yes ;; no) enable_shared=no ;; *) enable_shared=no # Look at the argument we got. We use all the common list separators. lt_save_ifs=$IFS; IFS=$IFS$PATH_SEPARATOR, for pkg in $enableval; do IFS=$lt_save_ifs if test "X$pkg" = "X$p"; then enable_shared=yes fi done IFS=$lt_save_ifs ;; esac], [enable_shared=]_LT_ENABLE_SHARED_DEFAULT) _LT_DECL([build_libtool_libs], [enable_shared], [0], [Whether or not to build shared libraries]) ])# _LT_ENABLE_SHARED LT_OPTION_DEFINE([LT_INIT], [shared], [_LT_ENABLE_SHARED([yes])]) LT_OPTION_DEFINE([LT_INIT], [disable-shared], [_LT_ENABLE_SHARED([no])]) # Old names: AC_DEFUN([AC_ENABLE_SHARED], [_LT_SET_OPTION([LT_INIT], m4_if([$1], [no], [disable-])[shared]) ]) AC_DEFUN([AC_DISABLE_SHARED], [_LT_SET_OPTION([LT_INIT], [disable-shared]) ]) AU_DEFUN([AM_ENABLE_SHARED], [AC_ENABLE_SHARED($@)]) AU_DEFUN([AM_DISABLE_SHARED], [AC_DISABLE_SHARED($@)]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AM_ENABLE_SHARED], []) dnl AC_DEFUN([AM_DISABLE_SHARED], []) # _LT_ENABLE_STATIC([DEFAULT]) # ---------------------------- # implement the --enable-static flag, and support the 'static' and # 'disable-static' LT_INIT options. # DEFAULT is either 'yes' or 'no'. If omitted, it defaults to 'yes'. m4_define([_LT_ENABLE_STATIC], [m4_define([_LT_ENABLE_STATIC_DEFAULT], [m4_if($1, no, no, yes)])dnl AC_ARG_ENABLE([static], [AS_HELP_STRING([--enable-static@<:@=PKGS@:>@], [build static libraries @<:@default=]_LT_ENABLE_STATIC_DEFAULT[@:>@])], [p=${PACKAGE-default} case $enableval in yes) enable_static=yes ;; no) enable_static=no ;; *) enable_static=no # Look at the argument we got. We use all the common list separators. lt_save_ifs=$IFS; IFS=$IFS$PATH_SEPARATOR, for pkg in $enableval; do IFS=$lt_save_ifs if test "X$pkg" = "X$p"; then enable_static=yes fi done IFS=$lt_save_ifs ;; esac], [enable_static=]_LT_ENABLE_STATIC_DEFAULT) _LT_DECL([build_old_libs], [enable_static], [0], [Whether or not to build static libraries]) ])# _LT_ENABLE_STATIC LT_OPTION_DEFINE([LT_INIT], [static], [_LT_ENABLE_STATIC([yes])]) LT_OPTION_DEFINE([LT_INIT], [disable-static], [_LT_ENABLE_STATIC([no])]) # Old names: AC_DEFUN([AC_ENABLE_STATIC], [_LT_SET_OPTION([LT_INIT], m4_if([$1], [no], [disable-])[static]) ]) AC_DEFUN([AC_DISABLE_STATIC], [_LT_SET_OPTION([LT_INIT], [disable-static]) ]) AU_DEFUN([AM_ENABLE_STATIC], [AC_ENABLE_STATIC($@)]) AU_DEFUN([AM_DISABLE_STATIC], [AC_DISABLE_STATIC($@)]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AM_ENABLE_STATIC], []) dnl AC_DEFUN([AM_DISABLE_STATIC], []) # _LT_ENABLE_FAST_INSTALL([DEFAULT]) # ---------------------------------- # implement the --enable-fast-install flag, and support the 'fast-install' # and 'disable-fast-install' LT_INIT options. # DEFAULT is either 'yes' or 'no'. If omitted, it defaults to 'yes'. m4_define([_LT_ENABLE_FAST_INSTALL], [m4_define([_LT_ENABLE_FAST_INSTALL_DEFAULT], [m4_if($1, no, no, yes)])dnl AC_ARG_ENABLE([fast-install], [AS_HELP_STRING([--enable-fast-install@<:@=PKGS@:>@], [optimize for fast installation @<:@default=]_LT_ENABLE_FAST_INSTALL_DEFAULT[@:>@])], [p=${PACKAGE-default} case $enableval in yes) enable_fast_install=yes ;; no) enable_fast_install=no ;; *) enable_fast_install=no # Look at the argument we got. We use all the common list separators. lt_save_ifs=$IFS; IFS=$IFS$PATH_SEPARATOR, for pkg in $enableval; do IFS=$lt_save_ifs if test "X$pkg" = "X$p"; then enable_fast_install=yes fi done IFS=$lt_save_ifs ;; esac], [enable_fast_install=]_LT_ENABLE_FAST_INSTALL_DEFAULT) _LT_DECL([fast_install], [enable_fast_install], [0], [Whether or not to optimize for fast installation])dnl ])# _LT_ENABLE_FAST_INSTALL LT_OPTION_DEFINE([LT_INIT], [fast-install], [_LT_ENABLE_FAST_INSTALL([yes])]) LT_OPTION_DEFINE([LT_INIT], [disable-fast-install], [_LT_ENABLE_FAST_INSTALL([no])]) # Old names: AU_DEFUN([AC_ENABLE_FAST_INSTALL], [_LT_SET_OPTION([LT_INIT], m4_if([$1], [no], [disable-])[fast-install]) AC_DIAGNOSE([obsolete], [$0: Remove this warning and the call to _LT_SET_OPTION when you put the 'fast-install' option into LT_INIT's first parameter.]) ]) AU_DEFUN([AC_DISABLE_FAST_INSTALL], [_LT_SET_OPTION([LT_INIT], [disable-fast-install]) AC_DIAGNOSE([obsolete], [$0: Remove this warning and the call to _LT_SET_OPTION when you put the 'disable-fast-install' option into LT_INIT's first parameter.]) ]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AC_ENABLE_FAST_INSTALL], []) dnl AC_DEFUN([AM_DISABLE_FAST_INSTALL], []) # _LT_WITH_AIX_SONAME([DEFAULT]) # ---------------------------------- # implement the --with-aix-soname flag, and support the `aix-soname=aix' # and `aix-soname=both' and `aix-soname=svr4' LT_INIT options. DEFAULT # is either `aix', `both' or `svr4'. If omitted, it defaults to `aix'. m4_define([_LT_WITH_AIX_SONAME], [m4_define([_LT_WITH_AIX_SONAME_DEFAULT], [m4_if($1, svr4, svr4, m4_if($1, both, both, aix))])dnl shared_archive_member_spec= case $host,$enable_shared in power*-*-aix[[5-9]]*,yes) AC_MSG_CHECKING([which variant of shared library versioning to provide]) AC_ARG_WITH([aix-soname], [AS_HELP_STRING([--with-aix-soname=aix|svr4|both], [shared library versioning (aka "SONAME") variant to provide on AIX, @<:@default=]_LT_WITH_AIX_SONAME_DEFAULT[@:>@.])], [case $withval in aix|svr4|both) ;; *) AC_MSG_ERROR([Unknown argument to --with-aix-soname]) ;; esac lt_cv_with_aix_soname=$with_aix_soname], [AC_CACHE_VAL([lt_cv_with_aix_soname], [lt_cv_with_aix_soname=]_LT_WITH_AIX_SONAME_DEFAULT) with_aix_soname=$lt_cv_with_aix_soname]) AC_MSG_RESULT([$with_aix_soname]) if test aix != "$with_aix_soname"; then # For the AIX way of multilib, we name the shared archive member # based on the bitwidth used, traditionally 'shr.o' or 'shr_64.o', # and 'shr.imp' or 'shr_64.imp', respectively, for the Import File. # Even when GNU compilers ignore OBJECT_MODE but need '-maix64' flag, # the AIX toolchain works better with OBJECT_MODE set (default 32). if test 64 = "${OBJECT_MODE-32}"; then shared_archive_member_spec=shr_64 else shared_archive_member_spec=shr fi fi ;; *) with_aix_soname=aix ;; esac _LT_DECL([], [shared_archive_member_spec], [0], [Shared archive member basename, for filename based shared library versioning on AIX])dnl ])# _LT_WITH_AIX_SONAME LT_OPTION_DEFINE([LT_INIT], [aix-soname=aix], [_LT_WITH_AIX_SONAME([aix])]) LT_OPTION_DEFINE([LT_INIT], [aix-soname=both], [_LT_WITH_AIX_SONAME([both])]) LT_OPTION_DEFINE([LT_INIT], [aix-soname=svr4], [_LT_WITH_AIX_SONAME([svr4])]) # _LT_WITH_PIC([MODE]) # -------------------- # implement the --with-pic flag, and support the 'pic-only' and 'no-pic' # LT_INIT options. # MODE is either 'yes' or 'no'. If omitted, it defaults to 'both'. m4_define([_LT_WITH_PIC], [AC_ARG_WITH([pic], [AS_HELP_STRING([--with-pic@<:@=PKGS@:>@], [try to use only PIC/non-PIC objects @<:@default=use both@:>@])], [lt_p=${PACKAGE-default} case $withval in yes|no) pic_mode=$withval ;; *) pic_mode=default # Look at the argument we got. We use all the common list separators. lt_save_ifs=$IFS; IFS=$IFS$PATH_SEPARATOR, for lt_pkg in $withval; do IFS=$lt_save_ifs if test "X$lt_pkg" = "X$lt_p"; then pic_mode=yes fi done IFS=$lt_save_ifs ;; esac], [pic_mode=m4_default([$1], [default])]) _LT_DECL([], [pic_mode], [0], [What type of objects to build])dnl ])# _LT_WITH_PIC LT_OPTION_DEFINE([LT_INIT], [pic-only], [_LT_WITH_PIC([yes])]) LT_OPTION_DEFINE([LT_INIT], [no-pic], [_LT_WITH_PIC([no])]) # Old name: AU_DEFUN([AC_LIBTOOL_PICMODE], [_LT_SET_OPTION([LT_INIT], [pic-only]) AC_DIAGNOSE([obsolete], [$0: Remove this warning and the call to _LT_SET_OPTION when you put the 'pic-only' option into LT_INIT's first parameter.]) ]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AC_LIBTOOL_PICMODE], []) ## ----------------- ## ## LTDL_INIT Options ## ## ----------------- ## m4_define([_LTDL_MODE], []) LT_OPTION_DEFINE([LTDL_INIT], [nonrecursive], [m4_define([_LTDL_MODE], [nonrecursive])]) LT_OPTION_DEFINE([LTDL_INIT], [recursive], [m4_define([_LTDL_MODE], [recursive])]) LT_OPTION_DEFINE([LTDL_INIT], [subproject], [m4_define([_LTDL_MODE], [subproject])]) m4_define([_LTDL_TYPE], []) LT_OPTION_DEFINE([LTDL_INIT], [installable], [m4_define([_LTDL_TYPE], [installable])]) LT_OPTION_DEFINE([LTDL_INIT], [convenience], [m4_define([_LTDL_TYPE], [convenience])]) openconnect-8.05/m4/lt~obsolete.m40000644000076400007640000001377413425105604020703 0ustar00dwoodhoudwoodhou00000000000000# lt~obsolete.m4 -- aclocal satisfying obsolete definitions. -*-Autoconf-*- # # Copyright (C) 2004-2005, 2007, 2009, 2011-2015 Free Software # Foundation, Inc. # Written by Scott James Remnant, 2004. # # This file is free software; the Free Software Foundation gives # unlimited permission to copy and/or distribute it, with or without # modifications, as long as this notice is preserved. # serial 5 lt~obsolete.m4 # These exist entirely to fool aclocal when bootstrapping libtool. # # In the past libtool.m4 has provided macros via AC_DEFUN (or AU_DEFUN), # which have later been changed to m4_define as they aren't part of the # exported API, or moved to Autoconf or Automake where they belong. # # The trouble is, aclocal is a bit thick. It'll see the old AC_DEFUN # in /usr/share/aclocal/libtool.m4 and remember it, then when it sees us # using a macro with the same name in our local m4/libtool.m4 it'll # pull the old libtool.m4 in (it doesn't see our shiny new m4_define # and doesn't know about Autoconf macros at all.) # # So we provide this file, which has a silly filename so it's always # included after everything else. This provides aclocal with the # AC_DEFUNs it wants, but when m4 processes it, it doesn't do anything # because those macros already exist, or will be overwritten later. # We use AC_DEFUN over AU_DEFUN for compatibility with aclocal-1.6. # # Anytime we withdraw an AC_DEFUN or AU_DEFUN, remember to add it here. # Yes, that means every name once taken will need to remain here until # we give up compatibility with versions before 1.7, at which point # we need to keep only those names which we still refer to. # This is to help aclocal find these macros, as it can't see m4_define. AC_DEFUN([LTOBSOLETE_VERSION], [m4_if([1])]) m4_ifndef([AC_LIBTOOL_LINKER_OPTION], [AC_DEFUN([AC_LIBTOOL_LINKER_OPTION])]) m4_ifndef([AC_PROG_EGREP], [AC_DEFUN([AC_PROG_EGREP])]) m4_ifndef([_LT_AC_PROG_ECHO_BACKSLASH], [AC_DEFUN([_LT_AC_PROG_ECHO_BACKSLASH])]) m4_ifndef([_LT_AC_SHELL_INIT], [AC_DEFUN([_LT_AC_SHELL_INIT])]) m4_ifndef([_LT_AC_SYS_LIBPATH_AIX], [AC_DEFUN([_LT_AC_SYS_LIBPATH_AIX])]) m4_ifndef([_LT_PROG_LTMAIN], [AC_DEFUN([_LT_PROG_LTMAIN])]) m4_ifndef([_LT_AC_TAGVAR], [AC_DEFUN([_LT_AC_TAGVAR])]) m4_ifndef([AC_LTDL_ENABLE_INSTALL], [AC_DEFUN([AC_LTDL_ENABLE_INSTALL])]) m4_ifndef([AC_LTDL_PREOPEN], [AC_DEFUN([AC_LTDL_PREOPEN])]) m4_ifndef([_LT_AC_SYS_COMPILER], [AC_DEFUN([_LT_AC_SYS_COMPILER])]) m4_ifndef([_LT_AC_LOCK], [AC_DEFUN([_LT_AC_LOCK])]) m4_ifndef([AC_LIBTOOL_SYS_OLD_ARCHIVE], [AC_DEFUN([AC_LIBTOOL_SYS_OLD_ARCHIVE])]) m4_ifndef([_LT_AC_TRY_DLOPEN_SELF], [AC_DEFUN([_LT_AC_TRY_DLOPEN_SELF])]) m4_ifndef([AC_LIBTOOL_PROG_CC_C_O], [AC_DEFUN([AC_LIBTOOL_PROG_CC_C_O])]) m4_ifndef([AC_LIBTOOL_SYS_HARD_LINK_LOCKS], [AC_DEFUN([AC_LIBTOOL_SYS_HARD_LINK_LOCKS])]) m4_ifndef([AC_LIBTOOL_OBJDIR], [AC_DEFUN([AC_LIBTOOL_OBJDIR])]) m4_ifndef([AC_LTDL_OBJDIR], [AC_DEFUN([AC_LTDL_OBJDIR])]) m4_ifndef([AC_LIBTOOL_PROG_LD_HARDCODE_LIBPATH], [AC_DEFUN([AC_LIBTOOL_PROG_LD_HARDCODE_LIBPATH])]) m4_ifndef([AC_LIBTOOL_SYS_LIB_STRIP], [AC_DEFUN([AC_LIBTOOL_SYS_LIB_STRIP])]) m4_ifndef([AC_PATH_MAGIC], [AC_DEFUN([AC_PATH_MAGIC])]) m4_ifndef([AC_PROG_LD_GNU], [AC_DEFUN([AC_PROG_LD_GNU])]) m4_ifndef([AC_PROG_LD_RELOAD_FLAG], [AC_DEFUN([AC_PROG_LD_RELOAD_FLAG])]) m4_ifndef([AC_DEPLIBS_CHECK_METHOD], [AC_DEFUN([AC_DEPLIBS_CHECK_METHOD])]) m4_ifndef([AC_LIBTOOL_PROG_COMPILER_NO_RTTI], [AC_DEFUN([AC_LIBTOOL_PROG_COMPILER_NO_RTTI])]) m4_ifndef([AC_LIBTOOL_SYS_GLOBAL_SYMBOL_PIPE], [AC_DEFUN([AC_LIBTOOL_SYS_GLOBAL_SYMBOL_PIPE])]) m4_ifndef([AC_LIBTOOL_PROG_COMPILER_PIC], [AC_DEFUN([AC_LIBTOOL_PROG_COMPILER_PIC])]) m4_ifndef([AC_LIBTOOL_PROG_LD_SHLIBS], [AC_DEFUN([AC_LIBTOOL_PROG_LD_SHLIBS])]) m4_ifndef([AC_LIBTOOL_POSTDEP_PREDEP], [AC_DEFUN([AC_LIBTOOL_POSTDEP_PREDEP])]) m4_ifndef([LT_AC_PROG_EGREP], [AC_DEFUN([LT_AC_PROG_EGREP])]) m4_ifndef([LT_AC_PROG_SED], [AC_DEFUN([LT_AC_PROG_SED])]) m4_ifndef([_LT_CC_BASENAME], [AC_DEFUN([_LT_CC_BASENAME])]) m4_ifndef([_LT_COMPILER_BOILERPLATE], [AC_DEFUN([_LT_COMPILER_BOILERPLATE])]) m4_ifndef([_LT_LINKER_BOILERPLATE], [AC_DEFUN([_LT_LINKER_BOILERPLATE])]) m4_ifndef([_AC_PROG_LIBTOOL], [AC_DEFUN([_AC_PROG_LIBTOOL])]) m4_ifndef([AC_LIBTOOL_SETUP], [AC_DEFUN([AC_LIBTOOL_SETUP])]) m4_ifndef([_LT_AC_CHECK_DLFCN], [AC_DEFUN([_LT_AC_CHECK_DLFCN])]) m4_ifndef([AC_LIBTOOL_SYS_DYNAMIC_LINKER], [AC_DEFUN([AC_LIBTOOL_SYS_DYNAMIC_LINKER])]) m4_ifndef([_LT_AC_TAGCONFIG], [AC_DEFUN([_LT_AC_TAGCONFIG])]) m4_ifndef([AC_DISABLE_FAST_INSTALL], [AC_DEFUN([AC_DISABLE_FAST_INSTALL])]) m4_ifndef([_LT_AC_LANG_CXX], [AC_DEFUN([_LT_AC_LANG_CXX])]) m4_ifndef([_LT_AC_LANG_F77], [AC_DEFUN([_LT_AC_LANG_F77])]) m4_ifndef([_LT_AC_LANG_GCJ], [AC_DEFUN([_LT_AC_LANG_GCJ])]) m4_ifndef([AC_LIBTOOL_LANG_C_CONFIG], [AC_DEFUN([AC_LIBTOOL_LANG_C_CONFIG])]) m4_ifndef([_LT_AC_LANG_C_CONFIG], [AC_DEFUN([_LT_AC_LANG_C_CONFIG])]) m4_ifndef([AC_LIBTOOL_LANG_CXX_CONFIG], [AC_DEFUN([AC_LIBTOOL_LANG_CXX_CONFIG])]) m4_ifndef([_LT_AC_LANG_CXX_CONFIG], [AC_DEFUN([_LT_AC_LANG_CXX_CONFIG])]) m4_ifndef([AC_LIBTOOL_LANG_F77_CONFIG], [AC_DEFUN([AC_LIBTOOL_LANG_F77_CONFIG])]) m4_ifndef([_LT_AC_LANG_F77_CONFIG], [AC_DEFUN([_LT_AC_LANG_F77_CONFIG])]) m4_ifndef([AC_LIBTOOL_LANG_GCJ_CONFIG], [AC_DEFUN([AC_LIBTOOL_LANG_GCJ_CONFIG])]) m4_ifndef([_LT_AC_LANG_GCJ_CONFIG], [AC_DEFUN([_LT_AC_LANG_GCJ_CONFIG])]) m4_ifndef([AC_LIBTOOL_LANG_RC_CONFIG], [AC_DEFUN([AC_LIBTOOL_LANG_RC_CONFIG])]) m4_ifndef([_LT_AC_LANG_RC_CONFIG], [AC_DEFUN([_LT_AC_LANG_RC_CONFIG])]) m4_ifndef([AC_LIBTOOL_CONFIG], [AC_DEFUN([AC_LIBTOOL_CONFIG])]) m4_ifndef([_LT_AC_FILE_LTDLL_C], [AC_DEFUN([_LT_AC_FILE_LTDLL_C])]) m4_ifndef([_LT_REQUIRED_DARWIN_CHECKS], [AC_DEFUN([_LT_REQUIRED_DARWIN_CHECKS])]) m4_ifndef([_LT_AC_PROG_CXXCPP], [AC_DEFUN([_LT_AC_PROG_CXXCPP])]) m4_ifndef([_LT_PREPARE_SED_QUOTE_VARS], [AC_DEFUN([_LT_PREPARE_SED_QUOTE_VARS])]) m4_ifndef([_LT_PROG_ECHO_BACKSLASH], [AC_DEFUN([_LT_PROG_ECHO_BACKSLASH])]) m4_ifndef([_LT_PROG_F77], [AC_DEFUN([_LT_PROG_F77])]) m4_ifndef([_LT_PROG_FC], [AC_DEFUN([_LT_PROG_FC])]) m4_ifndef([_LT_PROG_CXX], [AC_DEFUN([_LT_PROG_CXX])]) openconnect-8.05/m4/iconv.m40000664000076400007640000002162012727726520017450 0ustar00dwoodhoudwoodhou00000000000000# iconv.m4 serial 18 (gettext-0.18.2) dnl Copyright (C) 2000-2002, 2007-2014 Free Software Foundation, Inc. dnl This file is free software; the Free Software Foundation dnl gives unlimited permission to copy and/or distribute it, dnl with or without modifications, as long as this notice is preserved. dnl From Bruno Haible. AC_DEFUN([AM_ICONV_LINKFLAGS_BODY], [ dnl Prerequisites of AC_LIB_LINKFLAGS_BODY. AC_REQUIRE([AC_LIB_PREPARE_PREFIX]) AC_REQUIRE([AC_LIB_RPATH]) dnl Search for libiconv and define LIBICONV, LTLIBICONV and INCICONV dnl accordingly. AC_LIB_LINKFLAGS_BODY([iconv]) ]) AC_DEFUN([AM_ICONV_LINK], [ dnl Some systems have iconv in libc, some have it in libiconv (OSF/1 and dnl those with the standalone portable GNU libiconv installed). AC_REQUIRE([AC_CANONICAL_HOST]) dnl for cross-compiles dnl Search for libiconv and define LIBICONV, LTLIBICONV and INCICONV dnl accordingly. AC_REQUIRE([AM_ICONV_LINKFLAGS_BODY]) dnl Add $INCICONV to CPPFLAGS before performing the following checks, dnl because if the user has installed libiconv and not disabled its use dnl via --without-libiconv-prefix, he wants to use it. The first dnl AC_LINK_IFELSE will then fail, the second AC_LINK_IFELSE will succeed. am_save_CPPFLAGS="$CPPFLAGS" AC_LIB_APPENDTOVAR([CPPFLAGS], [$INCICONV]) AC_CACHE_CHECK([for iconv], [am_cv_func_iconv], [ am_cv_func_iconv="no, consider installing GNU libiconv" am_cv_lib_iconv=no AC_LINK_IFELSE( [AC_LANG_PROGRAM( [[ #include #include ]], [[iconv_t cd = iconv_open("",""); iconv(cd,NULL,NULL,NULL,NULL); iconv_close(cd);]])], [am_cv_func_iconv=yes]) if test "$am_cv_func_iconv" != yes; then am_save_LIBS="$LIBS" LIBS="$LIBS $LIBICONV" AC_LINK_IFELSE( [AC_LANG_PROGRAM( [[ #include #include ]], [[iconv_t cd = iconv_open("",""); iconv(cd,NULL,NULL,NULL,NULL); iconv_close(cd);]])], [am_cv_lib_iconv=yes] [am_cv_func_iconv=yes]) LIBS="$am_save_LIBS" fi ]) if test "$am_cv_func_iconv" = yes; then AC_CACHE_CHECK([for working iconv], [am_cv_func_iconv_works], [ dnl This tests against bugs in AIX 5.1, AIX 6.1..7.1, HP-UX 11.11, dnl Solaris 10. am_save_LIBS="$LIBS" if test $am_cv_lib_iconv = yes; then LIBS="$LIBS $LIBICONV" fi AC_RUN_IFELSE( [AC_LANG_SOURCE([[ #include #include int main () { int result = 0; /* Test against AIX 5.1 bug: Failures are not distinguishable from successful returns. */ { iconv_t cd_utf8_to_88591 = iconv_open ("ISO8859-1", "UTF-8"); if (cd_utf8_to_88591 != (iconv_t)(-1)) { static const char input[] = "\342\202\254"; /* EURO SIGN */ char buf[10]; const char *inptr = input; size_t inbytesleft = strlen (input); char *outptr = buf; size_t outbytesleft = sizeof (buf); size_t res = iconv (cd_utf8_to_88591, (char **) &inptr, &inbytesleft, &outptr, &outbytesleft); if (res == 0) result |= 1; iconv_close (cd_utf8_to_88591); } } /* Test against Solaris 10 bug: Failures are not distinguishable from successful returns. */ { iconv_t cd_ascii_to_88591 = iconv_open ("ISO8859-1", "646"); if (cd_ascii_to_88591 != (iconv_t)(-1)) { static const char input[] = "\263"; char buf[10]; const char *inptr = input; size_t inbytesleft = strlen (input); char *outptr = buf; size_t outbytesleft = sizeof (buf); size_t res = iconv (cd_ascii_to_88591, (char **) &inptr, &inbytesleft, &outptr, &outbytesleft); if (res == 0) result |= 2; iconv_close (cd_ascii_to_88591); } } /* Test against AIX 6.1..7.1 bug: Buffer overrun. */ { iconv_t cd_88591_to_utf8 = iconv_open ("UTF-8", "ISO-8859-1"); if (cd_88591_to_utf8 != (iconv_t)(-1)) { static const char input[] = "\304"; static char buf[2] = { (char)0xDE, (char)0xAD }; const char *inptr = input; size_t inbytesleft = 1; char *outptr = buf; size_t outbytesleft = 1; size_t res = iconv (cd_88591_to_utf8, (char **) &inptr, &inbytesleft, &outptr, &outbytesleft); if (res != (size_t)(-1) || outptr - buf > 1 || buf[1] != (char)0xAD) result |= 4; iconv_close (cd_88591_to_utf8); } } #if 0 /* This bug could be worked around by the caller. */ /* Test against HP-UX 11.11 bug: Positive return value instead of 0. */ { iconv_t cd_88591_to_utf8 = iconv_open ("utf8", "iso88591"); if (cd_88591_to_utf8 != (iconv_t)(-1)) { static const char input[] = "\304rger mit b\366sen B\374bchen ohne Augenma\337"; char buf[50]; const char *inptr = input; size_t inbytesleft = strlen (input); char *outptr = buf; size_t outbytesleft = sizeof (buf); size_t res = iconv (cd_88591_to_utf8, (char **) &inptr, &inbytesleft, &outptr, &outbytesleft); if ((int)res > 0) result |= 8; iconv_close (cd_88591_to_utf8); } } #endif /* Test against HP-UX 11.11 bug: No converter from EUC-JP to UTF-8 is provided. */ if (/* Try standardized names. */ iconv_open ("UTF-8", "EUC-JP") == (iconv_t)(-1) /* Try IRIX, OSF/1 names. */ && iconv_open ("UTF-8", "eucJP") == (iconv_t)(-1) /* Try AIX names. */ && iconv_open ("UTF-8", "IBM-eucJP") == (iconv_t)(-1) /* Try HP-UX names. */ && iconv_open ("utf8", "eucJP") == (iconv_t)(-1)) result |= 16; return result; }]])], [am_cv_func_iconv_works=yes], [am_cv_func_iconv_works=no], [ changequote(,)dnl case "$host_os" in aix* | hpux*) am_cv_func_iconv_works="guessing no" ;; *) am_cv_func_iconv_works="guessing yes" ;; esac changequote([,])dnl ]) LIBS="$am_save_LIBS" ]) case "$am_cv_func_iconv_works" in *no) am_func_iconv=no am_cv_lib_iconv=no ;; *) am_func_iconv=yes ;; esac else am_func_iconv=no am_cv_lib_iconv=no fi if test "$am_func_iconv" = yes; then AC_DEFINE([HAVE_ICONV], [1], [Define if you have the iconv() function and it works.]) fi if test "$am_cv_lib_iconv" = yes; then AC_MSG_CHECKING([how to link with libiconv]) AC_MSG_RESULT([$LIBICONV]) else dnl If $LIBICONV didn't lead to a usable library, we don't need $INCICONV dnl either. CPPFLAGS="$am_save_CPPFLAGS" LIBICONV= LTLIBICONV= fi AC_SUBST([LIBICONV]) AC_SUBST([LTLIBICONV]) ]) dnl Define AM_ICONV using AC_DEFUN_ONCE for Autoconf >= 2.64, in order to dnl avoid warnings like dnl "warning: AC_REQUIRE: `AM_ICONV' was expanded before it was required". dnl This is tricky because of the way 'aclocal' is implemented: dnl - It requires defining an auxiliary macro whose name ends in AC_DEFUN. dnl Otherwise aclocal's initial scan pass would miss the macro definition. dnl - It requires a line break inside the AC_DEFUN_ONCE and AC_DEFUN expansions. dnl Otherwise aclocal would emit many "Use of uninitialized value $1" dnl warnings. m4_define([gl_iconv_AC_DEFUN], m4_version_prereq([2.64], [[AC_DEFUN_ONCE( [$1], [$2])]], [m4_ifdef([gl_00GNULIB], [[AC_DEFUN_ONCE( [$1], [$2])]], [[AC_DEFUN( [$1], [$2])]])])) gl_iconv_AC_DEFUN([AM_ICONV], [ AM_ICONV_LINK if test "$am_cv_func_iconv" = yes; then AC_MSG_CHECKING([for iconv declaration]) AC_CACHE_VAL([am_cv_proto_iconv], [ AC_COMPILE_IFELSE( [AC_LANG_PROGRAM( [[ #include #include extern #ifdef __cplusplus "C" #endif #if defined(__STDC__) || defined(_MSC_VER) || defined(__cplusplus) size_t iconv (iconv_t cd, char * *inbuf, size_t *inbytesleft, char * *outbuf, size_t *outbytesleft); #else size_t iconv(); #endif ]], [[]])], [am_cv_proto_iconv_arg1=""], [am_cv_proto_iconv_arg1="const"]) am_cv_proto_iconv="extern size_t iconv (iconv_t cd, $am_cv_proto_iconv_arg1 char * *inbuf, size_t *inbytesleft, char * *outbuf, size_t *outbytesleft);"]) am_cv_proto_iconv=`echo "[$]am_cv_proto_iconv" | tr -s ' ' | sed -e 's/( /(/'` AC_MSG_RESULT([ $am_cv_proto_iconv]) AC_DEFINE_UNQUOTED([ICONV_CONST], [$am_cv_proto_iconv_arg1], [Define as const if the declaration of iconv() needs const.]) dnl Also substitute ICONV_CONST in the gnulib generated . m4_ifdef([gl_ICONV_H_DEFAULTS], [AC_REQUIRE([gl_ICONV_H_DEFAULTS]) if test -n "$am_cv_proto_iconv_arg1"; then ICONV_CONST="const" fi ]) fi ]) openconnect-8.05/m4/ltsugar.m40000644000076400007640000001044013425105604017775 0ustar00dwoodhoudwoodhou00000000000000# ltsugar.m4 -- libtool m4 base layer. -*-Autoconf-*- # # Copyright (C) 2004-2005, 2007-2008, 2011-2015 Free Software # Foundation, Inc. # Written by Gary V. Vaughan, 2004 # # This file is free software; the Free Software Foundation gives # unlimited permission to copy and/or distribute it, with or without # modifications, as long as this notice is preserved. # serial 6 ltsugar.m4 # This is to help aclocal find these macros, as it can't see m4_define. AC_DEFUN([LTSUGAR_VERSION], [m4_if([0.1])]) # lt_join(SEP, ARG1, [ARG2...]) # ----------------------------- # Produce ARG1SEPARG2...SEPARGn, omitting [] arguments and their # associated separator. # Needed until we can rely on m4_join from Autoconf 2.62, since all earlier # versions in m4sugar had bugs. m4_define([lt_join], [m4_if([$#], [1], [], [$#], [2], [[$2]], [m4_if([$2], [], [], [[$2]_])$0([$1], m4_shift(m4_shift($@)))])]) m4_define([_lt_join], [m4_if([$#$2], [2], [], [m4_if([$2], [], [], [[$1$2]])$0([$1], m4_shift(m4_shift($@)))])]) # lt_car(LIST) # lt_cdr(LIST) # ------------ # Manipulate m4 lists. # These macros are necessary as long as will still need to support # Autoconf-2.59, which quotes differently. m4_define([lt_car], [[$1]]) m4_define([lt_cdr], [m4_if([$#], 0, [m4_fatal([$0: cannot be called without arguments])], [$#], 1, [], [m4_dquote(m4_shift($@))])]) m4_define([lt_unquote], $1) # lt_append(MACRO-NAME, STRING, [SEPARATOR]) # ------------------------------------------ # Redefine MACRO-NAME to hold its former content plus 'SEPARATOR''STRING'. # Note that neither SEPARATOR nor STRING are expanded; they are appended # to MACRO-NAME as is (leaving the expansion for when MACRO-NAME is invoked). # No SEPARATOR is output if MACRO-NAME was previously undefined (different # than defined and empty). # # This macro is needed until we can rely on Autoconf 2.62, since earlier # versions of m4sugar mistakenly expanded SEPARATOR but not STRING. m4_define([lt_append], [m4_define([$1], m4_ifdef([$1], [m4_defn([$1])[$3]])[$2])]) # lt_combine(SEP, PREFIX-LIST, INFIX, SUFFIX1, [SUFFIX2...]) # ---------------------------------------------------------- # Produce a SEP delimited list of all paired combinations of elements of # PREFIX-LIST with SUFFIX1 through SUFFIXn. Each element of the list # has the form PREFIXmINFIXSUFFIXn. # Needed until we can rely on m4_combine added in Autoconf 2.62. m4_define([lt_combine], [m4_if(m4_eval([$# > 3]), [1], [m4_pushdef([_Lt_sep], [m4_define([_Lt_sep], m4_defn([lt_car]))])]]dnl [[m4_foreach([_Lt_prefix], [$2], [m4_foreach([_Lt_suffix], ]m4_dquote(m4_dquote(m4_shift(m4_shift(m4_shift($@)))))[, [_Lt_sep([$1])[]m4_defn([_Lt_prefix])[$3]m4_defn([_Lt_suffix])])])])]) # lt_if_append_uniq(MACRO-NAME, VARNAME, [SEPARATOR], [UNIQ], [NOT-UNIQ]) # ----------------------------------------------------------------------- # Iff MACRO-NAME does not yet contain VARNAME, then append it (delimited # by SEPARATOR if supplied) and expand UNIQ, else NOT-UNIQ. m4_define([lt_if_append_uniq], [m4_ifdef([$1], [m4_if(m4_index([$3]m4_defn([$1])[$3], [$3$2$3]), [-1], [lt_append([$1], [$2], [$3])$4], [$5])], [lt_append([$1], [$2], [$3])$4])]) # lt_dict_add(DICT, KEY, VALUE) # ----------------------------- m4_define([lt_dict_add], [m4_define([$1($2)], [$3])]) # lt_dict_add_subkey(DICT, KEY, SUBKEY, VALUE) # -------------------------------------------- m4_define([lt_dict_add_subkey], [m4_define([$1($2:$3)], [$4])]) # lt_dict_fetch(DICT, KEY, [SUBKEY]) # ---------------------------------- m4_define([lt_dict_fetch], [m4_ifval([$3], m4_ifdef([$1($2:$3)], [m4_defn([$1($2:$3)])]), m4_ifdef([$1($2)], [m4_defn([$1($2)])]))]) # lt_if_dict_fetch(DICT, KEY, [SUBKEY], VALUE, IF-TRUE, [IF-FALSE]) # ----------------------------------------------------------------- m4_define([lt_if_dict_fetch], [m4_if(lt_dict_fetch([$1], [$2], [$3]), [$4], [$5], [$6])]) # lt_dict_filter(DICT, [SUBKEY], VALUE, [SEPARATOR], KEY, [...]) # -------------------------------------------------------------- m4_define([lt_dict_filter], [m4_if([$5], [], [], [lt_join(m4_quote(m4_default([$4], [[, ]])), lt_unquote(m4_split(m4_normalize(m4_foreach(_Lt_key, lt_car([m4_shiftn(4, $@)]), [lt_if_dict_fetch([$1], _Lt_key, [$2], [$3], [_Lt_key ])])))))])[]dnl ]) openconnect-8.05/m4/ax_check_vscript.m40000664000076400007640000001115212727726520021650 0ustar00dwoodhoudwoodhou00000000000000# =========================================================================== # http://www.gnu.org/software/autoconf-archive/ax_check_vscript.html # =========================================================================== # # SYNOPSIS # # AX_CHECK_VSCRIPT # # DESCRIPTION # # Check whether the linker supports version scripts. Version scripts are # used when building shared libraries to bind symbols to version nodes # (helping to detect incompatibilities) or to limit the visibility of # non-public symbols. # # Output: # # If version scripts are supported, VSCRIPT_LDFLAGS will contain the # appropriate flag to pass to the linker. On GNU systems this would # typically be "-Wl,--version-script", and on Solaris it would # typically be "-Wl,-M". # # Two Automake conditionals are also set: # # HAVE_VSCRIPT is true if the linker supports version scripts with # entries that use simple wildcards, like "local: *". # # HAVE_VSCRIPT_COMPLEX is true if the linker supports version scripts with # pattern matching wildcards, like "global: Java_*". # # On systems that do not support symbol versioning, such as Mac OS X, both # conditionals will be false. They will also be false if the user passes # "--disable-symvers" on the configure command line. # # Example: # # configure.ac: # # AX_CHECK_VSCRIPT # # Makefile.am: # # if HAVE_VSCRIPT # libfoo_la_LDFLAGS += $(VSCRIPT_LDFLAGS),@srcdir@/libfoo.map # endif # # if HAVE_VSCRIPT_COMPLEX # libbar_la_LDFLAGS += $(VSCRIPT_LDFLAGS),@srcdir@/libbar.map # endif # # LICENSE # # Copyright (c) 2014 Kevin Cernekee # # Copying and distribution of this file, with or without modification, are # permitted in any medium without royalty provided the copyright notice # and this notice are preserved. This file is offered as-is, without any # warranty. #serial 1 # _AX_CHECK_VSCRIPT(flag, global-sym, action-if-link-succeeds, [junk-file=no]) AC_DEFUN([_AX_CHECK_VSCRIPT], [ AC_LANG_PUSH([C]) ax_check_vscript_save_flags="$LDFLAGS" echo "V1 { global: $2; local: *; };" > conftest.map AS_IF([test x$4 = xyes], [ echo "{" >> conftest.map ]) LDFLAGS="$LDFLAGS -Wl,$1,conftest.map" AC_LINK_IFELSE([AC_LANG_PROGRAM([[int show, hide;]], [])], [$3]) LDFLAGS="$ax_check_vscript_save_flags" rm -f conftest.map AC_LANG_POP([C]) ]) dnl _AX_CHECK_VSCRIPT AC_DEFUN([AX_CHECK_VSCRIPT], [ AC_ARG_ENABLE([symvers], AS_HELP_STRING([--disable-symvers], [disable library symbol versioning [default=auto]]), [want_symvers=$enableval], [want_symvers=yes] ) AS_IF([test x$want_symvers = xyes], [ dnl First test --version-script and -M with a simple wildcard. AC_CACHE_CHECK([linker version script flag], ax_cv_check_vscript_flag, [ ax_cv_check_vscript_flag=unsupported _AX_CHECK_VSCRIPT([--version-script], [show], [ ax_cv_check_vscript_flag=--version-script ]) AS_IF([test x$ax_cv_check_vscript_flag = xunsupported], [ _AX_CHECK_VSCRIPT([-M], [show], [ax_cv_check_vscript_flag=-M]) ]) dnl The linker may interpret -M (no argument) as "produce a load map." dnl If "-M conftest.map" doesn't fail when conftest.map contains dnl obvious syntax errors, assume this is the case. AS_IF([test x$ax_cv_check_vscript_flag != xunsupported], [ _AX_CHECK_VSCRIPT([$ax_cv_check_vscript_flag], [show], [ax_cv_check_vscript_flag=unsupported], [yes]) ]) ]) dnl If the simple wildcard worked, retest with a complex wildcard. AS_IF([test x$ax_cv_check_vscript_flag != xunsupported], [ ax_check_vscript_flag=$ax_cv_check_vscript_flag AC_CACHE_CHECK([if version scripts can use complex wildcards], ax_cv_check_vscript_complex_wildcards, [ ax_cv_check_vscript_complex_wildcards=no _AX_CHECK_VSCRIPT([$ax_cv_check_vscript_flag], [sh*], [ ax_cv_check_vscript_complex_wildcards=yes]) ]) ax_check_vscript_complex_wildcards="$ax_cv_check_vscript_complex_wildcards" ], [ ax_check_vscript_flag= ax_check_vscript_complex_wildcards=no ]) ], [ AC_MSG_CHECKING([linker version script flag]) AC_MSG_RESULT([disabled]) ax_check_vscript_flag= ax_check_vscript_complex_wildcards=no ]) AS_IF([test x$ax_check_vscript_flag != x], [ VSCRIPT_LDFLAGS="-Wl,$ax_check_vscript_flag" AC_SUBST([VSCRIPT_LDFLAGS]) ]) AM_CONDITIONAL([HAVE_VSCRIPT], [test x$ax_check_vscript_flag != x]) AM_CONDITIONAL([HAVE_VSCRIPT_COMPLEX], [test x$ax_check_vscript_complex_wildcards = xyes]) ]) dnl AX_CHECK_VSCRIPT openconnect-8.05/m4/lib-prefix.m40000664000076400007640000002042212727726520020372 0ustar00dwoodhoudwoodhou00000000000000# lib-prefix.m4 serial 7 (gettext-0.18) dnl Copyright (C) 2001-2005, 2008-2014 Free Software Foundation, Inc. dnl This file is free software; the Free Software Foundation dnl gives unlimited permission to copy and/or distribute it, dnl with or without modifications, as long as this notice is preserved. dnl From Bruno Haible. dnl AC_LIB_ARG_WITH is synonymous to AC_ARG_WITH in autoconf-2.13, and dnl similar to AC_ARG_WITH in autoconf 2.52...2.57 except that is doesn't dnl require excessive bracketing. ifdef([AC_HELP_STRING], [AC_DEFUN([AC_LIB_ARG_WITH], [AC_ARG_WITH([$1],[[$2]],[$3],[$4])])], [AC_DEFUN([AC_][LIB_ARG_WITH], [AC_ARG_WITH([$1],[$2],[$3],[$4])])]) dnl AC_LIB_PREFIX adds to the CPPFLAGS and LDFLAGS the flags that are needed dnl to access previously installed libraries. The basic assumption is that dnl a user will want packages to use other packages he previously installed dnl with the same --prefix option. dnl This macro is not needed if only AC_LIB_LINKFLAGS is used to locate dnl libraries, but is otherwise very convenient. AC_DEFUN([AC_LIB_PREFIX], [ AC_BEFORE([$0], [AC_LIB_LINKFLAGS]) AC_REQUIRE([AC_PROG_CC]) AC_REQUIRE([AC_CANONICAL_HOST]) AC_REQUIRE([AC_LIB_PREPARE_MULTILIB]) AC_REQUIRE([AC_LIB_PREPARE_PREFIX]) dnl By default, look in $includedir and $libdir. use_additional=yes AC_LIB_WITH_FINAL_PREFIX([ eval additional_includedir=\"$includedir\" eval additional_libdir=\"$libdir\" ]) AC_LIB_ARG_WITH([lib-prefix], [ --with-lib-prefix[=DIR] search for libraries in DIR/include and DIR/lib --without-lib-prefix don't search for libraries in includedir and libdir], [ if test "X$withval" = "Xno"; then use_additional=no else if test "X$withval" = "X"; then AC_LIB_WITH_FINAL_PREFIX([ eval additional_includedir=\"$includedir\" eval additional_libdir=\"$libdir\" ]) else additional_includedir="$withval/include" additional_libdir="$withval/$acl_libdirstem" fi fi ]) if test $use_additional = yes; then dnl Potentially add $additional_includedir to $CPPFLAGS. dnl But don't add it dnl 1. if it's the standard /usr/include, dnl 2. if it's already present in $CPPFLAGS, dnl 3. if it's /usr/local/include and we are using GCC on Linux, dnl 4. if it doesn't exist as a directory. if test "X$additional_includedir" != "X/usr/include"; then haveit= for x in $CPPFLAGS; do AC_LIB_WITH_FINAL_PREFIX([eval x=\"$x\"]) if test "X$x" = "X-I$additional_includedir"; then haveit=yes break fi done if test -z "$haveit"; then if test "X$additional_includedir" = "X/usr/local/include"; then if test -n "$GCC"; then case $host_os in linux* | gnu* | k*bsd*-gnu) haveit=yes;; esac fi fi if test -z "$haveit"; then if test -d "$additional_includedir"; then dnl Really add $additional_includedir to $CPPFLAGS. CPPFLAGS="${CPPFLAGS}${CPPFLAGS:+ }-I$additional_includedir" fi fi fi fi dnl Potentially add $additional_libdir to $LDFLAGS. dnl But don't add it dnl 1. if it's the standard /usr/lib, dnl 2. if it's already present in $LDFLAGS, dnl 3. if it's /usr/local/lib and we are using GCC on Linux, dnl 4. if it doesn't exist as a directory. if test "X$additional_libdir" != "X/usr/$acl_libdirstem"; then haveit= for x in $LDFLAGS; do AC_LIB_WITH_FINAL_PREFIX([eval x=\"$x\"]) if test "X$x" = "X-L$additional_libdir"; then haveit=yes break fi done if test -z "$haveit"; then if test "X$additional_libdir" = "X/usr/local/$acl_libdirstem"; then if test -n "$GCC"; then case $host_os in linux*) haveit=yes;; esac fi fi if test -z "$haveit"; then if test -d "$additional_libdir"; then dnl Really add $additional_libdir to $LDFLAGS. LDFLAGS="${LDFLAGS}${LDFLAGS:+ }-L$additional_libdir" fi fi fi fi fi ]) dnl AC_LIB_PREPARE_PREFIX creates variables acl_final_prefix, dnl acl_final_exec_prefix, containing the values to which $prefix and dnl $exec_prefix will expand at the end of the configure script. AC_DEFUN([AC_LIB_PREPARE_PREFIX], [ dnl Unfortunately, prefix and exec_prefix get only finally determined dnl at the end of configure. if test "X$prefix" = "XNONE"; then acl_final_prefix="$ac_default_prefix" else acl_final_prefix="$prefix" fi if test "X$exec_prefix" = "XNONE"; then acl_final_exec_prefix='${prefix}' else acl_final_exec_prefix="$exec_prefix" fi acl_save_prefix="$prefix" prefix="$acl_final_prefix" eval acl_final_exec_prefix=\"$acl_final_exec_prefix\" prefix="$acl_save_prefix" ]) dnl AC_LIB_WITH_FINAL_PREFIX([statement]) evaluates statement, with the dnl variables prefix and exec_prefix bound to the values they will have dnl at the end of the configure script. AC_DEFUN([AC_LIB_WITH_FINAL_PREFIX], [ acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" $1 exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" ]) dnl AC_LIB_PREPARE_MULTILIB creates dnl - a variable acl_libdirstem, containing the basename of the libdir, either dnl "lib" or "lib64" or "lib/64", dnl - a variable acl_libdirstem2, as a secondary possible value for dnl acl_libdirstem, either the same as acl_libdirstem or "lib/sparcv9" or dnl "lib/amd64". AC_DEFUN([AC_LIB_PREPARE_MULTILIB], [ dnl There is no formal standard regarding lib and lib64. dnl On glibc systems, the current practice is that on a system supporting dnl 32-bit and 64-bit instruction sets or ABIs, 64-bit libraries go under dnl $prefix/lib64 and 32-bit libraries go under $prefix/lib. We determine dnl the compiler's default mode by looking at the compiler's library search dnl path. If at least one of its elements ends in /lib64 or points to a dnl directory whose absolute pathname ends in /lib64, we assume a 64-bit ABI. dnl Otherwise we use the default, namely "lib". dnl On Solaris systems, the current practice is that on a system supporting dnl 32-bit and 64-bit instruction sets or ABIs, 64-bit libraries go under dnl $prefix/lib/64 (which is a symlink to either $prefix/lib/sparcv9 or dnl $prefix/lib/amd64) and 32-bit libraries go under $prefix/lib. AC_REQUIRE([AC_CANONICAL_HOST]) acl_libdirstem=lib acl_libdirstem2= case "$host_os" in solaris*) dnl See Solaris 10 Software Developer Collection > Solaris 64-bit Developer's Guide > The Development Environment dnl . dnl "Portable Makefiles should refer to any library directories using the 64 symbolic link." dnl But we want to recognize the sparcv9 or amd64 subdirectory also if the dnl symlink is missing, so we set acl_libdirstem2 too. AC_CACHE_CHECK([for 64-bit host], [gl_cv_solaris_64bit], [AC_EGREP_CPP([sixtyfour bits], [ #ifdef _LP64 sixtyfour bits #endif ], [gl_cv_solaris_64bit=yes], [gl_cv_solaris_64bit=no]) ]) if test $gl_cv_solaris_64bit = yes; then acl_libdirstem=lib/64 case "$host_cpu" in sparc*) acl_libdirstem2=lib/sparcv9 ;; i*86 | x86_64) acl_libdirstem2=lib/amd64 ;; esac fi ;; *) searchpath=`(LC_ALL=C $CC -print-search-dirs) 2>/dev/null | sed -n -e 's,^libraries: ,,p' | sed -e 's,^=,,'` if test -n "$searchpath"; then acl_save_IFS="${IFS= }"; IFS=":" for searchdir in $searchpath; do if test -d "$searchdir"; then case "$searchdir" in */lib64/ | */lib64 ) acl_libdirstem=lib64 ;; */../ | */.. ) # Better ignore directories of this form. They are misleading. ;; *) searchdir=`cd "$searchdir" && pwd` case "$searchdir" in */lib64 ) acl_libdirstem=lib64 ;; esac ;; esac fi done IFS="$acl_save_IFS" fi ;; esac test -n "$acl_libdirstem2" || acl_libdirstem2="$acl_libdirstem" ]) openconnect-8.05/m4/libtool.m40000644000076400007640000112530613425105604017771 0ustar00dwoodhoudwoodhou00000000000000# libtool.m4 - Configure libtool for the host system. -*-Autoconf-*- # # Copyright (C) 1996-2001, 2003-2015 Free Software Foundation, Inc. # Written by Gordon Matzigkeit, 1996 # # This file is free software; the Free Software Foundation gives # unlimited permission to copy and/or distribute it, with or without # modifications, as long as this notice is preserved. m4_define([_LT_COPYING], [dnl # Copyright (C) 2014 Free Software Foundation, Inc. # This is free software; see the source for copying conditions. There is NO # warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. # GNU Libtool is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 2 of of the License, or # (at your option) any later version. # # As a special exception to the GNU General Public License, if you # distribute this file as part of a program or library that is built # using GNU Libtool, you may include this file under the same # distribution terms that you use for the rest of that program. # # GNU Libtool is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program. If not, see . ]) # serial 58 LT_INIT # LT_PREREQ(VERSION) # ------------------ # Complain and exit if this libtool version is less that VERSION. m4_defun([LT_PREREQ], [m4_if(m4_version_compare(m4_defn([LT_PACKAGE_VERSION]), [$1]), -1, [m4_default([$3], [m4_fatal([Libtool version $1 or higher is required], 63)])], [$2])]) # _LT_CHECK_BUILDDIR # ------------------ # Complain if the absolute build directory name contains unusual characters m4_defun([_LT_CHECK_BUILDDIR], [case `pwd` in *\ * | *\ *) AC_MSG_WARN([Libtool does not cope well with whitespace in `pwd`]) ;; esac ]) # LT_INIT([OPTIONS]) # ------------------ AC_DEFUN([LT_INIT], [AC_PREREQ([2.62])dnl We use AC_PATH_PROGS_FEATURE_CHECK AC_REQUIRE([AC_CONFIG_AUX_DIR_DEFAULT])dnl AC_BEFORE([$0], [LT_LANG])dnl AC_BEFORE([$0], [LT_OUTPUT])dnl AC_BEFORE([$0], [LTDL_INIT])dnl m4_require([_LT_CHECK_BUILDDIR])dnl dnl Autoconf doesn't catch unexpanded LT_ macros by default: m4_pattern_forbid([^_?LT_[A-Z_]+$])dnl m4_pattern_allow([^(_LT_EOF|LT_DLGLOBAL|LT_DLLAZY_OR_NOW|LT_MULTI_MODULE)$])dnl dnl aclocal doesn't pull ltoptions.m4, ltsugar.m4, or ltversion.m4 dnl unless we require an AC_DEFUNed macro: AC_REQUIRE([LTOPTIONS_VERSION])dnl AC_REQUIRE([LTSUGAR_VERSION])dnl AC_REQUIRE([LTVERSION_VERSION])dnl AC_REQUIRE([LTOBSOLETE_VERSION])dnl m4_require([_LT_PROG_LTMAIN])dnl _LT_SHELL_INIT([SHELL=${CONFIG_SHELL-/bin/sh}]) dnl Parse OPTIONS _LT_SET_OPTIONS([$0], [$1]) # This can be used to rebuild libtool when needed LIBTOOL_DEPS=$ltmain # Always use our own libtool. LIBTOOL='$(SHELL) $(top_builddir)/libtool' AC_SUBST(LIBTOOL)dnl _LT_SETUP # Only expand once: m4_define([LT_INIT]) ])# LT_INIT # Old names: AU_ALIAS([AC_PROG_LIBTOOL], [LT_INIT]) AU_ALIAS([AM_PROG_LIBTOOL], [LT_INIT]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AC_PROG_LIBTOOL], []) dnl AC_DEFUN([AM_PROG_LIBTOOL], []) # _LT_PREPARE_CC_BASENAME # ----------------------- m4_defun([_LT_PREPARE_CC_BASENAME], [ # Calculate cc_basename. Skip known compiler wrappers and cross-prefix. func_cc_basename () { for cc_temp in @S|@*""; do case $cc_temp in compile | *[[\\/]]compile | ccache | *[[\\/]]ccache ) ;; distcc | *[[\\/]]distcc | purify | *[[\\/]]purify ) ;; \-*) ;; *) break;; esac done func_cc_basename_result=`$ECHO "$cc_temp" | $SED "s%.*/%%; s%^$host_alias-%%"` } ])# _LT_PREPARE_CC_BASENAME # _LT_CC_BASENAME(CC) # ------------------- # It would be clearer to call AC_REQUIREs from _LT_PREPARE_CC_BASENAME, # but that macro is also expanded into generated libtool script, which # arranges for $SED and $ECHO to be set by different means. m4_defun([_LT_CC_BASENAME], [m4_require([_LT_PREPARE_CC_BASENAME])dnl AC_REQUIRE([_LT_DECL_SED])dnl AC_REQUIRE([_LT_PROG_ECHO_BACKSLASH])dnl func_cc_basename $1 cc_basename=$func_cc_basename_result ]) # _LT_FILEUTILS_DEFAULTS # ---------------------- # It is okay to use these file commands and assume they have been set # sensibly after 'm4_require([_LT_FILEUTILS_DEFAULTS])'. m4_defun([_LT_FILEUTILS_DEFAULTS], [: ${CP="cp -f"} : ${MV="mv -f"} : ${RM="rm -f"} ])# _LT_FILEUTILS_DEFAULTS # _LT_SETUP # --------- m4_defun([_LT_SETUP], [AC_REQUIRE([AC_CANONICAL_HOST])dnl AC_REQUIRE([AC_CANONICAL_BUILD])dnl AC_REQUIRE([_LT_PREPARE_SED_QUOTE_VARS])dnl AC_REQUIRE([_LT_PROG_ECHO_BACKSLASH])dnl _LT_DECL([], [PATH_SEPARATOR], [1], [The PATH separator for the build system])dnl dnl _LT_DECL([], [host_alias], [0], [The host system])dnl _LT_DECL([], [host], [0])dnl _LT_DECL([], [host_os], [0])dnl dnl _LT_DECL([], [build_alias], [0], [The build system])dnl _LT_DECL([], [build], [0])dnl _LT_DECL([], [build_os], [0])dnl dnl AC_REQUIRE([AC_PROG_CC])dnl AC_REQUIRE([LT_PATH_LD])dnl AC_REQUIRE([LT_PATH_NM])dnl dnl AC_REQUIRE([AC_PROG_LN_S])dnl test -z "$LN_S" && LN_S="ln -s" _LT_DECL([], [LN_S], [1], [Whether we need soft or hard links])dnl dnl AC_REQUIRE([LT_CMD_MAX_LEN])dnl _LT_DECL([objext], [ac_objext], [0], [Object file suffix (normally "o")])dnl _LT_DECL([], [exeext], [0], [Executable file suffix (normally "")])dnl dnl m4_require([_LT_FILEUTILS_DEFAULTS])dnl m4_require([_LT_CHECK_SHELL_FEATURES])dnl m4_require([_LT_PATH_CONVERSION_FUNCTIONS])dnl m4_require([_LT_CMD_RELOAD])dnl m4_require([_LT_CHECK_MAGIC_METHOD])dnl m4_require([_LT_CHECK_SHAREDLIB_FROM_LINKLIB])dnl m4_require([_LT_CMD_OLD_ARCHIVE])dnl m4_require([_LT_CMD_GLOBAL_SYMBOLS])dnl m4_require([_LT_WITH_SYSROOT])dnl m4_require([_LT_CMD_TRUNCATE])dnl _LT_CONFIG_LIBTOOL_INIT([ # See if we are running on zsh, and set the options that allow our # commands through without removal of \ escapes INIT. if test -n "\${ZSH_VERSION+set}"; then setopt NO_GLOB_SUBST fi ]) if test -n "${ZSH_VERSION+set}"; then setopt NO_GLOB_SUBST fi _LT_CHECK_OBJDIR m4_require([_LT_TAG_COMPILER])dnl case $host_os in aix3*) # AIX sometimes has problems with the GCC collect2 program. For some # reason, if we set the COLLECT_NAMES environment variable, the problems # vanish in a puff of smoke. if test set != "${COLLECT_NAMES+set}"; then COLLECT_NAMES= export COLLECT_NAMES fi ;; esac # Global variables: ofile=libtool can_build_shared=yes # All known linkers require a '.a' archive for static linking (except MSVC, # which needs '.lib'). libext=a with_gnu_ld=$lt_cv_prog_gnu_ld old_CC=$CC old_CFLAGS=$CFLAGS # Set sane defaults for various variables test -z "$CC" && CC=cc test -z "$LTCC" && LTCC=$CC test -z "$LTCFLAGS" && LTCFLAGS=$CFLAGS test -z "$LD" && LD=ld test -z "$ac_objext" && ac_objext=o _LT_CC_BASENAME([$compiler]) # Only perform the check for file, if the check method requires it test -z "$MAGIC_CMD" && MAGIC_CMD=file case $deplibs_check_method in file_magic*) if test "$file_magic_cmd" = '$MAGIC_CMD'; then _LT_PATH_MAGIC fi ;; esac # Use C for the default configuration in the libtool script LT_SUPPORTED_TAG([CC]) _LT_LANG_C_CONFIG _LT_LANG_DEFAULT_CONFIG _LT_CONFIG_COMMANDS ])# _LT_SETUP # _LT_PREPARE_SED_QUOTE_VARS # -------------------------- # Define a few sed substitution that help us do robust quoting. m4_defun([_LT_PREPARE_SED_QUOTE_VARS], [# Backslashify metacharacters that are still active within # double-quoted strings. sed_quote_subst='s/\([["`$\\]]\)/\\\1/g' # Same as above, but do not quote variable references. double_quote_subst='s/\([["`\\]]\)/\\\1/g' # Sed substitution to delay expansion of an escaped shell variable in a # double_quote_subst'ed string. delay_variable_subst='s/\\\\\\\\\\\$/\\\\\\$/g' # Sed substitution to delay expansion of an escaped single quote. delay_single_quote_subst='s/'\''/'\'\\\\\\\'\''/g' # Sed substitution to avoid accidental globbing in evaled expressions no_glob_subst='s/\*/\\\*/g' ]) # _LT_PROG_LTMAIN # --------------- # Note that this code is called both from 'configure', and 'config.status' # now that we use AC_CONFIG_COMMANDS to generate libtool. Notably, # 'config.status' has no value for ac_aux_dir unless we are using Automake, # so we pass a copy along to make sure it has a sensible value anyway. m4_defun([_LT_PROG_LTMAIN], [m4_ifdef([AC_REQUIRE_AUX_FILE], [AC_REQUIRE_AUX_FILE([ltmain.sh])])dnl _LT_CONFIG_LIBTOOL_INIT([ac_aux_dir='$ac_aux_dir']) ltmain=$ac_aux_dir/ltmain.sh ])# _LT_PROG_LTMAIN ## ------------------------------------- ## ## Accumulate code for creating libtool. ## ## ------------------------------------- ## # So that we can recreate a full libtool script including additional # tags, we accumulate the chunks of code to send to AC_CONFIG_COMMANDS # in macros and then make a single call at the end using the 'libtool' # label. # _LT_CONFIG_LIBTOOL_INIT([INIT-COMMANDS]) # ---------------------------------------- # Register INIT-COMMANDS to be passed to AC_CONFIG_COMMANDS later. m4_define([_LT_CONFIG_LIBTOOL_INIT], [m4_ifval([$1], [m4_append([_LT_OUTPUT_LIBTOOL_INIT], [$1 ])])]) # Initialize. m4_define([_LT_OUTPUT_LIBTOOL_INIT]) # _LT_CONFIG_LIBTOOL([COMMANDS]) # ------------------------------ # Register COMMANDS to be passed to AC_CONFIG_COMMANDS later. m4_define([_LT_CONFIG_LIBTOOL], [m4_ifval([$1], [m4_append([_LT_OUTPUT_LIBTOOL_COMMANDS], [$1 ])])]) # Initialize. m4_define([_LT_OUTPUT_LIBTOOL_COMMANDS]) # _LT_CONFIG_SAVE_COMMANDS([COMMANDS], [INIT_COMMANDS]) # ----------------------------------------------------- m4_defun([_LT_CONFIG_SAVE_COMMANDS], [_LT_CONFIG_LIBTOOL([$1]) _LT_CONFIG_LIBTOOL_INIT([$2]) ]) # _LT_FORMAT_COMMENT([COMMENT]) # ----------------------------- # Add leading comment marks to the start of each line, and a trailing # full-stop to the whole comment if one is not present already. m4_define([_LT_FORMAT_COMMENT], [m4_ifval([$1], [ m4_bpatsubst([m4_bpatsubst([$1], [^ *], [# ])], [['`$\]], [\\\&])]m4_bmatch([$1], [[!?.]$], [], [.]) )]) ## ------------------------ ## ## FIXME: Eliminate VARNAME ## ## ------------------------ ## # _LT_DECL([CONFIGNAME], VARNAME, VALUE, [DESCRIPTION], [IS-TAGGED?]) # ------------------------------------------------------------------- # CONFIGNAME is the name given to the value in the libtool script. # VARNAME is the (base) name used in the configure script. # VALUE may be 0, 1 or 2 for a computed quote escaped value based on # VARNAME. Any other value will be used directly. m4_define([_LT_DECL], [lt_if_append_uniq([lt_decl_varnames], [$2], [, ], [lt_dict_add_subkey([lt_decl_dict], [$2], [libtool_name], [m4_ifval([$1], [$1], [$2])]) lt_dict_add_subkey([lt_decl_dict], [$2], [value], [$3]) m4_ifval([$4], [lt_dict_add_subkey([lt_decl_dict], [$2], [description], [$4])]) lt_dict_add_subkey([lt_decl_dict], [$2], [tagged?], [m4_ifval([$5], [yes], [no])])]) ]) # _LT_TAGDECL([CONFIGNAME], VARNAME, VALUE, [DESCRIPTION]) # -------------------------------------------------------- m4_define([_LT_TAGDECL], [_LT_DECL([$1], [$2], [$3], [$4], [yes])]) # lt_decl_tag_varnames([SEPARATOR], [VARNAME1...]) # ------------------------------------------------ m4_define([lt_decl_tag_varnames], [_lt_decl_filter([tagged?], [yes], $@)]) # _lt_decl_filter(SUBKEY, VALUE, [SEPARATOR], [VARNAME1..]) # --------------------------------------------------------- m4_define([_lt_decl_filter], [m4_case([$#], [0], [m4_fatal([$0: too few arguments: $#])], [1], [m4_fatal([$0: too few arguments: $#: $1])], [2], [lt_dict_filter([lt_decl_dict], [$1], [$2], [], lt_decl_varnames)], [3], [lt_dict_filter([lt_decl_dict], [$1], [$2], [$3], lt_decl_varnames)], [lt_dict_filter([lt_decl_dict], $@)])[]dnl ]) # lt_decl_quote_varnames([SEPARATOR], [VARNAME1...]) # -------------------------------------------------- m4_define([lt_decl_quote_varnames], [_lt_decl_filter([value], [1], $@)]) # lt_decl_dquote_varnames([SEPARATOR], [VARNAME1...]) # --------------------------------------------------- m4_define([lt_decl_dquote_varnames], [_lt_decl_filter([value], [2], $@)]) # lt_decl_varnames_tagged([SEPARATOR], [VARNAME1...]) # --------------------------------------------------- m4_define([lt_decl_varnames_tagged], [m4_assert([$# <= 2])dnl _$0(m4_quote(m4_default([$1], [[, ]])), m4_ifval([$2], [[$2]], [m4_dquote(lt_decl_tag_varnames)]), m4_split(m4_normalize(m4_quote(_LT_TAGS)), [ ]))]) m4_define([_lt_decl_varnames_tagged], [m4_ifval([$3], [lt_combine([$1], [$2], [_], $3)])]) # lt_decl_all_varnames([SEPARATOR], [VARNAME1...]) # ------------------------------------------------ m4_define([lt_decl_all_varnames], [_$0(m4_quote(m4_default([$1], [[, ]])), m4_if([$2], [], m4_quote(lt_decl_varnames), m4_quote(m4_shift($@))))[]dnl ]) m4_define([_lt_decl_all_varnames], [lt_join($@, lt_decl_varnames_tagged([$1], lt_decl_tag_varnames([[, ]], m4_shift($@))))dnl ]) # _LT_CONFIG_STATUS_DECLARE([VARNAME]) # ------------------------------------ # Quote a variable value, and forward it to 'config.status' so that its # declaration there will have the same value as in 'configure'. VARNAME # must have a single quote delimited value for this to work. m4_define([_LT_CONFIG_STATUS_DECLARE], [$1='`$ECHO "$][$1" | $SED "$delay_single_quote_subst"`']) # _LT_CONFIG_STATUS_DECLARATIONS # ------------------------------ # We delimit libtool config variables with single quotes, so when # we write them to config.status, we have to be sure to quote all # embedded single quotes properly. In configure, this macro expands # each variable declared with _LT_DECL (and _LT_TAGDECL) into: # # ='`$ECHO "$" | $SED "$delay_single_quote_subst"`' m4_defun([_LT_CONFIG_STATUS_DECLARATIONS], [m4_foreach([_lt_var], m4_quote(lt_decl_all_varnames), [m4_n([_LT_CONFIG_STATUS_DECLARE(_lt_var)])])]) # _LT_LIBTOOL_TAGS # ---------------- # Output comment and list of tags supported by the script m4_defun([_LT_LIBTOOL_TAGS], [_LT_FORMAT_COMMENT([The names of the tagged configurations supported by this script])dnl available_tags='_LT_TAGS'dnl ]) # _LT_LIBTOOL_DECLARE(VARNAME, [TAG]) # ----------------------------------- # Extract the dictionary values for VARNAME (optionally with TAG) and # expand to a commented shell variable setting: # # # Some comment about what VAR is for. # visible_name=$lt_internal_name m4_define([_LT_LIBTOOL_DECLARE], [_LT_FORMAT_COMMENT(m4_quote(lt_dict_fetch([lt_decl_dict], [$1], [description])))[]dnl m4_pushdef([_libtool_name], m4_quote(lt_dict_fetch([lt_decl_dict], [$1], [libtool_name])))[]dnl m4_case(m4_quote(lt_dict_fetch([lt_decl_dict], [$1], [value])), [0], [_libtool_name=[$]$1], [1], [_libtool_name=$lt_[]$1], [2], [_libtool_name=$lt_[]$1], [_libtool_name=lt_dict_fetch([lt_decl_dict], [$1], [value])])[]dnl m4_ifval([$2], [_$2])[]m4_popdef([_libtool_name])[]dnl ]) # _LT_LIBTOOL_CONFIG_VARS # ----------------------- # Produce commented declarations of non-tagged libtool config variables # suitable for insertion in the LIBTOOL CONFIG section of the 'libtool' # script. Tagged libtool config variables (even for the LIBTOOL CONFIG # section) are produced by _LT_LIBTOOL_TAG_VARS. m4_defun([_LT_LIBTOOL_CONFIG_VARS], [m4_foreach([_lt_var], m4_quote(_lt_decl_filter([tagged?], [no], [], lt_decl_varnames)), [m4_n([_LT_LIBTOOL_DECLARE(_lt_var)])])]) # _LT_LIBTOOL_TAG_VARS(TAG) # ------------------------- m4_define([_LT_LIBTOOL_TAG_VARS], [m4_foreach([_lt_var], m4_quote(lt_decl_tag_varnames), [m4_n([_LT_LIBTOOL_DECLARE(_lt_var, [$1])])])]) # _LT_TAGVAR(VARNAME, [TAGNAME]) # ------------------------------ m4_define([_LT_TAGVAR], [m4_ifval([$2], [$1_$2], [$1])]) # _LT_CONFIG_COMMANDS # ------------------- # Send accumulated output to $CONFIG_STATUS. Thanks to the lists of # variables for single and double quote escaping we saved from calls # to _LT_DECL, we can put quote escaped variables declarations # into 'config.status', and then the shell code to quote escape them in # for loops in 'config.status'. Finally, any additional code accumulated # from calls to _LT_CONFIG_LIBTOOL_INIT is expanded. m4_defun([_LT_CONFIG_COMMANDS], [AC_PROVIDE_IFELSE([LT_OUTPUT], dnl If the libtool generation code has been placed in $CONFIG_LT, dnl instead of duplicating it all over again into config.status, dnl then we will have config.status run $CONFIG_LT later, so it dnl needs to know what name is stored there: [AC_CONFIG_COMMANDS([libtool], [$SHELL $CONFIG_LT || AS_EXIT(1)], [CONFIG_LT='$CONFIG_LT'])], dnl If the libtool generation code is destined for config.status, dnl expand the accumulated commands and init code now: [AC_CONFIG_COMMANDS([libtool], [_LT_OUTPUT_LIBTOOL_COMMANDS], [_LT_OUTPUT_LIBTOOL_COMMANDS_INIT])]) ])#_LT_CONFIG_COMMANDS # Initialize. m4_define([_LT_OUTPUT_LIBTOOL_COMMANDS_INIT], [ # The HP-UX ksh and POSIX shell print the target directory to stdout # if CDPATH is set. (unset CDPATH) >/dev/null 2>&1 && unset CDPATH sed_quote_subst='$sed_quote_subst' double_quote_subst='$double_quote_subst' delay_variable_subst='$delay_variable_subst' _LT_CONFIG_STATUS_DECLARATIONS LTCC='$LTCC' LTCFLAGS='$LTCFLAGS' compiler='$compiler_DEFAULT' # A function that is used when there is no print builtin or printf. func_fallback_echo () { eval 'cat <<_LTECHO_EOF \$[]1 _LTECHO_EOF' } # Quote evaled strings. for var in lt_decl_all_varnames([[ \ ]], lt_decl_quote_varnames); do case \`eval \\\\\$ECHO \\\\""\\\\\$\$var"\\\\"\` in *[[\\\\\\\`\\"\\\$]]*) eval "lt_\$var=\\\\\\"\\\`\\\$ECHO \\"\\\$\$var\\" | \\\$SED \\"\\\$sed_quote_subst\\"\\\`\\\\\\"" ## exclude from sc_prohibit_nested_quotes ;; *) eval "lt_\$var=\\\\\\"\\\$\$var\\\\\\"" ;; esac done # Double-quote double-evaled strings. for var in lt_decl_all_varnames([[ \ ]], lt_decl_dquote_varnames); do case \`eval \\\\\$ECHO \\\\""\\\\\$\$var"\\\\"\` in *[[\\\\\\\`\\"\\\$]]*) eval "lt_\$var=\\\\\\"\\\`\\\$ECHO \\"\\\$\$var\\" | \\\$SED -e \\"\\\$double_quote_subst\\" -e \\"\\\$sed_quote_subst\\" -e \\"\\\$delay_variable_subst\\"\\\`\\\\\\"" ## exclude from sc_prohibit_nested_quotes ;; *) eval "lt_\$var=\\\\\\"\\\$\$var\\\\\\"" ;; esac done _LT_OUTPUT_LIBTOOL_INIT ]) # _LT_GENERATED_FILE_INIT(FILE, [COMMENT]) # ------------------------------------ # Generate a child script FILE with all initialization necessary to # reuse the environment learned by the parent script, and make the # file executable. If COMMENT is supplied, it is inserted after the # '#!' sequence but before initialization text begins. After this # macro, additional text can be appended to FILE to form the body of # the child script. The macro ends with non-zero status if the # file could not be fully written (such as if the disk is full). m4_ifdef([AS_INIT_GENERATED], [m4_defun([_LT_GENERATED_FILE_INIT],[AS_INIT_GENERATED($@)])], [m4_defun([_LT_GENERATED_FILE_INIT], [m4_require([AS_PREPARE])]dnl [m4_pushdef([AS_MESSAGE_LOG_FD])]dnl [lt_write_fail=0 cat >$1 <<_ASEOF || lt_write_fail=1 #! $SHELL # Generated by $as_me. $2 SHELL=\${CONFIG_SHELL-$SHELL} export SHELL _ASEOF cat >>$1 <<\_ASEOF || lt_write_fail=1 AS_SHELL_SANITIZE _AS_PREPARE exec AS_MESSAGE_FD>&1 _ASEOF test 0 = "$lt_write_fail" && chmod +x $1[]dnl m4_popdef([AS_MESSAGE_LOG_FD])])])# _LT_GENERATED_FILE_INIT # LT_OUTPUT # --------- # This macro allows early generation of the libtool script (before # AC_OUTPUT is called), incase it is used in configure for compilation # tests. AC_DEFUN([LT_OUTPUT], [: ${CONFIG_LT=./config.lt} AC_MSG_NOTICE([creating $CONFIG_LT]) _LT_GENERATED_FILE_INIT(["$CONFIG_LT"], [# Run this file to recreate a libtool stub with the current configuration.]) cat >>"$CONFIG_LT" <<\_LTEOF lt_cl_silent=false exec AS_MESSAGE_LOG_FD>>config.log { echo AS_BOX([Running $as_me.]) } >&AS_MESSAGE_LOG_FD lt_cl_help="\ '$as_me' creates a local libtool stub from the current configuration, for use in further configure time tests before the real libtool is generated. Usage: $[0] [[OPTIONS]] -h, --help print this help, then exit -V, --version print version number, then exit -q, --quiet do not print progress messages -d, --debug don't remove temporary files Report bugs to ." lt_cl_version="\ m4_ifset([AC_PACKAGE_NAME], [AC_PACKAGE_NAME ])config.lt[]dnl m4_ifset([AC_PACKAGE_VERSION], [ AC_PACKAGE_VERSION]) configured by $[0], generated by m4_PACKAGE_STRING. Copyright (C) 2011 Free Software Foundation, Inc. This config.lt script is free software; the Free Software Foundation gives unlimited permision to copy, distribute and modify it." while test 0 != $[#] do case $[1] in --version | --v* | -V ) echo "$lt_cl_version"; exit 0 ;; --help | --h* | -h ) echo "$lt_cl_help"; exit 0 ;; --debug | --d* | -d ) debug=: ;; --quiet | --q* | --silent | --s* | -q ) lt_cl_silent=: ;; -*) AC_MSG_ERROR([unrecognized option: $[1] Try '$[0] --help' for more information.]) ;; *) AC_MSG_ERROR([unrecognized argument: $[1] Try '$[0] --help' for more information.]) ;; esac shift done if $lt_cl_silent; then exec AS_MESSAGE_FD>/dev/null fi _LTEOF cat >>"$CONFIG_LT" <<_LTEOF _LT_OUTPUT_LIBTOOL_COMMANDS_INIT _LTEOF cat >>"$CONFIG_LT" <<\_LTEOF AC_MSG_NOTICE([creating $ofile]) _LT_OUTPUT_LIBTOOL_COMMANDS AS_EXIT(0) _LTEOF chmod +x "$CONFIG_LT" # configure is writing to config.log, but config.lt does its own redirection, # appending to config.log, which fails on DOS, as config.log is still kept # open by configure. Here we exec the FD to /dev/null, effectively closing # config.log, so it can be properly (re)opened and appended to by config.lt. lt_cl_success=: test yes = "$silent" && lt_config_lt_args="$lt_config_lt_args --quiet" exec AS_MESSAGE_LOG_FD>/dev/null $SHELL "$CONFIG_LT" $lt_config_lt_args || lt_cl_success=false exec AS_MESSAGE_LOG_FD>>config.log $lt_cl_success || AS_EXIT(1) ])# LT_OUTPUT # _LT_CONFIG(TAG) # --------------- # If TAG is the built-in tag, create an initial libtool script with a # default configuration from the untagged config vars. Otherwise add code # to config.status for appending the configuration named by TAG from the # matching tagged config vars. m4_defun([_LT_CONFIG], [m4_require([_LT_FILEUTILS_DEFAULTS])dnl _LT_CONFIG_SAVE_COMMANDS([ m4_define([_LT_TAG], m4_if([$1], [], [C], [$1]))dnl m4_if(_LT_TAG, [C], [ # See if we are running on zsh, and set the options that allow our # commands through without removal of \ escapes. if test -n "${ZSH_VERSION+set}"; then setopt NO_GLOB_SUBST fi cfgfile=${ofile}T trap "$RM \"$cfgfile\"; exit 1" 1 2 15 $RM "$cfgfile" cat <<_LT_EOF >> "$cfgfile" #! $SHELL # Generated automatically by $as_me ($PACKAGE) $VERSION # Libtool was configured on host `(hostname || uname -n) 2>/dev/null | sed 1q`: # NOTE: Changes made to this file will be lost: look at ltmain.sh. # Provide generalized library-building support services. # Written by Gordon Matzigkeit, 1996 _LT_COPYING _LT_LIBTOOL_TAGS # Configured defaults for sys_lib_dlsearch_path munging. : \${LT_SYS_LIBRARY_PATH="$configure_time_lt_sys_library_path"} # ### BEGIN LIBTOOL CONFIG _LT_LIBTOOL_CONFIG_VARS _LT_LIBTOOL_TAG_VARS # ### END LIBTOOL CONFIG _LT_EOF cat <<'_LT_EOF' >> "$cfgfile" # ### BEGIN FUNCTIONS SHARED WITH CONFIGURE _LT_PREPARE_MUNGE_PATH_LIST _LT_PREPARE_CC_BASENAME # ### END FUNCTIONS SHARED WITH CONFIGURE _LT_EOF case $host_os in aix3*) cat <<\_LT_EOF >> "$cfgfile" # AIX sometimes has problems with the GCC collect2 program. For some # reason, if we set the COLLECT_NAMES environment variable, the problems # vanish in a puff of smoke. if test set != "${COLLECT_NAMES+set}"; then COLLECT_NAMES= export COLLECT_NAMES fi _LT_EOF ;; esac _LT_PROG_LTMAIN # We use sed instead of cat because bash on DJGPP gets confused if # if finds mixed CR/LF and LF-only lines. Since sed operates in # text mode, it properly converts lines to CR/LF. This bash problem # is reportedly fixed, but why not run on old versions too? sed '$q' "$ltmain" >> "$cfgfile" \ || (rm -f "$cfgfile"; exit 1) mv -f "$cfgfile" "$ofile" || (rm -f "$ofile" && cp "$cfgfile" "$ofile" && rm -f "$cfgfile") chmod +x "$ofile" ], [cat <<_LT_EOF >> "$ofile" dnl Unfortunately we have to use $1 here, since _LT_TAG is not expanded dnl in a comment (ie after a #). # ### BEGIN LIBTOOL TAG CONFIG: $1 _LT_LIBTOOL_TAG_VARS(_LT_TAG) # ### END LIBTOOL TAG CONFIG: $1 _LT_EOF ])dnl /m4_if ], [m4_if([$1], [], [ PACKAGE='$PACKAGE' VERSION='$VERSION' RM='$RM' ofile='$ofile'], []) ])dnl /_LT_CONFIG_SAVE_COMMANDS ])# _LT_CONFIG # LT_SUPPORTED_TAG(TAG) # --------------------- # Trace this macro to discover what tags are supported by the libtool # --tag option, using: # autoconf --trace 'LT_SUPPORTED_TAG:$1' AC_DEFUN([LT_SUPPORTED_TAG], []) # C support is built-in for now m4_define([_LT_LANG_C_enabled], []) m4_define([_LT_TAGS], []) # LT_LANG(LANG) # ------------- # Enable libtool support for the given language if not already enabled. AC_DEFUN([LT_LANG], [AC_BEFORE([$0], [LT_OUTPUT])dnl m4_case([$1], [C], [_LT_LANG(C)], [C++], [_LT_LANG(CXX)], [Go], [_LT_LANG(GO)], [Java], [_LT_LANG(GCJ)], [Fortran 77], [_LT_LANG(F77)], [Fortran], [_LT_LANG(FC)], [Windows Resource], [_LT_LANG(RC)], [m4_ifdef([_LT_LANG_]$1[_CONFIG], [_LT_LANG($1)], [m4_fatal([$0: unsupported language: "$1"])])])dnl ])# LT_LANG # _LT_LANG(LANGNAME) # ------------------ m4_defun([_LT_LANG], [m4_ifdef([_LT_LANG_]$1[_enabled], [], [LT_SUPPORTED_TAG([$1])dnl m4_append([_LT_TAGS], [$1 ])dnl m4_define([_LT_LANG_]$1[_enabled], [])dnl _LT_LANG_$1_CONFIG($1)])dnl ])# _LT_LANG m4_ifndef([AC_PROG_GO], [ ############################################################ # NOTE: This macro has been submitted for inclusion into # # GNU Autoconf as AC_PROG_GO. When it is available in # # a released version of Autoconf we should remove this # # macro and use it instead. # ############################################################ m4_defun([AC_PROG_GO], [AC_LANG_PUSH(Go)dnl AC_ARG_VAR([GOC], [Go compiler command])dnl AC_ARG_VAR([GOFLAGS], [Go compiler flags])dnl _AC_ARG_VAR_LDFLAGS()dnl AC_CHECK_TOOL(GOC, gccgo) if test -z "$GOC"; then if test -n "$ac_tool_prefix"; then AC_CHECK_PROG(GOC, [${ac_tool_prefix}gccgo], [${ac_tool_prefix}gccgo]) fi fi if test -z "$GOC"; then AC_CHECK_PROG(GOC, gccgo, gccgo, false) fi ])#m4_defun ])#m4_ifndef # _LT_LANG_DEFAULT_CONFIG # ----------------------- m4_defun([_LT_LANG_DEFAULT_CONFIG], [AC_PROVIDE_IFELSE([AC_PROG_CXX], [LT_LANG(CXX)], [m4_define([AC_PROG_CXX], defn([AC_PROG_CXX])[LT_LANG(CXX)])]) AC_PROVIDE_IFELSE([AC_PROG_F77], [LT_LANG(F77)], [m4_define([AC_PROG_F77], defn([AC_PROG_F77])[LT_LANG(F77)])]) AC_PROVIDE_IFELSE([AC_PROG_FC], [LT_LANG(FC)], [m4_define([AC_PROG_FC], defn([AC_PROG_FC])[LT_LANG(FC)])]) dnl The call to [A][M_PROG_GCJ] is quoted like that to stop aclocal dnl pulling things in needlessly. AC_PROVIDE_IFELSE([AC_PROG_GCJ], [LT_LANG(GCJ)], [AC_PROVIDE_IFELSE([A][M_PROG_GCJ], [LT_LANG(GCJ)], [AC_PROVIDE_IFELSE([LT_PROG_GCJ], [LT_LANG(GCJ)], [m4_ifdef([AC_PROG_GCJ], [m4_define([AC_PROG_GCJ], defn([AC_PROG_GCJ])[LT_LANG(GCJ)])]) m4_ifdef([A][M_PROG_GCJ], [m4_define([A][M_PROG_GCJ], defn([A][M_PROG_GCJ])[LT_LANG(GCJ)])]) m4_ifdef([LT_PROG_GCJ], [m4_define([LT_PROG_GCJ], defn([LT_PROG_GCJ])[LT_LANG(GCJ)])])])])]) AC_PROVIDE_IFELSE([AC_PROG_GO], [LT_LANG(GO)], [m4_define([AC_PROG_GO], defn([AC_PROG_GO])[LT_LANG(GO)])]) AC_PROVIDE_IFELSE([LT_PROG_RC], [LT_LANG(RC)], [m4_define([LT_PROG_RC], defn([LT_PROG_RC])[LT_LANG(RC)])]) ])# _LT_LANG_DEFAULT_CONFIG # Obsolete macros: AU_DEFUN([AC_LIBTOOL_CXX], [LT_LANG(C++)]) AU_DEFUN([AC_LIBTOOL_F77], [LT_LANG(Fortran 77)]) AU_DEFUN([AC_LIBTOOL_FC], [LT_LANG(Fortran)]) AU_DEFUN([AC_LIBTOOL_GCJ], [LT_LANG(Java)]) AU_DEFUN([AC_LIBTOOL_RC], [LT_LANG(Windows Resource)]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AC_LIBTOOL_CXX], []) dnl AC_DEFUN([AC_LIBTOOL_F77], []) dnl AC_DEFUN([AC_LIBTOOL_FC], []) dnl AC_DEFUN([AC_LIBTOOL_GCJ], []) dnl AC_DEFUN([AC_LIBTOOL_RC], []) # _LT_TAG_COMPILER # ---------------- m4_defun([_LT_TAG_COMPILER], [AC_REQUIRE([AC_PROG_CC])dnl _LT_DECL([LTCC], [CC], [1], [A C compiler])dnl _LT_DECL([LTCFLAGS], [CFLAGS], [1], [LTCC compiler flags])dnl _LT_TAGDECL([CC], [compiler], [1], [A language specific compiler])dnl _LT_TAGDECL([with_gcc], [GCC], [0], [Is the compiler the GNU compiler?])dnl # If no C compiler was specified, use CC. LTCC=${LTCC-"$CC"} # If no C compiler flags were specified, use CFLAGS. LTCFLAGS=${LTCFLAGS-"$CFLAGS"} # Allow CC to be a program name with arguments. compiler=$CC ])# _LT_TAG_COMPILER # _LT_COMPILER_BOILERPLATE # ------------------------ # Check for compiler boilerplate output or warnings with # the simple compiler test code. m4_defun([_LT_COMPILER_BOILERPLATE], [m4_require([_LT_DECL_SED])dnl ac_outfile=conftest.$ac_objext echo "$lt_simple_compile_test_code" >conftest.$ac_ext eval "$ac_compile" 2>&1 >/dev/null | $SED '/^$/d; /^ *+/d' >conftest.err _lt_compiler_boilerplate=`cat conftest.err` $RM conftest* ])# _LT_COMPILER_BOILERPLATE # _LT_LINKER_BOILERPLATE # ---------------------- # Check for linker boilerplate output or warnings with # the simple link test code. m4_defun([_LT_LINKER_BOILERPLATE], [m4_require([_LT_DECL_SED])dnl ac_outfile=conftest.$ac_objext echo "$lt_simple_link_test_code" >conftest.$ac_ext eval "$ac_link" 2>&1 >/dev/null | $SED '/^$/d; /^ *+/d' >conftest.err _lt_linker_boilerplate=`cat conftest.err` $RM -r conftest* ])# _LT_LINKER_BOILERPLATE # _LT_REQUIRED_DARWIN_CHECKS # ------------------------- m4_defun_once([_LT_REQUIRED_DARWIN_CHECKS],[ case $host_os in rhapsody* | darwin*) AC_CHECK_TOOL([DSYMUTIL], [dsymutil], [:]) AC_CHECK_TOOL([NMEDIT], [nmedit], [:]) AC_CHECK_TOOL([LIPO], [lipo], [:]) AC_CHECK_TOOL([OTOOL], [otool], [:]) AC_CHECK_TOOL([OTOOL64], [otool64], [:]) _LT_DECL([], [DSYMUTIL], [1], [Tool to manipulate archived DWARF debug symbol files on Mac OS X]) _LT_DECL([], [NMEDIT], [1], [Tool to change global to local symbols on Mac OS X]) _LT_DECL([], [LIPO], [1], [Tool to manipulate fat objects and archives on Mac OS X]) _LT_DECL([], [OTOOL], [1], [ldd/readelf like tool for Mach-O binaries on Mac OS X]) _LT_DECL([], [OTOOL64], [1], [ldd/readelf like tool for 64 bit Mach-O binaries on Mac OS X 10.4]) AC_CACHE_CHECK([for -single_module linker flag],[lt_cv_apple_cc_single_mod], [lt_cv_apple_cc_single_mod=no if test -z "$LT_MULTI_MODULE"; then # By default we will add the -single_module flag. You can override # by either setting the environment variable LT_MULTI_MODULE # non-empty at configure time, or by adding -multi_module to the # link flags. rm -rf libconftest.dylib* echo "int foo(void){return 1;}" > conftest.c echo "$LTCC $LTCFLAGS $LDFLAGS -o libconftest.dylib \ -dynamiclib -Wl,-single_module conftest.c" >&AS_MESSAGE_LOG_FD $LTCC $LTCFLAGS $LDFLAGS -o libconftest.dylib \ -dynamiclib -Wl,-single_module conftest.c 2>conftest.err _lt_result=$? # If there is a non-empty error log, and "single_module" # appears in it, assume the flag caused a linker warning if test -s conftest.err && $GREP single_module conftest.err; then cat conftest.err >&AS_MESSAGE_LOG_FD # Otherwise, if the output was created with a 0 exit code from # the compiler, it worked. elif test -f libconftest.dylib && test 0 = "$_lt_result"; then lt_cv_apple_cc_single_mod=yes else cat conftest.err >&AS_MESSAGE_LOG_FD fi rm -rf libconftest.dylib* rm -f conftest.* fi]) AC_CACHE_CHECK([for -exported_symbols_list linker flag], [lt_cv_ld_exported_symbols_list], [lt_cv_ld_exported_symbols_list=no save_LDFLAGS=$LDFLAGS echo "_main" > conftest.sym LDFLAGS="$LDFLAGS -Wl,-exported_symbols_list,conftest.sym" AC_LINK_IFELSE([AC_LANG_PROGRAM([],[])], [lt_cv_ld_exported_symbols_list=yes], [lt_cv_ld_exported_symbols_list=no]) LDFLAGS=$save_LDFLAGS ]) AC_CACHE_CHECK([for -force_load linker flag],[lt_cv_ld_force_load], [lt_cv_ld_force_load=no cat > conftest.c << _LT_EOF int forced_loaded() { return 2;} _LT_EOF echo "$LTCC $LTCFLAGS -c -o conftest.o conftest.c" >&AS_MESSAGE_LOG_FD $LTCC $LTCFLAGS -c -o conftest.o conftest.c 2>&AS_MESSAGE_LOG_FD echo "$AR cru libconftest.a conftest.o" >&AS_MESSAGE_LOG_FD $AR cru libconftest.a conftest.o 2>&AS_MESSAGE_LOG_FD echo "$RANLIB libconftest.a" >&AS_MESSAGE_LOG_FD $RANLIB libconftest.a 2>&AS_MESSAGE_LOG_FD cat > conftest.c << _LT_EOF int main() { return 0;} _LT_EOF echo "$LTCC $LTCFLAGS $LDFLAGS -o conftest conftest.c -Wl,-force_load,./libconftest.a" >&AS_MESSAGE_LOG_FD $LTCC $LTCFLAGS $LDFLAGS -o conftest conftest.c -Wl,-force_load,./libconftest.a 2>conftest.err _lt_result=$? if test -s conftest.err && $GREP force_load conftest.err; then cat conftest.err >&AS_MESSAGE_LOG_FD elif test -f conftest && test 0 = "$_lt_result" && $GREP forced_load conftest >/dev/null 2>&1; then lt_cv_ld_force_load=yes else cat conftest.err >&AS_MESSAGE_LOG_FD fi rm -f conftest.err libconftest.a conftest conftest.c rm -rf conftest.dSYM ]) case $host_os in rhapsody* | darwin1.[[012]]) _lt_dar_allow_undefined='$wl-undefined ${wl}suppress' ;; darwin1.*) _lt_dar_allow_undefined='$wl-flat_namespace $wl-undefined ${wl}suppress' ;; darwin*) # darwin 5.x on # if running on 10.5 or later, the deployment target defaults # to the OS version, if on x86, and 10.4, the deployment # target defaults to 10.4. Don't you love it? case ${MACOSX_DEPLOYMENT_TARGET-10.0},$host in 10.0,*86*-darwin8*|10.0,*-darwin[[91]]*) _lt_dar_allow_undefined='$wl-undefined ${wl}dynamic_lookup' ;; 10.[[012]][[,.]]*) _lt_dar_allow_undefined='$wl-flat_namespace $wl-undefined ${wl}suppress' ;; 10.*) _lt_dar_allow_undefined='$wl-undefined ${wl}dynamic_lookup' ;; esac ;; esac if test yes = "$lt_cv_apple_cc_single_mod"; then _lt_dar_single_mod='$single_module' fi if test yes = "$lt_cv_ld_exported_symbols_list"; then _lt_dar_export_syms=' $wl-exported_symbols_list,$output_objdir/$libname-symbols.expsym' else _lt_dar_export_syms='~$NMEDIT -s $output_objdir/$libname-symbols.expsym $lib' fi if test : != "$DSYMUTIL" && test no = "$lt_cv_ld_force_load"; then _lt_dsymutil='~$DSYMUTIL $lib || :' else _lt_dsymutil= fi ;; esac ]) # _LT_DARWIN_LINKER_FEATURES([TAG]) # --------------------------------- # Checks for linker and compiler features on darwin m4_defun([_LT_DARWIN_LINKER_FEATURES], [ m4_require([_LT_REQUIRED_DARWIN_CHECKS]) _LT_TAGVAR(archive_cmds_need_lc, $1)=no _LT_TAGVAR(hardcode_direct, $1)=no _LT_TAGVAR(hardcode_automatic, $1)=yes _LT_TAGVAR(hardcode_shlibpath_var, $1)=unsupported if test yes = "$lt_cv_ld_force_load"; then _LT_TAGVAR(whole_archive_flag_spec, $1)='`for conv in $convenience\"\"; do test -n \"$conv\" && new_convenience=\"$new_convenience $wl-force_load,$conv\"; done; func_echo_all \"$new_convenience\"`' m4_case([$1], [F77], [_LT_TAGVAR(compiler_needs_object, $1)=yes], [FC], [_LT_TAGVAR(compiler_needs_object, $1)=yes]) else _LT_TAGVAR(whole_archive_flag_spec, $1)='' fi _LT_TAGVAR(link_all_deplibs, $1)=yes _LT_TAGVAR(allow_undefined_flag, $1)=$_lt_dar_allow_undefined case $cc_basename in ifort*|nagfor*) _lt_dar_can_shared=yes ;; *) _lt_dar_can_shared=$GCC ;; esac if test yes = "$_lt_dar_can_shared"; then output_verbose_link_cmd=func_echo_all _LT_TAGVAR(archive_cmds, $1)="\$CC -dynamiclib \$allow_undefined_flag -o \$lib \$libobjs \$deplibs \$compiler_flags -install_name \$rpath/\$soname \$verstring $_lt_dar_single_mod$_lt_dsymutil" _LT_TAGVAR(module_cmds, $1)="\$CC \$allow_undefined_flag -o \$lib -bundle \$libobjs \$deplibs \$compiler_flags$_lt_dsymutil" _LT_TAGVAR(archive_expsym_cmds, $1)="sed 's|^|_|' < \$export_symbols > \$output_objdir/\$libname-symbols.expsym~\$CC -dynamiclib \$allow_undefined_flag -o \$lib \$libobjs \$deplibs \$compiler_flags -install_name \$rpath/\$soname \$verstring $_lt_dar_single_mod$_lt_dar_export_syms$_lt_dsymutil" _LT_TAGVAR(module_expsym_cmds, $1)="sed -e 's|^|_|' < \$export_symbols > \$output_objdir/\$libname-symbols.expsym~\$CC \$allow_undefined_flag -o \$lib -bundle \$libobjs \$deplibs \$compiler_flags$_lt_dar_export_syms$_lt_dsymutil" m4_if([$1], [CXX], [ if test yes != "$lt_cv_apple_cc_single_mod"; then _LT_TAGVAR(archive_cmds, $1)="\$CC -r -keep_private_externs -nostdlib -o \$lib-master.o \$libobjs~\$CC -dynamiclib \$allow_undefined_flag -o \$lib \$lib-master.o \$deplibs \$compiler_flags -install_name \$rpath/\$soname \$verstring$_lt_dsymutil" _LT_TAGVAR(archive_expsym_cmds, $1)="sed 's|^|_|' < \$export_symbols > \$output_objdir/\$libname-symbols.expsym~\$CC -r -keep_private_externs -nostdlib -o \$lib-master.o \$libobjs~\$CC -dynamiclib \$allow_undefined_flag -o \$lib \$lib-master.o \$deplibs \$compiler_flags -install_name \$rpath/\$soname \$verstring$_lt_dar_export_syms$_lt_dsymutil" fi ],[]) else _LT_TAGVAR(ld_shlibs, $1)=no fi ]) # _LT_SYS_MODULE_PATH_AIX([TAGNAME]) # ---------------------------------- # Links a minimal program and checks the executable # for the system default hardcoded library path. In most cases, # this is /usr/lib:/lib, but when the MPI compilers are used # the location of the communication and MPI libs are included too. # If we don't find anything, use the default library path according # to the aix ld manual. # Store the results from the different compilers for each TAGNAME. # Allow to override them for all tags through lt_cv_aix_libpath. m4_defun([_LT_SYS_MODULE_PATH_AIX], [m4_require([_LT_DECL_SED])dnl if test set = "${lt_cv_aix_libpath+set}"; then aix_libpath=$lt_cv_aix_libpath else AC_CACHE_VAL([_LT_TAGVAR([lt_cv_aix_libpath_], [$1])], [AC_LINK_IFELSE([AC_LANG_PROGRAM],[ lt_aix_libpath_sed='[ /Import File Strings/,/^$/ { /^0/ { s/^0 *\([^ ]*\) *$/\1/ p } }]' _LT_TAGVAR([lt_cv_aix_libpath_], [$1])=`dump -H conftest$ac_exeext 2>/dev/null | $SED -n -e "$lt_aix_libpath_sed"` # Check for a 64-bit object if we didn't find anything. if test -z "$_LT_TAGVAR([lt_cv_aix_libpath_], [$1])"; then _LT_TAGVAR([lt_cv_aix_libpath_], [$1])=`dump -HX64 conftest$ac_exeext 2>/dev/null | $SED -n -e "$lt_aix_libpath_sed"` fi],[]) if test -z "$_LT_TAGVAR([lt_cv_aix_libpath_], [$1])"; then _LT_TAGVAR([lt_cv_aix_libpath_], [$1])=/usr/lib:/lib fi ]) aix_libpath=$_LT_TAGVAR([lt_cv_aix_libpath_], [$1]) fi ])# _LT_SYS_MODULE_PATH_AIX # _LT_SHELL_INIT(ARG) # ------------------- m4_define([_LT_SHELL_INIT], [m4_divert_text([M4SH-INIT], [$1 ])])# _LT_SHELL_INIT # _LT_PROG_ECHO_BACKSLASH # ----------------------- # Find how we can fake an echo command that does not interpret backslash. # In particular, with Autoconf 2.60 or later we add some code to the start # of the generated configure script that will find a shell with a builtin # printf (that we can use as an echo command). m4_defun([_LT_PROG_ECHO_BACKSLASH], [ECHO='\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\' ECHO=$ECHO$ECHO$ECHO$ECHO$ECHO ECHO=$ECHO$ECHO$ECHO$ECHO$ECHO$ECHO AC_MSG_CHECKING([how to print strings]) # Test print first, because it will be a builtin if present. if test "X`( print -r -- -n ) 2>/dev/null`" = X-n && \ test "X`print -r -- $ECHO 2>/dev/null`" = "X$ECHO"; then ECHO='print -r --' elif test "X`printf %s $ECHO 2>/dev/null`" = "X$ECHO"; then ECHO='printf %s\n' else # Use this function as a fallback that always works. func_fallback_echo () { eval 'cat <<_LTECHO_EOF $[]1 _LTECHO_EOF' } ECHO='func_fallback_echo' fi # func_echo_all arg... # Invoke $ECHO with all args, space-separated. func_echo_all () { $ECHO "$*" } case $ECHO in printf*) AC_MSG_RESULT([printf]) ;; print*) AC_MSG_RESULT([print -r]) ;; *) AC_MSG_RESULT([cat]) ;; esac m4_ifdef([_AS_DETECT_SUGGESTED], [_AS_DETECT_SUGGESTED([ test -n "${ZSH_VERSION+set}${BASH_VERSION+set}" || ( ECHO='\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\' ECHO=$ECHO$ECHO$ECHO$ECHO$ECHO ECHO=$ECHO$ECHO$ECHO$ECHO$ECHO$ECHO PATH=/empty FPATH=/empty; export PATH FPATH test "X`printf %s $ECHO`" = "X$ECHO" \ || test "X`print -r -- $ECHO`" = "X$ECHO" )])]) _LT_DECL([], [SHELL], [1], [Shell to use when invoking shell scripts]) _LT_DECL([], [ECHO], [1], [An echo program that protects backslashes]) ])# _LT_PROG_ECHO_BACKSLASH # _LT_WITH_SYSROOT # ---------------- AC_DEFUN([_LT_WITH_SYSROOT], [AC_MSG_CHECKING([for sysroot]) AC_ARG_WITH([sysroot], [AS_HELP_STRING([--with-sysroot@<:@=DIR@:>@], [Search for dependent libraries within DIR (or the compiler's sysroot if not specified).])], [], [with_sysroot=no]) dnl lt_sysroot will always be passed unquoted. We quote it here dnl in case the user passed a directory name. lt_sysroot= case $with_sysroot in #( yes) if test yes = "$GCC"; then lt_sysroot=`$CC --print-sysroot 2>/dev/null` fi ;; #( /*) lt_sysroot=`echo "$with_sysroot" | sed -e "$sed_quote_subst"` ;; #( no|'') ;; #( *) AC_MSG_RESULT([$with_sysroot]) AC_MSG_ERROR([The sysroot must be an absolute path.]) ;; esac AC_MSG_RESULT([${lt_sysroot:-no}]) _LT_DECL([], [lt_sysroot], [0], [The root where to search for ]dnl [dependent libraries, and where our libraries should be installed.])]) # _LT_ENABLE_LOCK # --------------- m4_defun([_LT_ENABLE_LOCK], [AC_ARG_ENABLE([libtool-lock], [AS_HELP_STRING([--disable-libtool-lock], [avoid locking (might break parallel builds)])]) test no = "$enable_libtool_lock" || enable_libtool_lock=yes # Some flags need to be propagated to the compiler or linker for good # libtool support. case $host in ia64-*-hpux*) # Find out what ABI is being produced by ac_compile, and set mode # options accordingly. echo 'int i;' > conftest.$ac_ext if AC_TRY_EVAL(ac_compile); then case `/usr/bin/file conftest.$ac_objext` in *ELF-32*) HPUX_IA64_MODE=32 ;; *ELF-64*) HPUX_IA64_MODE=64 ;; esac fi rm -rf conftest* ;; *-*-irix6*) # Find out what ABI is being produced by ac_compile, and set linker # options accordingly. echo '[#]line '$LINENO' "configure"' > conftest.$ac_ext if AC_TRY_EVAL(ac_compile); then if test yes = "$lt_cv_prog_gnu_ld"; then case `/usr/bin/file conftest.$ac_objext` in *32-bit*) LD="${LD-ld} -melf32bsmip" ;; *N32*) LD="${LD-ld} -melf32bmipn32" ;; *64-bit*) LD="${LD-ld} -melf64bmip" ;; esac else case `/usr/bin/file conftest.$ac_objext` in *32-bit*) LD="${LD-ld} -32" ;; *N32*) LD="${LD-ld} -n32" ;; *64-bit*) LD="${LD-ld} -64" ;; esac fi fi rm -rf conftest* ;; mips64*-*linux*) # Find out what ABI is being produced by ac_compile, and set linker # options accordingly. echo '[#]line '$LINENO' "configure"' > conftest.$ac_ext if AC_TRY_EVAL(ac_compile); then emul=elf case `/usr/bin/file conftest.$ac_objext` in *32-bit*) emul="${emul}32" ;; *64-bit*) emul="${emul}64" ;; esac case `/usr/bin/file conftest.$ac_objext` in *MSB*) emul="${emul}btsmip" ;; *LSB*) emul="${emul}ltsmip" ;; esac case `/usr/bin/file conftest.$ac_objext` in *N32*) emul="${emul}n32" ;; esac LD="${LD-ld} -m $emul" fi rm -rf conftest* ;; x86_64-*kfreebsd*-gnu|x86_64-*linux*|powerpc*-*linux*| \ s390*-*linux*|s390*-*tpf*|sparc*-*linux*) # Find out what ABI is being produced by ac_compile, and set linker # options accordingly. Note that the listed cases only cover the # situations where additional linker options are needed (such as when # doing 32-bit compilation for a host where ld defaults to 64-bit, or # vice versa); the common cases where no linker options are needed do # not appear in the list. echo 'int i;' > conftest.$ac_ext if AC_TRY_EVAL(ac_compile); then case `/usr/bin/file conftest.o` in *32-bit*) case $host in x86_64-*kfreebsd*-gnu) LD="${LD-ld} -m elf_i386_fbsd" ;; x86_64-*linux*) case `/usr/bin/file conftest.o` in *x86-64*) LD="${LD-ld} -m elf32_x86_64" ;; *) LD="${LD-ld} -m elf_i386" ;; esac ;; powerpc64le-*linux*) LD="${LD-ld} -m elf32lppclinux" ;; powerpc64-*linux*) LD="${LD-ld} -m elf32ppclinux" ;; s390x-*linux*) LD="${LD-ld} -m elf_s390" ;; sparc64-*linux*) LD="${LD-ld} -m elf32_sparc" ;; esac ;; *64-bit*) case $host in x86_64-*kfreebsd*-gnu) LD="${LD-ld} -m elf_x86_64_fbsd" ;; x86_64-*linux*) LD="${LD-ld} -m elf_x86_64" ;; powerpcle-*linux*) LD="${LD-ld} -m elf64lppc" ;; powerpc-*linux*) LD="${LD-ld} -m elf64ppc" ;; s390*-*linux*|s390*-*tpf*) LD="${LD-ld} -m elf64_s390" ;; sparc*-*linux*) LD="${LD-ld} -m elf64_sparc" ;; esac ;; esac fi rm -rf conftest* ;; *-*-sco3.2v5*) # On SCO OpenServer 5, we need -belf to get full-featured binaries. SAVE_CFLAGS=$CFLAGS CFLAGS="$CFLAGS -belf" AC_CACHE_CHECK([whether the C compiler needs -belf], lt_cv_cc_needs_belf, [AC_LANG_PUSH(C) AC_LINK_IFELSE([AC_LANG_PROGRAM([[]],[[]])],[lt_cv_cc_needs_belf=yes],[lt_cv_cc_needs_belf=no]) AC_LANG_POP]) if test yes != "$lt_cv_cc_needs_belf"; then # this is probably gcc 2.8.0, egcs 1.0 or newer; no need for -belf CFLAGS=$SAVE_CFLAGS fi ;; *-*solaris*) # Find out what ABI is being produced by ac_compile, and set linker # options accordingly. echo 'int i;' > conftest.$ac_ext if AC_TRY_EVAL(ac_compile); then case `/usr/bin/file conftest.o` in *64-bit*) case $lt_cv_prog_gnu_ld in yes*) case $host in i?86-*-solaris*|x86_64-*-solaris*) LD="${LD-ld} -m elf_x86_64" ;; sparc*-*-solaris*) LD="${LD-ld} -m elf64_sparc" ;; esac # GNU ld 2.21 introduced _sol2 emulations. Use them if available. if ${LD-ld} -V | grep _sol2 >/dev/null 2>&1; then LD=${LD-ld}_sol2 fi ;; *) if ${LD-ld} -64 -r -o conftest2.o conftest.o >/dev/null 2>&1; then LD="${LD-ld} -64" fi ;; esac ;; esac fi rm -rf conftest* ;; esac need_locks=$enable_libtool_lock ])# _LT_ENABLE_LOCK # _LT_PROG_AR # ----------- m4_defun([_LT_PROG_AR], [AC_CHECK_TOOLS(AR, [ar], false) : ${AR=ar} : ${AR_FLAGS=cru} _LT_DECL([], [AR], [1], [The archiver]) _LT_DECL([], [AR_FLAGS], [1], [Flags to create an archive]) AC_CACHE_CHECK([for archiver @FILE support], [lt_cv_ar_at_file], [lt_cv_ar_at_file=no AC_COMPILE_IFELSE([AC_LANG_PROGRAM], [echo conftest.$ac_objext > conftest.lst lt_ar_try='$AR $AR_FLAGS libconftest.a @conftest.lst >&AS_MESSAGE_LOG_FD' AC_TRY_EVAL([lt_ar_try]) if test 0 -eq "$ac_status"; then # Ensure the archiver fails upon bogus file names. rm -f conftest.$ac_objext libconftest.a AC_TRY_EVAL([lt_ar_try]) if test 0 -ne "$ac_status"; then lt_cv_ar_at_file=@ fi fi rm -f conftest.* libconftest.a ]) ]) if test no = "$lt_cv_ar_at_file"; then archiver_list_spec= else archiver_list_spec=$lt_cv_ar_at_file fi _LT_DECL([], [archiver_list_spec], [1], [How to feed a file listing to the archiver]) ])# _LT_PROG_AR # _LT_CMD_OLD_ARCHIVE # ------------------- m4_defun([_LT_CMD_OLD_ARCHIVE], [_LT_PROG_AR AC_CHECK_TOOL(STRIP, strip, :) test -z "$STRIP" && STRIP=: _LT_DECL([], [STRIP], [1], [A symbol stripping program]) AC_CHECK_TOOL(RANLIB, ranlib, :) test -z "$RANLIB" && RANLIB=: _LT_DECL([], [RANLIB], [1], [Commands used to install an old-style archive]) # Determine commands to create old-style static archives. old_archive_cmds='$AR $AR_FLAGS $oldlib$oldobjs' old_postinstall_cmds='chmod 644 $oldlib' old_postuninstall_cmds= if test -n "$RANLIB"; then case $host_os in bitrig* | openbsd*) old_postinstall_cmds="$old_postinstall_cmds~\$RANLIB -t \$tool_oldlib" ;; *) old_postinstall_cmds="$old_postinstall_cmds~\$RANLIB \$tool_oldlib" ;; esac old_archive_cmds="$old_archive_cmds~\$RANLIB \$tool_oldlib" fi case $host_os in darwin*) lock_old_archive_extraction=yes ;; *) lock_old_archive_extraction=no ;; esac _LT_DECL([], [old_postinstall_cmds], [2]) _LT_DECL([], [old_postuninstall_cmds], [2]) _LT_TAGDECL([], [old_archive_cmds], [2], [Commands used to build an old-style archive]) _LT_DECL([], [lock_old_archive_extraction], [0], [Whether to use a lock for old archive extraction]) ])# _LT_CMD_OLD_ARCHIVE # _LT_COMPILER_OPTION(MESSAGE, VARIABLE-NAME, FLAGS, # [OUTPUT-FILE], [ACTION-SUCCESS], [ACTION-FAILURE]) # ---------------------------------------------------------------- # Check whether the given compiler option works AC_DEFUN([_LT_COMPILER_OPTION], [m4_require([_LT_FILEUTILS_DEFAULTS])dnl m4_require([_LT_DECL_SED])dnl AC_CACHE_CHECK([$1], [$2], [$2=no m4_if([$4], , [ac_outfile=conftest.$ac_objext], [ac_outfile=$4]) echo "$lt_simple_compile_test_code" > conftest.$ac_ext lt_compiler_flag="$3" ## exclude from sc_useless_quotes_in_assignment # Insert the option either (1) after the last *FLAGS variable, or # (2) before a word containing "conftest.", or (3) at the end. # Note that $ac_compile itself does not contain backslashes and begins # with a dollar sign (not a hyphen), so the echo should work correctly. # The option is referenced via a variable to avoid confusing sed. lt_compile=`echo "$ac_compile" | $SED \ -e 's:.*FLAGS}\{0,1\} :&$lt_compiler_flag :; t' \ -e 's: [[^ ]]*conftest\.: $lt_compiler_flag&:; t' \ -e 's:$: $lt_compiler_flag:'` (eval echo "\"\$as_me:$LINENO: $lt_compile\"" >&AS_MESSAGE_LOG_FD) (eval "$lt_compile" 2>conftest.err) ac_status=$? cat conftest.err >&AS_MESSAGE_LOG_FD echo "$as_me:$LINENO: \$? = $ac_status" >&AS_MESSAGE_LOG_FD if (exit $ac_status) && test -s "$ac_outfile"; then # The compiler can only warn and ignore the option if not recognized # So say no if there are warnings other than the usual output. $ECHO "$_lt_compiler_boilerplate" | $SED '/^$/d' >conftest.exp $SED '/^$/d; /^ *+/d' conftest.err >conftest.er2 if test ! -s conftest.er2 || diff conftest.exp conftest.er2 >/dev/null; then $2=yes fi fi $RM conftest* ]) if test yes = "[$]$2"; then m4_if([$5], , :, [$5]) else m4_if([$6], , :, [$6]) fi ])# _LT_COMPILER_OPTION # Old name: AU_ALIAS([AC_LIBTOOL_COMPILER_OPTION], [_LT_COMPILER_OPTION]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AC_LIBTOOL_COMPILER_OPTION], []) # _LT_LINKER_OPTION(MESSAGE, VARIABLE-NAME, FLAGS, # [ACTION-SUCCESS], [ACTION-FAILURE]) # ---------------------------------------------------- # Check whether the given linker option works AC_DEFUN([_LT_LINKER_OPTION], [m4_require([_LT_FILEUTILS_DEFAULTS])dnl m4_require([_LT_DECL_SED])dnl AC_CACHE_CHECK([$1], [$2], [$2=no save_LDFLAGS=$LDFLAGS LDFLAGS="$LDFLAGS $3" echo "$lt_simple_link_test_code" > conftest.$ac_ext if (eval $ac_link 2>conftest.err) && test -s conftest$ac_exeext; then # The linker can only warn and ignore the option if not recognized # So say no if there are warnings if test -s conftest.err; then # Append any errors to the config.log. cat conftest.err 1>&AS_MESSAGE_LOG_FD $ECHO "$_lt_linker_boilerplate" | $SED '/^$/d' > conftest.exp $SED '/^$/d; /^ *+/d' conftest.err >conftest.er2 if diff conftest.exp conftest.er2 >/dev/null; then $2=yes fi else $2=yes fi fi $RM -r conftest* LDFLAGS=$save_LDFLAGS ]) if test yes = "[$]$2"; then m4_if([$4], , :, [$4]) else m4_if([$5], , :, [$5]) fi ])# _LT_LINKER_OPTION # Old name: AU_ALIAS([AC_LIBTOOL_LINKER_OPTION], [_LT_LINKER_OPTION]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AC_LIBTOOL_LINKER_OPTION], []) # LT_CMD_MAX_LEN #--------------- AC_DEFUN([LT_CMD_MAX_LEN], [AC_REQUIRE([AC_CANONICAL_HOST])dnl # find the maximum length of command line arguments AC_MSG_CHECKING([the maximum length of command line arguments]) AC_CACHE_VAL([lt_cv_sys_max_cmd_len], [dnl i=0 teststring=ABCD case $build_os in msdosdjgpp*) # On DJGPP, this test can blow up pretty badly due to problems in libc # (any single argument exceeding 2000 bytes causes a buffer overrun # during glob expansion). Even if it were fixed, the result of this # check would be larger than it should be. lt_cv_sys_max_cmd_len=12288; # 12K is about right ;; gnu*) # Under GNU Hurd, this test is not required because there is # no limit to the length of command line arguments. # Libtool will interpret -1 as no limit whatsoever lt_cv_sys_max_cmd_len=-1; ;; cygwin* | mingw* | cegcc*) # On Win9x/ME, this test blows up -- it succeeds, but takes # about 5 minutes as the teststring grows exponentially. # Worse, since 9x/ME are not pre-emptively multitasking, # you end up with a "frozen" computer, even though with patience # the test eventually succeeds (with a max line length of 256k). # Instead, let's just punt: use the minimum linelength reported by # all of the supported platforms: 8192 (on NT/2K/XP). lt_cv_sys_max_cmd_len=8192; ;; mint*) # On MiNT this can take a long time and run out of memory. lt_cv_sys_max_cmd_len=8192; ;; amigaos*) # On AmigaOS with pdksh, this test takes hours, literally. # So we just punt and use a minimum line length of 8192. lt_cv_sys_max_cmd_len=8192; ;; bitrig* | darwin* | dragonfly* | freebsd* | netbsd* | openbsd*) # This has been around since 386BSD, at least. Likely further. if test -x /sbin/sysctl; then lt_cv_sys_max_cmd_len=`/sbin/sysctl -n kern.argmax` elif test -x /usr/sbin/sysctl; then lt_cv_sys_max_cmd_len=`/usr/sbin/sysctl -n kern.argmax` else lt_cv_sys_max_cmd_len=65536 # usable default for all BSDs fi # And add a safety zone lt_cv_sys_max_cmd_len=`expr $lt_cv_sys_max_cmd_len \/ 4` lt_cv_sys_max_cmd_len=`expr $lt_cv_sys_max_cmd_len \* 3` ;; interix*) # We know the value 262144 and hardcode it with a safety zone (like BSD) lt_cv_sys_max_cmd_len=196608 ;; os2*) # The test takes a long time on OS/2. lt_cv_sys_max_cmd_len=8192 ;; osf*) # Dr. Hans Ekkehard Plesser reports seeing a kernel panic running configure # due to this test when exec_disable_arg_limit is 1 on Tru64. It is not # nice to cause kernel panics so lets avoid the loop below. # First set a reasonable default. lt_cv_sys_max_cmd_len=16384 # if test -x /sbin/sysconfig; then case `/sbin/sysconfig -q proc exec_disable_arg_limit` in *1*) lt_cv_sys_max_cmd_len=-1 ;; esac fi ;; sco3.2v5*) lt_cv_sys_max_cmd_len=102400 ;; sysv5* | sco5v6* | sysv4.2uw2*) kargmax=`grep ARG_MAX /etc/conf/cf.d/stune 2>/dev/null` if test -n "$kargmax"; then lt_cv_sys_max_cmd_len=`echo $kargmax | sed 's/.*[[ ]]//'` else lt_cv_sys_max_cmd_len=32768 fi ;; *) lt_cv_sys_max_cmd_len=`(getconf ARG_MAX) 2> /dev/null` if test -n "$lt_cv_sys_max_cmd_len" && \ test undefined != "$lt_cv_sys_max_cmd_len"; then lt_cv_sys_max_cmd_len=`expr $lt_cv_sys_max_cmd_len \/ 4` lt_cv_sys_max_cmd_len=`expr $lt_cv_sys_max_cmd_len \* 3` else # Make teststring a little bigger before we do anything with it. # a 1K string should be a reasonable start. for i in 1 2 3 4 5 6 7 8; do teststring=$teststring$teststring done SHELL=${SHELL-${CONFIG_SHELL-/bin/sh}} # If test is not a shell built-in, we'll probably end up computing a # maximum length that is only half of the actual maximum length, but # we can't tell. while { test X`env echo "$teststring$teststring" 2>/dev/null` \ = "X$teststring$teststring"; } >/dev/null 2>&1 && test 17 != "$i" # 1/2 MB should be enough do i=`expr $i + 1` teststring=$teststring$teststring done # Only check the string length outside the loop. lt_cv_sys_max_cmd_len=`expr "X$teststring" : ".*" 2>&1` teststring= # Add a significant safety factor because C++ compilers can tack on # massive amounts of additional arguments before passing them to the # linker. It appears as though 1/2 is a usable value. lt_cv_sys_max_cmd_len=`expr $lt_cv_sys_max_cmd_len \/ 2` fi ;; esac ]) if test -n "$lt_cv_sys_max_cmd_len"; then AC_MSG_RESULT($lt_cv_sys_max_cmd_len) else AC_MSG_RESULT(none) fi max_cmd_len=$lt_cv_sys_max_cmd_len _LT_DECL([], [max_cmd_len], [0], [What is the maximum length of a command?]) ])# LT_CMD_MAX_LEN # Old name: AU_ALIAS([AC_LIBTOOL_SYS_MAX_CMD_LEN], [LT_CMD_MAX_LEN]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AC_LIBTOOL_SYS_MAX_CMD_LEN], []) # _LT_HEADER_DLFCN # ---------------- m4_defun([_LT_HEADER_DLFCN], [AC_CHECK_HEADERS([dlfcn.h], [], [], [AC_INCLUDES_DEFAULT])dnl ])# _LT_HEADER_DLFCN # _LT_TRY_DLOPEN_SELF (ACTION-IF-TRUE, ACTION-IF-TRUE-W-USCORE, # ACTION-IF-FALSE, ACTION-IF-CROSS-COMPILING) # ---------------------------------------------------------------- m4_defun([_LT_TRY_DLOPEN_SELF], [m4_require([_LT_HEADER_DLFCN])dnl if test yes = "$cross_compiling"; then : [$4] else lt_dlunknown=0; lt_dlno_uscore=1; lt_dlneed_uscore=2 lt_status=$lt_dlunknown cat > conftest.$ac_ext <<_LT_EOF [#line $LINENO "configure" #include "confdefs.h" #if HAVE_DLFCN_H #include #endif #include #ifdef RTLD_GLOBAL # define LT_DLGLOBAL RTLD_GLOBAL #else # ifdef DL_GLOBAL # define LT_DLGLOBAL DL_GLOBAL # else # define LT_DLGLOBAL 0 # endif #endif /* We may have to define LT_DLLAZY_OR_NOW in the command line if we find out it does not work in some platform. */ #ifndef LT_DLLAZY_OR_NOW # ifdef RTLD_LAZY # define LT_DLLAZY_OR_NOW RTLD_LAZY # else # ifdef DL_LAZY # define LT_DLLAZY_OR_NOW DL_LAZY # else # ifdef RTLD_NOW # define LT_DLLAZY_OR_NOW RTLD_NOW # else # ifdef DL_NOW # define LT_DLLAZY_OR_NOW DL_NOW # else # define LT_DLLAZY_OR_NOW 0 # endif # endif # endif # endif #endif /* When -fvisibility=hidden is used, assume the code has been annotated correspondingly for the symbols needed. */ #if defined __GNUC__ && (((__GNUC__ == 3) && (__GNUC_MINOR__ >= 3)) || (__GNUC__ > 3)) int fnord () __attribute__((visibility("default"))); #endif int fnord () { return 42; } int main () { void *self = dlopen (0, LT_DLGLOBAL|LT_DLLAZY_OR_NOW); int status = $lt_dlunknown; if (self) { if (dlsym (self,"fnord")) status = $lt_dlno_uscore; else { if (dlsym( self,"_fnord")) status = $lt_dlneed_uscore; else puts (dlerror ()); } /* dlclose (self); */ } else puts (dlerror ()); return status; }] _LT_EOF if AC_TRY_EVAL(ac_link) && test -s "conftest$ac_exeext" 2>/dev/null; then (./conftest; exit; ) >&AS_MESSAGE_LOG_FD 2>/dev/null lt_status=$? case x$lt_status in x$lt_dlno_uscore) $1 ;; x$lt_dlneed_uscore) $2 ;; x$lt_dlunknown|x*) $3 ;; esac else : # compilation failed $3 fi fi rm -fr conftest* ])# _LT_TRY_DLOPEN_SELF # LT_SYS_DLOPEN_SELF # ------------------ AC_DEFUN([LT_SYS_DLOPEN_SELF], [m4_require([_LT_HEADER_DLFCN])dnl if test yes != "$enable_dlopen"; then enable_dlopen=unknown enable_dlopen_self=unknown enable_dlopen_self_static=unknown else lt_cv_dlopen=no lt_cv_dlopen_libs= case $host_os in beos*) lt_cv_dlopen=load_add_on lt_cv_dlopen_libs= lt_cv_dlopen_self=yes ;; mingw* | pw32* | cegcc*) lt_cv_dlopen=LoadLibrary lt_cv_dlopen_libs= ;; cygwin*) lt_cv_dlopen=dlopen lt_cv_dlopen_libs= ;; darwin*) # if libdl is installed we need to link against it AC_CHECK_LIB([dl], [dlopen], [lt_cv_dlopen=dlopen lt_cv_dlopen_libs=-ldl],[ lt_cv_dlopen=dyld lt_cv_dlopen_libs= lt_cv_dlopen_self=yes ]) ;; tpf*) # Don't try to run any link tests for TPF. We know it's impossible # because TPF is a cross-compiler, and we know how we open DSOs. lt_cv_dlopen=dlopen lt_cv_dlopen_libs= lt_cv_dlopen_self=no ;; *) AC_CHECK_FUNC([shl_load], [lt_cv_dlopen=shl_load], [AC_CHECK_LIB([dld], [shl_load], [lt_cv_dlopen=shl_load lt_cv_dlopen_libs=-ldld], [AC_CHECK_FUNC([dlopen], [lt_cv_dlopen=dlopen], [AC_CHECK_LIB([dl], [dlopen], [lt_cv_dlopen=dlopen lt_cv_dlopen_libs=-ldl], [AC_CHECK_LIB([svld], [dlopen], [lt_cv_dlopen=dlopen lt_cv_dlopen_libs=-lsvld], [AC_CHECK_LIB([dld], [dld_link], [lt_cv_dlopen=dld_link lt_cv_dlopen_libs=-ldld]) ]) ]) ]) ]) ]) ;; esac if test no = "$lt_cv_dlopen"; then enable_dlopen=no else enable_dlopen=yes fi case $lt_cv_dlopen in dlopen) save_CPPFLAGS=$CPPFLAGS test yes = "$ac_cv_header_dlfcn_h" && CPPFLAGS="$CPPFLAGS -DHAVE_DLFCN_H" save_LDFLAGS=$LDFLAGS wl=$lt_prog_compiler_wl eval LDFLAGS=\"\$LDFLAGS $export_dynamic_flag_spec\" save_LIBS=$LIBS LIBS="$lt_cv_dlopen_libs $LIBS" AC_CACHE_CHECK([whether a program can dlopen itself], lt_cv_dlopen_self, [dnl _LT_TRY_DLOPEN_SELF( lt_cv_dlopen_self=yes, lt_cv_dlopen_self=yes, lt_cv_dlopen_self=no, lt_cv_dlopen_self=cross) ]) if test yes = "$lt_cv_dlopen_self"; then wl=$lt_prog_compiler_wl eval LDFLAGS=\"\$LDFLAGS $lt_prog_compiler_static\" AC_CACHE_CHECK([whether a statically linked program can dlopen itself], lt_cv_dlopen_self_static, [dnl _LT_TRY_DLOPEN_SELF( lt_cv_dlopen_self_static=yes, lt_cv_dlopen_self_static=yes, lt_cv_dlopen_self_static=no, lt_cv_dlopen_self_static=cross) ]) fi CPPFLAGS=$save_CPPFLAGS LDFLAGS=$save_LDFLAGS LIBS=$save_LIBS ;; esac case $lt_cv_dlopen_self in yes|no) enable_dlopen_self=$lt_cv_dlopen_self ;; *) enable_dlopen_self=unknown ;; esac case $lt_cv_dlopen_self_static in yes|no) enable_dlopen_self_static=$lt_cv_dlopen_self_static ;; *) enable_dlopen_self_static=unknown ;; esac fi _LT_DECL([dlopen_support], [enable_dlopen], [0], [Whether dlopen is supported]) _LT_DECL([dlopen_self], [enable_dlopen_self], [0], [Whether dlopen of programs is supported]) _LT_DECL([dlopen_self_static], [enable_dlopen_self_static], [0], [Whether dlopen of statically linked programs is supported]) ])# LT_SYS_DLOPEN_SELF # Old name: AU_ALIAS([AC_LIBTOOL_DLOPEN_SELF], [LT_SYS_DLOPEN_SELF]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AC_LIBTOOL_DLOPEN_SELF], []) # _LT_COMPILER_C_O([TAGNAME]) # --------------------------- # Check to see if options -c and -o are simultaneously supported by compiler. # This macro does not hard code the compiler like AC_PROG_CC_C_O. m4_defun([_LT_COMPILER_C_O], [m4_require([_LT_DECL_SED])dnl m4_require([_LT_FILEUTILS_DEFAULTS])dnl m4_require([_LT_TAG_COMPILER])dnl AC_CACHE_CHECK([if $compiler supports -c -o file.$ac_objext], [_LT_TAGVAR(lt_cv_prog_compiler_c_o, $1)], [_LT_TAGVAR(lt_cv_prog_compiler_c_o, $1)=no $RM -r conftest 2>/dev/null mkdir conftest cd conftest mkdir out echo "$lt_simple_compile_test_code" > conftest.$ac_ext lt_compiler_flag="-o out/conftest2.$ac_objext" # Insert the option either (1) after the last *FLAGS variable, or # (2) before a word containing "conftest.", or (3) at the end. # Note that $ac_compile itself does not contain backslashes and begins # with a dollar sign (not a hyphen), so the echo should work correctly. lt_compile=`echo "$ac_compile" | $SED \ -e 's:.*FLAGS}\{0,1\} :&$lt_compiler_flag :; t' \ -e 's: [[^ ]]*conftest\.: $lt_compiler_flag&:; t' \ -e 's:$: $lt_compiler_flag:'` (eval echo "\"\$as_me:$LINENO: $lt_compile\"" >&AS_MESSAGE_LOG_FD) (eval "$lt_compile" 2>out/conftest.err) ac_status=$? cat out/conftest.err >&AS_MESSAGE_LOG_FD echo "$as_me:$LINENO: \$? = $ac_status" >&AS_MESSAGE_LOG_FD if (exit $ac_status) && test -s out/conftest2.$ac_objext then # The compiler can only warn and ignore the option if not recognized # So say no if there are warnings $ECHO "$_lt_compiler_boilerplate" | $SED '/^$/d' > out/conftest.exp $SED '/^$/d; /^ *+/d' out/conftest.err >out/conftest.er2 if test ! -s out/conftest.er2 || diff out/conftest.exp out/conftest.er2 >/dev/null; then _LT_TAGVAR(lt_cv_prog_compiler_c_o, $1)=yes fi fi chmod u+w . 2>&AS_MESSAGE_LOG_FD $RM conftest* # SGI C++ compiler will create directory out/ii_files/ for # template instantiation test -d out/ii_files && $RM out/ii_files/* && rmdir out/ii_files $RM out/* && rmdir out cd .. $RM -r conftest $RM conftest* ]) _LT_TAGDECL([compiler_c_o], [lt_cv_prog_compiler_c_o], [1], [Does compiler simultaneously support -c and -o options?]) ])# _LT_COMPILER_C_O # _LT_COMPILER_FILE_LOCKS([TAGNAME]) # ---------------------------------- # Check to see if we can do hard links to lock some files if needed m4_defun([_LT_COMPILER_FILE_LOCKS], [m4_require([_LT_ENABLE_LOCK])dnl m4_require([_LT_FILEUTILS_DEFAULTS])dnl _LT_COMPILER_C_O([$1]) hard_links=nottested if test no = "$_LT_TAGVAR(lt_cv_prog_compiler_c_o, $1)" && test no != "$need_locks"; then # do not overwrite the value of need_locks provided by the user AC_MSG_CHECKING([if we can lock with hard links]) hard_links=yes $RM conftest* ln conftest.a conftest.b 2>/dev/null && hard_links=no touch conftest.a ln conftest.a conftest.b 2>&5 || hard_links=no ln conftest.a conftest.b 2>/dev/null && hard_links=no AC_MSG_RESULT([$hard_links]) if test no = "$hard_links"; then AC_MSG_WARN(['$CC' does not support '-c -o', so 'make -j' may be unsafe]) need_locks=warn fi else need_locks=no fi _LT_DECL([], [need_locks], [1], [Must we lock files when doing compilation?]) ])# _LT_COMPILER_FILE_LOCKS # _LT_CHECK_OBJDIR # ---------------- m4_defun([_LT_CHECK_OBJDIR], [AC_CACHE_CHECK([for objdir], [lt_cv_objdir], [rm -f .libs 2>/dev/null mkdir .libs 2>/dev/null if test -d .libs; then lt_cv_objdir=.libs else # MS-DOS does not allow filenames that begin with a dot. lt_cv_objdir=_libs fi rmdir .libs 2>/dev/null]) objdir=$lt_cv_objdir _LT_DECL([], [objdir], [0], [The name of the directory that contains temporary libtool files])dnl m4_pattern_allow([LT_OBJDIR])dnl AC_DEFINE_UNQUOTED([LT_OBJDIR], "$lt_cv_objdir/", [Define to the sub-directory where libtool stores uninstalled libraries.]) ])# _LT_CHECK_OBJDIR # _LT_LINKER_HARDCODE_LIBPATH([TAGNAME]) # -------------------------------------- # Check hardcoding attributes. m4_defun([_LT_LINKER_HARDCODE_LIBPATH], [AC_MSG_CHECKING([how to hardcode library paths into programs]) _LT_TAGVAR(hardcode_action, $1)= if test -n "$_LT_TAGVAR(hardcode_libdir_flag_spec, $1)" || test -n "$_LT_TAGVAR(runpath_var, $1)" || test yes = "$_LT_TAGVAR(hardcode_automatic, $1)"; then # We can hardcode non-existent directories. if test no != "$_LT_TAGVAR(hardcode_direct, $1)" && # If the only mechanism to avoid hardcoding is shlibpath_var, we # have to relink, otherwise we might link with an installed library # when we should be linking with a yet-to-be-installed one ## test no != "$_LT_TAGVAR(hardcode_shlibpath_var, $1)" && test no != "$_LT_TAGVAR(hardcode_minus_L, $1)"; then # Linking always hardcodes the temporary library directory. _LT_TAGVAR(hardcode_action, $1)=relink else # We can link without hardcoding, and we can hardcode nonexisting dirs. _LT_TAGVAR(hardcode_action, $1)=immediate fi else # We cannot hardcode anything, or else we can only hardcode existing # directories. _LT_TAGVAR(hardcode_action, $1)=unsupported fi AC_MSG_RESULT([$_LT_TAGVAR(hardcode_action, $1)]) if test relink = "$_LT_TAGVAR(hardcode_action, $1)" || test yes = "$_LT_TAGVAR(inherit_rpath, $1)"; then # Fast installation is not supported enable_fast_install=no elif test yes = "$shlibpath_overrides_runpath" || test no = "$enable_shared"; then # Fast installation is not necessary enable_fast_install=needless fi _LT_TAGDECL([], [hardcode_action], [0], [How to hardcode a shared library path into an executable]) ])# _LT_LINKER_HARDCODE_LIBPATH # _LT_CMD_STRIPLIB # ---------------- m4_defun([_LT_CMD_STRIPLIB], [m4_require([_LT_DECL_EGREP]) striplib= old_striplib= AC_MSG_CHECKING([whether stripping libraries is possible]) if test -n "$STRIP" && $STRIP -V 2>&1 | $GREP "GNU strip" >/dev/null; then test -z "$old_striplib" && old_striplib="$STRIP --strip-debug" test -z "$striplib" && striplib="$STRIP --strip-unneeded" AC_MSG_RESULT([yes]) else # FIXME - insert some real tests, host_os isn't really good enough case $host_os in darwin*) if test -n "$STRIP"; then striplib="$STRIP -x" old_striplib="$STRIP -S" AC_MSG_RESULT([yes]) else AC_MSG_RESULT([no]) fi ;; *) AC_MSG_RESULT([no]) ;; esac fi _LT_DECL([], [old_striplib], [1], [Commands to strip libraries]) _LT_DECL([], [striplib], [1]) ])# _LT_CMD_STRIPLIB # _LT_PREPARE_MUNGE_PATH_LIST # --------------------------- # Make sure func_munge_path_list() is defined correctly. m4_defun([_LT_PREPARE_MUNGE_PATH_LIST], [[# func_munge_path_list VARIABLE PATH # ----------------------------------- # VARIABLE is name of variable containing _space_ separated list of # directories to be munged by the contents of PATH, which is string # having a format: # "DIR[:DIR]:" # string "DIR[ DIR]" will be prepended to VARIABLE # ":DIR[:DIR]" # string "DIR[ DIR]" will be appended to VARIABLE # "DIRP[:DIRP]::[DIRA:]DIRA" # string "DIRP[ DIRP]" will be prepended to VARIABLE and string # "DIRA[ DIRA]" will be appended to VARIABLE # "DIR[:DIR]" # VARIABLE will be replaced by "DIR[ DIR]" func_munge_path_list () { case x@S|@2 in x) ;; *:) eval @S|@1=\"`$ECHO @S|@2 | $SED 's/:/ /g'` \@S|@@S|@1\" ;; x:*) eval @S|@1=\"\@S|@@S|@1 `$ECHO @S|@2 | $SED 's/:/ /g'`\" ;; *::*) eval @S|@1=\"\@S|@@S|@1\ `$ECHO @S|@2 | $SED -e 's/.*:://' -e 's/:/ /g'`\" eval @S|@1=\"`$ECHO @S|@2 | $SED -e 's/::.*//' -e 's/:/ /g'`\ \@S|@@S|@1\" ;; *) eval @S|@1=\"`$ECHO @S|@2 | $SED 's/:/ /g'`\" ;; esac } ]])# _LT_PREPARE_PATH_LIST # _LT_SYS_DYNAMIC_LINKER([TAG]) # ----------------------------- # PORTME Fill in your ld.so characteristics m4_defun([_LT_SYS_DYNAMIC_LINKER], [AC_REQUIRE([AC_CANONICAL_HOST])dnl m4_require([_LT_DECL_EGREP])dnl m4_require([_LT_FILEUTILS_DEFAULTS])dnl m4_require([_LT_DECL_OBJDUMP])dnl m4_require([_LT_DECL_SED])dnl m4_require([_LT_CHECK_SHELL_FEATURES])dnl m4_require([_LT_PREPARE_MUNGE_PATH_LIST])dnl AC_MSG_CHECKING([dynamic linker characteristics]) m4_if([$1], [], [ if test yes = "$GCC"; then case $host_os in darwin*) lt_awk_arg='/^libraries:/,/LR/' ;; *) lt_awk_arg='/^libraries:/' ;; esac case $host_os in mingw* | cegcc*) lt_sed_strip_eq='s|=\([[A-Za-z]]:\)|\1|g' ;; *) lt_sed_strip_eq='s|=/|/|g' ;; esac lt_search_path_spec=`$CC -print-search-dirs | awk $lt_awk_arg | $SED -e "s/^libraries://" -e $lt_sed_strip_eq` case $lt_search_path_spec in *\;*) # if the path contains ";" then we assume it to be the separator # otherwise default to the standard path separator (i.e. ":") - it is # assumed that no part of a normal pathname contains ";" but that should # okay in the real world where ";" in dirpaths is itself problematic. lt_search_path_spec=`$ECHO "$lt_search_path_spec" | $SED 's/;/ /g'` ;; *) lt_search_path_spec=`$ECHO "$lt_search_path_spec" | $SED "s/$PATH_SEPARATOR/ /g"` ;; esac # Ok, now we have the path, separated by spaces, we can step through it # and add multilib dir if necessary... lt_tmp_lt_search_path_spec= lt_multi_os_dir=/`$CC $CPPFLAGS $CFLAGS $LDFLAGS -print-multi-os-directory 2>/dev/null` # ...but if some path component already ends with the multilib dir we assume # that all is fine and trust -print-search-dirs as is (GCC 4.2? or newer). case "$lt_multi_os_dir; $lt_search_path_spec " in "/; "* | "/.; "* | "/./; "* | *"$lt_multi_os_dir "* | *"$lt_multi_os_dir/ "*) lt_multi_os_dir= ;; esac for lt_sys_path in $lt_search_path_spec; do if test -d "$lt_sys_path$lt_multi_os_dir"; then lt_tmp_lt_search_path_spec="$lt_tmp_lt_search_path_spec $lt_sys_path$lt_multi_os_dir" elif test -n "$lt_multi_os_dir"; then test -d "$lt_sys_path" && \ lt_tmp_lt_search_path_spec="$lt_tmp_lt_search_path_spec $lt_sys_path" fi done lt_search_path_spec=`$ECHO "$lt_tmp_lt_search_path_spec" | awk ' BEGIN {RS = " "; FS = "/|\n";} { lt_foo = ""; lt_count = 0; for (lt_i = NF; lt_i > 0; lt_i--) { if ($lt_i != "" && $lt_i != ".") { if ($lt_i == "..") { lt_count++; } else { if (lt_count == 0) { lt_foo = "/" $lt_i lt_foo; } else { lt_count--; } } } } if (lt_foo != "") { lt_freq[[lt_foo]]++; } if (lt_freq[[lt_foo]] == 1) { print lt_foo; } }'` # AWK program above erroneously prepends '/' to C:/dos/paths # for these hosts. case $host_os in mingw* | cegcc*) lt_search_path_spec=`$ECHO "$lt_search_path_spec" |\ $SED 's|/\([[A-Za-z]]:\)|\1|g'` ;; esac sys_lib_search_path_spec=`$ECHO "$lt_search_path_spec" | $lt_NL2SP` else sys_lib_search_path_spec="/lib /usr/lib /usr/local/lib" fi]) library_names_spec= libname_spec='lib$name' soname_spec= shrext_cmds=.so postinstall_cmds= postuninstall_cmds= finish_cmds= finish_eval= shlibpath_var= shlibpath_overrides_runpath=unknown version_type=none dynamic_linker="$host_os ld.so" sys_lib_dlsearch_path_spec="/lib /usr/lib" need_lib_prefix=unknown hardcode_into_libs=no # when you set need_version to no, make sure it does not cause -set_version # flags to be left without arguments need_version=unknown AC_ARG_VAR([LT_SYS_LIBRARY_PATH], [User-defined run-time library search path.]) case $host_os in aix3*) version_type=linux # correct to gnu/linux during the next big refactor library_names_spec='$libname$release$shared_ext$versuffix $libname.a' shlibpath_var=LIBPATH # AIX 3 has no versioning support, so we append a major version to the name. soname_spec='$libname$release$shared_ext$major' ;; aix[[4-9]]*) version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no hardcode_into_libs=yes if test ia64 = "$host_cpu"; then # AIX 5 supports IA64 library_names_spec='$libname$release$shared_ext$major $libname$release$shared_ext$versuffix $libname$shared_ext' shlibpath_var=LD_LIBRARY_PATH else # With GCC up to 2.95.x, collect2 would create an import file # for dependence libraries. The import file would start with # the line '#! .'. This would cause the generated library to # depend on '.', always an invalid library. This was fixed in # development snapshots of GCC prior to 3.0. case $host_os in aix4 | aix4.[[01]] | aix4.[[01]].*) if { echo '#if __GNUC__ > 2 || (__GNUC__ == 2 && __GNUC_MINOR__ >= 97)' echo ' yes ' echo '#endif'; } | $CC -E - | $GREP yes > /dev/null; then : else can_build_shared=no fi ;; esac # Using Import Files as archive members, it is possible to support # filename-based versioning of shared library archives on AIX. While # this would work for both with and without runtime linking, it will # prevent static linking of such archives. So we do filename-based # shared library versioning with .so extension only, which is used # when both runtime linking and shared linking is enabled. # Unfortunately, runtime linking may impact performance, so we do # not want this to be the default eventually. Also, we use the # versioned .so libs for executables only if there is the -brtl # linker flag in LDFLAGS as well, or --with-aix-soname=svr4 only. # To allow for filename-based versioning support, we need to create # libNAME.so.V as an archive file, containing: # *) an Import File, referring to the versioned filename of the # archive as well as the shared archive member, telling the # bitwidth (32 or 64) of that shared object, and providing the # list of exported symbols of that shared object, eventually # decorated with the 'weak' keyword # *) the shared object with the F_LOADONLY flag set, to really avoid # it being seen by the linker. # At run time we better use the real file rather than another symlink, # but for link time we create the symlink libNAME.so -> libNAME.so.V case $with_aix_soname,$aix_use_runtimelinking in # AIX (on Power*) has no versioning support, so currently we cannot hardcode correct # soname into executable. Probably we can add versioning support to # collect2, so additional links can be useful in future. aix,yes) # traditional libtool dynamic_linker='AIX unversionable lib.so' # If using run time linking (on AIX 4.2 or later) use lib.so # instead of lib.a to let people know that these are not # typical AIX shared libraries. library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' ;; aix,no) # traditional AIX only dynamic_linker='AIX lib.a[(]lib.so.V[)]' # We preserve .a as extension for shared libraries through AIX4.2 # and later when we are not doing run time linking. library_names_spec='$libname$release.a $libname.a' soname_spec='$libname$release$shared_ext$major' ;; svr4,*) # full svr4 only dynamic_linker="AIX lib.so.V[(]$shared_archive_member_spec.o[)]" library_names_spec='$libname$release$shared_ext$major $libname$shared_ext' # We do not specify a path in Import Files, so LIBPATH fires. shlibpath_overrides_runpath=yes ;; *,yes) # both, prefer svr4 dynamic_linker="AIX lib.so.V[(]$shared_archive_member_spec.o[)], lib.a[(]lib.so.V[)]" library_names_spec='$libname$release$shared_ext$major $libname$shared_ext' # unpreferred sharedlib libNAME.a needs extra handling postinstall_cmds='test -n "$linkname" || linkname="$realname"~func_stripname "" ".so" "$linkname"~$install_shared_prog "$dir/$func_stripname_result.$libext" "$destdir/$func_stripname_result.$libext"~test -z "$tstripme" || test -z "$striplib" || $striplib "$destdir/$func_stripname_result.$libext"' postuninstall_cmds='for n in $library_names $old_library; do :; done~func_stripname "" ".so" "$n"~test "$func_stripname_result" = "$n" || func_append rmfiles " $odir/$func_stripname_result.$libext"' # We do not specify a path in Import Files, so LIBPATH fires. shlibpath_overrides_runpath=yes ;; *,no) # both, prefer aix dynamic_linker="AIX lib.a[(]lib.so.V[)], lib.so.V[(]$shared_archive_member_spec.o[)]" library_names_spec='$libname$release.a $libname.a' soname_spec='$libname$release$shared_ext$major' # unpreferred sharedlib libNAME.so.V and symlink libNAME.so need extra handling postinstall_cmds='test -z "$dlname" || $install_shared_prog $dir/$dlname $destdir/$dlname~test -z "$tstripme" || test -z "$striplib" || $striplib $destdir/$dlname~test -n "$linkname" || linkname=$realname~func_stripname "" ".a" "$linkname"~(cd "$destdir" && $LN_S -f $dlname $func_stripname_result.so)' postuninstall_cmds='test -z "$dlname" || func_append rmfiles " $odir/$dlname"~for n in $old_library $library_names; do :; done~func_stripname "" ".a" "$n"~func_append rmfiles " $odir/$func_stripname_result.so"' ;; esac shlibpath_var=LIBPATH fi ;; amigaos*) case $host_cpu in powerpc) # Since July 2007 AmigaOS4 officially supports .so libraries. # When compiling the executable, add -use-dynld -Lsobjs: to the compileline. library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' ;; m68k) library_names_spec='$libname.ixlibrary $libname.a' # Create ${libname}_ixlibrary.a entries in /sys/libs. finish_eval='for lib in `ls $libdir/*.ixlibrary 2>/dev/null`; do libname=`func_echo_all "$lib" | $SED '\''s%^.*/\([[^/]]*\)\.ixlibrary$%\1%'\''`; $RM /sys/libs/${libname}_ixlibrary.a; $show "cd /sys/libs && $LN_S $lib ${libname}_ixlibrary.a"; cd /sys/libs && $LN_S $lib ${libname}_ixlibrary.a || exit 1; done' ;; esac ;; beos*) library_names_spec='$libname$shared_ext' dynamic_linker="$host_os ld.so" shlibpath_var=LIBRARY_PATH ;; bsdi[[45]]*) version_type=linux # correct to gnu/linux during the next big refactor need_version=no library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' finish_cmds='PATH="\$PATH:/sbin" ldconfig $libdir' shlibpath_var=LD_LIBRARY_PATH sys_lib_search_path_spec="/shlib /usr/lib /usr/X11/lib /usr/contrib/lib /lib /usr/local/lib" sys_lib_dlsearch_path_spec="/shlib /usr/lib /usr/local/lib" # the default ld.so.conf also contains /usr/contrib/lib and # /usr/X11R6/lib (/usr/X11 is a link to /usr/X11R6), but let us allow # libtool to hard-code these into programs ;; cygwin* | mingw* | pw32* | cegcc*) version_type=windows shrext_cmds=.dll need_version=no need_lib_prefix=no case $GCC,$cc_basename in yes,*) # gcc library_names_spec='$libname.dll.a' # DLL is installed to $(libdir)/../bin by postinstall_cmds postinstall_cmds='base_file=`basename \$file`~ dlpath=`$SHELL 2>&1 -c '\''. $dir/'\''\$base_file'\''i; echo \$dlname'\''`~ dldir=$destdir/`dirname \$dlpath`~ test -d \$dldir || mkdir -p \$dldir~ $install_prog $dir/$dlname \$dldir/$dlname~ chmod a+x \$dldir/$dlname~ if test -n '\''$stripme'\'' && test -n '\''$striplib'\''; then eval '\''$striplib \$dldir/$dlname'\'' || exit \$?; fi' postuninstall_cmds='dldll=`$SHELL 2>&1 -c '\''. $file; echo \$dlname'\''`~ dlpath=$dir/\$dldll~ $RM \$dlpath' shlibpath_overrides_runpath=yes case $host_os in cygwin*) # Cygwin DLLs use 'cyg' prefix rather than 'lib' soname_spec='`echo $libname | sed -e 's/^lib/cyg/'``echo $release | $SED -e 's/[[.]]/-/g'`$versuffix$shared_ext' m4_if([$1], [],[ sys_lib_search_path_spec="$sys_lib_search_path_spec /usr/lib/w32api"]) ;; mingw* | cegcc*) # MinGW DLLs use traditional 'lib' prefix soname_spec='$libname`echo $release | $SED -e 's/[[.]]/-/g'`$versuffix$shared_ext' ;; pw32*) # pw32 DLLs use 'pw' prefix rather than 'lib' library_names_spec='`echo $libname | sed -e 's/^lib/pw/'``echo $release | $SED -e 's/[[.]]/-/g'`$versuffix$shared_ext' ;; esac dynamic_linker='Win32 ld.exe' ;; *,cl*) # Native MSVC libname_spec='$name' soname_spec='$libname`echo $release | $SED -e 's/[[.]]/-/g'`$versuffix$shared_ext' library_names_spec='$libname.dll.lib' case $build_os in mingw*) sys_lib_search_path_spec= lt_save_ifs=$IFS IFS=';' for lt_path in $LIB do IFS=$lt_save_ifs # Let DOS variable expansion print the short 8.3 style file name. lt_path=`cd "$lt_path" 2>/dev/null && cmd //C "for %i in (".") do @echo %~si"` sys_lib_search_path_spec="$sys_lib_search_path_spec $lt_path" done IFS=$lt_save_ifs # Convert to MSYS style. sys_lib_search_path_spec=`$ECHO "$sys_lib_search_path_spec" | sed -e 's|\\\\|/|g' -e 's| \\([[a-zA-Z]]\\):| /\\1|g' -e 's|^ ||'` ;; cygwin*) # Convert to unix form, then to dos form, then back to unix form # but this time dos style (no spaces!) so that the unix form looks # like /cygdrive/c/PROGRA~1:/cygdr... sys_lib_search_path_spec=`cygpath --path --unix "$LIB"` sys_lib_search_path_spec=`cygpath --path --dos "$sys_lib_search_path_spec" 2>/dev/null` sys_lib_search_path_spec=`cygpath --path --unix "$sys_lib_search_path_spec" | $SED -e "s/$PATH_SEPARATOR/ /g"` ;; *) sys_lib_search_path_spec=$LIB if $ECHO "$sys_lib_search_path_spec" | [$GREP ';[c-zC-Z]:/' >/dev/null]; then # It is most probably a Windows format PATH. sys_lib_search_path_spec=`$ECHO "$sys_lib_search_path_spec" | $SED -e 's/;/ /g'` else sys_lib_search_path_spec=`$ECHO "$sys_lib_search_path_spec" | $SED -e "s/$PATH_SEPARATOR/ /g"` fi # FIXME: find the short name or the path components, as spaces are # common. (e.g. "Program Files" -> "PROGRA~1") ;; esac # DLL is installed to $(libdir)/../bin by postinstall_cmds postinstall_cmds='base_file=`basename \$file`~ dlpath=`$SHELL 2>&1 -c '\''. $dir/'\''\$base_file'\''i; echo \$dlname'\''`~ dldir=$destdir/`dirname \$dlpath`~ test -d \$dldir || mkdir -p \$dldir~ $install_prog $dir/$dlname \$dldir/$dlname' postuninstall_cmds='dldll=`$SHELL 2>&1 -c '\''. $file; echo \$dlname'\''`~ dlpath=$dir/\$dldll~ $RM \$dlpath' shlibpath_overrides_runpath=yes dynamic_linker='Win32 link.exe' ;; *) # Assume MSVC wrapper library_names_spec='$libname`echo $release | $SED -e 's/[[.]]/-/g'`$versuffix$shared_ext $libname.lib' dynamic_linker='Win32 ld.exe' ;; esac # FIXME: first we should search . and the directory the executable is in shlibpath_var=PATH ;; darwin* | rhapsody*) dynamic_linker="$host_os dyld" version_type=darwin need_lib_prefix=no need_version=no library_names_spec='$libname$release$major$shared_ext $libname$shared_ext' soname_spec='$libname$release$major$shared_ext' shlibpath_overrides_runpath=yes shlibpath_var=DYLD_LIBRARY_PATH shrext_cmds='`test .$module = .yes && echo .so || echo .dylib`' m4_if([$1], [],[ sys_lib_search_path_spec="$sys_lib_search_path_spec /usr/local/lib"]) sys_lib_dlsearch_path_spec='/usr/local/lib /lib /usr/lib' ;; dgux*) version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' shlibpath_var=LD_LIBRARY_PATH ;; freebsd* | dragonfly*) # DragonFly does not have aout. When/if they implement a new # versioning mechanism, adjust this. if test -x /usr/bin/objformat; then objformat=`/usr/bin/objformat` else case $host_os in freebsd[[23]].*) objformat=aout ;; *) objformat=elf ;; esac fi version_type=freebsd-$objformat case $version_type in freebsd-elf*) library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' need_version=no need_lib_prefix=no ;; freebsd-*) library_names_spec='$libname$release$shared_ext$versuffix $libname$shared_ext$versuffix' need_version=yes ;; esac shlibpath_var=LD_LIBRARY_PATH case $host_os in freebsd2.*) shlibpath_overrides_runpath=yes ;; freebsd3.[[01]]* | freebsdelf3.[[01]]*) shlibpath_overrides_runpath=yes hardcode_into_libs=yes ;; freebsd3.[[2-9]]* | freebsdelf3.[[2-9]]* | \ freebsd4.[[0-5]] | freebsdelf4.[[0-5]] | freebsd4.1.1 | freebsdelf4.1.1) shlibpath_overrides_runpath=no hardcode_into_libs=yes ;; *) # from 4.6 on, and DragonFly shlibpath_overrides_runpath=yes hardcode_into_libs=yes ;; esac ;; haiku*) version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no dynamic_linker="$host_os runtime_loader" library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' shlibpath_var=LIBRARY_PATH shlibpath_overrides_runpath=no sys_lib_dlsearch_path_spec='/boot/home/config/lib /boot/common/lib /boot/system/lib' hardcode_into_libs=yes ;; hpux9* | hpux10* | hpux11*) # Give a soname corresponding to the major version so that dld.sl refuses to # link against other versions. version_type=sunos need_lib_prefix=no need_version=no case $host_cpu in ia64*) shrext_cmds='.so' hardcode_into_libs=yes dynamic_linker="$host_os dld.so" shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes # Unless +noenvvar is specified. library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' if test 32 = "$HPUX_IA64_MODE"; then sys_lib_search_path_spec="/usr/lib/hpux32 /usr/local/lib/hpux32 /usr/local/lib" sys_lib_dlsearch_path_spec=/usr/lib/hpux32 else sys_lib_search_path_spec="/usr/lib/hpux64 /usr/local/lib/hpux64" sys_lib_dlsearch_path_spec=/usr/lib/hpux64 fi ;; hppa*64*) shrext_cmds='.sl' hardcode_into_libs=yes dynamic_linker="$host_os dld.sl" shlibpath_var=LD_LIBRARY_PATH # How should we handle SHLIB_PATH shlibpath_overrides_runpath=yes # Unless +noenvvar is specified. library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' sys_lib_search_path_spec="/usr/lib/pa20_64 /usr/ccs/lib/pa20_64" sys_lib_dlsearch_path_spec=$sys_lib_search_path_spec ;; *) shrext_cmds='.sl' dynamic_linker="$host_os dld.sl" shlibpath_var=SHLIB_PATH shlibpath_overrides_runpath=no # +s is required to enable SHLIB_PATH library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' ;; esac # HP-UX runs *really* slowly unless shared libraries are mode 555, ... postinstall_cmds='chmod 555 $lib' # or fails outright, so override atomically: install_override_mode=555 ;; interix[[3-9]]*) version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' dynamic_linker='Interix 3.x ld.so.1 (PE, like ELF)' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=no hardcode_into_libs=yes ;; irix5* | irix6* | nonstopux*) case $host_os in nonstopux*) version_type=nonstopux ;; *) if test yes = "$lt_cv_prog_gnu_ld"; then version_type=linux # correct to gnu/linux during the next big refactor else version_type=irix fi ;; esac need_lib_prefix=no need_version=no soname_spec='$libname$release$shared_ext$major' library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$release$shared_ext $libname$shared_ext' case $host_os in irix5* | nonstopux*) libsuff= shlibsuff= ;; *) case $LD in # libtool.m4 will add one of these switches to LD *-32|*"-32 "|*-melf32bsmip|*"-melf32bsmip ") libsuff= shlibsuff= libmagic=32-bit;; *-n32|*"-n32 "|*-melf32bmipn32|*"-melf32bmipn32 ") libsuff=32 shlibsuff=N32 libmagic=N32;; *-64|*"-64 "|*-melf64bmip|*"-melf64bmip ") libsuff=64 shlibsuff=64 libmagic=64-bit;; *) libsuff= shlibsuff= libmagic=never-match;; esac ;; esac shlibpath_var=LD_LIBRARY${shlibsuff}_PATH shlibpath_overrides_runpath=no sys_lib_search_path_spec="/usr/lib$libsuff /lib$libsuff /usr/local/lib$libsuff" sys_lib_dlsearch_path_spec="/usr/lib$libsuff /lib$libsuff" hardcode_into_libs=yes ;; # No shared lib support for Linux oldld, aout, or coff. linux*oldld* | linux*aout* | linux*coff*) dynamic_linker=no ;; linux*android*) version_type=none # Android doesn't support versioned libraries. need_lib_prefix=no need_version=no library_names_spec='$libname$release$shared_ext' soname_spec='$libname$release$shared_ext' finish_cmds= shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes # This implies no fast_install, which is unacceptable. # Some rework will be needed to allow for fast_install # before this can be enabled. hardcode_into_libs=yes dynamic_linker='Android linker' # Don't embed -rpath directories since the linker doesn't support them. _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-L$libdir' ;; # This must be glibc/ELF. linux* | k*bsd*-gnu | kopensolaris*-gnu | gnu*) version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' finish_cmds='PATH="\$PATH:/sbin" ldconfig -n $libdir' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=no # Some binutils ld are patched to set DT_RUNPATH AC_CACHE_VAL([lt_cv_shlibpath_overrides_runpath], [lt_cv_shlibpath_overrides_runpath=no save_LDFLAGS=$LDFLAGS save_libdir=$libdir eval "libdir=/foo; wl=\"$_LT_TAGVAR(lt_prog_compiler_wl, $1)\"; \ LDFLAGS=\"\$LDFLAGS $_LT_TAGVAR(hardcode_libdir_flag_spec, $1)\"" AC_LINK_IFELSE([AC_LANG_PROGRAM([],[])], [AS_IF([ ($OBJDUMP -p conftest$ac_exeext) 2>/dev/null | grep "RUNPATH.*$libdir" >/dev/null], [lt_cv_shlibpath_overrides_runpath=yes])]) LDFLAGS=$save_LDFLAGS libdir=$save_libdir ]) shlibpath_overrides_runpath=$lt_cv_shlibpath_overrides_runpath # This implies no fast_install, which is unacceptable. # Some rework will be needed to allow for fast_install # before this can be enabled. hardcode_into_libs=yes # Add ABI-specific directories to the system library path. sys_lib_dlsearch_path_spec="/lib64 /usr/lib64 /lib /usr/lib" # Ideally, we could use ldconfig to report *all* directores which are # searched for libraries, however this is still not possible. Aside from not # being certain /sbin/ldconfig is available, command # 'ldconfig -N -X -v | grep ^/' on 64bit Fedora does not report /usr/lib64, # even though it is searched at run-time. Try to do the best guess by # appending ld.so.conf contents (and includes) to the search path. if test -f /etc/ld.so.conf; then lt_ld_extra=`awk '/^include / { system(sprintf("cd /etc; cat %s 2>/dev/null", \[$]2)); skip = 1; } { if (!skip) print \[$]0; skip = 0; }' < /etc/ld.so.conf | $SED -e 's/#.*//;/^[ ]*hwcap[ ]/d;s/[:, ]/ /g;s/=[^=]*$//;s/=[^= ]* / /g;s/"//g;/^$/d' | tr '\n' ' '` sys_lib_dlsearch_path_spec="$sys_lib_dlsearch_path_spec $lt_ld_extra" fi # We used to test for /lib/ld.so.1 and disable shared libraries on # powerpc, because MkLinux only supported shared libraries with the # GNU dynamic linker. Since this was broken with cross compilers, # most powerpc-linux boxes support dynamic linking these days and # people can always --disable-shared, the test was removed, and we # assume the GNU/Linux dynamic linker is in use. dynamic_linker='GNU/Linux ld.so' ;; netbsd*) version_type=sunos need_lib_prefix=no need_version=no if echo __ELF__ | $CC -E - | $GREP __ELF__ >/dev/null; then library_names_spec='$libname$release$shared_ext$versuffix $libname$shared_ext$versuffix' finish_cmds='PATH="\$PATH:/sbin" ldconfig -m $libdir' dynamic_linker='NetBSD (a.out) ld.so' else library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' dynamic_linker='NetBSD ld.elf_so' fi shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes hardcode_into_libs=yes ;; newsos6) version_type=linux # correct to gnu/linux during the next big refactor library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes ;; *nto* | *qnx*) version_type=qnx need_lib_prefix=no need_version=no library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=no hardcode_into_libs=yes dynamic_linker='ldqnx.so' ;; openbsd* | bitrig*) version_type=sunos sys_lib_dlsearch_path_spec=/usr/lib need_lib_prefix=no if test -z "`echo __ELF__ | $CC -E - | $GREP __ELF__`"; then need_version=no else need_version=yes fi library_names_spec='$libname$release$shared_ext$versuffix $libname$shared_ext$versuffix' finish_cmds='PATH="\$PATH:/sbin" ldconfig -m $libdir' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes ;; os2*) libname_spec='$name' version_type=windows shrext_cmds=.dll need_version=no need_lib_prefix=no # OS/2 can only load a DLL with a base name of 8 characters or less. soname_spec='`test -n "$os2dllname" && libname="$os2dllname"; v=$($ECHO $release$versuffix | tr -d .-); n=$($ECHO $libname | cut -b -$((8 - ${#v})) | tr . _); $ECHO $n$v`$shared_ext' library_names_spec='${libname}_dll.$libext' dynamic_linker='OS/2 ld.exe' shlibpath_var=BEGINLIBPATH sys_lib_search_path_spec="/lib /usr/lib /usr/local/lib" sys_lib_dlsearch_path_spec=$sys_lib_search_path_spec postinstall_cmds='base_file=`basename \$file`~ dlpath=`$SHELL 2>&1 -c '\''. $dir/'\''\$base_file'\''i; $ECHO \$dlname'\''`~ dldir=$destdir/`dirname \$dlpath`~ test -d \$dldir || mkdir -p \$dldir~ $install_prog $dir/$dlname \$dldir/$dlname~ chmod a+x \$dldir/$dlname~ if test -n '\''$stripme'\'' && test -n '\''$striplib'\''; then eval '\''$striplib \$dldir/$dlname'\'' || exit \$?; fi' postuninstall_cmds='dldll=`$SHELL 2>&1 -c '\''. $file; $ECHO \$dlname'\''`~ dlpath=$dir/\$dldll~ $RM \$dlpath' ;; osf3* | osf4* | osf5*) version_type=osf need_lib_prefix=no need_version=no soname_spec='$libname$release$shared_ext$major' library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' shlibpath_var=LD_LIBRARY_PATH sys_lib_search_path_spec="/usr/shlib /usr/ccs/lib /usr/lib/cmplrs/cc /usr/lib /usr/local/lib /var/shlib" sys_lib_dlsearch_path_spec=$sys_lib_search_path_spec ;; rdos*) dynamic_linker=no ;; solaris*) version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes hardcode_into_libs=yes # ldd complains unless libraries are executable postinstall_cmds='chmod +x $lib' ;; sunos4*) version_type=sunos library_names_spec='$libname$release$shared_ext$versuffix $libname$shared_ext$versuffix' finish_cmds='PATH="\$PATH:/usr/etc" ldconfig $libdir' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes if test yes = "$with_gnu_ld"; then need_lib_prefix=no fi need_version=yes ;; sysv4 | sysv4.3*) version_type=linux # correct to gnu/linux during the next big refactor library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' shlibpath_var=LD_LIBRARY_PATH case $host_vendor in sni) shlibpath_overrides_runpath=no need_lib_prefix=no runpath_var=LD_RUN_PATH ;; siemens) need_lib_prefix=no ;; motorola) need_lib_prefix=no need_version=no shlibpath_overrides_runpath=no sys_lib_search_path_spec='/lib /usr/lib /usr/ccs/lib' ;; esac ;; sysv4*MP*) if test -d /usr/nec; then version_type=linux # correct to gnu/linux during the next big refactor library_names_spec='$libname$shared_ext.$versuffix $libname$shared_ext.$major $libname$shared_ext' soname_spec='$libname$shared_ext.$major' shlibpath_var=LD_LIBRARY_PATH fi ;; sysv5* | sco3.2v5* | sco5v6* | unixware* | OpenUNIX* | sysv4*uw2*) version_type=sco need_lib_prefix=no need_version=no library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes hardcode_into_libs=yes if test yes = "$with_gnu_ld"; then sys_lib_search_path_spec='/usr/local/lib /usr/gnu/lib /usr/ccs/lib /usr/lib /lib' else sys_lib_search_path_spec='/usr/ccs/lib /usr/lib' case $host_os in sco3.2v5*) sys_lib_search_path_spec="$sys_lib_search_path_spec /lib" ;; esac fi sys_lib_dlsearch_path_spec='/usr/lib' ;; tpf*) # TPF is a cross-target only. Preferred cross-host = GNU/Linux. version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=no hardcode_into_libs=yes ;; uts4*) version_type=linux # correct to gnu/linux during the next big refactor library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' shlibpath_var=LD_LIBRARY_PATH ;; *) dynamic_linker=no ;; esac AC_MSG_RESULT([$dynamic_linker]) test no = "$dynamic_linker" && can_build_shared=no variables_saved_for_relink="PATH $shlibpath_var $runpath_var" if test yes = "$GCC"; then variables_saved_for_relink="$variables_saved_for_relink GCC_EXEC_PREFIX COMPILER_PATH LIBRARY_PATH" fi if test set = "${lt_cv_sys_lib_search_path_spec+set}"; then sys_lib_search_path_spec=$lt_cv_sys_lib_search_path_spec fi if test set = "${lt_cv_sys_lib_dlsearch_path_spec+set}"; then sys_lib_dlsearch_path_spec=$lt_cv_sys_lib_dlsearch_path_spec fi # remember unaugmented sys_lib_dlsearch_path content for libtool script decls... configure_time_dlsearch_path=$sys_lib_dlsearch_path_spec # ... but it needs LT_SYS_LIBRARY_PATH munging for other configure-time code func_munge_path_list sys_lib_dlsearch_path_spec "$LT_SYS_LIBRARY_PATH" # to be used as default LT_SYS_LIBRARY_PATH value in generated libtool configure_time_lt_sys_library_path=$LT_SYS_LIBRARY_PATH _LT_DECL([], [variables_saved_for_relink], [1], [Variables whose values should be saved in libtool wrapper scripts and restored at link time]) _LT_DECL([], [need_lib_prefix], [0], [Do we need the "lib" prefix for modules?]) _LT_DECL([], [need_version], [0], [Do we need a version for libraries?]) _LT_DECL([], [version_type], [0], [Library versioning type]) _LT_DECL([], [runpath_var], [0], [Shared library runtime path variable]) _LT_DECL([], [shlibpath_var], [0],[Shared library path variable]) _LT_DECL([], [shlibpath_overrides_runpath], [0], [Is shlibpath searched before the hard-coded library search path?]) _LT_DECL([], [libname_spec], [1], [Format of library name prefix]) _LT_DECL([], [library_names_spec], [1], [[List of archive names. First name is the real one, the rest are links. The last name is the one that the linker finds with -lNAME]]) _LT_DECL([], [soname_spec], [1], [[The coded name of the library, if different from the real name]]) _LT_DECL([], [install_override_mode], [1], [Permission mode override for installation of shared libraries]) _LT_DECL([], [postinstall_cmds], [2], [Command to use after installation of a shared archive]) _LT_DECL([], [postuninstall_cmds], [2], [Command to use after uninstallation of a shared archive]) _LT_DECL([], [finish_cmds], [2], [Commands used to finish a libtool library installation in a directory]) _LT_DECL([], [finish_eval], [1], [[As "finish_cmds", except a single script fragment to be evaled but not shown]]) _LT_DECL([], [hardcode_into_libs], [0], [Whether we should hardcode library paths into libraries]) _LT_DECL([], [sys_lib_search_path_spec], [2], [Compile-time system search path for libraries]) _LT_DECL([sys_lib_dlsearch_path_spec], [configure_time_dlsearch_path], [2], [Detected run-time system search path for libraries]) _LT_DECL([], [configure_time_lt_sys_library_path], [2], [Explicit LT_SYS_LIBRARY_PATH set during ./configure time]) ])# _LT_SYS_DYNAMIC_LINKER # _LT_PATH_TOOL_PREFIX(TOOL) # -------------------------- # find a file program that can recognize shared library AC_DEFUN([_LT_PATH_TOOL_PREFIX], [m4_require([_LT_DECL_EGREP])dnl AC_MSG_CHECKING([for $1]) AC_CACHE_VAL(lt_cv_path_MAGIC_CMD, [case $MAGIC_CMD in [[\\/*] | ?:[\\/]*]) lt_cv_path_MAGIC_CMD=$MAGIC_CMD # Let the user override the test with a path. ;; *) lt_save_MAGIC_CMD=$MAGIC_CMD lt_save_ifs=$IFS; IFS=$PATH_SEPARATOR dnl $ac_dummy forces splitting on constant user-supplied paths. dnl POSIX.2 word splitting is done only on the output of word expansions, dnl not every word. This closes a longstanding sh security hole. ac_dummy="m4_if([$2], , $PATH, [$2])" for ac_dir in $ac_dummy; do IFS=$lt_save_ifs test -z "$ac_dir" && ac_dir=. if test -f "$ac_dir/$1"; then lt_cv_path_MAGIC_CMD=$ac_dir/"$1" if test -n "$file_magic_test_file"; then case $deplibs_check_method in "file_magic "*) file_magic_regex=`expr "$deplibs_check_method" : "file_magic \(.*\)"` MAGIC_CMD=$lt_cv_path_MAGIC_CMD if eval $file_magic_cmd \$file_magic_test_file 2> /dev/null | $EGREP "$file_magic_regex" > /dev/null; then : else cat <<_LT_EOF 1>&2 *** Warning: the command libtool uses to detect shared libraries, *** $file_magic_cmd, produces output that libtool cannot recognize. *** The result is that libtool may fail to recognize shared libraries *** as such. This will affect the creation of libtool libraries that *** depend on shared libraries, but programs linked with such libtool *** libraries will work regardless of this problem. Nevertheless, you *** may want to report the problem to your system manager and/or to *** bug-libtool@gnu.org _LT_EOF fi ;; esac fi break fi done IFS=$lt_save_ifs MAGIC_CMD=$lt_save_MAGIC_CMD ;; esac]) MAGIC_CMD=$lt_cv_path_MAGIC_CMD if test -n "$MAGIC_CMD"; then AC_MSG_RESULT($MAGIC_CMD) else AC_MSG_RESULT(no) fi _LT_DECL([], [MAGIC_CMD], [0], [Used to examine libraries when file_magic_cmd begins with "file"])dnl ])# _LT_PATH_TOOL_PREFIX # Old name: AU_ALIAS([AC_PATH_TOOL_PREFIX], [_LT_PATH_TOOL_PREFIX]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AC_PATH_TOOL_PREFIX], []) # _LT_PATH_MAGIC # -------------- # find a file program that can recognize a shared library m4_defun([_LT_PATH_MAGIC], [_LT_PATH_TOOL_PREFIX(${ac_tool_prefix}file, /usr/bin$PATH_SEPARATOR$PATH) if test -z "$lt_cv_path_MAGIC_CMD"; then if test -n "$ac_tool_prefix"; then _LT_PATH_TOOL_PREFIX(file, /usr/bin$PATH_SEPARATOR$PATH) else MAGIC_CMD=: fi fi ])# _LT_PATH_MAGIC # LT_PATH_LD # ---------- # find the pathname to the GNU or non-GNU linker AC_DEFUN([LT_PATH_LD], [AC_REQUIRE([AC_PROG_CC])dnl AC_REQUIRE([AC_CANONICAL_HOST])dnl AC_REQUIRE([AC_CANONICAL_BUILD])dnl m4_require([_LT_DECL_SED])dnl m4_require([_LT_DECL_EGREP])dnl m4_require([_LT_PROG_ECHO_BACKSLASH])dnl AC_ARG_WITH([gnu-ld], [AS_HELP_STRING([--with-gnu-ld], [assume the C compiler uses GNU ld @<:@default=no@:>@])], [test no = "$withval" || with_gnu_ld=yes], [with_gnu_ld=no])dnl ac_prog=ld if test yes = "$GCC"; then # Check if gcc -print-prog-name=ld gives a path. AC_MSG_CHECKING([for ld used by $CC]) case $host in *-*-mingw*) # gcc leaves a trailing carriage return, which upsets mingw ac_prog=`($CC -print-prog-name=ld) 2>&5 | tr -d '\015'` ;; *) ac_prog=`($CC -print-prog-name=ld) 2>&5` ;; esac case $ac_prog in # Accept absolute paths. [[\\/]]* | ?:[[\\/]]*) re_direlt='/[[^/]][[^/]]*/\.\./' # Canonicalize the pathname of ld ac_prog=`$ECHO "$ac_prog"| $SED 's%\\\\%/%g'` while $ECHO "$ac_prog" | $GREP "$re_direlt" > /dev/null 2>&1; do ac_prog=`$ECHO $ac_prog| $SED "s%$re_direlt%/%"` done test -z "$LD" && LD=$ac_prog ;; "") # If it fails, then pretend we aren't using GCC. ac_prog=ld ;; *) # If it is relative, then search for the first ld in PATH. with_gnu_ld=unknown ;; esac elif test yes = "$with_gnu_ld"; then AC_MSG_CHECKING([for GNU ld]) else AC_MSG_CHECKING([for non-GNU ld]) fi AC_CACHE_VAL(lt_cv_path_LD, [if test -z "$LD"; then lt_save_ifs=$IFS; IFS=$PATH_SEPARATOR for ac_dir in $PATH; do IFS=$lt_save_ifs test -z "$ac_dir" && ac_dir=. if test -f "$ac_dir/$ac_prog" || test -f "$ac_dir/$ac_prog$ac_exeext"; then lt_cv_path_LD=$ac_dir/$ac_prog # Check to see if the program is GNU ld. I'd rather use --version, # but apparently some variants of GNU ld only accept -v. # Break only if it was the GNU/non-GNU ld that we prefer. case `"$lt_cv_path_LD" -v 2>&1 &1 conftest.i cat conftest.i conftest.i >conftest2.i : ${lt_DD:=$DD} AC_PATH_PROGS_FEATURE_CHECK([lt_DD], [dd], [if "$ac_path_lt_DD" bs=32 count=1 conftest.out 2>/dev/null; then cmp -s conftest.i conftest.out \ && ac_cv_path_lt_DD="$ac_path_lt_DD" ac_path_lt_DD_found=: fi]) rm -f conftest.i conftest2.i conftest.out]) ])# _LT_PATH_DD # _LT_CMD_TRUNCATE # ---------------- # find command to truncate a binary pipe m4_defun([_LT_CMD_TRUNCATE], [m4_require([_LT_PATH_DD]) AC_CACHE_CHECK([how to truncate binary pipes], [lt_cv_truncate_bin], [printf 0123456789abcdef0123456789abcdef >conftest.i cat conftest.i conftest.i >conftest2.i lt_cv_truncate_bin= if "$ac_cv_path_lt_DD" bs=32 count=1 conftest.out 2>/dev/null; then cmp -s conftest.i conftest.out \ && lt_cv_truncate_bin="$ac_cv_path_lt_DD bs=4096 count=1" fi rm -f conftest.i conftest2.i conftest.out test -z "$lt_cv_truncate_bin" && lt_cv_truncate_bin="$SED -e 4q"]) _LT_DECL([lt_truncate_bin], [lt_cv_truncate_bin], [1], [Command to truncate a binary pipe]) ])# _LT_CMD_TRUNCATE # _LT_CHECK_MAGIC_METHOD # ---------------------- # how to check for library dependencies # -- PORTME fill in with the dynamic library characteristics m4_defun([_LT_CHECK_MAGIC_METHOD], [m4_require([_LT_DECL_EGREP]) m4_require([_LT_DECL_OBJDUMP]) AC_CACHE_CHECK([how to recognize dependent libraries], lt_cv_deplibs_check_method, [lt_cv_file_magic_cmd='$MAGIC_CMD' lt_cv_file_magic_test_file= lt_cv_deplibs_check_method='unknown' # Need to set the preceding variable on all platforms that support # interlibrary dependencies. # 'none' -- dependencies not supported. # 'unknown' -- same as none, but documents that we really don't know. # 'pass_all' -- all dependencies passed with no checks. # 'test_compile' -- check by making test program. # 'file_magic [[regex]]' -- check by looking for files in library path # that responds to the $file_magic_cmd with a given extended regex. # If you have 'file' or equivalent on your system and you're not sure # whether 'pass_all' will *always* work, you probably want this one. case $host_os in aix[[4-9]]*) lt_cv_deplibs_check_method=pass_all ;; beos*) lt_cv_deplibs_check_method=pass_all ;; bsdi[[45]]*) lt_cv_deplibs_check_method='file_magic ELF [[0-9]][[0-9]]*-bit [[ML]]SB (shared object|dynamic lib)' lt_cv_file_magic_cmd='/usr/bin/file -L' lt_cv_file_magic_test_file=/shlib/libc.so ;; cygwin*) # func_win32_libid is a shell function defined in ltmain.sh lt_cv_deplibs_check_method='file_magic ^x86 archive import|^x86 DLL' lt_cv_file_magic_cmd='func_win32_libid' ;; mingw* | pw32*) # Base MSYS/MinGW do not provide the 'file' command needed by # func_win32_libid shell function, so use a weaker test based on 'objdump', # unless we find 'file', for example because we are cross-compiling. if ( file / ) >/dev/null 2>&1; then lt_cv_deplibs_check_method='file_magic ^x86 archive import|^x86 DLL' lt_cv_file_magic_cmd='func_win32_libid' else # Keep this pattern in sync with the one in func_win32_libid. lt_cv_deplibs_check_method='file_magic file format (pei*-i386(.*architecture: i386)?|pe-arm-wince|pe-x86-64)' lt_cv_file_magic_cmd='$OBJDUMP -f' fi ;; cegcc*) # use the weaker test based on 'objdump'. See mingw*. lt_cv_deplibs_check_method='file_magic file format pe-arm-.*little(.*architecture: arm)?' lt_cv_file_magic_cmd='$OBJDUMP -f' ;; darwin* | rhapsody*) lt_cv_deplibs_check_method=pass_all ;; freebsd* | dragonfly*) if echo __ELF__ | $CC -E - | $GREP __ELF__ > /dev/null; then case $host_cpu in i*86 ) # Not sure whether the presence of OpenBSD here was a mistake. # Let's accept both of them until this is cleared up. lt_cv_deplibs_check_method='file_magic (FreeBSD|OpenBSD|DragonFly)/i[[3-9]]86 (compact )?demand paged shared library' lt_cv_file_magic_cmd=/usr/bin/file lt_cv_file_magic_test_file=`echo /usr/lib/libc.so.*` ;; esac else lt_cv_deplibs_check_method=pass_all fi ;; haiku*) lt_cv_deplibs_check_method=pass_all ;; hpux10.20* | hpux11*) lt_cv_file_magic_cmd=/usr/bin/file case $host_cpu in ia64*) lt_cv_deplibs_check_method='file_magic (s[[0-9]][[0-9]][[0-9]]|ELF-[[0-9]][[0-9]]) shared object file - IA64' lt_cv_file_magic_test_file=/usr/lib/hpux32/libc.so ;; hppa*64*) [lt_cv_deplibs_check_method='file_magic (s[0-9][0-9][0-9]|ELF[ -][0-9][0-9])(-bit)?( [LM]SB)? shared object( file)?[, -]* PA-RISC [0-9]\.[0-9]'] lt_cv_file_magic_test_file=/usr/lib/pa20_64/libc.sl ;; *) lt_cv_deplibs_check_method='file_magic (s[[0-9]][[0-9]][[0-9]]|PA-RISC[[0-9]]\.[[0-9]]) shared library' lt_cv_file_magic_test_file=/usr/lib/libc.sl ;; esac ;; interix[[3-9]]*) # PIC code is broken on Interix 3.x, that's why |\.a not |_pic\.a here lt_cv_deplibs_check_method='match_pattern /lib[[^/]]+(\.so|\.a)$' ;; irix5* | irix6* | nonstopux*) case $LD in *-32|*"-32 ") libmagic=32-bit;; *-n32|*"-n32 ") libmagic=N32;; *-64|*"-64 ") libmagic=64-bit;; *) libmagic=never-match;; esac lt_cv_deplibs_check_method=pass_all ;; # This must be glibc/ELF. linux* | k*bsd*-gnu | kopensolaris*-gnu | gnu*) lt_cv_deplibs_check_method=pass_all ;; netbsd*) if echo __ELF__ | $CC -E - | $GREP __ELF__ > /dev/null; then lt_cv_deplibs_check_method='match_pattern /lib[[^/]]+(\.so\.[[0-9]]+\.[[0-9]]+|_pic\.a)$' else lt_cv_deplibs_check_method='match_pattern /lib[[^/]]+(\.so|_pic\.a)$' fi ;; newos6*) lt_cv_deplibs_check_method='file_magic ELF [[0-9]][[0-9]]*-bit [[ML]]SB (executable|dynamic lib)' lt_cv_file_magic_cmd=/usr/bin/file lt_cv_file_magic_test_file=/usr/lib/libnls.so ;; *nto* | *qnx*) lt_cv_deplibs_check_method=pass_all ;; openbsd* | bitrig*) if test -z "`echo __ELF__ | $CC -E - | $GREP __ELF__`"; then lt_cv_deplibs_check_method='match_pattern /lib[[^/]]+(\.so\.[[0-9]]+\.[[0-9]]+|\.so|_pic\.a)$' else lt_cv_deplibs_check_method='match_pattern /lib[[^/]]+(\.so\.[[0-9]]+\.[[0-9]]+|_pic\.a)$' fi ;; osf3* | osf4* | osf5*) lt_cv_deplibs_check_method=pass_all ;; rdos*) lt_cv_deplibs_check_method=pass_all ;; solaris*) lt_cv_deplibs_check_method=pass_all ;; sysv5* | sco3.2v5* | sco5v6* | unixware* | OpenUNIX* | sysv4*uw2*) lt_cv_deplibs_check_method=pass_all ;; sysv4 | sysv4.3*) case $host_vendor in motorola) lt_cv_deplibs_check_method='file_magic ELF [[0-9]][[0-9]]*-bit [[ML]]SB (shared object|dynamic lib) M[[0-9]][[0-9]]* Version [[0-9]]' lt_cv_file_magic_test_file=`echo /usr/lib/libc.so*` ;; ncr) lt_cv_deplibs_check_method=pass_all ;; sequent) lt_cv_file_magic_cmd='/bin/file' lt_cv_deplibs_check_method='file_magic ELF [[0-9]][[0-9]]*-bit [[LM]]SB (shared object|dynamic lib )' ;; sni) lt_cv_file_magic_cmd='/bin/file' lt_cv_deplibs_check_method="file_magic ELF [[0-9]][[0-9]]*-bit [[LM]]SB dynamic lib" lt_cv_file_magic_test_file=/lib/libc.so ;; siemens) lt_cv_deplibs_check_method=pass_all ;; pc) lt_cv_deplibs_check_method=pass_all ;; esac ;; tpf*) lt_cv_deplibs_check_method=pass_all ;; os2*) lt_cv_deplibs_check_method=pass_all ;; esac ]) file_magic_glob= want_nocaseglob=no if test "$build" = "$host"; then case $host_os in mingw* | pw32*) if ( shopt | grep nocaseglob ) >/dev/null 2>&1; then want_nocaseglob=yes else file_magic_glob=`echo aAbBcCdDeEfFgGhHiIjJkKlLmMnNoOpPqQrRsStTuUvVwWxXyYzZ | $SED -e "s/\(..\)/s\/[[\1]]\/[[\1]]\/g;/g"` fi ;; esac fi file_magic_cmd=$lt_cv_file_magic_cmd deplibs_check_method=$lt_cv_deplibs_check_method test -z "$deplibs_check_method" && deplibs_check_method=unknown _LT_DECL([], [deplibs_check_method], [1], [Method to check whether dependent libraries are shared objects]) _LT_DECL([], [file_magic_cmd], [1], [Command to use when deplibs_check_method = "file_magic"]) _LT_DECL([], [file_magic_glob], [1], [How to find potential files when deplibs_check_method = "file_magic"]) _LT_DECL([], [want_nocaseglob], [1], [Find potential files using nocaseglob when deplibs_check_method = "file_magic"]) ])# _LT_CHECK_MAGIC_METHOD # LT_PATH_NM # ---------- # find the pathname to a BSD- or MS-compatible name lister AC_DEFUN([LT_PATH_NM], [AC_REQUIRE([AC_PROG_CC])dnl AC_CACHE_CHECK([for BSD- or MS-compatible name lister (nm)], lt_cv_path_NM, [if test -n "$NM"; then # Let the user override the test. lt_cv_path_NM=$NM else lt_nm_to_check=${ac_tool_prefix}nm if test -n "$ac_tool_prefix" && test "$build" = "$host"; then lt_nm_to_check="$lt_nm_to_check nm" fi for lt_tmp_nm in $lt_nm_to_check; do lt_save_ifs=$IFS; IFS=$PATH_SEPARATOR for ac_dir in $PATH /usr/ccs/bin/elf /usr/ccs/bin /usr/ucb /bin; do IFS=$lt_save_ifs test -z "$ac_dir" && ac_dir=. tmp_nm=$ac_dir/$lt_tmp_nm if test -f "$tmp_nm" || test -f "$tmp_nm$ac_exeext"; then # Check to see if the nm accepts a BSD-compat flag. # Adding the 'sed 1q' prevents false positives on HP-UX, which says: # nm: unknown option "B" ignored # Tru64's nm complains that /dev/null is an invalid object file # MSYS converts /dev/null to NUL, MinGW nm treats NUL as empty case $build_os in mingw*) lt_bad_file=conftest.nm/nofile ;; *) lt_bad_file=/dev/null ;; esac case `"$tmp_nm" -B $lt_bad_file 2>&1 | sed '1q'` in *$lt_bad_file* | *'Invalid file or object type'*) lt_cv_path_NM="$tmp_nm -B" break 2 ;; *) case `"$tmp_nm" -p /dev/null 2>&1 | sed '1q'` in */dev/null*) lt_cv_path_NM="$tmp_nm -p" break 2 ;; *) lt_cv_path_NM=${lt_cv_path_NM="$tmp_nm"} # keep the first match, but continue # so that we can try to find one that supports BSD flags ;; esac ;; esac fi done IFS=$lt_save_ifs done : ${lt_cv_path_NM=no} fi]) if test no != "$lt_cv_path_NM"; then NM=$lt_cv_path_NM else # Didn't find any BSD compatible name lister, look for dumpbin. if test -n "$DUMPBIN"; then : # Let the user override the test. else AC_CHECK_TOOLS(DUMPBIN, [dumpbin "link -dump"], :) case `$DUMPBIN -symbols -headers /dev/null 2>&1 | sed '1q'` in *COFF*) DUMPBIN="$DUMPBIN -symbols -headers" ;; *) DUMPBIN=: ;; esac fi AC_SUBST([DUMPBIN]) if test : != "$DUMPBIN"; then NM=$DUMPBIN fi fi test -z "$NM" && NM=nm AC_SUBST([NM]) _LT_DECL([], [NM], [1], [A BSD- or MS-compatible name lister])dnl AC_CACHE_CHECK([the name lister ($NM) interface], [lt_cv_nm_interface], [lt_cv_nm_interface="BSD nm" echo "int some_variable = 0;" > conftest.$ac_ext (eval echo "\"\$as_me:$LINENO: $ac_compile\"" >&AS_MESSAGE_LOG_FD) (eval "$ac_compile" 2>conftest.err) cat conftest.err >&AS_MESSAGE_LOG_FD (eval echo "\"\$as_me:$LINENO: $NM \\\"conftest.$ac_objext\\\"\"" >&AS_MESSAGE_LOG_FD) (eval "$NM \"conftest.$ac_objext\"" 2>conftest.err > conftest.out) cat conftest.err >&AS_MESSAGE_LOG_FD (eval echo "\"\$as_me:$LINENO: output\"" >&AS_MESSAGE_LOG_FD) cat conftest.out >&AS_MESSAGE_LOG_FD if $GREP 'External.*some_variable' conftest.out > /dev/null; then lt_cv_nm_interface="MS dumpbin" fi rm -f conftest*]) ])# LT_PATH_NM # Old names: AU_ALIAS([AM_PROG_NM], [LT_PATH_NM]) AU_ALIAS([AC_PROG_NM], [LT_PATH_NM]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AM_PROG_NM], []) dnl AC_DEFUN([AC_PROG_NM], []) # _LT_CHECK_SHAREDLIB_FROM_LINKLIB # -------------------------------- # how to determine the name of the shared library # associated with a specific link library. # -- PORTME fill in with the dynamic library characteristics m4_defun([_LT_CHECK_SHAREDLIB_FROM_LINKLIB], [m4_require([_LT_DECL_EGREP]) m4_require([_LT_DECL_OBJDUMP]) m4_require([_LT_DECL_DLLTOOL]) AC_CACHE_CHECK([how to associate runtime and link libraries], lt_cv_sharedlib_from_linklib_cmd, [lt_cv_sharedlib_from_linklib_cmd='unknown' case $host_os in cygwin* | mingw* | pw32* | cegcc*) # two different shell functions defined in ltmain.sh; # decide which one to use based on capabilities of $DLLTOOL case `$DLLTOOL --help 2>&1` in *--identify-strict*) lt_cv_sharedlib_from_linklib_cmd=func_cygming_dll_for_implib ;; *) lt_cv_sharedlib_from_linklib_cmd=func_cygming_dll_for_implib_fallback ;; esac ;; *) # fallback: assume linklib IS sharedlib lt_cv_sharedlib_from_linklib_cmd=$ECHO ;; esac ]) sharedlib_from_linklib_cmd=$lt_cv_sharedlib_from_linklib_cmd test -z "$sharedlib_from_linklib_cmd" && sharedlib_from_linklib_cmd=$ECHO _LT_DECL([], [sharedlib_from_linklib_cmd], [1], [Command to associate shared and link libraries]) ])# _LT_CHECK_SHAREDLIB_FROM_LINKLIB # _LT_PATH_MANIFEST_TOOL # ---------------------- # locate the manifest tool m4_defun([_LT_PATH_MANIFEST_TOOL], [AC_CHECK_TOOL(MANIFEST_TOOL, mt, :) test -z "$MANIFEST_TOOL" && MANIFEST_TOOL=mt AC_CACHE_CHECK([if $MANIFEST_TOOL is a manifest tool], [lt_cv_path_mainfest_tool], [lt_cv_path_mainfest_tool=no echo "$as_me:$LINENO: $MANIFEST_TOOL '-?'" >&AS_MESSAGE_LOG_FD $MANIFEST_TOOL '-?' 2>conftest.err > conftest.out cat conftest.err >&AS_MESSAGE_LOG_FD if $GREP 'Manifest Tool' conftest.out > /dev/null; then lt_cv_path_mainfest_tool=yes fi rm -f conftest*]) if test yes != "$lt_cv_path_mainfest_tool"; then MANIFEST_TOOL=: fi _LT_DECL([], [MANIFEST_TOOL], [1], [Manifest tool])dnl ])# _LT_PATH_MANIFEST_TOOL # _LT_DLL_DEF_P([FILE]) # --------------------- # True iff FILE is a Windows DLL '.def' file. # Keep in sync with func_dll_def_p in the libtool script AC_DEFUN([_LT_DLL_DEF_P], [dnl test DEF = "`$SED -n dnl -e '\''s/^[[ ]]*//'\'' dnl Strip leading whitespace -e '\''/^\(;.*\)*$/d'\'' dnl Delete empty lines and comments -e '\''s/^\(EXPORTS\|LIBRARY\)\([[ ]].*\)*$/DEF/p'\'' dnl -e q dnl Only consider the first "real" line $1`" dnl ])# _LT_DLL_DEF_P # LT_LIB_M # -------- # check for math library AC_DEFUN([LT_LIB_M], [AC_REQUIRE([AC_CANONICAL_HOST])dnl LIBM= case $host in *-*-beos* | *-*-cegcc* | *-*-cygwin* | *-*-haiku* | *-*-pw32* | *-*-darwin*) # These system don't have libm, or don't need it ;; *-ncr-sysv4.3*) AC_CHECK_LIB(mw, _mwvalidcheckl, LIBM=-lmw) AC_CHECK_LIB(m, cos, LIBM="$LIBM -lm") ;; *) AC_CHECK_LIB(m, cos, LIBM=-lm) ;; esac AC_SUBST([LIBM]) ])# LT_LIB_M # Old name: AU_ALIAS([AC_CHECK_LIBM], [LT_LIB_M]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AC_CHECK_LIBM], []) # _LT_COMPILER_NO_RTTI([TAGNAME]) # ------------------------------- m4_defun([_LT_COMPILER_NO_RTTI], [m4_require([_LT_TAG_COMPILER])dnl _LT_TAGVAR(lt_prog_compiler_no_builtin_flag, $1)= if test yes = "$GCC"; then case $cc_basename in nvcc*) _LT_TAGVAR(lt_prog_compiler_no_builtin_flag, $1)=' -Xcompiler -fno-builtin' ;; *) _LT_TAGVAR(lt_prog_compiler_no_builtin_flag, $1)=' -fno-builtin' ;; esac _LT_COMPILER_OPTION([if $compiler supports -fno-rtti -fno-exceptions], lt_cv_prog_compiler_rtti_exceptions, [-fno-rtti -fno-exceptions], [], [_LT_TAGVAR(lt_prog_compiler_no_builtin_flag, $1)="$_LT_TAGVAR(lt_prog_compiler_no_builtin_flag, $1) -fno-rtti -fno-exceptions"]) fi _LT_TAGDECL([no_builtin_flag], [lt_prog_compiler_no_builtin_flag], [1], [Compiler flag to turn off builtin functions]) ])# _LT_COMPILER_NO_RTTI # _LT_CMD_GLOBAL_SYMBOLS # ---------------------- m4_defun([_LT_CMD_GLOBAL_SYMBOLS], [AC_REQUIRE([AC_CANONICAL_HOST])dnl AC_REQUIRE([AC_PROG_CC])dnl AC_REQUIRE([AC_PROG_AWK])dnl AC_REQUIRE([LT_PATH_NM])dnl AC_REQUIRE([LT_PATH_LD])dnl m4_require([_LT_DECL_SED])dnl m4_require([_LT_DECL_EGREP])dnl m4_require([_LT_TAG_COMPILER])dnl # Check for command to grab the raw symbol name followed by C symbol from nm. AC_MSG_CHECKING([command to parse $NM output from $compiler object]) AC_CACHE_VAL([lt_cv_sys_global_symbol_pipe], [ # These are sane defaults that work on at least a few old systems. # [They come from Ultrix. What could be older than Ultrix?!! ;)] # Character class describing NM global symbol codes. symcode='[[BCDEGRST]]' # Regexp to match symbols that can be accessed directly from C. sympat='\([[_A-Za-z]][[_A-Za-z0-9]]*\)' # Define system-specific variables. case $host_os in aix*) symcode='[[BCDT]]' ;; cygwin* | mingw* | pw32* | cegcc*) symcode='[[ABCDGISTW]]' ;; hpux*) if test ia64 = "$host_cpu"; then symcode='[[ABCDEGRST]]' fi ;; irix* | nonstopux*) symcode='[[BCDEGRST]]' ;; osf*) symcode='[[BCDEGQRST]]' ;; solaris*) symcode='[[BDRT]]' ;; sco3.2v5*) symcode='[[DT]]' ;; sysv4.2uw2*) symcode='[[DT]]' ;; sysv5* | sco5v6* | unixware* | OpenUNIX*) symcode='[[ABDT]]' ;; sysv4) symcode='[[DFNSTU]]' ;; esac # If we're using GNU nm, then use its standard symbol codes. case `$NM -V 2>&1` in *GNU* | *'with BFD'*) symcode='[[ABCDGIRSTW]]' ;; esac if test "$lt_cv_nm_interface" = "MS dumpbin"; then # Gets list of data symbols to import. lt_cv_sys_global_symbol_to_import="sed -n -e 's/^I .* \(.*\)$/\1/p'" # Adjust the below global symbol transforms to fixup imported variables. lt_cdecl_hook=" -e 's/^I .* \(.*\)$/extern __declspec(dllimport) char \1;/p'" lt_c_name_hook=" -e 's/^I .* \(.*\)$/ {\"\1\", (void *) 0},/p'" lt_c_name_lib_hook="\ -e 's/^I .* \(lib.*\)$/ {\"\1\", (void *) 0},/p'\ -e 's/^I .* \(.*\)$/ {\"lib\1\", (void *) 0},/p'" else # Disable hooks by default. lt_cv_sys_global_symbol_to_import= lt_cdecl_hook= lt_c_name_hook= lt_c_name_lib_hook= fi # Transform an extracted symbol line into a proper C declaration. # Some systems (esp. on ia64) link data and code symbols differently, # so use this general approach. lt_cv_sys_global_symbol_to_cdecl="sed -n"\ $lt_cdecl_hook\ " -e 's/^T .* \(.*\)$/extern int \1();/p'"\ " -e 's/^$symcode$symcode* .* \(.*\)$/extern char \1;/p'" # Transform an extracted symbol line into symbol name and symbol address lt_cv_sys_global_symbol_to_c_name_address="sed -n"\ $lt_c_name_hook\ " -e 's/^: \(.*\) .*$/ {\"\1\", (void *) 0},/p'"\ " -e 's/^$symcode$symcode* .* \(.*\)$/ {\"\1\", (void *) \&\1},/p'" # Transform an extracted symbol line into symbol name with lib prefix and # symbol address. lt_cv_sys_global_symbol_to_c_name_address_lib_prefix="sed -n"\ $lt_c_name_lib_hook\ " -e 's/^: \(.*\) .*$/ {\"\1\", (void *) 0},/p'"\ " -e 's/^$symcode$symcode* .* \(lib.*\)$/ {\"\1\", (void *) \&\1},/p'"\ " -e 's/^$symcode$symcode* .* \(.*\)$/ {\"lib\1\", (void *) \&\1},/p'" # Handle CRLF in mingw tool chain opt_cr= case $build_os in mingw*) opt_cr=`$ECHO 'x\{0,1\}' | tr x '\015'` # option cr in regexp ;; esac # Try without a prefix underscore, then with it. for ac_symprfx in "" "_"; do # Transform symcode, sympat, and symprfx into a raw symbol and a C symbol. symxfrm="\\1 $ac_symprfx\\2 \\2" # Write the raw and C identifiers. if test "$lt_cv_nm_interface" = "MS dumpbin"; then # Fake it for dumpbin and say T for any non-static function, # D for any global variable and I for any imported variable. # Also find C++ and __fastcall symbols from MSVC++, # which start with @ or ?. lt_cv_sys_global_symbol_pipe="$AWK ['"\ " {last_section=section; section=\$ 3};"\ " /^COFF SYMBOL TABLE/{for(i in hide) delete hide[i]};"\ " /Section length .*#relocs.*(pick any)/{hide[last_section]=1};"\ " /^ *Symbol name *: /{split(\$ 0,sn,\":\"); si=substr(sn[2],2)};"\ " /^ *Type *: code/{print \"T\",si,substr(si,length(prfx))};"\ " /^ *Type *: data/{print \"I\",si,substr(si,length(prfx))};"\ " \$ 0!~/External *\|/{next};"\ " / 0+ UNDEF /{next}; / UNDEF \([^|]\)*()/{next};"\ " {if(hide[section]) next};"\ " {f=\"D\"}; \$ 0~/\(\).*\|/{f=\"T\"};"\ " {split(\$ 0,a,/\||\r/); split(a[2],s)};"\ " s[1]~/^[@?]/{print f,s[1],s[1]; next};"\ " s[1]~prfx {split(s[1],t,\"@\"); print f,t[1],substr(t[1],length(prfx))}"\ " ' prfx=^$ac_symprfx]" else lt_cv_sys_global_symbol_pipe="sed -n -e 's/^.*[[ ]]\($symcode$symcode*\)[[ ]][[ ]]*$ac_symprfx$sympat$opt_cr$/$symxfrm/p'" fi lt_cv_sys_global_symbol_pipe="$lt_cv_sys_global_symbol_pipe | sed '/ __gnu_lto/d'" # Check to see that the pipe works correctly. pipe_works=no rm -f conftest* cat > conftest.$ac_ext <<_LT_EOF #ifdef __cplusplus extern "C" { #endif char nm_test_var; void nm_test_func(void); void nm_test_func(void){} #ifdef __cplusplus } #endif int main(){nm_test_var='a';nm_test_func();return(0);} _LT_EOF if AC_TRY_EVAL(ac_compile); then # Now try to grab the symbols. nlist=conftest.nm if AC_TRY_EVAL(NM conftest.$ac_objext \| "$lt_cv_sys_global_symbol_pipe" \> $nlist) && test -s "$nlist"; then # Try sorting and uniquifying the output. if sort "$nlist" | uniq > "$nlist"T; then mv -f "$nlist"T "$nlist" else rm -f "$nlist"T fi # Make sure that we snagged all the symbols we need. if $GREP ' nm_test_var$' "$nlist" >/dev/null; then if $GREP ' nm_test_func$' "$nlist" >/dev/null; then cat <<_LT_EOF > conftest.$ac_ext /* Keep this code in sync between libtool.m4, ltmain, lt_system.h, and tests. */ #if defined _WIN32 || defined __CYGWIN__ || defined _WIN32_WCE /* DATA imports from DLLs on WIN32 can't be const, because runtime relocations are performed -- see ld's documentation on pseudo-relocs. */ # define LT@&t@_DLSYM_CONST #elif defined __osf__ /* This system does not cope well with relocations in const data. */ # define LT@&t@_DLSYM_CONST #else # define LT@&t@_DLSYM_CONST const #endif #ifdef __cplusplus extern "C" { #endif _LT_EOF # Now generate the symbol file. eval "$lt_cv_sys_global_symbol_to_cdecl"' < "$nlist" | $GREP -v main >> conftest.$ac_ext' cat <<_LT_EOF >> conftest.$ac_ext /* The mapping between symbol names and symbols. */ LT@&t@_DLSYM_CONST struct { const char *name; void *address; } lt__PROGRAM__LTX_preloaded_symbols[[]] = { { "@PROGRAM@", (void *) 0 }, _LT_EOF $SED "s/^$symcode$symcode* .* \(.*\)$/ {\"\1\", (void *) \&\1},/" < "$nlist" | $GREP -v main >> conftest.$ac_ext cat <<\_LT_EOF >> conftest.$ac_ext {0, (void *) 0} }; /* This works around a problem in FreeBSD linker */ #ifdef FREEBSD_WORKAROUND static const void *lt_preloaded_setup() { return lt__PROGRAM__LTX_preloaded_symbols; } #endif #ifdef __cplusplus } #endif _LT_EOF # Now try linking the two files. mv conftest.$ac_objext conftstm.$ac_objext lt_globsym_save_LIBS=$LIBS lt_globsym_save_CFLAGS=$CFLAGS LIBS=conftstm.$ac_objext CFLAGS="$CFLAGS$_LT_TAGVAR(lt_prog_compiler_no_builtin_flag, $1)" if AC_TRY_EVAL(ac_link) && test -s conftest$ac_exeext; then pipe_works=yes fi LIBS=$lt_globsym_save_LIBS CFLAGS=$lt_globsym_save_CFLAGS else echo "cannot find nm_test_func in $nlist" >&AS_MESSAGE_LOG_FD fi else echo "cannot find nm_test_var in $nlist" >&AS_MESSAGE_LOG_FD fi else echo "cannot run $lt_cv_sys_global_symbol_pipe" >&AS_MESSAGE_LOG_FD fi else echo "$progname: failed program was:" >&AS_MESSAGE_LOG_FD cat conftest.$ac_ext >&5 fi rm -rf conftest* conftst* # Do not use the global_symbol_pipe unless it works. if test yes = "$pipe_works"; then break else lt_cv_sys_global_symbol_pipe= fi done ]) if test -z "$lt_cv_sys_global_symbol_pipe"; then lt_cv_sys_global_symbol_to_cdecl= fi if test -z "$lt_cv_sys_global_symbol_pipe$lt_cv_sys_global_symbol_to_cdecl"; then AC_MSG_RESULT(failed) else AC_MSG_RESULT(ok) fi # Response file support. if test "$lt_cv_nm_interface" = "MS dumpbin"; then nm_file_list_spec='@' elif $NM --help 2>/dev/null | grep '[[@]]FILE' >/dev/null; then nm_file_list_spec='@' fi _LT_DECL([global_symbol_pipe], [lt_cv_sys_global_symbol_pipe], [1], [Take the output of nm and produce a listing of raw symbols and C names]) _LT_DECL([global_symbol_to_cdecl], [lt_cv_sys_global_symbol_to_cdecl], [1], [Transform the output of nm in a proper C declaration]) _LT_DECL([global_symbol_to_import], [lt_cv_sys_global_symbol_to_import], [1], [Transform the output of nm into a list of symbols to manually relocate]) _LT_DECL([global_symbol_to_c_name_address], [lt_cv_sys_global_symbol_to_c_name_address], [1], [Transform the output of nm in a C name address pair]) _LT_DECL([global_symbol_to_c_name_address_lib_prefix], [lt_cv_sys_global_symbol_to_c_name_address_lib_prefix], [1], [Transform the output of nm in a C name address pair when lib prefix is needed]) _LT_DECL([nm_interface], [lt_cv_nm_interface], [1], [The name lister interface]) _LT_DECL([], [nm_file_list_spec], [1], [Specify filename containing input files for $NM]) ]) # _LT_CMD_GLOBAL_SYMBOLS # _LT_COMPILER_PIC([TAGNAME]) # --------------------------- m4_defun([_LT_COMPILER_PIC], [m4_require([_LT_TAG_COMPILER])dnl _LT_TAGVAR(lt_prog_compiler_wl, $1)= _LT_TAGVAR(lt_prog_compiler_pic, $1)= _LT_TAGVAR(lt_prog_compiler_static, $1)= m4_if([$1], [CXX], [ # C++ specific cases for pic, static, wl, etc. if test yes = "$GXX"; then _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_static, $1)='-static' case $host_os in aix*) # All AIX code is PIC. if test ia64 = "$host_cpu"; then # AIX 5 now supports IA64 processor _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' fi _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC' ;; amigaos*) case $host_cpu in powerpc) # see comment about AmigaOS4 .so support _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC' ;; m68k) # FIXME: we need at least 68020 code to build shared libraries, but # adding the '-m68020' flag to GCC prevents building anything better, # like '-m68040'. _LT_TAGVAR(lt_prog_compiler_pic, $1)='-m68020 -resident32 -malways-restore-a4' ;; esac ;; beos* | irix5* | irix6* | nonstopux* | osf3* | osf4* | osf5*) # PIC is the default for these OSes. ;; mingw* | cygwin* | os2* | pw32* | cegcc*) # This hack is so that the source file can tell whether it is being # built for inclusion in a dll (and should export symbols for example). # Although the cygwin gcc ignores -fPIC, still need this for old-style # (--disable-auto-import) libraries m4_if([$1], [GCJ], [], [_LT_TAGVAR(lt_prog_compiler_pic, $1)='-DDLL_EXPORT']) case $host_os in os2*) _LT_TAGVAR(lt_prog_compiler_static, $1)='$wl-static' ;; esac ;; darwin* | rhapsody*) # PIC is the default on this platform # Common symbols not allowed in MH_DYLIB files _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fno-common' ;; *djgpp*) # DJGPP does not support shared libraries at all _LT_TAGVAR(lt_prog_compiler_pic, $1)= ;; haiku*) # PIC is the default for Haiku. # The "-static" flag exists, but is broken. _LT_TAGVAR(lt_prog_compiler_static, $1)= ;; interix[[3-9]]*) # Interix 3.x gcc -fpic/-fPIC options generate broken code. # Instead, we relocate shared libraries at runtime. ;; sysv4*MP*) if test -d /usr/nec; then _LT_TAGVAR(lt_prog_compiler_pic, $1)=-Kconform_pic fi ;; hpux*) # PIC is the default for 64-bit PA HP-UX, but not for 32-bit # PA HP-UX. On IA64 HP-UX, PIC is the default but the pic flag # sets the default TLS model and affects inlining. case $host_cpu in hppa*64*) ;; *) _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC' ;; esac ;; *qnx* | *nto*) # QNX uses GNU C++, but need to define -shared option too, otherwise # it will coredump. _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC -shared' ;; *) _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC' ;; esac else case $host_os in aix[[4-9]]*) # All AIX code is PIC. if test ia64 = "$host_cpu"; then # AIX 5 now supports IA64 processor _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' else _LT_TAGVAR(lt_prog_compiler_static, $1)='-bnso -bI:/lib/syscalls.exp' fi ;; chorus*) case $cc_basename in cxch68*) # Green Hills C++ Compiler # _LT_TAGVAR(lt_prog_compiler_static, $1)="--no_auto_instantiation -u __main -u __premain -u _abort -r $COOL_DIR/lib/libOrb.a $MVME_DIR/lib/CC/libC.a $MVME_DIR/lib/classix/libcx.s.a" ;; esac ;; mingw* | cygwin* | os2* | pw32* | cegcc*) # This hack is so that the source file can tell whether it is being # built for inclusion in a dll (and should export symbols for example). m4_if([$1], [GCJ], [], [_LT_TAGVAR(lt_prog_compiler_pic, $1)='-DDLL_EXPORT']) ;; dgux*) case $cc_basename in ec++*) _LT_TAGVAR(lt_prog_compiler_pic, $1)='-KPIC' ;; ghcx*) # Green Hills C++ Compiler _LT_TAGVAR(lt_prog_compiler_pic, $1)='-pic' ;; *) ;; esac ;; freebsd* | dragonfly*) # FreeBSD uses GNU C++ ;; hpux9* | hpux10* | hpux11*) case $cc_basename in CC*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_static, $1)='$wl-a ${wl}archive' if test ia64 != "$host_cpu"; then _LT_TAGVAR(lt_prog_compiler_pic, $1)='+Z' fi ;; aCC*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_static, $1)='$wl-a ${wl}archive' case $host_cpu in hppa*64*|ia64*) # +Z the default ;; *) _LT_TAGVAR(lt_prog_compiler_pic, $1)='+Z' ;; esac ;; *) ;; esac ;; interix*) # This is c89, which is MS Visual C++ (no shared libs) # Anyone wants to do a port? ;; irix5* | irix6* | nonstopux*) case $cc_basename in CC*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_static, $1)='-non_shared' # CC pic flag -KPIC is the default. ;; *) ;; esac ;; linux* | k*bsd*-gnu | kopensolaris*-gnu | gnu*) case $cc_basename in KCC*) # KAI C++ Compiler _LT_TAGVAR(lt_prog_compiler_wl, $1)='--backend -Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC' ;; ecpc* ) # old Intel C++ for x86_64, which still supported -KPIC. _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-KPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-static' ;; icpc* ) # Intel C++, used to be incompatible with GCC. # ICC 10 doesn't accept -KPIC any more. _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-static' ;; pgCC* | pgcpp*) # Portland Group C++ compiler _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fpic' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' ;; cxx*) # Compaq C++ # Make sure the PIC flag is empty. It appears that all Alpha # Linux and Compaq Tru64 Unix objects are PIC. _LT_TAGVAR(lt_prog_compiler_pic, $1)= _LT_TAGVAR(lt_prog_compiler_static, $1)='-non_shared' ;; xlc* | xlC* | bgxl[[cC]]* | mpixl[[cC]]*) # IBM XL 8.0, 9.0 on PPC and BlueGene _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-qpic' _LT_TAGVAR(lt_prog_compiler_static, $1)='-qstaticlink' ;; *) case `$CC -V 2>&1 | sed 5q` in *Sun\ C*) # Sun C++ 5.9 _LT_TAGVAR(lt_prog_compiler_pic, $1)='-KPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Qoption ld ' ;; esac ;; esac ;; lynxos*) ;; m88k*) ;; mvs*) case $cc_basename in cxx*) _LT_TAGVAR(lt_prog_compiler_pic, $1)='-W c,exportall' ;; *) ;; esac ;; netbsd*) ;; *qnx* | *nto*) # QNX uses GNU C++, but need to define -shared option too, otherwise # it will coredump. _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC -shared' ;; osf3* | osf4* | osf5*) case $cc_basename in KCC*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='--backend -Wl,' ;; RCC*) # Rational C++ 2.4.1 _LT_TAGVAR(lt_prog_compiler_pic, $1)='-pic' ;; cxx*) # Digital/Compaq C++ _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' # Make sure the PIC flag is empty. It appears that all Alpha # Linux and Compaq Tru64 Unix objects are PIC. _LT_TAGVAR(lt_prog_compiler_pic, $1)= _LT_TAGVAR(lt_prog_compiler_static, $1)='-non_shared' ;; *) ;; esac ;; psos*) ;; solaris*) case $cc_basename in CC* | sunCC*) # Sun C++ 4.2, 5.x and Centerline C++ _LT_TAGVAR(lt_prog_compiler_pic, $1)='-KPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Qoption ld ' ;; gcx*) # Green Hills C++ Compiler _LT_TAGVAR(lt_prog_compiler_pic, $1)='-PIC' ;; *) ;; esac ;; sunos4*) case $cc_basename in CC*) # Sun C++ 4.x _LT_TAGVAR(lt_prog_compiler_pic, $1)='-pic' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' ;; lcc*) # Lucid _LT_TAGVAR(lt_prog_compiler_pic, $1)='-pic' ;; *) ;; esac ;; sysv5* | unixware* | sco3.2v5* | sco5v6* | OpenUNIX*) case $cc_basename in CC*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-KPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' ;; esac ;; tandem*) case $cc_basename in NCC*) # NonStop-UX NCC 3.20 _LT_TAGVAR(lt_prog_compiler_pic, $1)='-KPIC' ;; *) ;; esac ;; vxworks*) ;; *) _LT_TAGVAR(lt_prog_compiler_can_build_shared, $1)=no ;; esac fi ], [ if test yes = "$GCC"; then _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_static, $1)='-static' case $host_os in aix*) # All AIX code is PIC. if test ia64 = "$host_cpu"; then # AIX 5 now supports IA64 processor _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' fi _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC' ;; amigaos*) case $host_cpu in powerpc) # see comment about AmigaOS4 .so support _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC' ;; m68k) # FIXME: we need at least 68020 code to build shared libraries, but # adding the '-m68020' flag to GCC prevents building anything better, # like '-m68040'. _LT_TAGVAR(lt_prog_compiler_pic, $1)='-m68020 -resident32 -malways-restore-a4' ;; esac ;; beos* | irix5* | irix6* | nonstopux* | osf3* | osf4* | osf5*) # PIC is the default for these OSes. ;; mingw* | cygwin* | pw32* | os2* | cegcc*) # This hack is so that the source file can tell whether it is being # built for inclusion in a dll (and should export symbols for example). # Although the cygwin gcc ignores -fPIC, still need this for old-style # (--disable-auto-import) libraries m4_if([$1], [GCJ], [], [_LT_TAGVAR(lt_prog_compiler_pic, $1)='-DDLL_EXPORT']) case $host_os in os2*) _LT_TAGVAR(lt_prog_compiler_static, $1)='$wl-static' ;; esac ;; darwin* | rhapsody*) # PIC is the default on this platform # Common symbols not allowed in MH_DYLIB files _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fno-common' ;; haiku*) # PIC is the default for Haiku. # The "-static" flag exists, but is broken. _LT_TAGVAR(lt_prog_compiler_static, $1)= ;; hpux*) # PIC is the default for 64-bit PA HP-UX, but not for 32-bit # PA HP-UX. On IA64 HP-UX, PIC is the default but the pic flag # sets the default TLS model and affects inlining. case $host_cpu in hppa*64*) # +Z the default ;; *) _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC' ;; esac ;; interix[[3-9]]*) # Interix 3.x gcc -fpic/-fPIC options generate broken code. # Instead, we relocate shared libraries at runtime. ;; msdosdjgpp*) # Just because we use GCC doesn't mean we suddenly get shared libraries # on systems that don't support them. _LT_TAGVAR(lt_prog_compiler_can_build_shared, $1)=no enable_shared=no ;; *nto* | *qnx*) # QNX uses GNU C++, but need to define -shared option too, otherwise # it will coredump. _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC -shared' ;; sysv4*MP*) if test -d /usr/nec; then _LT_TAGVAR(lt_prog_compiler_pic, $1)=-Kconform_pic fi ;; *) _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC' ;; esac case $cc_basename in nvcc*) # Cuda Compiler Driver 2.2 _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Xlinker ' if test -n "$_LT_TAGVAR(lt_prog_compiler_pic, $1)"; then _LT_TAGVAR(lt_prog_compiler_pic, $1)="-Xcompiler $_LT_TAGVAR(lt_prog_compiler_pic, $1)" fi ;; esac else # PORTME Check for flag to pass linker flags through the system compiler. case $host_os in aix*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' if test ia64 = "$host_cpu"; then # AIX 5 now supports IA64 processor _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' else _LT_TAGVAR(lt_prog_compiler_static, $1)='-bnso -bI:/lib/syscalls.exp' fi ;; darwin* | rhapsody*) # PIC is the default on this platform # Common symbols not allowed in MH_DYLIB files _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fno-common' case $cc_basename in nagfor*) # NAG Fortran compiler _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,-Wl,,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-PIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' ;; esac ;; mingw* | cygwin* | pw32* | os2* | cegcc*) # This hack is so that the source file can tell whether it is being # built for inclusion in a dll (and should export symbols for example). m4_if([$1], [GCJ], [], [_LT_TAGVAR(lt_prog_compiler_pic, $1)='-DDLL_EXPORT']) case $host_os in os2*) _LT_TAGVAR(lt_prog_compiler_static, $1)='$wl-static' ;; esac ;; hpux9* | hpux10* | hpux11*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' # PIC is the default for IA64 HP-UX and 64-bit HP-UX, but # not for PA HP-UX. case $host_cpu in hppa*64*|ia64*) # +Z the default ;; *) _LT_TAGVAR(lt_prog_compiler_pic, $1)='+Z' ;; esac # Is there a better lt_prog_compiler_static that works with the bundled CC? _LT_TAGVAR(lt_prog_compiler_static, $1)='$wl-a ${wl}archive' ;; irix5* | irix6* | nonstopux*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' # PIC (with -KPIC) is the default. _LT_TAGVAR(lt_prog_compiler_static, $1)='-non_shared' ;; linux* | k*bsd*-gnu | kopensolaris*-gnu | gnu*) case $cc_basename in # old Intel for x86_64, which still supported -KPIC. ecc*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-KPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-static' ;; # icc used to be incompatible with GCC. # ICC 10 doesn't accept -KPIC any more. icc* | ifort*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-static' ;; # Lahey Fortran 8.1. lf95*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='--shared' _LT_TAGVAR(lt_prog_compiler_static, $1)='--static' ;; nagfor*) # NAG Fortran compiler _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,-Wl,,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-PIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' ;; tcc*) # Fabrice Bellard et al's Tiny C Compiler _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-static' ;; pgcc* | pgf77* | pgf90* | pgf95* | pgfortran*) # Portland Group compilers (*not* the Pentium gcc compiler, # which looks to be a dead project) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fpic' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' ;; ccc*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' # All Alpha code is PIC. _LT_TAGVAR(lt_prog_compiler_static, $1)='-non_shared' ;; xl* | bgxl* | bgf* | mpixl*) # IBM XL C 8.0/Fortran 10.1, 11.1 on PPC and BlueGene _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-qpic' _LT_TAGVAR(lt_prog_compiler_static, $1)='-qstaticlink' ;; *) case `$CC -V 2>&1 | sed 5q` in *Sun\ Ceres\ Fortran* | *Sun*Fortran*\ [[1-7]].* | *Sun*Fortran*\ 8.[[0-3]]*) # Sun Fortran 8.3 passes all unrecognized flags to the linker _LT_TAGVAR(lt_prog_compiler_pic, $1)='-KPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' _LT_TAGVAR(lt_prog_compiler_wl, $1)='' ;; *Sun\ F* | *Sun*Fortran*) _LT_TAGVAR(lt_prog_compiler_pic, $1)='-KPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Qoption ld ' ;; *Sun\ C*) # Sun C 5.9 _LT_TAGVAR(lt_prog_compiler_pic, $1)='-KPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' ;; *Intel*\ [[CF]]*Compiler*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-static' ;; *Portland\ Group*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fpic' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' ;; esac ;; esac ;; newsos6) _LT_TAGVAR(lt_prog_compiler_pic, $1)='-KPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' ;; *nto* | *qnx*) # QNX uses GNU C++, but need to define -shared option too, otherwise # it will coredump. _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC -shared' ;; osf3* | osf4* | osf5*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' # All OSF/1 code is PIC. _LT_TAGVAR(lt_prog_compiler_static, $1)='-non_shared' ;; rdos*) _LT_TAGVAR(lt_prog_compiler_static, $1)='-non_shared' ;; solaris*) _LT_TAGVAR(lt_prog_compiler_pic, $1)='-KPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' case $cc_basename in f77* | f90* | f95* | sunf77* | sunf90* | sunf95*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Qoption ld ';; *) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,';; esac ;; sunos4*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Qoption ld ' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-PIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' ;; sysv4 | sysv4.2uw2* | sysv4.3*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-KPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' ;; sysv4*MP*) if test -d /usr/nec; then _LT_TAGVAR(lt_prog_compiler_pic, $1)='-Kconform_pic' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' fi ;; sysv5* | unixware* | sco3.2v5* | sco5v6* | OpenUNIX*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-KPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' ;; unicos*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_can_build_shared, $1)=no ;; uts4*) _LT_TAGVAR(lt_prog_compiler_pic, $1)='-pic' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' ;; *) _LT_TAGVAR(lt_prog_compiler_can_build_shared, $1)=no ;; esac fi ]) case $host_os in # For platforms that do not support PIC, -DPIC is meaningless: *djgpp*) _LT_TAGVAR(lt_prog_compiler_pic, $1)= ;; *) _LT_TAGVAR(lt_prog_compiler_pic, $1)="$_LT_TAGVAR(lt_prog_compiler_pic, $1)@&t@m4_if([$1],[],[ -DPIC],[m4_if([$1],[CXX],[ -DPIC],[])])" ;; esac AC_CACHE_CHECK([for $compiler option to produce PIC], [_LT_TAGVAR(lt_cv_prog_compiler_pic, $1)], [_LT_TAGVAR(lt_cv_prog_compiler_pic, $1)=$_LT_TAGVAR(lt_prog_compiler_pic, $1)]) _LT_TAGVAR(lt_prog_compiler_pic, $1)=$_LT_TAGVAR(lt_cv_prog_compiler_pic, $1) # # Check to make sure the PIC flag actually works. # if test -n "$_LT_TAGVAR(lt_prog_compiler_pic, $1)"; then _LT_COMPILER_OPTION([if $compiler PIC flag $_LT_TAGVAR(lt_prog_compiler_pic, $1) works], [_LT_TAGVAR(lt_cv_prog_compiler_pic_works, $1)], [$_LT_TAGVAR(lt_prog_compiler_pic, $1)@&t@m4_if([$1],[],[ -DPIC],[m4_if([$1],[CXX],[ -DPIC],[])])], [], [case $_LT_TAGVAR(lt_prog_compiler_pic, $1) in "" | " "*) ;; *) _LT_TAGVAR(lt_prog_compiler_pic, $1)=" $_LT_TAGVAR(lt_prog_compiler_pic, $1)" ;; esac], [_LT_TAGVAR(lt_prog_compiler_pic, $1)= _LT_TAGVAR(lt_prog_compiler_can_build_shared, $1)=no]) fi _LT_TAGDECL([pic_flag], [lt_prog_compiler_pic], [1], [Additional compiler flags for building library objects]) _LT_TAGDECL([wl], [lt_prog_compiler_wl], [1], [How to pass a linker flag through the compiler]) # # Check to make sure the static flag actually works. # wl=$_LT_TAGVAR(lt_prog_compiler_wl, $1) eval lt_tmp_static_flag=\"$_LT_TAGVAR(lt_prog_compiler_static, $1)\" _LT_LINKER_OPTION([if $compiler static flag $lt_tmp_static_flag works], _LT_TAGVAR(lt_cv_prog_compiler_static_works, $1), $lt_tmp_static_flag, [], [_LT_TAGVAR(lt_prog_compiler_static, $1)=]) _LT_TAGDECL([link_static_flag], [lt_prog_compiler_static], [1], [Compiler flag to prevent dynamic linking]) ])# _LT_COMPILER_PIC # _LT_LINKER_SHLIBS([TAGNAME]) # ---------------------------- # See if the linker supports building shared libraries. m4_defun([_LT_LINKER_SHLIBS], [AC_REQUIRE([LT_PATH_LD])dnl AC_REQUIRE([LT_PATH_NM])dnl m4_require([_LT_PATH_MANIFEST_TOOL])dnl m4_require([_LT_FILEUTILS_DEFAULTS])dnl m4_require([_LT_DECL_EGREP])dnl m4_require([_LT_DECL_SED])dnl m4_require([_LT_CMD_GLOBAL_SYMBOLS])dnl m4_require([_LT_TAG_COMPILER])dnl AC_MSG_CHECKING([whether the $compiler linker ($LD) supports shared libraries]) m4_if([$1], [CXX], [ _LT_TAGVAR(export_symbols_cmds, $1)='$NM $libobjs $convenience | $global_symbol_pipe | $SED '\''s/.* //'\'' | sort | uniq > $export_symbols' _LT_TAGVAR(exclude_expsyms, $1)=['_GLOBAL_OFFSET_TABLE_|_GLOBAL__F[ID]_.*'] case $host_os in aix[[4-9]]*) # If we're using GNU nm, then we don't want the "-C" option. # -C means demangle to GNU nm, but means don't demangle to AIX nm. # Without the "-l" option, or with the "-B" option, AIX nm treats # weak defined symbols like other global defined symbols, whereas # GNU nm marks them as "W". # While the 'weak' keyword is ignored in the Export File, we need # it in the Import File for the 'aix-soname' feature, so we have # to replace the "-B" option with "-P" for AIX nm. if $NM -V 2>&1 | $GREP 'GNU' > /dev/null; then _LT_TAGVAR(export_symbols_cmds, $1)='$NM -Bpg $libobjs $convenience | awk '\''{ if (((\$ 2 == "T") || (\$ 2 == "D") || (\$ 2 == "B") || (\$ 2 == "W")) && ([substr](\$ 3,1,1) != ".")) { if (\$ 2 == "W") { print \$ 3 " weak" } else { print \$ 3 } } }'\'' | sort -u > $export_symbols' else _LT_TAGVAR(export_symbols_cmds, $1)='`func_echo_all $NM | $SED -e '\''s/B\([[^B]]*\)$/P\1/'\''` -PCpgl $libobjs $convenience | awk '\''{ if (((\$ 2 == "T") || (\$ 2 == "D") || (\$ 2 == "B") || (\$ 2 == "W") || (\$ 2 == "V") || (\$ 2 == "Z")) && ([substr](\$ 1,1,1) != ".")) { if ((\$ 2 == "W") || (\$ 2 == "V") || (\$ 2 == "Z")) { print \$ 1 " weak" } else { print \$ 1 } } }'\'' | sort -u > $export_symbols' fi ;; pw32*) _LT_TAGVAR(export_symbols_cmds, $1)=$ltdll_cmds ;; cygwin* | mingw* | cegcc*) case $cc_basename in cl*) _LT_TAGVAR(exclude_expsyms, $1)='_NULL_IMPORT_DESCRIPTOR|_IMPORT_DESCRIPTOR_.*' ;; *) _LT_TAGVAR(export_symbols_cmds, $1)='$NM $libobjs $convenience | $global_symbol_pipe | $SED -e '\''/^[[BCDGRS]][[ ]]/s/.*[[ ]]\([[^ ]]*\)/\1 DATA/;s/^.*[[ ]]__nm__\([[^ ]]*\)[[ ]][[^ ]]*/\1 DATA/;/^I[[ ]]/d;/^[[AITW]][[ ]]/s/.* //'\'' | sort | uniq > $export_symbols' _LT_TAGVAR(exclude_expsyms, $1)=['[_]+GLOBAL_OFFSET_TABLE_|[_]+GLOBAL__[FID]_.*|[_]+head_[A-Za-z0-9_]+_dll|[A-Za-z0-9_]+_dll_iname'] ;; esac ;; *) _LT_TAGVAR(export_symbols_cmds, $1)='$NM $libobjs $convenience | $global_symbol_pipe | $SED '\''s/.* //'\'' | sort | uniq > $export_symbols' ;; esac ], [ runpath_var= _LT_TAGVAR(allow_undefined_flag, $1)= _LT_TAGVAR(always_export_symbols, $1)=no _LT_TAGVAR(archive_cmds, $1)= _LT_TAGVAR(archive_expsym_cmds, $1)= _LT_TAGVAR(compiler_needs_object, $1)=no _LT_TAGVAR(enable_shared_with_static_runtimes, $1)=no _LT_TAGVAR(export_dynamic_flag_spec, $1)= _LT_TAGVAR(export_symbols_cmds, $1)='$NM $libobjs $convenience | $global_symbol_pipe | $SED '\''s/.* //'\'' | sort | uniq > $export_symbols' _LT_TAGVAR(hardcode_automatic, $1)=no _LT_TAGVAR(hardcode_direct, $1)=no _LT_TAGVAR(hardcode_direct_absolute, $1)=no _LT_TAGVAR(hardcode_libdir_flag_spec, $1)= _LT_TAGVAR(hardcode_libdir_separator, $1)= _LT_TAGVAR(hardcode_minus_L, $1)=no _LT_TAGVAR(hardcode_shlibpath_var, $1)=unsupported _LT_TAGVAR(inherit_rpath, $1)=no _LT_TAGVAR(link_all_deplibs, $1)=unknown _LT_TAGVAR(module_cmds, $1)= _LT_TAGVAR(module_expsym_cmds, $1)= _LT_TAGVAR(old_archive_from_new_cmds, $1)= _LT_TAGVAR(old_archive_from_expsyms_cmds, $1)= _LT_TAGVAR(thread_safe_flag_spec, $1)= _LT_TAGVAR(whole_archive_flag_spec, $1)= # include_expsyms should be a list of space-separated symbols to be *always* # included in the symbol list _LT_TAGVAR(include_expsyms, $1)= # exclude_expsyms can be an extended regexp of symbols to exclude # it will be wrapped by ' (' and ')$', so one must not match beginning or # end of line. Example: 'a|bc|.*d.*' will exclude the symbols 'a' and 'bc', # as well as any symbol that contains 'd'. _LT_TAGVAR(exclude_expsyms, $1)=['_GLOBAL_OFFSET_TABLE_|_GLOBAL__F[ID]_.*'] # Although _GLOBAL_OFFSET_TABLE_ is a valid symbol C name, most a.out # platforms (ab)use it in PIC code, but their linkers get confused if # the symbol is explicitly referenced. Since portable code cannot # rely on this symbol name, it's probably fine to never include it in # preloaded symbol tables. # Exclude shared library initialization/finalization symbols. dnl Note also adjust exclude_expsyms for C++ above. extract_expsyms_cmds= case $host_os in cygwin* | mingw* | pw32* | cegcc*) # FIXME: the MSVC++ port hasn't been tested in a loooong time # When not using gcc, we currently assume that we are using # Microsoft Visual C++. if test yes != "$GCC"; then with_gnu_ld=no fi ;; interix*) # we just hope/assume this is gcc and not c89 (= MSVC++) with_gnu_ld=yes ;; openbsd* | bitrig*) with_gnu_ld=no ;; esac _LT_TAGVAR(ld_shlibs, $1)=yes # On some targets, GNU ld is compatible enough with the native linker # that we're better off using the native interface for both. lt_use_gnu_ld_interface=no if test yes = "$with_gnu_ld"; then case $host_os in aix*) # The AIX port of GNU ld has always aspired to compatibility # with the native linker. However, as the warning in the GNU ld # block says, versions before 2.19.5* couldn't really create working # shared libraries, regardless of the interface used. case `$LD -v 2>&1` in *\ \(GNU\ Binutils\)\ 2.19.5*) ;; *\ \(GNU\ Binutils\)\ 2.[[2-9]]*) ;; *\ \(GNU\ Binutils\)\ [[3-9]]*) ;; *) lt_use_gnu_ld_interface=yes ;; esac ;; *) lt_use_gnu_ld_interface=yes ;; esac fi if test yes = "$lt_use_gnu_ld_interface"; then # If archive_cmds runs LD, not CC, wlarc should be empty wlarc='$wl' # Set some defaults for GNU ld with shared library support. These # are reset later if shared libraries are not supported. Putting them # here allows them to be overridden if necessary. runpath_var=LD_RUN_PATH _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-rpath $wl$libdir' _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl--export-dynamic' # ancient GNU ld didn't support --whole-archive et. al. if $LD --help 2>&1 | $GREP 'no-whole-archive' > /dev/null; then _LT_TAGVAR(whole_archive_flag_spec, $1)=$wlarc'--whole-archive$convenience '$wlarc'--no-whole-archive' else _LT_TAGVAR(whole_archive_flag_spec, $1)= fi supports_anon_versioning=no case `$LD -v | $SED -e 's/([^)]\+)\s\+//' 2>&1` in *GNU\ gold*) supports_anon_versioning=yes ;; *\ [[01]].* | *\ 2.[[0-9]].* | *\ 2.10.*) ;; # catch versions < 2.11 *\ 2.11.93.0.2\ *) supports_anon_versioning=yes ;; # RH7.3 ... *\ 2.11.92.0.12\ *) supports_anon_versioning=yes ;; # Mandrake 8.2 ... *\ 2.11.*) ;; # other 2.11 versions *) supports_anon_versioning=yes ;; esac # See if GNU ld supports shared libraries. case $host_os in aix[[3-9]]*) # On AIX/PPC, the GNU linker is very broken if test ia64 != "$host_cpu"; then _LT_TAGVAR(ld_shlibs, $1)=no cat <<_LT_EOF 1>&2 *** Warning: the GNU linker, at least up to release 2.19, is reported *** to be unable to reliably create shared libraries on AIX. *** Therefore, libtool is disabling shared libraries support. If you *** really care for shared libraries, you may want to install binutils *** 2.20 or above, or modify your PATH so that a non-GNU linker is found. *** You will then need to restart the configuration process. _LT_EOF fi ;; amigaos*) case $host_cpu in powerpc) # see comment about AmigaOS4 .so support _LT_TAGVAR(archive_cmds, $1)='$CC -shared $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='' ;; m68k) _LT_TAGVAR(archive_cmds, $1)='$RM $output_objdir/a2ixlibrary.data~$ECHO "#define NAME $libname" > $output_objdir/a2ixlibrary.data~$ECHO "#define LIBRARY_ID 1" >> $output_objdir/a2ixlibrary.data~$ECHO "#define VERSION $major" >> $output_objdir/a2ixlibrary.data~$ECHO "#define REVISION $revision" >> $output_objdir/a2ixlibrary.data~$AR $AR_FLAGS $lib $libobjs~$RANLIB $lib~(cd $output_objdir && a2ixlibrary -32)' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-L$libdir' _LT_TAGVAR(hardcode_minus_L, $1)=yes ;; esac ;; beos*) if $LD --help 2>&1 | $GREP ': supported targets:.* elf' > /dev/null; then _LT_TAGVAR(allow_undefined_flag, $1)=unsupported # Joseph Beckenbach says some releases of gcc # support --undefined. This deserves some investigation. FIXME _LT_TAGVAR(archive_cmds, $1)='$CC -nostart $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' else _LT_TAGVAR(ld_shlibs, $1)=no fi ;; cygwin* | mingw* | pw32* | cegcc*) # _LT_TAGVAR(hardcode_libdir_flag_spec, $1) is actually meaningless, # as there is no search path for DLLs. _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-L$libdir' _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl--export-all-symbols' _LT_TAGVAR(allow_undefined_flag, $1)=unsupported _LT_TAGVAR(always_export_symbols, $1)=no _LT_TAGVAR(enable_shared_with_static_runtimes, $1)=yes _LT_TAGVAR(export_symbols_cmds, $1)='$NM $libobjs $convenience | $global_symbol_pipe | $SED -e '\''/^[[BCDGRS]][[ ]]/s/.*[[ ]]\([[^ ]]*\)/\1 DATA/;s/^.*[[ ]]__nm__\([[^ ]]*\)[[ ]][[^ ]]*/\1 DATA/;/^I[[ ]]/d;/^[[AITW]][[ ]]/s/.* //'\'' | sort | uniq > $export_symbols' _LT_TAGVAR(exclude_expsyms, $1)=['[_]+GLOBAL_OFFSET_TABLE_|[_]+GLOBAL__[FID]_.*|[_]+head_[A-Za-z0-9_]+_dll|[A-Za-z0-9_]+_dll_iname'] if $LD --help 2>&1 | $GREP 'auto-import' > /dev/null; then _LT_TAGVAR(archive_cmds, $1)='$CC -shared $libobjs $deplibs $compiler_flags -o $output_objdir/$soname $wl--enable-auto-image-base -Xlinker --out-implib -Xlinker $lib' # If the export-symbols file already is a .def file, use it as # is; otherwise, prepend EXPORTS... _LT_TAGVAR(archive_expsym_cmds, $1)='if _LT_DLL_DEF_P([$export_symbols]); then cp $export_symbols $output_objdir/$soname.def; else echo EXPORTS > $output_objdir/$soname.def; cat $export_symbols >> $output_objdir/$soname.def; fi~ $CC -shared $output_objdir/$soname.def $libobjs $deplibs $compiler_flags -o $output_objdir/$soname $wl--enable-auto-image-base -Xlinker --out-implib -Xlinker $lib' else _LT_TAGVAR(ld_shlibs, $1)=no fi ;; haiku*) _LT_TAGVAR(archive_cmds, $1)='$CC -shared $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' _LT_TAGVAR(link_all_deplibs, $1)=yes ;; os2*) _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-L$libdir' _LT_TAGVAR(hardcode_minus_L, $1)=yes _LT_TAGVAR(allow_undefined_flag, $1)=unsupported shrext_cmds=.dll _LT_TAGVAR(archive_cmds, $1)='$ECHO "LIBRARY ${soname%$shared_ext} INITINSTANCE TERMINSTANCE" > $output_objdir/$libname.def~ $ECHO "DESCRIPTION \"$libname\"" >> $output_objdir/$libname.def~ $ECHO "DATA MULTIPLE NONSHARED" >> $output_objdir/$libname.def~ $ECHO EXPORTS >> $output_objdir/$libname.def~ emxexp $libobjs | $SED /"_DLL_InitTerm"/d >> $output_objdir/$libname.def~ $CC -Zdll -Zcrtdll -o $output_objdir/$soname $libobjs $deplibs $compiler_flags $output_objdir/$libname.def~ emximp -o $lib $output_objdir/$libname.def' _LT_TAGVAR(archive_expsym_cmds, $1)='$ECHO "LIBRARY ${soname%$shared_ext} INITINSTANCE TERMINSTANCE" > $output_objdir/$libname.def~ $ECHO "DESCRIPTION \"$libname\"" >> $output_objdir/$libname.def~ $ECHO "DATA MULTIPLE NONSHARED" >> $output_objdir/$libname.def~ $ECHO EXPORTS >> $output_objdir/$libname.def~ prefix_cmds="$SED"~ if test EXPORTS = "`$SED 1q $export_symbols`"; then prefix_cmds="$prefix_cmds -e 1d"; fi~ prefix_cmds="$prefix_cmds -e \"s/^\(.*\)$/_\1/g\""~ cat $export_symbols | $prefix_cmds >> $output_objdir/$libname.def~ $CC -Zdll -Zcrtdll -o $output_objdir/$soname $libobjs $deplibs $compiler_flags $output_objdir/$libname.def~ emximp -o $lib $output_objdir/$libname.def' _LT_TAGVAR(old_archive_From_new_cmds, $1)='emximp -o $output_objdir/${libname}_dll.a $output_objdir/$libname.def' _LT_TAGVAR(enable_shared_with_static_runtimes, $1)=yes ;; interix[[3-9]]*) _LT_TAGVAR(hardcode_direct, $1)=no _LT_TAGVAR(hardcode_shlibpath_var, $1)=no _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-rpath,$libdir' _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl-E' # Hack: On Interix 3.x, we cannot compile PIC because of a broken gcc. # Instead, shared libraries are loaded at an image base (0x10000000 by # default) and relocated if they conflict, which is a slow very memory # consuming and fragmenting process. To avoid this, we pick a random, # 256 KiB-aligned image base between 0x50000000 and 0x6FFC0000 at link # time. Moving up from 0x10000000 also allows more sbrk(2) space. _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-h,$soname $wl--image-base,`expr ${RANDOM-$$} % 4096 / 2 \* 262144 + 1342177280` -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='sed "s|^|_|" $export_symbols >$output_objdir/$soname.expsym~$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-h,$soname $wl--retain-symbols-file,$output_objdir/$soname.expsym $wl--image-base,`expr ${RANDOM-$$} % 4096 / 2 \* 262144 + 1342177280` -o $lib' ;; gnu* | linux* | tpf* | k*bsd*-gnu | kopensolaris*-gnu) tmp_diet=no if test linux-dietlibc = "$host_os"; then case $cc_basename in diet\ *) tmp_diet=yes;; # linux-dietlibc with static linking (!diet-dyn) esac fi if $LD --help 2>&1 | $EGREP ': supported targets:.* elf' > /dev/null \ && test no = "$tmp_diet" then tmp_addflag=' $pic_flag' tmp_sharedflag='-shared' case $cc_basename,$host_cpu in pgcc*) # Portland Group C compiler _LT_TAGVAR(whole_archive_flag_spec, $1)='$wl--whole-archive`for conv in $convenience\"\"; do test -n \"$conv\" && new_convenience=\"$new_convenience,$conv\"; done; func_echo_all \"$new_convenience\"` $wl--no-whole-archive' tmp_addflag=' $pic_flag' ;; pgf77* | pgf90* | pgf95* | pgfortran*) # Portland Group f77 and f90 compilers _LT_TAGVAR(whole_archive_flag_spec, $1)='$wl--whole-archive`for conv in $convenience\"\"; do test -n \"$conv\" && new_convenience=\"$new_convenience,$conv\"; done; func_echo_all \"$new_convenience\"` $wl--no-whole-archive' tmp_addflag=' $pic_flag -Mnomain' ;; ecc*,ia64* | icc*,ia64*) # Intel C compiler on ia64 tmp_addflag=' -i_dynamic' ;; efc*,ia64* | ifort*,ia64*) # Intel Fortran compiler on ia64 tmp_addflag=' -i_dynamic -nofor_main' ;; ifc* | ifort*) # Intel Fortran compiler tmp_addflag=' -nofor_main' ;; lf95*) # Lahey Fortran 8.1 _LT_TAGVAR(whole_archive_flag_spec, $1)= tmp_sharedflag='--shared' ;; nagfor*) # NAGFOR 5.3 tmp_sharedflag='-Wl,-shared' ;; xl[[cC]]* | bgxl[[cC]]* | mpixl[[cC]]*) # IBM XL C 8.0 on PPC (deal with xlf below) tmp_sharedflag='-qmkshrobj' tmp_addflag= ;; nvcc*) # Cuda Compiler Driver 2.2 _LT_TAGVAR(whole_archive_flag_spec, $1)='$wl--whole-archive`for conv in $convenience\"\"; do test -n \"$conv\" && new_convenience=\"$new_convenience,$conv\"; done; func_echo_all \"$new_convenience\"` $wl--no-whole-archive' _LT_TAGVAR(compiler_needs_object, $1)=yes ;; esac case `$CC -V 2>&1 | sed 5q` in *Sun\ C*) # Sun C 5.9 _LT_TAGVAR(whole_archive_flag_spec, $1)='$wl--whole-archive`new_convenience=; for conv in $convenience\"\"; do test -z \"$conv\" || new_convenience=\"$new_convenience,$conv\"; done; func_echo_all \"$new_convenience\"` $wl--no-whole-archive' _LT_TAGVAR(compiler_needs_object, $1)=yes tmp_sharedflag='-G' ;; *Sun\ F*) # Sun Fortran 8.3 tmp_sharedflag='-G' ;; esac _LT_TAGVAR(archive_cmds, $1)='$CC '"$tmp_sharedflag""$tmp_addflag"' $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' if test yes = "$supports_anon_versioning"; then _LT_TAGVAR(archive_expsym_cmds, $1)='echo "{ global:" > $output_objdir/$libname.ver~ cat $export_symbols | sed -e "s/\(.*\)/\1;/" >> $output_objdir/$libname.ver~ echo "local: *; };" >> $output_objdir/$libname.ver~ $CC '"$tmp_sharedflag""$tmp_addflag"' $libobjs $deplibs $compiler_flags $wl-soname $wl$soname $wl-version-script $wl$output_objdir/$libname.ver -o $lib' fi case $cc_basename in tcc*) _LT_TAGVAR(export_dynamic_flag_spec, $1)='-rdynamic' ;; xlf* | bgf* | bgxlf* | mpixlf*) # IBM XL Fortran 10.1 on PPC cannot create shared libs itself _LT_TAGVAR(whole_archive_flag_spec, $1)='--whole-archive$convenience --no-whole-archive' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-rpath $wl$libdir' _LT_TAGVAR(archive_cmds, $1)='$LD -shared $libobjs $deplibs $linker_flags -soname $soname -o $lib' if test yes = "$supports_anon_versioning"; then _LT_TAGVAR(archive_expsym_cmds, $1)='echo "{ global:" > $output_objdir/$libname.ver~ cat $export_symbols | sed -e "s/\(.*\)/\1;/" >> $output_objdir/$libname.ver~ echo "local: *; };" >> $output_objdir/$libname.ver~ $LD -shared $libobjs $deplibs $linker_flags -soname $soname -version-script $output_objdir/$libname.ver -o $lib' fi ;; esac else _LT_TAGVAR(ld_shlibs, $1)=no fi ;; netbsd*) if echo __ELF__ | $CC -E - | $GREP __ELF__ >/dev/null; then _LT_TAGVAR(archive_cmds, $1)='$LD -Bshareable $libobjs $deplibs $linker_flags -o $lib' wlarc= else _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-soname $wl$soname $wl-retain-symbols-file $wl$export_symbols -o $lib' fi ;; solaris*) if $LD -v 2>&1 | $GREP 'BFD 2\.8' > /dev/null; then _LT_TAGVAR(ld_shlibs, $1)=no cat <<_LT_EOF 1>&2 *** Warning: The releases 2.8.* of the GNU linker cannot reliably *** create shared libraries on Solaris systems. Therefore, libtool *** is disabling shared libraries support. We urge you to upgrade GNU *** binutils to release 2.9.1 or newer. Another option is to modify *** your PATH or compiler configuration so that the native linker is *** used, and then restart. _LT_EOF elif $LD --help 2>&1 | $GREP ': supported targets:.* elf' > /dev/null; then _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-soname $wl$soname $wl-retain-symbols-file $wl$export_symbols -o $lib' else _LT_TAGVAR(ld_shlibs, $1)=no fi ;; sysv5* | sco3.2v5* | sco5v6* | unixware* | OpenUNIX*) case `$LD -v 2>&1` in *\ [[01]].* | *\ 2.[[0-9]].* | *\ 2.1[[0-5]].*) _LT_TAGVAR(ld_shlibs, $1)=no cat <<_LT_EOF 1>&2 *** Warning: Releases of the GNU linker prior to 2.16.91.0.3 cannot *** reliably create shared libraries on SCO systems. Therefore, libtool *** is disabling shared libraries support. We urge you to upgrade GNU *** binutils to release 2.16.91.0.3 or newer. Another option is to modify *** your PATH or compiler configuration so that the native linker is *** used, and then restart. _LT_EOF ;; *) # For security reasons, it is highly recommended that you always # use absolute paths for naming shared libraries, and exclude the # DT_RUNPATH tag from executables and libraries. But doing so # requires that you compile everything twice, which is a pain. if $LD --help 2>&1 | $GREP ': supported targets:.* elf' > /dev/null; then _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-rpath $wl$libdir' _LT_TAGVAR(archive_cmds, $1)='$CC -shared $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared $libobjs $deplibs $compiler_flags $wl-soname $wl$soname $wl-retain-symbols-file $wl$export_symbols -o $lib' else _LT_TAGVAR(ld_shlibs, $1)=no fi ;; esac ;; sunos4*) _LT_TAGVAR(archive_cmds, $1)='$LD -assert pure-text -Bshareable -o $lib $libobjs $deplibs $linker_flags' wlarc= _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_shlibpath_var, $1)=no ;; *) if $LD --help 2>&1 | $GREP ': supported targets:.* elf' > /dev/null; then _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-soname $wl$soname $wl-retain-symbols-file $wl$export_symbols -o $lib' else _LT_TAGVAR(ld_shlibs, $1)=no fi ;; esac if test no = "$_LT_TAGVAR(ld_shlibs, $1)"; then runpath_var= _LT_TAGVAR(hardcode_libdir_flag_spec, $1)= _LT_TAGVAR(export_dynamic_flag_spec, $1)= _LT_TAGVAR(whole_archive_flag_spec, $1)= fi else # PORTME fill in a description of your system's linker (not GNU ld) case $host_os in aix3*) _LT_TAGVAR(allow_undefined_flag, $1)=unsupported _LT_TAGVAR(always_export_symbols, $1)=yes _LT_TAGVAR(archive_expsym_cmds, $1)='$LD -o $output_objdir/$soname $libobjs $deplibs $linker_flags -bE:$export_symbols -T512 -H512 -bM:SRE~$AR $AR_FLAGS $lib $output_objdir/$soname' # Note: this linker hardcodes the directories in LIBPATH if there # are no directories specified by -L. _LT_TAGVAR(hardcode_minus_L, $1)=yes if test yes = "$GCC" && test -z "$lt_prog_compiler_static"; then # Neither direct hardcoding nor static linking is supported with a # broken collect2. _LT_TAGVAR(hardcode_direct, $1)=unsupported fi ;; aix[[4-9]]*) if test ia64 = "$host_cpu"; then # On IA64, the linker does run time linking by default, so we don't # have to do anything special. aix_use_runtimelinking=no exp_sym_flag='-Bexport' no_entry_flag= else # If we're using GNU nm, then we don't want the "-C" option. # -C means demangle to GNU nm, but means don't demangle to AIX nm. # Without the "-l" option, or with the "-B" option, AIX nm treats # weak defined symbols like other global defined symbols, whereas # GNU nm marks them as "W". # While the 'weak' keyword is ignored in the Export File, we need # it in the Import File for the 'aix-soname' feature, so we have # to replace the "-B" option with "-P" for AIX nm. if $NM -V 2>&1 | $GREP 'GNU' > /dev/null; then _LT_TAGVAR(export_symbols_cmds, $1)='$NM -Bpg $libobjs $convenience | awk '\''{ if (((\$ 2 == "T") || (\$ 2 == "D") || (\$ 2 == "B") || (\$ 2 == "W")) && ([substr](\$ 3,1,1) != ".")) { if (\$ 2 == "W") { print \$ 3 " weak" } else { print \$ 3 } } }'\'' | sort -u > $export_symbols' else _LT_TAGVAR(export_symbols_cmds, $1)='`func_echo_all $NM | $SED -e '\''s/B\([[^B]]*\)$/P\1/'\''` -PCpgl $libobjs $convenience | awk '\''{ if (((\$ 2 == "T") || (\$ 2 == "D") || (\$ 2 == "B") || (\$ 2 == "W") || (\$ 2 == "V") || (\$ 2 == "Z")) && ([substr](\$ 1,1,1) != ".")) { if ((\$ 2 == "W") || (\$ 2 == "V") || (\$ 2 == "Z")) { print \$ 1 " weak" } else { print \$ 1 } } }'\'' | sort -u > $export_symbols' fi aix_use_runtimelinking=no # Test if we are trying to use run time linking or normal # AIX style linking. If -brtl is somewhere in LDFLAGS, we # have runtime linking enabled, and use it for executables. # For shared libraries, we enable/disable runtime linking # depending on the kind of the shared library created - # when "with_aix_soname,aix_use_runtimelinking" is: # "aix,no" lib.a(lib.so.V) shared, rtl:no, for executables # "aix,yes" lib.so shared, rtl:yes, for executables # lib.a static archive # "both,no" lib.so.V(shr.o) shared, rtl:yes # lib.a(lib.so.V) shared, rtl:no, for executables # "both,yes" lib.so.V(shr.o) shared, rtl:yes, for executables # lib.a(lib.so.V) shared, rtl:no # "svr4,*" lib.so.V(shr.o) shared, rtl:yes, for executables # lib.a static archive case $host_os in aix4.[[23]]|aix4.[[23]].*|aix[[5-9]]*) for ld_flag in $LDFLAGS; do if (test x-brtl = "x$ld_flag" || test x-Wl,-brtl = "x$ld_flag"); then aix_use_runtimelinking=yes break fi done if test svr4,no = "$with_aix_soname,$aix_use_runtimelinking"; then # With aix-soname=svr4, we create the lib.so.V shared archives only, # so we don't have lib.a shared libs to link our executables. # We have to force runtime linking in this case. aix_use_runtimelinking=yes LDFLAGS="$LDFLAGS -Wl,-brtl" fi ;; esac exp_sym_flag='-bexport' no_entry_flag='-bnoentry' fi # When large executables or shared objects are built, AIX ld can # have problems creating the table of contents. If linking a library # or program results in "error TOC overflow" add -mminimal-toc to # CXXFLAGS/CFLAGS for g++/gcc. In the cases where that is not # enough to fix the problem, add -Wl,-bbigtoc to LDFLAGS. _LT_TAGVAR(archive_cmds, $1)='' _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_direct_absolute, $1)=yes _LT_TAGVAR(hardcode_libdir_separator, $1)=':' _LT_TAGVAR(link_all_deplibs, $1)=yes _LT_TAGVAR(file_list_spec, $1)='$wl-f,' case $with_aix_soname,$aix_use_runtimelinking in aix,*) ;; # traditional, no import file svr4,* | *,yes) # use import file # The Import File defines what to hardcode. _LT_TAGVAR(hardcode_direct, $1)=no _LT_TAGVAR(hardcode_direct_absolute, $1)=no ;; esac if test yes = "$GCC"; then case $host_os in aix4.[[012]]|aix4.[[012]].*) # We only want to do this on AIX 4.2 and lower, the check # below for broken collect2 doesn't work under 4.3+ collect2name=`$CC -print-prog-name=collect2` if test -f "$collect2name" && strings "$collect2name" | $GREP resolve_lib_name >/dev/null then # We have reworked collect2 : else # We have old collect2 _LT_TAGVAR(hardcode_direct, $1)=unsupported # It fails to find uninstalled libraries when the uninstalled # path is not listed in the libpath. Setting hardcode_minus_L # to unsupported forces relinking _LT_TAGVAR(hardcode_minus_L, $1)=yes _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-L$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)= fi ;; esac shared_flag='-shared' if test yes = "$aix_use_runtimelinking"; then shared_flag="$shared_flag "'$wl-G' fi # Need to ensure runtime linking is disabled for the traditional # shared library, or the linker may eventually find shared libraries # /with/ Import File - we do not want to mix them. shared_flag_aix='-shared' shared_flag_svr4='-shared $wl-G' else # not using gcc if test ia64 = "$host_cpu"; then # VisualAge C++, Version 5.5 for AIX 5L for IA-64, Beta 3 Release # chokes on -Wl,-G. The following line is correct: shared_flag='-G' else if test yes = "$aix_use_runtimelinking"; then shared_flag='$wl-G' else shared_flag='$wl-bM:SRE' fi shared_flag_aix='$wl-bM:SRE' shared_flag_svr4='$wl-G' fi fi _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl-bexpall' # It seems that -bexpall does not export symbols beginning with # underscore (_), so it is better to generate a list of symbols to export. _LT_TAGVAR(always_export_symbols, $1)=yes if test aix,yes = "$with_aix_soname,$aix_use_runtimelinking"; then # Warning - without using the other runtime loading flags (-brtl), # -berok will link without error, but may produce a broken library. _LT_TAGVAR(allow_undefined_flag, $1)='-berok' # Determine the default libpath from the value encoded in an # empty executable. _LT_SYS_MODULE_PATH_AIX([$1]) _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-blibpath:$libdir:'"$aix_libpath" _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -o $output_objdir/$soname $libobjs $deplibs $wl'$no_entry_flag' $compiler_flags `if test -n "$allow_undefined_flag"; then func_echo_all "$wl$allow_undefined_flag"; else :; fi` $wl'$exp_sym_flag:\$export_symbols' '$shared_flag else if test ia64 = "$host_cpu"; then _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-R $libdir:/usr/lib:/lib' _LT_TAGVAR(allow_undefined_flag, $1)="-z nodefs" _LT_TAGVAR(archive_expsym_cmds, $1)="\$CC $shared_flag"' -o $output_objdir/$soname $libobjs $deplibs '"\$wl$no_entry_flag"' $compiler_flags $wl$allow_undefined_flag '"\$wl$exp_sym_flag:\$export_symbols" else # Determine the default libpath from the value encoded in an # empty executable. _LT_SYS_MODULE_PATH_AIX([$1]) _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-blibpath:$libdir:'"$aix_libpath" # Warning - without using the other run time loading flags, # -berok will link without error, but may produce a broken library. _LT_TAGVAR(no_undefined_flag, $1)=' $wl-bernotok' _LT_TAGVAR(allow_undefined_flag, $1)=' $wl-berok' if test yes = "$with_gnu_ld"; then # We only use this code for GNU lds that support --whole-archive. _LT_TAGVAR(whole_archive_flag_spec, $1)='$wl--whole-archive$convenience $wl--no-whole-archive' else # Exported symbols can be pulled into shared objects from archives _LT_TAGVAR(whole_archive_flag_spec, $1)='$convenience' fi _LT_TAGVAR(archive_cmds_need_lc, $1)=yes _LT_TAGVAR(archive_expsym_cmds, $1)='$RM -r $output_objdir/$realname.d~$MKDIR $output_objdir/$realname.d' # -brtl affects multiple linker settings, -berok does not and is overridden later compiler_flags_filtered='`func_echo_all "$compiler_flags " | $SED -e "s%-brtl\\([[, ]]\\)%-berok\\1%g"`' if test svr4 != "$with_aix_soname"; then # This is similar to how AIX traditionally builds its shared libraries. _LT_TAGVAR(archive_expsym_cmds, $1)="$_LT_TAGVAR(archive_expsym_cmds, $1)"'~$CC '$shared_flag_aix' -o $output_objdir/$realname.d/$soname $libobjs $deplibs $wl-bnoentry '$compiler_flags_filtered'$wl-bE:$export_symbols$allow_undefined_flag~$AR $AR_FLAGS $output_objdir/$libname$release.a $output_objdir/$realname.d/$soname' fi if test aix != "$with_aix_soname"; then _LT_TAGVAR(archive_expsym_cmds, $1)="$_LT_TAGVAR(archive_expsym_cmds, $1)"'~$CC '$shared_flag_svr4' -o $output_objdir/$realname.d/$shared_archive_member_spec.o $libobjs $deplibs $wl-bnoentry '$compiler_flags_filtered'$wl-bE:$export_symbols$allow_undefined_flag~$STRIP -e $output_objdir/$realname.d/$shared_archive_member_spec.o~( func_echo_all "#! $soname($shared_archive_member_spec.o)"; if test shr_64 = "$shared_archive_member_spec"; then func_echo_all "# 64"; else func_echo_all "# 32"; fi; cat $export_symbols ) > $output_objdir/$realname.d/$shared_archive_member_spec.imp~$AR $AR_FLAGS $output_objdir/$soname $output_objdir/$realname.d/$shared_archive_member_spec.o $output_objdir/$realname.d/$shared_archive_member_spec.imp' else # used by -dlpreopen to get the symbols _LT_TAGVAR(archive_expsym_cmds, $1)="$_LT_TAGVAR(archive_expsym_cmds, $1)"'~$MV $output_objdir/$realname.d/$soname $output_objdir' fi _LT_TAGVAR(archive_expsym_cmds, $1)="$_LT_TAGVAR(archive_expsym_cmds, $1)"'~$RM -r $output_objdir/$realname.d' fi fi ;; amigaos*) case $host_cpu in powerpc) # see comment about AmigaOS4 .so support _LT_TAGVAR(archive_cmds, $1)='$CC -shared $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='' ;; m68k) _LT_TAGVAR(archive_cmds, $1)='$RM $output_objdir/a2ixlibrary.data~$ECHO "#define NAME $libname" > $output_objdir/a2ixlibrary.data~$ECHO "#define LIBRARY_ID 1" >> $output_objdir/a2ixlibrary.data~$ECHO "#define VERSION $major" >> $output_objdir/a2ixlibrary.data~$ECHO "#define REVISION $revision" >> $output_objdir/a2ixlibrary.data~$AR $AR_FLAGS $lib $libobjs~$RANLIB $lib~(cd $output_objdir && a2ixlibrary -32)' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-L$libdir' _LT_TAGVAR(hardcode_minus_L, $1)=yes ;; esac ;; bsdi[[45]]*) _LT_TAGVAR(export_dynamic_flag_spec, $1)=-rdynamic ;; cygwin* | mingw* | pw32* | cegcc*) # When not using gcc, we currently assume that we are using # Microsoft Visual C++. # hardcode_libdir_flag_spec is actually meaningless, as there is # no search path for DLLs. case $cc_basename in cl*) # Native MSVC _LT_TAGVAR(hardcode_libdir_flag_spec, $1)=' ' _LT_TAGVAR(allow_undefined_flag, $1)=unsupported _LT_TAGVAR(always_export_symbols, $1)=yes _LT_TAGVAR(file_list_spec, $1)='@' # Tell ltmain to make .lib files, not .a files. libext=lib # Tell ltmain to make .dll files, not .so files. shrext_cmds=.dll # FIXME: Setting linknames here is a bad hack. _LT_TAGVAR(archive_cmds, $1)='$CC -o $output_objdir/$soname $libobjs $compiler_flags $deplibs -Wl,-DLL,-IMPLIB:"$tool_output_objdir$libname.dll.lib"~linknames=' _LT_TAGVAR(archive_expsym_cmds, $1)='if _LT_DLL_DEF_P([$export_symbols]); then cp "$export_symbols" "$output_objdir/$soname.def"; echo "$tool_output_objdir$soname.def" > "$output_objdir/$soname.exp"; else $SED -e '\''s/^/-link -EXPORT:/'\'' < $export_symbols > $output_objdir/$soname.exp; fi~ $CC -o $tool_output_objdir$soname $libobjs $compiler_flags $deplibs "@$tool_output_objdir$soname.exp" -Wl,-DLL,-IMPLIB:"$tool_output_objdir$libname.dll.lib"~ linknames=' # The linker will not automatically build a static lib if we build a DLL. # _LT_TAGVAR(old_archive_from_new_cmds, $1)='true' _LT_TAGVAR(enable_shared_with_static_runtimes, $1)=yes _LT_TAGVAR(exclude_expsyms, $1)='_NULL_IMPORT_DESCRIPTOR|_IMPORT_DESCRIPTOR_.*' _LT_TAGVAR(export_symbols_cmds, $1)='$NM $libobjs $convenience | $global_symbol_pipe | $SED -e '\''/^[[BCDGRS]][[ ]]/s/.*[[ ]]\([[^ ]]*\)/\1,DATA/'\'' | $SED -e '\''/^[[AITW]][[ ]]/s/.*[[ ]]//'\'' | sort | uniq > $export_symbols' # Don't use ranlib _LT_TAGVAR(old_postinstall_cmds, $1)='chmod 644 $oldlib' _LT_TAGVAR(postlink_cmds, $1)='lt_outputfile="@OUTPUT@"~ lt_tool_outputfile="@TOOL_OUTPUT@"~ case $lt_outputfile in *.exe|*.EXE) ;; *) lt_outputfile=$lt_outputfile.exe lt_tool_outputfile=$lt_tool_outputfile.exe ;; esac~ if test : != "$MANIFEST_TOOL" && test -f "$lt_outputfile.manifest"; then $MANIFEST_TOOL -manifest "$lt_tool_outputfile.manifest" -outputresource:"$lt_tool_outputfile" || exit 1; $RM "$lt_outputfile.manifest"; fi' ;; *) # Assume MSVC wrapper _LT_TAGVAR(hardcode_libdir_flag_spec, $1)=' ' _LT_TAGVAR(allow_undefined_flag, $1)=unsupported # Tell ltmain to make .lib files, not .a files. libext=lib # Tell ltmain to make .dll files, not .so files. shrext_cmds=.dll # FIXME: Setting linknames here is a bad hack. _LT_TAGVAR(archive_cmds, $1)='$CC -o $lib $libobjs $compiler_flags `func_echo_all "$deplibs" | $SED '\''s/ -lc$//'\''` -link -dll~linknames=' # The linker will automatically build a .lib file if we build a DLL. _LT_TAGVAR(old_archive_from_new_cmds, $1)='true' # FIXME: Should let the user specify the lib program. _LT_TAGVAR(old_archive_cmds, $1)='lib -OUT:$oldlib$oldobjs$old_deplibs' _LT_TAGVAR(enable_shared_with_static_runtimes, $1)=yes ;; esac ;; darwin* | rhapsody*) _LT_DARWIN_LINKER_FEATURES($1) ;; dgux*) _LT_TAGVAR(archive_cmds, $1)='$LD -G -h $soname -o $lib $libobjs $deplibs $linker_flags' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-L$libdir' _LT_TAGVAR(hardcode_shlibpath_var, $1)=no ;; # FreeBSD 2.2.[012] allows us to include c++rt0.o to get C++ constructor # support. Future versions do this automatically, but an explicit c++rt0.o # does not break anything, and helps significantly (at the cost of a little # extra space). freebsd2.2*) _LT_TAGVAR(archive_cmds, $1)='$LD -Bshareable -o $lib $libobjs $deplibs $linker_flags /usr/lib/c++rt0.o' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-R$libdir' _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_shlibpath_var, $1)=no ;; # Unfortunately, older versions of FreeBSD 2 do not have this feature. freebsd2.*) _LT_TAGVAR(archive_cmds, $1)='$LD -Bshareable -o $lib $libobjs $deplibs $linker_flags' _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_minus_L, $1)=yes _LT_TAGVAR(hardcode_shlibpath_var, $1)=no ;; # FreeBSD 3 and greater uses gcc -shared to do shared libraries. freebsd* | dragonfly*) _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag -o $lib $libobjs $deplibs $compiler_flags' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-R$libdir' _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_shlibpath_var, $1)=no ;; hpux9*) if test yes = "$GCC"; then _LT_TAGVAR(archive_cmds, $1)='$RM $output_objdir/$soname~$CC -shared $pic_flag $wl+b $wl$install_libdir -o $output_objdir/$soname $libobjs $deplibs $compiler_flags~test "x$output_objdir/$soname" = "x$lib" || mv $output_objdir/$soname $lib' else _LT_TAGVAR(archive_cmds, $1)='$RM $output_objdir/$soname~$LD -b +b $install_libdir -o $output_objdir/$soname $libobjs $deplibs $linker_flags~test "x$output_objdir/$soname" = "x$lib" || mv $output_objdir/$soname $lib' fi _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl+b $wl$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)=: _LT_TAGVAR(hardcode_direct, $1)=yes # hardcode_minus_L: Not really in the search PATH, # but as the default location of the library. _LT_TAGVAR(hardcode_minus_L, $1)=yes _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl-E' ;; hpux10*) if test yes,no = "$GCC,$with_gnu_ld"; then _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag $wl+h $wl$soname $wl+b $wl$install_libdir -o $lib $libobjs $deplibs $compiler_flags' else _LT_TAGVAR(archive_cmds, $1)='$LD -b +h $soname +b $install_libdir -o $lib $libobjs $deplibs $linker_flags' fi if test no = "$with_gnu_ld"; then _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl+b $wl$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)=: _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_direct_absolute, $1)=yes _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl-E' # hardcode_minus_L: Not really in the search PATH, # but as the default location of the library. _LT_TAGVAR(hardcode_minus_L, $1)=yes fi ;; hpux11*) if test yes,no = "$GCC,$with_gnu_ld"; then case $host_cpu in hppa*64*) _LT_TAGVAR(archive_cmds, $1)='$CC -shared $wl+h $wl$soname -o $lib $libobjs $deplibs $compiler_flags' ;; ia64*) _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag $wl+h $wl$soname $wl+nodefaultrpath -o $lib $libobjs $deplibs $compiler_flags' ;; *) _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag $wl+h $wl$soname $wl+b $wl$install_libdir -o $lib $libobjs $deplibs $compiler_flags' ;; esac else case $host_cpu in hppa*64*) _LT_TAGVAR(archive_cmds, $1)='$CC -b $wl+h $wl$soname -o $lib $libobjs $deplibs $compiler_flags' ;; ia64*) _LT_TAGVAR(archive_cmds, $1)='$CC -b $wl+h $wl$soname $wl+nodefaultrpath -o $lib $libobjs $deplibs $compiler_flags' ;; *) m4_if($1, [], [ # Older versions of the 11.00 compiler do not understand -b yet # (HP92453-01 A.11.01.20 doesn't, HP92453-01 B.11.X.35175-35176.GP does) _LT_LINKER_OPTION([if $CC understands -b], _LT_TAGVAR(lt_cv_prog_compiler__b, $1), [-b], [_LT_TAGVAR(archive_cmds, $1)='$CC -b $wl+h $wl$soname $wl+b $wl$install_libdir -o $lib $libobjs $deplibs $compiler_flags'], [_LT_TAGVAR(archive_cmds, $1)='$LD -b +h $soname +b $install_libdir -o $lib $libobjs $deplibs $linker_flags'])], [_LT_TAGVAR(archive_cmds, $1)='$CC -b $wl+h $wl$soname $wl+b $wl$install_libdir -o $lib $libobjs $deplibs $compiler_flags']) ;; esac fi if test no = "$with_gnu_ld"; then _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl+b $wl$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)=: case $host_cpu in hppa*64*|ia64*) _LT_TAGVAR(hardcode_direct, $1)=no _LT_TAGVAR(hardcode_shlibpath_var, $1)=no ;; *) _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_direct_absolute, $1)=yes _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl-E' # hardcode_minus_L: Not really in the search PATH, # but as the default location of the library. _LT_TAGVAR(hardcode_minus_L, $1)=yes ;; esac fi ;; irix5* | irix6* | nonstopux*) if test yes = "$GCC"; then _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-soname $wl$soname `test -n "$verstring" && func_echo_all "$wl-set_version $wl$verstring"` $wl-update_registry $wl$output_objdir/so_locations -o $lib' # Try to use the -exported_symbol ld option, if it does not # work, assume that -exports_file does not work either and # implicitly export all symbols. # This should be the same for all languages, so no per-tag cache variable. AC_CACHE_CHECK([whether the $host_os linker accepts -exported_symbol], [lt_cv_irix_exported_symbol], [save_LDFLAGS=$LDFLAGS LDFLAGS="$LDFLAGS -shared $wl-exported_symbol ${wl}foo $wl-update_registry $wl/dev/null" AC_LINK_IFELSE( [AC_LANG_SOURCE( [AC_LANG_CASE([C], [[int foo (void) { return 0; }]], [C++], [[int foo (void) { return 0; }]], [Fortran 77], [[ subroutine foo end]], [Fortran], [[ subroutine foo end]])])], [lt_cv_irix_exported_symbol=yes], [lt_cv_irix_exported_symbol=no]) LDFLAGS=$save_LDFLAGS]) if test yes = "$lt_cv_irix_exported_symbol"; then _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-soname $wl$soname `test -n "$verstring" && func_echo_all "$wl-set_version $wl$verstring"` $wl-update_registry $wl$output_objdir/so_locations $wl-exports_file $wl$export_symbols -o $lib' fi else _LT_TAGVAR(archive_cmds, $1)='$CC -shared $libobjs $deplibs $compiler_flags -soname $soname `test -n "$verstring" && func_echo_all "-set_version $verstring"` -update_registry $output_objdir/so_locations -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared $libobjs $deplibs $compiler_flags -soname $soname `test -n "$verstring" && func_echo_all "-set_version $verstring"` -update_registry $output_objdir/so_locations -exports_file $export_symbols -o $lib' fi _LT_TAGVAR(archive_cmds_need_lc, $1)='no' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-rpath $wl$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)=: _LT_TAGVAR(inherit_rpath, $1)=yes _LT_TAGVAR(link_all_deplibs, $1)=yes ;; linux*) case $cc_basename in tcc*) # Fabrice Bellard et al's Tiny C Compiler _LT_TAGVAR(ld_shlibs, $1)=yes _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag -o $lib $libobjs $deplibs $compiler_flags' ;; esac ;; netbsd*) if echo __ELF__ | $CC -E - | $GREP __ELF__ >/dev/null; then _LT_TAGVAR(archive_cmds, $1)='$LD -Bshareable -o $lib $libobjs $deplibs $linker_flags' # a.out else _LT_TAGVAR(archive_cmds, $1)='$LD -shared -o $lib $libobjs $deplibs $linker_flags' # ELF fi _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-R$libdir' _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_shlibpath_var, $1)=no ;; newsos6) _LT_TAGVAR(archive_cmds, $1)='$LD -G -h $soname -o $lib $libobjs $deplibs $linker_flags' _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-rpath $wl$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)=: _LT_TAGVAR(hardcode_shlibpath_var, $1)=no ;; *nto* | *qnx*) ;; openbsd* | bitrig*) if test -f /usr/libexec/ld.so; then _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_shlibpath_var, $1)=no _LT_TAGVAR(hardcode_direct_absolute, $1)=yes if test -z "`echo __ELF__ | $CC -E - | $GREP __ELF__`"; then _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag -o $lib $libobjs $deplibs $compiler_flags' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared $pic_flag -o $lib $libobjs $deplibs $compiler_flags $wl-retain-symbols-file,$export_symbols' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-rpath,$libdir' _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl-E' else _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag -o $lib $libobjs $deplibs $compiler_flags' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-rpath,$libdir' fi else _LT_TAGVAR(ld_shlibs, $1)=no fi ;; os2*) _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-L$libdir' _LT_TAGVAR(hardcode_minus_L, $1)=yes _LT_TAGVAR(allow_undefined_flag, $1)=unsupported shrext_cmds=.dll _LT_TAGVAR(archive_cmds, $1)='$ECHO "LIBRARY ${soname%$shared_ext} INITINSTANCE TERMINSTANCE" > $output_objdir/$libname.def~ $ECHO "DESCRIPTION \"$libname\"" >> $output_objdir/$libname.def~ $ECHO "DATA MULTIPLE NONSHARED" >> $output_objdir/$libname.def~ $ECHO EXPORTS >> $output_objdir/$libname.def~ emxexp $libobjs | $SED /"_DLL_InitTerm"/d >> $output_objdir/$libname.def~ $CC -Zdll -Zcrtdll -o $output_objdir/$soname $libobjs $deplibs $compiler_flags $output_objdir/$libname.def~ emximp -o $lib $output_objdir/$libname.def' _LT_TAGVAR(archive_expsym_cmds, $1)='$ECHO "LIBRARY ${soname%$shared_ext} INITINSTANCE TERMINSTANCE" > $output_objdir/$libname.def~ $ECHO "DESCRIPTION \"$libname\"" >> $output_objdir/$libname.def~ $ECHO "DATA MULTIPLE NONSHARED" >> $output_objdir/$libname.def~ $ECHO EXPORTS >> $output_objdir/$libname.def~ prefix_cmds="$SED"~ if test EXPORTS = "`$SED 1q $export_symbols`"; then prefix_cmds="$prefix_cmds -e 1d"; fi~ prefix_cmds="$prefix_cmds -e \"s/^\(.*\)$/_\1/g\""~ cat $export_symbols | $prefix_cmds >> $output_objdir/$libname.def~ $CC -Zdll -Zcrtdll -o $output_objdir/$soname $libobjs $deplibs $compiler_flags $output_objdir/$libname.def~ emximp -o $lib $output_objdir/$libname.def' _LT_TAGVAR(old_archive_From_new_cmds, $1)='emximp -o $output_objdir/${libname}_dll.a $output_objdir/$libname.def' _LT_TAGVAR(enable_shared_with_static_runtimes, $1)=yes ;; osf3*) if test yes = "$GCC"; then _LT_TAGVAR(allow_undefined_flag, $1)=' $wl-expect_unresolved $wl\*' _LT_TAGVAR(archive_cmds, $1)='$CC -shared$allow_undefined_flag $libobjs $deplibs $compiler_flags $wl-soname $wl$soname `test -n "$verstring" && func_echo_all "$wl-set_version $wl$verstring"` $wl-update_registry $wl$output_objdir/so_locations -o $lib' else _LT_TAGVAR(allow_undefined_flag, $1)=' -expect_unresolved \*' _LT_TAGVAR(archive_cmds, $1)='$CC -shared$allow_undefined_flag $libobjs $deplibs $compiler_flags -soname $soname `test -n "$verstring" && func_echo_all "-set_version $verstring"` -update_registry $output_objdir/so_locations -o $lib' fi _LT_TAGVAR(archive_cmds_need_lc, $1)='no' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-rpath $wl$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)=: ;; osf4* | osf5*) # as osf3* with the addition of -msym flag if test yes = "$GCC"; then _LT_TAGVAR(allow_undefined_flag, $1)=' $wl-expect_unresolved $wl\*' _LT_TAGVAR(archive_cmds, $1)='$CC -shared$allow_undefined_flag $pic_flag $libobjs $deplibs $compiler_flags $wl-msym $wl-soname $wl$soname `test -n "$verstring" && func_echo_all "$wl-set_version $wl$verstring"` $wl-update_registry $wl$output_objdir/so_locations -o $lib' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-rpath $wl$libdir' else _LT_TAGVAR(allow_undefined_flag, $1)=' -expect_unresolved \*' _LT_TAGVAR(archive_cmds, $1)='$CC -shared$allow_undefined_flag $libobjs $deplibs $compiler_flags -msym -soname $soname `test -n "$verstring" && func_echo_all "-set_version $verstring"` -update_registry $output_objdir/so_locations -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='for i in `cat $export_symbols`; do printf "%s %s\\n" -exported_symbol "\$i" >> $lib.exp; done; printf "%s\\n" "-hidden">> $lib.exp~ $CC -shared$allow_undefined_flag $wl-input $wl$lib.exp $compiler_flags $libobjs $deplibs -soname $soname `test -n "$verstring" && $ECHO "-set_version $verstring"` -update_registry $output_objdir/so_locations -o $lib~$RM $lib.exp' # Both c and cxx compiler support -rpath directly _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-rpath $libdir' fi _LT_TAGVAR(archive_cmds_need_lc, $1)='no' _LT_TAGVAR(hardcode_libdir_separator, $1)=: ;; solaris*) _LT_TAGVAR(no_undefined_flag, $1)=' -z defs' if test yes = "$GCC"; then wlarc='$wl' _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag $wl-z ${wl}text $wl-h $wl$soname -o $lib $libobjs $deplibs $compiler_flags' _LT_TAGVAR(archive_expsym_cmds, $1)='echo "{ global:" > $lib.exp~cat $export_symbols | $SED -e "s/\(.*\)/\1;/" >> $lib.exp~echo "local: *; };" >> $lib.exp~ $CC -shared $pic_flag $wl-z ${wl}text $wl-M $wl$lib.exp $wl-h $wl$soname -o $lib $libobjs $deplibs $compiler_flags~$RM $lib.exp' else case `$CC -V 2>&1` in *"Compilers 5.0"*) wlarc='' _LT_TAGVAR(archive_cmds, $1)='$LD -G$allow_undefined_flag -h $soname -o $lib $libobjs $deplibs $linker_flags' _LT_TAGVAR(archive_expsym_cmds, $1)='echo "{ global:" > $lib.exp~cat $export_symbols | $SED -e "s/\(.*\)/\1;/" >> $lib.exp~echo "local: *; };" >> $lib.exp~ $LD -G$allow_undefined_flag -M $lib.exp -h $soname -o $lib $libobjs $deplibs $linker_flags~$RM $lib.exp' ;; *) wlarc='$wl' _LT_TAGVAR(archive_cmds, $1)='$CC -G$allow_undefined_flag -h $soname -o $lib $libobjs $deplibs $compiler_flags' _LT_TAGVAR(archive_expsym_cmds, $1)='echo "{ global:" > $lib.exp~cat $export_symbols | $SED -e "s/\(.*\)/\1;/" >> $lib.exp~echo "local: *; };" >> $lib.exp~ $CC -G$allow_undefined_flag -M $lib.exp -h $soname -o $lib $libobjs $deplibs $compiler_flags~$RM $lib.exp' ;; esac fi _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-R$libdir' _LT_TAGVAR(hardcode_shlibpath_var, $1)=no case $host_os in solaris2.[[0-5]] | solaris2.[[0-5]].*) ;; *) # The compiler driver will combine and reorder linker options, # but understands '-z linker_flag'. GCC discards it without '$wl', # but is careful enough not to reorder. # Supported since Solaris 2.6 (maybe 2.5.1?) if test yes = "$GCC"; then _LT_TAGVAR(whole_archive_flag_spec, $1)='$wl-z ${wl}allextract$convenience $wl-z ${wl}defaultextract' else _LT_TAGVAR(whole_archive_flag_spec, $1)='-z allextract$convenience -z defaultextract' fi ;; esac _LT_TAGVAR(link_all_deplibs, $1)=yes ;; sunos4*) if test sequent = "$host_vendor"; then # Use $CC to link under sequent, because it throws in some extra .o # files that make .init and .fini sections work. _LT_TAGVAR(archive_cmds, $1)='$CC -G $wl-h $soname -o $lib $libobjs $deplibs $compiler_flags' else _LT_TAGVAR(archive_cmds, $1)='$LD -assert pure-text -Bstatic -o $lib $libobjs $deplibs $linker_flags' fi _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-L$libdir' _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_minus_L, $1)=yes _LT_TAGVAR(hardcode_shlibpath_var, $1)=no ;; sysv4) case $host_vendor in sni) _LT_TAGVAR(archive_cmds, $1)='$LD -G -h $soname -o $lib $libobjs $deplibs $linker_flags' _LT_TAGVAR(hardcode_direct, $1)=yes # is this really true??? ;; siemens) ## LD is ld it makes a PLAMLIB ## CC just makes a GrossModule. _LT_TAGVAR(archive_cmds, $1)='$LD -G -o $lib $libobjs $deplibs $linker_flags' _LT_TAGVAR(reload_cmds, $1)='$CC -r -o $output$reload_objs' _LT_TAGVAR(hardcode_direct, $1)=no ;; motorola) _LT_TAGVAR(archive_cmds, $1)='$LD -G -h $soname -o $lib $libobjs $deplibs $linker_flags' _LT_TAGVAR(hardcode_direct, $1)=no #Motorola manual says yes, but my tests say they lie ;; esac runpath_var='LD_RUN_PATH' _LT_TAGVAR(hardcode_shlibpath_var, $1)=no ;; sysv4.3*) _LT_TAGVAR(archive_cmds, $1)='$LD -G -h $soname -o $lib $libobjs $deplibs $linker_flags' _LT_TAGVAR(hardcode_shlibpath_var, $1)=no _LT_TAGVAR(export_dynamic_flag_spec, $1)='-Bexport' ;; sysv4*MP*) if test -d /usr/nec; then _LT_TAGVAR(archive_cmds, $1)='$LD -G -h $soname -o $lib $libobjs $deplibs $linker_flags' _LT_TAGVAR(hardcode_shlibpath_var, $1)=no runpath_var=LD_RUN_PATH hardcode_runpath_var=yes _LT_TAGVAR(ld_shlibs, $1)=yes fi ;; sysv4*uw2* | sysv5OpenUNIX* | sysv5UnixWare7.[[01]].[[10]]* | unixware7* | sco3.2v5.0.[[024]]*) _LT_TAGVAR(no_undefined_flag, $1)='$wl-z,text' _LT_TAGVAR(archive_cmds_need_lc, $1)=no _LT_TAGVAR(hardcode_shlibpath_var, $1)=no runpath_var='LD_RUN_PATH' if test yes = "$GCC"; then _LT_TAGVAR(archive_cmds, $1)='$CC -shared $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared $wl-Bexport:$export_symbols $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' else _LT_TAGVAR(archive_cmds, $1)='$CC -G $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -G $wl-Bexport:$export_symbols $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' fi ;; sysv5* | sco3.2v5* | sco5v6*) # Note: We CANNOT use -z defs as we might desire, because we do not # link with -lc, and that would cause any symbols used from libc to # always be unresolved, which means just about no library would # ever link correctly. If we're not using GNU ld we use -z text # though, which does catch some bad symbols but isn't as heavy-handed # as -z defs. _LT_TAGVAR(no_undefined_flag, $1)='$wl-z,text' _LT_TAGVAR(allow_undefined_flag, $1)='$wl-z,nodefs' _LT_TAGVAR(archive_cmds_need_lc, $1)=no _LT_TAGVAR(hardcode_shlibpath_var, $1)=no _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-R,$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)=':' _LT_TAGVAR(link_all_deplibs, $1)=yes _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl-Bexport' runpath_var='LD_RUN_PATH' if test yes = "$GCC"; then _LT_TAGVAR(archive_cmds, $1)='$CC -shared $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared $wl-Bexport:$export_symbols $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' else _LT_TAGVAR(archive_cmds, $1)='$CC -G $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -G $wl-Bexport:$export_symbols $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' fi ;; uts4*) _LT_TAGVAR(archive_cmds, $1)='$LD -G -h $soname -o $lib $libobjs $deplibs $linker_flags' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-L$libdir' _LT_TAGVAR(hardcode_shlibpath_var, $1)=no ;; *) _LT_TAGVAR(ld_shlibs, $1)=no ;; esac if test sni = "$host_vendor"; then case $host in sysv4 | sysv4.2uw2* | sysv4.3* | sysv5*) _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl-Blargedynsym' ;; esac fi fi ]) AC_MSG_RESULT([$_LT_TAGVAR(ld_shlibs, $1)]) test no = "$_LT_TAGVAR(ld_shlibs, $1)" && can_build_shared=no _LT_TAGVAR(with_gnu_ld, $1)=$with_gnu_ld _LT_DECL([], [libext], [0], [Old archive suffix (normally "a")])dnl _LT_DECL([], [shrext_cmds], [1], [Shared library suffix (normally ".so")])dnl _LT_DECL([], [extract_expsyms_cmds], [2], [The commands to extract the exported symbol list from a shared archive]) # # Do we need to explicitly link libc? # case "x$_LT_TAGVAR(archive_cmds_need_lc, $1)" in x|xyes) # Assume -lc should be added _LT_TAGVAR(archive_cmds_need_lc, $1)=yes if test yes,yes = "$GCC,$enable_shared"; then case $_LT_TAGVAR(archive_cmds, $1) in *'~'*) # FIXME: we may have to deal with multi-command sequences. ;; '$CC '*) # Test whether the compiler implicitly links with -lc since on some # systems, -lgcc has to come before -lc. If gcc already passes -lc # to ld, don't add -lc before -lgcc. AC_CACHE_CHECK([whether -lc should be explicitly linked in], [lt_cv_]_LT_TAGVAR(archive_cmds_need_lc, $1), [$RM conftest* echo "$lt_simple_compile_test_code" > conftest.$ac_ext if AC_TRY_EVAL(ac_compile) 2>conftest.err; then soname=conftest lib=conftest libobjs=conftest.$ac_objext deplibs= wl=$_LT_TAGVAR(lt_prog_compiler_wl, $1) pic_flag=$_LT_TAGVAR(lt_prog_compiler_pic, $1) compiler_flags=-v linker_flags=-v verstring= output_objdir=. libname=conftest lt_save_allow_undefined_flag=$_LT_TAGVAR(allow_undefined_flag, $1) _LT_TAGVAR(allow_undefined_flag, $1)= if AC_TRY_EVAL(_LT_TAGVAR(archive_cmds, $1) 2\>\&1 \| $GREP \" -lc \" \>/dev/null 2\>\&1) then lt_cv_[]_LT_TAGVAR(archive_cmds_need_lc, $1)=no else lt_cv_[]_LT_TAGVAR(archive_cmds_need_lc, $1)=yes fi _LT_TAGVAR(allow_undefined_flag, $1)=$lt_save_allow_undefined_flag else cat conftest.err 1>&5 fi $RM conftest* ]) _LT_TAGVAR(archive_cmds_need_lc, $1)=$lt_cv_[]_LT_TAGVAR(archive_cmds_need_lc, $1) ;; esac fi ;; esac _LT_TAGDECL([build_libtool_need_lc], [archive_cmds_need_lc], [0], [Whether or not to add -lc for building shared libraries]) _LT_TAGDECL([allow_libtool_libs_with_static_runtimes], [enable_shared_with_static_runtimes], [0], [Whether or not to disallow shared libs when runtime libs are static]) _LT_TAGDECL([], [export_dynamic_flag_spec], [1], [Compiler flag to allow reflexive dlopens]) _LT_TAGDECL([], [whole_archive_flag_spec], [1], [Compiler flag to generate shared objects directly from archives]) _LT_TAGDECL([], [compiler_needs_object], [1], [Whether the compiler copes with passing no objects directly]) _LT_TAGDECL([], [old_archive_from_new_cmds], [2], [Create an old-style archive from a shared archive]) _LT_TAGDECL([], [old_archive_from_expsyms_cmds], [2], [Create a temporary old-style archive to link instead of a shared archive]) _LT_TAGDECL([], [archive_cmds], [2], [Commands used to build a shared archive]) _LT_TAGDECL([], [archive_expsym_cmds], [2]) _LT_TAGDECL([], [module_cmds], [2], [Commands used to build a loadable module if different from building a shared archive.]) _LT_TAGDECL([], [module_expsym_cmds], [2]) _LT_TAGDECL([], [with_gnu_ld], [1], [Whether we are building with GNU ld or not]) _LT_TAGDECL([], [allow_undefined_flag], [1], [Flag that allows shared libraries with undefined symbols to be built]) _LT_TAGDECL([], [no_undefined_flag], [1], [Flag that enforces no undefined symbols]) _LT_TAGDECL([], [hardcode_libdir_flag_spec], [1], [Flag to hardcode $libdir into a binary during linking. This must work even if $libdir does not exist]) _LT_TAGDECL([], [hardcode_libdir_separator], [1], [Whether we need a single "-rpath" flag with a separated argument]) _LT_TAGDECL([], [hardcode_direct], [0], [Set to "yes" if using DIR/libNAME$shared_ext during linking hardcodes DIR into the resulting binary]) _LT_TAGDECL([], [hardcode_direct_absolute], [0], [Set to "yes" if using DIR/libNAME$shared_ext during linking hardcodes DIR into the resulting binary and the resulting library dependency is "absolute", i.e impossible to change by setting $shlibpath_var if the library is relocated]) _LT_TAGDECL([], [hardcode_minus_L], [0], [Set to "yes" if using the -LDIR flag during linking hardcodes DIR into the resulting binary]) _LT_TAGDECL([], [hardcode_shlibpath_var], [0], [Set to "yes" if using SHLIBPATH_VAR=DIR during linking hardcodes DIR into the resulting binary]) _LT_TAGDECL([], [hardcode_automatic], [0], [Set to "yes" if building a shared library automatically hardcodes DIR into the library and all subsequent libraries and executables linked against it]) _LT_TAGDECL([], [inherit_rpath], [0], [Set to yes if linker adds runtime paths of dependent libraries to runtime path list]) _LT_TAGDECL([], [link_all_deplibs], [0], [Whether libtool must link a program against all its dependency libraries]) _LT_TAGDECL([], [always_export_symbols], [0], [Set to "yes" if exported symbols are required]) _LT_TAGDECL([], [export_symbols_cmds], [2], [The commands to list exported symbols]) _LT_TAGDECL([], [exclude_expsyms], [1], [Symbols that should not be listed in the preloaded symbols]) _LT_TAGDECL([], [include_expsyms], [1], [Symbols that must always be exported]) _LT_TAGDECL([], [prelink_cmds], [2], [Commands necessary for linking programs (against libraries) with templates]) _LT_TAGDECL([], [postlink_cmds], [2], [Commands necessary for finishing linking programs]) _LT_TAGDECL([], [file_list_spec], [1], [Specify filename containing input files]) dnl FIXME: Not yet implemented dnl _LT_TAGDECL([], [thread_safe_flag_spec], [1], dnl [Compiler flag to generate thread safe objects]) ])# _LT_LINKER_SHLIBS # _LT_LANG_C_CONFIG([TAG]) # ------------------------ # Ensure that the configuration variables for a C compiler are suitably # defined. These variables are subsequently used by _LT_CONFIG to write # the compiler configuration to 'libtool'. m4_defun([_LT_LANG_C_CONFIG], [m4_require([_LT_DECL_EGREP])dnl lt_save_CC=$CC AC_LANG_PUSH(C) # Source file extension for C test sources. ac_ext=c # Object file extension for compiled C test sources. objext=o _LT_TAGVAR(objext, $1)=$objext # Code to be used in simple compile tests lt_simple_compile_test_code="int some_variable = 0;" # Code to be used in simple link tests lt_simple_link_test_code='int main(){return(0);}' _LT_TAG_COMPILER # Save the default compiler, since it gets overwritten when the other # tags are being tested, and _LT_TAGVAR(compiler, []) is a NOP. compiler_DEFAULT=$CC # save warnings/boilerplate of simple test code _LT_COMPILER_BOILERPLATE _LT_LINKER_BOILERPLATE ## CAVEAT EMPTOR: ## There is no encapsulation within the following macros, do not change ## the running order or otherwise move them around unless you know exactly ## what you are doing... if test -n "$compiler"; then _LT_COMPILER_NO_RTTI($1) _LT_COMPILER_PIC($1) _LT_COMPILER_C_O($1) _LT_COMPILER_FILE_LOCKS($1) _LT_LINKER_SHLIBS($1) _LT_SYS_DYNAMIC_LINKER($1) _LT_LINKER_HARDCODE_LIBPATH($1) LT_SYS_DLOPEN_SELF _LT_CMD_STRIPLIB # Report what library types will actually be built AC_MSG_CHECKING([if libtool supports shared libraries]) AC_MSG_RESULT([$can_build_shared]) AC_MSG_CHECKING([whether to build shared libraries]) test no = "$can_build_shared" && enable_shared=no # On AIX, shared libraries and static libraries use the same namespace, and # are all built from PIC. case $host_os in aix3*) test yes = "$enable_shared" && enable_static=no if test -n "$RANLIB"; then archive_cmds="$archive_cmds~\$RANLIB \$lib" postinstall_cmds='$RANLIB $lib' fi ;; aix[[4-9]]*) if test ia64 != "$host_cpu"; then case $enable_shared,$with_aix_soname,$aix_use_runtimelinking in yes,aix,yes) ;; # shared object as lib.so file only yes,svr4,*) ;; # shared object as lib.so archive member only yes,*) enable_static=no ;; # shared object in lib.a archive as well esac fi ;; esac AC_MSG_RESULT([$enable_shared]) AC_MSG_CHECKING([whether to build static libraries]) # Make sure either enable_shared or enable_static is yes. test yes = "$enable_shared" || enable_static=yes AC_MSG_RESULT([$enable_static]) _LT_CONFIG($1) fi AC_LANG_POP CC=$lt_save_CC ])# _LT_LANG_C_CONFIG # _LT_LANG_CXX_CONFIG([TAG]) # -------------------------- # Ensure that the configuration variables for a C++ compiler are suitably # defined. These variables are subsequently used by _LT_CONFIG to write # the compiler configuration to 'libtool'. m4_defun([_LT_LANG_CXX_CONFIG], [m4_require([_LT_FILEUTILS_DEFAULTS])dnl m4_require([_LT_DECL_EGREP])dnl m4_require([_LT_PATH_MANIFEST_TOOL])dnl if test -n "$CXX" && ( test no != "$CXX" && ( (test g++ = "$CXX" && `g++ -v >/dev/null 2>&1` ) || (test g++ != "$CXX"))); then AC_PROG_CXXCPP else _lt_caught_CXX_error=yes fi AC_LANG_PUSH(C++) _LT_TAGVAR(archive_cmds_need_lc, $1)=no _LT_TAGVAR(allow_undefined_flag, $1)= _LT_TAGVAR(always_export_symbols, $1)=no _LT_TAGVAR(archive_expsym_cmds, $1)= _LT_TAGVAR(compiler_needs_object, $1)=no _LT_TAGVAR(export_dynamic_flag_spec, $1)= _LT_TAGVAR(hardcode_direct, $1)=no _LT_TAGVAR(hardcode_direct_absolute, $1)=no _LT_TAGVAR(hardcode_libdir_flag_spec, $1)= _LT_TAGVAR(hardcode_libdir_separator, $1)= _LT_TAGVAR(hardcode_minus_L, $1)=no _LT_TAGVAR(hardcode_shlibpath_var, $1)=unsupported _LT_TAGVAR(hardcode_automatic, $1)=no _LT_TAGVAR(inherit_rpath, $1)=no _LT_TAGVAR(module_cmds, $1)= _LT_TAGVAR(module_expsym_cmds, $1)= _LT_TAGVAR(link_all_deplibs, $1)=unknown _LT_TAGVAR(old_archive_cmds, $1)=$old_archive_cmds _LT_TAGVAR(reload_flag, $1)=$reload_flag _LT_TAGVAR(reload_cmds, $1)=$reload_cmds _LT_TAGVAR(no_undefined_flag, $1)= _LT_TAGVAR(whole_archive_flag_spec, $1)= _LT_TAGVAR(enable_shared_with_static_runtimes, $1)=no # Source file extension for C++ test sources. ac_ext=cpp # Object file extension for compiled C++ test sources. objext=o _LT_TAGVAR(objext, $1)=$objext # No sense in running all these tests if we already determined that # the CXX compiler isn't working. Some variables (like enable_shared) # are currently assumed to apply to all compilers on this platform, # and will be corrupted by setting them based on a non-working compiler. if test yes != "$_lt_caught_CXX_error"; then # Code to be used in simple compile tests lt_simple_compile_test_code="int some_variable = 0;" # Code to be used in simple link tests lt_simple_link_test_code='int main(int, char *[[]]) { return(0); }' # ltmain only uses $CC for tagged configurations so make sure $CC is set. _LT_TAG_COMPILER # save warnings/boilerplate of simple test code _LT_COMPILER_BOILERPLATE _LT_LINKER_BOILERPLATE # Allow CC to be a program name with arguments. lt_save_CC=$CC lt_save_CFLAGS=$CFLAGS lt_save_LD=$LD lt_save_GCC=$GCC GCC=$GXX lt_save_with_gnu_ld=$with_gnu_ld lt_save_path_LD=$lt_cv_path_LD if test -n "${lt_cv_prog_gnu_ldcxx+set}"; then lt_cv_prog_gnu_ld=$lt_cv_prog_gnu_ldcxx else $as_unset lt_cv_prog_gnu_ld fi if test -n "${lt_cv_path_LDCXX+set}"; then lt_cv_path_LD=$lt_cv_path_LDCXX else $as_unset lt_cv_path_LD fi test -z "${LDCXX+set}" || LD=$LDCXX CC=${CXX-"c++"} CFLAGS=$CXXFLAGS compiler=$CC _LT_TAGVAR(compiler, $1)=$CC _LT_CC_BASENAME([$compiler]) if test -n "$compiler"; then # We don't want -fno-exception when compiling C++ code, so set the # no_builtin_flag separately if test yes = "$GXX"; then _LT_TAGVAR(lt_prog_compiler_no_builtin_flag, $1)=' -fno-builtin' else _LT_TAGVAR(lt_prog_compiler_no_builtin_flag, $1)= fi if test yes = "$GXX"; then # Set up default GNU C++ configuration LT_PATH_LD # Check if GNU C++ uses GNU ld as the underlying linker, since the # archiving commands below assume that GNU ld is being used. if test yes = "$with_gnu_ld"; then _LT_TAGVAR(archive_cmds, $1)='$CC $pic_flag -shared -nostdlib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags $wl-soname $wl$soname -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC $pic_flag -shared -nostdlib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags $wl-soname $wl$soname $wl-retain-symbols-file $wl$export_symbols -o $lib' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-rpath $wl$libdir' _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl--export-dynamic' # If archive_cmds runs LD, not CC, wlarc should be empty # XXX I think wlarc can be eliminated in ltcf-cxx, but I need to # investigate it a little bit more. (MM) wlarc='$wl' # ancient GNU ld didn't support --whole-archive et. al. if eval "`$CC -print-prog-name=ld` --help 2>&1" | $GREP 'no-whole-archive' > /dev/null; then _LT_TAGVAR(whole_archive_flag_spec, $1)=$wlarc'--whole-archive$convenience '$wlarc'--no-whole-archive' else _LT_TAGVAR(whole_archive_flag_spec, $1)= fi else with_gnu_ld=no wlarc= # A generic and very simple default shared library creation # command for GNU C++ for the case where it uses the native # linker, instead of GNU ld. If possible, this setting should # overridden to take advantage of the native linker features on # the platform it is being used on. _LT_TAGVAR(archive_cmds, $1)='$CC -shared -nostdlib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags -o $lib' fi # Commands to make compiler produce verbose output that lists # what "hidden" libraries, object files and flags are used when # linking a shared library. output_verbose_link_cmd='$CC -shared $CFLAGS -v conftest.$objext 2>&1 | $GREP -v "^Configured with:" | $GREP "\-L"' else GXX=no with_gnu_ld=no wlarc= fi # PORTME: fill in a description of your system's C++ link characteristics AC_MSG_CHECKING([whether the $compiler linker ($LD) supports shared libraries]) _LT_TAGVAR(ld_shlibs, $1)=yes case $host_os in aix3*) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; aix[[4-9]]*) if test ia64 = "$host_cpu"; then # On IA64, the linker does run time linking by default, so we don't # have to do anything special. aix_use_runtimelinking=no exp_sym_flag='-Bexport' no_entry_flag= else aix_use_runtimelinking=no # Test if we are trying to use run time linking or normal # AIX style linking. If -brtl is somewhere in LDFLAGS, we # have runtime linking enabled, and use it for executables. # For shared libraries, we enable/disable runtime linking # depending on the kind of the shared library created - # when "with_aix_soname,aix_use_runtimelinking" is: # "aix,no" lib.a(lib.so.V) shared, rtl:no, for executables # "aix,yes" lib.so shared, rtl:yes, for executables # lib.a static archive # "both,no" lib.so.V(shr.o) shared, rtl:yes # lib.a(lib.so.V) shared, rtl:no, for executables # "both,yes" lib.so.V(shr.o) shared, rtl:yes, for executables # lib.a(lib.so.V) shared, rtl:no # "svr4,*" lib.so.V(shr.o) shared, rtl:yes, for executables # lib.a static archive case $host_os in aix4.[[23]]|aix4.[[23]].*|aix[[5-9]]*) for ld_flag in $LDFLAGS; do case $ld_flag in *-brtl*) aix_use_runtimelinking=yes break ;; esac done if test svr4,no = "$with_aix_soname,$aix_use_runtimelinking"; then # With aix-soname=svr4, we create the lib.so.V shared archives only, # so we don't have lib.a shared libs to link our executables. # We have to force runtime linking in this case. aix_use_runtimelinking=yes LDFLAGS="$LDFLAGS -Wl,-brtl" fi ;; esac exp_sym_flag='-bexport' no_entry_flag='-bnoentry' fi # When large executables or shared objects are built, AIX ld can # have problems creating the table of contents. If linking a library # or program results in "error TOC overflow" add -mminimal-toc to # CXXFLAGS/CFLAGS for g++/gcc. In the cases where that is not # enough to fix the problem, add -Wl,-bbigtoc to LDFLAGS. _LT_TAGVAR(archive_cmds, $1)='' _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_direct_absolute, $1)=yes _LT_TAGVAR(hardcode_libdir_separator, $1)=':' _LT_TAGVAR(link_all_deplibs, $1)=yes _LT_TAGVAR(file_list_spec, $1)='$wl-f,' case $with_aix_soname,$aix_use_runtimelinking in aix,*) ;; # no import file svr4,* | *,yes) # use import file # The Import File defines what to hardcode. _LT_TAGVAR(hardcode_direct, $1)=no _LT_TAGVAR(hardcode_direct_absolute, $1)=no ;; esac if test yes = "$GXX"; then case $host_os in aix4.[[012]]|aix4.[[012]].*) # We only want to do this on AIX 4.2 and lower, the check # below for broken collect2 doesn't work under 4.3+ collect2name=`$CC -print-prog-name=collect2` if test -f "$collect2name" && strings "$collect2name" | $GREP resolve_lib_name >/dev/null then # We have reworked collect2 : else # We have old collect2 _LT_TAGVAR(hardcode_direct, $1)=unsupported # It fails to find uninstalled libraries when the uninstalled # path is not listed in the libpath. Setting hardcode_minus_L # to unsupported forces relinking _LT_TAGVAR(hardcode_minus_L, $1)=yes _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-L$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)= fi esac shared_flag='-shared' if test yes = "$aix_use_runtimelinking"; then shared_flag=$shared_flag' $wl-G' fi # Need to ensure runtime linking is disabled for the traditional # shared library, or the linker may eventually find shared libraries # /with/ Import File - we do not want to mix them. shared_flag_aix='-shared' shared_flag_svr4='-shared $wl-G' else # not using gcc if test ia64 = "$host_cpu"; then # VisualAge C++, Version 5.5 for AIX 5L for IA-64, Beta 3 Release # chokes on -Wl,-G. The following line is correct: shared_flag='-G' else if test yes = "$aix_use_runtimelinking"; then shared_flag='$wl-G' else shared_flag='$wl-bM:SRE' fi shared_flag_aix='$wl-bM:SRE' shared_flag_svr4='$wl-G' fi fi _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl-bexpall' # It seems that -bexpall does not export symbols beginning with # underscore (_), so it is better to generate a list of symbols to # export. _LT_TAGVAR(always_export_symbols, $1)=yes if test aix,yes = "$with_aix_soname,$aix_use_runtimelinking"; then # Warning - without using the other runtime loading flags (-brtl), # -berok will link without error, but may produce a broken library. # The "-G" linker flag allows undefined symbols. _LT_TAGVAR(no_undefined_flag, $1)='-bernotok' # Determine the default libpath from the value encoded in an empty # executable. _LT_SYS_MODULE_PATH_AIX([$1]) _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-blibpath:$libdir:'"$aix_libpath" _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -o $output_objdir/$soname $libobjs $deplibs $wl'$no_entry_flag' $compiler_flags `if test -n "$allow_undefined_flag"; then func_echo_all "$wl$allow_undefined_flag"; else :; fi` $wl'$exp_sym_flag:\$export_symbols' '$shared_flag else if test ia64 = "$host_cpu"; then _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-R $libdir:/usr/lib:/lib' _LT_TAGVAR(allow_undefined_flag, $1)="-z nodefs" _LT_TAGVAR(archive_expsym_cmds, $1)="\$CC $shared_flag"' -o $output_objdir/$soname $libobjs $deplibs '"\$wl$no_entry_flag"' $compiler_flags $wl$allow_undefined_flag '"\$wl$exp_sym_flag:\$export_symbols" else # Determine the default libpath from the value encoded in an # empty executable. _LT_SYS_MODULE_PATH_AIX([$1]) _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-blibpath:$libdir:'"$aix_libpath" # Warning - without using the other run time loading flags, # -berok will link without error, but may produce a broken library. _LT_TAGVAR(no_undefined_flag, $1)=' $wl-bernotok' _LT_TAGVAR(allow_undefined_flag, $1)=' $wl-berok' if test yes = "$with_gnu_ld"; then # We only use this code for GNU lds that support --whole-archive. _LT_TAGVAR(whole_archive_flag_spec, $1)='$wl--whole-archive$convenience $wl--no-whole-archive' else # Exported symbols can be pulled into shared objects from archives _LT_TAGVAR(whole_archive_flag_spec, $1)='$convenience' fi _LT_TAGVAR(archive_cmds_need_lc, $1)=yes _LT_TAGVAR(archive_expsym_cmds, $1)='$RM -r $output_objdir/$realname.d~$MKDIR $output_objdir/$realname.d' # -brtl affects multiple linker settings, -berok does not and is overridden later compiler_flags_filtered='`func_echo_all "$compiler_flags " | $SED -e "s%-brtl\\([[, ]]\\)%-berok\\1%g"`' if test svr4 != "$with_aix_soname"; then # This is similar to how AIX traditionally builds its shared # libraries. Need -bnortl late, we may have -brtl in LDFLAGS. _LT_TAGVAR(archive_expsym_cmds, $1)="$_LT_TAGVAR(archive_expsym_cmds, $1)"'~$CC '$shared_flag_aix' -o $output_objdir/$realname.d/$soname $libobjs $deplibs $wl-bnoentry '$compiler_flags_filtered'$wl-bE:$export_symbols$allow_undefined_flag~$AR $AR_FLAGS $output_objdir/$libname$release.a $output_objdir/$realname.d/$soname' fi if test aix != "$with_aix_soname"; then _LT_TAGVAR(archive_expsym_cmds, $1)="$_LT_TAGVAR(archive_expsym_cmds, $1)"'~$CC '$shared_flag_svr4' -o $output_objdir/$realname.d/$shared_archive_member_spec.o $libobjs $deplibs $wl-bnoentry '$compiler_flags_filtered'$wl-bE:$export_symbols$allow_undefined_flag~$STRIP -e $output_objdir/$realname.d/$shared_archive_member_spec.o~( func_echo_all "#! $soname($shared_archive_member_spec.o)"; if test shr_64 = "$shared_archive_member_spec"; then func_echo_all "# 64"; else func_echo_all "# 32"; fi; cat $export_symbols ) > $output_objdir/$realname.d/$shared_archive_member_spec.imp~$AR $AR_FLAGS $output_objdir/$soname $output_objdir/$realname.d/$shared_archive_member_spec.o $output_objdir/$realname.d/$shared_archive_member_spec.imp' else # used by -dlpreopen to get the symbols _LT_TAGVAR(archive_expsym_cmds, $1)="$_LT_TAGVAR(archive_expsym_cmds, $1)"'~$MV $output_objdir/$realname.d/$soname $output_objdir' fi _LT_TAGVAR(archive_expsym_cmds, $1)="$_LT_TAGVAR(archive_expsym_cmds, $1)"'~$RM -r $output_objdir/$realname.d' fi fi ;; beos*) if $LD --help 2>&1 | $GREP ': supported targets:.* elf' > /dev/null; then _LT_TAGVAR(allow_undefined_flag, $1)=unsupported # Joseph Beckenbach says some releases of gcc # support --undefined. This deserves some investigation. FIXME _LT_TAGVAR(archive_cmds, $1)='$CC -nostart $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' else _LT_TAGVAR(ld_shlibs, $1)=no fi ;; chorus*) case $cc_basename in *) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; esac ;; cygwin* | mingw* | pw32* | cegcc*) case $GXX,$cc_basename in ,cl* | no,cl*) # Native MSVC # hardcode_libdir_flag_spec is actually meaningless, as there is # no search path for DLLs. _LT_TAGVAR(hardcode_libdir_flag_spec, $1)=' ' _LT_TAGVAR(allow_undefined_flag, $1)=unsupported _LT_TAGVAR(always_export_symbols, $1)=yes _LT_TAGVAR(file_list_spec, $1)='@' # Tell ltmain to make .lib files, not .a files. libext=lib # Tell ltmain to make .dll files, not .so files. shrext_cmds=.dll # FIXME: Setting linknames here is a bad hack. _LT_TAGVAR(archive_cmds, $1)='$CC -o $output_objdir/$soname $libobjs $compiler_flags $deplibs -Wl,-DLL,-IMPLIB:"$tool_output_objdir$libname.dll.lib"~linknames=' _LT_TAGVAR(archive_expsym_cmds, $1)='if _LT_DLL_DEF_P([$export_symbols]); then cp "$export_symbols" "$output_objdir/$soname.def"; echo "$tool_output_objdir$soname.def" > "$output_objdir/$soname.exp"; else $SED -e '\''s/^/-link -EXPORT:/'\'' < $export_symbols > $output_objdir/$soname.exp; fi~ $CC -o $tool_output_objdir$soname $libobjs $compiler_flags $deplibs "@$tool_output_objdir$soname.exp" -Wl,-DLL,-IMPLIB:"$tool_output_objdir$libname.dll.lib"~ linknames=' # The linker will not automatically build a static lib if we build a DLL. # _LT_TAGVAR(old_archive_from_new_cmds, $1)='true' _LT_TAGVAR(enable_shared_with_static_runtimes, $1)=yes # Don't use ranlib _LT_TAGVAR(old_postinstall_cmds, $1)='chmod 644 $oldlib' _LT_TAGVAR(postlink_cmds, $1)='lt_outputfile="@OUTPUT@"~ lt_tool_outputfile="@TOOL_OUTPUT@"~ case $lt_outputfile in *.exe|*.EXE) ;; *) lt_outputfile=$lt_outputfile.exe lt_tool_outputfile=$lt_tool_outputfile.exe ;; esac~ func_to_tool_file "$lt_outputfile"~ if test : != "$MANIFEST_TOOL" && test -f "$lt_outputfile.manifest"; then $MANIFEST_TOOL -manifest "$lt_tool_outputfile.manifest" -outputresource:"$lt_tool_outputfile" || exit 1; $RM "$lt_outputfile.manifest"; fi' ;; *) # g++ # _LT_TAGVAR(hardcode_libdir_flag_spec, $1) is actually meaningless, # as there is no search path for DLLs. _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-L$libdir' _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl--export-all-symbols' _LT_TAGVAR(allow_undefined_flag, $1)=unsupported _LT_TAGVAR(always_export_symbols, $1)=no _LT_TAGVAR(enable_shared_with_static_runtimes, $1)=yes if $LD --help 2>&1 | $GREP 'auto-import' > /dev/null; then _LT_TAGVAR(archive_cmds, $1)='$CC -shared -nostdlib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags -o $output_objdir/$soname $wl--enable-auto-image-base -Xlinker --out-implib -Xlinker $lib' # If the export-symbols file already is a .def file, use it as # is; otherwise, prepend EXPORTS... _LT_TAGVAR(archive_expsym_cmds, $1)='if _LT_DLL_DEF_P([$export_symbols]); then cp $export_symbols $output_objdir/$soname.def; else echo EXPORTS > $output_objdir/$soname.def; cat $export_symbols >> $output_objdir/$soname.def; fi~ $CC -shared -nostdlib $output_objdir/$soname.def $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags -o $output_objdir/$soname $wl--enable-auto-image-base -Xlinker --out-implib -Xlinker $lib' else _LT_TAGVAR(ld_shlibs, $1)=no fi ;; esac ;; darwin* | rhapsody*) _LT_DARWIN_LINKER_FEATURES($1) ;; os2*) _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-L$libdir' _LT_TAGVAR(hardcode_minus_L, $1)=yes _LT_TAGVAR(allow_undefined_flag, $1)=unsupported shrext_cmds=.dll _LT_TAGVAR(archive_cmds, $1)='$ECHO "LIBRARY ${soname%$shared_ext} INITINSTANCE TERMINSTANCE" > $output_objdir/$libname.def~ $ECHO "DESCRIPTION \"$libname\"" >> $output_objdir/$libname.def~ $ECHO "DATA MULTIPLE NONSHARED" >> $output_objdir/$libname.def~ $ECHO EXPORTS >> $output_objdir/$libname.def~ emxexp $libobjs | $SED /"_DLL_InitTerm"/d >> $output_objdir/$libname.def~ $CC -Zdll -Zcrtdll -o $output_objdir/$soname $libobjs $deplibs $compiler_flags $output_objdir/$libname.def~ emximp -o $lib $output_objdir/$libname.def' _LT_TAGVAR(archive_expsym_cmds, $1)='$ECHO "LIBRARY ${soname%$shared_ext} INITINSTANCE TERMINSTANCE" > $output_objdir/$libname.def~ $ECHO "DESCRIPTION \"$libname\"" >> $output_objdir/$libname.def~ $ECHO "DATA MULTIPLE NONSHARED" >> $output_objdir/$libname.def~ $ECHO EXPORTS >> $output_objdir/$libname.def~ prefix_cmds="$SED"~ if test EXPORTS = "`$SED 1q $export_symbols`"; then prefix_cmds="$prefix_cmds -e 1d"; fi~ prefix_cmds="$prefix_cmds -e \"s/^\(.*\)$/_\1/g\""~ cat $export_symbols | $prefix_cmds >> $output_objdir/$libname.def~ $CC -Zdll -Zcrtdll -o $output_objdir/$soname $libobjs $deplibs $compiler_flags $output_objdir/$libname.def~ emximp -o $lib $output_objdir/$libname.def' _LT_TAGVAR(old_archive_From_new_cmds, $1)='emximp -o $output_objdir/${libname}_dll.a $output_objdir/$libname.def' _LT_TAGVAR(enable_shared_with_static_runtimes, $1)=yes ;; dgux*) case $cc_basename in ec++*) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; ghcx*) # Green Hills C++ Compiler # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; *) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; esac ;; freebsd2.*) # C++ shared libraries reported to be fairly broken before # switch to ELF _LT_TAGVAR(ld_shlibs, $1)=no ;; freebsd-elf*) _LT_TAGVAR(archive_cmds_need_lc, $1)=no ;; freebsd* | dragonfly*) # FreeBSD 3 and later use GNU C++ and GNU ld with standard ELF # conventions _LT_TAGVAR(ld_shlibs, $1)=yes ;; haiku*) _LT_TAGVAR(archive_cmds, $1)='$CC -shared $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' _LT_TAGVAR(link_all_deplibs, $1)=yes ;; hpux9*) _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl+b $wl$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)=: _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl-E' _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_minus_L, $1)=yes # Not in the search PATH, # but as the default # location of the library. case $cc_basename in CC*) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; aCC*) _LT_TAGVAR(archive_cmds, $1)='$RM $output_objdir/$soname~$CC -b $wl+b $wl$install_libdir -o $output_objdir/$soname $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags~test "x$output_objdir/$soname" = "x$lib" || mv $output_objdir/$soname $lib' # Commands to make compiler produce verbose output that lists # what "hidden" libraries, object files and flags are used when # linking a shared library. # # There doesn't appear to be a way to prevent this compiler from # explicitly linking system object files so we need to strip them # from the output so that they don't get included in the library # dependencies. output_verbose_link_cmd='templist=`($CC -b $CFLAGS -v conftest.$objext 2>&1) | $EGREP "\-L"`; list= ; for z in $templist; do case $z in conftest.$objext) list="$list $z";; *.$objext);; *) list="$list $z";;esac; done; func_echo_all "$list"' ;; *) if test yes = "$GXX"; then _LT_TAGVAR(archive_cmds, $1)='$RM $output_objdir/$soname~$CC -shared -nostdlib $pic_flag $wl+b $wl$install_libdir -o $output_objdir/$soname $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags~test "x$output_objdir/$soname" = "x$lib" || mv $output_objdir/$soname $lib' else # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no fi ;; esac ;; hpux10*|hpux11*) if test no = "$with_gnu_ld"; then _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl+b $wl$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)=: case $host_cpu in hppa*64*|ia64*) ;; *) _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl-E' ;; esac fi case $host_cpu in hppa*64*|ia64*) _LT_TAGVAR(hardcode_direct, $1)=no _LT_TAGVAR(hardcode_shlibpath_var, $1)=no ;; *) _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_direct_absolute, $1)=yes _LT_TAGVAR(hardcode_minus_L, $1)=yes # Not in the search PATH, # but as the default # location of the library. ;; esac case $cc_basename in CC*) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; aCC*) case $host_cpu in hppa*64*) _LT_TAGVAR(archive_cmds, $1)='$CC -b $wl+h $wl$soname -o $lib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags' ;; ia64*) _LT_TAGVAR(archive_cmds, $1)='$CC -b $wl+h $wl$soname $wl+nodefaultrpath -o $lib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags' ;; *) _LT_TAGVAR(archive_cmds, $1)='$CC -b $wl+h $wl$soname $wl+b $wl$install_libdir -o $lib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags' ;; esac # Commands to make compiler produce verbose output that lists # what "hidden" libraries, object files and flags are used when # linking a shared library. # # There doesn't appear to be a way to prevent this compiler from # explicitly linking system object files so we need to strip them # from the output so that they don't get included in the library # dependencies. output_verbose_link_cmd='templist=`($CC -b $CFLAGS -v conftest.$objext 2>&1) | $GREP "\-L"`; list= ; for z in $templist; do case $z in conftest.$objext) list="$list $z";; *.$objext);; *) list="$list $z";;esac; done; func_echo_all "$list"' ;; *) if test yes = "$GXX"; then if test no = "$with_gnu_ld"; then case $host_cpu in hppa*64*) _LT_TAGVAR(archive_cmds, $1)='$CC -shared -nostdlib -fPIC $wl+h $wl$soname -o $lib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags' ;; ia64*) _LT_TAGVAR(archive_cmds, $1)='$CC -shared -nostdlib $pic_flag $wl+h $wl$soname $wl+nodefaultrpath -o $lib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags' ;; *) _LT_TAGVAR(archive_cmds, $1)='$CC -shared -nostdlib $pic_flag $wl+h $wl$soname $wl+b $wl$install_libdir -o $lib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags' ;; esac fi else # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no fi ;; esac ;; interix[[3-9]]*) _LT_TAGVAR(hardcode_direct, $1)=no _LT_TAGVAR(hardcode_shlibpath_var, $1)=no _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-rpath,$libdir' _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl-E' # Hack: On Interix 3.x, we cannot compile PIC because of a broken gcc. # Instead, shared libraries are loaded at an image base (0x10000000 by # default) and relocated if they conflict, which is a slow very memory # consuming and fragmenting process. To avoid this, we pick a random, # 256 KiB-aligned image base between 0x50000000 and 0x6FFC0000 at link # time. Moving up from 0x10000000 also allows more sbrk(2) space. _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-h,$soname $wl--image-base,`expr ${RANDOM-$$} % 4096 / 2 \* 262144 + 1342177280` -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='sed "s|^|_|" $export_symbols >$output_objdir/$soname.expsym~$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-h,$soname $wl--retain-symbols-file,$output_objdir/$soname.expsym $wl--image-base,`expr ${RANDOM-$$} % 4096 / 2 \* 262144 + 1342177280` -o $lib' ;; irix5* | irix6*) case $cc_basename in CC*) # SGI C++ _LT_TAGVAR(archive_cmds, $1)='$CC -shared -all -multigot $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags -soname $soname `test -n "$verstring" && func_echo_all "-set_version $verstring"` -update_registry $output_objdir/so_locations -o $lib' # Archives containing C++ object files must be created using # "CC -ar", where "CC" is the IRIX C++ compiler. This is # necessary to make sure instantiated templates are included # in the archive. _LT_TAGVAR(old_archive_cmds, $1)='$CC -ar -WR,-u -o $oldlib $oldobjs' ;; *) if test yes = "$GXX"; then if test no = "$with_gnu_ld"; then _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag -nostdlib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags $wl-soname $wl$soname `test -n "$verstring" && func_echo_all "$wl-set_version $wl$verstring"` $wl-update_registry $wl$output_objdir/so_locations -o $lib' else _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag -nostdlib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags $wl-soname $wl$soname `test -n "$verstring" && func_echo_all "$wl-set_version $wl$verstring"` -o $lib' fi fi _LT_TAGVAR(link_all_deplibs, $1)=yes ;; esac _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-rpath $wl$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)=: _LT_TAGVAR(inherit_rpath, $1)=yes ;; linux* | k*bsd*-gnu | kopensolaris*-gnu | gnu*) case $cc_basename in KCC*) # Kuck and Associates, Inc. (KAI) C++ Compiler # KCC will only create a shared library if the output file # ends with ".so" (or ".sl" for HP-UX), so rename the library # to its proper name (with version) after linking. _LT_TAGVAR(archive_cmds, $1)='tempext=`echo $shared_ext | $SED -e '\''s/\([[^()0-9A-Za-z{}]]\)/\\\\\1/g'\''`; templib=`echo $lib | $SED -e "s/\$tempext\..*/.so/"`; $CC $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags --soname $soname -o \$templib; mv \$templib $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='tempext=`echo $shared_ext | $SED -e '\''s/\([[^()0-9A-Za-z{}]]\)/\\\\\1/g'\''`; templib=`echo $lib | $SED -e "s/\$tempext\..*/.so/"`; $CC $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags --soname $soname -o \$templib $wl-retain-symbols-file,$export_symbols; mv \$templib $lib' # Commands to make compiler produce verbose output that lists # what "hidden" libraries, object files and flags are used when # linking a shared library. # # There doesn't appear to be a way to prevent this compiler from # explicitly linking system object files so we need to strip them # from the output so that they don't get included in the library # dependencies. output_verbose_link_cmd='templist=`$CC $CFLAGS -v conftest.$objext -o libconftest$shared_ext 2>&1 | $GREP "ld"`; rm -f libconftest$shared_ext; list= ; for z in $templist; do case $z in conftest.$objext) list="$list $z";; *.$objext);; *) list="$list $z";;esac; done; func_echo_all "$list"' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-rpath,$libdir' _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl--export-dynamic' # Archives containing C++ object files must be created using # "CC -Bstatic", where "CC" is the KAI C++ compiler. _LT_TAGVAR(old_archive_cmds, $1)='$CC -Bstatic -o $oldlib $oldobjs' ;; icpc* | ecpc* ) # Intel C++ with_gnu_ld=yes # version 8.0 and above of icpc choke on multiply defined symbols # if we add $predep_objects and $postdep_objects, however 7.1 and # earlier do not add the objects themselves. case `$CC -V 2>&1` in *"Version 7."*) _LT_TAGVAR(archive_cmds, $1)='$CC -shared $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags $wl-soname $wl$soname -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags $wl-soname $wl$soname $wl-retain-symbols-file $wl$export_symbols -o $lib' ;; *) # Version 8.0 or newer tmp_idyn= case $host_cpu in ia64*) tmp_idyn=' -i_dynamic';; esac _LT_TAGVAR(archive_cmds, $1)='$CC -shared'"$tmp_idyn"' $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared'"$tmp_idyn"' $libobjs $deplibs $compiler_flags $wl-soname $wl$soname $wl-retain-symbols-file $wl$export_symbols -o $lib' ;; esac _LT_TAGVAR(archive_cmds_need_lc, $1)=no _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-rpath,$libdir' _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl--export-dynamic' _LT_TAGVAR(whole_archive_flag_spec, $1)='$wl--whole-archive$convenience $wl--no-whole-archive' ;; pgCC* | pgcpp*) # Portland Group C++ compiler case `$CC -V` in *pgCC\ [[1-5]].* | *pgcpp\ [[1-5]].*) _LT_TAGVAR(prelink_cmds, $1)='tpldir=Template.dir~ rm -rf $tpldir~ $CC --prelink_objects --instantiation_dir $tpldir $objs $libobjs $compile_deplibs~ compile_command="$compile_command `find $tpldir -name \*.o | sort | $NL2SP`"' _LT_TAGVAR(old_archive_cmds, $1)='tpldir=Template.dir~ rm -rf $tpldir~ $CC --prelink_objects --instantiation_dir $tpldir $oldobjs$old_deplibs~ $AR $AR_FLAGS $oldlib$oldobjs$old_deplibs `find $tpldir -name \*.o | sort | $NL2SP`~ $RANLIB $oldlib' _LT_TAGVAR(archive_cmds, $1)='tpldir=Template.dir~ rm -rf $tpldir~ $CC --prelink_objects --instantiation_dir $tpldir $predep_objects $libobjs $deplibs $convenience $postdep_objects~ $CC -shared $pic_flag $predep_objects $libobjs $deplibs `find $tpldir -name \*.o | sort | $NL2SP` $postdep_objects $compiler_flags $wl-soname $wl$soname -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='tpldir=Template.dir~ rm -rf $tpldir~ $CC --prelink_objects --instantiation_dir $tpldir $predep_objects $libobjs $deplibs $convenience $postdep_objects~ $CC -shared $pic_flag $predep_objects $libobjs $deplibs `find $tpldir -name \*.o | sort | $NL2SP` $postdep_objects $compiler_flags $wl-soname $wl$soname $wl-retain-symbols-file $wl$export_symbols -o $lib' ;; *) # Version 6 and above use weak symbols _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags $wl-soname $wl$soname -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared $pic_flag $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags $wl-soname $wl$soname $wl-retain-symbols-file $wl$export_symbols -o $lib' ;; esac _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl--rpath $wl$libdir' _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl--export-dynamic' _LT_TAGVAR(whole_archive_flag_spec, $1)='$wl--whole-archive`for conv in $convenience\"\"; do test -n \"$conv\" && new_convenience=\"$new_convenience,$conv\"; done; func_echo_all \"$new_convenience\"` $wl--no-whole-archive' ;; cxx*) # Compaq C++ _LT_TAGVAR(archive_cmds, $1)='$CC -shared $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags $wl-soname $wl$soname -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags $wl-soname $wl$soname -o $lib $wl-retain-symbols-file $wl$export_symbols' runpath_var=LD_RUN_PATH _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-rpath $libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)=: # Commands to make compiler produce verbose output that lists # what "hidden" libraries, object files and flags are used when # linking a shared library. # # There doesn't appear to be a way to prevent this compiler from # explicitly linking system object files so we need to strip them # from the output so that they don't get included in the library # dependencies. output_verbose_link_cmd='templist=`$CC -shared $CFLAGS -v conftest.$objext 2>&1 | $GREP "ld"`; templist=`func_echo_all "$templist" | $SED "s/\(^.*ld.*\)\( .*ld .*$\)/\1/"`; list= ; for z in $templist; do case $z in conftest.$objext) list="$list $z";; *.$objext);; *) list="$list $z";;esac; done; func_echo_all "X$list" | $Xsed' ;; xl* | mpixl* | bgxl*) # IBM XL 8.0 on PPC, with GNU ld _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-rpath $wl$libdir' _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl--export-dynamic' _LT_TAGVAR(archive_cmds, $1)='$CC -qmkshrobj $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' if test yes = "$supports_anon_versioning"; then _LT_TAGVAR(archive_expsym_cmds, $1)='echo "{ global:" > $output_objdir/$libname.ver~ cat $export_symbols | sed -e "s/\(.*\)/\1;/" >> $output_objdir/$libname.ver~ echo "local: *; };" >> $output_objdir/$libname.ver~ $CC -qmkshrobj $libobjs $deplibs $compiler_flags $wl-soname $wl$soname $wl-version-script $wl$output_objdir/$libname.ver -o $lib' fi ;; *) case `$CC -V 2>&1 | sed 5q` in *Sun\ C*) # Sun C++ 5.9 _LT_TAGVAR(no_undefined_flag, $1)=' -zdefs' _LT_TAGVAR(archive_cmds, $1)='$CC -G$allow_undefined_flag -h$soname -o $lib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -G$allow_undefined_flag -h$soname -o $lib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags $wl-retain-symbols-file $wl$export_symbols' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-R$libdir' _LT_TAGVAR(whole_archive_flag_spec, $1)='$wl--whole-archive`new_convenience=; for conv in $convenience\"\"; do test -z \"$conv\" || new_convenience=\"$new_convenience,$conv\"; done; func_echo_all \"$new_convenience\"` $wl--no-whole-archive' _LT_TAGVAR(compiler_needs_object, $1)=yes # Not sure whether something based on # $CC $CFLAGS -v conftest.$objext -o libconftest$shared_ext 2>&1 # would be better. output_verbose_link_cmd='func_echo_all' # Archives containing C++ object files must be created using # "CC -xar", where "CC" is the Sun C++ compiler. This is # necessary to make sure instantiated templates are included # in the archive. _LT_TAGVAR(old_archive_cmds, $1)='$CC -xar -o $oldlib $oldobjs' ;; esac ;; esac ;; lynxos*) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; m88k*) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; mvs*) case $cc_basename in cxx*) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; *) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; esac ;; netbsd*) if echo __ELF__ | $CC -E - | $GREP __ELF__ >/dev/null; then _LT_TAGVAR(archive_cmds, $1)='$LD -Bshareable -o $lib $predep_objects $libobjs $deplibs $postdep_objects $linker_flags' wlarc= _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-R$libdir' _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_shlibpath_var, $1)=no fi # Workaround some broken pre-1.5 toolchains output_verbose_link_cmd='$CC -shared $CFLAGS -v conftest.$objext 2>&1 | $GREP conftest.$objext | $SED -e "s:-lgcc -lc -lgcc::"' ;; *nto* | *qnx*) _LT_TAGVAR(ld_shlibs, $1)=yes ;; openbsd* | bitrig*) if test -f /usr/libexec/ld.so; then _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_shlibpath_var, $1)=no _LT_TAGVAR(hardcode_direct_absolute, $1)=yes _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags -o $lib' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-rpath,$libdir' if test -z "`echo __ELF__ | $CC -E - | grep __ELF__`"; then _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared $pic_flag $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags $wl-retain-symbols-file,$export_symbols -o $lib' _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl-E' _LT_TAGVAR(whole_archive_flag_spec, $1)=$wlarc'--whole-archive$convenience '$wlarc'--no-whole-archive' fi output_verbose_link_cmd=func_echo_all else _LT_TAGVAR(ld_shlibs, $1)=no fi ;; osf3* | osf4* | osf5*) case $cc_basename in KCC*) # Kuck and Associates, Inc. (KAI) C++ Compiler # KCC will only create a shared library if the output file # ends with ".so" (or ".sl" for HP-UX), so rename the library # to its proper name (with version) after linking. _LT_TAGVAR(archive_cmds, $1)='tempext=`echo $shared_ext | $SED -e '\''s/\([[^()0-9A-Za-z{}]]\)/\\\\\1/g'\''`; templib=`echo "$lib" | $SED -e "s/\$tempext\..*/.so/"`; $CC $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags --soname $soname -o \$templib; mv \$templib $lib' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-rpath,$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)=: # Archives containing C++ object files must be created using # the KAI C++ compiler. case $host in osf3*) _LT_TAGVAR(old_archive_cmds, $1)='$CC -Bstatic -o $oldlib $oldobjs' ;; *) _LT_TAGVAR(old_archive_cmds, $1)='$CC -o $oldlib $oldobjs' ;; esac ;; RCC*) # Rational C++ 2.4.1 # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; cxx*) case $host in osf3*) _LT_TAGVAR(allow_undefined_flag, $1)=' $wl-expect_unresolved $wl\*' _LT_TAGVAR(archive_cmds, $1)='$CC -shared$allow_undefined_flag $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags $wl-soname $soname `test -n "$verstring" && func_echo_all "$wl-set_version $verstring"` -update_registry $output_objdir/so_locations -o $lib' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-rpath $wl$libdir' ;; *) _LT_TAGVAR(allow_undefined_flag, $1)=' -expect_unresolved \*' _LT_TAGVAR(archive_cmds, $1)='$CC -shared$allow_undefined_flag $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags -msym -soname $soname `test -n "$verstring" && func_echo_all "-set_version $verstring"` -update_registry $output_objdir/so_locations -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='for i in `cat $export_symbols`; do printf "%s %s\\n" -exported_symbol "\$i" >> $lib.exp; done~ echo "-hidden">> $lib.exp~ $CC -shared$allow_undefined_flag $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags -msym -soname $soname $wl-input $wl$lib.exp `test -n "$verstring" && $ECHO "-set_version $verstring"` -update_registry $output_objdir/so_locations -o $lib~ $RM $lib.exp' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-rpath $libdir' ;; esac _LT_TAGVAR(hardcode_libdir_separator, $1)=: # Commands to make compiler produce verbose output that lists # what "hidden" libraries, object files and flags are used when # linking a shared library. # # There doesn't appear to be a way to prevent this compiler from # explicitly linking system object files so we need to strip them # from the output so that they don't get included in the library # dependencies. output_verbose_link_cmd='templist=`$CC -shared $CFLAGS -v conftest.$objext 2>&1 | $GREP "ld" | $GREP -v "ld:"`; templist=`func_echo_all "$templist" | $SED "s/\(^.*ld.*\)\( .*ld.*$\)/\1/"`; list= ; for z in $templist; do case $z in conftest.$objext) list="$list $z";; *.$objext);; *) list="$list $z";;esac; done; func_echo_all "$list"' ;; *) if test yes,no = "$GXX,$with_gnu_ld"; then _LT_TAGVAR(allow_undefined_flag, $1)=' $wl-expect_unresolved $wl\*' case $host in osf3*) _LT_TAGVAR(archive_cmds, $1)='$CC -shared -nostdlib $allow_undefined_flag $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags $wl-soname $wl$soname `test -n "$verstring" && func_echo_all "$wl-set_version $wl$verstring"` $wl-update_registry $wl$output_objdir/so_locations -o $lib' ;; *) _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag -nostdlib $allow_undefined_flag $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags $wl-msym $wl-soname $wl$soname `test -n "$verstring" && func_echo_all "$wl-set_version $wl$verstring"` $wl-update_registry $wl$output_objdir/so_locations -o $lib' ;; esac _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-rpath $wl$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)=: # Commands to make compiler produce verbose output that lists # what "hidden" libraries, object files and flags are used when # linking a shared library. output_verbose_link_cmd='$CC -shared $CFLAGS -v conftest.$objext 2>&1 | $GREP -v "^Configured with:" | $GREP "\-L"' else # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no fi ;; esac ;; psos*) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; sunos4*) case $cc_basename in CC*) # Sun C++ 4.x # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; lcc*) # Lucid # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; *) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; esac ;; solaris*) case $cc_basename in CC* | sunCC*) # Sun C++ 4.2, 5.x and Centerline C++ _LT_TAGVAR(archive_cmds_need_lc,$1)=yes _LT_TAGVAR(no_undefined_flag, $1)=' -zdefs' _LT_TAGVAR(archive_cmds, $1)='$CC -G$allow_undefined_flag -h$soname -o $lib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags' _LT_TAGVAR(archive_expsym_cmds, $1)='echo "{ global:" > $lib.exp~cat $export_symbols | $SED -e "s/\(.*\)/\1;/" >> $lib.exp~echo "local: *; };" >> $lib.exp~ $CC -G$allow_undefined_flag $wl-M $wl$lib.exp -h$soname -o $lib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags~$RM $lib.exp' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-R$libdir' _LT_TAGVAR(hardcode_shlibpath_var, $1)=no case $host_os in solaris2.[[0-5]] | solaris2.[[0-5]].*) ;; *) # The compiler driver will combine and reorder linker options, # but understands '-z linker_flag'. # Supported since Solaris 2.6 (maybe 2.5.1?) _LT_TAGVAR(whole_archive_flag_spec, $1)='-z allextract$convenience -z defaultextract' ;; esac _LT_TAGVAR(link_all_deplibs, $1)=yes output_verbose_link_cmd='func_echo_all' # Archives containing C++ object files must be created using # "CC -xar", where "CC" is the Sun C++ compiler. This is # necessary to make sure instantiated templates are included # in the archive. _LT_TAGVAR(old_archive_cmds, $1)='$CC -xar -o $oldlib $oldobjs' ;; gcx*) # Green Hills C++ Compiler _LT_TAGVAR(archive_cmds, $1)='$CC -shared $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags $wl-h $wl$soname -o $lib' # The C++ compiler must be used to create the archive. _LT_TAGVAR(old_archive_cmds, $1)='$CC $LDFLAGS -archive -o $oldlib $oldobjs' ;; *) # GNU C++ compiler with Solaris linker if test yes,no = "$GXX,$with_gnu_ld"; then _LT_TAGVAR(no_undefined_flag, $1)=' $wl-z ${wl}defs' if $CC --version | $GREP -v '^2\.7' > /dev/null; then _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag -nostdlib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags $wl-h $wl$soname -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='echo "{ global:" > $lib.exp~cat $export_symbols | $SED -e "s/\(.*\)/\1;/" >> $lib.exp~echo "local: *; };" >> $lib.exp~ $CC -shared $pic_flag -nostdlib $wl-M $wl$lib.exp $wl-h $wl$soname -o $lib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags~$RM $lib.exp' # Commands to make compiler produce verbose output that lists # what "hidden" libraries, object files and flags are used when # linking a shared library. output_verbose_link_cmd='$CC -shared $CFLAGS -v conftest.$objext 2>&1 | $GREP -v "^Configured with:" | $GREP "\-L"' else # g++ 2.7 appears to require '-G' NOT '-shared' on this # platform. _LT_TAGVAR(archive_cmds, $1)='$CC -G -nostdlib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags $wl-h $wl$soname -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='echo "{ global:" > $lib.exp~cat $export_symbols | $SED -e "s/\(.*\)/\1;/" >> $lib.exp~echo "local: *; };" >> $lib.exp~ $CC -G -nostdlib $wl-M $wl$lib.exp $wl-h $wl$soname -o $lib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags~$RM $lib.exp' # Commands to make compiler produce verbose output that lists # what "hidden" libraries, object files and flags are used when # linking a shared library. output_verbose_link_cmd='$CC -G $CFLAGS -v conftest.$objext 2>&1 | $GREP -v "^Configured with:" | $GREP "\-L"' fi _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-R $wl$libdir' case $host_os in solaris2.[[0-5]] | solaris2.[[0-5]].*) ;; *) _LT_TAGVAR(whole_archive_flag_spec, $1)='$wl-z ${wl}allextract$convenience $wl-z ${wl}defaultextract' ;; esac fi ;; esac ;; sysv4*uw2* | sysv5OpenUNIX* | sysv5UnixWare7.[[01]].[[10]]* | unixware7* | sco3.2v5.0.[[024]]*) _LT_TAGVAR(no_undefined_flag, $1)='$wl-z,text' _LT_TAGVAR(archive_cmds_need_lc, $1)=no _LT_TAGVAR(hardcode_shlibpath_var, $1)=no runpath_var='LD_RUN_PATH' case $cc_basename in CC*) _LT_TAGVAR(archive_cmds, $1)='$CC -G $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -G $wl-Bexport:$export_symbols $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' ;; *) _LT_TAGVAR(archive_cmds, $1)='$CC -shared $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared $wl-Bexport:$export_symbols $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' ;; esac ;; sysv5* | sco3.2v5* | sco5v6*) # Note: We CANNOT use -z defs as we might desire, because we do not # link with -lc, and that would cause any symbols used from libc to # always be unresolved, which means just about no library would # ever link correctly. If we're not using GNU ld we use -z text # though, which does catch some bad symbols but isn't as heavy-handed # as -z defs. _LT_TAGVAR(no_undefined_flag, $1)='$wl-z,text' _LT_TAGVAR(allow_undefined_flag, $1)='$wl-z,nodefs' _LT_TAGVAR(archive_cmds_need_lc, $1)=no _LT_TAGVAR(hardcode_shlibpath_var, $1)=no _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-R,$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)=':' _LT_TAGVAR(link_all_deplibs, $1)=yes _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl-Bexport' runpath_var='LD_RUN_PATH' case $cc_basename in CC*) _LT_TAGVAR(archive_cmds, $1)='$CC -G $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -G $wl-Bexport:$export_symbols $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' _LT_TAGVAR(old_archive_cmds, $1)='$CC -Tprelink_objects $oldobjs~ '"$_LT_TAGVAR(old_archive_cmds, $1)" _LT_TAGVAR(reload_cmds, $1)='$CC -Tprelink_objects $reload_objs~ '"$_LT_TAGVAR(reload_cmds, $1)" ;; *) _LT_TAGVAR(archive_cmds, $1)='$CC -shared $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared $wl-Bexport:$export_symbols $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' ;; esac ;; tandem*) case $cc_basename in NCC*) # NonStop-UX NCC 3.20 # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; *) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; esac ;; vxworks*) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; *) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; esac AC_MSG_RESULT([$_LT_TAGVAR(ld_shlibs, $1)]) test no = "$_LT_TAGVAR(ld_shlibs, $1)" && can_build_shared=no _LT_TAGVAR(GCC, $1)=$GXX _LT_TAGVAR(LD, $1)=$LD ## CAVEAT EMPTOR: ## There is no encapsulation within the following macros, do not change ## the running order or otherwise move them around unless you know exactly ## what you are doing... _LT_SYS_HIDDEN_LIBDEPS($1) _LT_COMPILER_PIC($1) _LT_COMPILER_C_O($1) _LT_COMPILER_FILE_LOCKS($1) _LT_LINKER_SHLIBS($1) _LT_SYS_DYNAMIC_LINKER($1) _LT_LINKER_HARDCODE_LIBPATH($1) _LT_CONFIG($1) fi # test -n "$compiler" CC=$lt_save_CC CFLAGS=$lt_save_CFLAGS LDCXX=$LD LD=$lt_save_LD GCC=$lt_save_GCC with_gnu_ld=$lt_save_with_gnu_ld lt_cv_path_LDCXX=$lt_cv_path_LD lt_cv_path_LD=$lt_save_path_LD lt_cv_prog_gnu_ldcxx=$lt_cv_prog_gnu_ld lt_cv_prog_gnu_ld=$lt_save_with_gnu_ld fi # test yes != "$_lt_caught_CXX_error" AC_LANG_POP ])# _LT_LANG_CXX_CONFIG # _LT_FUNC_STRIPNAME_CNF # ---------------------- # func_stripname_cnf prefix suffix name # strip PREFIX and SUFFIX off of NAME. # PREFIX and SUFFIX must not contain globbing or regex special # characters, hashes, percent signs, but SUFFIX may contain a leading # dot (in which case that matches only a dot). # # This function is identical to the (non-XSI) version of func_stripname, # except this one can be used by m4 code that may be executed by configure, # rather than the libtool script. m4_defun([_LT_FUNC_STRIPNAME_CNF],[dnl AC_REQUIRE([_LT_DECL_SED]) AC_REQUIRE([_LT_PROG_ECHO_BACKSLASH]) func_stripname_cnf () { case @S|@2 in .*) func_stripname_result=`$ECHO "@S|@3" | $SED "s%^@S|@1%%; s%\\\\@S|@2\$%%"`;; *) func_stripname_result=`$ECHO "@S|@3" | $SED "s%^@S|@1%%; s%@S|@2\$%%"`;; esac } # func_stripname_cnf ])# _LT_FUNC_STRIPNAME_CNF # _LT_SYS_HIDDEN_LIBDEPS([TAGNAME]) # --------------------------------- # Figure out "hidden" library dependencies from verbose # compiler output when linking a shared library. # Parse the compiler output and extract the necessary # objects, libraries and library flags. m4_defun([_LT_SYS_HIDDEN_LIBDEPS], [m4_require([_LT_FILEUTILS_DEFAULTS])dnl AC_REQUIRE([_LT_FUNC_STRIPNAME_CNF])dnl # Dependencies to place before and after the object being linked: _LT_TAGVAR(predep_objects, $1)= _LT_TAGVAR(postdep_objects, $1)= _LT_TAGVAR(predeps, $1)= _LT_TAGVAR(postdeps, $1)= _LT_TAGVAR(compiler_lib_search_path, $1)= dnl we can't use the lt_simple_compile_test_code here, dnl because it contains code intended for an executable, dnl not a library. It's possible we should let each dnl tag define a new lt_????_link_test_code variable, dnl but it's only used here... m4_if([$1], [], [cat > conftest.$ac_ext <<_LT_EOF int a; void foo (void) { a = 0; } _LT_EOF ], [$1], [CXX], [cat > conftest.$ac_ext <<_LT_EOF class Foo { public: Foo (void) { a = 0; } private: int a; }; _LT_EOF ], [$1], [F77], [cat > conftest.$ac_ext <<_LT_EOF subroutine foo implicit none integer*4 a a=0 return end _LT_EOF ], [$1], [FC], [cat > conftest.$ac_ext <<_LT_EOF subroutine foo implicit none integer a a=0 return end _LT_EOF ], [$1], [GCJ], [cat > conftest.$ac_ext <<_LT_EOF public class foo { private int a; public void bar (void) { a = 0; } }; _LT_EOF ], [$1], [GO], [cat > conftest.$ac_ext <<_LT_EOF package foo func foo() { } _LT_EOF ]) _lt_libdeps_save_CFLAGS=$CFLAGS case "$CC $CFLAGS " in #( *\ -flto*\ *) CFLAGS="$CFLAGS -fno-lto" ;; *\ -fwhopr*\ *) CFLAGS="$CFLAGS -fno-whopr" ;; *\ -fuse-linker-plugin*\ *) CFLAGS="$CFLAGS -fno-use-linker-plugin" ;; esac dnl Parse the compiler output and extract the necessary dnl objects, libraries and library flags. if AC_TRY_EVAL(ac_compile); then # Parse the compiler output and extract the necessary # objects, libraries and library flags. # Sentinel used to keep track of whether or not we are before # the conftest object file. pre_test_object_deps_done=no for p in `eval "$output_verbose_link_cmd"`; do case $prev$p in -L* | -R* | -l*) # Some compilers place space between "-{L,R}" and the path. # Remove the space. if test x-L = "$p" || test x-R = "$p"; then prev=$p continue fi # Expand the sysroot to ease extracting the directories later. if test -z "$prev"; then case $p in -L*) func_stripname_cnf '-L' '' "$p"; prev=-L; p=$func_stripname_result ;; -R*) func_stripname_cnf '-R' '' "$p"; prev=-R; p=$func_stripname_result ;; -l*) func_stripname_cnf '-l' '' "$p"; prev=-l; p=$func_stripname_result ;; esac fi case $p in =*) func_stripname_cnf '=' '' "$p"; p=$lt_sysroot$func_stripname_result ;; esac if test no = "$pre_test_object_deps_done"; then case $prev in -L | -R) # Internal compiler library paths should come after those # provided the user. The postdeps already come after the # user supplied libs so there is no need to process them. if test -z "$_LT_TAGVAR(compiler_lib_search_path, $1)"; then _LT_TAGVAR(compiler_lib_search_path, $1)=$prev$p else _LT_TAGVAR(compiler_lib_search_path, $1)="${_LT_TAGVAR(compiler_lib_search_path, $1)} $prev$p" fi ;; # The "-l" case would never come before the object being # linked, so don't bother handling this case. esac else if test -z "$_LT_TAGVAR(postdeps, $1)"; then _LT_TAGVAR(postdeps, $1)=$prev$p else _LT_TAGVAR(postdeps, $1)="${_LT_TAGVAR(postdeps, $1)} $prev$p" fi fi prev= ;; *.lto.$objext) ;; # Ignore GCC LTO objects *.$objext) # This assumes that the test object file only shows up # once in the compiler output. if test "$p" = "conftest.$objext"; then pre_test_object_deps_done=yes continue fi if test no = "$pre_test_object_deps_done"; then if test -z "$_LT_TAGVAR(predep_objects, $1)"; then _LT_TAGVAR(predep_objects, $1)=$p else _LT_TAGVAR(predep_objects, $1)="$_LT_TAGVAR(predep_objects, $1) $p" fi else if test -z "$_LT_TAGVAR(postdep_objects, $1)"; then _LT_TAGVAR(postdep_objects, $1)=$p else _LT_TAGVAR(postdep_objects, $1)="$_LT_TAGVAR(postdep_objects, $1) $p" fi fi ;; *) ;; # Ignore the rest. esac done # Clean up. rm -f a.out a.exe else echo "libtool.m4: error: problem compiling $1 test program" fi $RM -f confest.$objext CFLAGS=$_lt_libdeps_save_CFLAGS # PORTME: override above test on systems where it is broken m4_if([$1], [CXX], [case $host_os in interix[[3-9]]*) # Interix 3.5 installs completely hosed .la files for C++, so rather than # hack all around it, let's just trust "g++" to DTRT. _LT_TAGVAR(predep_objects,$1)= _LT_TAGVAR(postdep_objects,$1)= _LT_TAGVAR(postdeps,$1)= ;; esac ]) case " $_LT_TAGVAR(postdeps, $1) " in *" -lc "*) _LT_TAGVAR(archive_cmds_need_lc, $1)=no ;; esac _LT_TAGVAR(compiler_lib_search_dirs, $1)= if test -n "${_LT_TAGVAR(compiler_lib_search_path, $1)}"; then _LT_TAGVAR(compiler_lib_search_dirs, $1)=`echo " ${_LT_TAGVAR(compiler_lib_search_path, $1)}" | $SED -e 's! -L! !g' -e 's!^ !!'` fi _LT_TAGDECL([], [compiler_lib_search_dirs], [1], [The directories searched by this compiler when creating a shared library]) _LT_TAGDECL([], [predep_objects], [1], [Dependencies to place before and after the objects being linked to create a shared library]) _LT_TAGDECL([], [postdep_objects], [1]) _LT_TAGDECL([], [predeps], [1]) _LT_TAGDECL([], [postdeps], [1]) _LT_TAGDECL([], [compiler_lib_search_path], [1], [The library search path used internally by the compiler when linking a shared library]) ])# _LT_SYS_HIDDEN_LIBDEPS # _LT_LANG_F77_CONFIG([TAG]) # -------------------------- # Ensure that the configuration variables for a Fortran 77 compiler are # suitably defined. These variables are subsequently used by _LT_CONFIG # to write the compiler configuration to 'libtool'. m4_defun([_LT_LANG_F77_CONFIG], [AC_LANG_PUSH(Fortran 77) if test -z "$F77" || test no = "$F77"; then _lt_disable_F77=yes fi _LT_TAGVAR(archive_cmds_need_lc, $1)=no _LT_TAGVAR(allow_undefined_flag, $1)= _LT_TAGVAR(always_export_symbols, $1)=no _LT_TAGVAR(archive_expsym_cmds, $1)= _LT_TAGVAR(export_dynamic_flag_spec, $1)= _LT_TAGVAR(hardcode_direct, $1)=no _LT_TAGVAR(hardcode_direct_absolute, $1)=no _LT_TAGVAR(hardcode_libdir_flag_spec, $1)= _LT_TAGVAR(hardcode_libdir_separator, $1)= _LT_TAGVAR(hardcode_minus_L, $1)=no _LT_TAGVAR(hardcode_automatic, $1)=no _LT_TAGVAR(inherit_rpath, $1)=no _LT_TAGVAR(module_cmds, $1)= _LT_TAGVAR(module_expsym_cmds, $1)= _LT_TAGVAR(link_all_deplibs, $1)=unknown _LT_TAGVAR(old_archive_cmds, $1)=$old_archive_cmds _LT_TAGVAR(reload_flag, $1)=$reload_flag _LT_TAGVAR(reload_cmds, $1)=$reload_cmds _LT_TAGVAR(no_undefined_flag, $1)= _LT_TAGVAR(whole_archive_flag_spec, $1)= _LT_TAGVAR(enable_shared_with_static_runtimes, $1)=no # Source file extension for f77 test sources. ac_ext=f # Object file extension for compiled f77 test sources. objext=o _LT_TAGVAR(objext, $1)=$objext # No sense in running all these tests if we already determined that # the F77 compiler isn't working. Some variables (like enable_shared) # are currently assumed to apply to all compilers on this platform, # and will be corrupted by setting them based on a non-working compiler. if test yes != "$_lt_disable_F77"; then # Code to be used in simple compile tests lt_simple_compile_test_code="\ subroutine t return end " # Code to be used in simple link tests lt_simple_link_test_code="\ program t end " # ltmain only uses $CC for tagged configurations so make sure $CC is set. _LT_TAG_COMPILER # save warnings/boilerplate of simple test code _LT_COMPILER_BOILERPLATE _LT_LINKER_BOILERPLATE # Allow CC to be a program name with arguments. lt_save_CC=$CC lt_save_GCC=$GCC lt_save_CFLAGS=$CFLAGS CC=${F77-"f77"} CFLAGS=$FFLAGS compiler=$CC _LT_TAGVAR(compiler, $1)=$CC _LT_CC_BASENAME([$compiler]) GCC=$G77 if test -n "$compiler"; then AC_MSG_CHECKING([if libtool supports shared libraries]) AC_MSG_RESULT([$can_build_shared]) AC_MSG_CHECKING([whether to build shared libraries]) test no = "$can_build_shared" && enable_shared=no # On AIX, shared libraries and static libraries use the same namespace, and # are all built from PIC. case $host_os in aix3*) test yes = "$enable_shared" && enable_static=no if test -n "$RANLIB"; then archive_cmds="$archive_cmds~\$RANLIB \$lib" postinstall_cmds='$RANLIB $lib' fi ;; aix[[4-9]]*) if test ia64 != "$host_cpu"; then case $enable_shared,$with_aix_soname,$aix_use_runtimelinking in yes,aix,yes) ;; # shared object as lib.so file only yes,svr4,*) ;; # shared object as lib.so archive member only yes,*) enable_static=no ;; # shared object in lib.a archive as well esac fi ;; esac AC_MSG_RESULT([$enable_shared]) AC_MSG_CHECKING([whether to build static libraries]) # Make sure either enable_shared or enable_static is yes. test yes = "$enable_shared" || enable_static=yes AC_MSG_RESULT([$enable_static]) _LT_TAGVAR(GCC, $1)=$G77 _LT_TAGVAR(LD, $1)=$LD ## CAVEAT EMPTOR: ## There is no encapsulation within the following macros, do not change ## the running order or otherwise move them around unless you know exactly ## what you are doing... _LT_COMPILER_PIC($1) _LT_COMPILER_C_O($1) _LT_COMPILER_FILE_LOCKS($1) _LT_LINKER_SHLIBS($1) _LT_SYS_DYNAMIC_LINKER($1) _LT_LINKER_HARDCODE_LIBPATH($1) _LT_CONFIG($1) fi # test -n "$compiler" GCC=$lt_save_GCC CC=$lt_save_CC CFLAGS=$lt_save_CFLAGS fi # test yes != "$_lt_disable_F77" AC_LANG_POP ])# _LT_LANG_F77_CONFIG # _LT_LANG_FC_CONFIG([TAG]) # ------------------------- # Ensure that the configuration variables for a Fortran compiler are # suitably defined. These variables are subsequently used by _LT_CONFIG # to write the compiler configuration to 'libtool'. m4_defun([_LT_LANG_FC_CONFIG], [AC_LANG_PUSH(Fortran) if test -z "$FC" || test no = "$FC"; then _lt_disable_FC=yes fi _LT_TAGVAR(archive_cmds_need_lc, $1)=no _LT_TAGVAR(allow_undefined_flag, $1)= _LT_TAGVAR(always_export_symbols, $1)=no _LT_TAGVAR(archive_expsym_cmds, $1)= _LT_TAGVAR(export_dynamic_flag_spec, $1)= _LT_TAGVAR(hardcode_direct, $1)=no _LT_TAGVAR(hardcode_direct_absolute, $1)=no _LT_TAGVAR(hardcode_libdir_flag_spec, $1)= _LT_TAGVAR(hardcode_libdir_separator, $1)= _LT_TAGVAR(hardcode_minus_L, $1)=no _LT_TAGVAR(hardcode_automatic, $1)=no _LT_TAGVAR(inherit_rpath, $1)=no _LT_TAGVAR(module_cmds, $1)= _LT_TAGVAR(module_expsym_cmds, $1)= _LT_TAGVAR(link_all_deplibs, $1)=unknown _LT_TAGVAR(old_archive_cmds, $1)=$old_archive_cmds _LT_TAGVAR(reload_flag, $1)=$reload_flag _LT_TAGVAR(reload_cmds, $1)=$reload_cmds _LT_TAGVAR(no_undefined_flag, $1)= _LT_TAGVAR(whole_archive_flag_spec, $1)= _LT_TAGVAR(enable_shared_with_static_runtimes, $1)=no # Source file extension for fc test sources. ac_ext=${ac_fc_srcext-f} # Object file extension for compiled fc test sources. objext=o _LT_TAGVAR(objext, $1)=$objext # No sense in running all these tests if we already determined that # the FC compiler isn't working. Some variables (like enable_shared) # are currently assumed to apply to all compilers on this platform, # and will be corrupted by setting them based on a non-working compiler. if test yes != "$_lt_disable_FC"; then # Code to be used in simple compile tests lt_simple_compile_test_code="\ subroutine t return end " # Code to be used in simple link tests lt_simple_link_test_code="\ program t end " # ltmain only uses $CC for tagged configurations so make sure $CC is set. _LT_TAG_COMPILER # save warnings/boilerplate of simple test code _LT_COMPILER_BOILERPLATE _LT_LINKER_BOILERPLATE # Allow CC to be a program name with arguments. lt_save_CC=$CC lt_save_GCC=$GCC lt_save_CFLAGS=$CFLAGS CC=${FC-"f95"} CFLAGS=$FCFLAGS compiler=$CC GCC=$ac_cv_fc_compiler_gnu _LT_TAGVAR(compiler, $1)=$CC _LT_CC_BASENAME([$compiler]) if test -n "$compiler"; then AC_MSG_CHECKING([if libtool supports shared libraries]) AC_MSG_RESULT([$can_build_shared]) AC_MSG_CHECKING([whether to build shared libraries]) test no = "$can_build_shared" && enable_shared=no # On AIX, shared libraries and static libraries use the same namespace, and # are all built from PIC. case $host_os in aix3*) test yes = "$enable_shared" && enable_static=no if test -n "$RANLIB"; then archive_cmds="$archive_cmds~\$RANLIB \$lib" postinstall_cmds='$RANLIB $lib' fi ;; aix[[4-9]]*) if test ia64 != "$host_cpu"; then case $enable_shared,$with_aix_soname,$aix_use_runtimelinking in yes,aix,yes) ;; # shared object as lib.so file only yes,svr4,*) ;; # shared object as lib.so archive member only yes,*) enable_static=no ;; # shared object in lib.a archive as well esac fi ;; esac AC_MSG_RESULT([$enable_shared]) AC_MSG_CHECKING([whether to build static libraries]) # Make sure either enable_shared or enable_static is yes. test yes = "$enable_shared" || enable_static=yes AC_MSG_RESULT([$enable_static]) _LT_TAGVAR(GCC, $1)=$ac_cv_fc_compiler_gnu _LT_TAGVAR(LD, $1)=$LD ## CAVEAT EMPTOR: ## There is no encapsulation within the following macros, do not change ## the running order or otherwise move them around unless you know exactly ## what you are doing... _LT_SYS_HIDDEN_LIBDEPS($1) _LT_COMPILER_PIC($1) _LT_COMPILER_C_O($1) _LT_COMPILER_FILE_LOCKS($1) _LT_LINKER_SHLIBS($1) _LT_SYS_DYNAMIC_LINKER($1) _LT_LINKER_HARDCODE_LIBPATH($1) _LT_CONFIG($1) fi # test -n "$compiler" GCC=$lt_save_GCC CC=$lt_save_CC CFLAGS=$lt_save_CFLAGS fi # test yes != "$_lt_disable_FC" AC_LANG_POP ])# _LT_LANG_FC_CONFIG # _LT_LANG_GCJ_CONFIG([TAG]) # -------------------------- # Ensure that the configuration variables for the GNU Java Compiler compiler # are suitably defined. These variables are subsequently used by _LT_CONFIG # to write the compiler configuration to 'libtool'. m4_defun([_LT_LANG_GCJ_CONFIG], [AC_REQUIRE([LT_PROG_GCJ])dnl AC_LANG_SAVE # Source file extension for Java test sources. ac_ext=java # Object file extension for compiled Java test sources. objext=o _LT_TAGVAR(objext, $1)=$objext # Code to be used in simple compile tests lt_simple_compile_test_code="class foo {}" # Code to be used in simple link tests lt_simple_link_test_code='public class conftest { public static void main(String[[]] argv) {}; }' # ltmain only uses $CC for tagged configurations so make sure $CC is set. _LT_TAG_COMPILER # save warnings/boilerplate of simple test code _LT_COMPILER_BOILERPLATE _LT_LINKER_BOILERPLATE # Allow CC to be a program name with arguments. lt_save_CC=$CC lt_save_CFLAGS=$CFLAGS lt_save_GCC=$GCC GCC=yes CC=${GCJ-"gcj"} CFLAGS=$GCJFLAGS compiler=$CC _LT_TAGVAR(compiler, $1)=$CC _LT_TAGVAR(LD, $1)=$LD _LT_CC_BASENAME([$compiler]) # GCJ did not exist at the time GCC didn't implicitly link libc in. _LT_TAGVAR(archive_cmds_need_lc, $1)=no _LT_TAGVAR(old_archive_cmds, $1)=$old_archive_cmds _LT_TAGVAR(reload_flag, $1)=$reload_flag _LT_TAGVAR(reload_cmds, $1)=$reload_cmds ## CAVEAT EMPTOR: ## There is no encapsulation within the following macros, do not change ## the running order or otherwise move them around unless you know exactly ## what you are doing... if test -n "$compiler"; then _LT_COMPILER_NO_RTTI($1) _LT_COMPILER_PIC($1) _LT_COMPILER_C_O($1) _LT_COMPILER_FILE_LOCKS($1) _LT_LINKER_SHLIBS($1) _LT_LINKER_HARDCODE_LIBPATH($1) _LT_CONFIG($1) fi AC_LANG_RESTORE GCC=$lt_save_GCC CC=$lt_save_CC CFLAGS=$lt_save_CFLAGS ])# _LT_LANG_GCJ_CONFIG # _LT_LANG_GO_CONFIG([TAG]) # -------------------------- # Ensure that the configuration variables for the GNU Go compiler # are suitably defined. These variables are subsequently used by _LT_CONFIG # to write the compiler configuration to 'libtool'. m4_defun([_LT_LANG_GO_CONFIG], [AC_REQUIRE([LT_PROG_GO])dnl AC_LANG_SAVE # Source file extension for Go test sources. ac_ext=go # Object file extension for compiled Go test sources. objext=o _LT_TAGVAR(objext, $1)=$objext # Code to be used in simple compile tests lt_simple_compile_test_code="package main; func main() { }" # Code to be used in simple link tests lt_simple_link_test_code='package main; func main() { }' # ltmain only uses $CC for tagged configurations so make sure $CC is set. _LT_TAG_COMPILER # save warnings/boilerplate of simple test code _LT_COMPILER_BOILERPLATE _LT_LINKER_BOILERPLATE # Allow CC to be a program name with arguments. lt_save_CC=$CC lt_save_CFLAGS=$CFLAGS lt_save_GCC=$GCC GCC=yes CC=${GOC-"gccgo"} CFLAGS=$GOFLAGS compiler=$CC _LT_TAGVAR(compiler, $1)=$CC _LT_TAGVAR(LD, $1)=$LD _LT_CC_BASENAME([$compiler]) # Go did not exist at the time GCC didn't implicitly link libc in. _LT_TAGVAR(archive_cmds_need_lc, $1)=no _LT_TAGVAR(old_archive_cmds, $1)=$old_archive_cmds _LT_TAGVAR(reload_flag, $1)=$reload_flag _LT_TAGVAR(reload_cmds, $1)=$reload_cmds ## CAVEAT EMPTOR: ## There is no encapsulation within the following macros, do not change ## the running order or otherwise move them around unless you know exactly ## what you are doing... if test -n "$compiler"; then _LT_COMPILER_NO_RTTI($1) _LT_COMPILER_PIC($1) _LT_COMPILER_C_O($1) _LT_COMPILER_FILE_LOCKS($1) _LT_LINKER_SHLIBS($1) _LT_LINKER_HARDCODE_LIBPATH($1) _LT_CONFIG($1) fi AC_LANG_RESTORE GCC=$lt_save_GCC CC=$lt_save_CC CFLAGS=$lt_save_CFLAGS ])# _LT_LANG_GO_CONFIG # _LT_LANG_RC_CONFIG([TAG]) # ------------------------- # Ensure that the configuration variables for the Windows resource compiler # are suitably defined. These variables are subsequently used by _LT_CONFIG # to write the compiler configuration to 'libtool'. m4_defun([_LT_LANG_RC_CONFIG], [AC_REQUIRE([LT_PROG_RC])dnl AC_LANG_SAVE # Source file extension for RC test sources. ac_ext=rc # Object file extension for compiled RC test sources. objext=o _LT_TAGVAR(objext, $1)=$objext # Code to be used in simple compile tests lt_simple_compile_test_code='sample MENU { MENUITEM "&Soup", 100, CHECKED }' # Code to be used in simple link tests lt_simple_link_test_code=$lt_simple_compile_test_code # ltmain only uses $CC for tagged configurations so make sure $CC is set. _LT_TAG_COMPILER # save warnings/boilerplate of simple test code _LT_COMPILER_BOILERPLATE _LT_LINKER_BOILERPLATE # Allow CC to be a program name with arguments. lt_save_CC=$CC lt_save_CFLAGS=$CFLAGS lt_save_GCC=$GCC GCC= CC=${RC-"windres"} CFLAGS= compiler=$CC _LT_TAGVAR(compiler, $1)=$CC _LT_CC_BASENAME([$compiler]) _LT_TAGVAR(lt_cv_prog_compiler_c_o, $1)=yes if test -n "$compiler"; then : _LT_CONFIG($1) fi GCC=$lt_save_GCC AC_LANG_RESTORE CC=$lt_save_CC CFLAGS=$lt_save_CFLAGS ])# _LT_LANG_RC_CONFIG # LT_PROG_GCJ # ----------- AC_DEFUN([LT_PROG_GCJ], [m4_ifdef([AC_PROG_GCJ], [AC_PROG_GCJ], [m4_ifdef([A][M_PROG_GCJ], [A][M_PROG_GCJ], [AC_CHECK_TOOL(GCJ, gcj,) test set = "${GCJFLAGS+set}" || GCJFLAGS="-g -O2" AC_SUBST(GCJFLAGS)])])[]dnl ]) # Old name: AU_ALIAS([LT_AC_PROG_GCJ], [LT_PROG_GCJ]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([LT_AC_PROG_GCJ], []) # LT_PROG_GO # ---------- AC_DEFUN([LT_PROG_GO], [AC_CHECK_TOOL(GOC, gccgo,) ]) # LT_PROG_RC # ---------- AC_DEFUN([LT_PROG_RC], [AC_CHECK_TOOL(RC, windres,) ]) # Old name: AU_ALIAS([LT_AC_PROG_RC], [LT_PROG_RC]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([LT_AC_PROG_RC], []) # _LT_DECL_EGREP # -------------- # If we don't have a new enough Autoconf to choose the best grep # available, choose the one first in the user's PATH. m4_defun([_LT_DECL_EGREP], [AC_REQUIRE([AC_PROG_EGREP])dnl AC_REQUIRE([AC_PROG_FGREP])dnl test -z "$GREP" && GREP=grep _LT_DECL([], [GREP], [1], [A grep program that handles long lines]) _LT_DECL([], [EGREP], [1], [An ERE matcher]) _LT_DECL([], [FGREP], [1], [A literal string matcher]) dnl Non-bleeding-edge autoconf doesn't subst GREP, so do it here too AC_SUBST([GREP]) ]) # _LT_DECL_OBJDUMP # -------------- # If we don't have a new enough Autoconf to choose the best objdump # available, choose the one first in the user's PATH. m4_defun([_LT_DECL_OBJDUMP], [AC_CHECK_TOOL(OBJDUMP, objdump, false) test -z "$OBJDUMP" && OBJDUMP=objdump _LT_DECL([], [OBJDUMP], [1], [An object symbol dumper]) AC_SUBST([OBJDUMP]) ]) # _LT_DECL_DLLTOOL # ---------------- # Ensure DLLTOOL variable is set. m4_defun([_LT_DECL_DLLTOOL], [AC_CHECK_TOOL(DLLTOOL, dlltool, false) test -z "$DLLTOOL" && DLLTOOL=dlltool _LT_DECL([], [DLLTOOL], [1], [DLL creation program]) AC_SUBST([DLLTOOL]) ]) # _LT_DECL_SED # ------------ # Check for a fully-functional sed program, that truncates # as few characters as possible. Prefer GNU sed if found. m4_defun([_LT_DECL_SED], [AC_PROG_SED test -z "$SED" && SED=sed Xsed="$SED -e 1s/^X//" _LT_DECL([], [SED], [1], [A sed program that does not truncate output]) _LT_DECL([], [Xsed], ["\$SED -e 1s/^X//"], [Sed that helps us avoid accidentally triggering echo(1) options like -n]) ])# _LT_DECL_SED m4_ifndef([AC_PROG_SED], [ ############################################################ # NOTE: This macro has been submitted for inclusion into # # GNU Autoconf as AC_PROG_SED. When it is available in # # a released version of Autoconf we should remove this # # macro and use it instead. # ############################################################ m4_defun([AC_PROG_SED], [AC_MSG_CHECKING([for a sed that does not truncate output]) AC_CACHE_VAL(lt_cv_path_SED, [# Loop through the user's path and test for sed and gsed. # Then use that list of sed's as ones to test for truncation. as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for lt_ac_prog in sed gsed; do for ac_exec_ext in '' $ac_executable_extensions; do if $as_executable_p "$as_dir/$lt_ac_prog$ac_exec_ext"; then lt_ac_sed_list="$lt_ac_sed_list $as_dir/$lt_ac_prog$ac_exec_ext" fi done done done IFS=$as_save_IFS lt_ac_max=0 lt_ac_count=0 # Add /usr/xpg4/bin/sed as it is typically found on Solaris # along with /bin/sed that truncates output. for lt_ac_sed in $lt_ac_sed_list /usr/xpg4/bin/sed; do test ! -f "$lt_ac_sed" && continue cat /dev/null > conftest.in lt_ac_count=0 echo $ECHO_N "0123456789$ECHO_C" >conftest.in # Check for GNU sed and select it if it is found. if "$lt_ac_sed" --version 2>&1 < /dev/null | grep 'GNU' > /dev/null; then lt_cv_path_SED=$lt_ac_sed break fi while true; do cat conftest.in conftest.in >conftest.tmp mv conftest.tmp conftest.in cp conftest.in conftest.nl echo >>conftest.nl $lt_ac_sed -e 's/a$//' < conftest.nl >conftest.out || break cmp -s conftest.out conftest.nl || break # 10000 chars as input seems more than enough test 10 -lt "$lt_ac_count" && break lt_ac_count=`expr $lt_ac_count + 1` if test "$lt_ac_count" -gt "$lt_ac_max"; then lt_ac_max=$lt_ac_count lt_cv_path_SED=$lt_ac_sed fi done done ]) SED=$lt_cv_path_SED AC_SUBST([SED]) AC_MSG_RESULT([$SED]) ])#AC_PROG_SED ])#m4_ifndef # Old name: AU_ALIAS([LT_AC_PROG_SED], [AC_PROG_SED]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([LT_AC_PROG_SED], []) # _LT_CHECK_SHELL_FEATURES # ------------------------ # Find out whether the shell is Bourne or XSI compatible, # or has some other useful features. m4_defun([_LT_CHECK_SHELL_FEATURES], [if ( (MAIL=60; unset MAIL) || exit) >/dev/null 2>&1; then lt_unset=unset else lt_unset=false fi _LT_DECL([], [lt_unset], [0], [whether the shell understands "unset"])dnl # test EBCDIC or ASCII case `echo X|tr X '\101'` in A) # ASCII based system # \n is not interpreted correctly by Solaris 8 /usr/ucb/tr lt_SP2NL='tr \040 \012' lt_NL2SP='tr \015\012 \040\040' ;; *) # EBCDIC based system lt_SP2NL='tr \100 \n' lt_NL2SP='tr \r\n \100\100' ;; esac _LT_DECL([SP2NL], [lt_SP2NL], [1], [turn spaces into newlines])dnl _LT_DECL([NL2SP], [lt_NL2SP], [1], [turn newlines into spaces])dnl ])# _LT_CHECK_SHELL_FEATURES # _LT_PATH_CONVERSION_FUNCTIONS # ----------------------------- # Determine what file name conversion functions should be used by # func_to_host_file (and, implicitly, by func_to_host_path). These are needed # for certain cross-compile configurations and native mingw. m4_defun([_LT_PATH_CONVERSION_FUNCTIONS], [AC_REQUIRE([AC_CANONICAL_HOST])dnl AC_REQUIRE([AC_CANONICAL_BUILD])dnl AC_MSG_CHECKING([how to convert $build file names to $host format]) AC_CACHE_VAL(lt_cv_to_host_file_cmd, [case $host in *-*-mingw* ) case $build in *-*-mingw* ) # actually msys lt_cv_to_host_file_cmd=func_convert_file_msys_to_w32 ;; *-*-cygwin* ) lt_cv_to_host_file_cmd=func_convert_file_cygwin_to_w32 ;; * ) # otherwise, assume *nix lt_cv_to_host_file_cmd=func_convert_file_nix_to_w32 ;; esac ;; *-*-cygwin* ) case $build in *-*-mingw* ) # actually msys lt_cv_to_host_file_cmd=func_convert_file_msys_to_cygwin ;; *-*-cygwin* ) lt_cv_to_host_file_cmd=func_convert_file_noop ;; * ) # otherwise, assume *nix lt_cv_to_host_file_cmd=func_convert_file_nix_to_cygwin ;; esac ;; * ) # unhandled hosts (and "normal" native builds) lt_cv_to_host_file_cmd=func_convert_file_noop ;; esac ]) to_host_file_cmd=$lt_cv_to_host_file_cmd AC_MSG_RESULT([$lt_cv_to_host_file_cmd]) _LT_DECL([to_host_file_cmd], [lt_cv_to_host_file_cmd], [0], [convert $build file names to $host format])dnl AC_MSG_CHECKING([how to convert $build file names to toolchain format]) AC_CACHE_VAL(lt_cv_to_tool_file_cmd, [#assume ordinary cross tools, or native build. lt_cv_to_tool_file_cmd=func_convert_file_noop case $host in *-*-mingw* ) case $build in *-*-mingw* ) # actually msys lt_cv_to_tool_file_cmd=func_convert_file_msys_to_w32 ;; esac ;; esac ]) to_tool_file_cmd=$lt_cv_to_tool_file_cmd AC_MSG_RESULT([$lt_cv_to_tool_file_cmd]) _LT_DECL([to_tool_file_cmd], [lt_cv_to_tool_file_cmd], [0], [convert $build files to toolchain format])dnl ])# _LT_PATH_CONVERSION_FUNCTIONS openconnect-8.05/script.c0000664000076400007640000003452313470043037017215 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include #ifndef _WIN32 #include #endif #include #include #include #include #include "openconnect-internal.h" int script_setenv(struct openconnect_info *vpninfo, const char *opt, const char *val, int trunc, int append) { struct oc_vpn_option *p; char *str; for (p = vpninfo->script_env; p; p = p->next) { if (!strcmp(opt, p->option)) { if (append) { if (asprintf(&str, "%s %s", p->value, val) == -1) return -ENOMEM; } else str = val ? strdup(val) : NULL; free (p->value); p->value = str; return 0; } } p = malloc(sizeof(*p)); if (!p) return -ENOMEM; p->next = vpninfo->script_env; p->option = strdup(opt); p->value = val ? (trunc ? strndup(val, trunc) : strdup(val)) : NULL; vpninfo->script_env = p; return 0; } int script_setenv_int(struct openconnect_info *vpninfo, const char *opt, int value) { char buf[16]; sprintf(buf, "%d", value); return script_setenv(vpninfo, opt, buf, 0, 0); } static int netmasklen(struct in_addr addr) { int masklen; for (masklen = 0; masklen < 32; masklen++) { if (ntohl(addr.s_addr) >= (0xffffffff << masklen)) break; } return 32 - masklen; } static uint32_t netmaskbits(int masklen) { if (masklen) return htonl(0xffffffff << (32-masklen)); else /* Shifting by 32 is invalid, so special-case it */ return 0; } static int process_split_xxclude(struct openconnect_info *vpninfo, int include, const char *route, int *v4_incs, int *v6_incs) { struct in_addr addr; const char *in_ex = include ? "IN" : "EX"; char envname[80]; const char *slash; char *endp; int masklen; slash = strchr(route, '/'); envname[79] = 0; if (strchr(route, ':')) { snprintf(envname, 79, "CISCO_IPV6_SPLIT_%sC_%d_ADDR", in_ex, *v6_incs); script_setenv(vpninfo, envname, route, slash ? slash - route : 0, 0); snprintf(envname, 79, "CISCO_IPV6_SPLIT_%sC_%d_MASKLEN", in_ex, *v6_incs); script_setenv(vpninfo, envname, slash ? slash + 1 : "128", 0, 0); (*v6_incs)++; return 0; } if (!slash) { /* no mask (same as /32) */ masklen = 32; addr.s_addr = netmaskbits(32); } else if ((masklen = strtol(slash+1, &endp, 10))<=32 && *endp!='.') { /* mask is /N */ addr.s_addr = netmaskbits(masklen); } else if (inet_aton(slash+1, &addr)) { /* mask is /A.B.C.D */ masklen = netmasklen(addr); } else { if (include) vpn_progress(vpninfo, PRG_ERR, _("Discard bad split include: \"%s\"\n"), route); else vpn_progress(vpninfo, PRG_ERR, _("Discard bad split exclude: \"%s\"\n"), route); return -EINVAL; } snprintf(envname, 79, "CISCO_SPLIT_%sC_%d_ADDR", in_ex, *v4_incs); script_setenv(vpninfo, envname, route, slash ? slash - route : 0, 0); snprintf(envname, 79, "CISCO_SPLIT_%sC_%d_MASK", in_ex, *v4_incs); script_setenv(vpninfo, envname, inet_ntoa(addr), 0, 0); snprintf(envname, 79, "CISCO_SPLIT_%sC_%d_MASKLEN", in_ex, *v4_incs); script_setenv_int(vpninfo, envname, masklen); (*v4_incs)++; return 0; } static void setenv_cstp_opts(struct openconnect_info *vpninfo) { char *env_buf; int buflen = 0; int bufofs = 0; struct oc_vpn_option *opt; for (opt = vpninfo->cstp_options; opt; opt = opt->next) buflen += 2 + strlen(opt->option) + strlen(opt->value); env_buf = malloc(buflen + 1); if (!env_buf) return; env_buf[buflen] = 0; for (opt = vpninfo->cstp_options; opt; opt = opt->next) bufofs += snprintf(env_buf + bufofs, buflen - bufofs, "%s=%s\n", opt->option, opt->value); script_setenv(vpninfo, "CISCO_CSTP_OPTIONS", env_buf, 0, 0); free(env_buf); } static unsigned char nybble(unsigned char n) { if (n >= '0' && n <= '9') return n - '0'; else if (n >= 'A' && n <= 'F') return n - ('A' - 10); else if (n >= 'a' && n <= 'f') return n - ('a' - 10); return 0; } unsigned char unhex(const char *data) { return (nybble(data[0]) << 4) | nybble(data[1]); } static void set_banner(struct openconnect_info *vpninfo) { char *banner, *legacy_banner, *q; const char *p; if (!vpninfo->banner || !(banner = malloc(strlen(vpninfo->banner)+1))) { script_setenv(vpninfo, "CISCO_BANNER", NULL, 0, 0); return; } p = vpninfo->banner; q = banner; while (*p) { if (*p == '%' && isxdigit((int)(unsigned char)p[1]) && isxdigit((int)(unsigned char)p[2])) { *(q++) = unhex(p + 1); p += 3; } else *(q++) = *(p++); } *q = 0; legacy_banner = openconnect_utf8_to_legacy(vpninfo, banner); script_setenv(vpninfo, "CISCO_BANNER", legacy_banner, 0, 0); if (legacy_banner != banner) free(legacy_banner); free(banner); } void prepare_script_env(struct openconnect_info *vpninfo) { if (vpninfo->ip_info.gateway_addr) script_setenv(vpninfo, "VPNGATEWAY", vpninfo->ip_info.gateway_addr, 0, 0); set_banner(vpninfo); script_setenv(vpninfo, "CISCO_SPLIT_INC", NULL, 0, 0); script_setenv(vpninfo, "CISCO_SPLIT_EXC", NULL, 0, 0); script_setenv_int(vpninfo, "INTERNAL_IP4_MTU", vpninfo->ip_info.mtu); if (vpninfo->ip_info.addr) { script_setenv(vpninfo, "INTERNAL_IP4_ADDRESS", vpninfo->ip_info.addr, 0, 0); if (vpninfo->ip_info.netmask) { struct in_addr addr; struct in_addr mask; if (inet_aton(vpninfo->ip_info.addr, &addr) && inet_aton(vpninfo->ip_info.netmask, &mask)) { char *netaddr; addr.s_addr &= mask.s_addr; netaddr = inet_ntoa(addr); script_setenv(vpninfo, "INTERNAL_IP4_NETADDR", netaddr, 0, 0); script_setenv(vpninfo, "INTERNAL_IP4_NETMASK", vpninfo->ip_info.netmask, 0, 0); script_setenv_int(vpninfo, "INTERNAL_IP4_NETMASKLEN", netmasklen(mask)); } } } if (vpninfo->ip_info.addr6) { script_setenv(vpninfo, "INTERNAL_IP6_ADDRESS", vpninfo->ip_info.addr6, 0, 0); script_setenv(vpninfo, "INTERNAL_IP6_NETMASK", vpninfo->ip_info.netmask6, 0, 0); } else if (vpninfo->ip_info.netmask6) { char *slash = strchr(vpninfo->ip_info.netmask6, '/'); script_setenv(vpninfo, "INTERNAL_IP6_NETMASK", vpninfo->ip_info.netmask6, 0, 0); if (slash) script_setenv(vpninfo, "INTERNAL_IP6_ADDRESS", vpninfo->ip_info.netmask6, slash - vpninfo->ip_info.netmask6, 0); } if (vpninfo->ip_info.dns[0]) script_setenv(vpninfo, "INTERNAL_IP4_DNS", vpninfo->ip_info.dns[0], 0, 0); else script_setenv(vpninfo, "INTERNAL_IP4_DNS", NULL, 0, 0); if (vpninfo->ip_info.dns[1]) script_setenv(vpninfo, "INTERNAL_IP4_DNS", vpninfo->ip_info.dns[1], 0, 1); if (vpninfo->ip_info.dns[2]) script_setenv(vpninfo, "INTERNAL_IP4_DNS", vpninfo->ip_info.dns[2], 0, 1); if (vpninfo->ip_info.nbns[0]) script_setenv(vpninfo, "INTERNAL_IP4_NBNS", vpninfo->ip_info.nbns[0], 0, 0); else script_setenv(vpninfo, "INTERNAL_IP4_NBNS", NULL, 0, 0); if (vpninfo->ip_info.nbns[1]) script_setenv(vpninfo, "INTERNAL_IP4_NBNS", vpninfo->ip_info.nbns[1], 0, 1); if (vpninfo->ip_info.nbns[2]) script_setenv(vpninfo, "INTERNAL_IP4_NBNS", vpninfo->ip_info.nbns[2], 0, 1); if (vpninfo->ip_info.domain) script_setenv(vpninfo, "CISCO_DEF_DOMAIN", vpninfo->ip_info.domain, 0, 0); else script_setenv(vpninfo, "CISCO_DEF_DOMAIN", NULL, 0, 0); if (vpninfo->ip_info.proxy_pac) script_setenv(vpninfo, "CISCO_PROXY_PAC", vpninfo->ip_info.proxy_pac, 0, 0); if (vpninfo->ip_info.split_dns) { char *list; int len = 0; struct oc_split_include *dns = vpninfo->ip_info.split_dns; while (dns) { len += strlen(dns->route) + 1; dns = dns->next; } list = malloc(len); if (list) { char *p = list; dns = vpninfo->ip_info.split_dns; while (1) { strcpy(p, dns->route); p += strlen(p); dns = dns->next; if (!dns) break; *(p++) = ','; } script_setenv(vpninfo, "CISCO_SPLIT_DNS", list, 0, 0); free(list); } } if (vpninfo->ip_info.split_includes) { struct oc_split_include *this = vpninfo->ip_info.split_includes; int nr_split_includes = 0; int nr_v6_split_includes = 0; while (this) { process_split_xxclude(vpninfo, 1, this->route, &nr_split_includes, &nr_v6_split_includes); this = this->next; } if (nr_split_includes) script_setenv_int(vpninfo, "CISCO_SPLIT_INC", nr_split_includes); if (nr_v6_split_includes) script_setenv_int(vpninfo, "CISCO_IPV6_SPLIT_INC", nr_v6_split_includes); } if (vpninfo->ip_info.split_excludes) { struct oc_split_include *this = vpninfo->ip_info.split_excludes; int nr_split_excludes = 0; int nr_v6_split_excludes = 0; while (this) { process_split_xxclude(vpninfo, 0, this->route, &nr_split_excludes, &nr_v6_split_excludes); this = this->next; } if (nr_split_excludes) script_setenv_int(vpninfo, "CISCO_SPLIT_EXC", nr_split_excludes); if (nr_v6_split_excludes) script_setenv_int(vpninfo, "CISCO_IPV6_SPLIT_EXC", nr_v6_split_excludes); } setenv_cstp_opts(vpninfo); } void free_split_routes(struct openconnect_info *vpninfo) { struct oc_split_include *inc; for (inc = vpninfo->ip_info.split_includes; inc; ) { struct oc_split_include *next = inc->next; free(inc); inc = next; } for (inc = vpninfo->ip_info.split_excludes; inc; ) { struct oc_split_include *next = inc->next; free(inc); inc = next; } for (inc = vpninfo->ip_info.split_dns; inc; ) { struct oc_split_include *next = inc->next; free(inc); inc = next; } vpninfo->ip_info.split_dns = vpninfo->ip_info.split_includes = vpninfo->ip_info.split_excludes = NULL; } #ifdef _WIN32 static wchar_t *create_script_env(struct openconnect_info *vpninfo) { struct oc_vpn_option *opt; struct oc_text_buf *envbuf; wchar_t **oldenv, **p, *newenv = NULL; int nr_envs = 0, i; /* _wenviron is NULL until we call _wgetenv() */ (void)_wgetenv(L"PATH"); /* Take a copy of _wenviron (but not of its strings) */ for (p = _wenviron; *p; p++) nr_envs++; oldenv = malloc(nr_envs * sizeof(*oldenv)); if (!oldenv) return NULL; memcpy(oldenv, _wenviron, nr_envs * sizeof(*oldenv)); envbuf = buf_alloc(); /* Add the script environment variables, prodding out any members of oldenv which are obsoleted by them. */ for (opt = vpninfo->script_env; opt && !buf_error(envbuf); opt = opt->next) { struct oc_text_buf *buf; buf = buf_alloc(); buf_append_utf16le(buf, opt->option); buf_append_utf16le(buf, "="); if (buf_error(buf)) { buf_free(buf); goto err; } /* See if we can find it in the existing environment */ for (i = 0; i < nr_envs; i++) { if (oldenv[i] && !wcsncmp((wchar_t *)buf->data, oldenv[i], buf->pos / 2)) { oldenv[i] = NULL; break; } } if (opt->value) { buf_append_bytes(envbuf, buf->data, buf->pos); buf_append_utf16le(envbuf, opt->value); buf_append_bytes(envbuf, "\0\0", 2); } buf_free(buf); } for (i = 0; i < nr_envs && !buf_error(envbuf); i++) { if (oldenv[i]) buf_append_bytes(envbuf, oldenv[i], (wcslen(oldenv[i]) + 1) * sizeof(wchar_t)); } buf_append_bytes(envbuf, "\0\0", 2); if (!buf_error(envbuf)) { newenv = (wchar_t *)envbuf->data; envbuf->data = NULL; } err: free(oldenv); buf_free(envbuf); return newenv; } int script_config_tun(struct openconnect_info *vpninfo, const char *reason) { wchar_t *script_w; wchar_t *script_env; int nr_chars; int ret; char *cmd; PROCESS_INFORMATION pi; STARTUPINFOW si; DWORD cpflags; if (!vpninfo->vpnc_script || vpninfo->script_tun) return 0; memset(&si, 0, sizeof(si)); si.cb = sizeof(si); /* probably superfluous */ si.dwFlags = STARTF_USESHOWWINDOW; si.wShowWindow = SW_HIDE; script_setenv(vpninfo, "reason", reason, 0, 0); if (asprintf(&cmd, "cscript.exe \"%s\"", vpninfo->vpnc_script) == -1) return 0; nr_chars = MultiByteToWideChar(CP_UTF8, 0, cmd, -1, NULL, 0); script_w = malloc(nr_chars * sizeof(wchar_t)); if (!script_w) { free(cmd); return -ENOMEM; } MultiByteToWideChar(CP_UTF8, 0, cmd, -1, script_w, nr_chars); free(cmd); script_env = create_script_env(vpninfo); cpflags = CREATE_UNICODE_ENVIRONMENT; /* If we're running from a console, let the script use it too. */ if (!GetConsoleWindow()) cpflags |= CREATE_NO_WINDOW; if (CreateProcessW(NULL, script_w, NULL, NULL, FALSE, cpflags, script_env, NULL, &si, &pi)) { ret = WaitForSingleObject(pi.hProcess,10000); CloseHandle(pi.hThread); CloseHandle(pi.hProcess); if (ret == WAIT_TIMEOUT) ret = -ETIMEDOUT; else ret = 0; } else { ret = -EIO; } free(script_env); if (ret < 0) { char *errstr = openconnect__win32_strerror(GetLastError()); vpn_progress(vpninfo, PRG_ERR, _("Failed to spawn script '%s' for %s: %s\n"), vpninfo->vpnc_script, reason, errstr); free(errstr); goto cleanup; } cleanup: free(script_w); return ret; } #else /* Must only be run after fork(). */ int apply_script_env(struct oc_vpn_option *envs) { struct oc_vpn_option *p; for (p = envs; p; p = p->next) { if (p->value) setenv(p->option, p->value, 1); else unsetenv(p->option); } return 0; } int script_config_tun(struct openconnect_info *vpninfo, const char *reason) { int ret; pid_t pid; if (!vpninfo->vpnc_script || vpninfo->script_tun) return 0; pid = fork(); if (!pid) { /* Child */ char *script = openconnect_utf8_to_legacy(vpninfo, vpninfo->vpnc_script); apply_script_env(vpninfo->script_env); setenv("reason", reason, 1); execl("/bin/sh", "/bin/sh", "-c", script, NULL); exit(127); } if (pid == -1 || waitpid(pid, &ret, 0) == -1) { int e = errno; vpn_progress(vpninfo, PRG_ERR, _("Failed to spawn script '%s' for %s: %s\n"), vpninfo->vpnc_script, reason, strerror(e)); return -e; } if (!WIFEXITED(ret)) { vpn_progress(vpninfo, PRG_ERR, _("Script '%s' exited abnormally (%x)\n"), vpninfo->vpnc_script, ret); return -EIO; } ret = WEXITSTATUS(ret); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("Script '%s' returned error %d\n"), vpninfo->vpnc_script, ret); return -EIO; } return 0; } #endif openconnect-8.05/openconnect.rc0000664000076400007640000000011713245212704020375 0ustar00dwoodhoudwoodhou00000000000000// application icon IDI_ICON1 ICON DISCARDABLE "openconnect.ico" openconnect-8.05/libopenconnect.map.in0000664000076400007640000000557113407155217021660 0ustar00dwoodhoudwoodhou00000000000000OPENCONNECT_5.0 { global: openconnect_check_peer_cert_hash; openconnect_clear_cookie; openconnect_free_cert_info; openconnect_get_cookie; openconnect_get_cstp_cipher; openconnect_get_dtls_cipher; openconnect_get_hostname; openconnect_get_ifname; openconnect_get_ip_info; openconnect_get_peer_cert_DER; openconnect_get_peer_cert_details; openconnect_get_peer_cert_hash; openconnect_get_port; openconnect_get_urlpath; openconnect_get_version; openconnect_has_oath_support; openconnect_has_pkcs11_support; openconnect_has_stoken_support; openconnect_has_system_key_support; openconnect_has_tss_blob_support; openconnect_has_yubioath_support; openconnect_init_ssl; openconnect_mainloop; openconnect_make_cstp_connection; openconnect_obtain_cookie; openconnect_parse_url; openconnect_passphrase_from_fsid; openconnect_reset_ssl; openconnect_set_cafile; openconnect_set_cancel_fd; openconnect_set_cert_expiry_warning; openconnect_set_client_cert; openconnect_set_csd_environ; openconnect_set_dpd; openconnect_set_hostname; openconnect_set_http_proxy; openconnect_set_mobile_info; openconnect_set_option_value; openconnect_set_pfs; openconnect_set_protect_socket_handler; openconnect_set_proxy_auth; openconnect_set_reported_os; openconnect_set_reqmtu; openconnect_set_setup_tun_handler; openconnect_set_stats_handler; openconnect_set_stoken_mode; openconnect_set_system_trust; openconnect_set_token_callbacks; openconnect_set_token_mode; openconnect_set_urlpath; openconnect_set_xmlpost; openconnect_set_xmlsha1; openconnect_setup_cmd_pipe; openconnect_setup_csd; openconnect_setup_dtls; openconnect_setup_tun_device; openconnect_setup_tun_fd; openconnect_setup_tun_script; openconnect_vpninfo_free; openconnect_vpninfo_new; }; OPENCONNECT_5_1 { global: openconnect_set_compression_mode; openconnect_set_loglevel; } OPENCONNECT_5.0; OPENCONNECT_5_2 { global: openconnect_set_http_auth; openconnect_set_protocol; } OPENCONNECT_5_1; OPENCONNECT_5_3 { global: openconnect_disable_ipv6; openconnect_free_peer_cert_chain; openconnect_get_cstp_compression; openconnect_get_dnsname; openconnect_get_dtls_compression; openconnect_get_peer_cert_chain; openconnect_override_getaddrinfo; openconnect_set_localname; openconnect_set_reconnected_handler; } OPENCONNECT_5_2; OPENCONNECT_5_4 { global: openconnect_set_pass_tos; } OPENCONNECT_5_3; OPENCONNECT_5_5 { global: openconnect_get_idle_timeout; openconnect_get_protocol; openconnect_get_supported_protocols; openconnect_free_supported_protocols; openconnect_has_tss2_blob_support; openconnect_set_key_password; openconnect_set_version_string; } OPENCONNECT_5_4; OPENCONNECT_PRIVATE { global: @SYMVER_TIME@ @SYMVER_GETLINE@ @SYMVER_JAVA@ @SYMVER_ASPRINTF@ @SYMVER_VASPRINTF@ @SYMVER_WIN32_STRERROR@ openconnect_fopen_utf8; openconnect_open_utf8; openconnect_sha1; openconnect_version_str; local: *; }; openconnect-8.05/compat.c0000664000076400007640000002424313025070326017167 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Authors: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include #include "openconnect-internal.h" #ifdef HAVE_SUNOS_BROKEN_TIME /* * On SunOS, time() goes backwards. Thankfully, gethrtime() doesn't. * https://www.illumos.org/issues/1871 and, for Solaris 11, Oracle * bug ID #15760793 (previously Sun CR ID 7121035). */ #include time_t openconnect__time(time_t *t) { time_t s = gethrtime() / 1000000000LL; if (t) *t = s; return s; } #endif #ifndef HAVE_VASPRINTF int openconnect__vasprintf(char **strp, const char *fmt, va_list ap) { va_list ap2; char *res = NULL; int len = 160, len2; int ret = 0; int errno_save = -ENOMEM; res = malloc(160); if (!res) goto err; /* Use a copy of 'ap', preserving it in case we need to retry into a larger buffer. 160 characters should be sufficient for most strings in openconnect. */ #ifdef HAVE_VA_COPY va_copy(ap2, ap); #elif defined(HAVE___VA_COPY) __va_copy(ap2, ap); #else #error No va_copy()! /* You could try this. */ ap2 = ap; /* Or this */ *ap2 = *ap; #endif len = vsnprintf(res, 160, fmt, ap2); va_end(ap2); if (len < 0) { printf_err: errno_save = errno; free(res); res = NULL; goto err; } if (len >= 0 && len < 160) goto out; free(res); res = malloc(len+1); if (!res) goto err; len2 = vsnprintf(res, len+1, fmt, ap); if (len2 < 0 || len2 > len) goto printf_err; ret = 0; goto out; err: errno = errno_save; ret = -1; out: *strp = res; return ret; } #endif #ifndef HAVE_ASPRINTF int openconnect__asprintf(char **strp, const char *fmt, ...) { va_list ap; int ret; va_start(ap, fmt); ret = vasprintf(strp, fmt, ap); va_end(ap); return ret; } #endif #ifndef HAVE_GETLINE ssize_t openconnect__getline(char **lineptr, size_t *n, FILE *stream) { int len = 0; if (!*lineptr) { *n = 2; *lineptr = malloc(*n); if (!*lineptr) return -1; } while (fgets((*lineptr) + len, (*n) - len, stream)) { len += strlen((*lineptr) + len); if ((*lineptr)[len-1] == '\n') break; *n *= 2; realloc_inplace(*lineptr, *n); if (!*lineptr) return -1; } if (len) return len; return -1; } #endif #ifndef HAVE_STRCASESTR char *openconnect__strcasestr(const char *haystack, const char *needle) { int hlen = strlen(haystack); int nlen = strlen(needle); int i, j; for (i = 0; i < hlen - nlen + 1; i++) { for (j = 0; j < nlen; j++) { if (tolower(haystack[i + j]) != tolower(needle[j])) break; } if (j == nlen) return (char *)haystack + i; } return NULL; } #endif #ifndef HAVE_STRNDUP char *openconnect__strndup(const char *s, size_t n) { char *r; if (n > strlen(s)) n = strlen(s); r = malloc(n + 1); if (r) { memcpy(r, s, n); r[n] = 0; } return r; } #endif #ifndef HAVE_INET_ATON int openconnect__inet_aton(const char *cp, struct in_addr *addr) { return inet_pton(AF_INET, cp, addr); } #endif #ifdef _WIN32 char *openconnect__win32_strerror(DWORD err) { wchar_t *msgw; char *msgutf8; int nr_chars; if (!FormatMessageW(FORMAT_MESSAGE_FROM_SYSTEM | FORMAT_MESSAGE_IGNORE_INSERTS | FORMAT_MESSAGE_ALLOCATE_BUFFER, NULL, err, MAKELANGID(LANG_NEUTRAL, SUBLANG_DEFAULT), (LPWSTR)&msgw, 0, NULL)) { if (asprintf(&msgutf8, _("(error 0x%lx)"), err) != -1) return msgutf8; fail: return strdup(_("(Error while describing error!)")); } nr_chars = wcslen(msgw); if (nr_chars && msgw[nr_chars - 1] == 10) msgw[--nr_chars] = 0; if (nr_chars && msgw[nr_chars - 1] == 13) msgw[--nr_chars] = 0; nr_chars = WideCharToMultiByte(CP_UTF8, 0, msgw, -1, NULL, 0, NULL, NULL); msgutf8 = malloc(nr_chars); if (!msgutf8) goto fail; WideCharToMultiByte(CP_UTF8, 0, msgw, -1, msgutf8, nr_chars, NULL, NULL); LocalFree(msgw); return msgutf8; } int openconnect__win32_sock_init() { WSADATA data; if (WSAStartup (MAKEWORD(1, 1), &data) != 0) { fprintf(stderr, _("ERROR: Cannot initialize sockets\n")); return -EIO; } return 0; } int openconnect__win32_inet_pton(int af, const char *src, void *dst) { union { struct sockaddr_in s4; struct sockaddr_in6 s6; } sa; int salen = sizeof(sa); if (af != AF_INET && af != AF_INET6) { errno = EAFNOSUPPORT; return -1; } memset(&sa, 0, sizeof(sa)); sa.s4.sin_family = af; if (WSAStringToAddressA((char *)src, af, NULL, (void *)&sa, &salen)) return 0; /* For Legacy IP we need to filter out a lot of crap that * inet_aton() (and WSAStringToAddress()) will support, but * which inet_pton() should not. Not to mention the fact that * Wine's implementation will even succeed for strings like * "2001::1" (http://bugs.winehq.org/show_bug.cgi?id=36991) */ if (af == AF_INET) { char canon[16]; unsigned char *a = (unsigned char *)&sa.s4.sin_addr; snprintf(canon, sizeof(canon), "%d.%d.%d.%d", a[0], a[1], a[2], a[3]); if (strcmp(canon, src)) return 0; memcpy(dst, &sa.s4.sin_addr, sizeof(sa.s4.sin_addr)); return 1; } else { memcpy(dst, &sa.s6.sin6_addr, sizeof(sa.s6.sin6_addr)); return 1; } } /* https://github.com/ncm/selectable-socketpair Copyright 2007, 2010 by Nathan C. Myers Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met: Redistributions of source code must retain the above copyright notice, this list of conditions and the following disclaimer. Redistributions in binary form must reproduce the above copyright notice, this list of conditions and the following disclaimer in the documentation and/or other materials provided with the distribution. The name of the author must not be used to endorse or promote products derived from this software without specific prior written permission. THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. */ /* Changes: * 2013-07-18: Change to BSD 3-clause license * 2010-03-31: * set addr to 127.0.0.1 because win32 getsockname does not always set it. * 2010-02-25: * set SO_REUSEADDR option to avoid leaking some windows resource. * Windows System Error 10049, "Event ID 4226 TCP/IP has reached * the security limit imposed on the number of concurrent TCP connect * attempts." Bleah. * 2007-04-25: * preserve value of WSAGetLastError() on all error returns. * 2007-04-22: (Thanks to Matthew Gregan ) * s/EINVAL/WSAEINVAL/ fix trivial compile failure * s/socket/WSASocket/ enable creation of sockets suitable as stdin/stdout * of a child process. * add argument make_overlapped */ #include # include # include # include /* dumb_socketpair: * If make_overlapped is nonzero, both sockets created will be usable for * "overlapped" operations via WSASend etc. If make_overlapped is zero, * socks[0] (only) will be usable with regular ReadFile etc., and thus * suitable for use as stdin or stdout of a child process. Note that the * sockets must be closed with closesocket() regardless. */ OPENCONNECT_CMD_SOCKET dumb_socketpair(OPENCONNECT_CMD_SOCKET socks[2], int make_overlapped) { union { struct sockaddr_in inaddr; struct sockaddr addr; } a; OPENCONNECT_CMD_SOCKET listener; int e; socklen_t addrlen = sizeof(a.inaddr); DWORD flags = (make_overlapped ? WSA_FLAG_OVERLAPPED : 0); int reuse = 1; if (socks == 0) { WSASetLastError(WSAEINVAL); return SOCKET_ERROR; } listener = socket(AF_INET, SOCK_STREAM, IPPROTO_TCP); if (listener == INVALID_SOCKET) return SOCKET_ERROR; memset(&a, 0, sizeof(a)); a.inaddr.sin_family = AF_INET; a.inaddr.sin_addr.s_addr = htonl(INADDR_LOOPBACK); a.inaddr.sin_port = 0; socks[0] = socks[1] = -1; do { if (setsockopt(listener, SOL_SOCKET, SO_REUSEADDR, (char*) &reuse, (socklen_t) sizeof(reuse)) == -1) break; if (bind(listener, &a.addr, sizeof(a.inaddr)) == SOCKET_ERROR) break; memset(&a, 0, sizeof(a)); if (getsockname(listener, &a.addr, &addrlen) == SOCKET_ERROR) break; // win32 getsockname may only set the port number, p=0.0005. // ( http://msdn.microsoft.com/library/ms738543.aspx ): a.inaddr.sin_addr.s_addr = htonl(INADDR_LOOPBACK); a.inaddr.sin_family = AF_INET; if (listen(listener, 1) == SOCKET_ERROR) break; socks[0] = WSASocket(AF_INET, SOCK_STREAM, 0, NULL, 0, flags); if (socks[0] == INVALID_SOCKET) break; if (connect(socks[0], &a.addr, sizeof(a.inaddr)) == SOCKET_ERROR) break; socks[1] = accept(listener, NULL, NULL); if (socks[1] == INVALID_SOCKET) break; closesocket(listener); return 0; } while (0); e = WSAGetLastError(); closesocket(listener); closesocket(socks[0]); closesocket(socks[1]); WSASetLastError(e); return SOCKET_ERROR; } #endif /* _WIN32 */ openconnect-8.05/config.guess0000755000076400007640000012617313502152240020057 0ustar00dwoodhoudwoodhou00000000000000#! /bin/sh # Attempt to guess a canonical system name. # Copyright 1992-2018 Free Software Foundation, Inc. timestamp='2018-08-29' # This file is free software; you can redistribute it and/or modify it # under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 3 of the License, or # (at your option) any later version. # # This program is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program; if not, see . # # As a special exception to the GNU General Public License, if you # distribute this file as part of a program that contains a # configuration script generated by Autoconf, you may include it under # the same distribution terms that you use for the rest of that # program. This Exception is an additional permission under section 7 # of the GNU General Public License, version 3 ("GPLv3"). # # Originally written by Per Bothner; maintained since 2000 by Ben Elliston. # # You can get the latest version of this script from: # https://git.savannah.gnu.org/gitweb/?p=config.git;a=blob_plain;f=config.guess # # Please send patches to . me=`echo "$0" | sed -e 's,.*/,,'` usage="\ Usage: $0 [OPTION] Output the configuration name of the system \`$me' is run on. Options: -h, --help print this help, then exit -t, --time-stamp print date of last modification, then exit -v, --version print version number, then exit Report bugs and patches to ." version="\ GNU config.guess ($timestamp) Originally written by Per Bothner. Copyright 1992-2018 Free Software Foundation, Inc. This is free software; see the source for copying conditions. There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE." help=" Try \`$me --help' for more information." # Parse command line while test $# -gt 0 ; do case $1 in --time-stamp | --time* | -t ) echo "$timestamp" ; exit ;; --version | -v ) echo "$version" ; exit ;; --help | --h* | -h ) echo "$usage"; exit ;; -- ) # Stop option processing shift; break ;; - ) # Use stdin as input. break ;; -* ) echo "$me: invalid option $1$help" >&2 exit 1 ;; * ) break ;; esac done if test $# != 0; then echo "$me: too many arguments$help" >&2 exit 1 fi # CC_FOR_BUILD -- compiler used by this script. Note that the use of a # compiler to aid in system detection is discouraged as it requires # temporary files to be created and, as you can see below, it is a # headache to deal with in a portable fashion. # Historically, `CC_FOR_BUILD' used to be named `HOST_CC'. We still # use `HOST_CC' if defined, but it is deprecated. # Portable tmp directory creation inspired by the Autoconf team. tmp= # shellcheck disable=SC2172 trap 'test -z "$tmp" || rm -fr "$tmp"' 1 2 13 15 trap 'exitcode=$?; test -z "$tmp" || rm -fr "$tmp"; exit $exitcode' 0 set_cc_for_build() { : "${TMPDIR=/tmp}" # shellcheck disable=SC2039 { tmp=`(umask 077 && mktemp -d "$TMPDIR/cgXXXXXX") 2>/dev/null` && test -n "$tmp" && test -d "$tmp" ; } || { test -n "$RANDOM" && tmp=$TMPDIR/cg$$-$RANDOM && (umask 077 && mkdir "$tmp" 2>/dev/null) ; } || { tmp=$TMPDIR/cg-$$ && (umask 077 && mkdir "$tmp" 2>/dev/null) && echo "Warning: creating insecure temp directory" >&2 ; } || { echo "$me: cannot create a temporary directory in $TMPDIR" >&2 ; exit 1 ; } dummy=$tmp/dummy case ${CC_FOR_BUILD-},${HOST_CC-},${CC-} in ,,) echo "int x;" > "$dummy.c" for driver in cc gcc c89 c99 ; do if ($driver -c -o "$dummy.o" "$dummy.c") >/dev/null 2>&1 ; then CC_FOR_BUILD="$driver" break fi done if test x"$CC_FOR_BUILD" = x ; then CC_FOR_BUILD=no_compiler_found fi ;; ,,*) CC_FOR_BUILD=$CC ;; ,*,*) CC_FOR_BUILD=$HOST_CC ;; esac } # This is needed to find uname on a Pyramid OSx when run in the BSD universe. # (ghazi@noc.rutgers.edu 1994-08-24) if test -f /.attbin/uname ; then PATH=$PATH:/.attbin ; export PATH fi UNAME_MACHINE=`(uname -m) 2>/dev/null` || UNAME_MACHINE=unknown UNAME_RELEASE=`(uname -r) 2>/dev/null` || UNAME_RELEASE=unknown UNAME_SYSTEM=`(uname -s) 2>/dev/null` || UNAME_SYSTEM=unknown UNAME_VERSION=`(uname -v) 2>/dev/null` || UNAME_VERSION=unknown case "$UNAME_SYSTEM" in Linux|GNU|GNU/*) # If the system lacks a compiler, then just pick glibc. # We could probably try harder. LIBC=gnu set_cc_for_build cat <<-EOF > "$dummy.c" #include #if defined(__UCLIBC__) LIBC=uclibc #elif defined(__dietlibc__) LIBC=dietlibc #else LIBC=gnu #endif EOF eval "`$CC_FOR_BUILD -E "$dummy.c" 2>/dev/null | grep '^LIBC' | sed 's, ,,g'`" # If ldd exists, use it to detect musl libc. if command -v ldd >/dev/null && \ ldd --version 2>&1 | grep -q ^musl then LIBC=musl fi ;; esac # Note: order is significant - the case branches are not exclusive. case "$UNAME_MACHINE:$UNAME_SYSTEM:$UNAME_RELEASE:$UNAME_VERSION" in *:NetBSD:*:*) # NetBSD (nbsd) targets should (where applicable) match one or # more of the tuples: *-*-netbsdelf*, *-*-netbsdaout*, # *-*-netbsdecoff* and *-*-netbsd*. For targets that recently # switched to ELF, *-*-netbsd* would select the old # object file format. This provides both forward # compatibility and a consistent mechanism for selecting the # object file format. # # Note: NetBSD doesn't particularly care about the vendor # portion of the name. We always set it to "unknown". sysctl="sysctl -n hw.machine_arch" UNAME_MACHINE_ARCH=`(uname -p 2>/dev/null || \ "/sbin/$sysctl" 2>/dev/null || \ "/usr/sbin/$sysctl" 2>/dev/null || \ echo unknown)` case "$UNAME_MACHINE_ARCH" in armeb) machine=armeb-unknown ;; arm*) machine=arm-unknown ;; sh3el) machine=shl-unknown ;; sh3eb) machine=sh-unknown ;; sh5el) machine=sh5le-unknown ;; earmv*) arch=`echo "$UNAME_MACHINE_ARCH" | sed -e 's,^e\(armv[0-9]\).*$,\1,'` endian=`echo "$UNAME_MACHINE_ARCH" | sed -ne 's,^.*\(eb\)$,\1,p'` machine="${arch}${endian}"-unknown ;; *) machine="$UNAME_MACHINE_ARCH"-unknown ;; esac # The Operating System including object format, if it has switched # to ELF recently (or will in the future) and ABI. case "$UNAME_MACHINE_ARCH" in earm*) os=netbsdelf ;; arm*|i386|m68k|ns32k|sh3*|sparc|vax) set_cc_for_build if echo __ELF__ | $CC_FOR_BUILD -E - 2>/dev/null \ | grep -q __ELF__ then # Once all utilities can be ECOFF (netbsdecoff) or a.out (netbsdaout). # Return netbsd for either. FIX? os=netbsd else os=netbsdelf fi ;; *) os=netbsd ;; esac # Determine ABI tags. case "$UNAME_MACHINE_ARCH" in earm*) expr='s/^earmv[0-9]/-eabi/;s/eb$//' abi=`echo "$UNAME_MACHINE_ARCH" | sed -e "$expr"` ;; esac # The OS release # Debian GNU/NetBSD machines have a different userland, and # thus, need a distinct triplet. However, they do not need # kernel version information, so it can be replaced with a # suitable tag, in the style of linux-gnu. case "$UNAME_VERSION" in Debian*) release='-gnu' ;; *) release=`echo "$UNAME_RELEASE" | sed -e 's/[-_].*//' | cut -d. -f1,2` ;; esac # Since CPU_TYPE-MANUFACTURER-KERNEL-OPERATING_SYSTEM: # contains redundant information, the shorter form: # CPU_TYPE-MANUFACTURER-OPERATING_SYSTEM is used. echo "$machine-${os}${release}${abi-}" exit ;; *:Bitrig:*:*) UNAME_MACHINE_ARCH=`arch | sed 's/Bitrig.//'` echo "$UNAME_MACHINE_ARCH"-unknown-bitrig"$UNAME_RELEASE" exit ;; *:OpenBSD:*:*) UNAME_MACHINE_ARCH=`arch | sed 's/OpenBSD.//'` echo "$UNAME_MACHINE_ARCH"-unknown-openbsd"$UNAME_RELEASE" exit ;; *:LibertyBSD:*:*) UNAME_MACHINE_ARCH=`arch | sed 's/^.*BSD\.//'` echo "$UNAME_MACHINE_ARCH"-unknown-libertybsd"$UNAME_RELEASE" exit ;; *:MidnightBSD:*:*) echo "$UNAME_MACHINE"-unknown-midnightbsd"$UNAME_RELEASE" exit ;; *:ekkoBSD:*:*) echo "$UNAME_MACHINE"-unknown-ekkobsd"$UNAME_RELEASE" exit ;; *:SolidBSD:*:*) echo "$UNAME_MACHINE"-unknown-solidbsd"$UNAME_RELEASE" exit ;; macppc:MirBSD:*:*) echo powerpc-unknown-mirbsd"$UNAME_RELEASE" exit ;; *:MirBSD:*:*) echo "$UNAME_MACHINE"-unknown-mirbsd"$UNAME_RELEASE" exit ;; *:Sortix:*:*) echo "$UNAME_MACHINE"-unknown-sortix exit ;; *:Redox:*:*) echo "$UNAME_MACHINE"-unknown-redox exit ;; mips:OSF1:*.*) echo mips-dec-osf1 exit ;; alpha:OSF1:*:*) case $UNAME_RELEASE in *4.0) UNAME_RELEASE=`/usr/sbin/sizer -v | awk '{print $3}'` ;; *5.*) UNAME_RELEASE=`/usr/sbin/sizer -v | awk '{print $4}'` ;; esac # According to Compaq, /usr/sbin/psrinfo has been available on # OSF/1 and Tru64 systems produced since 1995. I hope that # covers most systems running today. This code pipes the CPU # types through head -n 1, so we only detect the type of CPU 0. ALPHA_CPU_TYPE=`/usr/sbin/psrinfo -v | sed -n -e 's/^ The alpha \(.*\) processor.*$/\1/p' | head -n 1` case "$ALPHA_CPU_TYPE" in "EV4 (21064)") UNAME_MACHINE=alpha ;; "EV4.5 (21064)") UNAME_MACHINE=alpha ;; "LCA4 (21066/21068)") UNAME_MACHINE=alpha ;; "EV5 (21164)") UNAME_MACHINE=alphaev5 ;; "EV5.6 (21164A)") UNAME_MACHINE=alphaev56 ;; "EV5.6 (21164PC)") UNAME_MACHINE=alphapca56 ;; "EV5.7 (21164PC)") UNAME_MACHINE=alphapca57 ;; "EV6 (21264)") UNAME_MACHINE=alphaev6 ;; "EV6.7 (21264A)") UNAME_MACHINE=alphaev67 ;; "EV6.8CB (21264C)") UNAME_MACHINE=alphaev68 ;; "EV6.8AL (21264B)") UNAME_MACHINE=alphaev68 ;; "EV6.8CX (21264D)") UNAME_MACHINE=alphaev68 ;; "EV6.9A (21264/EV69A)") UNAME_MACHINE=alphaev69 ;; "EV7 (21364)") UNAME_MACHINE=alphaev7 ;; "EV7.9 (21364A)") UNAME_MACHINE=alphaev79 ;; esac # A Pn.n version is a patched version. # A Vn.n version is a released version. # A Tn.n version is a released field test version. # A Xn.n version is an unreleased experimental baselevel. # 1.2 uses "1.2" for uname -r. echo "$UNAME_MACHINE"-dec-osf"`echo "$UNAME_RELEASE" | sed -e 's/^[PVTX]//' | tr ABCDEFGHIJKLMNOPQRSTUVWXYZ abcdefghijklmnopqrstuvwxyz`" # Reset EXIT trap before exiting to avoid spurious non-zero exit code. exitcode=$? trap '' 0 exit $exitcode ;; Amiga*:UNIX_System_V:4.0:*) echo m68k-unknown-sysv4 exit ;; *:[Aa]miga[Oo][Ss]:*:*) echo "$UNAME_MACHINE"-unknown-amigaos exit ;; *:[Mm]orph[Oo][Ss]:*:*) echo "$UNAME_MACHINE"-unknown-morphos exit ;; *:OS/390:*:*) echo i370-ibm-openedition exit ;; *:z/VM:*:*) echo s390-ibm-zvmoe exit ;; *:OS400:*:*) echo powerpc-ibm-os400 exit ;; arm:RISC*:1.[012]*:*|arm:riscix:1.[012]*:*) echo arm-acorn-riscix"$UNAME_RELEASE" exit ;; arm*:riscos:*:*|arm*:RISCOS:*:*) echo arm-unknown-riscos exit ;; SR2?01:HI-UX/MPP:*:* | SR8000:HI-UX/MPP:*:*) echo hppa1.1-hitachi-hiuxmpp exit ;; Pyramid*:OSx*:*:* | MIS*:OSx*:*:* | MIS*:SMP_DC-OSx*:*:*) # akee@wpdis03.wpafb.af.mil (Earle F. Ake) contributed MIS and NILE. if test "`(/bin/universe) 2>/dev/null`" = att ; then echo pyramid-pyramid-sysv3 else echo pyramid-pyramid-bsd fi exit ;; NILE*:*:*:dcosx) echo pyramid-pyramid-svr4 exit ;; DRS?6000:unix:4.0:6*) echo sparc-icl-nx6 exit ;; DRS?6000:UNIX_SV:4.2*:7* | DRS?6000:isis:4.2*:7*) case `/usr/bin/uname -p` in sparc) echo sparc-icl-nx7; exit ;; esac ;; s390x:SunOS:*:*) echo "$UNAME_MACHINE"-ibm-solaris2"`echo "$UNAME_RELEASE" | sed -e 's/[^.]*//'`" exit ;; sun4H:SunOS:5.*:*) echo sparc-hal-solaris2"`echo "$UNAME_RELEASE"|sed -e 's/[^.]*//'`" exit ;; sun4*:SunOS:5.*:* | tadpole*:SunOS:5.*:*) echo sparc-sun-solaris2"`echo "$UNAME_RELEASE" | sed -e 's/[^.]*//'`" exit ;; i86pc:AuroraUX:5.*:* | i86xen:AuroraUX:5.*:*) echo i386-pc-auroraux"$UNAME_RELEASE" exit ;; i86pc:SunOS:5.*:* | i86xen:SunOS:5.*:*) UNAME_REL="`echo "$UNAME_RELEASE" | sed -e 's/[^.]*//'`" case `isainfo -b` in 32) echo i386-pc-solaris2"$UNAME_REL" ;; 64) echo x86_64-pc-solaris2"$UNAME_REL" ;; esac exit ;; sun4*:SunOS:6*:*) # According to config.sub, this is the proper way to canonicalize # SunOS6. Hard to guess exactly what SunOS6 will be like, but # it's likely to be more like Solaris than SunOS4. echo sparc-sun-solaris3"`echo "$UNAME_RELEASE"|sed -e 's/[^.]*//'`" exit ;; sun4*:SunOS:*:*) case "`/usr/bin/arch -k`" in Series*|S4*) UNAME_RELEASE=`uname -v` ;; esac # Japanese Language versions have a version number like `4.1.3-JL'. echo sparc-sun-sunos"`echo "$UNAME_RELEASE"|sed -e 's/-/_/'`" exit ;; sun3*:SunOS:*:*) echo m68k-sun-sunos"$UNAME_RELEASE" exit ;; sun*:*:4.2BSD:*) UNAME_RELEASE=`(sed 1q /etc/motd | awk '{print substr($5,1,3)}') 2>/dev/null` test "x$UNAME_RELEASE" = x && UNAME_RELEASE=3 case "`/bin/arch`" in sun3) echo m68k-sun-sunos"$UNAME_RELEASE" ;; sun4) echo sparc-sun-sunos"$UNAME_RELEASE" ;; esac exit ;; aushp:SunOS:*:*) echo sparc-auspex-sunos"$UNAME_RELEASE" exit ;; # The situation for MiNT is a little confusing. The machine name # can be virtually everything (everything which is not # "atarist" or "atariste" at least should have a processor # > m68000). The system name ranges from "MiNT" over "FreeMiNT" # to the lowercase version "mint" (or "freemint"). Finally # the system name "TOS" denotes a system which is actually not # MiNT. But MiNT is downward compatible to TOS, so this should # be no problem. atarist[e]:*MiNT:*:* | atarist[e]:*mint:*:* | atarist[e]:*TOS:*:*) echo m68k-atari-mint"$UNAME_RELEASE" exit ;; atari*:*MiNT:*:* | atari*:*mint:*:* | atarist[e]:*TOS:*:*) echo m68k-atari-mint"$UNAME_RELEASE" exit ;; *falcon*:*MiNT:*:* | *falcon*:*mint:*:* | *falcon*:*TOS:*:*) echo m68k-atari-mint"$UNAME_RELEASE" exit ;; milan*:*MiNT:*:* | milan*:*mint:*:* | *milan*:*TOS:*:*) echo m68k-milan-mint"$UNAME_RELEASE" exit ;; hades*:*MiNT:*:* | hades*:*mint:*:* | *hades*:*TOS:*:*) echo m68k-hades-mint"$UNAME_RELEASE" exit ;; *:*MiNT:*:* | *:*mint:*:* | *:*TOS:*:*) echo m68k-unknown-mint"$UNAME_RELEASE" exit ;; m68k:machten:*:*) echo m68k-apple-machten"$UNAME_RELEASE" exit ;; powerpc:machten:*:*) echo powerpc-apple-machten"$UNAME_RELEASE" exit ;; RISC*:Mach:*:*) echo mips-dec-mach_bsd4.3 exit ;; RISC*:ULTRIX:*:*) echo mips-dec-ultrix"$UNAME_RELEASE" exit ;; VAX*:ULTRIX*:*:*) echo vax-dec-ultrix"$UNAME_RELEASE" exit ;; 2020:CLIX:*:* | 2430:CLIX:*:*) echo clipper-intergraph-clix"$UNAME_RELEASE" exit ;; mips:*:*:UMIPS | mips:*:*:RISCos) set_cc_for_build sed 's/^ //' << EOF > "$dummy.c" #ifdef __cplusplus #include /* for printf() prototype */ int main (int argc, char *argv[]) { #else int main (argc, argv) int argc; char *argv[]; { #endif #if defined (host_mips) && defined (MIPSEB) #if defined (SYSTYPE_SYSV) printf ("mips-mips-riscos%ssysv\\n", argv[1]); exit (0); #endif #if defined (SYSTYPE_SVR4) printf ("mips-mips-riscos%ssvr4\\n", argv[1]); exit (0); #endif #if defined (SYSTYPE_BSD43) || defined(SYSTYPE_BSD) printf ("mips-mips-riscos%sbsd\\n", argv[1]); exit (0); #endif #endif exit (-1); } EOF $CC_FOR_BUILD -o "$dummy" "$dummy.c" && dummyarg=`echo "$UNAME_RELEASE" | sed -n 's/\([0-9]*\).*/\1/p'` && SYSTEM_NAME=`"$dummy" "$dummyarg"` && { echo "$SYSTEM_NAME"; exit; } echo mips-mips-riscos"$UNAME_RELEASE" exit ;; Motorola:PowerMAX_OS:*:*) echo powerpc-motorola-powermax exit ;; Motorola:*:4.3:PL8-*) echo powerpc-harris-powermax exit ;; Night_Hawk:*:*:PowerMAX_OS | Synergy:PowerMAX_OS:*:*) echo powerpc-harris-powermax exit ;; Night_Hawk:Power_UNIX:*:*) echo powerpc-harris-powerunix exit ;; m88k:CX/UX:7*:*) echo m88k-harris-cxux7 exit ;; m88k:*:4*:R4*) echo m88k-motorola-sysv4 exit ;; m88k:*:3*:R3*) echo m88k-motorola-sysv3 exit ;; AViiON:dgux:*:*) # DG/UX returns AViiON for all architectures UNAME_PROCESSOR=`/usr/bin/uname -p` if [ "$UNAME_PROCESSOR" = mc88100 ] || [ "$UNAME_PROCESSOR" = mc88110 ] then if [ "$TARGET_BINARY_INTERFACE"x = m88kdguxelfx ] || \ [ "$TARGET_BINARY_INTERFACE"x = x ] then echo m88k-dg-dgux"$UNAME_RELEASE" else echo m88k-dg-dguxbcs"$UNAME_RELEASE" fi else echo i586-dg-dgux"$UNAME_RELEASE" fi exit ;; M88*:DolphinOS:*:*) # DolphinOS (SVR3) echo m88k-dolphin-sysv3 exit ;; M88*:*:R3*:*) # Delta 88k system running SVR3 echo m88k-motorola-sysv3 exit ;; XD88*:*:*:*) # Tektronix XD88 system running UTekV (SVR3) echo m88k-tektronix-sysv3 exit ;; Tek43[0-9][0-9]:UTek:*:*) # Tektronix 4300 system running UTek (BSD) echo m68k-tektronix-bsd exit ;; *:IRIX*:*:*) echo mips-sgi-irix"`echo "$UNAME_RELEASE"|sed -e 's/-/_/g'`" exit ;; ????????:AIX?:[12].1:2) # AIX 2.2.1 or AIX 2.1.1 is RT/PC AIX. echo romp-ibm-aix # uname -m gives an 8 hex-code CPU id exit ;; # Note that: echo "'`uname -s`'" gives 'AIX ' i*86:AIX:*:*) echo i386-ibm-aix exit ;; ia64:AIX:*:*) if [ -x /usr/bin/oslevel ] ; then IBM_REV=`/usr/bin/oslevel` else IBM_REV="$UNAME_VERSION.$UNAME_RELEASE" fi echo "$UNAME_MACHINE"-ibm-aix"$IBM_REV" exit ;; *:AIX:2:3) if grep bos325 /usr/include/stdio.h >/dev/null 2>&1; then set_cc_for_build sed 's/^ //' << EOF > "$dummy.c" #include main() { if (!__power_pc()) exit(1); puts("powerpc-ibm-aix3.2.5"); exit(0); } EOF if $CC_FOR_BUILD -o "$dummy" "$dummy.c" && SYSTEM_NAME=`"$dummy"` then echo "$SYSTEM_NAME" else echo rs6000-ibm-aix3.2.5 fi elif grep bos324 /usr/include/stdio.h >/dev/null 2>&1; then echo rs6000-ibm-aix3.2.4 else echo rs6000-ibm-aix3.2 fi exit ;; *:AIX:*:[4567]) IBM_CPU_ID=`/usr/sbin/lsdev -C -c processor -S available | sed 1q | awk '{ print $1 }'` if /usr/sbin/lsattr -El "$IBM_CPU_ID" | grep ' POWER' >/dev/null 2>&1; then IBM_ARCH=rs6000 else IBM_ARCH=powerpc fi if [ -x /usr/bin/lslpp ] ; then IBM_REV=`/usr/bin/lslpp -Lqc bos.rte.libc | awk -F: '{ print $3 }' | sed s/[0-9]*$/0/` else IBM_REV="$UNAME_VERSION.$UNAME_RELEASE" fi echo "$IBM_ARCH"-ibm-aix"$IBM_REV" exit ;; *:AIX:*:*) echo rs6000-ibm-aix exit ;; ibmrt:4.4BSD:*|romp-ibm:4.4BSD:*) echo romp-ibm-bsd4.4 exit ;; ibmrt:*BSD:*|romp-ibm:BSD:*) # covers RT/PC BSD and echo romp-ibm-bsd"$UNAME_RELEASE" # 4.3 with uname added to exit ;; # report: romp-ibm BSD 4.3 *:BOSX:*:*) echo rs6000-bull-bosx exit ;; DPX/2?00:B.O.S.:*:*) echo m68k-bull-sysv3 exit ;; 9000/[34]??:4.3bsd:1.*:*) echo m68k-hp-bsd exit ;; hp300:4.4BSD:*:* | 9000/[34]??:4.3bsd:2.*:*) echo m68k-hp-bsd4.4 exit ;; 9000/[34678]??:HP-UX:*:*) HPUX_REV=`echo "$UNAME_RELEASE"|sed -e 's/[^.]*.[0B]*//'` case "$UNAME_MACHINE" in 9000/31?) HP_ARCH=m68000 ;; 9000/[34]??) HP_ARCH=m68k ;; 9000/[678][0-9][0-9]) if [ -x /usr/bin/getconf ]; then sc_cpu_version=`/usr/bin/getconf SC_CPU_VERSION 2>/dev/null` sc_kernel_bits=`/usr/bin/getconf SC_KERNEL_BITS 2>/dev/null` case "$sc_cpu_version" in 523) HP_ARCH=hppa1.0 ;; # CPU_PA_RISC1_0 528) HP_ARCH=hppa1.1 ;; # CPU_PA_RISC1_1 532) # CPU_PA_RISC2_0 case "$sc_kernel_bits" in 32) HP_ARCH=hppa2.0n ;; 64) HP_ARCH=hppa2.0w ;; '') HP_ARCH=hppa2.0 ;; # HP-UX 10.20 esac ;; esac fi if [ "$HP_ARCH" = "" ]; then set_cc_for_build sed 's/^ //' << EOF > "$dummy.c" #define _HPUX_SOURCE #include #include int main () { #if defined(_SC_KERNEL_BITS) long bits = sysconf(_SC_KERNEL_BITS); #endif long cpu = sysconf (_SC_CPU_VERSION); switch (cpu) { case CPU_PA_RISC1_0: puts ("hppa1.0"); break; case CPU_PA_RISC1_1: puts ("hppa1.1"); break; case CPU_PA_RISC2_0: #if defined(_SC_KERNEL_BITS) switch (bits) { case 64: puts ("hppa2.0w"); break; case 32: puts ("hppa2.0n"); break; default: puts ("hppa2.0"); break; } break; #else /* !defined(_SC_KERNEL_BITS) */ puts ("hppa2.0"); break; #endif default: puts ("hppa1.0"); break; } exit (0); } EOF (CCOPTS="" $CC_FOR_BUILD -o "$dummy" "$dummy.c" 2>/dev/null) && HP_ARCH=`"$dummy"` test -z "$HP_ARCH" && HP_ARCH=hppa fi ;; esac if [ "$HP_ARCH" = hppa2.0w ] then set_cc_for_build # hppa2.0w-hp-hpux* has a 64-bit kernel and a compiler generating # 32-bit code. hppa64-hp-hpux* has the same kernel and a compiler # generating 64-bit code. GNU and HP use different nomenclature: # # $ CC_FOR_BUILD=cc ./config.guess # => hppa2.0w-hp-hpux11.23 # $ CC_FOR_BUILD="cc +DA2.0w" ./config.guess # => hppa64-hp-hpux11.23 if echo __LP64__ | (CCOPTS="" $CC_FOR_BUILD -E - 2>/dev/null) | grep -q __LP64__ then HP_ARCH=hppa2.0w else HP_ARCH=hppa64 fi fi echo "$HP_ARCH"-hp-hpux"$HPUX_REV" exit ;; ia64:HP-UX:*:*) HPUX_REV=`echo "$UNAME_RELEASE"|sed -e 's/[^.]*.[0B]*//'` echo ia64-hp-hpux"$HPUX_REV" exit ;; 3050*:HI-UX:*:*) set_cc_for_build sed 's/^ //' << EOF > "$dummy.c" #include int main () { long cpu = sysconf (_SC_CPU_VERSION); /* The order matters, because CPU_IS_HP_MC68K erroneously returns true for CPU_PA_RISC1_0. CPU_IS_PA_RISC returns correct results, however. */ if (CPU_IS_PA_RISC (cpu)) { switch (cpu) { case CPU_PA_RISC1_0: puts ("hppa1.0-hitachi-hiuxwe2"); break; case CPU_PA_RISC1_1: puts ("hppa1.1-hitachi-hiuxwe2"); break; case CPU_PA_RISC2_0: puts ("hppa2.0-hitachi-hiuxwe2"); break; default: puts ("hppa-hitachi-hiuxwe2"); break; } } else if (CPU_IS_HP_MC68K (cpu)) puts ("m68k-hitachi-hiuxwe2"); else puts ("unknown-hitachi-hiuxwe2"); exit (0); } EOF $CC_FOR_BUILD -o "$dummy" "$dummy.c" && SYSTEM_NAME=`"$dummy"` && { echo "$SYSTEM_NAME"; exit; } echo unknown-hitachi-hiuxwe2 exit ;; 9000/7??:4.3bsd:*:* | 9000/8?[79]:4.3bsd:*:*) echo hppa1.1-hp-bsd exit ;; 9000/8??:4.3bsd:*:*) echo hppa1.0-hp-bsd exit ;; *9??*:MPE/iX:*:* | *3000*:MPE/iX:*:*) echo hppa1.0-hp-mpeix exit ;; hp7??:OSF1:*:* | hp8?[79]:OSF1:*:*) echo hppa1.1-hp-osf exit ;; hp8??:OSF1:*:*) echo hppa1.0-hp-osf exit ;; i*86:OSF1:*:*) if [ -x /usr/sbin/sysversion ] ; then echo "$UNAME_MACHINE"-unknown-osf1mk else echo "$UNAME_MACHINE"-unknown-osf1 fi exit ;; parisc*:Lites*:*:*) echo hppa1.1-hp-lites exit ;; C1*:ConvexOS:*:* | convex:ConvexOS:C1*:*) echo c1-convex-bsd exit ;; C2*:ConvexOS:*:* | convex:ConvexOS:C2*:*) if getsysinfo -f scalar_acc then echo c32-convex-bsd else echo c2-convex-bsd fi exit ;; C34*:ConvexOS:*:* | convex:ConvexOS:C34*:*) echo c34-convex-bsd exit ;; C38*:ConvexOS:*:* | convex:ConvexOS:C38*:*) echo c38-convex-bsd exit ;; C4*:ConvexOS:*:* | convex:ConvexOS:C4*:*) echo c4-convex-bsd exit ;; CRAY*Y-MP:*:*:*) echo ymp-cray-unicos"$UNAME_RELEASE" | sed -e 's/\.[^.]*$/.X/' exit ;; CRAY*[A-Z]90:*:*:*) echo "$UNAME_MACHINE"-cray-unicos"$UNAME_RELEASE" \ | sed -e 's/CRAY.*\([A-Z]90\)/\1/' \ -e y/ABCDEFGHIJKLMNOPQRSTUVWXYZ/abcdefghijklmnopqrstuvwxyz/ \ -e 's/\.[^.]*$/.X/' exit ;; CRAY*TS:*:*:*) echo t90-cray-unicos"$UNAME_RELEASE" | sed -e 's/\.[^.]*$/.X/' exit ;; CRAY*T3E:*:*:*) echo alphaev5-cray-unicosmk"$UNAME_RELEASE" | sed -e 's/\.[^.]*$/.X/' exit ;; CRAY*SV1:*:*:*) echo sv1-cray-unicos"$UNAME_RELEASE" | sed -e 's/\.[^.]*$/.X/' exit ;; *:UNICOS/mp:*:*) echo craynv-cray-unicosmp"$UNAME_RELEASE" | sed -e 's/\.[^.]*$/.X/' exit ;; F30[01]:UNIX_System_V:*:* | F700:UNIX_System_V:*:*) FUJITSU_PROC=`uname -m | tr ABCDEFGHIJKLMNOPQRSTUVWXYZ abcdefghijklmnopqrstuvwxyz` FUJITSU_SYS=`uname -p | tr ABCDEFGHIJKLMNOPQRSTUVWXYZ abcdefghijklmnopqrstuvwxyz | sed -e 's/\///'` FUJITSU_REL=`echo "$UNAME_RELEASE" | sed -e 's/ /_/'` echo "${FUJITSU_PROC}-fujitsu-${FUJITSU_SYS}${FUJITSU_REL}" exit ;; 5000:UNIX_System_V:4.*:*) FUJITSU_SYS=`uname -p | tr ABCDEFGHIJKLMNOPQRSTUVWXYZ abcdefghijklmnopqrstuvwxyz | sed -e 's/\///'` FUJITSU_REL=`echo "$UNAME_RELEASE" | tr ABCDEFGHIJKLMNOPQRSTUVWXYZ abcdefghijklmnopqrstuvwxyz | sed -e 's/ /_/'` echo "sparc-fujitsu-${FUJITSU_SYS}${FUJITSU_REL}" exit ;; i*86:BSD/386:*:* | i*86:BSD/OS:*:* | *:Ascend\ Embedded/OS:*:*) echo "$UNAME_MACHINE"-pc-bsdi"$UNAME_RELEASE" exit ;; sparc*:BSD/OS:*:*) echo sparc-unknown-bsdi"$UNAME_RELEASE" exit ;; *:BSD/OS:*:*) echo "$UNAME_MACHINE"-unknown-bsdi"$UNAME_RELEASE" exit ;; arm:FreeBSD:*:*) UNAME_PROCESSOR=`uname -p` set_cc_for_build if echo __ARM_PCS_VFP | $CC_FOR_BUILD -E - 2>/dev/null \ | grep -q __ARM_PCS_VFP then echo "${UNAME_PROCESSOR}"-unknown-freebsd"`echo ${UNAME_RELEASE}|sed -e 's/[-(].*//'`"-gnueabi else echo "${UNAME_PROCESSOR}"-unknown-freebsd"`echo ${UNAME_RELEASE}|sed -e 's/[-(].*//'`"-gnueabihf fi exit ;; *:FreeBSD:*:*) UNAME_PROCESSOR=`/usr/bin/uname -p` case "$UNAME_PROCESSOR" in amd64) UNAME_PROCESSOR=x86_64 ;; i386) UNAME_PROCESSOR=i586 ;; esac echo "$UNAME_PROCESSOR"-unknown-freebsd"`echo "$UNAME_RELEASE"|sed -e 's/[-(].*//'`" exit ;; i*:CYGWIN*:*) echo "$UNAME_MACHINE"-pc-cygwin exit ;; *:MINGW64*:*) echo "$UNAME_MACHINE"-pc-mingw64 exit ;; *:MINGW*:*) echo "$UNAME_MACHINE"-pc-mingw32 exit ;; *:MSYS*:*) echo "$UNAME_MACHINE"-pc-msys exit ;; i*:PW*:*) echo "$UNAME_MACHINE"-pc-pw32 exit ;; *:Interix*:*) case "$UNAME_MACHINE" in x86) echo i586-pc-interix"$UNAME_RELEASE" exit ;; authenticamd | genuineintel | EM64T) echo x86_64-unknown-interix"$UNAME_RELEASE" exit ;; IA64) echo ia64-unknown-interix"$UNAME_RELEASE" exit ;; esac ;; i*:UWIN*:*) echo "$UNAME_MACHINE"-pc-uwin exit ;; amd64:CYGWIN*:*:* | x86_64:CYGWIN*:*:*) echo x86_64-unknown-cygwin exit ;; prep*:SunOS:5.*:*) echo powerpcle-unknown-solaris2"`echo "$UNAME_RELEASE"|sed -e 's/[^.]*//'`" exit ;; *:GNU:*:*) # the GNU system echo "`echo "$UNAME_MACHINE"|sed -e 's,[-/].*$,,'`-unknown-$LIBC`echo "$UNAME_RELEASE"|sed -e 's,/.*$,,'`" exit ;; *:GNU/*:*:*) # other systems with GNU libc and userland echo "$UNAME_MACHINE-unknown-`echo "$UNAME_SYSTEM" | sed 's,^[^/]*/,,' | tr "[:upper:]" "[:lower:]"``echo "$UNAME_RELEASE"|sed -e 's/[-(].*//'`-$LIBC" exit ;; *:Minix:*:*) echo "$UNAME_MACHINE"-unknown-minix exit ;; aarch64:Linux:*:*) echo "$UNAME_MACHINE"-unknown-linux-"$LIBC" exit ;; aarch64_be:Linux:*:*) UNAME_MACHINE=aarch64_be echo "$UNAME_MACHINE"-unknown-linux-"$LIBC" exit ;; alpha:Linux:*:*) case `sed -n '/^cpu model/s/^.*: \(.*\)/\1/p' < /proc/cpuinfo` in EV5) UNAME_MACHINE=alphaev5 ;; EV56) UNAME_MACHINE=alphaev56 ;; PCA56) UNAME_MACHINE=alphapca56 ;; PCA57) UNAME_MACHINE=alphapca56 ;; EV6) UNAME_MACHINE=alphaev6 ;; EV67) UNAME_MACHINE=alphaev67 ;; EV68*) UNAME_MACHINE=alphaev68 ;; esac objdump --private-headers /bin/sh | grep -q ld.so.1 if test "$?" = 0 ; then LIBC=gnulibc1 ; fi echo "$UNAME_MACHINE"-unknown-linux-"$LIBC" exit ;; arc:Linux:*:* | arceb:Linux:*:*) echo "$UNAME_MACHINE"-unknown-linux-"$LIBC" exit ;; arm*:Linux:*:*) set_cc_for_build if echo __ARM_EABI__ | $CC_FOR_BUILD -E - 2>/dev/null \ | grep -q __ARM_EABI__ then echo "$UNAME_MACHINE"-unknown-linux-"$LIBC" else if echo __ARM_PCS_VFP | $CC_FOR_BUILD -E - 2>/dev/null \ | grep -q __ARM_PCS_VFP then echo "$UNAME_MACHINE"-unknown-linux-"$LIBC"eabi else echo "$UNAME_MACHINE"-unknown-linux-"$LIBC"eabihf fi fi exit ;; avr32*:Linux:*:*) echo "$UNAME_MACHINE"-unknown-linux-"$LIBC" exit ;; cris:Linux:*:*) echo "$UNAME_MACHINE"-axis-linux-"$LIBC" exit ;; crisv32:Linux:*:*) echo "$UNAME_MACHINE"-axis-linux-"$LIBC" exit ;; e2k:Linux:*:*) echo "$UNAME_MACHINE"-unknown-linux-"$LIBC" exit ;; frv:Linux:*:*) echo "$UNAME_MACHINE"-unknown-linux-"$LIBC" exit ;; hexagon:Linux:*:*) echo "$UNAME_MACHINE"-unknown-linux-"$LIBC" exit ;; i*86:Linux:*:*) echo "$UNAME_MACHINE"-pc-linux-"$LIBC" exit ;; ia64:Linux:*:*) echo "$UNAME_MACHINE"-unknown-linux-"$LIBC" exit ;; k1om:Linux:*:*) echo "$UNAME_MACHINE"-unknown-linux-"$LIBC" exit ;; m32r*:Linux:*:*) echo "$UNAME_MACHINE"-unknown-linux-"$LIBC" exit ;; m68*:Linux:*:*) echo "$UNAME_MACHINE"-unknown-linux-"$LIBC" exit ;; mips:Linux:*:* | mips64:Linux:*:*) set_cc_for_build sed 's/^ //' << EOF > "$dummy.c" #undef CPU #undef ${UNAME_MACHINE} #undef ${UNAME_MACHINE}el #if defined(__MIPSEL__) || defined(__MIPSEL) || defined(_MIPSEL) || defined(MIPSEL) CPU=${UNAME_MACHINE}el #else #if defined(__MIPSEB__) || defined(__MIPSEB) || defined(_MIPSEB) || defined(MIPSEB) CPU=${UNAME_MACHINE} #else CPU= #endif #endif EOF eval "`$CC_FOR_BUILD -E "$dummy.c" 2>/dev/null | grep '^CPU'`" test "x$CPU" != x && { echo "$CPU-unknown-linux-$LIBC"; exit; } ;; mips64el:Linux:*:*) echo "$UNAME_MACHINE"-unknown-linux-"$LIBC" exit ;; openrisc*:Linux:*:*) echo or1k-unknown-linux-"$LIBC" exit ;; or32:Linux:*:* | or1k*:Linux:*:*) echo "$UNAME_MACHINE"-unknown-linux-"$LIBC" exit ;; padre:Linux:*:*) echo sparc-unknown-linux-"$LIBC" exit ;; parisc64:Linux:*:* | hppa64:Linux:*:*) echo hppa64-unknown-linux-"$LIBC" exit ;; parisc:Linux:*:* | hppa:Linux:*:*) # Look for CPU level case `grep '^cpu[^a-z]*:' /proc/cpuinfo 2>/dev/null | cut -d' ' -f2` in PA7*) echo hppa1.1-unknown-linux-"$LIBC" ;; PA8*) echo hppa2.0-unknown-linux-"$LIBC" ;; *) echo hppa-unknown-linux-"$LIBC" ;; esac exit ;; ppc64:Linux:*:*) echo powerpc64-unknown-linux-"$LIBC" exit ;; ppc:Linux:*:*) echo powerpc-unknown-linux-"$LIBC" exit ;; ppc64le:Linux:*:*) echo powerpc64le-unknown-linux-"$LIBC" exit ;; ppcle:Linux:*:*) echo powerpcle-unknown-linux-"$LIBC" exit ;; riscv32:Linux:*:* | riscv64:Linux:*:*) echo "$UNAME_MACHINE"-unknown-linux-"$LIBC" exit ;; s390:Linux:*:* | s390x:Linux:*:*) echo "$UNAME_MACHINE"-ibm-linux-"$LIBC" exit ;; sh64*:Linux:*:*) echo "$UNAME_MACHINE"-unknown-linux-"$LIBC" exit ;; sh*:Linux:*:*) echo "$UNAME_MACHINE"-unknown-linux-"$LIBC" exit ;; sparc:Linux:*:* | sparc64:Linux:*:*) echo "$UNAME_MACHINE"-unknown-linux-"$LIBC" exit ;; tile*:Linux:*:*) echo "$UNAME_MACHINE"-unknown-linux-"$LIBC" exit ;; vax:Linux:*:*) echo "$UNAME_MACHINE"-dec-linux-"$LIBC" exit ;; x86_64:Linux:*:*) echo "$UNAME_MACHINE"-pc-linux-"$LIBC" exit ;; xtensa*:Linux:*:*) echo "$UNAME_MACHINE"-unknown-linux-"$LIBC" exit ;; i*86:DYNIX/ptx:4*:*) # ptx 4.0 does uname -s correctly, with DYNIX/ptx in there. # earlier versions are messed up and put the nodename in both # sysname and nodename. echo i386-sequent-sysv4 exit ;; i*86:UNIX_SV:4.2MP:2.*) # Unixware is an offshoot of SVR4, but it has its own version # number series starting with 2... # I am not positive that other SVR4 systems won't match this, # I just have to hope. -- rms. # Use sysv4.2uw... so that sysv4* matches it. echo "$UNAME_MACHINE"-pc-sysv4.2uw"$UNAME_VERSION" exit ;; i*86:OS/2:*:*) # If we were able to find `uname', then EMX Unix compatibility # is probably installed. echo "$UNAME_MACHINE"-pc-os2-emx exit ;; i*86:XTS-300:*:STOP) echo "$UNAME_MACHINE"-unknown-stop exit ;; i*86:atheos:*:*) echo "$UNAME_MACHINE"-unknown-atheos exit ;; i*86:syllable:*:*) echo "$UNAME_MACHINE"-pc-syllable exit ;; i*86:LynxOS:2.*:* | i*86:LynxOS:3.[01]*:* | i*86:LynxOS:4.[02]*:*) echo i386-unknown-lynxos"$UNAME_RELEASE" exit ;; i*86:*DOS:*:*) echo "$UNAME_MACHINE"-pc-msdosdjgpp exit ;; i*86:*:4.*:*) UNAME_REL=`echo "$UNAME_RELEASE" | sed 's/\/MP$//'` if grep Novell /usr/include/link.h >/dev/null 2>/dev/null; then echo "$UNAME_MACHINE"-univel-sysv"$UNAME_REL" else echo "$UNAME_MACHINE"-pc-sysv"$UNAME_REL" fi exit ;; i*86:*:5:[678]*) # UnixWare 7.x, OpenUNIX and OpenServer 6. case `/bin/uname -X | grep "^Machine"` in *486*) UNAME_MACHINE=i486 ;; *Pentium) UNAME_MACHINE=i586 ;; *Pent*|*Celeron) UNAME_MACHINE=i686 ;; esac echo "$UNAME_MACHINE-unknown-sysv${UNAME_RELEASE}${UNAME_SYSTEM}{$UNAME_VERSION}" exit ;; i*86:*:3.2:*) if test -f /usr/options/cb.name; then UNAME_REL=`sed -n 's/.*Version //p' /dev/null >/dev/null ; then UNAME_REL=`(/bin/uname -X|grep Release|sed -e 's/.*= //')` (/bin/uname -X|grep i80486 >/dev/null) && UNAME_MACHINE=i486 (/bin/uname -X|grep '^Machine.*Pentium' >/dev/null) \ && UNAME_MACHINE=i586 (/bin/uname -X|grep '^Machine.*Pent *II' >/dev/null) \ && UNAME_MACHINE=i686 (/bin/uname -X|grep '^Machine.*Pentium Pro' >/dev/null) \ && UNAME_MACHINE=i686 echo "$UNAME_MACHINE"-pc-sco"$UNAME_REL" else echo "$UNAME_MACHINE"-pc-sysv32 fi exit ;; pc:*:*:*) # Left here for compatibility: # uname -m prints for DJGPP always 'pc', but it prints nothing about # the processor, so we play safe by assuming i586. # Note: whatever this is, it MUST be the same as what config.sub # prints for the "djgpp" host, or else GDB configure will decide that # this is a cross-build. echo i586-pc-msdosdjgpp exit ;; Intel:Mach:3*:*) echo i386-pc-mach3 exit ;; paragon:*:*:*) echo i860-intel-osf1 exit ;; i860:*:4.*:*) # i860-SVR4 if grep Stardent /usr/include/sys/uadmin.h >/dev/null 2>&1 ; then echo i860-stardent-sysv"$UNAME_RELEASE" # Stardent Vistra i860-SVR4 else # Add other i860-SVR4 vendors below as they are discovered. echo i860-unknown-sysv"$UNAME_RELEASE" # Unknown i860-SVR4 fi exit ;; mini*:CTIX:SYS*5:*) # "miniframe" echo m68010-convergent-sysv exit ;; mc68k:UNIX:SYSTEM5:3.51m) echo m68k-convergent-sysv exit ;; M680?0:D-NIX:5.3:*) echo m68k-diab-dnix exit ;; M68*:*:R3V[5678]*:*) test -r /sysV68 && { echo 'm68k-motorola-sysv'; exit; } ;; 3[345]??:*:4.0:3.0 | 3[34]??A:*:4.0:3.0 | 3[34]??,*:*:4.0:3.0 | 3[34]??/*:*:4.0:3.0 | 4400:*:4.0:3.0 | 4850:*:4.0:3.0 | SKA40:*:4.0:3.0 | SDS2:*:4.0:3.0 | SHG2:*:4.0:3.0 | S7501*:*:4.0:3.0) OS_REL='' test -r /etc/.relid \ && OS_REL=.`sed -n 's/[^ ]* [^ ]* \([0-9][0-9]\).*/\1/p' < /etc/.relid` /bin/uname -p 2>/dev/null | grep 86 >/dev/null \ && { echo i486-ncr-sysv4.3"$OS_REL"; exit; } /bin/uname -p 2>/dev/null | /bin/grep entium >/dev/null \ && { echo i586-ncr-sysv4.3"$OS_REL"; exit; } ;; 3[34]??:*:4.0:* | 3[34]??,*:*:4.0:*) /bin/uname -p 2>/dev/null | grep 86 >/dev/null \ && { echo i486-ncr-sysv4; exit; } ;; NCR*:*:4.2:* | MPRAS*:*:4.2:*) OS_REL='.3' test -r /etc/.relid \ && OS_REL=.`sed -n 's/[^ ]* [^ ]* \([0-9][0-9]\).*/\1/p' < /etc/.relid` /bin/uname -p 2>/dev/null | grep 86 >/dev/null \ && { echo i486-ncr-sysv4.3"$OS_REL"; exit; } /bin/uname -p 2>/dev/null | /bin/grep entium >/dev/null \ && { echo i586-ncr-sysv4.3"$OS_REL"; exit; } /bin/uname -p 2>/dev/null | /bin/grep pteron >/dev/null \ && { echo i586-ncr-sysv4.3"$OS_REL"; exit; } ;; m68*:LynxOS:2.*:* | m68*:LynxOS:3.0*:*) echo m68k-unknown-lynxos"$UNAME_RELEASE" exit ;; mc68030:UNIX_System_V:4.*:*) echo m68k-atari-sysv4 exit ;; TSUNAMI:LynxOS:2.*:*) echo sparc-unknown-lynxos"$UNAME_RELEASE" exit ;; rs6000:LynxOS:2.*:*) echo rs6000-unknown-lynxos"$UNAME_RELEASE" exit ;; PowerPC:LynxOS:2.*:* | PowerPC:LynxOS:3.[01]*:* | PowerPC:LynxOS:4.[02]*:*) echo powerpc-unknown-lynxos"$UNAME_RELEASE" exit ;; SM[BE]S:UNIX_SV:*:*) echo mips-dde-sysv"$UNAME_RELEASE" exit ;; RM*:ReliantUNIX-*:*:*) echo mips-sni-sysv4 exit ;; RM*:SINIX-*:*:*) echo mips-sni-sysv4 exit ;; *:SINIX-*:*:*) if uname -p 2>/dev/null >/dev/null ; then UNAME_MACHINE=`(uname -p) 2>/dev/null` echo "$UNAME_MACHINE"-sni-sysv4 else echo ns32k-sni-sysv fi exit ;; PENTIUM:*:4.0*:*) # Unisys `ClearPath HMP IX 4000' SVR4/MP effort # says echo i586-unisys-sysv4 exit ;; *:UNIX_System_V:4*:FTX*) # From Gerald Hewes . # How about differentiating between stratus architectures? -djm echo hppa1.1-stratus-sysv4 exit ;; *:*:*:FTX*) # From seanf@swdc.stratus.com. echo i860-stratus-sysv4 exit ;; i*86:VOS:*:*) # From Paul.Green@stratus.com. echo "$UNAME_MACHINE"-stratus-vos exit ;; *:VOS:*:*) # From Paul.Green@stratus.com. echo hppa1.1-stratus-vos exit ;; mc68*:A/UX:*:*) echo m68k-apple-aux"$UNAME_RELEASE" exit ;; news*:NEWS-OS:6*:*) echo mips-sony-newsos6 exit ;; R[34]000:*System_V*:*:* | R4000:UNIX_SYSV:*:* | R*000:UNIX_SV:*:*) if [ -d /usr/nec ]; then echo mips-nec-sysv"$UNAME_RELEASE" else echo mips-unknown-sysv"$UNAME_RELEASE" fi exit ;; BeBox:BeOS:*:*) # BeOS running on hardware made by Be, PPC only. echo powerpc-be-beos exit ;; BeMac:BeOS:*:*) # BeOS running on Mac or Mac clone, PPC only. echo powerpc-apple-beos exit ;; BePC:BeOS:*:*) # BeOS running on Intel PC compatible. echo i586-pc-beos exit ;; BePC:Haiku:*:*) # Haiku running on Intel PC compatible. echo i586-pc-haiku exit ;; x86_64:Haiku:*:*) echo x86_64-unknown-haiku exit ;; SX-4:SUPER-UX:*:*) echo sx4-nec-superux"$UNAME_RELEASE" exit ;; SX-5:SUPER-UX:*:*) echo sx5-nec-superux"$UNAME_RELEASE" exit ;; SX-6:SUPER-UX:*:*) echo sx6-nec-superux"$UNAME_RELEASE" exit ;; SX-7:SUPER-UX:*:*) echo sx7-nec-superux"$UNAME_RELEASE" exit ;; SX-8:SUPER-UX:*:*) echo sx8-nec-superux"$UNAME_RELEASE" exit ;; SX-8R:SUPER-UX:*:*) echo sx8r-nec-superux"$UNAME_RELEASE" exit ;; SX-ACE:SUPER-UX:*:*) echo sxace-nec-superux"$UNAME_RELEASE" exit ;; Power*:Rhapsody:*:*) echo powerpc-apple-rhapsody"$UNAME_RELEASE" exit ;; *:Rhapsody:*:*) echo "$UNAME_MACHINE"-apple-rhapsody"$UNAME_RELEASE" exit ;; *:Darwin:*:*) UNAME_PROCESSOR=`uname -p` || UNAME_PROCESSOR=unknown set_cc_for_build if test "$UNAME_PROCESSOR" = unknown ; then UNAME_PROCESSOR=powerpc fi if test "`echo "$UNAME_RELEASE" | sed -e 's/\..*//'`" -le 10 ; then if [ "$CC_FOR_BUILD" != no_compiler_found ]; then if (echo '#ifdef __LP64__'; echo IS_64BIT_ARCH; echo '#endif') | \ (CCOPTS="" $CC_FOR_BUILD -E - 2>/dev/null) | \ grep IS_64BIT_ARCH >/dev/null then case $UNAME_PROCESSOR in i386) UNAME_PROCESSOR=x86_64 ;; powerpc) UNAME_PROCESSOR=powerpc64 ;; esac fi # On 10.4-10.6 one might compile for PowerPC via gcc -arch ppc if (echo '#ifdef __POWERPC__'; echo IS_PPC; echo '#endif') | \ (CCOPTS="" $CC_FOR_BUILD -E - 2>/dev/null) | \ grep IS_PPC >/dev/null then UNAME_PROCESSOR=powerpc fi fi elif test "$UNAME_PROCESSOR" = i386 ; then # Avoid executing cc on OS X 10.9, as it ships with a stub # that puts up a graphical alert prompting to install # developer tools. Any system running Mac OS X 10.7 or # later (Darwin 11 and later) is required to have a 64-bit # processor. This is not true of the ARM version of Darwin # that Apple uses in portable devices. UNAME_PROCESSOR=x86_64 fi echo "$UNAME_PROCESSOR"-apple-darwin"$UNAME_RELEASE" exit ;; *:procnto*:*:* | *:QNX:[0123456789]*:*) UNAME_PROCESSOR=`uname -p` if test "$UNAME_PROCESSOR" = x86; then UNAME_PROCESSOR=i386 UNAME_MACHINE=pc fi echo "$UNAME_PROCESSOR"-"$UNAME_MACHINE"-nto-qnx"$UNAME_RELEASE" exit ;; *:QNX:*:4*) echo i386-pc-qnx exit ;; NEO-*:NONSTOP_KERNEL:*:*) echo neo-tandem-nsk"$UNAME_RELEASE" exit ;; NSE-*:NONSTOP_KERNEL:*:*) echo nse-tandem-nsk"$UNAME_RELEASE" exit ;; NSR-*:NONSTOP_KERNEL:*:*) echo nsr-tandem-nsk"$UNAME_RELEASE" exit ;; NSV-*:NONSTOP_KERNEL:*:*) echo nsv-tandem-nsk"$UNAME_RELEASE" exit ;; NSX-*:NONSTOP_KERNEL:*:*) echo nsx-tandem-nsk"$UNAME_RELEASE" exit ;; *:NonStop-UX:*:*) echo mips-compaq-nonstopux exit ;; BS2000:POSIX*:*:*) echo bs2000-siemens-sysv exit ;; DS/*:UNIX_System_V:*:*) echo "$UNAME_MACHINE"-"$UNAME_SYSTEM"-"$UNAME_RELEASE" exit ;; *:Plan9:*:*) # "uname -m" is not consistent, so use $cputype instead. 386 # is converted to i386 for consistency with other x86 # operating systems. # shellcheck disable=SC2154 if test "$cputype" = 386; then UNAME_MACHINE=i386 else UNAME_MACHINE="$cputype" fi echo "$UNAME_MACHINE"-unknown-plan9 exit ;; *:TOPS-10:*:*) echo pdp10-unknown-tops10 exit ;; *:TENEX:*:*) echo pdp10-unknown-tenex exit ;; KS10:TOPS-20:*:* | KL10:TOPS-20:*:* | TYPE4:TOPS-20:*:*) echo pdp10-dec-tops20 exit ;; XKL-1:TOPS-20:*:* | TYPE5:TOPS-20:*:*) echo pdp10-xkl-tops20 exit ;; *:TOPS-20:*:*) echo pdp10-unknown-tops20 exit ;; *:ITS:*:*) echo pdp10-unknown-its exit ;; SEI:*:*:SEIUX) echo mips-sei-seiux"$UNAME_RELEASE" exit ;; *:DragonFly:*:*) echo "$UNAME_MACHINE"-unknown-dragonfly"`echo "$UNAME_RELEASE"|sed -e 's/[-(].*//'`" exit ;; *:*VMS:*:*) UNAME_MACHINE=`(uname -p) 2>/dev/null` case "$UNAME_MACHINE" in A*) echo alpha-dec-vms ; exit ;; I*) echo ia64-dec-vms ; exit ;; V*) echo vax-dec-vms ; exit ;; esac ;; *:XENIX:*:SysV) echo i386-pc-xenix exit ;; i*86:skyos:*:*) echo "$UNAME_MACHINE"-pc-skyos"`echo "$UNAME_RELEASE" | sed -e 's/ .*$//'`" exit ;; i*86:rdos:*:*) echo "$UNAME_MACHINE"-pc-rdos exit ;; i*86:AROS:*:*) echo "$UNAME_MACHINE"-pc-aros exit ;; x86_64:VMkernel:*:*) echo "$UNAME_MACHINE"-unknown-esx exit ;; amd64:Isilon\ OneFS:*:*) echo x86_64-unknown-onefs exit ;; esac echo "$0: unable to guess system type" >&2 case "$UNAME_MACHINE:$UNAME_SYSTEM" in mips:Linux | mips64:Linux) # If we got here on MIPS GNU/Linux, output extra information. cat >&2 <&2 </dev/null || echo unknown` uname -r = `(uname -r) 2>/dev/null || echo unknown` uname -s = `(uname -s) 2>/dev/null || echo unknown` uname -v = `(uname -v) 2>/dev/null || echo unknown` /usr/bin/uname -p = `(/usr/bin/uname -p) 2>/dev/null` /bin/uname -X = `(/bin/uname -X) 2>/dev/null` hostinfo = `(hostinfo) 2>/dev/null` /bin/universe = `(/bin/universe) 2>/dev/null` /usr/bin/arch -k = `(/usr/bin/arch -k) 2>/dev/null` /bin/arch = `(/bin/arch) 2>/dev/null` /usr/bin/oslevel = `(/usr/bin/oslevel) 2>/dev/null` /usr/convex/getsysinfo = `(/usr/convex/getsysinfo) 2>/dev/null` UNAME_MACHINE = "$UNAME_MACHINE" UNAME_RELEASE = "$UNAME_RELEASE" UNAME_SYSTEM = "$UNAME_SYSTEM" UNAME_VERSION = "$UNAME_VERSION" EOF exit 1 # Local variables: # eval: (add-hook 'before-save-hook 'time-stamp) # time-stamp-start: "timestamp='" # time-stamp-format: "%:y-%02m-%02d" # time-stamp-end: "'" # End: openconnect-8.05/openssl-dtls.c0000664000076400007640000006060313500141433020327 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2016 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include #include #include #include #ifndef _WIN32 #include #include #endif #include "openconnect-internal.h" /* In the very early days there were cases where this wasn't found in * the header files but it did still work somehow. I forget the details * now but I was definitely avoiding using the macro. Let's just define * it for ourselves instead.*/ #ifndef DTLS1_BAD_VER #define DTLS1_BAD_VER 0x100 #endif #ifdef HAVE_DTLS1_STOP_TIMER /* OpenSSL doesn't deliberately export this, but we need it to workaround a DTLS bug in versions < 1.0.0e */ extern void dtls1_stop_timer(SSL *); #endif #ifndef DTLS_get_data_mtu /* This equivalent functionality was submitted for OpenSSL 1.1.1+ in * https://github.com/openssl/openssl/pull/1666 */ static int dtls_get_data_mtu(struct openconnect_info *vpninfo, int mtu) { int ivlen, maclen, blocksize = 0, pad = 0; #if OPENSSL_VERSION_NUMBER >= 0x10100000L && !defined(LIBRESSL_VERSION_NUMBER) const SSL_CIPHER *s_ciph = SSL_get_current_cipher(vpninfo->dtls_ssl); int cipher_nid; const EVP_CIPHER *e_ciph; const EVP_MD *e_md; char wtf[128]; cipher_nid = SSL_CIPHER_get_cipher_nid(s_ciph); if (cipher_nid == NID_chacha20_poly1305) { ivlen = 0; /* Automatically derived from handshake and seqno */ maclen = 16; /* Poly1305 */ } else { e_ciph = EVP_get_cipherbynid(cipher_nid); switch (EVP_CIPHER_mode(e_ciph)) { case EVP_CIPH_GCM_MODE: ivlen = EVP_GCM_TLS_EXPLICIT_IV_LEN; maclen = EVP_GCM_TLS_TAG_LEN; break; case EVP_CIPH_CCM_MODE: ivlen = EVP_CCM_TLS_EXPLICIT_IV_LEN; SSL_CIPHER_description(s_ciph, wtf, sizeof(wtf)); if (strstr(wtf, "CCM8")) maclen = 8; else maclen = 16; break; case EVP_CIPH_CBC_MODE: blocksize = EVP_CIPHER_block_size(e_ciph); ivlen = EVP_CIPHER_iv_length(e_ciph); pad = 1; e_md = EVP_get_digestbynid(SSL_CIPHER_get_digest_nid(s_ciph)); maclen = EVP_MD_size(e_md); break; default: vpn_progress(vpninfo, PRG_ERR, _("Unable to calculate DTLS overhead for %s\n"), SSL_CIPHER_get_name(s_ciph)); ivlen = 0; maclen = DTLS_OVERHEAD; break; } } #else /* OpenSSL <= 1.0.2 only supports CBC ciphers with PSK */ ivlen = EVP_CIPHER_iv_length(EVP_CIPHER_CTX_cipher(vpninfo->dtls_ssl->enc_read_ctx)); maclen = EVP_MD_CTX_size(vpninfo->dtls_ssl->read_hash); blocksize = ivlen; pad = 1; #endif /* Even when it pretended to, OpenSSL never did encrypt-then-mac. * So the MAC is *inside* the encryption, unconditionally. * https://github.com/openssl/openssl/pull/1705 */ if (mtu < DTLS1_RT_HEADER_LENGTH + ivlen) return 0; mtu -= DTLS1_RT_HEADER_LENGTH + ivlen; /* For CBC mode round down to blocksize */ if (blocksize) mtu -= mtu % blocksize; /* Finally, CBC modes require at least one byte to indicate * padding length, as well as the MAC. */ if (mtu < pad + maclen) return 0; mtu -= pad + maclen; return mtu; } #endif /* !DTLS_get_data_mtu */ /* sets the DTLS MTU and returns the actual tunnel MTU */ unsigned dtls_set_mtu(struct openconnect_info *vpninfo, unsigned mtu) { /* This is the record MTU (not the link MTU, which includes * IP+UDP headers, and not the payload MTU */ SSL_set_mtu(vpninfo->dtls_ssl, mtu); #ifdef DTLS_get_data_mtu return DTLS_get_data_mtu(vpninfo->dtls_ssl); #else return dtls_get_data_mtu(vpninfo, mtu); #endif } #if OPENSSL_VERSION_NUMBER >= 0x10100000L && !defined(LIBRESSL_VERSION_NUMBER) /* Since OpenSSL 1.1, the SSL_SESSION structure is opaque and we can't * just fill it in directly. So we have to generate the OpenSSL ASN.1 * representation of the SSL_SESSION, and use d2i_SSL_SESSION() to * create the SSL_SESSION from that. */ static void buf_append_INTEGER(struct oc_text_buf *buf, uint32_t datum) { int l; /* We only handle positive integers up to INT_MAX */ if (datum < 0x80) l = 1; else if (datum < 0x8000) l = 2; else if (datum < 0x800000) l = 3; else l = 4; if (buf_ensure_space(buf, 2 + l)) return; buf->data[buf->pos++] = 0x02; buf->data[buf->pos++] = l; while (l--) buf->data[buf->pos++] = datum >> (l * 8); } static void buf_append_OCTET_STRING(struct oc_text_buf *buf, void *data, int len) { /* We only (need to) cope with length < 0x80 for now */ if (len >= 0x80) { buf->error = -EINVAL; return; } if (buf_ensure_space(buf, 2 + len)) return; buf->data[buf->pos++] = 0x04; buf->data[buf->pos++] = len; memcpy(buf->data + buf->pos, data, len); buf->pos += len; } static SSL_SESSION *generate_dtls_session(struct openconnect_info *vpninfo, int dtlsver, const SSL_CIPHER *cipher, unsigned rnd_key) { struct oc_text_buf *buf = buf_alloc(); SSL_SESSION *dtls_session; const unsigned char *asn; uint16_t cid; uint8_t rnd_secret[TLS_MASTER_KEY_SIZE]; buf_append_bytes(buf, "\x30\x80", 2); // SEQUENCE, indeterminate length buf_append_INTEGER(buf, 1 /* SSL_SESSION_ASN1_VERSION */); buf_append_INTEGER(buf, dtlsver); store_be16(&cid, SSL_CIPHER_get_id(cipher) & 0xffff); buf_append_OCTET_STRING(buf, &cid, 2); if (rnd_key) { buf_append_OCTET_STRING(buf, vpninfo->dtls_app_id, vpninfo->dtls_app_id_size); if (openconnect_random(rnd_secret, sizeof(rnd_secret))) { vpn_progress(vpninfo, PRG_ERR, _("Failed to generate random key\n")); buf_free(buf); return NULL; } buf_append_OCTET_STRING(buf, rnd_secret, sizeof(rnd_secret)); } else { buf_append_OCTET_STRING(buf, vpninfo->dtls_session_id, sizeof(vpninfo->dtls_session_id)); buf_append_OCTET_STRING(buf, vpninfo->dtls_secret, sizeof(vpninfo->dtls_secret)); } /* If the length actually fits in one byte (which it should), do * it that way. Else, leave it indeterminate and add two * end-of-contents octets to mark the end of the SEQUENCE. */ if (!buf_error(buf) && buf->pos <= 0x80) buf->data[1] = buf->pos - 2; else buf_append_bytes(buf, "\0\0", 2); if (buf_error(buf)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n"), strerror(buf_error(buf))); buf_free(buf); return NULL; } asn = (void *)buf->data; dtls_session = d2i_SSL_SESSION(NULL, &asn, buf->pos); buf_free(buf); if (!dtls_session) { vpn_progress(vpninfo, PRG_ERR, _("OpenSSL failed to parse SSL_SESSION ASN.1\n")); openconnect_report_ssl_errors(vpninfo); return NULL; } return dtls_session; } #else /* OpenSSL before 1.1 */ static SSL_SESSION *generate_dtls_session(struct openconnect_info *vpninfo, int dtlsver, const SSL_CIPHER *cipher, unsigned rnd_key) { SSL_SESSION *dtls_session = SSL_SESSION_new(); if (!dtls_session) { vpn_progress(vpninfo, PRG_ERR, _("Initialise DTLSv1 session failed\n")); return NULL; } dtls_session->ssl_version = dtlsver; dtls_session->master_key_length = TLS_MASTER_KEY_SIZE; if (rnd_key) { if (openconnect_random(dtls_session->master_key, TLS_MASTER_KEY_SIZE)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to generate random key\n")); return NULL; } if (vpninfo->dtls_app_id_size > sizeof(dtls_session->session_id)) { vpn_progress(vpninfo, PRG_ERR, _("Too large application ID size\n")); return NULL; } dtls_session->session_id_length = vpninfo->dtls_app_id_size; memcpy(dtls_session->session_id, vpninfo->dtls_app_id, vpninfo->dtls_app_id_size); } else { memcpy(dtls_session->master_key, vpninfo->dtls_secret, sizeof(vpninfo->dtls_secret)); dtls_session->session_id_length = sizeof(vpninfo->dtls_session_id); memcpy(dtls_session->session_id, vpninfo->dtls_session_id, sizeof(vpninfo->dtls_session_id)); } dtls_session->cipher = (SSL_CIPHER *)cipher; dtls_session->cipher_id = cipher->id; return dtls_session; } #endif #if defined (HAVE_DTLS12) && !defined(OPENSSL_NO_PSK) static unsigned int psk_callback(SSL *ssl, const char *hint, char *identity, unsigned int max_identity_len, unsigned char *psk, unsigned int max_psk_len) { struct openconnect_info *vpninfo = SSL_get_app_data(ssl); if (!vpninfo || max_identity_len < 4 || max_psk_len < PSK_KEY_SIZE) return 0; vpn_progress(vpninfo, PRG_TRACE, _("PSK callback\n")); snprintf(identity, max_psk_len, "psk"); memcpy(psk, vpninfo->dtls_secret, PSK_KEY_SIZE); return PSK_KEY_SIZE; } #endif #if OPENSSL_VERSION_NUMBER < 0x10002000L static const SSL_CIPHER *SSL_CIPHER_find(SSL *ssl, const unsigned char *ptr) { return ssl->method->get_cipher_by_char(ptr); } #endif int start_dtls_handshake(struct openconnect_info *vpninfo, int dtls_fd) { method_const SSL_METHOD *dtls_method; SSL_SESSION *dtls_session; SSL *dtls_ssl; BIO *dtls_bio; int dtlsver = DTLS1_BAD_VER; const char *cipher = vpninfo->dtls_cipher; #ifdef HAVE_DTLS12 /* These things should never happen unless they're supported */ if (vpninfo->cisco_dtls12) { dtlsver = DTLS1_2_VERSION; } else if (!strcmp(cipher, "OC-DTLS1_2-AES128-GCM")) { dtlsver = DTLS1_2_VERSION; cipher = "AES128-GCM-SHA256"; } else if (!strcmp(cipher, "OC-DTLS1_2-AES256-GCM")) { dtlsver = DTLS1_2_VERSION; cipher = "AES256-GCM-SHA384"; #ifndef OPENSSL_NO_PSK } else if (!strcmp(cipher, "PSK-NEGOTIATE")) { dtlsver = 0; /* Let it negotiate */ #endif } #endif if (!vpninfo->dtls_ctx) { #ifdef HAVE_DTLS12 /* If we can use SSL_CTX_set_min_proto_version, do so. */ dtls_method = DTLS_client_method(); #endif #ifndef HAVE_SSL_CTX_PROTOVER /* If !HAVE_DTLS12, dtlsver *MUST* be DTLS1_BAD_VER because it's set * at the top of the function and nothing can change it. */ if (dtlsver == DTLS1_BAD_VER) dtls_method = DTLSv1_client_method(); #endif vpninfo->dtls_ctx = SSL_CTX_new(dtls_method); if (!vpninfo->dtls_ctx) { vpn_progress(vpninfo, PRG_ERR, _("Initialise DTLSv1 CTX failed\n")); openconnect_report_ssl_errors(vpninfo); vpninfo->dtls_attempt_period = 0; return -EINVAL; } #ifdef HAVE_SSL_CTX_PROTOVER if (dtlsver && (!SSL_CTX_set_min_proto_version(vpninfo->dtls_ctx, dtlsver) || !SSL_CTX_set_max_proto_version(vpninfo->dtls_ctx, dtlsver))) { vpn_progress(vpninfo, PRG_ERR, _("Set DTLS CTX version failed\n")); openconnect_report_ssl_errors(vpninfo); SSL_CTX_free(vpninfo->dtls_ctx); vpninfo->dtls_ctx = NULL; vpninfo->dtls_attempt_period = 0; return -EINVAL; } #else /* !HAVE_SSL_CTX_PROTOVER */ /* If we used the legacy version-specific methods, we need the special * way to make TLSv1_client_method() do DTLS1_BAD_VER. */ if (dtlsver == DTLS1_BAD_VER) SSL_CTX_set_options(vpninfo->dtls_ctx, SSL_OP_CISCO_ANYCONNECT); #endif #if defined (HAVE_DTLS12) && !defined(OPENSSL_NO_PSK) if (!dtlsver) { SSL_CTX_set_psk_client_callback(vpninfo->dtls_ctx, psk_callback); /* For PSK we override the DTLS master secret with one derived * from the HTTPS session. */ if (!SSL_export_keying_material(vpninfo->https_ssl, vpninfo->dtls_secret, PSK_KEY_SIZE, PSK_LABEL, PSK_LABEL_SIZE, NULL, 0, 0)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to generate DTLS key\n")); openconnect_report_ssl_errors(vpninfo); SSL_CTX_free(vpninfo->dtls_ctx); vpninfo->dtls_ctx = NULL; vpninfo->dtls_attempt_period = 0; return -EINVAL; } /* For SSL_CTX_set_cipher_list() */ cipher = "PSK"; } #endif /* OPENSSL_NO_PSK */ #ifdef SSL_OP_NO_ENCRYPT_THEN_MAC /* * I'm fairly sure I wasn't lying when I said I had tested * https://github.com/openssl/openssl/commit/e23d5071ec4c7aa6bb2b * against GnuTLS both with and without EtM in 2016. * * Nevertheless, in 2019 it seems to be failing to negotiate * at least for DTLS1_BAD_VER against ocserv with GnuTLS 3.6.7: * https://gitlab.com/gnutls/gnutls/issues/139 — I think because * GnuTLS isn't actually doing EtM after negotiating it (like * OpenSSL 1.1.0 used to). * * Just turn it off. Real Cisco servers don't do it for * DTLS1_BAD_VER, and against ocserv (and newer Cisco) we should * be using DTLSv1.2 with AEAD ciphersuites anyway so EtM is * irrelevant. */ SSL_CTX_set_options(vpninfo->dtls_ctx, SSL_OP_NO_ENCRYPT_THEN_MAC); #endif #ifdef SSL_OP_NO_EXTENDED_MASTER_SECRET /* RFC7627 says: * * If the original session did not use the "extended_master_secret" * extension but the new ClientHello contains the extension, then the * server MUST NOT perform the abbreviated handshake. Instead, it * SHOULD continue with a full handshake (as described in * Section 5.2) to negotiate a new session. * * Now that would be distinctly suboptimal, since we have no way to do * a full handshake (we even explicitly protect against it, in case a * MITM server attempts to hijack our deliberately-resumed session). * * So where OpenSSL provides the choice, tell it not to use extms on * resumed sessions. */ if (dtlsver) SSL_CTX_set_options(vpninfo->dtls_ctx, SSL_OP_NO_EXTENDED_MASTER_SECRET); #endif /* If we don't readahead, then we do short reads and throw away the tail of data packets. */ SSL_CTX_set_read_ahead(vpninfo->dtls_ctx, 1); if (!SSL_CTX_set_cipher_list(vpninfo->dtls_ctx, cipher)) { vpn_progress(vpninfo, PRG_ERR, _("Set DTLS cipher list failed\n")); SSL_CTX_free(vpninfo->dtls_ctx); vpninfo->dtls_ctx = NULL; vpninfo->dtls_attempt_period = 0; return -EINVAL; } } dtls_ssl = SSL_new(vpninfo->dtls_ctx); SSL_set_connect_state(dtls_ssl); SSL_set_app_data(dtls_ssl, vpninfo); if (dtlsver) { STACK_OF(SSL_CIPHER) *ciphers = SSL_get_ciphers(dtls_ssl); const SSL_CIPHER *ssl_ciph = NULL; int i; for (i = 0; i < sk_SSL_CIPHER_num(ciphers); i++) { ssl_ciph = sk_SSL_CIPHER_value(ciphers, i); /* For PSK-NEGOTIATE just use the first one we find */ if (!dtlsver || !strcmp(SSL_CIPHER_get_name(ssl_ciph), cipher)) break; } if (i == sk_SSL_CIPHER_num(ciphers)) { vpn_progress(vpninfo, PRG_ERR, _("DTLS cipher '%s' not found\n"), cipher); SSL_CTX_free(vpninfo->dtls_ctx); SSL_free(dtls_ssl); vpninfo->dtls_ctx = NULL; vpninfo->dtls_attempt_period = 0; return -EINVAL; } /* We're going to "resume" a session which never existed. Fake it... */ dtls_session = generate_dtls_session(vpninfo, dtlsver, ssl_ciph, 0); if (!dtls_session) { SSL_CTX_free(vpninfo->dtls_ctx); SSL_free(dtls_ssl); vpninfo->dtls_ctx = NULL; vpninfo->dtls_attempt_period = 0; return -EINVAL; } if (!SSL_set_session(dtls_ssl, dtls_session)) { vpn_progress(vpninfo, PRG_ERR, _("SSL_set_session() failed with old protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n"), DTLS1_BAD_VER); SSL_CTX_free(vpninfo->dtls_ctx); SSL_free(dtls_ssl); vpninfo->dtls_ctx = NULL; vpninfo->dtls_attempt_period = 0; SSL_SESSION_free(dtls_session); return -EINVAL; } /* We don't need our own refcount on it any more */ SSL_SESSION_free(dtls_session); } else if (vpninfo->dtls_app_id_size > 0) { const uint8_t cs[2] = {0x00, 0x2F}; /* RSA-AES-128 */ /* we generate a session with a random key which cannot be resumed; * we want to set the client identifier we received from the server * as a session ID. */ dtls_session = generate_dtls_session(vpninfo, DTLS1_VERSION, SSL_CIPHER_find(dtls_ssl, cs), 1); if (!dtls_session) { SSL_CTX_free(vpninfo->dtls_ctx); SSL_free(dtls_ssl); vpninfo->dtls_ctx = NULL; vpninfo->dtls_attempt_period = 0; return -EINVAL; } if (!SSL_set_session(dtls_ssl, dtls_session)) { vpn_progress(vpninfo, PRG_ERR, _("SSL_set_session() failed\n")); SSL_CTX_free(vpninfo->dtls_ctx); SSL_free(dtls_ssl); vpninfo->dtls_ctx = NULL; vpninfo->dtls_attempt_period = 0; SSL_SESSION_free(dtls_session); return -EINVAL; } /* We don't need our own refcount on it any more */ SSL_SESSION_free(dtls_session); } dtls_bio = BIO_new_socket(dtls_fd, BIO_NOCLOSE); /* Set non-blocking */ BIO_set_nbio(dtls_bio, 1); SSL_set_bio(dtls_ssl, dtls_bio, dtls_bio); vpninfo->dtls_ssl = dtls_ssl; return 0; } int dtls_try_handshake(struct openconnect_info *vpninfo) { int ret = SSL_do_handshake(vpninfo->dtls_ssl); if (ret == 1) { const char *c; if (!strcmp(vpninfo->dtls_cipher, "PSK-NEGOTIATE")) { /* For PSK-NEGOTIATE, we have to determine the tunnel MTU * for ourselves based on the base MTU */ int data_mtu = vpninfo->cstp_basemtu; if (vpninfo->peer_addr->sa_family == AF_INET6) data_mtu -= 40; /* IPv6 header */ else data_mtu -= 20; /* Legacy IP header */ data_mtu -= 8; /* UDP header */ if (data_mtu < 0) { vpn_progress(vpninfo, PRG_ERR, _("Peer MTU %d too small to allow DTLS\n"), vpninfo->cstp_basemtu); goto nodtls; } /* Reduce it by one because that's the payload header *inside* * the encryption */ data_mtu = dtls_set_mtu(vpninfo, data_mtu) - 1; if (data_mtu < 0) goto nodtls; if (data_mtu < vpninfo->ip_info.mtu) { vpn_progress(vpninfo, PRG_INFO, _("DTLS MTU reduced to %d\n"), data_mtu); vpninfo->ip_info.mtu = data_mtu; } } else if (!SSL_session_reused(vpninfo->dtls_ssl)) { /* Someone attempting to hijack the DTLS session? * A real server would never allow a full session * establishment instead of the agreed resume. */ vpn_progress(vpninfo, PRG_ERR, _("DTLS session resume failed; possible MITM attack. Disabling DTLS.\n")); nodtls: dtls_close(vpninfo); SSL_CTX_free(vpninfo->dtls_ctx); vpninfo->dtls_ctx = NULL; vpninfo->dtls_attempt_period = 0; vpninfo->dtls_state = DTLS_DISABLED; return -EIO; } vpninfo->dtls_state = DTLS_CONNECTED; vpn_progress(vpninfo, PRG_INFO, _("Established DTLS connection (using OpenSSL). Ciphersuite %s.\n"), SSL_get_cipher(vpninfo->dtls_ssl)); c = openconnect_get_dtls_compression(vpninfo); if (c) { vpn_progress(vpninfo, PRG_INFO, _("DTLS connection compression using %s.\n"), c); } vpninfo->dtls_times.last_rekey = vpninfo->dtls_times.last_rx = vpninfo->dtls_times.last_tx = time(NULL); /* From about 8.4.1(11) onwards, the ASA seems to get very unhappy if we resend ChangeCipherSpec messages after the initial setup. This was "fixed" in OpenSSL 1.0.0e for RT#2505, but it's not clear if that was the right fix. What happens if the original packet *does* get lost? Surely we *wanted* the retransmits, because without them the server will never be able to decrypt anything we send? Oh well, our retransmitted packets upset the server because we don't get the Cisco-compatibility right (this is one of the areas in which Cisco's DTLS differs from the RFC4347 spec), and DPD should help us notice if *nothing* is getting through. */ #if OPENSSL_VERSION_NUMBER >= 0x10100000L /* OpenSSL 1.1.0 or above. Do nothing. The SSLeay() function got renamed, and it's a pointless check in this case anyway because there's *no* chance that we linked against 1.1.0 and are running against something older than 1.0.0e. */ #elif OPENSSL_VERSION_NUMBER >= 0x1000005fL /* OpenSSL 1.0.0e or above doesn't resend anyway; do nothing. However, if we were *built* against 1.0.0e or newer, but at runtime we find that we are being run against an older version, warn about it. */ if (SSLeay() < 0x1000005fL) { vpn_progress(vpninfo, PRG_ERR, _("Your OpenSSL is older than the one you built against, so DTLS may fail!")); } #elif defined(HAVE_DTLS1_STOP_TIMER) /* * This works for any normal OpenSSL that supports * Cisco DTLS compatibility (0.9.8m to 1.0.0d inclusive, * and even later versions although it isn't needed there. */ dtls1_stop_timer(vpninfo->dtls_ssl); #elif defined(BIO_CTRL_DGRAM_SET_NEXT_TIMEOUT) /* * Debian restricts visibility of dtls1_stop_timer() * so do it manually. This version also works on all * sane versions of OpenSSL: */ memset(&(vpninfo->dtls_ssl->d1->next_timeout), 0, sizeof((vpninfo->dtls_ssl->d1->next_timeout))); vpninfo->dtls_ssl->d1->timeout_duration = 1; BIO_ctrl(SSL_get_rbio(vpninfo->dtls_ssl), BIO_CTRL_DGRAM_SET_NEXT_TIMEOUT, 0, &(vpninfo->dtls_ssl->d1->next_timeout)); #elif defined(BIO_CTRL_DGRAM_SET_TIMEOUT) /* * OK, here it gets more fun... this shoul handle the case * of older OpenSSL which has the Cisco DTLS compatibility * backported, but *not* the fix for RT#1922. */ BIO_ctrl(SSL_get_rbio(vpninfo->dtls_ssl), BIO_CTRL_DGRAM_SET_TIMEOUT, 0, NULL); #else /* * And if they don't have any of the above, they probably * don't have RT#1829 fixed either, but that's OK because * that's the "fix" that *introduces* the timeout we're * trying to disable. So do nothing... */ #endif dtls_detect_mtu(vpninfo); return 0; } ret = SSL_get_error(vpninfo->dtls_ssl, ret); if (ret == SSL_ERROR_WANT_WRITE || ret == SSL_ERROR_WANT_READ) { static int badossl_bitched = 0; if (time(NULL) < vpninfo->new_dtls_started + 12) return 0; if (((OPENSSL_VERSION_NUMBER >= 0x100000b0L && OPENSSL_VERSION_NUMBER <= 0x100000c0L) || \ (OPENSSL_VERSION_NUMBER >= 0x10001040L && OPENSSL_VERSION_NUMBER <= 0x10001060L) || \ OPENSSL_VERSION_NUMBER == 0x10002000L) && !badossl_bitched) { badossl_bitched = 1; vpn_progress(vpninfo, PRG_ERR, _("DTLS handshake timed out\n")); vpn_progress(vpninfo, PRG_ERR, _("This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n")); } else { vpn_progress(vpninfo, PRG_DEBUG, _("DTLS handshake timed out\n")); } } vpn_progress(vpninfo, PRG_ERR, _("DTLS handshake failed: %d\n"), ret); openconnect_report_ssl_errors(vpninfo); dtls_close(vpninfo); vpninfo->dtls_state = DTLS_SLEEPING; time(&vpninfo->new_dtls_started); return -EINVAL; } void dtls_shutdown(struct openconnect_info *vpninfo) { dtls_close(vpninfo); SSL_CTX_free(vpninfo->dtls_ctx); } void dtls_ssl_free(struct openconnect_info *vpninfo) { /* We are only ever called when this is non-NULL */ SSL_free(vpninfo->dtls_ssl); } #if OPENSSL_VERSION_NUMBER < 0x10100000L || defined(LIBRESSL_VERSION_NUMBER) void gather_dtls_ciphers(struct openconnect_info *vpninfo, struct oc_text_buf *buf, struct oc_text_buf *buf12) { #ifdef HAVE_DTLS12 #ifndef OPENSSL_NO_PSK buf_append(buf, "PSK-NEGOTIATE:"); #endif buf_append(buf, "OC-DTLS1_2-AES256-GCM:OC-DTLS1_2-AES128-GCM:"); buf_append(buf12, "ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-GCM-SHA256:AES128-GCM-SHA256:AES256-GCM-SHA384\r\n"); #endif buf_append(buf, "DHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA:"); buf_append(buf, "AES256-SHA:AES128-SHA:DES-CBC3-SHA:DES-CBC-SHA"); } #else void gather_dtls_ciphers(struct openconnect_info *vpninfo, struct oc_text_buf *buf, struct oc_text_buf *buf12) { method_const SSL_METHOD *dtls_method; SSL_CTX *ctx; SSL *ssl; STACK_OF(SSL_CIPHER) *ciphers; int i; dtls_method = DTLS_client_method(); ctx = SSL_CTX_new(dtls_method); if (!ctx) return; ssl = SSL_new(ctx); if (!ssl) { SSL_CTX_free(ctx); return; } ciphers = SSL_get1_supported_ciphers(ssl); for (i = 0; i < sk_SSL_CIPHER_num(ciphers); i++) { const SSL_CIPHER *ciph = sk_SSL_CIPHER_value(ciphers, i); const char *name = SSL_CIPHER_get_name(ciph); const char *vers = SSL_CIPHER_get_version(ciph); if (!strcmp(vers, "SSLv3") || !strcmp(vers, "TLSv1.0") || !strcmp(vers, "TLSv1/SSLv3")) { buf_append(buf, "%s%s", (buf_error(buf) || !buf->pos) ? "" : ":", name); } else if (!strcmp(vers, "TLSv1.2")) { buf_append(buf12, "%s%s:", (buf_error(buf12) || !buf12->pos) ? "" : ":", name); } } sk_SSL_CIPHER_free(ciphers); SSL_free(ssl); SSL_CTX_free(ctx); /* All DTLSv1 suites are also supported in DTLSv1.2 */ if (!buf_error(buf)) buf_append(buf12, ":%s", buf->data); #ifndef OPENSSL_NO_PSK buf_append(buf, ":PSK-NEGOTIATE"); #endif } #endif openconnect-8.05/version.sh0000775000076400007640000000106513536301670017567 0ustar00dwoodhoudwoodhou00000000000000#!/bin/sh v="v8.05" if [ -d ${GIT_DIR:-.git} ] && tag=`git describe --tags`; then v="$tag" # Update the index from working tree first git update-index --refresh --unmerged > /dev/null # Does the index show uncommitted changes? git diff-index --exit-code HEAD > /dev/null || \ v="$v"-dirty elif [ -n "$RPM_PACKAGE_VERSION" ] && [ -n "$RPM_PACKAGE_RELEASE" ]; then v="v$RPM_PACKAGE_VERSION-$RPM_PACKAGE_RELEASE" else # XXX: Equivalent for .deb packages? v="$v"-unknown fi echo "const char *openconnect_version_str = \"$v\";" > $1 echo "New version: $v" openconnect-8.05/configure.ac0000664000076400007640000011226413536301670020035 0ustar00dwoodhoudwoodhou00000000000000AC_INIT(openconnect, 8.05) AC_CONFIG_HEADERS([config.h]) PKG_PROG_PKG_CONFIG AC_LANG_C AC_CANONICAL_HOST AM_MAINTAINER_MODE([enable]) AM_INIT_AUTOMAKE([foreign tar-ustar]) m4_ifdef([AM_SILENT_RULES], [AM_SILENT_RULES([yes])]) AC_PREREQ([2.62], [], [AC_SUBST([localedir], ['$(datadir)/locale'])]) # Upstream's pkg.m4 (since 0.27) offers this now, but define our own # compatible version in case the local version of pkgconfig isn't new enough. # https://bugs.freedesktop.org/show_bug.cgi?id=48743 m4_ifdef([PKG_INSTALLDIR], [PKG_INSTALLDIR], [AC_ARG_WITH([pkgconfigdir], [AS_HELP_STRING([--with-pkgconfigdir], [install directory for openconnect.pc pkg-config file])], [],[with_pkgconfigdir='$(libdir)/pkgconfig']) AC_SUBST([pkgconfigdir], [${with_pkgconfigdir}])]) use_openbsd_libtool= symver_time= symver_getline= symver_asprintf= symver_vasprintf= symver_win32_strerror= case $host_os in *linux* | *gnu* | *nacl*) AC_MSG_NOTICE([Applying feature macros for GNU build]) AC_DEFINE(_GNU_SOURCE, 1, [_GNU_SOURCE]) ;; *netbsd*) AC_MSG_NOTICE([Applying feature macros for NetBSD build]) AC_DEFINE(_POSIX_C_SOURCE, 200112L, [_POSIX_C_SOURCE]) AC_DEFINE(_NETBSD_SOURCE, 1, [_NETBSD_SOURCE]) ;; *openbsd*) AC_MSG_NOTICE([Applying feature macros for OpenBSD build]) use_openbsd_libtool=true ;; *solaris*|*sunos*) AC_MSG_NOTICE([Applying workaround for broken SunOS time() function]) AC_DEFINE(HAVE_SUNOS_BROKEN_TIME, 1, [On SunOS time() can go backwards]) symver_time="openconnect__time;" ;; *mingw32*|*mingw64*|*msys*) AC_MSG_NOTICE([Applying feature macros for MinGW/Windows build]) # For GetVolumeInformationByHandleW() which is Vista+ AC_DEFINE(_WIN32_WINNT, 0x600, [Windows API version]) have_win=yes # For asprintf() AC_DEFINE(_GNU_SOURCE, 1, [_GNU_SOURCE]) symver_win32_strerror="openconnect__win32_strerror;" # Win32 does have the SCard API system_pcsc_libs="-lwinscard" system_pcsc_cflags= AC_CHECK_TOOL([WINDRES], [windres], []) ;; *darwin*) system_pcsc_libs="-Wl,-framework -Wl,PCSC" system_pcsc_cflags= ;; *) # On FreeBSD the only way to get vsyslog() visible is to define # *nothing*, which makes absolutely everything visible. # On Darwin enabling _POSIX_C_SOURCE breaks because # u_long and other types don't get defined. OpenBSD is similar. ;; esac AM_CONDITIONAL(OPENCONNECT_WIN32, [ test "$have_win" = "yes" ]) AC_ARG_WITH([vpnc-script], [AS_HELP_STRING([--with-vpnc-script], [default location of vpnc-script helper])]) if test "$with_vpnc_script" = "yes" || test "$with_vpnc_script" = ""; then AC_MSG_CHECKING([for vpnc-script in standard locations]) if test "$have_win" = "yes"; then with_vpnc_script=vpnc-script-win.js else for with_vpnc_script in /usr/local/share/vpnc-scripts/vpnc-script /usr/local/sbin/vpnc-script /usr/share/vpnc-scripts/vpnc-script /usr/sbin/vpnc-script /etc/vpnc/vpnc-script; do if test -x "$with_vpnc_script"; then break fi done if ! test -x "$with_vpnc_script"; then AC_MSG_ERROR([${with_vpnc_script} does not seem to be executable.] [OpenConnect will not function correctly without a vpnc-script.] [See http://www.infradead.org/openconnect/vpnc-script.html for more details.] [] [If you are building a distribution package, please ensure that your] [packaging is correct, and that a vpnc-script will be installed when the] [user installs your package. You should provide a --with-vpnc-script=] [argument to this configure script, giving the full path where the script] [will be installed.] [] [The standard location is ${with_vpnc_script}. To bypass this error and] [build OpenConnect to use the script from this location, even though it is] [not present at the time you are building OpenConnect, pass the argument] ["--with-vpnc-script=${with_vpnc_script}"]) else AC_MSG_RESULT([${with_vpnc_script}]) fi fi elif test "$with_vpnc_script" = "no"; then AC_ERROR([You cannot disable vpnc-script.] [OpenConnect will not function correctly without it.] [See http://www.infradead.org/openconnect/vpnc-script.html]) elif test "$have_win" = "yes"; then # Oh Windows how we hate thee. If user specifies a vpnc-script and it contains # backslashes, double them all up to survive escaping. with_vpnc_script="$(echo "${with_vpnc_script}" | sed s/\\\\/\\\\\\\\/g)" fi AC_DEFINE_UNQUOTED(DEFAULT_VPNCSCRIPT, "${with_vpnc_script}", [Default vpnc-script locatin]) AC_SUBST(DEFAULT_VPNCSCRIPT, "${with_vpnc_script}") AC_CHECK_FUNC(fdevname_r, [AC_DEFINE(HAVE_FDEVNAME_R, 1, [Have fdevname_r() function])], []) AC_CHECK_FUNC(statfs, [AC_DEFINE(HAVE_STATFS, 1, [Have statfs() function])], []) AC_CHECK_FUNC(getline, [AC_DEFINE(HAVE_GETLINE, 1, [Have getline() function])], [symver_getline="openconnect__getline;"]) AC_CHECK_FUNC(strcasestr, [AC_DEFINE(HAVE_STRCASESTR, 1, [Have strcasestr() function])], []) AC_CHECK_FUNC(strndup, [AC_DEFINE(HAVE_STRNDUP, 1, [Have strndup() function])], []) AC_CHECK_FUNC(asprintf, [AC_DEFINE(HAVE_ASPRINTF, 1, [Have asprintf() function])], [symver_asprintf="openconnect__asprintf;"]) AC_CHECK_FUNC(vasprintf, [AC_DEFINE(HAVE_VASPRINTF, 1, [Have vasprintf() function])], [symver_vasprintf="openconnect__vasprintf;"]) if test -n "$symver_vasprintf"; then AC_MSG_CHECKING([for va_copy]) AC_LINK_IFELSE([AC_LANG_PROGRAM([ #include va_list a;],[ va_list b; va_copy(b,a); va_end(b);])], [AC_DEFINE(HAVE_VA_COPY, 1, [Have va_copy()]) AC_MSG_RESULT(va_copy)], [AC_LINK_IFELSE([AC_LANG_PROGRAM([ #include va_list a;],[ va_list b; __va_copy(b,a); va_end(b);])], [AC_DEFINE(HAVE___VA_COPY, 1, [Have __va_copy()]) AC_MSG_RESULT(__va_copy)], [AC_MSG_RESULT(no) AC_MSG_ERROR([Your system lacks vasprintf() and va_copy()])]) ]) fi AC_SUBST(SYMVER_TIME, $symver_time) AC_SUBST(SYMVER_GETLINE, $symver_getline) AC_SUBST(SYMVER_ASPRINTF, $symver_asprintf) AC_SUBST(SYMVER_VASPRINTF, $symver_vasprintf) AC_SUBST(SYMVER_WIN32_STRERROR, $symver_win32_strerror) AS_COMPILER_FLAGS(WFLAGS, "-Wall -Wextra -Wno-missing-field-initializers -Wno-sign-compare -Wno-unused-parameter -Werror=pointer-to-int-cast -Wdeclaration-after-statement -Werror-implicit-function-declaration -Wformat-nonliteral -Wformat-security -Winit-self -Wmissing-declarations -Wmissing-include-dirs -Wnested-externs -Wpointer-arith -Wwrite-strings") AC_SUBST(WFLAGS, [$WFLAGS]) oldCFLAGS="$CFLAGS" CFLAGS="$CFLAGS $WFLAGS" AC_MSG_CHECKING([For memset_s]) AC_LINK_IFELSE([AC_LANG_PROGRAM([ #define __STDC_WANT_LIB_EXT1__ 1 #include ],[[ unsigned char *foo[16]; memset_s(foo, 16, 0, 16);]])], [AC_MSG_RESULT([yes]) AC_DEFINE(__STDC_WANT_LIB_EXT1__, 1, [To request memset_s]) AC_DEFINE(HAVE_MEMSET_S, 1, [Have memset_s() function])], [AC_MSG_RESULT([no]) AC_CHECK_FUNC(explicit_memset, [AC_DEFINE(HAVE_EXPLICIT_MEMSET, 1, [Have explicit_memset() function])], [AC_CHECK_FUNC(explicit_bzero, [AC_DEFINE(HAVE_EXPLICIT_BZERO, 1, [Have explicit_bzero() function])], []) ]) ]) CFLAGS="$oldCFLAGS" if test "$have_win" = yes; then # Checking "properly" for __attribute__((dllimport,stdcall)) functions is non-trivial LIBS="$LIBS -lws2_32 -lshlwapi -lsecur32 -liphlpapi" else AC_CHECK_FUNC(socket, [], AC_CHECK_LIB(socket, socket, [], AC_ERROR(Cannot find socket() function))) fi have_inet_aton=yes AC_CHECK_FUNC(inet_aton, [], AC_CHECK_LIB(nsl, inet_aton, [], have_inet_aton=no)) if test "$have_inet_aton" = "yes"; then AC_DEFINE(HAVE_INET_ATON, 1, [Have inet_aton()]) fi AC_MSG_CHECKING([for IPV6_PATHMTU socket option]) AC_COMPILE_IFELSE([AC_LANG_PROGRAM([ #include #include #include ],[ int foo = IPV6_PATHMTU; (void)foo;])], [AC_DEFINE(HAVE_IPV6_PATHMTU, 1, [Have IPV6_PATHMTU socket option]) AC_MSG_RESULT([yes])], [AC_MSG_RESULT([no])]) AC_CHECK_FUNC(__android_log_vprint, [], AC_CHECK_LIB(log, __android_log_vprint, [], [])) AC_ENABLE_SHARED AC_DISABLE_STATIC AC_CHECK_FUNC(nl_langinfo, [AC_DEFINE(HAVE_NL_LANGINFO, 1, [Have nl_langinfo() function])], []) if test "$ac_cv_func_nl_langinfo" = "yes"; then AM_ICONV if test "$am_cv_func_iconv" = "yes"; then AC_SUBST(ICONV_LIBS, [$LTLIBICONV]) AC_SUBST(ICONV_CFLAGS, [$INCICONV]) AC_DEFINE(HAVE_ICONV, 1, [Have iconv() function]) fi fi AM_CONDITIONAL(OPENCONNECT_ICONV, [test "$am_cv_func_iconv" = "yes"]) AC_ARG_ENABLE([nls], AS_HELP_STRING([--disable-nls], [Do not use Native Language Support]), [USE_NLS=$enableval], [USE_NLS=yes]) LIBINTL= if test "$USE_NLS" = "yes"; then AC_PATH_PROG(MSGFMT, msgfmt) if test "$MSGFMT" = ""; then AC_ERROR([msgfmt could not be found. Try configuring with --disable-nls]) fi fi LIBINTL= if test "$USE_NLS" = "yes"; then AC_MSG_CHECKING([for functional NLS support]) AC_LINK_IFELSE([AC_LANG_PROGRAM([ #include #include ],[ setlocale(LC_ALL, ""); bindtextdomain("openconnect", "/tmp"); (void)dgettext("openconnect", "foo");])], [AC_MSG_RESULT(yes)], [AC_LIB_LINKFLAGS_BODY([intl]) oldLIBS="$LIBS" LIBS="$LIBS $LIBINTL" oldCFLAGS="$LIBS" CFLAGS="$CFLAGS $INCINTL" AC_LINK_IFELSE([AC_LANG_PROGRAM([ #include #include ],[ setlocale(LC_ALL, ""); bindtextdomain("openconnect", "/tmp"); (void)dgettext("openconnect", "foo");])], [AC_MSG_RESULT(yes (with $INCINTL $LIBINTL))], [AC_MSG_RESULT(no) USE_NLS=no]) LIBS="$oldLIBS"]) fi if test "$USE_NLS" = "yes"; then AC_SUBST(INTL_LIBS, [$LTLIBINTL]) AC_SUBST(INTL_CFLAGS, [$INCINTL]) AC_DEFINE(ENABLE_NLS, 1, [Enable NLS support]) fi AM_CONDITIONAL(USE_NLS, [test "$USE_NLS" = "yes"]) AC_ARG_WITH([system-cafile], AS_HELP_STRING([--with-system-cafile], [Location of the default system CA certificate file for old (<3.0.20) GnuTLS versions])) # We will use GnuTLS by default if it's present. We used to suppport # using GnuTLS for the TLS connections and OpenSSL for DTLS, but none # of the reasons for that make sense any more. AC_ARG_WITH([gnutls], AS_HELP_STRING([--without-gnutls], [Do not attempt to use GnuTLS; use OpenSSL instead])) AC_ARG_WITH([openssl], AS_HELP_STRING([--with-openssl], [Location of OpenSSL build dir])) ssl_library= esp= dtls= if test "$with_openssl" != "" -a "$with_openssl" != "no"; then if test "$with_gnutls" = ""; then with_gnutls=no elif test "$with_gnutls" = "yes"; then AC_MSG_ERROR([You cannot choose both GnuTLS and OpenSSL.]) fi fi # First, check if GnuTLS exists and is usable if test "$with_gnutls" = "yes" || test "$with_gnutls" = ""; then PKG_CHECK_MODULES(GNUTLS, gnutls, [if ! $PKG_CONFIG --atleast-version=3.2.10 gnutls; then AC_MSG_WARN([Your GnuTLS is too old. At least v3.2.10 is required]) else ssl_library=GnuTLS fi], [:]) elif test "$with_gnutls" != "no"; then AC_ERROR([Values other than 'yes' or 'no' for --with-gnutls are not supported]) fi # Do we need to look for OpenSSL? if test "$ssl_library" = ""; then if test "$with_gnutls" = "yes" -o "$with_openssl" = "no"; then AC_MSG_ERROR([Suitable GnuTLS required but not found]) elif test "$with_openssl" = "yes" -o "$with_openssl" = ""; then PKG_CHECK_MODULES(OPENSSL, openssl, [AC_SUBST(SSL_PC, [openssl])], [oldLIBS="$LIBS" LIBS="$LIBS -lssl -lcrypto" AC_MSG_CHECKING([for OpenSSL without pkg-config]) AC_LINK_IFELSE([AC_LANG_PROGRAM([ #include #include ],[ SSL_library_init(); ERR_clear_error(); SSL_load_error_strings(); OpenSSL_add_all_algorithms();])], [AC_MSG_RESULT(yes) AC_SUBST([OPENSSL_LIBS], ["-lssl -lcrypto"]) AC_SUBST([OPENSSL_CFLAGS], [])] AC_SUBST([openssl_pc_libs], [$OPENSSL_LIBS]), [AC_MSG_RESULT(no) AC_ERROR([Could not build against OpenSSL])]) LIBS="$oldLIBS"]) ssl_library=OpenSSL PKG_CHECK_MODULES(P11KIT, p11-kit-1, # libp11 0.4.7 fails to export ERR_LIB_PKCS11 so we don't know what it # is and can't match its errors, which we need to for login checks. [PKG_CHECK_MODULES(LIBP11, libp11 != 0.4.7, [AC_DEFINE(HAVE_LIBP11, 1, [Have libp11 and p11-kit for OpenSSL]) AC_SUBST(P11KIT_PC, ["libp11 p11-kit-1"]) proxy_module="`$PKG_CONFIG --variable=proxy_module p11-kit-1`" pkcs11_support="libp11" AC_DEFINE_UNQUOTED([DEFAULT_PKCS11_MODULE], "${proxy_module}", [p11-kit proxy])], [:])], [:]) else OPENSSL_CFLAGS="-I${with_openssl}/include ${OPENSSL_CFLAGS}" if test -r "${with_openssl}/libssl.a" -a -r "${with_openssl}/libcrypto.a"; then OPENSSL_LIBS="${with_openssl}/libssl.a ${with_openssl}/libcrypto.a -ldl -lz -pthread" elif test -r "${with_openssl}/crypto/.libs/libcrypto.a" -a \ -r "${with_openssl}/ssl/.libs/libssl.a"; then OPENSSL_LIBS="${with_openssl}/ssl/.libs/libssl.a ${with_openssl}/crypto/.libs/libcrypto.a -ldl -lz -pthread" else AC_ERROR([Could not find OpenSSL libraries in ${with_openssl}]); fi AC_SUBST(OPENSSL_CFLAGS) AC_SUBST(OPENSSL_LIBS) enable_static=yes enable_shared=no ssl_library=OpenSSL fi fi AC_ARG_WITH([openssl-version-check], AS_HELP_STRING([--without-openssl-version-check], [Do not check for known-broken OpenSSL versions])) AC_ARG_WITH([default-gnutls-priority], AS_HELP_STRING([--with-default-gnutls-priority=STRING], [Provide a default string as GnuTLS priority string]), default_gnutls_priority=$withval) if test -n "$default_gnutls_priority"; then AC_DEFINE_UNQUOTED([DEFAULT_PRIO], ["$default_gnutls_priority"], [The GnuTLS priority string]) fi tss2lib= case "$ssl_library" in OpenSSL) oldLIBS="${LIBS}" oldCFLAGS="${CFLAGS}" LIBS="${LIBS} ${OPENSSL_LIBS}" CFLAGS="${CFLAGS} ${OPENSSL_CFLAGS}" # Check for the various known-broken versions of OpenSSL, which includes LibreSSL. if test "$with_openssl_version_check" != "no"; then AC_MSG_CHECKING([for known-broken versions of OpenSSL]) AC_COMPILE_IFELSE([AC_LANG_PROGRAM([#include ], [#if defined(LIBRESSL_VERSION_NUMBER) #error Bad OpenSSL #endif ])], [], [AC_MSG_RESULT(yes) AC_MSG_ERROR([LibreSSL does not support Cisco DTLS.] [Build with OpenSSL or GnuTLS instead.])]) AC_COMPILE_IFELSE([AC_LANG_PROGRAM([#include ],[#if \ (OPENSSL_VERSION_NUMBER == 0x10002000L || \ (OPENSSL_VERSION_NUMBER >= 0x100000b0L && OPENSSL_VERSION_NUMBER <= 0x100000c0L) || \ (OPENSSL_VERSION_NUMBER >= 0x10001040L && OPENSSL_VERSION_NUMBER <= 0x10001060L)) #error Bad OpenSSL #endif ])], [], [AC_MSG_RESULT(yes) AC_ERROR([This version of OpenSSL is known to be broken with Cisco DTLS.] [See http://rt.openssl.org/Ticket/Display.html?id=2984&user=guest&pass=guest] [Add --without-openssl-version-check to configure args to avoid this check, or] [perhaps consider building with GnuTLS instead.])]) AC_COMPILE_IFELSE([AC_LANG_PROGRAM([#include ],[#if \ (OPENSSL_VERSION_NUMBER == 0x1000200fL) #error Bad OpenSSL #endif ])], [], [AC_MSG_RESULT(yes) AC_ERROR([This version of OpenSSL is known to be broken with Cisco DTLS.] [See http://rt.openssl.org/Ticket/Display.html?id=3703&user=guest&pass=guest] [and http://rt.openssl.org/Ticket/Display.html?id=3711&user=guest&pass=guest] [Add --without-openssl-version-check to configure args to avoid this check, or] [perhaps consider building with GnuTLS instead.])]) AC_COMPILE_IFELSE([AC_LANG_PROGRAM([#include ],[#if \ ((OPENSSL_VERSION_NUMBER >= 0x10001110L && OPENSSL_VERSION_NUMBER <= 0x10001150L) || \ (OPENSSL_VERSION_NUMBER >= 0x10002050L && OPENSSL_VERSION_NUMBER <= 0x10002090L)) #error Bad OpenSSL #endif ])], [], [AC_MSG_RESULT(yes) AC_ERROR([This version of OpenSSL is known to be broken with Cisco DTLS.] [See http://rt.openssl.org/Ticket/Display.html?id=4631&user=guest&pass=guest] [Add --without-openssl-version-check to configure args to avoid this check, or] [perhaps consider building with GnuTLS instead.])]) AC_MSG_RESULT(no) fi AC_MSG_CHECKING([for ENGINE_by_id() in OpenSSL]) AC_LINK_IFELSE([AC_LANG_PROGRAM([#include ], [ENGINE_by_id("foo");])], [AC_MSG_RESULT(yes) AC_DEFINE(HAVE_ENGINE, [1], [OpenSSL has ENGINE support])], [AC_MSG_RESULT(no) AC_MSG_NOTICE([Building without OpenSSL TPM ENGINE support])]) AC_MSG_CHECKING([for dtls1_stop_timer() in OpenSSL]) AC_LINK_IFELSE([AC_LANG_PROGRAM([#include #include extern void dtls1_stop_timer(SSL *);], [dtls1_stop_timer(NULL);])], [AC_MSG_RESULT(yes) AC_DEFINE(HAVE_DTLS1_STOP_TIMER, [1], [OpenSSL has dtls1_stop_timer() function])], [AC_MSG_RESULT(no)]) # DTLS_client_method() and DTLSv1_2_client_method() were both added between # OpenSSL v1.0.1 and v1.0.2. DTLSV1.2_client_method() was later deprecated # in v1.1.0 so we use DTLS_client_method() as our check for DTLSv1.2 support # and that's what we actually use in openssl-dtls.c too. AC_MSG_CHECKING([for DTLS_client_method() in OpenSSL]) AC_LINK_IFELSE([AC_LANG_PROGRAM([#include ], [DTLS_client_method();])], [AC_MSG_RESULT(yes) AC_DEFINE(HAVE_DTLS12, [1], [OpenSSL has DTLS_client_method() function])], [AC_MSG_RESULT(no)]) AC_MSG_CHECKING([for SSL_CTX_set_min_proto_version() in OpenSSL]) AC_LINK_IFELSE([AC_LANG_PROGRAM([#include ], [SSL_CTX_set_min_proto_version((void *)0, 0);])], [AC_MSG_RESULT(yes) AC_DEFINE(HAVE_SSL_CTX_PROTOVER, [1], [OpenSSL has SSL_CTX_set_min_proto_version() function])], [AC_MSG_RESULT(no)]) AC_MSG_CHECKING([for BIO_meth_free() in OpenSSL]) AC_LINK_IFELSE([AC_LANG_PROGRAM([#include ], [BIO_meth_free((void *)0);])], [AC_MSG_RESULT(yes) AC_DEFINE(HAVE_BIO_METH_FREE, [1], [OpenSSL has BIO_meth_free() function])], [AC_MSG_RESULT(no)]) AC_CHECK_FUNC(HMAC_CTX_copy, [esp=yes], [AC_MSG_WARN([ESP support will be disabled])]) LIBS="${oldLIBS}" CFLAGS="${oldCFLAGS}" dtls=yes AC_DEFINE(OPENCONNECT_OPENSSL, 1, [Using OpenSSL]) AC_SUBST(SSL_LIBS, ['$(OPENSSL_LIBS)']) AC_SUBST(SSL_CFLAGS, ['$(OPENSSL_CFLAGS)']) ;; GnuTLS) oldlibs="$LIBS" oldcflags="$CFLAGS" LIBS="$LIBS $GNUTLS_LIBS" CFLAGS="$CFLAGS $GNUTLS_CFLAGS" esp=yes dtls=yes AC_CHECK_FUNC(gnutls_system_key_add_x509, [AC_DEFINE(HAVE_GNUTLS_SYSTEM_KEYS, 1, [From GnuTLS 3.4.0])], []) AC_CHECK_FUNC(gnutls_pkcs11_add_provider, [PKG_CHECK_MODULES(P11KIT, p11-kit-1, [AC_DEFINE(HAVE_P11KIT, 1, [Have. P11. Kit.]) pkcs11_support=GnuTLS AC_SUBST(P11KIT_PC, p11-kit-1)], [:])], []) LIBS="$oldlibs -ltspi" AC_MSG_CHECKING([for tss library]) AC_LINK_IFELSE([AC_LANG_PROGRAM([ #include #include ],[ int err = Tspi_Context_Create((void *)0); Trspi_Error_String(err);])], [AC_MSG_RESULT(yes) AC_SUBST([TSS_LIBS], [-ltspi]) AC_SUBST([TSS_CFLAGS], []) AC_DEFINE(HAVE_TROUSERS, 1, [Have Trousers TSS library])], [AC_MSG_RESULT(no)]) LIBS="$oldlibs" CFLAGS="$oldcflags" PKG_CHECK_MODULES(TASN1, [libtasn1], [have_tasn1=yes], [have_tasn1=no]) if test "$have_tasn1" = "yes"; then PKG_CHECK_MODULES(TSS2_ESYS, [tss2-esys], [AC_DEFINE(HAVE_TSS2, 1, [Have TSS2]) AC_SUBST(TPM2_CFLAGS, ['$(TASN1_CFLAGS) $(TSS2_ESYS_CFLAGS)']) AC_SUBST(TPM2_LIBS, ['$(TASN1_LIBS) $(TSS2_ESYS_LIBS)']) tss2lib=tss2-esys], [:]) if test "$tss2lib" = ""; then AC_CHECK_LIB([tss], [TSS_Create], [tss2inc=tss2 tss2lib=tss], AC_CHECK_LIB([ibmtss], [TSS_Create], [tss2inc=ibmtss tss2lib=ibmtss], [])) if test "$tss2lib" != ""; then AC_CHECK_HEADER($tss2inc/tss.h, [AC_DEFINE_UNQUOTED(HAVE_TSS2, $tss2inc, [TSS2 library]) AC_SUBST(TSS2_LIBS, [-l$tss2lib]) AC_SUBST(TPM2_CFLAGS, ['$(TASN1_CFLAGS)']) AC_SUBST(TPM2_LIBS, ['$(TASN1_LIBS) $(TSS2_LIBS)'])], [tss2lib=]) fi fi fi AC_DEFINE(OPENCONNECT_GNUTLS, 1, [Using GnuTLS]) AC_SUBST(SSL_PC, [gnutls]) AC_SUBST(SSL_LIBS, ['$(GNUTLS_LIBS) $(TPM2_LIBS)']) AC_SUBST(SSL_CFLAGS, ['$(GNUTLS_CFLAGS) $(TPM2_CFLAGS)']) ;; *) # This should never happen AC_MSG_ERROR([No SSL library selected]) ;; esac AM_CONDITIONAL(OPENCONNECT_TSS2_ESYS, [ test "$tss2lib" = "tss2-esys" ]) AM_CONDITIONAL(OPENCONNECT_TSS2_IBM, [ test "$tss2lib" = "ibmtss" -o "$tss2lib" = "tss" ]) test_pkcs11= if test "$pkcs11_support" != ""; then AC_CHECK_PROG(test_pkcs11, softhsm2-util, yes) fi AM_CONDITIONAL(TEST_PKCS11, [ test "$test_pkcs11" = "yes" ]) # The test is OpenSSL-only for now. AM_CONDITIONAL(CHECK_DTLS, [ test "$ssl_library" = "OpenSSL" ]) AC_ARG_ENABLE([dtls-xfail], AS_HELP_STRING([--enable-dtls-xfail], [Only for gitlab CI. Do not use])) AM_CONDITIONAL(DTLS_XFAIL, [test "$enable_dtls_xfail" = "yes" ]) AC_ARG_ENABLE([dsa-tests], AS_HELP_STRING([--disable-dsa-tests], [Disable DSA keys in self-test]), [], [enable_dsa_tests=yes]) AM_CONDITIONAL(TEST_DSA, [test "$enable_dsa_tests" = "yes"]) AM_CONDITIONAL(OPENCONNECT_GNUTLS, [ test "$ssl_library" = "GnuTLS" ]) AM_CONDITIONAL(OPENCONNECT_OPENSSL, [ test "$ssl_library" = "OpenSSL" ]) AM_CONDITIONAL(OPENCONNECT_ESP, [ test "$esp" != "" ]) AM_CONDITIONAL(OPENCONNECT_DTLS, [ test "$dtls" != "" ]) if test "$esp" != ""; then AC_DEFINE(HAVE_ESP, 1, [Build with ESP support]) fi if test "$dtls" != ""; then AC_DEFINE(HAVE_DTLS, 1, [Build with DTLS support]) fi AC_ARG_WITH(lz4, AS_HELP_STRING([--without-lz4], [disable support for LZ4 compression]), test_for_lz4=$withval, test_for_lz4=yes) lz4_pkg=no if test "$test_for_lz4" = yes; then PKG_CHECK_MODULES([LIBLZ4], [liblz4], [ AC_SUBST(LIBLZ4_PC, liblz4) AC_DEFINE([HAVE_LZ4], [], [LZ4 was found]) lz4_pkg=yes oldLIBS="$LIBS" LIBS="$LIBS $LIBLZ4_LIBS" oldCFLAGS="$CFLAGS" CFLAGS="$CFLAGS $LIBLZ4_CFLAGS" AC_MSG_CHECKING([for LZ4_compress_default()]) AC_LINK_IFELSE([AC_LANG_PROGRAM([ #include ],[ LZ4_compress_default("", (char *)0, 0, 0);])], [AC_MSG_RESULT(yes) AC_DEFINE([HAVE_LZ4_COMPRESS_DEFAULT], [], [From LZ4 r129]) ], [AC_MSG_RESULT(no)]) LIBS="$oldLIBS" CFLAGS="$oldCFLAGS" ], [ AC_MSG_WARN([[ *** *** lz4 not found. *** ]]) ]) fi # For some bizarre reason now that we use AM_ICONV, the mingw32 build doesn't # manage to set EGREP properly in the created ./libtool script. Make sure it's # found. AC_PROG_EGREP # Needs to happen after we default to static/shared libraries based on OpenSSL AC_PROG_LIBTOOL if test "$use_openbsd_libtool" = "true" && test -x /usr/bin/libtool; then echo using OpenBSD libtool LIBTOOL=/usr/bin/libtool fi AM_CONDITIONAL(OPENBSD_LIBTOOL, [ test "$use_openbsd_libtool" = "true" ]) AX_CHECK_VSCRIPT PKG_CHECK_MODULES(LIBXML2, libxml-2.0) PKG_CHECK_MODULES(ZLIB, zlib, [AC_SUBST(ZLIB_PC, [zlib])], [oldLIBS="$LIBS" LIBS="$LIBS -lz" AC_MSG_CHECKING([for zlib without pkg-config]) AC_LINK_IFELSE([AC_LANG_PROGRAM([ #include ],[ z_stream zs; deflateInit2(&zs, Z_DEFAULT_COMPRESSION, Z_DEFLATED, -12, 9, Z_DEFAULT_STRATEGY);])], [AC_MSG_RESULT(yes) AC_SUBST([ZLIB_LIBS], [-lz]) AC_SUBST([ZLIB_CFLAGS], [])], [AC_MSG_RESULT(no) AC_ERROR([Could not build against zlib])]) LIBS="$oldLIBS"]) AC_ARG_WITH([libproxy], AS_HELP_STRING([--without-libproxy], [Build without libproxy library [default=auto]])) AS_IF([test "x$with_libproxy" != "xno"], [ PKG_CHECK_MODULES(LIBPROXY, libproxy-1.0, [AC_SUBST(LIBPROXY_PC, libproxy-1.0) AC_DEFINE([LIBPROXY_HDR], ["proxy.h"], [libproxy header file]) libproxy_pkg=yes], libproxy_pkg=no) ], [libproxy_pkg=disabled]) dnl Libproxy *can* exist without a .pc file, and its header may be called dnl libproxy.h in that case. if (test "$libproxy_pkg" = "no"); then AC_MSG_CHECKING([for libproxy]) oldLIBS="$LIBS" LIBS="$LIBS -lproxy" AC_LINK_IFELSE([AC_LANG_PROGRAM([#include ], [(void)px_proxy_factory_new();])], [AC_MSG_RESULT(yes (with libproxy.h)) AC_DEFINE([LIBPROXY_HDR], ["libproxy.h"]) AC_SUBST([LIBPROXY_LIBS], [-lproxy]) libproxy_pkg=yes], [AC_LINK_IFELSE([AC_LANG_PROGRAM([#include ], [(void)px_proxy_factory_new();])], [AC_MSG_RESULT(yes (with proxy.h)) AC_DEFINE([LIBPROXY_HDR], ["proxy.h"]) AC_SUBST([LIBPROXY_LIBS], [-lproxy]) libproxy_pkg=yes], [AC_MSG_RESULT(no)])]) LIBS="$oldLIBS" fi AC_ARG_WITH([stoken], AS_HELP_STRING([--without-stoken], [Build without libstoken library [default=auto]])) AS_IF([test "x$with_stoken" != "xno"], [ PKG_CHECK_MODULES(LIBSTOKEN, stoken, [AC_SUBST(LIBSTOKEN_PC, stoken) AC_DEFINE([HAVE_LIBSTOKEN], 1, [Have libstoken]) libstoken_pkg=yes], libstoken_pkg=no) ], [libstoken_pkg=disabled]) AM_CONDITIONAL(OPENCONNECT_STOKEN, [test "$libstoken_pkg" = "yes"]) AC_ARG_WITH([libpcsclite], AS_HELP_STRING([--without-libpcsclite], [Build without libpcsclite library (for Yubikey support) [default=auto]])) AS_IF([test "x$with_libpcsclite" != "xno"], [ if test "$system_pcsc_libs" != ""; then AC_SUBST(LIBPCSCLITE_LIBS, "$system_pcsc_libs") AC_SUBST(LIBPCSCLITE_CFLAGS, "$system_pcsc_cflags") AC_SUBST(system_pcsc_libs) libpcsclite_pkg=yes else PKG_CHECK_MODULES(LIBPCSCLITE, libpcsclite, [AC_SUBST(LIBPCSCLITE_PC, libpcsclite) libpcsclite_pkg=yes], libpcsclite_pkg=no) fi ], [libpcsclite_pkg=disabled]) if test "$libpcsclite_pkg" = "yes"; then AC_DEFINE([HAVE_LIBPCSCLITE], 1, [Have libpcsclite]) fi AM_CONDITIONAL(OPENCONNECT_LIBPCSCLITE, [test "$libpcsclite_pkg" = "yes"]) AC_ARG_WITH([libpskc], AS_HELP_STRING([--without-libpskc], [Build without libpskc library [default=auto]])) AS_IF([test "x$with_libpskc" != "xno"], [ PKG_CHECK_MODULES(LIBPSKC, [libpskc >= 2.2.0], [AC_SUBST(LIBPSKC_PC, libpskc) AC_DEFINE([HAVE_LIBPSKC], 1, [Have libpskc]) libpskc_pkg=yes], libpskc_pkg=no)]) linked_gssapi=no AC_ARG_WITH([gssapi], AS_HELP_STRING([--without-gssapi], [Build without GSSAPI support [default=auto]])) AC_DEFUN([GSSAPI_CHECK_BUILD],[ gss_old_libs="$LIBS" LIBS="$LIBS ${GSSAPI_LIBS}" AC_MSG_CHECKING([GSSAPI compilation with "${GSSAPI_LIBS}"]) AC_LINK_IFELSE([AC_LANG_PROGRAM([ #include #include GSSAPI_HDR],[ OM_uint32 major, minor; gss_buffer_desc b = GSS_C_EMPTY_BUFFER; gss_ctx_id_t ctx = GSS_C_NO_CONTEXT; gss_init_sec_context(&minor, GSS_C_NO_CREDENTIAL, &ctx, GSS_C_NO_NAME, GSS_C_NO_OID, GSS_C_MUTUAL_FLAG, GSS_C_INDEFINITE, GSS_C_NO_CHANNEL_BINDINGS, NULL, NULL, NULL, NULL, NULL);])], [linked_gssapi=yes AC_MSG_RESULT(yes)], [linked_gssapi=no AC_MSG_RESULT(no)]) LIBS="$gss_old_libs" ]) # Attempt to work out how to build with GSSAPI. Mostly, krb5-config will # exist and work. Tested on FreeBSD 9, OpenBSD 5.5, NetBSD 6.1.4. Solaris # has krb5-config but it doesn't do GSSAPI so hard-code the results there. # Older OpenBSD (I tested 5.2) lacks krb5-config so leave that as an example. if test "$with_gssapi" != "no"; then found_gssapi=no if test "${with_gssapi}" != "yes" -a "${with_gssapi}" != "" ; then gssapi_root="${with_gssapi}" else gssapi_root="" fi # First: if they specify GSSAPI_LIBS and/or GSSAPI_CFLAGS then use them. if test "$GSSAPI_LIBS$GSSAPI_CFLAGS" != ""; then found_gssapi=yes fi # Second: try finding a viable krb5-config that supports gssapi if test "$found_gssapi" = "no"; then if test -n "${gssapi_root}"; then krb5path="${gssapi_root}/bin:$PATH" else krb5path="/usr/kerberos/bin:$PATH" fi if test -n "$host_alias"; then AC_PATH_PROG(KRB5_CONFIG, [${host_alias}-krb5-config], [], [$krb5path]) fi if test "$KRB5_CONFIG" = ""; then AC_PATH_PROG(KRB5_CONFIG, [krb5-config], [], [$krb5path]) fi if test "$KRB5_CONFIG" != ""; then AC_MSG_CHECKING([whether $KRB5_CONFIG supports gssapi]) if "${KRB5_CONFIG}" --cflags gssapi > /dev/null 2>/dev/null; then AC_MSG_RESULT(yes) found_gssapi=yes GSSAPI_LIBS="`"${KRB5_CONFIG}" --libs gssapi`" GSSAPI_CFLAGS="`"${KRB5_CONFIG}" --cflags gssapi`" else AC_MSG_RESULT(no) fi fi fi # Third: look for or in some likely places, # and we'll worry about how to *link* it in a moment... if test "$found_gssapi" = "no"; then if test -n "${gssapi_root}"; then if test -r "${with_gssapi}/include/gssapi.h" -o \ -r "${with_gssapi}/include/gssapi/gssapi.h"; then GSSAPI_CFLAGS="-I\"${with_gssapi}/include\"" fi else if test -r /usr/kerberos/include/gssapi.h -o \ -r /usr/kerberos/include/gssapi/gssapi.h; then GSSAPI_CFLAGS=-I/usr/kerberos/include elif test -r /usr/include/kerberosV/gssapi.h -o \ -r /usr/include/kerberosV/gssapi/gssapi.h; then # OpenBSD 5.2 puts it here GSSAPI_CFLAGS=-I/usr/include/kerberosV else # Maybe it'll Just Work GSSAPI_CFLAGS= fi fi fi oldcflags="$CFLAGS" CFLAGS="$CFLAGS ${GSSAPI_CFLAGS}" # OK, now see if we've correctly managed to find gssapi.h at least... gssapi_hdr= AC_CHECK_HEADER([gssapi/gssapi.h], [gssapi_hdr=""], [AC_CHECK_HEADER([gssapi.h], [gssapi_hdr=""], [AC_MSG_WARN([Cannot find or ])])]) # Finally, unless we've already failed, see if we can link it. linked_gssapi=no if test -n "${gssapi_hdr}"; then AC_DEFINE_UNQUOTED(GSSAPI_HDR, $gssapi_hdr, [GSSAPI header]) if test "$found_gssapi" = "yes"; then # We think we have GSSAPI_LIBS already so try it... GSSAPI_CHECK_BUILD else LFLAG= if test -n "$gssapi_root"; then LFLAG="-L\"${gssapi_root}/lib$libsuff\"" fi # Solaris, HPUX, etc. GSSAPI_LIBS="$LFLAG -lgss" GSSAPI_CHECK_BUILD if test "$linked_gssapi" = "no"; then GSSAPI_LIBS="$LFLAG -lgssapi" GSSAPI_CHECK_BUILD fi if test "$linked_gssapi" = "no"; then GSSAPI_LIBS="$LFLAG -lgssapi_krb5" GSSAPI_CHECK_BUILD fi if test "$linked_gssapi" = "no"; then # OpenBSD 5.2 at least GSSAPI_LIBS="$LFLAG -lgssapi -lkrb5 -lcrypto" GSSAPI_CHECK_BUILD fi if test "$linked_gssapi" = "no"; then # MIT GSSAPI_LIBS="$LFLAG -lgssapi_krb5 -lkrb5 -lk5crypto -lcom_err" GSSAPI_CHECK_BUILD fi if test "$linked_gssapi" = "no"; then # Heimdal GSSAPI_LIBS="$LFLAG -lkrb5 -lcrypto -lasn1 -lcom_err -lroken -lgssapi" GSSAPI_CHECK_BUILD fi if test "$linked_gssapi" = "no"; then AC_MSG_WARN([Cannot find GSSAPI. Try setting GSSAPI_LIBS and GSSAPI_CFLAGS manually]) fi fi fi CFLAGS="$oldcflags" if test "$linked_gssapi" = "yes"; then AC_DEFINE([HAVE_GSSAPI], 1, [Have GSSAPI support]) AC_SUBST(GSSAPI_CFLAGS) AC_SUBST(GSSAPI_LIBS) elif test "$with_gssapi" = ""; then AC_MSG_WARN([Building without GSSAPI support]); unset GSSAPI_CFLAGS unset GSSAPI_LIBS else AC_MSG_ERROR([GSSAPI support requested but not found. Try setting GSSAPI_LIBS/GSSAPI_CFLAGS]) fi fi AM_CONDITIONAL(OPENCONNECT_GSSAPI, [test "$linked_gssapi" = "yes"]) AC_ARG_WITH([java], AS_HELP_STRING([--with-java(=DIR)], [Build JNI bindings using jni.h from DIR [default=no]]), [], [with_java=no]) if test "$with_java" = "yes"; then AX_JNI_INCLUDE_DIR for JNI_INCLUDE_DIR in $JNI_INCLUDE_DIRS; do JNI_CFLAGS="$JNI_CFLAGS -I$JNI_INCLUDE_DIR" done elif test "$with_java" = "no"; then JNI_CFLAGS="" else JNI_CFLAGS="-I$with_java" fi if test "x$JNI_CFLAGS" != "x"; then oldCFLAGS="$CFLAGS" CFLAGS="$CFLAGS $JNI_CFLAGS" AC_MSG_CHECKING([jni.h usability]) AC_COMPILE_IFELSE([AC_LANG_PROGRAM([#include ], [jint foo = 0; (void)foo;])], AC_MSG_RESULT([yes]), [AC_MSG_RESULT([no]) AC_MSG_ERROR([unable to compile JNI test program])]) CFLAGS="$oldCFLAGS" AC_SUBST(JNI_CFLAGS, [$JNI_CFLAGS]) fi AM_CONDITIONAL(OPENCONNECT_JNI, [test "$JNI_CFLAGS" != ""]) AC_ARG_ENABLE([jni-standalone], AS_HELP_STRING([--enable-jni-standalone], [build JNI stubs directly into libopenconnect.so [default=no]]), [jni_standalone=$enableval], [jni_standalone=no]) AM_CONDITIONAL(JNI_STANDALONE, [test $jni_standalone = yes]) symver_java= if test "$jni_standalone" = "yes" ; then symver_java=$(sed -n '/JNIEXPORT/{s/^JNIEXPORT.*\(Java_.*\) *(/\1;/ p}' ${srcdir}/jni.c) # Remove the newlines between each item. symver_java=$(echo $symver_java) fi AC_SUBST(SYMVER_JAVA, $symver_java) AC_CHECK_HEADER([if_tun.h], [AC_DEFINE([IF_TUN_HDR], ["if_tun.h"], [if_tun.h include path])], [AC_CHECK_HEADER([linux/if_tun.h], [AC_DEFINE([IF_TUN_HDR], ["linux/if_tun.h"])], [AC_CHECK_HEADER([net/if_tun.h], [AC_DEFINE([IF_TUN_HDR], ["net/if_tun.h"])], [AC_CHECK_HEADER([net/tun/if_tun.h], [AC_DEFINE([IF_TUN_HDR], ["net/tun/if_tun.h"])])])])]) AC_CHECK_HEADER([net/if_utun.h], AC_DEFINE([HAVE_NET_UTUN_H], 1, [Have net/if_utun.h]), , [#include ]) AC_CHECK_HEADER([alloca.h], AC_DEFINE([HAVE_ALLOCA_H], 1, [Have alloca.h])) AC_CHECK_HEADER([endian.h], [AC_DEFINE([ENDIAN_HDR], [], [endian header include path])], [AC_CHECK_HEADER([sys/endian.h], [AC_DEFINE([ENDIAN_HDR], [])], [AC_CHECK_HEADER([sys/isa_defs.h], [AC_DEFINE([ENDIAN_HDR], [])])])]) build_www=yes AC_PATH_PROGS(PYTHON, [python3 python2 python], [], $PATH:/bin:/usr/bin) if test -z "${ac_cv_path_PYTHON}"; then AC_MSG_NOTICE([Python not found; not building HTML pages]) build_www=no fi if test "${build_www}" = "yes"; then AC_MSG_CHECKING([if groff can create UTF-8 XHTML]) AC_PATH_PROGS_FEATURE_CHECK([GROFF], [groff], [$ac_path_GROFF -t -K UTF-8 -mandoc -Txhtml /dev/null > /dev/null 2>&1 && ac_cv_path_GROFF=$ac_path_GROFF]) if test -n "$ac_cv_path_GROFF"; then AC_MSG_RESULT(yes) AC_SUBST(GROFF, ${ac_cv_path_GROFF}) else AC_MSG_RESULT([no. Not building HTML pages]) build_www=no fi fi AM_CONDITIONAL(BUILD_WWW, [test "${build_www}" = "yes"]) # Checks for tests PKG_CHECK_MODULES([CWRAP], [uid_wrapper, socket_wrapper], have_cwrap=yes, have_cwrap=no) AM_CONDITIONAL(HAVE_CWRAP, test "x$have_cwrap" != xno) have_netns=no AC_PATH_PROG(NUTTCP, nuttcp) if test -n "$ac_cv_path_NUTTCP"; then AC_PATH_PROG(IP, ip, [], $PATH:/sbin:/usr/sbin) if test -n "$ac_cv_path_IP"; then AC_MSG_CHECKING([For network namespaces]) NETNS=openconnect-configure-test-$$ if ip netns add $NETNS >/dev/null 2>/dev/null; then ip netns delete $NETNS have_netns=yes fi AC_MSG_RESULT($have_netns) fi fi AM_CONDITIONAL(HAVE_NETNS, test "x$have_netns" != xno) AC_SUBST([CONFIG_STATUS_DEPENDENCIES], ['$(top_srcdir)/po/LINGUAS \ $(top_srcdir)/openconnect.h \ $(top_srcdir)/libopenconnect.map.in \ $(top_srcdir)/openconnect.8.in \ $(top_srcdir)/tests/softhsm2.conf.in \ $(top_srcdir)/tests/configs/test-user-cert.config.in \ $(top_srcdir)/tests/configs/test-user-pass.config.in']) RAWLINGUAS=`sed -e "/^#/d" -e "s/#.*//" "${srcdir}/po/LINGUAS"` # Remove newlines LINGUAS=`echo $RAWLINGUAS` AC_SUBST(LINGUAS) APIMAJOR="`sed -n 's/^#define OPENCONNECT_API_VERSION_MAJOR \(.*\)/\1/p' ${srcdir}/openconnect.h`" APIMINOR="`sed -n 's/^#define OPENCONNECT_API_VERSION_MINOR \(.*\)/\1/p' ${srcdir}/openconnect.h`" AC_SUBST(APIMAJOR) AC_SUBST(APIMINOR) # We want version.c to depend on the files that would affect the # output of version.sh. But we cannot assume that they'll exist, # and we cannot use $(wildcard) in a non-GNU makefile. So we just # depend on the files which happen to exist at configure time. GITVERSIONDEPS= for a in ${srcdir}/.git/index ${srcdir}/.git/packed-refs \ ${srcdir}/.git/refs/tags ${srcdir}/.git/HEAD; do if test -r $a ; then GITVERSIONDEPS="$GITVERSIONDEPS $a" fi done AC_SUBST(GITVERSIONDEPS) AC_SUBST(OCSERV_USER, $(whoami)) AC_SUBST(OCSERV_GROUP, $(groups|cut -f 1 -d ' ')) AC_CONFIG_FILES(Makefile openconnect.pc po/Makefile www/Makefile \ libopenconnect.map openconnect.8 www/styles/Makefile \ www/inc/Makefile www/images/Makefile tests/Makefile \ tests/softhsm2.conf tests/configs/test-user-cert.config \ tests/configs/test-user-pass.config) AC_OUTPUT AC_DEFUN([SUMMARY], [pretty="$2" if test "$pretty" = "openssl"; then pretty=OpenSSL elif test "$pretty" = "gnutls" -o "$pretty" = "both"; then pretty=GnuTLS elif test "$pretty" = ""; then pretty=no fi echo "AS_HELP_STRING([$1:],[$pretty])"]) echo "BUILD OPTIONS:" SUMMARY([SSL library], [$ssl_library]) SUMMARY([[PKCS#11 support]], [$pkcs11_support]) SUMMARY([DTLS support], [$dtls]) SUMMARY([ESP support], [$esp]) SUMMARY([libproxy support], [$libproxy_pkg]) SUMMARY([RSA SecurID support], [$libstoken_pkg]) SUMMARY([PSKC OATH file support], [$libpskc_pkg]) SUMMARY([GSSAPI support], [$linked_gssapi]) SUMMARY([Yubikey support], [$libpcsclite_pkg]) SUMMARY([LZ4 compression], [$lz4_pkg]) SUMMARY([Java bindings], [$with_java]) SUMMARY([Build docs], [$build_www]) SUMMARY([Unit tests], [$have_cwrap]) SUMMARY([Net namespace tests], [$have_netns]) if test "$ssl_library" = "OpenSSL"; then AC_MSG_WARN([[ *** *** Be sure to run "make check" to verify OpenSSL DTLS support *** ]]) fi openconnect-8.05/openssl-esp.c0000664000076400007640000001242413477413651020167 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include "openconnect-internal.h" #include #include #if OPENSSL_VERSION_NUMBER < 0x10100000L || defined(LIBRESSL_VERSION_NUMBER) #define EVP_CIPHER_CTX_free(c) do { \ EVP_CIPHER_CTX_cleanup(c); \ free(c); } while (0) #define HMAC_CTX_free(c) do { \ HMAC_CTX_cleanup(c); \ free(c); } while (0) static inline HMAC_CTX *HMAC_CTX_new(void) { HMAC_CTX *ret = malloc(sizeof(*ret)); if (ret) HMAC_CTX_init(ret); return ret; } #endif void destroy_esp_ciphers(struct esp *esp) { if (esp->cipher) { EVP_CIPHER_CTX_free(esp->cipher); esp->cipher = NULL; } if (esp->hmac) { HMAC_CTX_free(esp->hmac); esp->hmac = NULL; } } static int init_esp_cipher(struct openconnect_info *vpninfo, struct esp *esp, const EVP_MD *macalg, const EVP_CIPHER *encalg, int decrypt) { int ret; destroy_esp_ciphers(esp); #if OPENSSL_VERSION_NUMBER < 0x10100000L || defined(LIBRESSL_VERSION_NUMBER) esp->cipher = malloc(sizeof(*esp->cipher)); if (!esp->cipher) return -ENOMEM; EVP_CIPHER_CTX_init(esp->cipher); #else esp->cipher = EVP_CIPHER_CTX_new(); if (!esp->cipher) return -ENOMEM; #endif if (decrypt) ret = EVP_DecryptInit_ex(esp->cipher, encalg, NULL, esp->enc_key, NULL); else { ret = EVP_EncryptInit_ex(esp->cipher, encalg, NULL, esp->enc_key, esp->iv); } if (!ret) { vpn_progress(vpninfo, PRG_ERR, _("Failed to initialise ESP cipher:\n")); openconnect_report_ssl_errors(vpninfo); return -EIO; } EVP_CIPHER_CTX_set_padding(esp->cipher, 0); esp->hmac = HMAC_CTX_new(); if (!esp->hmac) { destroy_esp_ciphers(esp); return -ENOMEM; } if (!HMAC_Init_ex(esp->hmac, esp->hmac_key, EVP_MD_size(macalg), macalg, NULL)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to initialize ESP HMAC\n")); openconnect_report_ssl_errors(vpninfo); destroy_esp_ciphers(esp); } return 0; } int init_esp_ciphers(struct openconnect_info *vpninfo, struct esp *esp_out, struct esp *esp_in) { const EVP_CIPHER *encalg; const EVP_MD *macalg; int ret; switch (vpninfo->esp_enc) { case ENC_AES_128_CBC: encalg = EVP_aes_128_cbc(); break; case ENC_AES_256_CBC: encalg = EVP_aes_256_cbc(); break; default: return -EINVAL; } switch (vpninfo->esp_hmac) { case HMAC_MD5: macalg = EVP_md5(); break; case HMAC_SHA1: macalg = EVP_sha1(); break; case HMAC_SHA256: macalg = EVP_sha256(); break; default: return -EINVAL; } ret = init_esp_cipher(vpninfo, &vpninfo->esp_out, macalg, encalg, 0); if (ret) return ret; ret = init_esp_cipher(vpninfo, esp_in, macalg, encalg, 1); if (ret) { destroy_esp_ciphers(&vpninfo->esp_out); return ret; } return 0; } /* pkt->len shall be the *payload* length. Omitting the header and the 12-byte HMAC */ int decrypt_esp_packet(struct openconnect_info *vpninfo, struct esp *esp, struct pkt *pkt) { unsigned char hmac_buf[MAX_HMAC_SIZE]; unsigned int hmac_len = sizeof(hmac_buf); int crypt_len = pkt->len; HMAC_Init_ex(esp->hmac, NULL, 0, NULL, NULL); HMAC_Update(esp->hmac, (void *)&pkt->esp, sizeof(pkt->esp) + pkt->len); HMAC_Final(esp->hmac, hmac_buf, &hmac_len); if (memcmp(hmac_buf, pkt->data + pkt->len, vpninfo->hmac_out_len)) { vpn_progress(vpninfo, PRG_DEBUG, _("Received ESP packet with invalid HMAC\n")); return -EINVAL; } if (verify_packet_seqno(vpninfo, esp, ntohl(pkt->esp.seq))) return -EINVAL; if (!EVP_DecryptInit_ex(esp->cipher, NULL, NULL, NULL, pkt->esp.iv)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to set up decryption context for ESP packet:\n")); openconnect_report_ssl_errors(vpninfo); return -EINVAL; } if (!EVP_DecryptUpdate(esp->cipher, pkt->data, &crypt_len, pkt->data, pkt->len)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to decrypt ESP packet:\n")); openconnect_report_ssl_errors(vpninfo); return -EINVAL; } return 0; } int encrypt_esp_packet(struct openconnect_info *vpninfo, struct pkt *pkt, int crypt_len) { int blksize = 16; unsigned int hmac_len = vpninfo->hmac_out_len; if (!EVP_EncryptUpdate(vpninfo->esp_out.cipher, pkt->data, &crypt_len, pkt->data, crypt_len)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to encrypt ESP packet:\n")); openconnect_report_ssl_errors(vpninfo); return -EINVAL; } HMAC_Init_ex(vpninfo->esp_out.hmac, NULL, 0, NULL, NULL); HMAC_Update(vpninfo->esp_out.hmac, (void *)&pkt->esp, sizeof(pkt->esp) + crypt_len); HMAC_Final(vpninfo->esp_out.hmac, pkt->data + crypt_len, &hmac_len); EVP_EncryptUpdate(vpninfo->esp_out.cipher, vpninfo->esp_out.iv, &blksize, pkt->data + crypt_len + hmac_len - blksize, blksize); return 0; } openconnect-8.05/Makefile.am0000664000076400007640000002216713477413651017614 0ustar00dwoodhoudwoodhou00000000000000 SUBDIRS = tests # We kind of want openconnect to be built before we try to test it check-recursive: openconnect$(EXEEXT) # And even *building* some of tests/*.c needs libopenconnect install-recursive: libopenconnect.la all-recursive: libopenconnect.la if BUILD_WWW SUBDIRS += www endif if USE_NLS SUBDIRS += po endif lib_LTLIBRARIES = libopenconnect.la sbin_PROGRAMS = openconnect man8_MANS = openconnect.8 AM_CFLAGS = @WFLAGS@ AM_CPPFLAGS = -DLOCALEDIR="\"$(localedir)\"" openconnect_SOURCES = xml.c main.c openconnect_CFLAGS = $(AM_CFLAGS) $(SSL_CFLAGS) $(DTLS_SSL_CFLAGS) $(LIBXML2_CFLAGS) $(LIBPROXY_CFLAGS) $(ZLIB_CFLAGS) $(LIBSTOKEN_CFLAGS) $(LIBPSKC_CFLAGS) $(GSSAPI_CFLAGS) $(INTL_CFLAGS) $(ICONV_CFLAGS) $(LIBPCSCLITE_CFLAGS) openconnect_LDADD = libopenconnect.la $(SSL_LIBS) $(LIBXML2_LIBS) $(LIBPROXY_LIBS) $(INTL_LIBS) $(ICONV_LIBS) if OPENCONNECT_WIN32 openconnect_SOURCES += openconnect.rc endif library_srcs = ssl.c http.c http-auth.c auth-common.c library.c compat.c lzs.c mainloop.c script.c ntlm.c digest.c openconnect-internal.h lib_srcs_cisco = auth.c cstp.c lib_srcs_juniper = oncp.c lzo.c auth-juniper.c lib_srcs_pulse = pulse.c lib_srcs_globalprotect = gpst.c auth-globalprotect.c lib_srcs_oath = oath.c library_srcs += $(lib_srcs_juniper) $(lib_srcs_cisco) $(lib_srcs_oath) \ $(lib_srcs_globalprotect) $(lib_srcs_pulse) lib_srcs_gnutls = gnutls.c gnutls_tpm.c gnutls_tpm2.c lib_srcs_openssl = openssl.c openssl-pkcs11.c lib_srcs_win32 = tun-win32.c sspi.c lib_srcs_posix = tun.c lib_srcs_gssapi = gssapi.c lib_srcs_iconv = iconv.c lib_srcs_yubikey = yubikey.c lib_srcs_stoken = stoken.c lib_srcs_esp = esp.c esp-seqno.c lib_srcs_dtls = dtls.c POTFILES = $(openconnect_SOURCES) gnutls-esp.c gnutls-dtls.c openssl-esp.c openssl-dtls.c \ $(lib_srcs_esp) $(lib_srcs_dtls) gnutls_tpm2_esys.c gnutls_tpm2_ibm.c \ $(lib_srcs_openssl) $(lib_srcs_gnutls) $(library_srcs) \ $(lib_srcs_win32) $(lib_srcs_posix) $(lib_srcs_gssapi) $(lib_srcs_iconv) \ $(lib_srcs_yubikey) $(lib_srcs_stoken) if OPENCONNECT_LIBPCSCLITE library_srcs += $(lib_srcs_yubikey) endif if OPENCONNECT_STOKEN library_srcs += $(lib_srcs_stoken) endif if OPENCONNECT_GSSAPI library_srcs += $(lib_srcs_gssapi) endif if OPENCONNECT_GNUTLS library_srcs += $(lib_srcs_gnutls) lib_srcs_esp += gnutls-esp.c lib_srcs_dtls += gnutls-dtls.c endif if OPENCONNECT_TSS2_ESYS library_srcs += gnutls_tpm2_esys.c endif if OPENCONNECT_TSS2_IBM library_srcs += gnutls_tpm2_ibm.c endif if OPENCONNECT_OPENSSL library_srcs += $(lib_srcs_openssl) lib_srcs_esp += openssl-esp.c lib_srcs_dtls += openssl-dtls.c endif if OPENCONNECT_DTLS lib_srcs_cisco += $(lib_srcs_dtls) endif if OPENCONNECT_ESP lib_srcs_juniper += $(lib_srcs_esp) endif if OPENCONNECT_ICONV library_srcs += $(lib_srcs_iconv) endif if OPENCONNECT_WIN32 library_srcs += $(lib_srcs_win32) .rc.o: $(WINDRES) $^ -o $@ %.o : %.rc $(WINDRES) $^ -o $@ else library_srcs += $(lib_srcs_posix) endif libopenconnect_la_SOURCES = version.c $(library_srcs) libopenconnect_la_CFLAGS = $(AM_CFLAGS) $(SSL_CFLAGS) $(DTLS_SSL_CFLAGS) $(LIBXML2_CFLAGS) $(LIBPROXY_CFLAGS) $(ZLIB_CFLAGS) $(P11KIT_CFLAGS) $(TSS_CFLAGS) $(LIBSTOKEN_CFLAGS) $(LIBPSKC_CFLAGS) $(GSSAPI_CFLAGS) $(INTL_CFLAGS) $(ICONV_CFLAGS) $(LIBPCSCLITE_CFLAGS) $(LIBP11_CFLAGS) $(LIBLZ4_CFLAGS) libopenconnect_la_LIBADD = $(SSL_LIBS) $(DTLS_SSL_LIBS) $(LIBXML2_LIBS) $(LIBPROXY_LIBS) $(ZLIB_LIBS) $(P11KIT_LIBS) $(TSS_LIBS) $(LIBSTOKEN_LIBS) $(LIBPSKC_LIBS) $(GSSAPI_LIBS) $(INTL_LIBS) $(ICONV_LIBS) $(LIBPCSCLITE_LIBS) $(LIBP11_LIBS) $(LIBLZ4_LIBS) if OPENBSD_LIBTOOL # OpenBSD's libtool doesn't have -version-number, but its -version-info arg # does what GNU libtool's -version-number does. Which arguably is what the # GNU -version-info arg ought to do too. I hate libtool. LT_VER_ARG = -version-info else LT_VER_ARG = -version-number endif libopenconnect_la_LDFLAGS = $(LT_VER_ARG) @APIMAJOR@:@APIMINOR@ -no-undefined noinst_HEADERS = openconnect-internal.h openconnect.h gnutls.h lzo.h include_HEADERS = openconnect.h if HAVE_VSCRIPT libopenconnect_la_LDFLAGS += @VSCRIPT_LDFLAGS@,libopenconnect.map libopenconnect_la_DEPENDENCIES = libopenconnect.map endif if OPENCONNECT_JNI if JNI_STANDALONE libopenconnect_la_SOURCES += jni.c libopenconnect_la_CFLAGS += $(JNI_CFLAGS) -Wno-missing-declarations else lib_LTLIBRARIES += libopenconnect-wrapper.la libopenconnect_wrapper_la_SOURCES = jni.c libopenconnect_wrapper_la_CFLAGS = $(AM_CFLAGS) $(JNI_CFLAGS) -Wno-missing-declarations libopenconnect_wrapper_la_LIBADD = libopenconnect.la endif endif pkgconfig_DATA = openconnect.pc EXTRA_DIST = AUTHORS version.sh README.TESTS COPYING.LGPL $(lib_srcs_openssl) $(lib_srcs_gnutls) EXTRA_DIST += $(shell cd "$(top_srcdir)" && \ git ls-tree HEAD -r --name-only -- android/ java/ trojans/ 2>/dev/null) DISTCLEANFILES = $(pkgconfig_DATA) pkglibexec_SCRIPTS = trojans/csd-post.sh trojans/csd-wrapper.sh trojans/tncc-wrapper.py \ trojans/hipreport.sh trojans/hipreport-android.sh # main.c includes version.c openconnect-main.$(OBJEXT): version.c version.c: $(library_srcs) $(lib_openssl_srcs) $(lib_gnutls_srcs) \ $(openconnect_SOURCES) Makefile.am configure.ac \ openconnect.h openconnect-internal.h version.sh @GITVERSIONDEPS@ @cd $(srcdir) && ./version.sh $(abs_builddir)/version.c AUTHORS: @GITVERSIONDEPS@ @git shortlog -sen > AUTHORS tmp-dist: uncommitted-check $(MAKE) $(AM_MAKEFLAGS) VERSION=$(patsubst v%,%,$(shell git describe --tags)) DISTHOOK=0 dist tmp-distdir: uncommitted-check $(MAKE) $(AM_MAKEFLAGS) VERSION=$(patsubst v%,%,$(shell git describe --tags)) DISTHOOK=0 distdir uncommitted-check: @if ! git update-index --refresh --unmerged || \ ! git diff-index --name-only --exit-code HEAD; then \ echo "*** ERROR: Uncommitted changes in above files"; exit 1; fi DISTHOOK=1 dist-hook: uncommitted-check @if [ $(DISTHOOK) = 1 ]; then \ if ! git rev-parse --verify v$(VERSION) &> /dev/null; then \ echo "*** ERROR: Version v$(VERSION) is not tagged"; exit 1; fi ; \ if ! git diff --name-only --exit-code v$(VERSION) HEAD > /dev/null; then \ echo "*** ERROR: Git checkout not at version v$(VERSION)"; exit 1; fi ; \ fi sign-dist: dist @for a in $(DIST_ARCHIVES); do \ gpg --default-key 67E2F359 --detach-sign -a $$a ; \ done tag: uncommitted-check @if git rev-parse --verify v$(VERSION) &> /dev/null; then \ echo "*** ERROR: Version v$(VERSION) is already tagged"; exit 1; fi @sed 's/AC_INIT.*/AC_INIT(openconnect, $(VERSION))/' -i $(srcdir)/configure.ac @sed 's/^v=.*/v="v$(VERSION)"/' -i $(srcdir)/version.sh @( echo '1,//p' ;\ echo '//,$$p' ;\ echo '//a\' ;\ echo 'The latest release is OpenConnect v$(VERSION)\' ;\ echo '(PGP signature),\' ;\ echo 'released on $(shell date +%Y-%m-%d) with the following changelog:

\' ;\ sed '0,/OpenConnect HEAD/d;/<\/ul>/,$$d;s/$$/\\/' $(srcdir)/www/changelog.xml ;\ echo ' ' ) | \ sed -n -f - -i $(srcdir)/www/download.xml @( echo "s/Last modified: .*/Last modified: $(shell date)/" ;\ echo '/
  • OpenConnect HEAD/a\' ;\ echo '
      \' ;\ echo '
    • No changelog entries yet
      • \';\ echo '

    \' ; echo '
    • \' ;\ echo '
  • OpenConnect v$(VERSION)\' ;\ echo ' (PGP signature) — $(shell date +%Y-%m-%d)' ) | \ sed -f - -i $(srcdir)/www/changelog.xml @echo '/API version [0-9]\+\.[0-9]\+:$$/s/:/ (v$(VERSION); $(shell date +%Y-%m-%d)):/' | \ sed -f - -i $(srcdir)/openconnect.h # stupid syntax highlighting ' @cd $(srcdir) && git commit -s -m "Tag version $(VERSION)" configure.ac version.sh www/download.xml www/changelog.xml openconnect.h @git tag v$(VERSION) @cd $(srcdir) && ./autogen.sh update-po: po/$(PACKAGE).pot @cd $(top_srcdir); if ! git diff-index --name-only --exit-code HEAD -- po/; then \ echo "*** ERROR: Uncommitted changes in above files"; exit 1; \ else \ > po/LINGUAS; \ for a in po/*.po; do \ msgmerge -q -N -F $$a $(abs_builddir)/po/$(PACKAGE).pot > $$a.merge ; \ msgattrib -F --no-fuzzy --no-obsolete $$a.merge > $$a ; \ rm $$a.merge ; \ if msgattrib --translated $$a | grep -q msgstr; then \ echo $$a | sed 's%^po/\(.*\)\.po%\1%' >> po/LINGUAS ; \ fi ; \ done && \ if ! git update-index -q --refresh --unmerged || \ ! git diff-index --name-only --exit-code HEAD -- po/ >/dev/null; then \ git commit -s -m "Resync translations with sources" -- po/ ; \ else \ echo No changes to commit ; \ fi; \ fi po/$(PACKAGE).pot: $(POTFILES) version.sh @echo "Regenerating $@" ; rm -f $@ && \ xgettext --directory=$(top_srcdir) --from-code=UTF-8 \ --sort-by-file --add-comments --keyword=_ --keyword=N_ \ --package-name="@PACKAGE@" --package-version="@VERSION@" \ --msgid-bugs-address=openconnect-devel@lists.infradead.org \ -o $@ $(POTFILES) ACLOCAL_AMFLAGS = -I m4 openconnect-8.05/ChangeLog0000664000076400007640000000117612424411476017321 0ustar00dwoodhoudwoodhou000000000000002014-10-30 gettextize * m4/gettext.m4: New file, from gettext-0.19.2. * m4/nls.m4: New file, from gettext-0.19.2. * m4/po.m4: New file, from gettext-0.19.2. * m4/progtest.m4: New file, from gettext-0.19.2. * Makefile.am (ACLOCAL_AMFLAGS): New variable. * configure.ac (AC_CONFIG_FILES): Add po/Makefile.in. 2011-10-31 gettextize * Makefile.am (EXTRA_DIST): Add config.rpath. * configure.ac (AC_OUTPUT): Add po/Makefile.in. 2011-10-31 gettextize * Makefile.am (ACLOCAL_AMFLAGS): New variable. (EXTRA_DIST): Add config.rpath, m4/ChangeLog. openconnect-8.05/config.h.in0000664000076400007640000001105213536301674017567 0ustar00dwoodhoudwoodhou00000000000000/* config.h.in. Generated from configure.ac by autoheader. */ /* p11-kit proxy */ #undef DEFAULT_PKCS11_MODULE /* The GnuTLS priority string */ #undef DEFAULT_PRIO /* Default vpnc-script locatin */ #undef DEFAULT_VPNCSCRIPT /* Enable NLS support */ #undef ENABLE_NLS /* endian header include path */ #undef ENDIAN_HDR /* GSSAPI header */ #undef GSSAPI_HDR /* Have alloca.h */ #undef HAVE_ALLOCA_H /* Have asprintf() function */ #undef HAVE_ASPRINTF /* OpenSSL has BIO_meth_free() function */ #undef HAVE_BIO_METH_FREE /* Define to 1 if you have the header file. */ #undef HAVE_DLFCN_H /* Build with DTLS support */ #undef HAVE_DTLS /* OpenSSL has DTLS_client_method() function */ #undef HAVE_DTLS12 /* OpenSSL has dtls1_stop_timer() function */ #undef HAVE_DTLS1_STOP_TIMER /* OpenSSL has ENGINE support */ #undef HAVE_ENGINE /* Build with ESP support */ #undef HAVE_ESP /* Have explicit_bzero() function */ #undef HAVE_EXPLICIT_BZERO /* Have explicit_memset() function */ #undef HAVE_EXPLICIT_MEMSET /* Have fdevname_r() function */ #undef HAVE_FDEVNAME_R /* Have getline() function */ #undef HAVE_GETLINE /* From GnuTLS 3.4.0 */ #undef HAVE_GNUTLS_SYSTEM_KEYS /* Have GSSAPI support */ #undef HAVE_GSSAPI /* Have iconv() function */ #undef HAVE_ICONV /* Have inet_aton() */ #undef HAVE_INET_ATON /* Define to 1 if you have the header file. */ #undef HAVE_INTTYPES_H /* Have IPV6_PATHMTU socket option */ #undef HAVE_IPV6_PATHMTU /* Define to 1 if you have the `log' library (-llog). */ #undef HAVE_LIBLOG /* Define to 1 if you have the `nsl' library (-lnsl). */ #undef HAVE_LIBNSL /* Have libp11 and p11-kit for OpenSSL */ #undef HAVE_LIBP11 /* Have libpcsclite */ #undef HAVE_LIBPCSCLITE /* Have libpskc */ #undef HAVE_LIBPSKC /* Define to 1 if you have the `socket' library (-lsocket). */ #undef HAVE_LIBSOCKET /* Have libstoken */ #undef HAVE_LIBSTOKEN /* LZ4 was found */ #undef HAVE_LZ4 /* From LZ4 r129 */ #undef HAVE_LZ4_COMPRESS_DEFAULT /* Define to 1 if you have the header file. */ #undef HAVE_MEMORY_H /* Have memset_s() function */ #undef HAVE_MEMSET_S /* Have net/if_utun.h */ #undef HAVE_NET_UTUN_H /* Have nl_langinfo() function */ #undef HAVE_NL_LANGINFO /* Have. P11. Kit. */ #undef HAVE_P11KIT /* OpenSSL has SSL_CTX_set_min_proto_version() function */ #undef HAVE_SSL_CTX_PROTOVER /* Have statfs() function */ #undef HAVE_STATFS /* Define to 1 if you have the header file. */ #undef HAVE_STDINT_H /* Define to 1 if you have the header file. */ #undef HAVE_STDLIB_H /* Have strcasestr() function */ #undef HAVE_STRCASESTR /* Define to 1 if you have the header file. */ #undef HAVE_STRINGS_H /* Define to 1 if you have the header file. */ #undef HAVE_STRING_H /* Have strndup() function */ #undef HAVE_STRNDUP /* On SunOS time() can go backwards */ #undef HAVE_SUNOS_BROKEN_TIME /* Define to 1 if you have the header file. */ #undef HAVE_SYS_STAT_H /* Define to 1 if you have the header file. */ #undef HAVE_SYS_TYPES_H /* Have Trousers TSS library */ #undef HAVE_TROUSERS /* TSS2 library */ #undef HAVE_TSS2 /* Define to 1 if you have the header file. */ #undef HAVE_UNISTD_H /* Have vasprintf() function */ #undef HAVE_VASPRINTF /* Have va_copy() */ #undef HAVE_VA_COPY /* Have __va_copy() */ #undef HAVE___VA_COPY /* Define as const if the declaration of iconv() needs const. */ #undef ICONV_CONST /* if_tun.h include path */ #undef IF_TUN_HDR /* libproxy header file */ #undef LIBPROXY_HDR /* Define to the sub-directory where libtool stores uninstalled libraries. */ #undef LT_OBJDIR /* Using GnuTLS */ #undef OPENCONNECT_GNUTLS /* Using OpenSSL */ #undef OPENCONNECT_OPENSSL /* Name of package */ #undef PACKAGE /* Define to the address where bug reports for this package should be sent. */ #undef PACKAGE_BUGREPORT /* Define to the full name of this package. */ #undef PACKAGE_NAME /* Define to the full name and version of this package. */ #undef PACKAGE_STRING /* Define to the one symbol short name of this package. */ #undef PACKAGE_TARNAME /* Define to the home page for this package. */ #undef PACKAGE_URL /* Define to the version of this package. */ #undef PACKAGE_VERSION /* Define to 1 if you have the ANSI C header files. */ #undef STDC_HEADERS /* Version number of package */ #undef VERSION /* _GNU_SOURCE */ #undef _GNU_SOURCE /* _NETBSD_SOURCE */ #undef _NETBSD_SOURCE /* _POSIX_C_SOURCE */ #undef _POSIX_C_SOURCE /* Windows API version */ #undef _WIN32_WINNT /* To request memset_s */ #undef __STDC_WANT_LIB_EXT1__ openconnect-8.05/oncp.c0000664000076400007640000011314413521074144016645 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ /* * Grateful thanks to Tiebing Zhang, who did much of the hard work * of analysing and decoding the protocol. */ #include #include #include #include #include #include #include #include #include #include #include #include #include "openconnect-internal.h" static int parse_cookie(struct openconnect_info *vpninfo) { char *p = vpninfo->cookie; /* We currenly expect the "cookie" to be contain multiple cookies: * DSSignInUrl=/; DSID=xxx; DSFirstAccess=xxx; DSLastAccess=xxx * Process those into vpninfo->cookies unless we already had them * (in which case they'll may be newer. */ while (p && *p) { char *semicolon = strchr(p, ';'); char *equals; if (semicolon) *semicolon = 0; equals = strchr(p, '='); if (!equals) { vpn_progress(vpninfo, PRG_ERR, _("Invalid cookie '%s'\n"), p); return -EINVAL; } *equals = 0; http_add_cookie(vpninfo, p, equals+1, 0); *equals = '='; p = semicolon; if (p) { *p = ';'; p++; while (*p && isspace((int)(unsigned char)*p)) p++; } } return 0; } static void buf_append_be16(struct oc_text_buf *buf, uint16_t val) { unsigned char b[2]; store_be16(b, val); buf_append_bytes(buf, b, 2); } static void buf_append_le16(struct oc_text_buf *buf, uint16_t val) { unsigned char b[2]; store_le16(b, val); buf_append_bytes(buf, b, 2); } static void buf_append_tlv(struct oc_text_buf *buf, uint16_t val, uint32_t len, void *data) { unsigned char b[6]; store_be16(b, val); store_be32(b + 2, len); buf_append_bytes(buf, b, 6); if (len) buf_append_bytes(buf, data, len); } static void buf_append_tlv_be32(struct oc_text_buf *buf, uint16_t val, uint32_t data) { unsigned char d[4]; store_be32(d, data); buf_append_tlv(buf, val, 4, d); } static const char authpkt_head[] = { 0x00, 0x04, 0x00, 0x00, 0x00 }; static const char authpkt_tail[] = { 0xbb, 0x01, 0x00, 0x00, 0x00, 0x00 }; #define GRP_ATTR(g, a) (((g) << 16) | (a)) /* We behave like CSTP — create a linked list in vpninfo->cstp_options * with the strings containing the information we got from the server, * and oc_ip_info contains const copies of those pointers. */ static const char *add_option(struct openconnect_info *vpninfo, const char *opt, const char *val, int val_len) { struct oc_vpn_option *new = malloc(sizeof(*new)); if (!new) return NULL; new->option = strdup(opt); if (!new->option) { free(new); return NULL; } if (val_len >= 0) new->value = strndup(val, val_len); else new->value = strdup(val); if (!new->value) { free(new->option); free(new); return NULL; } new->next = vpninfo->cstp_options; vpninfo->cstp_options = new; return new->value; } static int process_attr(struct openconnect_info *vpninfo, int group, int attr, unsigned char *data, int attrlen) { char buf[80]; int i; switch(GRP_ATTR(group, attr)) { case GRP_ATTR(6, 2): if (attrlen != 4) { badlen: vpn_progress(vpninfo, PRG_ERR, _("Unexpected length %d for TLV %d/%d\n"), attrlen, group, attr); return -EINVAL; } vpninfo->ip_info.mtu = load_be32(data); vpn_progress(vpninfo, PRG_DEBUG, _("Received MTU %d from server\n"), vpninfo->ip_info.mtu); break; case GRP_ATTR(2, 1): if (attrlen != 4) goto badlen; snprintf(buf, sizeof(buf), "%d.%d.%d.%d", data[0], data[1], data[2], data[3]); vpn_progress(vpninfo, PRG_DEBUG, _("Received DNS server %s\n"), buf); for (i = 0; i < 3; i++) { if (!vpninfo->ip_info.dns[i]) { vpninfo->ip_info.dns[i] = add_option(vpninfo, "DNS", buf, -1); break; } } break; case GRP_ATTR(2, 2): vpn_progress(vpninfo, PRG_DEBUG, _("Received DNS search domain %.*s\n"), attrlen, (char *)data); vpninfo->ip_info.domain = add_option(vpninfo, "search", (char *)data, attrlen); if (vpninfo->ip_info.domain) { char *p = (char *)vpninfo->ip_info.domain; while ((p = strchr(p, ','))) *p = ' '; } break; case GRP_ATTR(1, 1): if (attrlen != 4) goto badlen; snprintf(buf, sizeof(buf), "%d.%d.%d.%d", data[0], data[1], data[2], data[3]); vpn_progress(vpninfo, PRG_DEBUG, _("Received internal IP address %s\n"), buf); vpninfo->ip_info.addr = add_option(vpninfo, "ipaddr", buf, -1); break; case GRP_ATTR(1, 2): if (attrlen != 4) goto badlen; snprintf(buf, sizeof(buf), "%d.%d.%d.%d", data[0], data[1], data[2], data[3]); vpn_progress(vpninfo, PRG_DEBUG, _("Received netmask %s\n"), buf); vpninfo->ip_info.netmask = add_option(vpninfo, "netmask", buf, -1); break; case GRP_ATTR(1, 3): if (attrlen != 4) goto badlen; snprintf(buf, sizeof(buf), "%d.%d.%d.%d", data[0], data[1], data[2], data[3]); vpn_progress(vpninfo, PRG_DEBUG, _("Received internal gateway address %s\n"), buf); /* Hm, what are we supposed to do with this? It's a tunnel; having a gateway is meaningless. */ add_option(vpninfo, "ipaddr", buf, -1); break; case GRP_ATTR(3, 3): { struct oc_split_include *inc; if (attrlen != 8) goto badlen; snprintf(buf, sizeof(buf), "%d.%d.%d.%d/%d.%d.%d.%d", data[0], data[1], data[2], data[3], data[4], data[5], data[6], data[7]); vpn_progress(vpninfo, PRG_DEBUG, _("Received split include route %s\n"), buf); if (!data[4] && !data[5] && !data[6] && !data[7]) break; inc = malloc(sizeof(*inc)); if (inc) { inc->route = add_option(vpninfo, "split-include", buf, -1); if (inc->route) { inc->next = vpninfo->ip_info.split_includes; vpninfo->ip_info.split_includes = inc; } else free(inc); } break; } case GRP_ATTR(3, 4): { struct oc_split_include *exc; if (attrlen != 8) goto badlen; snprintf(buf, sizeof(buf), "%d.%d.%d.%d/%d.%d.%d.%d", data[0], data[1], data[2], data[3], data[4], data[5], data[6], data[7]); vpn_progress(vpninfo, PRG_DEBUG, _("Received split exclude route %s\n"), buf); if (!data[4] && !data[5] && !data[6] && !data[7]) break; exc = malloc(sizeof(*exc)); if (exc) { exc->route = add_option(vpninfo, "split-exclude", buf, -1); if (exc->route) { exc->next = vpninfo->ip_info.split_excludes; vpninfo->ip_info.split_excludes = exc; } else free(exc); } break; } case GRP_ATTR(4, 1): if (attrlen != 4) goto badlen; snprintf(buf, sizeof(buf), "%d.%d.%d.%d", data[0], data[1], data[2], data[3]); vpn_progress(vpninfo, PRG_DEBUG, _("Received WINS server %s\n"), buf); for (i = 0; i < 3; i++) { if (!vpninfo->ip_info.nbns[i]) { vpninfo->ip_info.nbns[i] = add_option(vpninfo, "WINS", buf, -1); break; } } break; case GRP_ATTR(8, 1): { const char *enctype; if (attrlen != 1) goto badlen; if (data[0] == ENC_AES_128_CBC) { enctype = "AES-128"; vpninfo->enc_key_len = 16; } else if (data[0] == ENC_AES_256_CBC) { enctype = "AES-256"; vpninfo->enc_key_len = 32; } else enctype = "unknown"; vpn_progress(vpninfo, PRG_DEBUG, _("ESP encryption: 0x%02x (%s)\n"), data[0], enctype); vpninfo->esp_enc = data[0]; break; } case GRP_ATTR(8, 2): { const char *mactype; if (attrlen != 1) goto badlen; if (data[0] == HMAC_MD5) { mactype = "MD5"; vpninfo->hmac_key_len = 16; } else if (data[0] == HMAC_SHA1) { mactype = "SHA1"; vpninfo->hmac_key_len = 20; } else mactype = "unknown"; vpn_progress(vpninfo, PRG_DEBUG, _("ESP HMAC: 0x%02x (%s)\n"), data[0], mactype); vpninfo->esp_hmac = data[0]; break; } case GRP_ATTR(8, 3): if (attrlen != 1) goto badlen; vpninfo->esp_compr = data[0]; vpninfo->dtls_compr = data[0] ? COMPR_LZO : 0; vpn_progress(vpninfo, PRG_DEBUG, _("ESP compression: %d\n"), data[0]); break; case GRP_ATTR(8, 4): if (attrlen != 2) goto badlen; i = load_be16(data); udp_sockaddr(vpninfo, i); vpn_progress(vpninfo, PRG_DEBUG, _("ESP port: %d\n"), i); break; case GRP_ATTR(8, 5): if (attrlen != 4) goto badlen; vpninfo->esp_lifetime_bytes = load_be32(data); vpn_progress(vpninfo, PRG_DEBUG, _("ESP key lifetime: %u bytes\n"), vpninfo->esp_lifetime_bytes); break; case GRP_ATTR(8, 6): if (attrlen != 4) goto badlen; vpninfo->esp_lifetime_seconds = load_be32(data); vpn_progress(vpninfo, PRG_DEBUG, _("ESP key lifetime: %u seconds\n"), vpninfo->esp_lifetime_seconds); break; case GRP_ATTR(8, 9): if (attrlen != 4) goto badlen; vpninfo->esp_ssl_fallback = load_be32(data); vpn_progress(vpninfo, PRG_DEBUG, _("ESP to SSL fallback: %u seconds\n"), vpninfo->esp_ssl_fallback); break; case GRP_ATTR(8, 10): if (attrlen != 4) goto badlen; vpninfo->esp_replay_protect = load_be32(data); vpn_progress(vpninfo, PRG_DEBUG, _("ESP replay protection: %d\n"), load_be32(data)); break; case GRP_ATTR(7, 1): if (attrlen != 4) goto badlen; memcpy(&vpninfo->esp_out.spi, data, 4); vpn_progress(vpninfo, PRG_DEBUG, _("ESP SPI (outbound): %x\n"), load_be32(data)); break; case GRP_ATTR(7, 2): if (attrlen != 0x40) goto badlen; /* data contains enc_key and hmac_key concatenated */ memcpy(vpninfo->esp_out.enc_key, data, 0x40); vpn_progress(vpninfo, PRG_DEBUG, _("%d bytes of ESP secrets\n"), attrlen); break; default: buf[0] = 0; for (i=0; i < 16 && i < attrlen; i++) sprintf(buf + strlen(buf), " %02x", data[i]); if (attrlen > 16) sprintf(buf + strlen(buf), "..."); vpn_progress(vpninfo, PRG_DEBUG, _("Unknown TLV group %d attr %d len %d:%s\n"), group, attr, attrlen, buf); } return 0; } static void put_len16(struct oc_text_buf *buf, int where) { int len = buf->pos - where; store_be16(buf->data + where - 2, len); } static void put_len32(struct oc_text_buf *buf, int where) { int len = buf->pos - where; store_be32(buf->data + where - 4, len); } /* We don't know what these are so just hope they never change */ static const unsigned char kmp_head[] = { 0x00, 0x00, 0x00, 0x00, 0x00, 0x00 }; static const unsigned char kmp_tail[] = { 0x01, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00 }; static const unsigned char kmp_tail_out[] = { 0x01, 0x00, 0x00, 0x00, 0x01, 0x00, 0x00, 0x00, 0x00, 0x00 }; static const unsigned char data_hdr[] = { 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x01, 0x2c, 0x01, 0x00, 0x00, 0x00, 0x01, 0x00, 0x00, 0x00, 0x00, 0x00 }; #ifdef HAVE_ESP static const unsigned char esp_kmp_hdr[] = { 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x01, 0x2e, 0x01, 0x00, 0x00, 0x00, 0x01, 0x00, 0x00, 0x00, 0x00, 0x00, /* KMP header */ 0x00, 0x56, /* KMP length */ 0x00, 0x07, 0x00, 0x00, 0x00, 0x50, /* TLV group 7 */ 0x00, 0x01, 0x00, 0x00, 0x00, 0x04, /* Attr 1 (SPI) */ }; /* Followed by 4 bytes of SPI */ static const unsigned char esp_kmp_part2[] = { 0x00, 0x02, 0x00, 0x00, 0x00, 0x40, /* Attr 2 (secrets) */ }; /* And now 0x40 bytes of random secret for encryption and HMAC key */ #endif static const struct pkt esp_enable_pkt = { .next = NULL, { .oncp = { .rec = { 0x21, 0x00 }, .kmp = { 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x01, 0x2f, 0x01, 0x00, 0x00, 0x00, 0x01, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x0d } } }, .data = { 0x00, 0x06, 0x00, 0x00, 0x00, 0x07, /* Group 6, len 7 */ 0x00, 0x01, 0x00, 0x00, 0x00, 0x01, /* Attr 1, len 1 */ 0x01 }, .len = 13 }; static int queue_esp_control(struct openconnect_info *vpninfo, int enable) { struct pkt *new = malloc(sizeof(*new) + 13); if (!new) return -ENOMEM; memcpy(new, &esp_enable_pkt, sizeof(*new) + 13); new->data[12] = enable; queue_packet(&vpninfo->oncp_control_queue, new); return 0; } static int check_kmp_header(struct openconnect_info *vpninfo, unsigned char *bytes, int pktlen) { if (pktlen < 20 || memcmp(bytes, kmp_head, sizeof(kmp_head)) || memcmp(bytes + 8, kmp_tail, sizeof(kmp_tail))) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse KMP header\n")); return -EINVAL; } return load_be16(bytes + 6); } static int parse_conf_pkt(struct openconnect_info *vpninfo, unsigned char *bytes, int pktlen, int kmp) { int kmplen, kmpend, grouplen, groupend, group, attr, attrlen; int ofs = 0; int split_enc_hmac_keys = 0; kmplen = load_be16(bytes + ofs + 18); kmpend = ofs + kmplen; if (kmpend > pktlen) { eparse: vpn_progress(vpninfo, PRG_ERR, _("Failed to parse KMP message\n")); dump_buf_hex(vpninfo, PRG_ERR, '<', bytes, pktlen); return -EINVAL; } vpn_progress(vpninfo, PRG_DEBUG, _("Got KMP message %d of size %d\n"), kmp, kmplen); ofs += 0x14; while (ofs < kmpend) { if (ofs + 6 > kmpend) goto eparse; group = load_be16(bytes + ofs); grouplen = load_be32(bytes + ofs + 2); ofs += 6; groupend = ofs + grouplen; if (groupend > pktlen) goto eparse; if (kmp == 302 && group != 7 && group != 8) { vpn_progress(vpninfo, PRG_ERR, _("Received non-ESP TLVs (group %d) in ESP negotiation KMP\n"), group); return -EINVAL; } while (ofs < groupend) { if (ofs + 6 > groupend) goto eparse; attr = load_be16(bytes + ofs); attrlen = load_be32(bytes + ofs + 2); ofs += 6; if (attrlen + ofs > groupend) goto eparse; if (process_attr(vpninfo, group, attr, bytes + ofs, attrlen)) goto eparse; if (GRP_ATTR(group, attr)==GRP_ATTR(7, 2)) split_enc_hmac_keys = 1; ofs += attrlen; } } /* The encryption and HMAC keys are sent concatenated together in a block of 0x40 bytes; we can't split them apart until we know how long the encryption key is. */ if (split_enc_hmac_keys) memcpy(vpninfo->esp_out.hmac_key, vpninfo->esp_out.enc_key + vpninfo->enc_key_len, vpninfo->hmac_key_len); return 0; } int oncp_connect(struct openconnect_info *vpninfo) { int ret, len, kmp, kmplen, group, check_len; struct oc_text_buf *reqbuf; unsigned char bytes[65536]; /* XXX: We should do what cstp_connect() does to check that configuration hasn't changed on a reconnect. */ if (!vpninfo->cookies) { ret = parse_cookie(vpninfo); if (ret) return ret; } ret = openconnect_open_https(vpninfo); if (ret) return ret; reqbuf = buf_alloc(); buf_append(reqbuf, "POST /dana/js?prot=1&svc=4 HTTP/1.1\r\n"); /* The TLS socket actually remains open for use by the oNCP tunnel, but the "Connection: close" header is nevertheless required here. It appears to signal to the server to stop treating this as an HTTP connection and to start treating it as an oNCP connection. */ buf_append(reqbuf, "Connection: close\r\n"); oncp_common_headers(vpninfo, reqbuf); buf_append(reqbuf, "Content-Length: 256\r\n"); buf_append(reqbuf, "\r\n"); if (buf_error(reqbuf)) { vpn_progress(vpninfo, PRG_ERR, _("Error creating oNCP negotiation request\n")); ret = buf_error(reqbuf); goto out; } ret = vpninfo->ssl_write(vpninfo, reqbuf->data, reqbuf->pos); if (ret < 0) goto out; ret = process_http_response(vpninfo, 1, NULL, reqbuf); if (ret < 0) goto out; if (ret != 200) { vpn_progress(vpninfo, PRG_ERR, _("Unexpected %d result from server\n"), ret); ret = -EINVAL; goto out; } /* This is probably some kind of vestigial authentication packet, although * it's mostly obsolete now that the authentication is really done over * HTTP. We only send the hostname. */ buf_truncate(reqbuf); buf_append_le16(reqbuf, sizeof(authpkt_head) + 2 + strlen(vpninfo->localname) + sizeof(authpkt_tail)); buf_append_bytes(reqbuf, authpkt_head, sizeof(authpkt_head)); buf_append_le16(reqbuf, strlen(vpninfo->localname)); buf_append(reqbuf, "%s", vpninfo->localname); buf_append_bytes(reqbuf, authpkt_tail, sizeof(authpkt_tail)); if (buf_error(reqbuf)) { vpn_progress(vpninfo, PRG_ERR, _("Error creating oNCP negotiation request\n")); ret = buf_error(reqbuf); goto out; } dump_buf_hex(vpninfo, PRG_DEBUG, '>', (void *)reqbuf->data, reqbuf->pos); ret = vpninfo->ssl_write(vpninfo, reqbuf->data, reqbuf->pos); if (ret != reqbuf->pos) { if (ret >= 0) { vpn_progress(vpninfo, PRG_ERR, _("Short write in oNCP negotiation\n")); ret = -EIO; } goto out; } /* Now we expect a three-byte response with what's presumably an error code */ ret = vpninfo->ssl_read(vpninfo, (void *)bytes, 3); check_len = load_le16(bytes); if (ret < 0) goto out; vpn_progress(vpninfo, PRG_TRACE, _("Read %d bytes of SSL record\n"), ret); dump_buf_hex(vpninfo, PRG_TRACE, '<', (void *)bytes, ret); if (ret != 3 || check_len < 1) { vpn_progress(vpninfo, PRG_ERR, _("Unexpected response of size %d after hostname packet\n"), ret); ret = -EINVAL; goto out; } if (bytes[2]) { vpn_progress(vpninfo, PRG_ERR, _("Server response to hostname packet is error 0x%02x\n"), bytes[2]); ret = -EINVAL; goto out; } /* And then a KMP message 301 with the IP configuration. * Sometimes this arrives as a separate SSL record (with its own * 2-byte length prefix), and sometimes concatenated with the * previous 3-byte response). */ if (check_len == 1) { len = vpninfo->ssl_read(vpninfo, (void *)bytes, sizeof(bytes)); check_len = load_le16(bytes); } else { len = vpninfo->ssl_read(vpninfo, (void *)(bytes+2), sizeof(bytes)-2) + 2; check_len--; } if (len < 0) { ret = len; goto out; } vpn_progress(vpninfo, PRG_TRACE, _("Read %d bytes of SSL record\n"), len); if (len < 0x16 || check_len + 2 != len) { vpn_progress(vpninfo, PRG_ERR, _("Invalid packet waiting for KMP 301\n")); dump_buf_hex(vpninfo, PRG_ERR, '<', bytes, len); ret = -EINVAL; goto out; } ret = check_kmp_header(vpninfo, bytes + 2, len); if (ret < 0) goto out; /* We expect KMP message 301 here */ if (ret != 301) { vpn_progress(vpninfo, PRG_ERR, _("Expected KMP message 301 from server but got %d\n"), ret); ret = -EINVAL; goto out; } kmplen = load_be16(bytes + 20); if (kmplen + 2 >= sizeof(bytes)) { vpn_progress(vpninfo, PRG_ERR, _("KMP message 301 from server too large (%d bytes)\n"), kmplen); ret = -EINVAL; goto out; } vpn_progress(vpninfo, PRG_TRACE, _("Got KMP message 301 of length %d\n"), kmplen); while (kmplen + 22 > len) { char l[2]; int thislen; if (vpninfo->ssl_read(vpninfo, (void *)l, 2) != 2) { vpn_progress(vpninfo, PRG_ERR, _("Failed to read continuation record length\n")); ret = -EINVAL; goto out; } if (load_le16(l) + len > kmplen + 22) { vpn_progress(vpninfo, PRG_ERR, _("Record of additional %d bytes too large; would make %d\n"), load_le16(l), len + load_le16(l)); ret = -EINVAL; goto out; } thislen = vpninfo->ssl_read(vpninfo, (void *)(bytes + len), load_le16(l)); if (thislen != load_le16(l)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to read continuation record of length %d\n"), load_le16(l)); ret = -EINVAL; goto out; } vpn_progress(vpninfo, PRG_TRACE, _("Read additional %d bytes of KMP 301 message\n"), thislen); len += thislen; } ret = parse_conf_pkt(vpninfo, bytes + 2, len - 2, ret); if (ret) goto out; buf_truncate(reqbuf); buf_append_le16(reqbuf, 0); /* Length. We'll fix it later. */ buf_append_bytes(reqbuf, kmp_head, sizeof(kmp_head)); buf_append_be16(reqbuf, 303); /* KMP message 303 */ buf_append_bytes(reqbuf, kmp_tail_out, sizeof(kmp_tail_out)); buf_append_be16(reqbuf, 0); /* KMP message length */ kmp = reqbuf->pos; buf_append_tlv(reqbuf, 6, 0, NULL); /* TLV group 6 */ group = reqbuf->pos; buf_append_tlv_be32(reqbuf, 2, vpninfo->ip_info.mtu); if (buf_error(reqbuf)) { vpn_progress(vpninfo, PRG_ERR, _("Error creating oNCP negotiation request\n")); ret = buf_error(reqbuf); goto out; } put_len32(reqbuf, group); put_len16(reqbuf, kmp); #ifdef HAVE_ESP if (!openconnect_setup_esp_keys(vpninfo, 1)) { struct esp *esp = &vpninfo->esp_in[vpninfo->current_esp_in]; /* Since we'll want to do this in the oncp_mainloop too, where it's easier * *not* to have an oc_text_buf and build it up manually, and since it's * all fixed size and fairly simple anyway, just hard-code the packet */ buf_append_bytes(reqbuf, esp_kmp_hdr, sizeof(esp_kmp_hdr)); buf_append_bytes(reqbuf, &esp->spi, sizeof(esp->spi)); buf_append_bytes(reqbuf, esp_kmp_part2, sizeof(esp_kmp_part2)); buf_append_bytes(reqbuf, &esp->enc_key, vpninfo->enc_key_len); buf_append_bytes(reqbuf, &esp->hmac_key, 0x40 - vpninfo->enc_key_len); if (buf_error(reqbuf)) { vpn_progress(vpninfo, PRG_ERR, _("Error negotiating ESP keys\n")); ret = buf_error(reqbuf); goto out; } } #endif /* Length at the start of the packet is little-endian */ store_le16(reqbuf->data, reqbuf->pos - 2); vpn_progress(vpninfo, PRG_DEBUG, _("oNCP negotiation request outgoing:\n")); dump_buf_hex(vpninfo, PRG_DEBUG, '>', (void *)reqbuf->data, reqbuf->pos); ret = vpninfo->ssl_write(vpninfo, reqbuf->data, reqbuf->pos); if (ret == reqbuf->pos) ret = 0; else if (ret >= 0) { vpn_progress(vpninfo, PRG_ERR, _("Short write in oNCP negotiation\n")); ret = -EIO; } out: if (ret) openconnect_close_https(vpninfo, 0); else { monitor_fd_new(vpninfo, ssl); monitor_read_fd(vpninfo, ssl); monitor_except_fd(vpninfo, ssl); } buf_free(reqbuf); vpninfo->oncp_rec_size = 0; free(vpninfo->cstp_pkt); vpninfo->cstp_pkt = NULL; return ret; } static int oncp_receive_espkeys(struct openconnect_info *vpninfo, int len) { #ifdef HAVE_ESP int ret; ret = parse_conf_pkt(vpninfo, vpninfo->cstp_pkt->oncp.kmp, len + 20, 301); if (!ret && !openconnect_setup_esp_keys(vpninfo, 1)) { struct esp *esp = &vpninfo->esp_in[vpninfo->current_esp_in]; unsigned char *p = vpninfo->cstp_pkt->oncp.kmp; memcpy(p, esp_kmp_hdr, sizeof(esp_kmp_hdr)); p += sizeof(esp_kmp_hdr); memcpy(p, &esp->spi, sizeof(esp->spi)); p += sizeof(esp->spi); memcpy(p, esp_kmp_part2, sizeof(esp_kmp_part2)); p += sizeof(esp_kmp_part2); memcpy(p, esp->enc_key, vpninfo->enc_key_len); memcpy(p+vpninfo->enc_key_len, esp->hmac_key, 0x40 - vpninfo->enc_key_len); p += 0x40; vpninfo->cstp_pkt->len = p - vpninfo->cstp_pkt->data; store_le16(vpninfo->cstp_pkt->oncp.rec, (p - vpninfo->cstp_pkt->oncp.kmp)); queue_packet(&vpninfo->oncp_control_queue, vpninfo->cstp_pkt); vpninfo->cstp_pkt = NULL; print_esp_keys(vpninfo, _("new incoming"), esp); print_esp_keys(vpninfo, _("new outgoing"), &vpninfo->esp_out); } return ret; #else vpn_progress(vpninfo, PRG_DEBUG, _("Ignoring ESP keys since ESP support not available in this build\n")); return 0; #endif } static int oncp_record_read(struct openconnect_info *vpninfo, void *buf, int len) { int ret; if (!vpninfo->oncp_rec_size) { unsigned char lenbuf[2]; ret = ssl_nonblock_read(vpninfo, lenbuf, 2); if (ret <= 0) return ret; if (ret == 1) { /* Surely at least *this* never happens? The two length bytes * of the oNCP record being split across multiple SSL records */ vpn_progress(vpninfo, PRG_ERR, _("Read only 1 byte of oNCP length field\n")); return -EIO; } vpninfo->oncp_rec_size = load_le16(lenbuf); if (!vpninfo->oncp_rec_size) { ret = ssl_nonblock_read(vpninfo, lenbuf, 1); if (ret == 1) { if (lenbuf[0] == 1) { vpn_progress(vpninfo, PRG_ERR, _("Server terminated connection (session expired)\n")); vpninfo->quit_reason = "VPN session expired"; } else { vpn_progress(vpninfo, PRG_ERR, _("Server terminated connection (reason: %d)\n"), lenbuf[0]); vpninfo->quit_reason = "Server terminated connection"; } } else { vpn_progress(vpninfo, PRG_ERR, _("Server sent zero-length oNCP record\n")); vpninfo->quit_reason = "Zero-length oNCP record"; } return -EIO; } } if (len > vpninfo->oncp_rec_size) len = vpninfo->oncp_rec_size; ret = ssl_nonblock_read(vpninfo, buf, len); if (ret > 0) vpninfo->oncp_rec_size -= ret; return ret; } int oncp_mainloop(struct openconnect_info *vpninfo, int *timeout, int readable) { int ret; int work_done = 0; if (vpninfo->ssl_fd == -1) goto do_reconnect; /* FIXME: The poll() handling here is fairly simplistic. Actually, if the SSL connection stalls it could return a WANT_WRITE error on _either_ of the SSL_read() or SSL_write() calls. In that case, we should probably remove POLLIN from the events we're looking for, and add POLLOUT. As it is, though, it'll just chew CPU time in that fairly unlikely situation, until the write backlog clears. */ while (readable) { int len, kmp, kmplen, iplen; /* Some servers send us packets that are larger than negitiated MTU. We reserve some estra space to handle that */ int receive_mtu = MAX(16384, vpninfo->ip_info.mtu); len = receive_mtu + vpninfo->pkt_trailer; if (!vpninfo->cstp_pkt) { vpninfo->cstp_pkt = malloc(sizeof(struct pkt) + len); if (!vpninfo->cstp_pkt) { vpn_progress(vpninfo, PRG_ERR, _("Allocation failed\n")); break; } vpninfo->cstp_pkt->len = 0; } /* * This protocol is horrid. There are encapsulations within * encapsulations within encapsulations. Some of them entirely * gratuitous. * * First there's the SSL records which are a natural part of * using TLS as a transport. They appear to make no use of the * packetisation which these provide. * * Then within the TLS data stream there are "records" preceded * by a 16-bit little-endian length. It's not clear what these * records represent; they appear to be entirely gratuitous and * just need to be discarded. A record boundary sometimes falls * right in the middle of a data packet; there's no apparent * logic to it. * * Then there are the KMP packets themselves, each of which has * a length field of its own. There can be multiple KMP packets * in each of the above-mention "records", and as noted there * even be *partial* KMP packets in each record. * * Finally, a KMP data packet may actually contain multiple IP * packets, which need to be split apart by using the length * field in the IP header. This is Legacy IP only, never IPv6 * for the Network Connect protocol. */ /* Until we pass it up the stack, we use cstp_pkt->len to show * the amount of data received *including* the KMP header. */ len = oncp_record_read(vpninfo, vpninfo->cstp_pkt->oncp.kmp + vpninfo->cstp_pkt->len, receive_mtu + 20 - vpninfo->cstp_pkt->len); if (!len) break; else if (len < 0) { if (vpninfo->quit_reason) return len; goto do_reconnect; } vpninfo->cstp_pkt->len += len; vpninfo->ssl_times.last_rx = time(NULL); if (vpninfo->cstp_pkt->len < 20) continue; next_kmp: /* Now we have a KMP header. It might already have been there */ kmp = load_be16(vpninfo->cstp_pkt->oncp.kmp + 6); kmplen = load_be16(vpninfo->cstp_pkt->oncp.kmp + 18); if (len == vpninfo->cstp_pkt->len) vpn_progress(vpninfo, PRG_DEBUG, _("Incoming KMP message %d of size %d (got %d)\n"), kmp, kmplen, vpninfo->cstp_pkt->len - 20); else vpn_progress(vpninfo, PRG_DEBUG, _("Continuing to process KMP message %d now size %d (got %d)\n"), kmp, kmplen, vpninfo->cstp_pkt->len - 20); switch (kmp) { case 300: next_ip: /* Need at least 6 bytes of payload to check the IP packet length */ if (vpninfo->cstp_pkt->len < 26) continue; switch(vpninfo->cstp_pkt->data[0] >> 4) { case 4: iplen = load_be16(vpninfo->cstp_pkt->data + 2); break; case 6: iplen = load_be16(vpninfo->cstp_pkt->data + 4) + 40; break; default: badiplen: vpn_progress(vpninfo, PRG_ERR, _("Unrecognised data packet\n")); goto unknown_pkt; } if (!iplen || iplen > receive_mtu || iplen > kmplen) goto badiplen; if (iplen > vpninfo->cstp_pkt->len - 20) continue; work_done = 1; vpn_progress(vpninfo, PRG_TRACE, _("Received uncompressed data packet of %d bytes\n"), iplen); /* If there's nothing after the IP packet, and it's the last (or * only) packet in this KMP300 so we don't need to keep the KMP * header either, then just queue it. */ if (iplen == kmplen && iplen == vpninfo->cstp_pkt->len - 20) { vpninfo->cstp_pkt->len = iplen; queue_packet(&vpninfo->incoming_queue, vpninfo->cstp_pkt); vpninfo->cstp_pkt = NULL; continue; } /* OK, we have a whole packet, and we have stuff after it */ queue_new_packet(&vpninfo->incoming_queue, vpninfo->cstp_pkt->data, iplen); kmplen -= iplen; if (kmplen) { /* Still data packets to come in this KMP300 */ store_be16(vpninfo->cstp_pkt->oncp.kmp + 18, kmplen); vpninfo->cstp_pkt->len -= iplen; if (vpninfo->cstp_pkt->len > 20) memmove(vpninfo->cstp_pkt->data, vpninfo->cstp_pkt->data + iplen, vpninfo->cstp_pkt->len - 20); goto next_ip; } /* We have depleted the KMP300, and there are more bytes from * the next KMP message in the buffer. Move it up and process it */ memmove(vpninfo->cstp_pkt->oncp.kmp, vpninfo->cstp_pkt->data + iplen, vpninfo->cstp_pkt->len - iplen - 20); vpninfo->cstp_pkt->len -= (iplen + 20); goto next_kmp; case 302: /* Should never happen; if it does we'll have to cope */ if (kmplen > receive_mtu) goto unknown_pkt; /* Probably never happens. We need it in its own record. * If I fix oncp_receive_espkeys() not to reuse cstp_pkt * we can stop doing this. */ if (vpninfo->cstp_pkt->len != kmplen + 20) goto unknown_pkt; ret = oncp_receive_espkeys(vpninfo, kmplen); work_done = 1; break; default: unknown_pkt: vpn_progress(vpninfo, PRG_ERR, _("Unknown KMP message %d of size %d:\n"), kmp, kmplen); dump_buf_hex(vpninfo, PRG_ERR, '<', vpninfo->cstp_pkt->oncp.kmp, vpninfo->cstp_pkt->len); if (kmplen + 20 != vpninfo->cstp_pkt->len) vpn_progress(vpninfo, PRG_DEBUG, _(".... + %d more bytes unreceived\n"), kmplen + 20 - vpninfo->cstp_pkt->len); vpninfo->quit_reason = "Unknown packet received"; return 1; } } /* If SSL_write() fails we are expected to try again. With exactly the same data, at exactly the same location. So we keep the packet we had before.... */ if (vpninfo->current_ssl_pkt) { handle_outgoing: vpninfo->ssl_times.last_tx = time(NULL); unmonitor_write_fd(vpninfo, ssl); vpn_progress(vpninfo, PRG_TRACE, _("Packet outgoing:\n")); dump_buf_hex(vpninfo, PRG_TRACE, '>', vpninfo->current_ssl_pkt->oncp.rec, vpninfo->current_ssl_pkt->len + 22); ret = ssl_nonblock_write(vpninfo, vpninfo->current_ssl_pkt->oncp.rec, vpninfo->current_ssl_pkt->len + 22); if (ret < 0) { do_reconnect: /* XXX: Do we have to do this or can we leave it open? * Perhaps we could even reconnect asynchronously while * the ESP is still running? */ #ifdef HAVE_ESP esp_shutdown(vpninfo); #endif ret = ssl_reconnect(vpninfo); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("Reconnect failed\n")); vpninfo->quit_reason = "oNCP reconnect failed"; return ret; } vpninfo->dtls_need_reconnect = 1; return 1; } else if (!ret) { #if 0 /* Not for Juniper yet */ /* -EAGAIN: ssl_nonblock_write() will have added the SSL fd to ->select_wfds if appropriate, so we can just return and wait. Unless it's been stalled for so long that DPD kicks in and we kill the connection. */ switch (ka_stalled_action(&vpninfo->ssl_times, timeout)) { case KA_DPD_DEAD: goto peer_dead; case KA_REKEY: goto do_rekey; case KA_NONE: return work_done; default: /* This should never happen */ ; } #else return work_done; #endif } if (ret != vpninfo->current_ssl_pkt->len + 22) { vpn_progress(vpninfo, PRG_ERR, _("SSL wrote too few bytes! Asked for %d, sent %d\n"), vpninfo->current_ssl_pkt->len + 22, ret); vpninfo->quit_reason = "Internal error"; return 1; } /* Don't free the 'special' packets */ if (vpninfo->current_ssl_pkt == vpninfo->deflate_pkt) { free(vpninfo->pending_deflated_pkt); vpninfo->pending_deflated_pkt = NULL; } else if (vpninfo->current_ssl_pkt == &esp_enable_pkt) { /* Only set the ESP state to connected and actually start sending packets on it once the enable message has been *sent* over the TCP channel. */ vpn_progress(vpninfo, PRG_TRACE, _("Sent ESP enable control packet\n")); vpninfo->dtls_state = DTLS_CONNECTED; work_done = 1; } else { free(vpninfo->current_ssl_pkt); } vpninfo->current_ssl_pkt = NULL; } #if 0 /* Not understood for Juniper yet */ if (vpninfo->owe_ssl_dpd_response) { vpninfo->owe_ssl_dpd_response = 0; vpninfo->current_ssl_pkt = (struct pkt *)&dpd_resp_pkt; goto handle_outgoing; } switch (keepalive_action(&vpninfo->ssl_times, timeout)) { case KA_REKEY: do_rekey: /* Not that this will ever happen; we don't even process the setting when we're asked for it. */ vpn_progress(vpninfo, PRG_INFO, _("CSTP rekey due\n")); if (vpninfo->ssl_times.rekey_method == REKEY_TUNNEL) goto do_reconnect; else if (vpninfo->ssl_times.rekey_method == REKEY_SSL) { ret = cstp_handshake(vpninfo, 0); if (ret) { /* if we failed rehandshake try establishing a new-tunnel instead of failing */ vpn_progress(vpninfo, PRG_ERR, _("Rehandshake failed; attempting new-tunnel\n")); goto do_reconnect; } goto do_dtls_reconnect; } break; case KA_DPD_DEAD: peer_dead: vpn_progress(vpninfo, PRG_ERR, _("CSTP Dead Peer Detection detected dead peer!\n")); do_reconnect: ret = cstp_reconnect(vpninfo); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("Reconnect failed\n")); vpninfo->quit_reason = "CSTP reconnect failed"; return ret; } do_dtls_reconnect: /* succeeded, let's rekey DTLS, if it is not rekeying * itself. */ if (vpninfo->dtls_state > DTLS_SLEEPING && vpninfo->dtls_times.rekey_method == REKEY_NONE) { vpninfo->dtls_need_reconnect = 1; } return 1; case KA_DPD: vpn_progress(vpninfo, PRG_DEBUG, _("Send CSTP DPD\n")); vpninfo->current_ssl_pkt = (struct pkt *)&dpd_pkt; goto handle_outgoing; case KA_KEEPALIVE: /* No need to send an explicit keepalive if we have real data to send */ if (vpninfo->dtls_state != DTLS_CONNECTED && vpninfo->outgoing_queue) break; vpn_progress(vpninfo, PRG_DEBUG, _("Send CSTP Keepalive\n")); vpninfo->current_ssl_pkt = (struct pkt *)&keepalive_pkt; goto handle_outgoing; case KA_NONE: ; } #endif /* Queue the ESP enable message. We will start sending packets * via ESP once the enable message has been *sent* over the * TCP channel. Assign it directly to current_ssl_pkt so that * we can use it in-place and match against it above. */ if (vpninfo->dtls_state == DTLS_CONNECTING) { vpninfo->current_ssl_pkt = (struct pkt *)&esp_enable_pkt; goto handle_outgoing; } vpninfo->current_ssl_pkt = dequeue_packet(&vpninfo->oncp_control_queue); if (vpninfo->current_ssl_pkt) goto handle_outgoing; /* Service outgoing packet queue, if no DTLS */ while (vpninfo->dtls_state != DTLS_CONNECTED && (vpninfo->current_ssl_pkt = dequeue_packet(&vpninfo->outgoing_queue))) { struct pkt *this = vpninfo->current_ssl_pkt; /* Little-endian overall record length */ store_le16(this->oncp.rec, (this->len + 20)); memcpy(this->oncp.kmp, data_hdr, 18); /* Big-endian length in KMP message header */ store_be16(this->oncp.kmp + 18, this->len); vpn_progress(vpninfo, PRG_TRACE, _("Sending uncompressed data packet of %d bytes\n"), this->len); goto handle_outgoing; } /* Work is not done if we just got rid of packets off the queue */ return work_done; } int oncp_bye(struct openconnect_info *vpninfo, const char *reason) { char *orig_path; char *res_buf=NULL; int ret; /* We need to close and reopen the HTTPS connection (to kill * the oncp tunnel) and submit a new HTTPS request to logout. */ openconnect_close_https(vpninfo, 0); orig_path = vpninfo->urlpath; vpninfo->urlpath = strdup("dana-na/auth/logout.cgi"); /* redirect segfaults without strdup */ ret = do_https_request(vpninfo, "GET", NULL, NULL, &res_buf, 0); free(vpninfo->urlpath); vpninfo->urlpath = orig_path; if (ret < 0) vpn_progress(vpninfo, PRG_ERR, _("Logout failed.\n")); else vpn_progress(vpninfo, PRG_INFO, _("Logout successful.\n")); free(res_buf); return ret; } #ifdef HAVE_ESP void oncp_esp_close(struct openconnect_info *vpninfo) { /* Tell server to stop sending on ESP channel */ queue_esp_control(vpninfo, 0); esp_close(vpninfo); } int oncp_esp_send_probes(struct openconnect_info *vpninfo) { struct pkt *pkt; int pktlen, seq; if (vpninfo->dtls_fd == -1) { int fd = udp_connect(vpninfo); if (fd < 0) return fd; /* We are not connected until we get an ESP packet back */ vpninfo->dtls_state = DTLS_SLEEPING; vpninfo->dtls_fd = fd; monitor_fd_new(vpninfo, dtls); monitor_read_fd(vpninfo, dtls); monitor_except_fd(vpninfo, dtls); } pkt = malloc(sizeof(*pkt) + 1 + vpninfo->pkt_trailer); if (!pkt) return -ENOMEM; for (seq=1; seq <= (vpninfo->dtls_state==DTLS_CONNECTED ? 1 : 2); seq++) { pkt->len = 1; pkt->data[0] = 0; pktlen = construct_esp_packet(vpninfo, pkt, vpninfo->dtls_addr->sa_family == AF_INET6 ? IPPROTO_IPV6 : IPPROTO_IPIP); if (pktlen >= 0) send(vpninfo->dtls_fd, (void *)&pkt->esp, pktlen, 0); } free(pkt); vpninfo->dtls_times.last_tx = time(&vpninfo->new_dtls_started); return 0; }; int oncp_esp_catch_probe(struct openconnect_info *vpninfo, struct pkt *pkt) { return (pkt->len == 1 && pkt->data[0] == 0); } #endif /* HAVE_ESP */ openconnect-8.05/main.c0000664000076400007640000016501313470043037016634 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * Copyright © 2008 Nick Andrew * Copyright © 2013 John Morrissey * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #ifdef HAVE_GETLINE /* Various BSD systems require this for getline() to be visible */ #define _WITH_GETLINE #endif #include #include #include #include #include #ifdef HAVE_STRINGS_H #include #endif #include #include #include #include #include #include #include #ifdef LIBPROXY_HDR #include LIBPROXY_HDR #endif #include "openconnect-internal.h" #ifdef _WIN32 #include #include #include #else #include #include #include #endif #ifdef HAVE_NL_LANGINFO #include static const char *legacy_charset; #endif static int write_new_config(void *_vpninfo, const char *buf, int buflen); static void __attribute__ ((format(printf, 3, 4))) write_progress(void *_vpninfo, int level, const char *fmt, ...); static int validate_peer_cert(void *_vpninfo, const char *reason); static int process_auth_form_cb(void *_vpninfo, struct oc_auth_form *form); static void init_token(struct openconnect_info *vpninfo, oc_token_mode_t token_mode, const char *token_str); /* A sanity check that the openconnect executable is running against a library of the same version */ #define openconnect_version_str openconnect_binary_version #include #undef openconnect_version_str static int verbose = PRG_INFO; static int timestamp; int background; static int do_passphrase_from_fsid; static int non_inter; static int cookieonly; static int allow_stdin_read; static char *token_filename; static char *server_cert = NULL; static char *username; static char *password; static char *authgroup; static int authgroup_set; static int last_form_empty; static int sig_cmd_fd; static void add_form_field(char *field); #ifdef __ANDROID__ #include static void __attribute__ ((format(printf, 3, 4))) syslog_progress(void *_vpninfo, int level, const char *fmt, ...) { static int l[4] = { ANDROID_LOG_ERROR, /* PRG_ERR */ ANDROID_LOG_INFO, /* PRG_INFO */ ANDROID_LOG_DEBUG, /* PRG_DEBUG */ ANDROID_LOG_DEBUG /* PRG_TRACE */ }; va_list args, args2; if (verbose >= level) { va_start(args, fmt); va_copy(args2, args); __android_log_vprint(l[level], "openconnect", fmt, args); /* Android wants it to stderr too, so the GUI can scrape it and display it as well as going to syslog */ vfprintf(stderr, fmt, args2); va_end(args); va_end(args2); } } #define openlog(...) /* */ #elif defined(_WIN32) || defined(__native_client__) /* * FIXME: Perhaps we could implement syslog_progress() using these APIs: * http://msdn.microsoft.com/en-us/library/windows/desktop/aa364148%28v=vs.85%29.aspx */ #else /* !__ANDROID__ && !_WIN32 && !__native_client__ */ #include static void __attribute__ ((format(printf, 3, 4))) syslog_progress(void *_vpninfo, int level, const char *fmt, ...) { int priority = level ? LOG_INFO : LOG_NOTICE; va_list args; if (verbose >= level) { va_start(args, fmt); vsyslog(priority, fmt, args); va_end(args); } } #endif enum { OPT_AUTHENTICATE = 0x100, OPT_AUTHGROUP, OPT_BASEMTU, OPT_CAFILE, OPT_COMPRESSION, OPT_CONFIGFILE, OPT_COOKIEONLY, OPT_COOKIE_ON_STDIN, OPT_CSD_USER, OPT_CSD_WRAPPER, OPT_DISABLE_IPV6, OPT_DTLS_CIPHERS, OPT_DTLS12_CIPHERS, OPT_DUMP_HTTP, OPT_FORCE_DPD, OPT_GNUTLS_DEBUG, OPT_JUNIPER, OPT_KEY_PASSWORD_FROM_FSID, OPT_LIBPROXY, OPT_NO_CERT_CHECK, OPT_NO_DTLS, OPT_NO_HTTP_KEEPALIVE, OPT_NO_SYSTEM_TRUST, OPT_NO_PASSWD, OPT_NO_PROXY, OPT_NO_XMLPOST, OPT_PIDFILE, OPT_PASSWORD_ON_STDIN, OPT_PRINTCOOKIE, OPT_RECONNECT_TIMEOUT, OPT_SERVERCERT, OPT_RESOLVE, OPT_USERAGENT, OPT_NON_INTER, OPT_DTLS_LOCAL_PORT, OPT_TOKEN_MODE, OPT_TOKEN_SECRET, OPT_OS, OPT_TIMESTAMP, OPT_PFS, OPT_PROXY_AUTH, OPT_HTTP_AUTH, OPT_LOCAL_HOSTNAME, OPT_PROTOCOL, OPT_PASSTOS, OPT_VERSION, }; #ifdef __sun__ /* * The 'name' field in Solaris 'struct option' lacks the 'const', and causes * lots of warnings unless we cast it... https://www.illumos.org/issues/1881 */ #define OPTION(name, arg, abbrev) {(char *)name, arg, NULL, abbrev} #else #define OPTION(name, arg, abbrev) {name, arg, NULL, abbrev} #endif static const struct option long_options[] = { #ifndef _WIN32 OPTION("background", 0, 'b'), OPTION("pid-file", 1, OPT_PIDFILE), OPTION("setuid", 1, 'U'), OPTION("script-tun", 0, 'S'), OPTION("syslog", 0, 'l'), OPTION("csd-user", 1, OPT_CSD_USER), OPTION("csd-wrapper", 1, OPT_CSD_WRAPPER), #endif OPTION("pfs", 0, OPT_PFS), OPTION("certificate", 1, 'c'), OPTION("sslkey", 1, 'k'), OPTION("cookie", 1, 'C'), OPTION("compression", 1, OPT_COMPRESSION), OPTION("deflate", 0, 'd'), OPTION("juniper", 0, OPT_JUNIPER), OPTION("no-deflate", 0, 'D'), OPTION("cert-expire-warning", 1, 'e'), OPTION("usergroup", 1, 'g'), OPTION("help", 0, 'h'), OPTION("http-auth", 1, OPT_HTTP_AUTH), OPTION("interface", 1, 'i'), OPTION("mtu", 1, 'm'), OPTION("base-mtu", 1, OPT_BASEMTU), OPTION("script", 1, 's'), OPTION("timestamp", 0, OPT_TIMESTAMP), OPTION("passtos", 0, OPT_PASSTOS), OPTION("key-password", 1, 'p'), OPTION("proxy", 1, 'P'), OPTION("proxy-auth", 1, OPT_PROXY_AUTH), OPTION("user", 1, 'u'), OPTION("verbose", 0, 'v'), OPTION("version", 0, 'V'), OPTION("cafile", 1, OPT_CAFILE), OPTION("config", 1, OPT_CONFIGFILE), OPTION("no-dtls", 0, OPT_NO_DTLS), OPTION("authenticate", 0, OPT_AUTHENTICATE), OPTION("cookieonly", 0, OPT_COOKIEONLY), OPTION("printcookie", 0, OPT_PRINTCOOKIE), OPTION("quiet", 0, 'q'), OPTION("queue-len", 1, 'Q'), OPTION("xmlconfig", 1, 'x'), OPTION("cookie-on-stdin", 0, OPT_COOKIE_ON_STDIN), OPTION("passwd-on-stdin", 0, OPT_PASSWORD_ON_STDIN), OPTION("no-passwd", 0, OPT_NO_PASSWD), OPTION("reconnect-timeout", 1, OPT_RECONNECT_TIMEOUT), OPTION("dtls-ciphers", 1, OPT_DTLS_CIPHERS), OPTION("dtls12-ciphers", 1, OPT_DTLS12_CIPHERS), OPTION("authgroup", 1, OPT_AUTHGROUP), OPTION("servercert", 1, OPT_SERVERCERT), OPTION("resolve", 1, OPT_RESOLVE), OPTION("key-password-from-fsid", 0, OPT_KEY_PASSWORD_FROM_FSID), OPTION("useragent", 1, OPT_USERAGENT), OPTION("version-string", 1, OPT_VERSION), OPTION("local-hostname", 1, OPT_LOCAL_HOSTNAME), OPTION("disable-ipv6", 0, OPT_DISABLE_IPV6), OPTION("no-proxy", 0, OPT_NO_PROXY), OPTION("libproxy", 0, OPT_LIBPROXY), OPTION("no-http-keepalive", 0, OPT_NO_HTTP_KEEPALIVE), OPTION("no-cert-check", 0, OPT_NO_CERT_CHECK), OPTION("force-dpd", 1, OPT_FORCE_DPD), OPTION("non-inter", 0, OPT_NON_INTER), OPTION("dtls-local-port", 1, OPT_DTLS_LOCAL_PORT), OPTION("token-mode", 1, OPT_TOKEN_MODE), OPTION("token-secret", 1, OPT_TOKEN_SECRET), OPTION("os", 1, OPT_OS), OPTION("no-xmlpost", 0, OPT_NO_XMLPOST), OPTION("dump-http-traffic", 0, OPT_DUMP_HTTP), OPTION("no-system-trust", 0, OPT_NO_SYSTEM_TRUST), OPTION("protocol", 1, OPT_PROTOCOL), OPTION("form-entry", 1, 'F'), #ifdef OPENCONNECT_GNUTLS OPTION("gnutls-debug", 1, OPT_GNUTLS_DEBUG), #endif OPTION(NULL, 0, 0) }; #ifdef OPENCONNECT_GNUTLS static void oc_gnutls_log_func(int level, const char *str) { fputs(str, stderr); } #endif #ifdef _WIN32 static int __attribute__ ((format(printf, 2, 0))) vfprintf_utf8(FILE *f, const char *fmt, va_list args) { HANDLE h = GetStdHandle(f == stdout ? STD_OUTPUT_HANDLE : STD_ERROR_HANDLE); wchar_t wbuf[1024]; char buf[1024]; int chars, wchars; buf[sizeof(buf) - 1] = 0; chars = _vsnprintf(buf, sizeof(buf) - 1, fmt, args); wchars = MultiByteToWideChar(CP_UTF8, 0, buf, -1, wbuf, sizeof(wbuf)/2); WriteConsoleW(h, wbuf, wchars, NULL, NULL); return chars; } static int __attribute__ ((format(printf, 2, 3))) fprintf_utf8(FILE *f, const char *fmt, ...) { va_list args; int ret; va_start(args, fmt); ret = vfprintf_utf8(f, fmt, args); va_end(args); return ret; } static wchar_t **argv_w; /* This isn't so much "convert" the arg to UTF-8, as go grubbing * around in the real UTF-16 command line and find the corresponding * argument *there*, and convert *that* to UTF-8. Ick. But the * alternative is to implement wgetopt(), and that's even more horrid. */ static char *convert_arg_to_utf8(char **argv, char *arg) { char *utf8; int chars; int offset; if (!argv_w) { int argc_w; argv_w = CommandLineToArgvW(GetCommandLineW(), &argc_w); if (!argv_w) { char *errstr = openconnect__win32_strerror(GetLastError()); fprintf(stderr, _("CommandLineToArgvW() failed: %s\n"), errstr); free(errstr); exit(1); } } offset = arg - argv[optind - 1]; /* Sanity check */ if (offset < 0 || offset >= strlen(argv[optind - 1]) || (offset && (argv[optind - 1][offset-1] != '=' || argv_w[optind - 1][offset - 1] != '='))) { fprintf(stderr, _("Fatal error in command line handling\n")); exit(1); } chars = WideCharToMultiByte(CP_UTF8, 0, argv_w[optind-1] + offset, -1, NULL, 0, NULL, NULL); utf8 = malloc(chars); if (!utf8) return arg; WideCharToMultiByte(CP_UTF8, 0, argv_w[optind-1] + offset, -1, utf8, chars, NULL, NULL); return utf8; } #undef fprintf #undef vfprintf #define fprintf fprintf_utf8 #define vfprintf vfprintf_utf8 #define is_arg_utf8(str) (0) static void read_stdin(char **string, int hidden, int allow_fail) { CONSOLE_READCONSOLE_CONTROL rcc = { sizeof(rcc), 0, 13, 0 }; HANDLE stdinh = GetStdHandle(STD_INPUT_HANDLE); DWORD cmode, nr_read; wchar_t wbuf[1024]; char *buf; if (GetConsoleMode(stdinh, &cmode)) { if (hidden) SetConsoleMode(stdinh, cmode & (~ENABLE_ECHO_INPUT)); if (!ReadConsoleW(stdinh, wbuf, sizeof(wbuf)/2, &nr_read, &rcc)) { char *errstr = openconnect__win32_strerror(GetLastError()); fprintf(stderr, _("ReadConsole() failed: %s\n"), errstr); free(errstr); *string = NULL; if (hidden) SetConsoleMode(stdinh, cmode); return; } if (hidden) SetConsoleMode(stdinh, cmode); } else { /* Not a console; maybe reading from a piped stdin? */ if (!fgetws(wbuf, sizeof(wbuf)/2, stdin)) { char *errstr = openconnect__win32_strerror(GetLastError()); fprintf(stderr, _("fgetws() failed: %s\n"), errstr); free(errstr); *string = NULL; return; } nr_read = wcslen(wbuf); } if (nr_read >= 2 && wbuf[nr_read - 1] == 10 && wbuf[nr_read - 2] == 13) { wbuf[nr_read - 2] = 0; nr_read -= 2; } nr_read = WideCharToMultiByte(CP_UTF8, 0, wbuf, -1, NULL, 0, NULL, NULL); if (!nr_read) { char *errstr = openconnect__win32_strerror(GetLastError()); fprintf(stderr, _("Error converting console input: %s\n"), errstr); free(errstr); return; } buf = malloc(nr_read); if (!buf) { fprintf(stderr, _("Allocation failure for string from stdin\n")); exit(1); } if (!WideCharToMultiByte(CP_UTF8, 0, wbuf, -1, buf, nr_read, NULL, NULL)) { char *errstr = openconnect__win32_strerror(GetLastError()); fprintf(stderr, _("Error converting console input: %s\n"), errstr); free(errstr); free(buf); return; } *string = buf; } #elif defined(HAVE_ICONV) #include static int is_ascii(char *str) { while (str && *str) { if ((unsigned char)*str > 0x7f) return 0; str++; } return 1; } static int __attribute__ ((format(printf, 2, 0))) vfprintf_utf8(FILE *f, const char *fmt, va_list args) { char *utf8_str; iconv_t ic; int ret; char outbuf[80]; ICONV_CONST char *ic_in; char *ic_out; size_t insize, outsize; if (!legacy_charset) return vfprintf(f, fmt, args); ret = vasprintf(&utf8_str, fmt, args); if (ret < 0) return -1; if (is_ascii(utf8_str)) return fwrite(utf8_str, 1, strlen(utf8_str), f); ic = iconv_open(legacy_charset, "UTF-8"); if (ic == (iconv_t) -1) { /* Better than nothing... */ ret = fprintf(f, "%s", utf8_str); free(utf8_str); return ret; } ic_in = utf8_str; insize = strlen(utf8_str); ret = 0; while (insize) { ic_out = outbuf; outsize = sizeof(outbuf) - 1; if (iconv(ic, &ic_in, &insize, &ic_out, &outsize) == (size_t)-1) { if (errno == EILSEQ) { do { ic_in++; insize--; } while (insize && (ic_in[0] & 0xc0) == 0x80); ic_out[0] = '?'; outsize--; } else if (errno != E2BIG) break; } ret += fwrite(outbuf, 1, sizeof(outbuf) - 1 - outsize, f); } iconv_close(ic); return ret; } static int __attribute__ ((format(printf, 2, 3))) fprintf_utf8(FILE *f, const char *fmt, ...) { va_list args; int ret; va_start(args, fmt); ret = vfprintf_utf8(f, fmt, args); va_end(args); return ret; } static char *convert_to_utf8(char *legacy, int free_it) { char *utf8_str; iconv_t ic; ICONV_CONST char *ic_in; char *ic_out; size_t insize, outsize; if (!legacy_charset || is_ascii(legacy)) return legacy; ic = iconv_open("UTF-8", legacy_charset); if (ic == (iconv_t) -1) return legacy; insize = strlen(legacy) + 1; ic_in = legacy; outsize = insize; ic_out = utf8_str = malloc(outsize); if (!utf8_str) { enomem: iconv_close(ic); return legacy; } while (insize) { if (iconv(ic, &ic_in, &insize, &ic_out, &outsize) == (size_t)-1) { if (errno == E2BIG) { int outlen = ic_out - utf8_str; realloc_inplace(utf8_str, outlen + 10); if (!utf8_str) goto enomem; ic_out = utf8_str + outlen; outsize = 10; } else { /* Should never happen */ perror("iconv"); free(utf8_str); goto enomem; } } } iconv_close(ic); if (free_it) free(legacy); return utf8_str; } #define fprintf fprintf_utf8 #define vfprintf vfprintf_utf8 #define convert_arg_to_utf8(av, l) convert_to_utf8((l), 0) #define is_arg_utf8(a) (!legacy_charset || is_ascii(a)) #else #define convert_to_utf8(l,f) (l) #define convert_arg_to_utf8(av, l) (l) #define is_arg_utf8(a) (1) #endif static void helpmessage(void) { printf(_("For assistance with OpenConnect, please see the web page at\n" " http://www.infradead.org/openconnect/mail.html\n")); } static void print_build_opts(void) { const char *comma = ", ", *sep = comma + 1; #if defined(OPENCONNECT_OPENSSL) printf(_("Using OpenSSL. Features present:")); #elif defined(OPENCONNECT_GNUTLS) printf(_("Using GnuTLS. Features present:")); #endif if (openconnect_has_tss_blob_support()) { printf("%sTPM", sep); sep = comma; } if (openconnect_has_tss2_blob_support()) { printf("%sTPMv2", sep); sep = comma; } #if defined(OPENCONNECT_OPENSSL) && defined(HAVE_ENGINE) else { printf("%sTPM (%s)", sep, _("OpenSSL ENGINE not present")); sep = comma; } #endif if (openconnect_has_pkcs11_support()) { printf("%sPKCS#11", sep); sep = comma; } if (openconnect_has_stoken_support()) { printf("%sRSA software token", sep); sep = comma; } switch(openconnect_has_oath_support()) { case 2: printf("%sHOTP software token", sep); sep = comma; /* fall through */ case 1: printf("%sTOTP software token", sep); sep = comma; } if (openconnect_has_yubioath_support()) { printf("%sYubikey OATH", sep); sep = comma; } if (openconnect_has_system_key_support()) { printf("%sSystem keys", sep); sep = comma; } #ifdef HAVE_DTLS printf("%sDTLS", sep); #endif #ifdef HAVE_ESP printf("%sESP", sep); #endif printf("\n"); #if !defined(HAVE_DTLS) || !defined(HAVE_ESP) printf(_("WARNING: This binary lacks DTLS and/or ESP support. Performance will be impaired.\n")); #endif } static void print_supported_protocols(void) { const char *comma = ", ", *sep = comma + 1; struct oc_vpn_proto *protos, *p; if (openconnect_get_supported_protocols(&protos)>=0) { printf(_("Supported protocols:")); for (p=protos; p->name; p++) { printf("%s%s%s", sep, p->name, p==protos ? _(" (default)") : ""); sep = comma; } printf("\n"); free(protos); } } static void print_supported_protocols_usage(void) { struct oc_vpn_proto *protos, *p; if (openconnect_get_supported_protocols(&protos)>=0) { printf("\n%s:\n", _("Set VPN protocol")); for (p=protos; p->name; p++) printf(" --protocol=%-16s %s%s\n", p->name, p->description, p==protos ? _(" (default)") : ""); openconnect_free_supported_protocols(protos); } } #ifndef _WIN32 static const char default_vpncscript[] = DEFAULT_VPNCSCRIPT; static void read_stdin(char **string, int hidden, int allow_fail) { char *c, *buf = malloc(1025); int fd = fileno(stdin); struct termios t; if (!buf) { fprintf(stderr, _("Allocation failure for string from stdin\n")); exit(1); } if (hidden) { tcgetattr(fd, &t); t.c_lflag &= ~ECHO; tcsetattr(fd, TCSANOW, &t); } buf = fgets(buf, 1025, stdin); if (hidden) { t.c_lflag |= ECHO; tcsetattr(fd, TCSANOW, &t); fprintf(stderr, "\n"); } if (!buf) { if (allow_fail) { *string = NULL; free(buf); return; } else { perror(_("fgets (stdin)")); exit(1); } } c = strchr(buf, '\n'); if (c) *c = 0; *string = convert_to_utf8(buf, 1); } static void handle_signal(int sig) { char cmd; switch (sig) { case SIGTERM: case SIGINT: cmd = OC_CMD_CANCEL; break; case SIGHUP: cmd = OC_CMD_DETACH; break; case SIGUSR2: default: cmd = OC_CMD_PAUSE; break; } if (write(sig_cmd_fd, &cmd, 1) < 0) { /* suppress warn_unused_result */ } } #else /* _WIN32 */ static const char *default_vpncscript; static void set_default_vpncscript(void) { if (PathIsRelative(DEFAULT_VPNCSCRIPT)) { char *c = strrchr(_pgmptr, '\\'); if (!c) { fprintf(stderr, _("Cannot process this executable path \"%s\""), _pgmptr); exit(1); } if (asprintf((char **)&default_vpncscript, "%.*s%s", (c - _pgmptr + 1), _pgmptr, DEFAULT_VPNCSCRIPT) < 0) { fprintf(stderr, _("Allocation for vpnc-script path failed\n")); exit(1); } } else { default_vpncscript = "cscript " DEFAULT_VPNCSCRIPT; } } #endif static struct oc_vpn_option *gai_overrides; static int gai_override_cb(void *cbdata, const char *node, const char *service, const struct addrinfo *hints, struct addrinfo **res) { struct openconnect_info *vpninfo = cbdata; struct oc_vpn_option *p = gai_overrides; while (p) { if (!strcmp(node, p->option)) { vpn_progress(vpninfo, PRG_TRACE, _("Override hostname '%s' to '%s'\n"), node, p->value); node = p->value; break; } p = p->next; } return getaddrinfo(node, service, hints, res); } static void usage(void) { printf(_("Usage: openconnect [options] \n")); printf(_("Open client for multiple VPN protocols, version %s\n\n"), openconnect_version_str); print_build_opts(); printf(" --config=CONFIGFILE %s\n", _("Read options from config file")); printf(" -V, --version %s\n", _("Report version number")); printf(" -h, --help %s\n", _("Display help text")); print_supported_protocols_usage(); printf("\n%s:\n", _("Authentication")); printf(" -u, --user=NAME %s\n", _("Set login username")); printf(" --no-passwd %s\n", _("Disable password/SecurID authentication")); printf(" --non-inter %s\n", _("Do not expect user input; exit if it is required")); printf(" --passwd-on-stdin %s\n", _("Read password from standard input")); printf(" --authgroup=GROUP %s\n", _("Choose authentication login selection")); printf(" -F, --form-entry=FORM:OPT=VALUE %s\n", _("Provide authentication form responses")); printf(" -c, --certificate=CERT %s\n", _("Use SSL client certificate CERT")); printf(" -k, --sslkey=KEY %s\n", _("Use SSL private key file KEY")); printf(" -e, --cert-expire-warning=DAYS %s\n", _("Warn when certificate lifetime < DAYS")); printf(" -g, --usergroup=GROUP %s\n", _("Set login usergroup")); printf(" -p, --key-password=PASS %s\n", _("Set key passphrase or TPM SRK PIN")); printf(" --key-password-from-fsid %s\n", _("Key passphrase is fsid of file system")); printf(" --token-mode=MODE %s\n", _("Software token type: rsa, totp or hotp")); printf(" --token-secret=STRING %s\n", _("Software token secret")); #ifndef HAVE_LIBSTOKEN printf(" %s\n", _("(NOTE: libstoken (RSA SecurID) disabled in this build)")); #endif #ifndef HAVE_LIBPCSCLITE printf(" %s\n", _("(NOTE: Yubikey OATH disabled in this build)")); #endif printf("\n%s:\n", _("Server validation")); printf(" --servercert=FINGERPRINT %s\n", _("Server's certificate SHA1 fingerprint")); printf(" --no-cert-check %s\n", _("Do not require server SSL cert to be valid")); printf(" --no-system-trust %s\n", _("Disable default system certificate authorities")); printf(" --cafile=FILE %s\n", _("Cert file for server verification")); printf("\n%s:\n", _("Internet connectivity")); printf(" -P, --proxy=URL %s\n", _("Set proxy server")); printf(" --proxy-auth=METHODS %s\n", _("Set proxy authentication methods")); printf(" --no-proxy %s\n", _("Disable proxy")); printf(" --libproxy %s\n", _("Use libproxy to automatically configure proxy")); #ifndef LIBPROXY_HDR printf(" %s\n", _("(NOTE: libproxy disabled in this build)")); #endif printf(" --reconnect-timeout %s\n", _("Connection retry timeout in seconds")); printf(" --resolve=HOST:IP %s\n", _("Use IP when connecting to HOST")); printf(" --passtos %s\n", _("copy TOS / TCLASS when using DTLS")); printf(" --dtls-local-port=PORT %s\n", _("Set local port for DTLS and ESP datagrams")); printf("\n%s:\n", _("Authentication (two-phase)")); printf(" -C, --cookie=COOKIE %s\n", _("Use authentication cookie COOKIE")); printf(" --cookie-on-stdin %s\n", _("Read cookie from standard input")); printf(" --authenticate %s\n", _("Authenticate only and print login info")); printf(" --cookieonly %s\n", _("Fetch and print cookie only; don't connect")); printf(" --printcookie %s\n", _("Print cookie before connecting")); #ifndef _WIN32 printf("\n%s:\n", _("Process control")); printf(" -b, --background %s\n", _("Continue in background after startup")); printf(" --pid-file=PIDFILE %s\n", _("Write the daemon's PID to this file")); printf(" -U, --setuid=USER %s\n", _("Drop privileges after connecting")); #endif printf("\n%s:\n", _("Logging (two-phase)")); #ifndef _WIN32 printf(" -l, --syslog %s\n", _("Use syslog for progress messages")); #endif printf(" -v, --verbose %s\n", _("More output")); printf(" -q, --quiet %s\n", _("Less output")); printf(" --dump-http-traffic %s\n", _("Dump HTTP authentication traffic (implies --verbose)")); printf(" --timestamp %s\n", _("Prepend timestamp to progress messages")); printf("\n%s:\n", _("VPN configuration script")); printf(" -i, --interface=IFNAME %s\n", _("Use IFNAME for tunnel interface")); printf(" -s, --script=SCRIPT %s\n", _("Shell command line for using a vpnc-compatible config script")); printf(" %s: \"%s\"\n", _("default"), default_vpncscript); #ifndef _WIN32 printf(" -S, --script-tun %s\n", _("Pass traffic to 'script' program, not tun")); #endif printf("\n%s:\n", _("Tunnel control")); printf(" --disable-ipv6 %s\n", _("Do not ask for IPv6 connectivity")); printf(" -x, --xmlconfig=CONFIG %s\n", _("XML config file")); printf(" -m, --mtu=MTU %s\n", _("Request MTU from server (legacy servers only)")); printf(" --base-mtu=MTU %s\n", _("Indicate path MTU to/from server")); printf(" -d, --deflate %s\n", _("Enable stateful compression (default is stateless only)")); printf(" -D, --no-deflate %s\n", _("Disable all compression")); printf(" --force-dpd=INTERVAL %s\n", _("Set minimum Dead Peer Detection interval")); printf(" --pfs %s\n", _("Require perfect forward secrecy")); printf(" --no-dtls %s\n", _("Disable DTLS and ESP")); printf(" --dtls-ciphers=LIST %s\n", _("OpenSSL ciphers to support for DTLS")); printf(" -Q, --queue-len=LEN %s\n", _("Set packet queue limit to LEN pkts")); printf("\n%s:\n", _("Local system information")); printf(" --useragent=STRING %s\n", _("HTTP header User-Agent: field")); printf(" --local-hostname=STRING %s\n", _("Local hostname to advertise to server")); printf(" --os=STRING %s\n", _("OS type (linux,linux-64,win,...) to report")); printf(" --version-string=STRING %s\n", _("reported version string during authentication")); printf(" (%s %s)\n", _("default:"), openconnect_version_str); #ifndef _WIN32 printf("\n%s:\n", _("Trojan binary (CSD) execution")); printf(" --csd-user=USER %s\n", _("Drop privileges during trojan execution")); printf(" --csd-wrapper=SCRIPT %s\n", _("Run SCRIPT instead of trojan binary")); #endif printf("\n%s:\n", _("Server bugs")); printf(" --no-http-keepalive %s\n", _("Disable HTTP connection re-use")); printf(" --no-xmlpost %s\n", _("Do not attempt XML POST authentication")); printf("\n"); helpmessage(); exit(1); } static FILE *config_file = NULL; static int config_line_num = 0; static char *xstrdup(const char *arg) { char *ret; if (!arg) return NULL; ret = strdup(arg); if (!ret) { fprintf(stderr, _("Failed to allocate string\n")); exit(1); } return ret; } /* There are three ways to handle config_arg: * * 1. We only care about it transiently and it can be lost entirely * (e.g. vpninfo->reconnect_timeout = atoi(config_arg); * 2. We need to keep it, but it's a static string and will never be freed * so when it's part of argv[] we can use it in place (unless it needs * converting to UTF-8), but when it comes from a file we have to strdup() * because otherwise it'll be overwritten. * For this we use the keep_config_arg() macro below. * 3. It may be freed during normal operation, so we have to use strdup() * or convert_arg_to_utf8() even when it's an option from argv[]. * (e.g. vpninfo->cert_password). * For this we use the dup_config_arg() macro below. */ #define keep_config_arg() \ (config_file ? xstrdup(config_arg) : convert_arg_to_utf8(argv, config_arg)) #define dup_config_arg() __dup_config_arg(argv, config_arg) static inline char *__dup_config_arg(char **argv, char *config_arg) { char *res; if (config_file || is_arg_utf8(config_arg)) return xstrdup(config_arg); res = convert_arg_to_utf8(argv, config_arg); /* Force a copy, even if conversion failed */ if (res == config_arg) res = xstrdup(res); return res; } static int next_option(int argc, char **argv, char **config_arg) { /* These get re-used */ static char *line_buf = NULL; static size_t line_size = 0; ssize_t llen; int opt, optlen = 0; const struct option *this; char *line; int ate_equals = 0; next: if (!config_file) { opt = getopt_long(argc, argv, #ifdef _WIN32 "C:c:Dde:F:g:hi:k:m:P:p:Q:qs:u:Vvx:", #else "bC:c:Dde:F:g:hi:k:lm:P:p:Q:qSs:U:u:Vvx:", #endif long_options, NULL); *config_arg = optarg; return opt; } llen = getline(&line_buf, &line_size, config_file); if (llen < 0) { if (feof(config_file)) { fclose(config_file); config_file = NULL; goto next; } fprintf(stderr, _("Failed to get line from config file: %s\n"), strerror(errno)); exit(1); } line = line_buf; /* Strip the trailing newline (coping with DOS newlines) */ if (llen && line[llen-1] == '\n') line[--llen] = 0; if (llen && line[llen-1] == '\r') line[--llen] = 0; /* Skip and leading whitespace */ while (line[0] == ' ' || line[0] == '\t' || line[0] == '\r') line++; /* Ignore comments and empty lines */ if (!line[0] || line[0] == '#') { config_line_num++; goto next; } /* Try to match on a known option... naïvely. This could be improved. */ for (this = long_options; this->name; this++) { optlen = strlen(this->name); /* If the option isn't followed by whitespace or NUL, or perhaps an equals sign if the option takes an argument, then it's not a match */ if (!strncmp(this->name, line, optlen) && (!line[optlen] || line[optlen] == ' ' || line[optlen] == '\t' || line[optlen] == '=')) break; } if (!this->name) { char *l; for (l = line; *l && *l != ' ' && *l != '\t'; l++) ; *l = 0; fprintf(stderr, _("Unrecognised option at line %d: '%s'\n"), config_line_num, line); return '?'; } line += optlen; while (*line == ' ' || *line == '\t' || (*line == '=' && this->has_arg && !ate_equals && ++ate_equals)) line++; if (!this->has_arg && *line) { fprintf(stderr, _("Option '%s' does not take an argument at line %d\n"), this->name, config_line_num); return '?'; } else if (this->has_arg == 1 && !*line) { fprintf(stderr, _("Option '%s' requires an argument at line %d\n"), this->name, config_line_num); return '?'; } else if (this->has_arg == 2 && !*line) { line = NULL; } config_line_num++; *config_arg = line; return this->val; } #ifndef _WIN32 static void get_uids(const char *config_arg, uid_t *uid, gid_t *gid) { char *strend; struct passwd *pw; int e; *uid = strtol(config_arg, &strend, 0); if (strend[0]) { pw = getpwnam(config_arg); if (!pw) { e = errno; fprintf(stderr, _("Invalid user \"%s\": %s\n"), config_arg, strerror(e)); exit(1); } *uid = pw->pw_uid; *gid = pw->pw_gid; } else { pw = getpwuid(*uid); if (!pw) { e = errno; fprintf(stderr, _("Invalid user ID \"%d\": %s\n"), (int)*uid, strerror(e)); exit(1); } *gid = pw->pw_gid; } } #endif int main(int argc, char **argv) { struct openconnect_info *vpninfo; char *urlpath = NULL; struct oc_vpn_option *gai; char *ip; const char *ssl_compr, *udp_compr; char *proxy = getenv("https_proxy"); char *vpnc_script = NULL; const struct oc_ip_info *ip_info; int autoproxy = 0; int opt; char *pidfile = NULL; FILE *fp = NULL; char *config_arg; char *config_filename; char *token_str = NULL; oc_token_mode_t token_mode = OC_TOKEN_MODE_NONE; int reconnect_timeout = 300; int ret; #ifdef HAVE_NL_LANGINFO char *charset; #endif #ifndef _WIN32 struct sigaction sa; struct utsname utsbuf; int use_syslog = 0; #endif #ifdef ENABLE_NLS bindtextdomain("openconnect", LOCALEDIR); #endif if (!setlocale(LC_ALL, "")) fprintf(stderr, _("WARNING: Cannot set locale: %s\n"), strerror(errno)); #ifdef HAVE_NL_LANGINFO charset = nl_langinfo(CODESET); if (charset && strcmp(charset, "UTF-8")) legacy_charset = strdup(charset); #ifndef HAVE_ICONV if (legacy_charset) fprintf(stderr, _("WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n"), legacy_charset); #endif /* !HAVE_ICONV */ #endif /* HAVE_NL_LANGINFO */ if (strcmp(openconnect_version_str, openconnect_binary_version)) { fprintf(stderr, _("WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n"), openconnect_binary_version, openconnect_version_str); } openconnect_init_ssl(); vpninfo = openconnect_vpninfo_new((char *)"Open AnyConnect VPN Agent", validate_peer_cert, NULL, process_auth_form_cb, write_progress, NULL); if (!vpninfo) { fprintf(stderr, _("Failed to allocate vpninfo structure\n")); exit(1); } vpninfo->cbdata = vpninfo; #ifdef _WIN32 set_default_vpncscript(); #else vpninfo->use_tun_script = 0; vpninfo->uid = getuid(); vpninfo->gid = getgid(); if (!uname(&utsbuf)) { openconnect_set_localname(vpninfo, utsbuf.nodename); } #endif while ((opt = next_option(argc, argv, &config_arg))) { if (opt < 0) break; switch (opt) { #ifndef _WIN32 case 'b': background = 1; break; case 'l': use_syslog = 1; break; case 'S': vpninfo->use_tun_script = 1; break; case 'U': get_uids(config_arg, &vpninfo->uid, &vpninfo->gid); break; case OPT_CSD_USER: get_uids(config_arg, &vpninfo->uid_csd, &vpninfo->gid_csd); vpninfo->uid_csd_given = 1; break; case OPT_CSD_WRAPPER: vpninfo->csd_wrapper = keep_config_arg(); break; #endif /* !_WIN32 */ case 'F': add_form_field(keep_config_arg()); break; case OPT_PROTOCOL: if (openconnect_set_protocol(vpninfo, config_arg)) exit(1); break; case OPT_JUNIPER: fprintf(stderr, "WARNING: Juniper Network Connect support is experimental.\n"); fprintf(stderr, "It will probably be superseded by Junos Pulse support.\n"); openconnect_set_protocol(vpninfo, "nc"); break; case OPT_CONFIGFILE: if (config_file) { fprintf(stderr, _("Cannot use 'config' option inside config file\n")); exit(1); } config_filename = keep_config_arg(); /* Convert to UTF-8 */ config_file = openconnect_fopen_utf8(vpninfo, config_filename, "r"); if (config_filename != config_arg) free(config_filename); if (!config_file) { fprintf(stderr, _("Cannot open config file '%s': %s\n"), config_arg, strerror(errno)); exit(1); } config_line_num = 1; /* The next option will come from the file... */ break; case OPT_COMPRESSION: if (!strcmp(config_arg, "none") || !strcmp(config_arg, "off")) openconnect_set_compression_mode(vpninfo, OC_COMPRESSION_MODE_NONE); else if (!strcmp(config_arg, "all")) openconnect_set_compression_mode(vpninfo, OC_COMPRESSION_MODE_ALL); else if (!strcmp(config_arg, "stateless")) openconnect_set_compression_mode(vpninfo, OC_COMPRESSION_MODE_STATELESS); else { fprintf(stderr, _("Invalid compression mode '%s'\n"), config_arg); exit(1); } break; case OPT_CAFILE: openconnect_set_cafile(vpninfo, dup_config_arg()); break; case OPT_PIDFILE: pidfile = keep_config_arg(); break; case OPT_PFS: openconnect_set_pfs(vpninfo, 1); break; case OPT_SERVERCERT: server_cert = keep_config_arg(); openconnect_set_system_trust(vpninfo, 0); break; case OPT_RESOLVE: ip = strchr(config_arg, ':'); if (!ip) { fprintf(stderr, _("Missing colon in resolve option\n")); exit(1); } gai = malloc(sizeof(*gai) + strlen(config_arg) + 1); if (!gai) { fprintf(stderr, _("Failed to allocate memory\n")); exit(1); } gai->next = gai_overrides; gai_overrides = gai; gai->option = (void *)(gai + 1); memcpy(gai->option, config_arg, strlen(config_arg) + 1); gai->option[ip - config_arg] = 0; gai->value = gai->option + (ip - config_arg) + 1; break; case OPT_NO_DTLS: vpninfo->dtls_state = DTLS_DISABLED; break; case OPT_COOKIEONLY: cookieonly = 1; break; case OPT_PRINTCOOKIE: cookieonly = 2; break; case OPT_AUTHENTICATE: cookieonly = 3; break; case OPT_COOKIE_ON_STDIN: read_stdin(&vpninfo->cookie, 0, 0); /* If the cookie is empty, ignore it */ if (!*vpninfo->cookie) vpninfo->cookie = NULL; break; case OPT_PASSWORD_ON_STDIN: read_stdin(&password, 0, 0); allow_stdin_read = 1; break; case OPT_NO_PASSWD: vpninfo->nopasswd = 1; break; case OPT_NO_XMLPOST: openconnect_set_xmlpost(vpninfo, 0); break; case OPT_NON_INTER: non_inter = 1; break; case OPT_RECONNECT_TIMEOUT: reconnect_timeout = atoi(config_arg); break; case OPT_DTLS_CIPHERS: vpninfo->dtls_ciphers = keep_config_arg(); break; case OPT_DTLS12_CIPHERS: vpninfo->dtls12_ciphers = keep_config_arg(); break; case OPT_AUTHGROUP: authgroup = keep_config_arg(); break; case 'C': vpninfo->cookie = dup_config_arg(); break; case 'c': vpninfo->cert = dup_config_arg(); break; case 'e': vpninfo->cert_expire_warning = 86400 * atoi(config_arg); break; case 'k': vpninfo->sslkey = dup_config_arg(); break; case 'd': vpninfo->req_compr = COMPR_ALL; break; case 'D': vpninfo->req_compr = 0; break; case 'g': free(urlpath); urlpath = dup_config_arg(); break; case 'h': usage(); break; case 'i': vpninfo->ifname = dup_config_arg(); break; case 'm': { int mtu = atol(config_arg); if (mtu < 576) { fprintf(stderr, _("MTU %d too small\n"), mtu); mtu = 576; } openconnect_set_reqmtu(vpninfo, mtu); break; } case OPT_BASEMTU: vpninfo->basemtu = atol(config_arg); if (vpninfo->basemtu < 576) { fprintf(stderr, _("MTU %d too small\n"), vpninfo->basemtu); vpninfo->basemtu = 576; } break; case 'p': vpninfo->cert_password = dup_config_arg(); break; case 'P': proxy = keep_config_arg(); autoproxy = 0; break; case OPT_PROXY_AUTH: openconnect_set_proxy_auth(vpninfo, config_arg); break; case OPT_HTTP_AUTH: openconnect_set_http_auth(vpninfo, config_arg); break; case OPT_NO_PROXY: autoproxy = 0; proxy = NULL; break; case OPT_NO_SYSTEM_TRUST: openconnect_set_system_trust(vpninfo, 0); break; case OPT_LIBPROXY: autoproxy = 1; proxy = NULL; break; case OPT_NO_HTTP_KEEPALIVE: fprintf(stderr, _("Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n")); vpninfo->no_http_keepalive = 1; break; case OPT_NO_CERT_CHECK: fprintf(stderr, _("The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n")); exit(1); break; case 's': vpnc_script = dup_config_arg(); break; case 'u': free(username); username = dup_config_arg(); break; case OPT_DISABLE_IPV6: vpninfo->disable_ipv6 = 1; break; case 'Q': vpninfo->max_qlen = atol(config_arg); if (!vpninfo->max_qlen) { fprintf(stderr, _("Queue length zero not permitted; using 1\n")); vpninfo->max_qlen = 1; } break; case 'q': verbose = PRG_ERR; break; case OPT_DUMP_HTTP: vpninfo->dump_http_traffic = 1; break; case 'v': verbose++; break; case 'V': printf(_("OpenConnect version %s\n"), openconnect_version_str); print_build_opts(); print_supported_protocols(); exit(0); case 'x': vpninfo->xmlconfig = keep_config_arg(); vpninfo->write_new_config = write_new_config; break; case OPT_KEY_PASSWORD_FROM_FSID: do_passphrase_from_fsid = 1; break; case OPT_USERAGENT: free(vpninfo->useragent); vpninfo->useragent = dup_config_arg(); break; case OPT_VERSION: free(vpninfo->version_string); vpninfo->version_string = dup_config_arg(); break; case OPT_LOCAL_HOSTNAME: openconnect_set_localname(vpninfo, config_arg); break; case OPT_FORCE_DPD: openconnect_set_dpd(vpninfo, atoi(config_arg)); break; case OPT_DTLS_LOCAL_PORT: vpninfo->dtls_local_port = atoi(config_arg); break; case OPT_TOKEN_MODE: if (strcasecmp(config_arg, "rsa") == 0) { token_mode = OC_TOKEN_MODE_STOKEN; } else if (strcasecmp(config_arg, "totp") == 0) { token_mode = OC_TOKEN_MODE_TOTP; } else if (strcasecmp(config_arg, "hotp") == 0) { token_mode = OC_TOKEN_MODE_HOTP; } else if (strcasecmp(config_arg, "yubioath") == 0) { token_mode = OC_TOKEN_MODE_YUBIOATH; } else { fprintf(stderr, _("Invalid software token mode \"%s\"\n"), config_arg); exit(1); } break; case OPT_TOKEN_SECRET: token_str = keep_config_arg(); break; case OPT_OS: if (openconnect_set_reported_os(vpninfo, config_arg)) { fprintf(stderr, _("Invalid OS identity \"%s\"\n"), config_arg); exit(1); } if (!strcmp(config_arg, "android") || !strcmp(config_arg, "apple-ios")) { /* generic defaults */ openconnect_set_mobile_info(vpninfo, xstrdup("1.0"), dup_config_arg(), xstrdup("AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA")); } break; case OPT_PASSTOS: openconnect_set_pass_tos(vpninfo, 1); break; case OPT_TIMESTAMP: timestamp = 1; break; #ifdef OPENCONNECT_GNUTLS case OPT_GNUTLS_DEBUG: gnutls_global_set_log_level(atoi(config_arg)); gnutls_global_set_log_function(oc_gnutls_log_func); break; #endif default: usage(); } } if (gai_overrides) openconnect_override_getaddrinfo(vpninfo, gai_override_cb); if (optind < argc - 1) { fprintf(stderr, _("Too many arguments on command line\n")); usage(); } else if (optind > argc - 1) { fprintf(stderr, _("No server specified\n")); usage(); } if (!vpninfo->sslkey) vpninfo->sslkey = vpninfo->cert; if (vpninfo->dump_http_traffic && verbose < PRG_DEBUG) verbose = PRG_DEBUG; vpninfo->progress = write_progress; if (autoproxy) { #ifdef LIBPROXY_HDR vpninfo->proxy_factory = px_proxy_factory_new(); #else fprintf(stderr, _("This version of openconnect was built without libproxy support\n")); exit(1); #endif } if (token_mode != OC_TOKEN_MODE_NONE) init_token(vpninfo, token_mode, token_str); if (proxy && openconnect_set_http_proxy(vpninfo, strdup(proxy))) exit(1); #if !defined(_WIN32) && !defined(__native_client__) if (use_syslog) { openlog("openconnect", LOG_PID, LOG_DAEMON); vpninfo->progress = syslog_progress; } #endif /* !_WIN32 && !__native_client__ */ #ifndef _WIN32 memset(&sa, 0, sizeof(sa)); sa.sa_handler = handle_signal; sigaction(SIGTERM, &sa, NULL); sigaction(SIGINT, &sa, NULL); sigaction(SIGHUP, &sa, NULL); sigaction(SIGUSR2, &sa, NULL); #endif /* !_WIN32 */ sig_cmd_fd = openconnect_setup_cmd_pipe(vpninfo); if (sig_cmd_fd < 0) { fprintf(stderr, _("Error opening cmd pipe\n")); exit(1); } if (vpninfo->sslkey && do_passphrase_from_fsid) openconnect_passphrase_from_fsid(vpninfo); if (config_lookup_host(vpninfo, argv[optind])) exit(1); if (!vpninfo->hostname) { char *url = strdup(argv[optind]); if (openconnect_parse_url(vpninfo, url)) exit(1); free(url); } /* Historically, the path in the URL superseded the one in the * --usergroup argument, just because of the order in which they * were processed. Preserve that behaviour. */ if (urlpath && !vpninfo->urlpath) { vpninfo->urlpath = urlpath; urlpath = NULL; } free(urlpath); if (!vpninfo->cookie && openconnect_obtain_cookie(vpninfo)) { if (vpninfo->csd_scriptname) { unlink(vpninfo->csd_scriptname); vpninfo->csd_scriptname = NULL; } fprintf(stderr, _("Failed to obtain WebVPN cookie\n")); exit(1); } if (cookieonly == 3) { /* --authenticate */ printf("COOKIE='%s'\n", vpninfo->cookie); printf("HOST='%s'\n", openconnect_get_hostname(vpninfo)); printf("FINGERPRINT='%s'\n", openconnect_get_peer_cert_hash(vpninfo)); openconnect_vpninfo_free(vpninfo); exit(0); } else if (cookieonly) { printf("%s\n", vpninfo->cookie); if (cookieonly == 1) { /* We use cookieonly=2 for 'print it and continue' */ openconnect_vpninfo_free(vpninfo); exit(0); } } if (openconnect_make_cstp_connection(vpninfo)) { fprintf(stderr, _("Creating SSL connection failed\n")); openconnect_vpninfo_free(vpninfo); exit(1); } if (!vpnc_script) vpnc_script = xstrdup(default_vpncscript); STRDUP(vpninfo->vpnc_script, vpnc_script); if (vpninfo->dtls_state != DTLS_DISABLED && openconnect_setup_dtls(vpninfo, 60)) { /* Disable DTLS if we cannot set it up, otherwise * reconnects end up in infinite loop trying to connect * to non existing DTLS */ vpninfo->dtls_state = DTLS_DISABLED; fprintf(stderr, _("Set up UDP failed; using SSL instead\n")); } openconnect_get_ip_info(vpninfo, &ip_info, NULL, NULL); ssl_compr = openconnect_get_cstp_compression(vpninfo); udp_compr = openconnect_get_dtls_compression(vpninfo); vpn_progress(vpninfo, PRG_INFO, _("Connected as %s%s%s, using SSL%s%s, with %s%s%s %s\n"), ip_info->addr?:"", (ip_info->netmask6 && ip_info->addr) ? " + " : "", ip_info->netmask6 ? : "", ssl_compr ? " + " : "", ssl_compr ? : "", vpninfo->proto->udp_protocol ? : "UDP", udp_compr ? " + " : "", udp_compr ? : "", (vpninfo->dtls_state == DTLS_DISABLED || vpninfo->dtls_state == DTLS_NOSECRET ? _("disabled") : _("in progress"))); if (!vpninfo->vpnc_script) { vpn_progress(vpninfo, PRG_INFO, _("No --script argument provided; DNS and routing are not configured\n")); vpn_progress(vpninfo, PRG_INFO, _("See http://www.infradead.org/openconnect/vpnc-script.html\n")); } #ifndef _WIN32 if (background) { int pid; /* Open the pidfile before forking, so we can report errors more sanely. It's *possible* that we'll fail to write to it, but very unlikely. */ if (pidfile != NULL) { fp = openconnect_fopen_utf8(vpninfo, pidfile, "w"); if (!fp) { fprintf(stderr, _("Failed to open '%s' for write: %s\n"), pidfile, strerror(errno)); openconnect_vpninfo_free(vpninfo); exit(1); } } if ((pid = fork())) { if (fp) { fprintf(fp, "%d\n", pid); fclose(fp); } vpn_progress(vpninfo, PRG_INFO, _("Continuing in background; pid %d\n"), pid); openconnect_vpninfo_free(vpninfo); exit(0); } if (fp) fclose(fp); } #endif openconnect_set_loglevel(vpninfo, verbose); while (1) { ret = openconnect_mainloop(vpninfo, reconnect_timeout, RECONNECT_INTERVAL_MIN); if (ret) break; vpn_progress(vpninfo, PRG_INFO, _("User requested reconnect\n")); } if (fp) unlink(pidfile); switch (ret) { case -EPERM: vpn_progress(vpninfo, PRG_ERR, _("Cookie was rejected on reconnection; exiting.\n")); ret = 2; break; case -EPIPE: vpn_progress(vpninfo, PRG_ERR, _("Session terminated by server; exiting.\n")); ret = 1; break; case -EINTR: vpn_progress(vpninfo, PRG_INFO, _("User cancelled (SIGINT/SIGTERM); exiting.\n")); ret = 0; break; case -ECONNABORTED: vpn_progress(vpninfo, PRG_INFO, _("User detached from session (SIGHUP); exiting.\n")); ret = 0; break; default: vpn_progress(vpninfo, PRG_ERR, _("Unknown error; exiting.\n")); ret = 1; break; } openconnect_vpninfo_free(vpninfo); exit(ret); } static int write_new_config(void *_vpninfo, const char *buf, int buflen) { struct openconnect_info *vpninfo = _vpninfo; int config_fd; int err; config_fd = openconnect_open_utf8(vpninfo, vpninfo->xmlconfig, O_WRONLY|O_TRUNC|O_CREAT|O_BINARY); if (config_fd < 0) { err = errno; fprintf(stderr, _("Failed to open %s for write: %s\n"), vpninfo->xmlconfig, strerror(err)); return -err; } /* FIXME: We should actually write to a new tempfile, then rename */ if (write(config_fd, buf, buflen) != buflen) { err = errno; fprintf(stderr, _("Failed to write config to %s: %s\n"), vpninfo->xmlconfig, strerror(err)); close(config_fd); return -err; } close(config_fd); return 0; } static void __attribute__ ((format(printf, 3, 4))) write_progress(void *_vpninfo, int level, const char *fmt, ...) { FILE *outf = level ? stdout : stderr; va_list args; if (cookieonly) outf = stderr; if (verbose >= level) { if (timestamp) { char ts[64]; time_t t = time(NULL); struct tm *tm = localtime(&t); strftime(ts, 64, "[%Y-%m-%d %H:%M:%S] ", tm); fprintf(outf, "%s", ts); } va_start(args, fmt); vfprintf(outf, fmt, args); va_end(args); fflush(outf); } } struct accepted_cert { struct accepted_cert *next; char *fingerprint; char *host; int port; } *accepted_certs; static int validate_peer_cert(void *_vpninfo, const char *reason) { struct openconnect_info *vpninfo = _vpninfo; const char *fingerprint; struct accepted_cert *this; if (server_cert) { int err = openconnect_check_peer_cert_hash(vpninfo, server_cert); if (!err) return 0; if (err < 0) vpn_progress(vpninfo, PRG_ERR, _("Could not calculate hash of server's certificate\n")); else vpn_progress(vpninfo, PRG_ERR, _("Server SSL certificate didn't match: %s\n"), openconnect_get_peer_cert_hash(vpninfo)); return -EINVAL; } fingerprint = openconnect_get_peer_cert_hash(vpninfo); for (this = accepted_certs; this; this = this->next) { if (!strcasecmp(this->host, vpninfo->hostname) && this->port == vpninfo->port && !openconnect_check_peer_cert_hash(vpninfo, this->fingerprint)) return 0; } while (1) { char *details; char *response = NULL; fprintf(stderr, _("\nCertificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n"), vpninfo->hostname, reason); fprintf(stderr, _("To trust this server in future, perhaps add this to your command line:\n")); fprintf(stderr, _(" --servercert %s\n"), fingerprint); if (non_inter) return -EINVAL; fprintf(stderr, _("Enter '%s' to accept, '%s' to abort; anything else to view: "), _("yes"), _("no")); read_stdin(&response, 0, 0); if (!response) return -EINVAL; if (!strcasecmp(response, _("yes"))) { struct accepted_cert *newcert = malloc(sizeof(*newcert)); if (newcert) { newcert->next = accepted_certs; accepted_certs = newcert; newcert->fingerprint = strdup(fingerprint); newcert->host = strdup(vpninfo->hostname); newcert->port = vpninfo->port; } free(response); return 0; } if (!strcasecmp(response, _("no"))) { free(response); return -EINVAL; } free(response); details = openconnect_get_peer_cert_details(vpninfo); fputs(details, stderr); openconnect_free_cert_info(vpninfo, details); fprintf(stderr, _("Server key hash: %s\n"), fingerprint); } } static int match_choice_label(struct openconnect_info *vpninfo, struct oc_form_opt_select *select_opt, char *label) { int i, input_len, partial_matches = 0; char *match = NULL; input_len = strlen(label); if (input_len < 1) return -EINVAL; for (i = 0; i < select_opt->nr_choices; i++) { struct oc_choice *choice = select_opt->choices[i]; if (!strncasecmp(label, choice->label, input_len)) { if (strlen(choice->label) == input_len) { select_opt->form._value = choice->name; return 0; } else { match = choice->name; partial_matches++; } } } if (partial_matches == 1) { select_opt->form._value = match; return 0; } else if (partial_matches > 1) { vpn_progress(vpninfo, PRG_ERR, _("Auth choice \"%s\" matches multiple options\n"), label); return -EINVAL; } else { vpn_progress(vpninfo, PRG_ERR, _("Auth choice \"%s\" not available\n"), label); return -EINVAL; } } static char *prompt_for_input(const char *prompt, struct openconnect_info *vpninfo, int hidden) { char *response = NULL; fprintf(stderr, "%s", prompt); fflush(stderr); if (non_inter) { if (allow_stdin_read) { read_stdin(&response, hidden, 1); } if (response == NULL) { fprintf(stderr, "***\n"); vpn_progress(vpninfo, PRG_ERR, _("User input required in non-interactive mode\n")); } return response; } read_stdin(&response, hidden, 0); return response; } static int prompt_opt_select(struct openconnect_info *vpninfo, struct oc_form_opt_select *select_opt, char **saved_response) { int i; char *response; if (!select_opt->nr_choices) return -EINVAL; retry: fprintf(stderr, "%s [", select_opt->form.label); for (i = 0; i < select_opt->nr_choices; i++) { struct oc_choice *choice = select_opt->choices[i]; if (i) fprintf(stderr, "|"); fprintf(stderr, "%s", choice->label); } fprintf(stderr, "]:"); if (select_opt->nr_choices == 1) { response = strdup(select_opt->choices[0]->label); fprintf(stderr, "%s\n", response); } else response = prompt_for_input("", vpninfo, 0); if (!response) return -EINVAL; if (match_choice_label(vpninfo, select_opt, response) < 0) { free(response); goto retry; } if (saved_response) *saved_response = response; else free(response); return 0; } struct form_field { struct form_field *next; char *form_id; char *opt_id; char *value; }; static struct form_field *form_fields = NULL; static void add_form_field(char *arg) { struct form_field *ff; char *opt, *value = strchr(arg, '='); if (!value || value == arg) { bad_field: fprintf(stderr, "Form field invalid. Use --form-entry=FORM_ID:OPT_NAME=VALUE\n"); exit(1); } *(value++) = 0; opt = strchr(arg, ':'); if (!opt || opt == arg) goto bad_field; *(opt++) = 0; ff = malloc(sizeof(*ff)); if (!ff) { fprintf(stderr, "Out of memory for form field\n"); exit(1); } ff->form_id = arg; ff->opt_id = opt; ff->value = value; ff->next = form_fields; form_fields = ff; } static char *saved_form_field(struct openconnect_info *vpninfo, const char *form_id, const char *opt_id) { struct form_field *ff = form_fields; while (ff) { if (!strcmp(form_id, ff->form_id) && !strcmp(ff->opt_id, opt_id)) return strdup(ff->value); ff = ff->next; } return NULL; } /* Return value: * < 0, on error * = 0, when form was parsed and POST required * = 1, when response was cancelled by user */ static int process_auth_form_cb(void *_vpninfo, struct oc_auth_form *form) { struct openconnect_info *vpninfo = _vpninfo; struct oc_form_opt *opt; int empty = 1; if (form->banner && verbose > PRG_ERR) fprintf(stderr, "%s\n", form->banner); if (form->error) fprintf(stderr, "%s\n", form->error); if (form->message && verbose > PRG_ERR) fprintf(stderr, "%s\n", form->message); /* Special handling for GROUP: field if present, as different group selections can make other fields disappear/reappear */ if (form->authgroup_opt) { if (!authgroup) authgroup = saved_form_field(vpninfo, form->auth_id, form->authgroup_opt->form.name); if (!authgroup || match_choice_label(vpninfo, form->authgroup_opt, authgroup) != 0) { if (prompt_opt_select(vpninfo, form->authgroup_opt, &authgroup) < 0) goto err; } if (!authgroup_set) { authgroup_set = 1; return OC_FORM_RESULT_NEWGROUP; } } for (opt = form->opts; opt; opt = opt->next) { if (opt->flags & OC_FORM_OPT_IGNORE) continue; /* I haven't actually seen a non-authgroup dropdown in the wild, but the Cisco clients do support them */ if (opt->type == OC_FORM_OPT_SELECT) { struct oc_form_opt_select *select_opt = (void *)opt; char *opt_response; if (select_opt == form->authgroup_opt) continue; opt_response = saved_form_field(vpninfo, form->auth_id, select_opt->form.name); if (opt_response && match_choice_label(vpninfo, select_opt, opt_response) == 0) { free(opt_response); continue; } free(opt_response); if (prompt_opt_select(vpninfo, select_opt, NULL) < 0) goto err; empty = 0; } else if (opt->type == OC_FORM_OPT_TEXT) { if (username && !strncmp(opt->name, "user", 4)) { opt->_value = username; username = NULL; } else { opt->_value = saved_form_field(vpninfo, form->auth_id, opt->name); if (!opt->_value) opt->_value = prompt_for_input(opt->label, vpninfo, 0); } if (!opt->_value) goto err; empty = 0; } else if (opt->type == OC_FORM_OPT_PASSWORD) { if (password) { opt->_value = password; password = NULL; } else { opt->_value = saved_form_field(vpninfo, form->auth_id, opt->name); if (!opt->_value) opt->_value = prompt_for_input(opt->label, vpninfo, 1); } if (!opt->_value) goto err; empty = 0; } else if (opt->type == OC_FORM_OPT_TOKEN) { /* Nothing to do here, but if the tokencode is being * automatically generated then don't treat it as an * empty form for the purpose of loop avoidance. */ empty = 0; } } /* prevent infinite loops if the authgroup requires certificate auth only */ if (last_form_empty && empty) return OC_FORM_RESULT_CANCELLED; last_form_empty = empty; return OC_FORM_RESULT_OK; err: return OC_FORM_RESULT_ERR; } static int lock_token(void *tokdata) { struct openconnect_info *vpninfo = tokdata; char *file_token; int err; /* FIXME: Actually lock the file */ err = read_file_into_string(vpninfo, token_filename, &file_token); if (err < 0) return err; err = openconnect_set_token_mode(vpninfo, vpninfo->token_mode, file_token); free(file_token); return 0; } static int unlock_token(void *tokdata, const char *new_tok) { struct openconnect_info *vpninfo = tokdata; int tok_fd; int err; if (!new_tok) return 0; tok_fd = openconnect_open_utf8(vpninfo, token_filename, O_WRONLY|O_TRUNC|O_CREAT|O_BINARY); if (tok_fd < 0) { err = errno; fprintf(stderr, _("Failed to open token file for write: %s\n"), strerror(err)); return -err; } /* FIXME: We should actually write to a new tempfile, then rename */ if (write(tok_fd, new_tok, strlen(new_tok)) != strlen(new_tok)) { err = errno; fprintf(stderr, _("Failed to write token: %s\n"), strerror(err)); close(tok_fd); return -err; } close(tok_fd); return 0; } static void init_token(struct openconnect_info *vpninfo, oc_token_mode_t token_mode, const char *token_str) { int ret; char *file_token = NULL; if (token_str) { switch(token_str[0]) { case '@': token_str++; /* fall through... */ case '/': if (read_file_into_string(vpninfo, token_str, &file_token) < 0) exit(1); break; default: /* Use token_str as raw data */ break; } } ret = openconnect_set_token_mode(vpninfo, token_mode, file_token ? : token_str); if (file_token) { token_filename = strdup(token_str); openconnect_set_token_callbacks(vpninfo, vpninfo, lock_token, unlock_token); free(file_token); } switch (token_mode) { case OC_TOKEN_MODE_STOKEN: switch (ret) { case 0: return; case -EINVAL: fprintf(stderr, _("Soft token string is invalid\n")); exit(1); case -ENOENT: fprintf(stderr, _("Can't open ~/.stokenrc file\n")); exit(1); case -EOPNOTSUPP: fprintf(stderr, _("OpenConnect was not built with libstoken support\n")); exit(1); default: fprintf(stderr, _("General failure in libstoken\n")); exit(1); } break; case OC_TOKEN_MODE_TOTP: case OC_TOKEN_MODE_HOTP: switch (ret) { case 0: return; case -EINVAL: fprintf(stderr, _("Soft token string is invalid\n")); exit(1); case -EOPNOTSUPP: fprintf(stderr, _("OpenConnect was not built with liboath support\n")); exit(1); default: fprintf(stderr, _("General failure in liboath\n")); exit(1); } break; case OC_TOKEN_MODE_YUBIOATH: switch(ret) { case 0: return; case -ENOENT: fprintf(stderr, _("Yubikey token not found\n")); exit(1); case -EOPNOTSUPP: fprintf(stderr, _("OpenConnect was not built with Yubikey support\n")); exit(1); default: fprintf(stderr, _("General Yubikey failure: %s\n"), strerror(-ret)); exit(1); } case OC_TOKEN_MODE_NONE: /* No-op */ break; /* Option parsing already checked for invalid modes. */ } } openconnect-8.05/gpst.c0000664000076400007640000012526413513324634016674 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2016-2017 Daniel Lenski * * Author: Daniel Lenski * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include #include #include #include #include #ifndef _WIN32 #include #endif #include #ifdef HAVE_LZ4 #include #endif #ifdef _WIN32 #include "win32-ipicmp.h" #else /* The BSDs require the first two headers before netinet/ip.h * (Linux and macOS already #include them within netinet/ip.h) */ #include #include #include #include #include #endif #if defined(__linux__) /* For TCP_INFO */ # include #endif #include #include "openconnect-internal.h" /* * Data packets are encapsulated in the SSL stream as follows: * * 0000: Magic "\x1a\x2b\x3c\x4d" * 0004: Big-endian EtherType (0x0800 for IPv4) * 0006: Big-endian 16-bit length (not including 16-byte header) * 0008: Always "\x01\0\0\0\0\0\0\0" * 0010: data payload */ /* Strange initialisers here to work around GCC PR#10676 (which was * fixed in GCC 4.6 but it takes a while for some systems to catch * up. */ static const struct pkt dpd_pkt = { .next = NULL, { .gpst.hdr = { 0x1a, 0x2b, 0x3c, 0x4d } } }; /* We behave like CSTP — create a linked list in vpninfo->cstp_options * with the strings containing the information we got from the server, * and oc_ip_info contains const copies of those pointers. * * (unlike version in oncp.c, val is stolen rather than strdup'ed) */ static const char *add_option(struct openconnect_info *vpninfo, const char *opt, char **val) { struct oc_vpn_option *new = malloc(sizeof(*new)); if (!new) return NULL; new->option = strdup(opt); if (!new->option) { free(new); return NULL; } new->value = *val; *val = NULL; new->next = vpninfo->cstp_options; vpninfo->cstp_options = new; return new->value; } static int filter_opts(struct oc_text_buf *buf, const char *query, const char *incexc, int include) { const char *f, *endf, *eq; const char *found, *comma; for (f = query; *f; f=(*endf) ? endf+1 : endf) { endf = strchr(f, '&') ? : f+strlen(f); eq = strchr(f, '='); if (!eq || eq > endf) eq = endf; for (found = incexc; *found; found=(*comma) ? comma+1 : comma) { comma = strchr(found, ',') ? : found+strlen(found); if (!strncmp(found, f, MAX(comma-found, eq-f))) break; } if ((include && *found) || (!include && !*found)) { if (buf->pos && buf->data[buf->pos-1] != '?' && buf->data[buf->pos-1] != '&') buf_append(buf, "&"); buf_append_bytes(buf, f, (int)(endf-f)); } } return buf_error(buf); } /* Parse this JavaScript-y mess: "var respStatus = \"Challenge|Error\";\n" "var respMsg = \"\";\n" "thisForm.inputStr.value = "";\n" */ static int parse_javascript(char *buf, char **prompt, char **inputStr) { const char *start, *end = buf; int status; const char *pre_status = "var respStatus = \"", *pre_prompt = "var respMsg = \"", *pre_inputStr = "thisForm.inputStr.value = \""; /* Status */ while (isspace(*end)) end++; if (strncmp(end, pre_status, strlen(pre_status))) goto err; start = end+strlen(pre_status); end = strchr(start, '\n'); if (!end || end[-1] != ';' || end[-2] != '"') goto err; if (!strncmp(start, "Challenge", 8)) status = 0; else if (!strncmp(start, "Error", 5)) status = 1; else goto err; /* Prompt */ while (isspace(*end)) end++; if (strncmp(end, pre_prompt, strlen(pre_prompt))) goto err; start = end+strlen(pre_prompt); end = strchr(start, '\n'); if (!end || end[-1] != ';' || end[-2] != '"' || (end.. ? */ if (xmlnode_is_named(xml_node, "response") && !xmlnode_match_prop(xml_node, "status", "error")) { for (xml_node=xml_node->children; xml_node; xml_node=xml_node->next) { if (!xmlnode_get_val(xml_node, "error", &err)) goto out; } goto bad_xml; } /* Is it Error.. ? */ if (xmlnode_is_named(xml_node, "prelogin-response")) { char *s = NULL; int has_err = 0; xmlNode *x; for (x=xml_node->children; x; x=x->next) { if (!xmlnode_get_val(x, "status", &s)) has_err = strcmp(s, "Success"); else xmlnode_get_val(x, "msg", &err); } free(s); if (has_err) goto out; free(err); err = NULL; } /* is it user.name...... */ if (xmlnode_is_named(xml_node, "challenge")) { for (xml_node=xml_node->children; xml_node; xml_node=xml_node->next) { xmlnode_get_val(xml_node, "inputstr", &inputStr); xmlnode_get_val(xml_node, "respmsg", &prompt); /* XXX: override the username passed to the next form from ? */ } result = challenge_cb ? challenge_cb(vpninfo, prompt, inputStr, cb_data) : -EINVAL; free(prompt); free(inputStr); goto bad_xml; } /* if it's XML, invoke callback (or default to success) */ result = xml_cb ? xml_cb(vpninfo, xml_node, cb_data) : 0; bad_xml: if (result == -EINVAL) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse server response\n")); vpn_progress(vpninfo, PRG_DEBUG, _("Response was:%s\n"), response); } out: if (err) { if (!strcmp(err, "GlobalProtect gateway does not exist") || !strcmp(err, "GlobalProtect portal does not exist")) { vpn_progress(vpninfo, PRG_DEBUG, "%s\n", err); result = -EEXIST; } else if (!strcmp(err, "Invalid authentication cookie") || !strcmp(err, "Valid client certificate is required")) { vpn_progress(vpninfo, PRG_ERR, "%s\n", err); result = -EPERM; } else { vpn_progress(vpninfo, PRG_ERR, "%s\n", err); result = -EINVAL; } free(err); } if (xml_doc) xmlFreeDoc(xml_doc); return result; } #define ESP_HEADER_SIZE (4 /* SPI */ + 4 /* sequence number */) #define ESP_FOOTER_SIZE (1 /* pad length */ + 1 /* next header */) #define UDP_HEADER_SIZE 8 #define TCP_HEADER_SIZE 20 /* with no options */ #define IPV4_HEADER_SIZE 20 #define IPV6_HEADER_SIZE 40 /* Based on cstp.c's calculate_mtu(). * * With HTTPS tunnel, there are 21 bytes of overhead beyond the * TCP MSS: 5 bytes for TLS and 16 for GPST. */ static int calculate_mtu(struct openconnect_info *vpninfo, int can_use_esp) { int mtu = vpninfo->reqmtu, base_mtu = vpninfo->basemtu; int mss = 0; #if defined(__linux__) && defined(TCP_INFO) if (!mtu) { struct tcp_info ti; socklen_t ti_size = sizeof(ti); if (!getsockopt(vpninfo->ssl_fd, IPPROTO_TCP, TCP_INFO, &ti, &ti_size)) { vpn_progress(vpninfo, PRG_DEBUG, _("TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n"), ti.tcpi_rcv_mss, ti.tcpi_snd_mss, ti.tcpi_advmss, ti.tcpi_pmtu); if (!base_mtu) { base_mtu = ti.tcpi_pmtu; } /* XXX: GlobalProtect has no mechanism to inform the server about the * desired MTU, so could just ignore the "incoming" MSS (tcpi_rcv_mss). */ mss = MIN(ti.tcpi_rcv_mss, ti.tcpi_snd_mss); } } #endif #ifdef TCP_MAXSEG if (!mtu && !mss) { socklen_t mss_size = sizeof(mss); if (!getsockopt(vpninfo->ssl_fd, IPPROTO_TCP, TCP_MAXSEG, &mss, &mss_size)) { vpn_progress(vpninfo, PRG_DEBUG, _("TCP_MAXSEG %d\n"), mss); } } #endif if (!base_mtu) { /* Default */ base_mtu = 1406; } if (base_mtu < 1280) base_mtu = 1280; #ifdef HAVE_ESP /* If we can use the ESP tunnel then we should pick the optimal MTU for ESP. */ if (!mtu && can_use_esp) { /* remove ESP, UDP, IP headers from base (wire) MTU */ mtu = ( base_mtu - UDP_HEADER_SIZE - ESP_HEADER_SIZE - vpninfo->hmac_out_len - MAX_IV_SIZE); if (vpninfo->peer_addr->sa_family == AF_INET6) mtu -= IPV6_HEADER_SIZE; else mtu -= IPV4_HEADER_SIZE; /* round down to a multiple of blocksize (16 bytes for both AES-128 and AES-256) */ mtu -= mtu % 16; /* subtract ESP footer, which is included in the payload before padding to the blocksize */ mtu -= ESP_FOOTER_SIZE; } else #endif /* We are definitely using the TLS tunnel, so we should base our MTU on the TCP MSS. */ if (!mtu) { if (mss) mtu = mss - 21; else { mtu = base_mtu - TCP_HEADER_SIZE - 21; if (vpninfo->peer_addr->sa_family == AF_INET6) mtu -= IPV6_HEADER_SIZE; else mtu -= IPV4_HEADER_SIZE; } } return mtu; } #ifdef HAVE_ESP static int check_hmac_algo(struct openconnect_info *v, const char *s) { if (!strcmp(s, "sha1")) return HMAC_SHA1; if (!strcmp(s, "md5")) return HMAC_MD5; if (!strcmp(s, "sha256")) return HMAC_SHA256; vpn_progress(v, PRG_ERR, _("Unknown ESP MAC algorithm: %s"), s); return -ENOENT; } static int check_enc_algo(struct openconnect_info *v, const char *s) { if (!strcmp(s, "aes128") || !strcmp(s, "aes-128-cbc")) return ENC_AES_128_CBC; if (!strcmp(s, "aes-256-cbc")) return ENC_AES_256_CBC; vpn_progress(v, PRG_ERR, _("Unknown ESP encryption algorithm: %s"), s); return -ENOENT; } /* Reads Nhex digits and saves the * key in dest, returning its length in bytes. */ static int xml_to_key(xmlNode *xml_node, unsigned char *dest, int dest_size) { int explen = -1, len = 0; xmlNode *child; char *p, *s = NULL; for (child = xml_node->children; child; child=child->next) { if (xmlnode_get_val(child, "bits", &s) == 0) { explen = atoi(s); if (explen & 0x07) goto out; explen >>= 3; } else if (xmlnode_get_val(child, "val", &s) == 0) { for (p=s; p[0] && p[1]; p+=2) if (len++ < dest_size) *dest++ = unhex(p); } } out: free(s); return (len == explen) ? len : -EINVAL; } #endif /* Return value: * < 0, on error * = 0, on success; *form is populated */ static int gpst_parse_config_xml(struct openconnect_info *vpninfo, xmlNode *xml_node, void *cb_data) { xmlNode *member; char *s = NULL; int ii; if (!xml_node || !xmlnode_is_named(xml_node, "response")) return -EINVAL; /* Clear old options which will be overwritten */ vpninfo->ip_info.addr = vpninfo->ip_info.netmask = NULL; vpninfo->ip_info.addr6 = vpninfo->ip_info.netmask6 = NULL; vpninfo->ip_info.domain = NULL; vpninfo->ip_info.mtu = 0; vpninfo->esp_magic = inet_addr(vpninfo->ip_info.gateway_addr); vpninfo->esp_replay_protect = 1; vpninfo->ssl_times.rekey_method = REKEY_NONE; vpninfo->cstp_options = NULL; for (ii = 0; ii < 3; ii++) vpninfo->ip_info.dns[ii] = vpninfo->ip_info.nbns[ii] = NULL; free_split_routes(vpninfo); /* Parse config */ for (xml_node = xml_node->children; xml_node; xml_node=xml_node->next) { if (!xmlnode_get_val(xml_node, "ip-address", &s)) vpninfo->ip_info.addr = add_option(vpninfo, "ipaddr", &s); else if (!xmlnode_get_val(xml_node, "netmask", &s)) vpninfo->ip_info.netmask = add_option(vpninfo, "netmask", &s); else if (!xmlnode_get_val(xml_node, "mtu", &s)) vpninfo->ip_info.mtu = atoi(s); else if (!xmlnode_get_val(xml_node, "lifetime", &s)) vpn_progress(vpninfo, PRG_INFO, _("Session will expire after %d minutes.\n"), atoi(s)/60); else if (!xmlnode_get_val(xml_node, "disconnect-on-idle", &s)) { int sec = atoi(s); vpn_progress(vpninfo, PRG_INFO, _("Idle timeout is %d minutes.\n"), sec/60); vpninfo->idle_timeout = sec; } else if (!xmlnode_get_val(xml_node, "ssl-tunnel-url", &s)) { free(vpninfo->urlpath); vpninfo->urlpath = s; if (strcmp(s, "/ssl-tunnel-connect.sslvpn")) vpn_progress(vpninfo, PRG_INFO, _("Non-standard SSL tunnel path: %s\n"), s); s = NULL; } else if (!xmlnode_get_val(xml_node, "timeout", &s)) { int sec = atoi(s); vpn_progress(vpninfo, PRG_INFO, _("Tunnel timeout (rekey interval) is %d minutes.\n"), sec/60); vpninfo->ssl_times.last_rekey = time(NULL); vpninfo->ssl_times.rekey = sec - 60; vpninfo->ssl_times.rekey_method = REKEY_TUNNEL; } else if (!xmlnode_get_val(xml_node, "gw-address", &s)) { /* As remarked in oncp.c, "this is a tunnel; having a * gateway is meaningless." See esp_send_probes_gp for the * gory details of what this field actually means. */ if (strcmp(s, vpninfo->ip_info.gateway_addr)) vpn_progress(vpninfo, PRG_DEBUG, _("Gateway address in config XML (%s) differs from external gateway address (%s).\n"), s, vpninfo->ip_info.gateway_addr); vpninfo->esp_magic = inet_addr(s); } else if (xmlnode_is_named(xml_node, "dns")) { for (ii=0, member = xml_node->children; member && ii<3; member=member->next) if (!xmlnode_get_val(member, "member", &s)) vpninfo->ip_info.dns[ii++] = add_option(vpninfo, "DNS", &s); } else if (xmlnode_is_named(xml_node, "wins")) { for (ii=0, member = xml_node->children; member && ii<3; member=member->next) if (!xmlnode_get_val(member, "member", &s)) vpninfo->ip_info.nbns[ii++] = add_option(vpninfo, "WINS", &s); } else if (xmlnode_is_named(xml_node, "dns-suffix")) { struct oc_text_buf *domains = buf_alloc(); for (member = xml_node->children; member; member=member->next) if (!xmlnode_get_val(member, "member", &s)) buf_append(domains, "%s ", s); if (buf_error(domains) == 0 && domains->pos > 0) { domains->data[domains->pos-1] = '\0'; vpninfo->ip_info.domain = add_option(vpninfo, "search", &domains->data); } buf_free(domains); } else if (xmlnode_is_named(xml_node, "access-routes") || xmlnode_is_named(xml_node, "exclude-access-routes")) { for (member = xml_node->children; member; member=member->next) { if (!xmlnode_get_val(member, "member", &s)) { struct oc_split_include *inc = malloc(sizeof(*inc)); if (!inc) continue; if (xmlnode_is_named(xml_node, "access-routes")) { inc->route = add_option(vpninfo, "split-include", &s); inc->next = vpninfo->ip_info.split_includes; vpninfo->ip_info.split_includes = inc; } else { inc->route = add_option(vpninfo, "split-exclude", &s); inc->next = vpninfo->ip_info.split_excludes; vpninfo->ip_info.split_excludes = inc; } } } } else if (xmlnode_is_named(xml_node, "ipsec")) { #ifdef HAVE_ESP if (vpninfo->dtls_state != DTLS_DISABLED) { int c = (vpninfo->current_esp_in ^= 1); struct esp *ei = &vpninfo->esp_in[c], *eo = &vpninfo->esp_out; vpninfo->old_esp_maxseq = vpninfo->esp_in[c^1].seq + 32; for (member = xml_node->children; member; member=member->next) { if (!xmlnode_get_val(member, "udp-port", &s)) udp_sockaddr(vpninfo, atoi(s)); else if (!xmlnode_get_val(member, "enc-algo", &s)) vpninfo->esp_enc = check_enc_algo(vpninfo, s); else if (!xmlnode_get_val(member, "hmac-algo", &s)) vpninfo->esp_hmac = check_hmac_algo(vpninfo, s); else if (!xmlnode_get_val(member, "c2s-spi", &s)) eo->spi = htonl(strtoul(s, NULL, 16)); else if (!xmlnode_get_val(member, "s2c-spi", &s)) ei->spi = htonl(strtoul(s, NULL, 16)); else if (xmlnode_is_named(member, "ekey-c2s")) vpninfo->enc_key_len = xml_to_key(member, eo->enc_key, sizeof(eo->enc_key)); else if (xmlnode_is_named(member, "ekey-s2c")) vpninfo->enc_key_len = xml_to_key(member, ei->enc_key, sizeof(ei->enc_key)); else if (xmlnode_is_named(member, "akey-c2s")) vpninfo->hmac_key_len = xml_to_key(member, eo->hmac_key, sizeof(eo->hmac_key)); else if (xmlnode_is_named(member, "akey-s2c")) vpninfo->hmac_key_len = xml_to_key(member, ei->hmac_key, sizeof(ei->hmac_key)); else if (!xmlnode_get_val(member, "ipsec-mode", &s) && strcmp(s, "esp-tunnel")) vpn_progress(vpninfo, PRG_ERR, _("GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n"), s); } if (openconnect_setup_esp_keys(vpninfo, 0)) vpn_progress(vpninfo, PRG_ERR, "Failed to setup ESP keys.\n"); else /* prevent race condition between esp_mainloop() and gpst_mainloop() timers */ vpninfo->dtls_times.last_rekey = time(&vpninfo->new_dtls_started); } #else vpn_progress(vpninfo, PRG_DEBUG, _("Ignoring ESP keys since ESP support not available in this build\n")); #endif } else if (xmlnode_is_named(xml_node, "need-tunnel") || xmlnode_is_named(xml_node, "bw-c2s") || xmlnode_is_named(xml_node, "bw-s2c") || xmlnode_is_named(xml_node, "default-gateway") || xmlnode_is_named(xml_node, "no-direct-access-to-local-network") || xmlnode_is_named(xml_node, "ip-address-preferred") || xmlnode_is_named(xml_node, "portal") || xmlnode_is_named(xml_node, "user")) { /* XX: Do these have any potential value at all for routing configuration or diagnostics? */ } else if (xml_node->type == XML_ELEMENT_NODE) { /* XX: Don't know what tags are used for IPv6 addresses and networks, since * we haven't yet seen a real GlobalProtect VPN with IPv6 internal addresses. */ free(s); s = (char *)xmlNodeGetContent(xml_node); if (strchr((char *)xml_node->name, '6')) vpn_progress(vpninfo, PRG_ERR, _("Potential IPv6-related GlobalProtect config tag <%s>: %s\n" "This build does not support GlobalProtect IPv6 due to a lack of\n" "of information on how it is configured. Please report this\n" "to .\n"), xml_node->name, s); else vpn_progress(vpninfo, PRG_DEBUG, _("Unknown GlobalProtect config tag <%s>: %s\n"), xml_node->name, s); } } /* Set 10-second DPD/keepalive (same as Windows client) unless * overridden with --force-dpd */ if (!vpninfo->ssl_times.dpd) vpninfo->ssl_times.dpd = 10; vpninfo->ssl_times.keepalive = vpninfo->esp_ssl_fallback = vpninfo->ssl_times.dpd; free(s); return 0; } static int gpst_get_config(struct openconnect_info *vpninfo) { char *orig_path; int result; struct oc_text_buf *request_body = buf_alloc(); struct oc_vpn_option *old_cstp_opts = vpninfo->cstp_options; const char *old_addr = vpninfo->ip_info.addr, *old_netmask = vpninfo->ip_info.netmask; const char *old_addr6 = vpninfo->ip_info.addr6, *old_netmask6 = vpninfo->ip_info.netmask6; const char *request_body_type = "application/x-www-form-urlencoded"; const char *method = "POST"; char *xml_buf=NULL; /* submit getconfig request */ buf_append(request_body, "client-type=1&protocol-version=p1&app-version=4.0.5-8"); append_opt(request_body, "clientos", gpst_os_name(vpninfo)); append_opt(request_body, "os-version", vpninfo->platname); append_opt(request_body, "hmac-algo", "sha1,md5,sha256"); append_opt(request_body, "enc-algo", "aes-128-cbc,aes-256-cbc"); if (old_addr || old_addr6) { append_opt(request_body, "preferred-ip", old_addr); append_opt(request_body, "preferred-ipv6", old_addr6); filter_opts(request_body, vpninfo->cookie, "preferred-ip,preferred-ipv6", 0); } else buf_append(request_body, "&%s", vpninfo->cookie); if ((result = buf_error(request_body))) goto out; orig_path = vpninfo->urlpath; vpninfo->urlpath = strdup("ssl-vpn/getconfig.esp"); result = do_https_request(vpninfo, method, request_body_type, request_body, &xml_buf, 0); free(vpninfo->urlpath); vpninfo->urlpath = orig_path; /* parse getconfig result */ if (result >= 0) result = gpst_xml_or_error(vpninfo, xml_buf, gpst_parse_config_xml, NULL, NULL); if (result) goto out; if (!vpninfo->ip_info.mtu) { /* FIXME: GP gateway config always seems to be 0 */ char *no_esp_reason = NULL; #ifdef HAVE_ESP if (vpninfo->dtls_state == DTLS_DISABLED) no_esp_reason = _("ESP disabled"); else if (vpninfo->dtls_state == DTLS_NOSECRET) no_esp_reason = _("No ESP keys received"); #else no_esp_reason = _("ESP support not available in this build"); #endif vpninfo->ip_info.mtu = calculate_mtu(vpninfo, !no_esp_reason); vpn_progress(vpninfo, PRG_ERR, _("No MTU received. Calculated %d for %s%s\n"), vpninfo->ip_info.mtu, no_esp_reason ? "SSL tunnel. " : "ESP tunnel", no_esp_reason ? : ""); /* return -EINVAL; */ } if (!vpninfo->ip_info.addr && !vpninfo->ip_info.addr6 && !vpninfo->ip_info.netmask6) { vpn_progress(vpninfo, PRG_ERR, _("No IP address received. Aborting\n")); result = -EINVAL; goto out; } if (old_addr) { if (strcmp(old_addr, vpninfo->ip_info.addr)) { vpn_progress(vpninfo, PRG_ERR, _("Reconnect gave different Legacy IP address (%s != %s)\n"), vpninfo->ip_info.addr, old_addr); result = -EINVAL; goto out; } } if (old_netmask) { if (strcmp(old_netmask, vpninfo->ip_info.netmask)) { vpn_progress(vpninfo, PRG_ERR, _("Reconnect gave different Legacy IP netmask (%s != %s)\n"), vpninfo->ip_info.netmask, old_netmask); result = -EINVAL; goto out; } } if (old_addr6) { if (strcmp(old_addr6, vpninfo->ip_info.addr6)) { vpn_progress(vpninfo, PRG_ERR, _("Reconnect gave different IPv6 address (%s != %s)\n"), vpninfo->ip_info.addr6, old_addr6); return -EINVAL; } } if (old_netmask6) { if (strcmp(old_netmask6, vpninfo->ip_info.netmask6)) { vpn_progress(vpninfo, PRG_ERR, _("Reconnect gave different IPv6 netmask (%s != %s)\n"), vpninfo->ip_info.netmask6, old_netmask6); return -EINVAL; } } out: free_optlist(old_cstp_opts); buf_free(request_body); free(xml_buf); return result; } static int gpst_connect(struct openconnect_info *vpninfo) { int ret; struct oc_text_buf *reqbuf; const char start_tunnel[12] = "START_TUNNEL"; /* NOT zero-terminated */ char buf[256]; /* Connect to SSL VPN tunnel */ vpn_progress(vpninfo, PRG_DEBUG, _("Connecting to HTTPS tunnel endpoint ...\n")); ret = openconnect_open_https(vpninfo); if (ret) return ret; reqbuf = buf_alloc(); buf_append(reqbuf, "GET %s?", vpninfo->urlpath); filter_opts(reqbuf, vpninfo->cookie, "user,authcookie", 1); buf_append(reqbuf, " HTTP/1.1\r\n\r\n"); if ((ret = buf_error(reqbuf))) goto out; if (vpninfo->dump_http_traffic) dump_buf(vpninfo, '>', reqbuf->data); vpninfo->ssl_write(vpninfo, reqbuf->data, reqbuf->pos); if ((ret = vpninfo->ssl_read(vpninfo, buf, 12)) < 0) { if (ret == -EINTR) goto out; vpn_progress(vpninfo, PRG_ERR, _("Error fetching GET-tunnel HTTPS response.\n")); ret = -EINVAL; goto out; } if (!strncmp(buf, start_tunnel, sizeof(start_tunnel))) { ret = 0; } else if (ret==0) { vpn_progress(vpninfo, PRG_ERR, _("Gateway disconnected immediately after GET-tunnel request.\n")); ret = -EPIPE; } else { if (ret==sizeof(start_tunnel)) { ret = vpninfo->ssl_gets(vpninfo, buf+sizeof(start_tunnel), sizeof(buf)-sizeof(start_tunnel)); ret = (ret>0 ? ret : 0) + sizeof(start_tunnel); } vpn_progress(vpninfo, PRG_ERR, _("Got inappropriate HTTP GET-tunnel response: %.*s\n"), ret, buf); ret = -EINVAL; } if (ret < 0) openconnect_close_https(vpninfo, 0); else { monitor_fd_new(vpninfo, ssl); monitor_read_fd(vpninfo, ssl); monitor_except_fd(vpninfo, ssl); vpninfo->ssl_times.last_rx = vpninfo->ssl_times.last_tx = time(NULL); /* connecting the HTTPS tunnel totally invalidates the ESP keys, hence shutdown */ if (vpninfo->proto->udp_shutdown) vpninfo->proto->udp_shutdown(vpninfo); } out: buf_free(reqbuf); return ret; } static int parse_hip_report_check(struct openconnect_info *vpninfo, xmlNode *xml_node, void *cb_data) { char *s = NULL; int result = -EINVAL; if (!xml_node || !xmlnode_is_named(xml_node, "response")) goto out; for (xml_node = xml_node->children; xml_node; xml_node=xml_node->next) { if (!xmlnode_get_val(xml_node, "hip-report-needed", &s)) { if (!strcmp(s, "no")) result = 0; else if (!strcmp(s, "yes")) result = -EAGAIN; else result = -EINVAL; goto out; } } out: free(s); return result; } /* Unlike CSD, the HIP security checker runs during the connection * phase, not during the authentication phase. * * The HIP security checker will (probably) ask us to resubmit the * HIP report if either of the following changes: * - Client IP address * - Client HIP report md5sum * * I'm not sure what the md5sum is computed over in the official * client, but it doesn't really matter. * * We just need an identifier for the combination of the local host * and the VPN gateway which won't change when our IP address * or authcookie are changed. */ static int build_csd_token(struct openconnect_info *vpninfo) { struct oc_text_buf *buf; unsigned char md5[16]; int i; if (vpninfo->csd_token) return 0; vpninfo->csd_token = malloc(MD5_SIZE * 2 + 1); if (!vpninfo->csd_token) return -ENOMEM; /* use cookie (excluding volatile authcookie and preferred-ip) to build md5sum */ buf = buf_alloc(); filter_opts(buf, vpninfo->cookie, "authcookie,preferred-ip", 0); if (buf_error(buf)) goto out; /* save as csd_token */ openconnect_md5(md5, buf->data, buf->pos); for (i=0; i < MD5_SIZE; i++) sprintf(&vpninfo->csd_token[i*2], "%02x", md5[i]); out: return buf_free(buf); } /* check if HIP report is needed (to ssl-vpn/hipreportcheck.esp) or submit HIP report contents (to ssl-vpn/hipreport.esp) */ static int check_or_submit_hip_report(struct openconnect_info *vpninfo, const char *report) { int result; struct oc_text_buf *request_body = buf_alloc(); const char *request_body_type = "application/x-www-form-urlencoded"; const char *method = "POST"; char *xml_buf=NULL, *orig_path; /* cookie gives us these fields: authcookie, portal, user, domain, computer, and (maybe the unnecessary) preferred-ip */ buf_append(request_body, "client-role=global-protect-full&%s", vpninfo->cookie); if (vpninfo->ip_info.addr) append_opt(request_body, "client-ip", vpninfo->ip_info.addr); if (vpninfo->ip_info.addr6) append_opt(request_body, "client-ipv6", vpninfo->ip_info.addr6); if (report) { /* XML report contains many characters requiring URL-encoding (%xx) */ buf_ensure_space(request_body, strlen(report)*3); append_opt(request_body, "report", report); } else { result = build_csd_token(vpninfo); if (result) goto out; append_opt(request_body, "md5", vpninfo->csd_token); } if ((result = buf_error(request_body))) goto out; orig_path = vpninfo->urlpath; vpninfo->urlpath = strdup(report ? "ssl-vpn/hipreport.esp" : "ssl-vpn/hipreportcheck.esp"); result = do_https_request(vpninfo, method, request_body_type, request_body, &xml_buf, 0); free(vpninfo->urlpath); vpninfo->urlpath = orig_path; if (result >= 0) result = gpst_xml_or_error(vpninfo, xml_buf, report ? NULL : parse_hip_report_check, NULL, NULL); out: buf_free(request_body); free(xml_buf); return result; } static int run_hip_script(struct openconnect_info *vpninfo) { #if !defined(_WIN32) && !defined(__native_client__) int pipefd[2]; int ret; pid_t child; #endif if (!vpninfo->csd_wrapper) { vpn_progress(vpninfo, PRG_ERR, _("WARNING: Server asked us to submit HIP report with md5sum %s.\n" "VPN connectivity may be disabled or limited without HIP report submission.\n" "You need to provide a --csd-wrapper argument with the HIP report submission script.\n"), vpninfo->csd_token); /* XXX: Many GlobalProtect VPNs work fine despite allegedly requiring HIP report submission */ return 0; } #if defined(_WIN32) || defined(__native_client__) vpn_progress(vpninfo, PRG_ERR, _("Error: Running the 'HIP Report' script on this platform is not yet implemented.\n")); return -EPERM; #else #ifdef __linux__ if (pipe2(pipefd, O_CLOEXEC)) #endif { if (pipe(pipefd)) goto out; set_fd_cloexec(pipefd[0]); set_fd_cloexec(pipefd[1]); } child = fork(); if (child == -1) { goto out; } else if (child > 0) { /* in parent: read report from child */ struct oc_text_buf *report_buf = buf_alloc(); char b[256]; int i, status; close(pipefd[1]); buf_truncate(report_buf); while ((i = read(pipefd[0], b, sizeof(b))) > 0) buf_append_bytes(report_buf, b, i); waitpid(child, &status, 0); if (!WIFEXITED(status)) { vpn_progress(vpninfo, PRG_ERR, _("HIP script '%s' exited abnormally\n"), vpninfo->csd_wrapper); ret = -EINVAL; } else if (WEXITSTATUS(status) != 0) { vpn_progress(vpninfo, PRG_ERR, _("HIP script '%s' returned non-zero status: %d\n"), vpninfo->csd_wrapper, WEXITSTATUS(status)); ret = -EINVAL; } else { ret = check_or_submit_hip_report(vpninfo, report_buf->data); if (ret < 0) vpn_progress(vpninfo, PRG_ERR, _("HIP report submission failed.\n")); else { vpn_progress(vpninfo, PRG_INFO, _("HIP report submitted successfully.\n")); ret = 0; } } buf_free(report_buf); return ret; } else { /* in child: run HIP script */ char *hip_argv[32]; int i = 0; close(pipefd[0]); /* The duplicated fd does not have O_CLOEXEC */ dup2(pipefd[1], 1); if (set_csd_user(vpninfo) < 0) exit(1); hip_argv[i++] = openconnect_utf8_to_legacy(vpninfo, vpninfo->csd_wrapper); hip_argv[i++] = (char *)"--cookie"; hip_argv[i++] = vpninfo->cookie; if (vpninfo->ip_info.addr) { hip_argv[i++] = (char *)"--client-ip"; hip_argv[i++] = (char *)vpninfo->ip_info.addr; } if (vpninfo->ip_info.addr6) { hip_argv[i++] = (char *)"--client-ipv6"; hip_argv[i++] = (char *)vpninfo->ip_info.addr6; } hip_argv[i++] = (char *)"--md5"; hip_argv[i++] = vpninfo->csd_token; hip_argv[i++] = NULL; execv(hip_argv[0], hip_argv); out: vpn_progress(vpninfo, PRG_ERR, _("Failed to exec HIP script %s\n"), hip_argv[0]); exit(1); } #endif /* !_WIN32 && !__native_client__ */ } int gpst_setup(struct openconnect_info *vpninfo) { int ret; /* ESP keys are invalid as soon as we (re-)fetch the configuration, hence shutdown */ if (vpninfo->proto->udp_shutdown) vpninfo->proto->udp_shutdown(vpninfo); /* Get configuration */ ret = gpst_get_config(vpninfo); if (ret) goto out; /* Check HIP */ ret = check_or_submit_hip_report(vpninfo, NULL); if (ret == -EAGAIN) { vpn_progress(vpninfo, PRG_DEBUG, _("Gateway says HIP report submission is needed.\n")); ret = run_hip_script(vpninfo); if (ret != 0) goto out; } else if (ret == 0) vpn_progress(vpninfo, PRG_DEBUG, _("Gateway says no HIP report submission is needed.\n")); /* We do NOT actually start the HTTPS tunnel yet if we want to * use ESP, because the ESP tunnel won't work if the HTTPS tunnel * is connected! >:-( */ if (vpninfo->dtls_state == DTLS_DISABLED || vpninfo->dtls_state == DTLS_NOSECRET) ret = gpst_connect(vpninfo); out: return ret; } int gpst_mainloop(struct openconnect_info *vpninfo, int *timeout, int readable) { int ret; int work_done = 0; uint16_t ethertype; uint32_t one, zero, magic; /* Starting the HTTPS tunnel kills ESP, so we avoid starting * it if the ESP tunnel is connected or connecting. */ switch (vpninfo->dtls_state) { case DTLS_CONNECTING: openconnect_close_https(vpninfo, 0); /* don't keep stale HTTPS socket */ vpn_progress(vpninfo, PRG_INFO, _("ESP tunnel connected; exiting HTTPS mainloop.\n")); vpninfo->dtls_state = DTLS_CONNECTED; /* fall through */ case DTLS_CONNECTED: /* Rekey if needed */ if (keepalive_action(&vpninfo->ssl_times, timeout) == KA_REKEY) goto do_rekey; return 0; case DTLS_SECRET: case DTLS_SLEEPING: if (!ka_check_deadline(timeout, time(NULL), vpninfo->new_dtls_started + 5)) { /* Allow 5 seconds after configuration for ESP to start */ return 0; } else { /* ... before we switch to HTTPS instead */ vpn_progress(vpninfo, PRG_ERR, _("Failed to connect ESP tunnel; using HTTPS instead.\n")); if (gpst_connect(vpninfo)) { vpninfo->quit_reason = "GPST connect failed"; return 1; } } break; case DTLS_NOSECRET: /* HTTPS tunnel already started, or getconfig.esp did not provide any ESP keys */ case DTLS_DISABLED: /* ESP is disabled */ ; } if (vpninfo->ssl_fd == -1) goto do_reconnect; while (readable) { /* Some servers send us packets that are larger than negotiated MTU. We reserve some extra space to handle that */ int receive_mtu = MAX(16384, vpninfo->ip_info.mtu); int len, payload_len; if (!vpninfo->cstp_pkt) { vpninfo->cstp_pkt = malloc(sizeof(struct pkt) + receive_mtu); if (!vpninfo->cstp_pkt) { vpn_progress(vpninfo, PRG_ERR, _("Allocation failed\n")); break; } } len = ssl_nonblock_read(vpninfo, vpninfo->cstp_pkt->gpst.hdr, receive_mtu + 16); if (!len) break; if (len < 0) { vpn_progress(vpninfo, PRG_ERR, _("Packet receive error: %s\n"), strerror(-len)); goto do_reconnect; } if (len < 16) { vpn_progress(vpninfo, PRG_ERR, _("Short packet received (%d bytes)\n"), len); vpninfo->quit_reason = "Short packet received"; return 1; } /* check packet header */ magic = load_be32(vpninfo->cstp_pkt->gpst.hdr); ethertype = load_be16(vpninfo->cstp_pkt->gpst.hdr + 4); payload_len = load_be16(vpninfo->cstp_pkt->gpst.hdr + 6); one = load_le32(vpninfo->cstp_pkt->gpst.hdr + 8); zero = load_le32(vpninfo->cstp_pkt->gpst.hdr + 12); if (magic != 0x1a2b3c4d) goto unknown_pkt; if (len != 16 + payload_len) { vpn_progress(vpninfo, PRG_ERR, _("Unexpected packet length. SSL_read returned %d (includes 16 header bytes) but header payload_len is %d\n"), len, payload_len); dump_buf_hex(vpninfo, PRG_ERR, '<', vpninfo->cstp_pkt->gpst.hdr, 16); continue; } vpninfo->ssl_times.last_rx = time(NULL); switch (ethertype) { case 0: vpn_progress(vpninfo, PRG_DEBUG, _("Got GPST DPD/keepalive response\n")); if (one != 0 || zero != 0) { vpn_progress(vpninfo, PRG_DEBUG, _("Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, but got:\n")); dump_buf_hex(vpninfo, PRG_DEBUG, '<', vpninfo->cstp_pkt->gpst.hdr + 8, 8); } continue; case 0x0800: case 0x86DD: vpn_progress(vpninfo, PRG_TRACE, _("Received IPv%d data packet of %d bytes\n"), ethertype == 0x86DD ? 6 : 4, payload_len); vpninfo->cstp_pkt->len = payload_len; queue_packet(&vpninfo->incoming_queue, vpninfo->cstp_pkt); vpninfo->cstp_pkt = NULL; work_done = 1; if (one != 1 || zero != 0) { vpn_progress(vpninfo, PRG_DEBUG, _("Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n")); dump_buf_hex(vpninfo, PRG_DEBUG, '<', vpninfo->cstp_pkt->gpst.hdr + 8, 8); } continue; } unknown_pkt: vpn_progress(vpninfo, PRG_ERR, _("Unknown packet. Header dump follows:\n")); dump_buf_hex(vpninfo, PRG_ERR, '<', vpninfo->cstp_pkt->gpst.hdr, 16); vpninfo->quit_reason = "Unknown packet received"; return 1; } /* If SSL_write() fails we are expected to try again. With exactly the same data, at exactly the same location. So we keep the packet we had before.... */ if (vpninfo->current_ssl_pkt) { handle_outgoing: vpninfo->ssl_times.last_tx = time(NULL); unmonitor_write_fd(vpninfo, ssl); ret = ssl_nonblock_write(vpninfo, vpninfo->current_ssl_pkt->gpst.hdr, vpninfo->current_ssl_pkt->len + 16); if (ret < 0) goto do_reconnect; else if (!ret) { switch (ka_stalled_action(&vpninfo->ssl_times, timeout)) { case KA_REKEY: goto do_rekey; case KA_DPD_DEAD: goto peer_dead; case KA_NONE: return work_done; } } if (ret != vpninfo->current_ssl_pkt->len + 16) { vpn_progress(vpninfo, PRG_ERR, _("SSL wrote too few bytes! Asked for %d, sent %d\n"), vpninfo->current_ssl_pkt->len + 16, ret); vpninfo->quit_reason = "Internal error"; return 1; } /* Don't free the 'special' packets */ if (vpninfo->current_ssl_pkt != &dpd_pkt) free(vpninfo->current_ssl_pkt); vpninfo->current_ssl_pkt = NULL; } switch (keepalive_action(&vpninfo->ssl_times, timeout)) { case KA_REKEY: do_rekey: vpn_progress(vpninfo, PRG_INFO, _("GlobalProtect rekey due\n")); goto do_reconnect; case KA_DPD_DEAD: peer_dead: vpn_progress(vpninfo, PRG_ERR, _("GPST Dead Peer Detection detected dead peer!\n")); do_reconnect: ret = ssl_reconnect(vpninfo); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("Reconnect failed\n")); vpninfo->quit_reason = "GPST reconnect failed"; return ret; } if (vpninfo->proto->udp_setup) vpninfo->proto->udp_setup(vpninfo, vpninfo->dtls_attempt_period); return 1; case KA_KEEPALIVE: /* No need to send an explicit keepalive if we have real data to send */ if (vpninfo->dtls_state != DTLS_CONNECTED && vpninfo->outgoing_queue.head) break; /* fall through */ case KA_DPD: vpn_progress(vpninfo, PRG_DEBUG, _("Send GPST DPD/keepalive request\n")); vpninfo->current_ssl_pkt = (struct pkt *)&dpd_pkt; goto handle_outgoing; } /* Service outgoing packet queue */ while (vpninfo->dtls_state != DTLS_CONNECTED && (vpninfo->current_ssl_pkt = dequeue_packet(&vpninfo->outgoing_queue))) { struct pkt *this = vpninfo->current_ssl_pkt; /* IPv4 or IPv6 EtherType */ int ethertype = this->len && (this->data[0] & 0xF0) == 0x60 ? 0x86DD : 0x0800; /* store header */ store_be32(this->gpst.hdr, 0x1a2b3c4d); store_be16(this->gpst.hdr + 4, ethertype); store_be16(this->gpst.hdr + 6, this->len); store_le32(this->gpst.hdr + 8, 1); store_le32(this->gpst.hdr + 12, 0); vpn_progress(vpninfo, PRG_TRACE, _("Sending IPv%d data packet of %d bytes\n"), (ethertype == 0x86DD ? 6 : 4), this->len); goto handle_outgoing; } /* Work is not done if we just got rid of packets off the queue */ return work_done; } #ifdef HAVE_ESP static uint16_t csum(uint16_t *buf, int nwords) { uint32_t sum = 0; for(sum=0; nwords>0; nwords--) sum += ntohs(*buf++); sum = (sum >> 16) + (sum &0xffff); sum += (sum >> 16); return htons((uint16_t)(~sum)); } static char magic_ping_payload[16] = "monitor\x00\x00pan ha "; int gpst_esp_send_probes(struct openconnect_info *vpninfo) { /* The GlobalProtect VPN initiates and maintains the ESP connection * using specially-crafted ICMP ("ping") packets. * * 1) These ping packets have a special magic payload. It must * include at least the 16 bytes below. The Windows client actually * sends this 56-byte version, but the remaining bytes don't * seem to matter: * * "monitor\x00\x00pan ha 0123456789:;<=>? !\"#$%&\'()*+,-./\x10\x11\x12\x13\x14\x15\x16\x18"; * * 2) The ping packets are addressed to the IP supplied in the * config XML as as . In most cases, this is the * same as the *external* IP address of the VPN gateway * (vpninfo->ip_info.gateway_addr), but in some cases it is a * separate address. * * Don't blame me. I didn't design this. */ int pktlen, seq; struct pkt *pkt = malloc(sizeof(*pkt) + sizeof(struct ip) + ICMP_MINLEN + sizeof(magic_ping_payload) + vpninfo->pkt_trailer); struct ip *iph = (void *)pkt->data; struct icmp *icmph = (void *)(pkt->data + sizeof(*iph)); char *pmagic = (void *)(pkt->data + sizeof(*iph) + ICMP_MINLEN); if (!pkt) return -ENOMEM; if (vpninfo->dtls_fd == -1) { int fd = udp_connect(vpninfo); if (fd < 0) { free(pkt); return fd; } /* We are not connected until we get an ESP packet back */ vpninfo->dtls_state = DTLS_SLEEPING; vpninfo->dtls_fd = fd; monitor_fd_new(vpninfo, dtls); monitor_read_fd(vpninfo, dtls); monitor_except_fd(vpninfo, dtls); } for (seq=1; seq <= (vpninfo->dtls_state==DTLS_CONNECTED ? 1 : 3); seq++) { memset(pkt, 0, sizeof(*pkt) + sizeof(*iph) + ICMP_MINLEN + sizeof(magic_ping_payload)); pkt->len = sizeof(struct ip) + ICMP_MINLEN + sizeof(magic_ping_payload); /* IP Header */ iph->ip_hl = 5; iph->ip_v = 4; iph->ip_len = htons(sizeof(*iph) + ICMP_MINLEN + sizeof(magic_ping_payload)); iph->ip_id = htons(0x4747); /* what the Windows client uses */ iph->ip_off = htons(IP_DF); /* don't fragment, frag offset = 0 */ iph->ip_ttl = 64; /* hops */ iph->ip_p = 1; /* ICMP */ iph->ip_src.s_addr = inet_addr(vpninfo->ip_info.addr); iph->ip_dst.s_addr = vpninfo->esp_magic; iph->ip_sum = csum((uint16_t *)iph, sizeof(*iph)/2); /* ICMP echo request */ icmph->icmp_type = ICMP_ECHO; icmph->icmp_hun.ih_idseq.icd_id = htons(0x4747); icmph->icmp_hun.ih_idseq.icd_seq = htons(seq); memcpy(pmagic, magic_ping_payload, sizeof(magic_ping_payload)); /* required to get gateway to respond */ icmph->icmp_cksum = csum((uint16_t *)icmph, (ICMP_MINLEN+sizeof(magic_ping_payload))/2); pktlen = construct_esp_packet(vpninfo, pkt, IPPROTO_IPIP); if (pktlen >= 0) send(vpninfo->dtls_fd, (void *)&pkt->esp, pktlen, 0); } free(pkt); vpninfo->dtls_times.last_tx = time(&vpninfo->new_dtls_started); return 0; } int gpst_esp_catch_probe(struct openconnect_info *vpninfo, struct pkt *pkt) { struct ip *iph = (void *)(pkt->data); return ( pkt->len >= 21 && iph->ip_v==4 /* IPv4 header */ && iph->ip_p==1 /* IPv4 protocol field == ICMP */ && iph->ip_src.s_addr == vpninfo->esp_magic /* source == magic address */ && pkt->len >= (iph->ip_hl<<2) + ICMP_MINLEN + sizeof(magic_ping_payload) /* No short-packet segfaults */ && pkt->data[iph->ip_hl<<2]==0 /* ICMP reply */ && !memcmp(&pkt->data[(iph->ip_hl<<2) + ICMP_MINLEN], magic_ping_payload, sizeof(magic_ping_payload)) /* Same magic payload in response */ ); } #endif /* HAVE_ESP */ openconnect-8.05/gnutls_tpm.c0000664000076400007640000002135613407262535020113 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ /* * TPM code based on client-tpm.c from * Carolin Latze and Tobias Soder */ #include #include #include #include #include "openconnect-internal.h" #include "gnutls.h" #ifdef HAVE_TROUSERS #include #include struct oc_tpm1_ctx { TSS_HCONTEXT tpm_context; TSS_HKEY srk; TSS_HPOLICY srk_policy; TSS_HKEY tpm_key; TSS_HPOLICY tpm_key_policy; }; /* Signing function for TPM privkeys, set with gnutls_privkey_import_ext() */ static int tpm_sign_fn(gnutls_privkey_t key, void *_vpninfo, const gnutls_datum_t *data, gnutls_datum_t *sig) { struct openconnect_info *vpninfo = _vpninfo; TSS_HHASH hash; int err; vpn_progress(vpninfo, PRG_DEBUG, _("TPM sign function called for %d bytes.\n"), data->size); err = Tspi_Context_CreateObject(vpninfo->tpm1->tpm_context, TSS_OBJECT_TYPE_HASH, TSS_HASH_OTHER, &hash); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to create TPM hash object: %s\n"), Trspi_Error_String(err)); return GNUTLS_E_PK_SIGN_FAILED; } err = Tspi_Hash_SetHashValue(hash, data->size, data->data); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to set value in TPM hash object: %s\n"), Trspi_Error_String(err)); Tspi_Context_CloseObject(vpninfo->tpm1->tpm_context, hash); return GNUTLS_E_PK_SIGN_FAILED; } err = Tspi_Hash_Sign(hash, vpninfo->tpm1->tpm_key, &sig->size, &sig->data); Tspi_Context_CloseObject(vpninfo->tpm1->tpm_context, hash); if (err) { if (vpninfo->tpm1->tpm_key_policy || err != TPM_E_AUTHFAIL) vpn_progress(vpninfo, PRG_ERR, _("TPM hash signature failed: %s\n"), Trspi_Error_String(err)); if (err == TPM_E_AUTHFAIL) return GNUTLS_E_INSUFFICIENT_CREDENTIALS; else return GNUTLS_E_PK_SIGN_FAILED; } return 0; } int load_tpm1_key(struct openconnect_info *vpninfo, gnutls_datum_t *fdata, gnutls_privkey_t *pkey, gnutls_datum_t *pkey_sig) { static const TSS_UUID SRK_UUID = TSS_UUID_SRK; gnutls_datum_t asn1; unsigned int tss_len; char *pass; int ofs, err; err = gnutls_pem_base64_decode_alloc("TSS KEY BLOB", fdata, &asn1); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Error decoding TSS key blob: %s\n"), gnutls_strerror(err)); return -EINVAL; } vpninfo->tpm1 = calloc(1, sizeof(*vpninfo->tpm1)); /* Ick. We have to parse the ASN1 OCTET_STRING for ourselves. */ if (asn1.size < 2 || asn1.data[0] != 0x04 /* OCTET_STRING */) { vpn_progress(vpninfo, PRG_ERR, _("Error in TSS key blob\n")); goto out_blob; } tss_len = asn1.data[1]; ofs = 2; if (tss_len & 0x80) { int lenlen = tss_len & 0x7f; if (asn1.size < 2 + lenlen || lenlen > 3) { vpn_progress(vpninfo, PRG_ERR, _("Error in TSS key blob\n")); goto out_blob; } tss_len = 0; while (lenlen) { tss_len <<= 8; tss_len |= asn1.data[ofs++]; lenlen--; } } if (tss_len + ofs != asn1.size) { vpn_progress(vpninfo, PRG_ERR, _("Error in TSS key blob\n")); goto out_blob; } err = Tspi_Context_Create(&vpninfo->tpm1->tpm_context); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to create TPM context: %s\n"), Trspi_Error_String(err)); goto out_blob; } err = Tspi_Context_Connect(vpninfo->tpm1->tpm_context, NULL); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to connect TPM context: %s\n"), Trspi_Error_String(err)); goto out_context; } err = Tspi_Context_LoadKeyByUUID(vpninfo->tpm1->tpm_context, TSS_PS_TYPE_SYSTEM, SRK_UUID, &vpninfo->tpm1->srk); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to load TPM SRK key: %s\n"), Trspi_Error_String(err)); goto out_context; } err = Tspi_GetPolicyObject(vpninfo->tpm1->srk, TSS_POLICY_USAGE, &vpninfo->tpm1->srk_policy); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to load TPM SRK policy object: %s\n"), Trspi_Error_String(err)); goto out_srk; } pass = vpninfo->cert_password; vpninfo->cert_password = NULL; while (1) { static const char nullpass[20]; /* We don't seem to get the error here... */ if (pass) err = Tspi_Policy_SetSecret(vpninfo->tpm1->srk_policy, TSS_SECRET_MODE_PLAIN, strlen(pass), (BYTE *)pass); else /* Well-known NULL key */ err = Tspi_Policy_SetSecret(vpninfo->tpm1->srk_policy, TSS_SECRET_MODE_SHA1, sizeof(nullpass), (BYTE *)nullpass); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to set TPM PIN: %s\n"), Trspi_Error_String(err)); goto out_srkpol; } free_pass(&pass); /* ... we get it here instead. */ err = Tspi_Context_LoadKeyByBlob(vpninfo->tpm1->tpm_context, vpninfo->tpm1->srk, tss_len, asn1.data + ofs, &vpninfo->tpm1->tpm_key); if (!err) break; if (pass) vpn_progress(vpninfo, PRG_ERR, _("Failed to load TPM key blob: %s\n"), Trspi_Error_String(err)); if (err != TPM_E_AUTHFAIL) goto out_srkpol; err = request_passphrase(vpninfo, "openconnect_tpm_srk", &pass, _("Enter TPM SRK PIN:")); if (err) goto out_srkpol; } gnutls_privkey_init(pkey); /* This would be nicer if there was a destructor callback. I could allocate a data structure with the TPM handles and the vpninfo pointer, and destroy that properly when the key is destroyed. */ gnutls_privkey_import_ext(*pkey, GNUTLS_PK_RSA, vpninfo, tpm_sign_fn, NULL, 0); retry_sign: err = gnutls_privkey_sign_data(*pkey, GNUTLS_DIG_SHA1, 0, fdata, pkey_sig); if (err == GNUTLS_E_INSUFFICIENT_CREDENTIALS) { if (!vpninfo->tpm1->tpm_key_policy) { err = Tspi_Context_CreateObject(vpninfo->tpm1->tpm_context, TSS_OBJECT_TYPE_POLICY, TSS_POLICY_USAGE, &vpninfo->tpm1->tpm_key_policy); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to create key policy object: %s\n"), Trspi_Error_String(err)); goto out_key; } err = Tspi_Policy_AssignToObject(vpninfo->tpm1->tpm_key_policy, vpninfo->tpm1->tpm_key); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to assign policy to key: %s\n"), Trspi_Error_String(err)); goto out_key_policy; } } err = request_passphrase(vpninfo, "openconnect_tpm_key", &pass, _("Enter TPM key PIN:")); if (err) goto out_key_policy; err = Tspi_Policy_SetSecret(vpninfo->tpm1->tpm_key_policy, TSS_SECRET_MODE_PLAIN, strlen(pass), (void *)pass); free_pass(&pass); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to set key PIN: %s\n"), Trspi_Error_String(err)); goto out_key_policy; } goto retry_sign; } free(asn1.data); return 0; out_key_policy: Tspi_Context_CloseObject(vpninfo->tpm1->tpm_context, vpninfo->tpm1->tpm_key_policy); vpninfo->tpm1->tpm_key_policy = 0; out_key: Tspi_Context_CloseObject(vpninfo->tpm1->tpm_context, vpninfo->tpm1->tpm_key); vpninfo->tpm1->tpm_key = 0; out_srkpol: Tspi_Context_CloseObject(vpninfo->tpm1->tpm_context, vpninfo->tpm1->srk_policy); vpninfo->tpm1->srk_policy = 0; out_srk: Tspi_Context_CloseObject(vpninfo->tpm1->tpm_context, vpninfo->tpm1->srk); vpninfo->tpm1->srk = 0; out_context: Tspi_Context_Close(vpninfo->tpm1->tpm_context); vpninfo->tpm1->tpm_context = 0; out_blob: free(asn1.data); free(vpninfo->tpm1); vpninfo->tpm1 = NULL; return -EIO; } void release_tpm1_ctx(struct openconnect_info *vpninfo) { if (!vpninfo->tpm1) return; if (vpninfo->tpm1->tpm_key_policy) { Tspi_Context_CloseObject(vpninfo->tpm1->tpm_context, vpninfo->tpm1->tpm_key_policy); vpninfo->tpm1->tpm_key = 0; } if (vpninfo->tpm1->tpm_key) { Tspi_Context_CloseObject(vpninfo->tpm1->tpm_context, vpninfo->tpm1->tpm_key); vpninfo->tpm1->tpm_key = 0; } if (vpninfo->tpm1->srk_policy) { Tspi_Context_CloseObject(vpninfo->tpm1->tpm_context, vpninfo->tpm1->srk_policy); vpninfo->tpm1->srk_policy = 0; } if (vpninfo->tpm1->srk) { Tspi_Context_CloseObject(vpninfo->tpm1->tpm_context, vpninfo->tpm1->srk); vpninfo->tpm1->srk = 0; } if (vpninfo->tpm1->tpm_context) { Tspi_Context_Close(vpninfo->tpm1->tpm_context); vpninfo->tpm1->tpm_context = 0; } free(vpninfo->tpm1); vpninfo->tpm1 = NULL; }; #endif /* HAVE_TROUSERS */ openconnect-8.05/Makefile.in0000664000076400007640000036100113536301674017613 0ustar00dwoodhoudwoodhou00000000000000# Makefile.in generated by automake 1.16.1 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2018 Free Software Foundation, Inc. # This Makefile.in is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY, to the extent permitted by law; without # even the implied warranty of MERCHANTABILITY or FITNESS FOR A # PARTICULAR PURPOSE. @SET_MAKE@ VPATH = @srcdir@ am__is_gnu_make = { \ if test -z '$(MAKELEVEL)'; then \ false; \ elif test -n '$(MAKE_HOST)'; then \ true; \ elif test -n '$(MAKE_VERSION)' && test -n '$(CURDIR)'; then \ true; \ else \ false; \ fi; \ } am__make_running_with_option = \ case $${target_option-} in \ ?) ;; \ *) echo "am__make_running_with_option: internal error: invalid" \ "target option '$${target_option-}' specified" >&2; \ exit 1;; \ esac; \ has_opt=no; \ sane_makeflags=$$MAKEFLAGS; \ if $(am__is_gnu_make); then \ sane_makeflags=$$MFLAGS; \ else \ case $$MAKEFLAGS in \ *\\[\ \ ]*) \ bs=\\; \ sane_makeflags=`printf '%s\n' "$$MAKEFLAGS" \ | sed "s/$$bs$$bs[$$bs $$bs ]*//g"`;; \ esac; \ fi; \ skip_next=no; \ strip_trailopt () \ { \ flg=`printf '%s\n' "$$flg" | sed "s/$$1.*$$//"`; \ }; \ for flg in $$sane_makeflags; do \ test $$skip_next = yes && { skip_next=no; continue; }; \ case $$flg in \ *=*|--*) continue;; \ -*I) strip_trailopt 'I'; skip_next=yes;; \ -*I?*) strip_trailopt 'I';; \ -*O) strip_trailopt 'O'; skip_next=yes;; \ -*O?*) strip_trailopt 'O';; \ -*l) strip_trailopt 'l'; skip_next=yes;; \ -*l?*) strip_trailopt 'l';; \ -[dEDm]) skip_next=yes;; \ -[JT]) skip_next=yes;; \ esac; \ case $$flg in \ *$$target_option*) has_opt=yes; break;; \ esac; \ done; \ test $$has_opt = yes am__make_dryrun = (target_option=n; $(am__make_running_with_option)) am__make_keepgoing = (target_option=k; $(am__make_running_with_option)) pkgdatadir = $(datadir)/@PACKAGE@ pkgincludedir = $(includedir)/@PACKAGE@ pkglibdir = $(libdir)/@PACKAGE@ pkglibexecdir = $(libexecdir)/@PACKAGE@ am__cd = CDPATH="$${ZSH_VERSION+.}$(PATH_SEPARATOR)" && cd install_sh_DATA = $(install_sh) -c -m 644 install_sh_PROGRAM = $(install_sh) -c install_sh_SCRIPT = $(install_sh) -c INSTALL_HEADER = $(INSTALL_DATA) transform = $(program_transform_name) NORMAL_INSTALL = : PRE_INSTALL = : POST_INSTALL = : NORMAL_UNINSTALL = : PRE_UNINSTALL = : POST_UNINSTALL = : build_triplet = @build@ host_triplet = @host@ @BUILD_WWW_TRUE@am__append_1 = www @USE_NLS_TRUE@am__append_2 = po sbin_PROGRAMS = openconnect$(EXEEXT) @OPENCONNECT_WIN32_TRUE@am__append_3 = openconnect.rc @OPENCONNECT_LIBPCSCLITE_TRUE@am__append_4 = $(lib_srcs_yubikey) @OPENCONNECT_STOKEN_TRUE@am__append_5 = $(lib_srcs_stoken) @OPENCONNECT_GSSAPI_TRUE@am__append_6 = $(lib_srcs_gssapi) @OPENCONNECT_GNUTLS_TRUE@am__append_7 = $(lib_srcs_gnutls) @OPENCONNECT_GNUTLS_TRUE@am__append_8 = gnutls-esp.c @OPENCONNECT_GNUTLS_TRUE@am__append_9 = gnutls-dtls.c @OPENCONNECT_TSS2_ESYS_TRUE@am__append_10 = gnutls_tpm2_esys.c @OPENCONNECT_TSS2_IBM_TRUE@am__append_11 = gnutls_tpm2_ibm.c @OPENCONNECT_OPENSSL_TRUE@am__append_12 = $(lib_srcs_openssl) @OPENCONNECT_OPENSSL_TRUE@am__append_13 = openssl-esp.c @OPENCONNECT_OPENSSL_TRUE@am__append_14 = openssl-dtls.c @OPENCONNECT_DTLS_TRUE@am__append_15 = $(lib_srcs_dtls) @OPENCONNECT_ESP_TRUE@am__append_16 = $(lib_srcs_esp) @OPENCONNECT_ICONV_TRUE@am__append_17 = $(lib_srcs_iconv) @OPENCONNECT_WIN32_TRUE@am__append_18 = $(lib_srcs_win32) @OPENCONNECT_WIN32_FALSE@am__append_19 = $(lib_srcs_posix) @HAVE_VSCRIPT_TRUE@am__append_20 = @VSCRIPT_LDFLAGS@,libopenconnect.map @HAVE_VSCRIPT_FALSE@libopenconnect_la_DEPENDENCIES = \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) @JNI_STANDALONE_TRUE@@OPENCONNECT_JNI_TRUE@am__append_21 = jni.c @JNI_STANDALONE_TRUE@@OPENCONNECT_JNI_TRUE@am__append_22 = $(JNI_CFLAGS) -Wno-missing-declarations @JNI_STANDALONE_FALSE@@OPENCONNECT_JNI_TRUE@am__append_23 = libopenconnect-wrapper.la subdir = . ACLOCAL_M4 = $(top_srcdir)/aclocal.m4 am__aclocal_m4_deps = $(top_srcdir)/m4/ax_check_vscript.m4 \ $(top_srcdir)/m4/iconv.m4 $(top_srcdir)/m4/lib-ld.m4 \ $(top_srcdir)/m4/lib-link.m4 $(top_srcdir)/m4/lib-prefix.m4 \ $(top_srcdir)/m4/libtool.m4 $(top_srcdir)/m4/ltoptions.m4 \ $(top_srcdir)/m4/ltsugar.m4 $(top_srcdir)/m4/ltversion.m4 \ $(top_srcdir)/m4/lt~obsolete.m4 $(top_srcdir)/acinclude.m4 \ $(top_srcdir)/configure.ac am__configure_deps = $(am__aclocal_m4_deps) $(CONFIGURE_DEPENDENCIES) \ $(ACLOCAL_M4) DIST_COMMON = $(srcdir)/Makefile.am $(top_srcdir)/configure \ $(am__configure_deps) $(include_HEADERS) $(noinst_HEADERS) \ $(am__DIST_COMMON) am__CONFIG_DISTCLEAN_FILES = config.status config.cache config.log \ configure.lineno config.status.lineno mkinstalldirs = $(install_sh) -d CONFIG_HEADER = config.h CONFIG_CLEAN_FILES = openconnect.pc libopenconnect.map openconnect.8 \ tests/configs/test-user-cert.config \ tests/configs/test-user-pass.config CONFIG_CLEAN_VPATH_FILES = am__installdirs = "$(DESTDIR)$(sbindir)" "$(DESTDIR)$(libdir)" \ "$(DESTDIR)$(pkglibexecdir)" "$(DESTDIR)$(man8dir)" \ "$(DESTDIR)$(pkgconfigdir)" "$(DESTDIR)$(includedir)" PROGRAMS = $(sbin_PROGRAMS) am__vpath_adj_setup = srcdirstrip=`echo "$(srcdir)" | sed 's|.|.|g'`; am__vpath_adj = case $$p in \ $(srcdir)/*) f=`echo "$$p" | sed "s|^$$srcdirstrip/||"`;; \ *) f=$$p;; \ esac; am__strip_dir = f=`echo $$p | sed -e 's|^.*/||'`; am__install_max = 40 am__nobase_strip_setup = \ srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*|]/\\\\&/g'` am__nobase_strip = \ for p in $$list; do echo "$$p"; done | sed -e "s|$$srcdirstrip/||" am__nobase_list = $(am__nobase_strip_setup); \ for p in $$list; do echo "$$p $$p"; done | \ sed "s| $$srcdirstrip/| |;"' / .*\//!s/ .*/ ./; s,\( .*\)/[^/]*$$,\1,' | \ $(AWK) 'BEGIN { files["."] = "" } { files[$$2] = files[$$2] " " $$1; \ if (++n[$$2] == $(am__install_max)) \ { print $$2, files[$$2]; n[$$2] = 0; files[$$2] = "" } } \ END { for (dir in files) print dir, files[dir] }' am__base_list = \ sed '$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;s/\n/ /g' | \ sed '$$!N;$$!N;$$!N;$$!N;s/\n/ /g' am__uninstall_files_from_dir = { \ test -z "$$files" \ || { test ! -d "$$dir" && test ! -f "$$dir" && test ! -r "$$dir"; } \ || { echo " ( cd '$$dir' && rm -f" $$files ")"; \ $(am__cd) "$$dir" && rm -f $$files; }; \ } LTLIBRARIES = $(lib_LTLIBRARIES) @JNI_STANDALONE_FALSE@@OPENCONNECT_JNI_TRUE@libopenconnect_wrapper_la_DEPENDENCIES = \ @JNI_STANDALONE_FALSE@@OPENCONNECT_JNI_TRUE@ libopenconnect.la am__libopenconnect_wrapper_la_SOURCES_DIST = jni.c @JNI_STANDALONE_FALSE@@OPENCONNECT_JNI_TRUE@am_libopenconnect_wrapper_la_OBJECTS = libopenconnect_wrapper_la-jni.lo libopenconnect_wrapper_la_OBJECTS = \ $(am_libopenconnect_wrapper_la_OBJECTS) AM_V_lt = $(am__v_lt_@AM_V@) am__v_lt_ = $(am__v_lt_@AM_DEFAULT_V@) am__v_lt_0 = --silent am__v_lt_1 = libopenconnect_wrapper_la_LINK = $(LIBTOOL) $(AM_V_lt) --tag=CC \ $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=link $(CCLD) \ $(libopenconnect_wrapper_la_CFLAGS) $(CFLAGS) $(AM_LDFLAGS) \ $(LDFLAGS) -o $@ @JNI_STANDALONE_FALSE@@OPENCONNECT_JNI_TRUE@am_libopenconnect_wrapper_la_rpath = \ @JNI_STANDALONE_FALSE@@OPENCONNECT_JNI_TRUE@ -rpath $(libdir) am__DEPENDENCIES_1 = am__libopenconnect_la_SOURCES_DIST = version.c ssl.c http.c \ http-auth.c auth-common.c library.c compat.c lzs.c mainloop.c \ script.c ntlm.c digest.c openconnect-internal.h oncp.c lzo.c \ auth-juniper.c esp.c esp-seqno.c gnutls-esp.c openssl-esp.c \ auth.c cstp.c dtls.c gnutls-dtls.c openssl-dtls.c oath.c \ gpst.c auth-globalprotect.c pulse.c yubikey.c stoken.c \ gssapi.c gnutls.c gnutls_tpm.c gnutls_tpm2.c \ gnutls_tpm2_esys.c gnutls_tpm2_ibm.c openssl.c \ openssl-pkcs11.c iconv.c tun-win32.c sspi.c tun.c jni.c @OPENCONNECT_GNUTLS_TRUE@am__objects_1 = \ @OPENCONNECT_GNUTLS_TRUE@ libopenconnect_la-gnutls-esp.lo @OPENCONNECT_OPENSSL_TRUE@am__objects_2 = \ @OPENCONNECT_OPENSSL_TRUE@ libopenconnect_la-openssl-esp.lo am__objects_3 = libopenconnect_la-esp.lo \ libopenconnect_la-esp-seqno.lo $(am__objects_1) \ $(am__objects_2) @OPENCONNECT_ESP_TRUE@am__objects_4 = $(am__objects_3) am__objects_5 = libopenconnect_la-oncp.lo libopenconnect_la-lzo.lo \ libopenconnect_la-auth-juniper.lo $(am__objects_4) @OPENCONNECT_GNUTLS_TRUE@am__objects_6 = \ @OPENCONNECT_GNUTLS_TRUE@ libopenconnect_la-gnutls-dtls.lo @OPENCONNECT_OPENSSL_TRUE@am__objects_7 = \ @OPENCONNECT_OPENSSL_TRUE@ libopenconnect_la-openssl-dtls.lo am__objects_8 = libopenconnect_la-dtls.lo $(am__objects_6) \ $(am__objects_7) @OPENCONNECT_DTLS_TRUE@am__objects_9 = $(am__objects_8) am__objects_10 = libopenconnect_la-auth.lo libopenconnect_la-cstp.lo \ $(am__objects_9) am__objects_11 = libopenconnect_la-oath.lo am__objects_12 = libopenconnect_la-gpst.lo \ libopenconnect_la-auth-globalprotect.lo am__objects_13 = libopenconnect_la-pulse.lo am__objects_14 = libopenconnect_la-yubikey.lo @OPENCONNECT_LIBPCSCLITE_TRUE@am__objects_15 = $(am__objects_14) am__objects_16 = libopenconnect_la-stoken.lo @OPENCONNECT_STOKEN_TRUE@am__objects_17 = $(am__objects_16) am__objects_18 = libopenconnect_la-gssapi.lo @OPENCONNECT_GSSAPI_TRUE@am__objects_19 = $(am__objects_18) am__objects_20 = libopenconnect_la-gnutls.lo \ libopenconnect_la-gnutls_tpm.lo \ libopenconnect_la-gnutls_tpm2.lo @OPENCONNECT_GNUTLS_TRUE@am__objects_21 = $(am__objects_20) @OPENCONNECT_TSS2_ESYS_TRUE@am__objects_22 = libopenconnect_la-gnutls_tpm2_esys.lo @OPENCONNECT_TSS2_IBM_TRUE@am__objects_23 = libopenconnect_la-gnutls_tpm2_ibm.lo am__objects_24 = libopenconnect_la-openssl.lo \ libopenconnect_la-openssl-pkcs11.lo @OPENCONNECT_OPENSSL_TRUE@am__objects_25 = $(am__objects_24) am__objects_26 = libopenconnect_la-iconv.lo @OPENCONNECT_ICONV_TRUE@am__objects_27 = $(am__objects_26) am__objects_28 = libopenconnect_la-tun-win32.lo \ libopenconnect_la-sspi.lo @OPENCONNECT_WIN32_TRUE@am__objects_29 = $(am__objects_28) am__objects_30 = libopenconnect_la-tun.lo @OPENCONNECT_WIN32_FALSE@am__objects_31 = $(am__objects_30) am__objects_32 = libopenconnect_la-ssl.lo libopenconnect_la-http.lo \ libopenconnect_la-http-auth.lo \ libopenconnect_la-auth-common.lo libopenconnect_la-library.lo \ libopenconnect_la-compat.lo libopenconnect_la-lzs.lo \ libopenconnect_la-mainloop.lo libopenconnect_la-script.lo \ libopenconnect_la-ntlm.lo libopenconnect_la-digest.lo \ $(am__objects_5) $(am__objects_10) $(am__objects_11) \ $(am__objects_12) $(am__objects_13) $(am__objects_15) \ $(am__objects_17) $(am__objects_19) $(am__objects_21) \ $(am__objects_22) $(am__objects_23) $(am__objects_25) \ $(am__objects_27) $(am__objects_29) $(am__objects_31) @JNI_STANDALONE_TRUE@@OPENCONNECT_JNI_TRUE@am__objects_33 = libopenconnect_la-jni.lo am_libopenconnect_la_OBJECTS = libopenconnect_la-version.lo \ $(am__objects_32) $(am__objects_33) libopenconnect_la_OBJECTS = $(am_libopenconnect_la_OBJECTS) libopenconnect_la_LINK = $(LIBTOOL) $(AM_V_lt) --tag=CC \ $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=link $(CCLD) \ $(libopenconnect_la_CFLAGS) $(CFLAGS) \ $(libopenconnect_la_LDFLAGS) $(LDFLAGS) -o $@ am__openconnect_SOURCES_DIST = xml.c main.c openconnect.rc @OPENCONNECT_WIN32_TRUE@am__objects_34 = openconnect.$(OBJEXT) am_openconnect_OBJECTS = openconnect-xml.$(OBJEXT) \ openconnect-main.$(OBJEXT) $(am__objects_34) openconnect_OBJECTS = $(am_openconnect_OBJECTS) openconnect_DEPENDENCIES = libopenconnect.la $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) openconnect_LINK = $(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) \ $(LIBTOOLFLAGS) --mode=link $(CCLD) $(openconnect_CFLAGS) \ $(CFLAGS) $(AM_LDFLAGS) $(LDFLAGS) -o $@ SCRIPTS = $(pkglibexec_SCRIPTS) AM_V_P = $(am__v_P_@AM_V@) am__v_P_ = $(am__v_P_@AM_DEFAULT_V@) am__v_P_0 = false am__v_P_1 = : AM_V_GEN = $(am__v_GEN_@AM_V@) am__v_GEN_ = $(am__v_GEN_@AM_DEFAULT_V@) am__v_GEN_0 = @echo " GEN " $@; am__v_GEN_1 = AM_V_at = $(am__v_at_@AM_V@) am__v_at_ = $(am__v_at_@AM_DEFAULT_V@) am__v_at_0 = @ am__v_at_1 = DEFAULT_INCLUDES = -I.@am__isrc@ depcomp = $(SHELL) $(top_srcdir)/depcomp am__maybe_remake_depfiles = depfiles am__depfiles_remade = ./$(DEPDIR)/libopenconnect_la-auth-common.Plo \ ./$(DEPDIR)/libopenconnect_la-auth-globalprotect.Plo \ ./$(DEPDIR)/libopenconnect_la-auth-juniper.Plo \ ./$(DEPDIR)/libopenconnect_la-auth.Plo \ ./$(DEPDIR)/libopenconnect_la-compat.Plo \ ./$(DEPDIR)/libopenconnect_la-cstp.Plo \ ./$(DEPDIR)/libopenconnect_la-digest.Plo \ ./$(DEPDIR)/libopenconnect_la-dtls.Plo \ ./$(DEPDIR)/libopenconnect_la-esp-seqno.Plo \ ./$(DEPDIR)/libopenconnect_la-esp.Plo \ ./$(DEPDIR)/libopenconnect_la-gnutls-dtls.Plo \ ./$(DEPDIR)/libopenconnect_la-gnutls-esp.Plo \ ./$(DEPDIR)/libopenconnect_la-gnutls.Plo \ ./$(DEPDIR)/libopenconnect_la-gnutls_tpm.Plo \ ./$(DEPDIR)/libopenconnect_la-gnutls_tpm2.Plo \ ./$(DEPDIR)/libopenconnect_la-gnutls_tpm2_esys.Plo \ ./$(DEPDIR)/libopenconnect_la-gnutls_tpm2_ibm.Plo \ ./$(DEPDIR)/libopenconnect_la-gpst.Plo \ ./$(DEPDIR)/libopenconnect_la-gssapi.Plo \ ./$(DEPDIR)/libopenconnect_la-http-auth.Plo \ ./$(DEPDIR)/libopenconnect_la-http.Plo \ ./$(DEPDIR)/libopenconnect_la-iconv.Plo \ ./$(DEPDIR)/libopenconnect_la-jni.Plo \ ./$(DEPDIR)/libopenconnect_la-library.Plo \ ./$(DEPDIR)/libopenconnect_la-lzo.Plo \ ./$(DEPDIR)/libopenconnect_la-lzs.Plo \ ./$(DEPDIR)/libopenconnect_la-mainloop.Plo \ ./$(DEPDIR)/libopenconnect_la-ntlm.Plo \ ./$(DEPDIR)/libopenconnect_la-oath.Plo \ ./$(DEPDIR)/libopenconnect_la-oncp.Plo \ ./$(DEPDIR)/libopenconnect_la-openssl-dtls.Plo \ ./$(DEPDIR)/libopenconnect_la-openssl-esp.Plo \ ./$(DEPDIR)/libopenconnect_la-openssl-pkcs11.Plo \ ./$(DEPDIR)/libopenconnect_la-openssl.Plo \ ./$(DEPDIR)/libopenconnect_la-pulse.Plo \ ./$(DEPDIR)/libopenconnect_la-script.Plo \ ./$(DEPDIR)/libopenconnect_la-ssl.Plo \ ./$(DEPDIR)/libopenconnect_la-sspi.Plo \ ./$(DEPDIR)/libopenconnect_la-stoken.Plo \ ./$(DEPDIR)/libopenconnect_la-tun-win32.Plo \ ./$(DEPDIR)/libopenconnect_la-tun.Plo \ ./$(DEPDIR)/libopenconnect_la-version.Plo \ ./$(DEPDIR)/libopenconnect_la-yubikey.Plo \ ./$(DEPDIR)/libopenconnect_wrapper_la-jni.Plo \ ./$(DEPDIR)/openconnect-main.Po ./$(DEPDIR)/openconnect-xml.Po am__mv = mv -f COMPILE = $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) \ $(CPPFLAGS) $(AM_CFLAGS) $(CFLAGS) LTCOMPILE = $(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) \ $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) \ $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) \ $(AM_CFLAGS) $(CFLAGS) AM_V_CC = $(am__v_CC_@AM_V@) am__v_CC_ = $(am__v_CC_@AM_DEFAULT_V@) am__v_CC_0 = @echo " CC " $@; am__v_CC_1 = CCLD = $(CC) LINK = $(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) \ $(LIBTOOLFLAGS) --mode=link $(CCLD) $(AM_CFLAGS) $(CFLAGS) \ $(AM_LDFLAGS) $(LDFLAGS) -o $@ AM_V_CCLD = $(am__v_CCLD_@AM_V@) am__v_CCLD_ = $(am__v_CCLD_@AM_DEFAULT_V@) am__v_CCLD_0 = @echo " CCLD " $@; am__v_CCLD_1 = SOURCES = $(libopenconnect_wrapper_la_SOURCES) \ $(libopenconnect_la_SOURCES) $(openconnect_SOURCES) DIST_SOURCES = $(am__libopenconnect_wrapper_la_SOURCES_DIST) \ $(am__libopenconnect_la_SOURCES_DIST) \ $(am__openconnect_SOURCES_DIST) RECURSIVE_TARGETS = all-recursive check-recursive cscopelist-recursive \ ctags-recursive dvi-recursive html-recursive info-recursive \ install-data-recursive install-dvi-recursive \ install-exec-recursive install-html-recursive \ install-info-recursive install-pdf-recursive \ install-ps-recursive install-recursive installcheck-recursive \ installdirs-recursive pdf-recursive ps-recursive \ tags-recursive uninstall-recursive am__can_run_installinfo = \ case $$AM_UPDATE_INFO_DIR in \ n|no|NO) false;; \ *) (install-info --version) >/dev/null 2>&1;; \ esac man8dir = $(mandir)/man8 NROFF = nroff MANS = $(man8_MANS) DATA = $(pkgconfig_DATA) HEADERS = $(include_HEADERS) $(noinst_HEADERS) RECURSIVE_CLEAN_TARGETS = mostlyclean-recursive clean-recursive \ distclean-recursive maintainer-clean-recursive am__recursive_targets = \ $(RECURSIVE_TARGETS) \ $(RECURSIVE_CLEAN_TARGETS) \ $(am__extra_recursive_targets) AM_RECURSIVE_TARGETS = $(am__recursive_targets:-recursive=) TAGS CTAGS \ cscope distdir distdir-am dist dist-all distcheck am__tagged_files = $(HEADERS) $(SOURCES) $(TAGS_FILES) \ $(LISP)config.h.in # Read a list of newline-separated strings from the standard input, # and print each of them once, without duplicates. Input order is # *not* preserved. am__uniquify_input = $(AWK) '\ BEGIN { nonempty = 0; } \ { items[$$0] = 1; nonempty = 1; } \ END { if (nonempty) { for (i in items) print i; }; } \ ' # Make sure the list of sources is unique. This is necessary because, # e.g., the same source file might be shared among _SOURCES variables # for different programs/libraries. am__define_uniq_tagged_files = \ list='$(am__tagged_files)'; \ unique=`for i in $$list; do \ if test -f "$$i"; then echo $$i; else echo $(srcdir)/$$i; fi; \ done | $(am__uniquify_input)` ETAGS = etags CTAGS = ctags CSCOPE = cscope DIST_SUBDIRS = tests www po am__DIST_COMMON = $(srcdir)/Makefile.in $(srcdir)/config.h.in \ $(srcdir)/libopenconnect.map.in $(srcdir)/openconnect.8.in \ $(srcdir)/openconnect.pc.in \ $(top_srcdir)/tests/configs/test-user-cert.config.in \ $(top_srcdir)/tests/configs/test-user-pass.config.in ABOUT-NLS \ AUTHORS ChangeLog TODO compile config.guess config.rpath \ config.sub depcomp install-sh ltmain.sh missing DISTFILES = $(DIST_COMMON) $(DIST_SOURCES) $(TEXINFOS) $(EXTRA_DIST) distdir = $(PACKAGE)-$(VERSION) top_distdir = $(distdir) am__remove_distdir = \ if test -d "$(distdir)"; then \ find "$(distdir)" -type d ! -perm -200 -exec chmod u+w {} ';' \ && rm -rf "$(distdir)" \ || { sleep 5 && rm -rf "$(distdir)"; }; \ else :; fi am__post_remove_distdir = $(am__remove_distdir) am__relativize = \ dir0=`pwd`; \ sed_first='s,^\([^/]*\)/.*$$,\1,'; \ sed_rest='s,^[^/]*/*,,'; \ sed_last='s,^.*/\([^/]*\)$$,\1,'; \ sed_butlast='s,/*[^/]*$$,,'; \ while test -n "$$dir1"; do \ first=`echo "$$dir1" | sed -e "$$sed_first"`; \ if test "$$first" != "."; then \ if test "$$first" = ".."; then \ dir2=`echo "$$dir0" | sed -e "$$sed_last"`/"$$dir2"; \ dir0=`echo "$$dir0" | sed -e "$$sed_butlast"`; \ else \ first2=`echo "$$dir2" | sed -e "$$sed_first"`; \ if test "$$first2" = "$$first"; then \ dir2=`echo "$$dir2" | sed -e "$$sed_rest"`; \ else \ dir2="../$$dir2"; \ fi; \ dir0="$$dir0"/"$$first"; \ fi; \ fi; \ dir1=`echo "$$dir1" | sed -e "$$sed_rest"`; \ done; \ reldir="$$dir2" DIST_ARCHIVES = $(distdir).tar.gz GZIP_ENV = --best DIST_TARGETS = dist-gzip distuninstallcheck_listfiles = find . -type f -print am__distuninstallcheck_listfiles = $(distuninstallcheck_listfiles) \ | sed 's|^\./|$(prefix)/|' | grep -v '$(infodir)/dir$$' distcleancheck_listfiles = find . -type f -print ACLOCAL = @ACLOCAL@ AMTAR = @AMTAR@ AM_DEFAULT_VERBOSITY = @AM_DEFAULT_VERBOSITY@ APIMAJOR = @APIMAJOR@ APIMINOR = @APIMINOR@ AR = @AR@ AUTOCONF = @AUTOCONF@ AUTOHEADER = @AUTOHEADER@ AUTOMAKE = @AUTOMAKE@ AWK = @AWK@ CC = @CC@ CCDEPMODE = @CCDEPMODE@ CFLAGS = @CFLAGS@ CONFIG_STATUS_DEPENDENCIES = @CONFIG_STATUS_DEPENDENCIES@ CPP = @CPP@ CPPFLAGS = @CPPFLAGS@ CWRAP_CFLAGS = @CWRAP_CFLAGS@ CWRAP_LIBS = @CWRAP_LIBS@ CYGPATH_W = @CYGPATH_W@ DEFAULT_VPNCSCRIPT = @DEFAULT_VPNCSCRIPT@ DEFS = @DEFS@ DEPDIR = @DEPDIR@ DLLTOOL = @DLLTOOL@ DSYMUTIL = @DSYMUTIL@ DUMPBIN = @DUMPBIN@ ECHO_C = @ECHO_C@ ECHO_N = @ECHO_N@ ECHO_T = @ECHO_T@ EGREP = @EGREP@ EXEEXT = @EXEEXT@ FGREP = @FGREP@ GITVERSIONDEPS = @GITVERSIONDEPS@ GNUTLS_CFLAGS = @GNUTLS_CFLAGS@ GNUTLS_LIBS = @GNUTLS_LIBS@ GREP = @GREP@ GROFF = @GROFF@ GSSAPI_CFLAGS = @GSSAPI_CFLAGS@ GSSAPI_LIBS = @GSSAPI_LIBS@ ICONV_CFLAGS = @ICONV_CFLAGS@ ICONV_LIBS = @ICONV_LIBS@ INSTALL = @INSTALL@ INSTALL_DATA = @INSTALL_DATA@ INSTALL_PROGRAM = @INSTALL_PROGRAM@ INSTALL_SCRIPT = @INSTALL_SCRIPT@ INSTALL_STRIP_PROGRAM = @INSTALL_STRIP_PROGRAM@ INTL_CFLAGS = @INTL_CFLAGS@ INTL_LIBS = @INTL_LIBS@ IP = @IP@ JNI_CFLAGS = @JNI_CFLAGS@ KRB5_CONFIG = @KRB5_CONFIG@ LD = @LD@ LDFLAGS = @LDFLAGS@ LIBICONV = @LIBICONV@ LIBLZ4_CFLAGS = @LIBLZ4_CFLAGS@ LIBLZ4_LIBS = @LIBLZ4_LIBS@ LIBLZ4_PC = @LIBLZ4_PC@ LIBOBJS = @LIBOBJS@ LIBP11_CFLAGS = @LIBP11_CFLAGS@ LIBP11_LIBS = @LIBP11_LIBS@ LIBPCSCLITE_CFLAGS = @LIBPCSCLITE_CFLAGS@ LIBPCSCLITE_LIBS = @LIBPCSCLITE_LIBS@ LIBPCSCLITE_PC = @LIBPCSCLITE_PC@ LIBPROXY_CFLAGS = @LIBPROXY_CFLAGS@ LIBPROXY_LIBS = @LIBPROXY_LIBS@ LIBPROXY_PC = @LIBPROXY_PC@ LIBPSKC_CFLAGS = @LIBPSKC_CFLAGS@ LIBPSKC_LIBS = @LIBPSKC_LIBS@ LIBPSKC_PC = @LIBPSKC_PC@ LIBS = @LIBS@ LIBSTOKEN_CFLAGS = @LIBSTOKEN_CFLAGS@ LIBSTOKEN_LIBS = @LIBSTOKEN_LIBS@ LIBSTOKEN_PC = @LIBSTOKEN_PC@ LIBTOOL = @LIBTOOL@ LIBXML2_CFLAGS = @LIBXML2_CFLAGS@ LIBXML2_LIBS = @LIBXML2_LIBS@ LINGUAS = @LINGUAS@ LIPO = @LIPO@ LN_S = @LN_S@ LTLIBICONV = @LTLIBICONV@ LTLIBOBJS = @LTLIBOBJS@ LT_SYS_LIBRARY_PATH = @LT_SYS_LIBRARY_PATH@ MAINT = @MAINT@ MAKEINFO = @MAKEINFO@ MANIFEST_TOOL = @MANIFEST_TOOL@ MKDIR_P = @MKDIR_P@ MSGFMT = @MSGFMT@ NM = @NM@ NMEDIT = @NMEDIT@ NUTTCP = @NUTTCP@ OBJDUMP = @OBJDUMP@ OBJEXT = @OBJEXT@ OCSERV_GROUP = @OCSERV_GROUP@ OCSERV_USER = @OCSERV_USER@ OPENSSL_CFLAGS = @OPENSSL_CFLAGS@ OPENSSL_LIBS = @OPENSSL_LIBS@ OTOOL = @OTOOL@ OTOOL64 = @OTOOL64@ P11KIT_CFLAGS = @P11KIT_CFLAGS@ P11KIT_LIBS = @P11KIT_LIBS@ P11KIT_PC = @P11KIT_PC@ PACKAGE = @PACKAGE@ PACKAGE_BUGREPORT = @PACKAGE_BUGREPORT@ PACKAGE_NAME = @PACKAGE_NAME@ PACKAGE_STRING = @PACKAGE_STRING@ PACKAGE_TARNAME = @PACKAGE_TARNAME@ PACKAGE_URL = @PACKAGE_URL@ PACKAGE_VERSION = @PACKAGE_VERSION@ PATH_SEPARATOR = @PATH_SEPARATOR@ PKG_CONFIG = @PKG_CONFIG@ PKG_CONFIG_LIBDIR = @PKG_CONFIG_LIBDIR@ PKG_CONFIG_PATH = @PKG_CONFIG_PATH@ PYTHON = @PYTHON@ RANLIB = @RANLIB@ SED = @SED@ SET_MAKE = @SET_MAKE@ SHELL = @SHELL@ SSL_CFLAGS = @SSL_CFLAGS@ SSL_LIBS = @SSL_LIBS@ SSL_PC = @SSL_PC@ STRIP = @STRIP@ SYMVER_ASPRINTF = @SYMVER_ASPRINTF@ SYMVER_GETLINE = @SYMVER_GETLINE@ SYMVER_JAVA = @SYMVER_JAVA@ SYMVER_TIME = @SYMVER_TIME@ SYMVER_VASPRINTF = @SYMVER_VASPRINTF@ SYMVER_WIN32_STRERROR = @SYMVER_WIN32_STRERROR@ TASN1_CFLAGS = @TASN1_CFLAGS@ TASN1_LIBS = @TASN1_LIBS@ TPM2_CFLAGS = @TPM2_CFLAGS@ TPM2_LIBS = @TPM2_LIBS@ TSS2_ESYS_CFLAGS = @TSS2_ESYS_CFLAGS@ TSS2_ESYS_LIBS = @TSS2_ESYS_LIBS@ TSS2_LIBS = @TSS2_LIBS@ TSS_CFLAGS = @TSS_CFLAGS@ TSS_LIBS = @TSS_LIBS@ VERSION = @VERSION@ VSCRIPT_LDFLAGS = @VSCRIPT_LDFLAGS@ WFLAGS = @WFLAGS@ WINDRES = @WINDRES@ ZLIB_CFLAGS = @ZLIB_CFLAGS@ ZLIB_LIBS = @ZLIB_LIBS@ ZLIB_PC = @ZLIB_PC@ _ACJNI_JAVAC = @_ACJNI_JAVAC@ abs_builddir = @abs_builddir@ abs_srcdir = @abs_srcdir@ abs_top_builddir = @abs_top_builddir@ abs_top_srcdir = @abs_top_srcdir@ ac_ct_AR = @ac_ct_AR@ ac_ct_CC = @ac_ct_CC@ ac_ct_DUMPBIN = @ac_ct_DUMPBIN@ am__include = @am__include@ am__leading_dot = @am__leading_dot@ am__quote = @am__quote@ am__tar = @am__tar@ am__untar = @am__untar@ bindir = @bindir@ build = @build@ build_alias = @build_alias@ build_cpu = @build_cpu@ build_os = @build_os@ build_vendor = @build_vendor@ builddir = @builddir@ datadir = @datadir@ datarootdir = @datarootdir@ docdir = @docdir@ dvidir = @dvidir@ exec_prefix = @exec_prefix@ host = @host@ host_alias = @host_alias@ host_cpu = @host_cpu@ host_os = @host_os@ host_vendor = @host_vendor@ htmldir = @htmldir@ includedir = @includedir@ infodir = @infodir@ install_sh = @install_sh@ libdir = @libdir@ libexecdir = @libexecdir@ localedir = @localedir@ localstatedir = @localstatedir@ mandir = @mandir@ mkdir_p = @mkdir_p@ oldincludedir = @oldincludedir@ openssl_pc_libs = @openssl_pc_libs@ pdfdir = @pdfdir@ pkgconfigdir = @pkgconfigdir@ prefix = @prefix@ program_transform_name = @program_transform_name@ psdir = @psdir@ sbindir = @sbindir@ sharedstatedir = @sharedstatedir@ srcdir = @srcdir@ sysconfdir = @sysconfdir@ system_pcsc_libs = @system_pcsc_libs@ target_alias = @target_alias@ test_pkcs11 = @test_pkcs11@ top_build_prefix = @top_build_prefix@ top_builddir = @top_builddir@ top_srcdir = @top_srcdir@ SUBDIRS = tests $(am__append_1) $(am__append_2) lib_LTLIBRARIES = libopenconnect.la $(am__append_23) man8_MANS = openconnect.8 AM_CFLAGS = @WFLAGS@ AM_CPPFLAGS = -DLOCALEDIR="\"$(localedir)\"" openconnect_SOURCES = xml.c main.c $(am__append_3) openconnect_CFLAGS = $(AM_CFLAGS) $(SSL_CFLAGS) $(DTLS_SSL_CFLAGS) $(LIBXML2_CFLAGS) $(LIBPROXY_CFLAGS) $(ZLIB_CFLAGS) $(LIBSTOKEN_CFLAGS) $(LIBPSKC_CFLAGS) $(GSSAPI_CFLAGS) $(INTL_CFLAGS) $(ICONV_CFLAGS) $(LIBPCSCLITE_CFLAGS) openconnect_LDADD = libopenconnect.la $(SSL_LIBS) $(LIBXML2_LIBS) $(LIBPROXY_LIBS) $(INTL_LIBS) $(ICONV_LIBS) library_srcs = ssl.c http.c http-auth.c auth-common.c library.c \ compat.c lzs.c mainloop.c script.c ntlm.c digest.c \ openconnect-internal.h $(lib_srcs_juniper) $(lib_srcs_cisco) \ $(lib_srcs_oath) $(lib_srcs_globalprotect) $(lib_srcs_pulse) \ $(am__append_4) $(am__append_5) $(am__append_6) \ $(am__append_7) $(am__append_10) $(am__append_11) \ $(am__append_12) $(am__append_17) $(am__append_18) \ $(am__append_19) lib_srcs_cisco = auth.c cstp.c $(am__append_15) lib_srcs_juniper = oncp.c lzo.c auth-juniper.c $(am__append_16) lib_srcs_pulse = pulse.c lib_srcs_globalprotect = gpst.c auth-globalprotect.c lib_srcs_oath = oath.c lib_srcs_gnutls = gnutls.c gnutls_tpm.c gnutls_tpm2.c lib_srcs_openssl = openssl.c openssl-pkcs11.c lib_srcs_win32 = tun-win32.c sspi.c lib_srcs_posix = tun.c lib_srcs_gssapi = gssapi.c lib_srcs_iconv = iconv.c lib_srcs_yubikey = yubikey.c lib_srcs_stoken = stoken.c lib_srcs_esp = esp.c esp-seqno.c $(am__append_8) $(am__append_13) lib_srcs_dtls = dtls.c $(am__append_9) $(am__append_14) POTFILES = $(openconnect_SOURCES) gnutls-esp.c gnutls-dtls.c openssl-esp.c openssl-dtls.c \ $(lib_srcs_esp) $(lib_srcs_dtls) gnutls_tpm2_esys.c gnutls_tpm2_ibm.c \ $(lib_srcs_openssl) $(lib_srcs_gnutls) $(library_srcs) \ $(lib_srcs_win32) $(lib_srcs_posix) $(lib_srcs_gssapi) $(lib_srcs_iconv) \ $(lib_srcs_yubikey) $(lib_srcs_stoken) libopenconnect_la_SOURCES = version.c $(library_srcs) $(am__append_21) libopenconnect_la_CFLAGS = $(AM_CFLAGS) $(SSL_CFLAGS) \ $(DTLS_SSL_CFLAGS) $(LIBXML2_CFLAGS) $(LIBPROXY_CFLAGS) \ $(ZLIB_CFLAGS) $(P11KIT_CFLAGS) $(TSS_CFLAGS) \ $(LIBSTOKEN_CFLAGS) $(LIBPSKC_CFLAGS) $(GSSAPI_CFLAGS) \ $(INTL_CFLAGS) $(ICONV_CFLAGS) $(LIBPCSCLITE_CFLAGS) \ $(LIBP11_CFLAGS) $(LIBLZ4_CFLAGS) $(am__append_22) libopenconnect_la_LIBADD = $(SSL_LIBS) $(DTLS_SSL_LIBS) $(LIBXML2_LIBS) $(LIBPROXY_LIBS) $(ZLIB_LIBS) $(P11KIT_LIBS) $(TSS_LIBS) $(LIBSTOKEN_LIBS) $(LIBPSKC_LIBS) $(GSSAPI_LIBS) $(INTL_LIBS) $(ICONV_LIBS) $(LIBPCSCLITE_LIBS) $(LIBP11_LIBS) $(LIBLZ4_LIBS) @OPENBSD_LIBTOOL_FALSE@LT_VER_ARG = -version-number # OpenBSD's libtool doesn't have -version-number, but its -version-info arg # does what GNU libtool's -version-number does. Which arguably is what the # GNU -version-info arg ought to do too. I hate libtool. @OPENBSD_LIBTOOL_TRUE@LT_VER_ARG = -version-info libopenconnect_la_LDFLAGS = $(LT_VER_ARG) @APIMAJOR@:@APIMINOR@ \ -no-undefined $(am__append_20) noinst_HEADERS = openconnect-internal.h openconnect.h gnutls.h lzo.h include_HEADERS = openconnect.h @HAVE_VSCRIPT_TRUE@libopenconnect_la_DEPENDENCIES = libopenconnect.map @JNI_STANDALONE_FALSE@@OPENCONNECT_JNI_TRUE@libopenconnect_wrapper_la_SOURCES = jni.c @JNI_STANDALONE_FALSE@@OPENCONNECT_JNI_TRUE@libopenconnect_wrapper_la_CFLAGS = $(AM_CFLAGS) $(JNI_CFLAGS) -Wno-missing-declarations @JNI_STANDALONE_FALSE@@OPENCONNECT_JNI_TRUE@libopenconnect_wrapper_la_LIBADD = libopenconnect.la pkgconfig_DATA = openconnect.pc EXTRA_DIST = AUTHORS version.sh README.TESTS COPYING.LGPL \ $(lib_srcs_openssl) $(lib_srcs_gnutls) $(shell cd \ "$(top_srcdir)" && git ls-tree HEAD -r --name-only -- android/ \ java/ trojans/ 2>/dev/null) DISTCLEANFILES = $(pkgconfig_DATA) pkglibexec_SCRIPTS = trojans/csd-post.sh trojans/csd-wrapper.sh trojans/tncc-wrapper.py \ trojans/hipreport.sh trojans/hipreport-android.sh DISTHOOK = 1 ACLOCAL_AMFLAGS = -I m4 all: config.h $(MAKE) $(AM_MAKEFLAGS) all-recursive .SUFFIXES: .SUFFIXES: .c .lo .o .obj .rc am--refresh: Makefile @: $(srcdir)/Makefile.in: @MAINTAINER_MODE_TRUE@ $(srcdir)/Makefile.am $(am__configure_deps) @for dep in $?; do \ case '$(am__configure_deps)' in \ *$$dep*) \ echo ' cd $(srcdir) && $(AUTOMAKE) --foreign'; \ $(am__cd) $(srcdir) && $(AUTOMAKE) --foreign \ && exit 0; \ exit 1;; \ esac; \ done; \ echo ' cd $(top_srcdir) && $(AUTOMAKE) --foreign Makefile'; \ $(am__cd) $(top_srcdir) && \ $(AUTOMAKE) --foreign Makefile Makefile: $(srcdir)/Makefile.in $(top_builddir)/config.status @case '$?' in \ *config.status*) \ echo ' $(SHELL) ./config.status'; \ $(SHELL) ./config.status;; \ *) \ echo ' cd $(top_builddir) && $(SHELL) ./config.status $@ $(am__maybe_remake_depfiles)'; \ cd $(top_builddir) && $(SHELL) ./config.status $@ $(am__maybe_remake_depfiles);; \ esac; $(top_builddir)/config.status: $(top_srcdir)/configure $(CONFIG_STATUS_DEPENDENCIES) $(SHELL) ./config.status --recheck $(top_srcdir)/configure: @MAINTAINER_MODE_TRUE@ $(am__configure_deps) $(am__cd) $(srcdir) && $(AUTOCONF) $(ACLOCAL_M4): @MAINTAINER_MODE_TRUE@ $(am__aclocal_m4_deps) $(am__cd) $(srcdir) && $(ACLOCAL) $(ACLOCAL_AMFLAGS) $(am__aclocal_m4_deps): config.h: stamp-h1 @test -f $@ || rm -f stamp-h1 @test -f $@ || $(MAKE) $(AM_MAKEFLAGS) stamp-h1 stamp-h1: $(srcdir)/config.h.in $(top_builddir)/config.status @rm -f stamp-h1 cd $(top_builddir) && $(SHELL) ./config.status config.h $(srcdir)/config.h.in: @MAINTAINER_MODE_TRUE@ $(am__configure_deps) ($(am__cd) $(top_srcdir) && $(AUTOHEADER)) rm -f stamp-h1 touch $@ distclean-hdr: -rm -f config.h stamp-h1 openconnect.pc: $(top_builddir)/config.status $(srcdir)/openconnect.pc.in cd $(top_builddir) && $(SHELL) ./config.status $@ libopenconnect.map: $(top_builddir)/config.status $(srcdir)/libopenconnect.map.in cd $(top_builddir) && $(SHELL) ./config.status $@ openconnect.8: $(top_builddir)/config.status $(srcdir)/openconnect.8.in cd $(top_builddir) && $(SHELL) ./config.status $@ tests/configs/test-user-cert.config: $(top_builddir)/config.status $(top_srcdir)/tests/configs/test-user-cert.config.in cd $(top_builddir) && $(SHELL) ./config.status $@ tests/configs/test-user-pass.config: $(top_builddir)/config.status $(top_srcdir)/tests/configs/test-user-pass.config.in cd $(top_builddir) && $(SHELL) ./config.status $@ install-sbinPROGRAMS: $(sbin_PROGRAMS) @$(NORMAL_INSTALL) @list='$(sbin_PROGRAMS)'; test -n "$(sbindir)" || list=; \ if test -n "$$list"; then \ echo " $(MKDIR_P) '$(DESTDIR)$(sbindir)'"; \ $(MKDIR_P) "$(DESTDIR)$(sbindir)" || exit 1; \ fi; \ for p in $$list; do echo "$$p $$p"; done | \ sed 's/$(EXEEXT)$$//' | \ while read p p1; do if test -f $$p \ || test -f $$p1 \ ; then echo "$$p"; echo "$$p"; else :; fi; \ done | \ sed -e 'p;s,.*/,,;n;h' \ -e 's|.*|.|' \ -e 'p;x;s,.*/,,;s/$(EXEEXT)$$//;$(transform);s/$$/$(EXEEXT)/' | \ sed 'N;N;N;s,\n, ,g' | \ $(AWK) 'BEGIN { files["."] = ""; dirs["."] = 1 } \ { d=$$3; if (dirs[d] != 1) { print "d", d; dirs[d] = 1 } \ if ($$2 == $$4) files[d] = files[d] " " $$1; \ else { print "f", $$3 "/" $$4, $$1; } } \ END { for (d in files) print "f", d, files[d] }' | \ while read type dir files; do \ if test "$$dir" = .; then dir=; else dir=/$$dir; fi; \ test -z "$$files" || { \ echo " $(INSTALL_PROGRAM_ENV) $(LIBTOOL) $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=install $(INSTALL_PROGRAM) $$files '$(DESTDIR)$(sbindir)$$dir'"; \ $(INSTALL_PROGRAM_ENV) $(LIBTOOL) $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=install $(INSTALL_PROGRAM) $$files "$(DESTDIR)$(sbindir)$$dir" || exit $$?; \ } \ ; done uninstall-sbinPROGRAMS: @$(NORMAL_UNINSTALL) @list='$(sbin_PROGRAMS)'; test -n "$(sbindir)" || list=; \ files=`for p in $$list; do echo "$$p"; done | \ sed -e 'h;s,^.*/,,;s/$(EXEEXT)$$//;$(transform)' \ -e 's/$$/$(EXEEXT)/' \ `; \ test -n "$$list" || exit 0; \ echo " ( cd '$(DESTDIR)$(sbindir)' && rm -f" $$files ")"; \ cd "$(DESTDIR)$(sbindir)" && rm -f $$files clean-sbinPROGRAMS: @list='$(sbin_PROGRAMS)'; test -n "$$list" || exit 0; \ echo " rm -f" $$list; \ rm -f $$list || exit $$?; \ test -n "$(EXEEXT)" || exit 0; \ list=`for p in $$list; do echo "$$p"; done | sed 's/$(EXEEXT)$$//'`; \ echo " rm -f" $$list; \ rm -f $$list install-libLTLIBRARIES: $(lib_LTLIBRARIES) @$(NORMAL_INSTALL) @list='$(lib_LTLIBRARIES)'; test -n "$(libdir)" || list=; \ list2=; for p in $$list; do \ if test -f $$p; then \ list2="$$list2 $$p"; \ else :; fi; \ done; \ test -z "$$list2" || { \ echo " $(MKDIR_P) '$(DESTDIR)$(libdir)'"; \ $(MKDIR_P) "$(DESTDIR)$(libdir)" || exit 1; \ echo " $(LIBTOOL) $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=install $(INSTALL) $(INSTALL_STRIP_FLAG) $$list2 '$(DESTDIR)$(libdir)'"; \ $(LIBTOOL) $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=install $(INSTALL) $(INSTALL_STRIP_FLAG) $$list2 "$(DESTDIR)$(libdir)"; \ } uninstall-libLTLIBRARIES: @$(NORMAL_UNINSTALL) @list='$(lib_LTLIBRARIES)'; test -n "$(libdir)" || list=; \ for p in $$list; do \ $(am__strip_dir) \ echo " $(LIBTOOL) $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=uninstall rm -f '$(DESTDIR)$(libdir)/$$f'"; \ $(LIBTOOL) $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=uninstall rm -f "$(DESTDIR)$(libdir)/$$f"; \ done clean-libLTLIBRARIES: -test -z "$(lib_LTLIBRARIES)" || rm -f $(lib_LTLIBRARIES) @list='$(lib_LTLIBRARIES)'; \ locs=`for p in $$list; do echo $$p; done | \ sed 's|^[^/]*$$|.|; s|/[^/]*$$||; s|$$|/so_locations|' | \ sort -u`; \ test -z "$$locs" || { \ echo rm -f $${locs}; \ rm -f $${locs}; \ } libopenconnect-wrapper.la: $(libopenconnect_wrapper_la_OBJECTS) $(libopenconnect_wrapper_la_DEPENDENCIES) $(EXTRA_libopenconnect_wrapper_la_DEPENDENCIES) $(AM_V_CCLD)$(libopenconnect_wrapper_la_LINK) $(am_libopenconnect_wrapper_la_rpath) $(libopenconnect_wrapper_la_OBJECTS) $(libopenconnect_wrapper_la_LIBADD) $(LIBS) libopenconnect.la: $(libopenconnect_la_OBJECTS) $(libopenconnect_la_DEPENDENCIES) $(EXTRA_libopenconnect_la_DEPENDENCIES) $(AM_V_CCLD)$(libopenconnect_la_LINK) -rpath $(libdir) $(libopenconnect_la_OBJECTS) $(libopenconnect_la_LIBADD) $(LIBS) openconnect$(EXEEXT): $(openconnect_OBJECTS) $(openconnect_DEPENDENCIES) $(EXTRA_openconnect_DEPENDENCIES) @rm -f openconnect$(EXEEXT) $(AM_V_CCLD)$(openconnect_LINK) $(openconnect_OBJECTS) $(openconnect_LDADD) $(LIBS) install-pkglibexecSCRIPTS: $(pkglibexec_SCRIPTS) @$(NORMAL_INSTALL) @list='$(pkglibexec_SCRIPTS)'; test -n "$(pkglibexecdir)" || list=; \ if test -n "$$list"; then \ echo " $(MKDIR_P) '$(DESTDIR)$(pkglibexecdir)'"; \ $(MKDIR_P) "$(DESTDIR)$(pkglibexecdir)" || exit 1; \ fi; \ for p in $$list; do \ if test -f "$$p"; then d=; else d="$(srcdir)/"; fi; \ if test -f "$$d$$p"; then echo "$$d$$p"; echo "$$p"; else :; fi; \ done | \ sed -e 'p;s,.*/,,;n' \ -e 'h;s|.*|.|' \ -e 'p;x;s,.*/,,;$(transform)' | sed 'N;N;N;s,\n, ,g' | \ $(AWK) 'BEGIN { files["."] = ""; dirs["."] = 1; } \ { d=$$3; if (dirs[d] != 1) { print "d", d; dirs[d] = 1 } \ if ($$2 == $$4) { files[d] = files[d] " " $$1; \ if (++n[d] == $(am__install_max)) { \ print "f", d, files[d]; n[d] = 0; files[d] = "" } } \ else { print "f", d "/" $$4, $$1 } } \ END { for (d in files) print "f", d, files[d] }' | \ while read type dir files; do \ if test "$$dir" = .; then dir=; else dir=/$$dir; fi; \ test -z "$$files" || { \ echo " $(INSTALL_SCRIPT) $$files '$(DESTDIR)$(pkglibexecdir)$$dir'"; \ $(INSTALL_SCRIPT) $$files "$(DESTDIR)$(pkglibexecdir)$$dir" || exit $$?; \ } \ ; done uninstall-pkglibexecSCRIPTS: @$(NORMAL_UNINSTALL) @list='$(pkglibexec_SCRIPTS)'; test -n "$(pkglibexecdir)" || exit 0; \ files=`for p in $$list; do echo "$$p"; done | \ sed -e 's,.*/,,;$(transform)'`; \ dir='$(DESTDIR)$(pkglibexecdir)'; $(am__uninstall_files_from_dir) mostlyclean-compile: -rm -f *.$(OBJEXT) distclean-compile: -rm -f *.tab.c @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-auth-common.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-auth-globalprotect.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-auth-juniper.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-auth.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-compat.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-cstp.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-digest.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-dtls.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-esp-seqno.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-esp.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-gnutls-dtls.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-gnutls-esp.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-gnutls.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-gnutls_tpm.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-gnutls_tpm2.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-gnutls_tpm2_esys.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-gnutls_tpm2_ibm.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-gpst.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-gssapi.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-http-auth.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-http.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-iconv.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-jni.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-library.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-lzo.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-lzs.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-mainloop.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-ntlm.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-oath.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-oncp.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-openssl-dtls.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-openssl-esp.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-openssl-pkcs11.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-openssl.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-pulse.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-script.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-ssl.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-sspi.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-stoken.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-tun-win32.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-tun.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-version.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-yubikey.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_wrapper_la-jni.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/openconnect-main.Po@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/openconnect-xml.Po@am__quote@ # am--include-marker $(am__depfiles_remade): @$(MKDIR_P) $(@D) @echo '# dummy' >$@-t && $(am__mv) $@-t $@ am--depfiles: $(am__depfiles_remade) .c.o: @am__fastdepCC_TRUE@ $(AM_V_CC)$(COMPILE) -MT $@ -MD -MP -MF $(DEPDIR)/$*.Tpo -c -o $@ $< @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/$*.Tpo $(DEPDIR)/$*.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='$<' object='$@' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(COMPILE) -c -o $@ $< .c.obj: @am__fastdepCC_TRUE@ $(AM_V_CC)$(COMPILE) -MT $@ -MD -MP -MF $(DEPDIR)/$*.Tpo -c -o $@ `$(CYGPATH_W) '$<'` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/$*.Tpo $(DEPDIR)/$*.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='$<' object='$@' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(COMPILE) -c -o $@ `$(CYGPATH_W) '$<'` .c.lo: @am__fastdepCC_TRUE@ $(AM_V_CC)$(LTCOMPILE) -MT $@ -MD -MP -MF $(DEPDIR)/$*.Tpo -c -o $@ $< @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/$*.Tpo $(DEPDIR)/$*.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='$<' object='$@' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LTCOMPILE) -c -o $@ $< libopenconnect_wrapper_la-jni.lo: jni.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_wrapper_la_CFLAGS) $(CFLAGS) -MT libopenconnect_wrapper_la-jni.lo -MD -MP -MF $(DEPDIR)/libopenconnect_wrapper_la-jni.Tpo -c -o libopenconnect_wrapper_la-jni.lo `test -f 'jni.c' || echo '$(srcdir)/'`jni.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_wrapper_la-jni.Tpo $(DEPDIR)/libopenconnect_wrapper_la-jni.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='jni.c' object='libopenconnect_wrapper_la-jni.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_wrapper_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_wrapper_la-jni.lo `test -f 'jni.c' || echo '$(srcdir)/'`jni.c libopenconnect_la-version.lo: version.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-version.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-version.Tpo -c -o libopenconnect_la-version.lo `test -f 'version.c' || echo '$(srcdir)/'`version.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-version.Tpo $(DEPDIR)/libopenconnect_la-version.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='version.c' object='libopenconnect_la-version.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-version.lo `test -f 'version.c' || echo '$(srcdir)/'`version.c libopenconnect_la-ssl.lo: ssl.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-ssl.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-ssl.Tpo -c -o libopenconnect_la-ssl.lo `test -f 'ssl.c' || echo '$(srcdir)/'`ssl.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-ssl.Tpo $(DEPDIR)/libopenconnect_la-ssl.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='ssl.c' object='libopenconnect_la-ssl.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-ssl.lo `test -f 'ssl.c' || echo '$(srcdir)/'`ssl.c libopenconnect_la-http.lo: http.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-http.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-http.Tpo -c -o libopenconnect_la-http.lo `test -f 'http.c' || echo '$(srcdir)/'`http.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-http.Tpo $(DEPDIR)/libopenconnect_la-http.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='http.c' object='libopenconnect_la-http.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-http.lo `test -f 'http.c' || echo '$(srcdir)/'`http.c libopenconnect_la-http-auth.lo: http-auth.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-http-auth.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-http-auth.Tpo -c -o libopenconnect_la-http-auth.lo `test -f 'http-auth.c' || echo '$(srcdir)/'`http-auth.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-http-auth.Tpo $(DEPDIR)/libopenconnect_la-http-auth.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='http-auth.c' object='libopenconnect_la-http-auth.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-http-auth.lo `test -f 'http-auth.c' || echo '$(srcdir)/'`http-auth.c libopenconnect_la-auth-common.lo: auth-common.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-auth-common.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-auth-common.Tpo -c -o libopenconnect_la-auth-common.lo `test -f 'auth-common.c' || echo '$(srcdir)/'`auth-common.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-auth-common.Tpo $(DEPDIR)/libopenconnect_la-auth-common.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='auth-common.c' object='libopenconnect_la-auth-common.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-auth-common.lo `test -f 'auth-common.c' || echo '$(srcdir)/'`auth-common.c libopenconnect_la-library.lo: library.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-library.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-library.Tpo -c -o libopenconnect_la-library.lo `test -f 'library.c' || echo '$(srcdir)/'`library.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-library.Tpo $(DEPDIR)/libopenconnect_la-library.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='library.c' object='libopenconnect_la-library.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-library.lo `test -f 'library.c' || echo '$(srcdir)/'`library.c libopenconnect_la-compat.lo: compat.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-compat.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-compat.Tpo -c -o libopenconnect_la-compat.lo `test -f 'compat.c' || echo '$(srcdir)/'`compat.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-compat.Tpo $(DEPDIR)/libopenconnect_la-compat.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='compat.c' object='libopenconnect_la-compat.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-compat.lo `test -f 'compat.c' || echo '$(srcdir)/'`compat.c libopenconnect_la-lzs.lo: lzs.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-lzs.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-lzs.Tpo -c -o libopenconnect_la-lzs.lo `test -f 'lzs.c' || echo '$(srcdir)/'`lzs.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-lzs.Tpo $(DEPDIR)/libopenconnect_la-lzs.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='lzs.c' object='libopenconnect_la-lzs.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-lzs.lo `test -f 'lzs.c' || echo '$(srcdir)/'`lzs.c libopenconnect_la-mainloop.lo: mainloop.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-mainloop.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-mainloop.Tpo -c -o libopenconnect_la-mainloop.lo `test -f 'mainloop.c' || echo '$(srcdir)/'`mainloop.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-mainloop.Tpo $(DEPDIR)/libopenconnect_la-mainloop.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='mainloop.c' object='libopenconnect_la-mainloop.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-mainloop.lo `test -f 'mainloop.c' || echo '$(srcdir)/'`mainloop.c libopenconnect_la-script.lo: script.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-script.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-script.Tpo -c -o libopenconnect_la-script.lo `test -f 'script.c' || echo '$(srcdir)/'`script.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-script.Tpo $(DEPDIR)/libopenconnect_la-script.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='script.c' object='libopenconnect_la-script.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-script.lo `test -f 'script.c' || echo '$(srcdir)/'`script.c libopenconnect_la-ntlm.lo: ntlm.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-ntlm.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-ntlm.Tpo -c -o libopenconnect_la-ntlm.lo `test -f 'ntlm.c' || echo '$(srcdir)/'`ntlm.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-ntlm.Tpo $(DEPDIR)/libopenconnect_la-ntlm.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='ntlm.c' object='libopenconnect_la-ntlm.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-ntlm.lo `test -f 'ntlm.c' || echo '$(srcdir)/'`ntlm.c libopenconnect_la-digest.lo: digest.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-digest.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-digest.Tpo -c -o libopenconnect_la-digest.lo `test -f 'digest.c' || echo '$(srcdir)/'`digest.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-digest.Tpo $(DEPDIR)/libopenconnect_la-digest.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='digest.c' object='libopenconnect_la-digest.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-digest.lo `test -f 'digest.c' || echo '$(srcdir)/'`digest.c libopenconnect_la-oncp.lo: oncp.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-oncp.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-oncp.Tpo -c -o libopenconnect_la-oncp.lo `test -f 'oncp.c' || echo '$(srcdir)/'`oncp.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-oncp.Tpo $(DEPDIR)/libopenconnect_la-oncp.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='oncp.c' object='libopenconnect_la-oncp.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-oncp.lo `test -f 'oncp.c' || echo '$(srcdir)/'`oncp.c libopenconnect_la-lzo.lo: lzo.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-lzo.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-lzo.Tpo -c -o libopenconnect_la-lzo.lo `test -f 'lzo.c' || echo '$(srcdir)/'`lzo.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-lzo.Tpo $(DEPDIR)/libopenconnect_la-lzo.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='lzo.c' object='libopenconnect_la-lzo.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-lzo.lo `test -f 'lzo.c' || echo '$(srcdir)/'`lzo.c libopenconnect_la-auth-juniper.lo: auth-juniper.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-auth-juniper.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-auth-juniper.Tpo -c -o libopenconnect_la-auth-juniper.lo `test -f 'auth-juniper.c' || echo '$(srcdir)/'`auth-juniper.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-auth-juniper.Tpo $(DEPDIR)/libopenconnect_la-auth-juniper.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='auth-juniper.c' object='libopenconnect_la-auth-juniper.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-auth-juniper.lo `test -f 'auth-juniper.c' || echo '$(srcdir)/'`auth-juniper.c libopenconnect_la-esp.lo: esp.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-esp.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-esp.Tpo -c -o libopenconnect_la-esp.lo `test -f 'esp.c' || echo '$(srcdir)/'`esp.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-esp.Tpo $(DEPDIR)/libopenconnect_la-esp.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='esp.c' object='libopenconnect_la-esp.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-esp.lo `test -f 'esp.c' || echo '$(srcdir)/'`esp.c libopenconnect_la-esp-seqno.lo: esp-seqno.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-esp-seqno.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-esp-seqno.Tpo -c -o libopenconnect_la-esp-seqno.lo `test -f 'esp-seqno.c' || echo '$(srcdir)/'`esp-seqno.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-esp-seqno.Tpo $(DEPDIR)/libopenconnect_la-esp-seqno.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='esp-seqno.c' object='libopenconnect_la-esp-seqno.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-esp-seqno.lo `test -f 'esp-seqno.c' || echo '$(srcdir)/'`esp-seqno.c libopenconnect_la-gnutls-esp.lo: gnutls-esp.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-gnutls-esp.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-gnutls-esp.Tpo -c -o libopenconnect_la-gnutls-esp.lo `test -f 'gnutls-esp.c' || echo '$(srcdir)/'`gnutls-esp.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-gnutls-esp.Tpo $(DEPDIR)/libopenconnect_la-gnutls-esp.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='gnutls-esp.c' object='libopenconnect_la-gnutls-esp.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-gnutls-esp.lo `test -f 'gnutls-esp.c' || echo '$(srcdir)/'`gnutls-esp.c libopenconnect_la-openssl-esp.lo: openssl-esp.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-openssl-esp.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-openssl-esp.Tpo -c -o libopenconnect_la-openssl-esp.lo `test -f 'openssl-esp.c' || echo '$(srcdir)/'`openssl-esp.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-openssl-esp.Tpo $(DEPDIR)/libopenconnect_la-openssl-esp.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='openssl-esp.c' object='libopenconnect_la-openssl-esp.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-openssl-esp.lo `test -f 'openssl-esp.c' || echo '$(srcdir)/'`openssl-esp.c libopenconnect_la-auth.lo: auth.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-auth.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-auth.Tpo -c -o libopenconnect_la-auth.lo `test -f 'auth.c' || echo '$(srcdir)/'`auth.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-auth.Tpo $(DEPDIR)/libopenconnect_la-auth.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='auth.c' object='libopenconnect_la-auth.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-auth.lo `test -f 'auth.c' || echo '$(srcdir)/'`auth.c libopenconnect_la-cstp.lo: cstp.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-cstp.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-cstp.Tpo -c -o libopenconnect_la-cstp.lo `test -f 'cstp.c' || echo '$(srcdir)/'`cstp.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-cstp.Tpo $(DEPDIR)/libopenconnect_la-cstp.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='cstp.c' object='libopenconnect_la-cstp.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-cstp.lo `test -f 'cstp.c' || echo '$(srcdir)/'`cstp.c libopenconnect_la-dtls.lo: dtls.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-dtls.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-dtls.Tpo -c -o libopenconnect_la-dtls.lo `test -f 'dtls.c' || echo '$(srcdir)/'`dtls.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-dtls.Tpo $(DEPDIR)/libopenconnect_la-dtls.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='dtls.c' object='libopenconnect_la-dtls.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-dtls.lo `test -f 'dtls.c' || echo '$(srcdir)/'`dtls.c libopenconnect_la-gnutls-dtls.lo: gnutls-dtls.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-gnutls-dtls.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-gnutls-dtls.Tpo -c -o libopenconnect_la-gnutls-dtls.lo `test -f 'gnutls-dtls.c' || echo '$(srcdir)/'`gnutls-dtls.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-gnutls-dtls.Tpo $(DEPDIR)/libopenconnect_la-gnutls-dtls.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='gnutls-dtls.c' object='libopenconnect_la-gnutls-dtls.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-gnutls-dtls.lo `test -f 'gnutls-dtls.c' || echo '$(srcdir)/'`gnutls-dtls.c libopenconnect_la-openssl-dtls.lo: openssl-dtls.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-openssl-dtls.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-openssl-dtls.Tpo -c -o libopenconnect_la-openssl-dtls.lo `test -f 'openssl-dtls.c' || echo '$(srcdir)/'`openssl-dtls.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-openssl-dtls.Tpo $(DEPDIR)/libopenconnect_la-openssl-dtls.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='openssl-dtls.c' object='libopenconnect_la-openssl-dtls.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-openssl-dtls.lo `test -f 'openssl-dtls.c' || echo '$(srcdir)/'`openssl-dtls.c libopenconnect_la-oath.lo: oath.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-oath.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-oath.Tpo -c -o libopenconnect_la-oath.lo `test -f 'oath.c' || echo '$(srcdir)/'`oath.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-oath.Tpo $(DEPDIR)/libopenconnect_la-oath.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='oath.c' object='libopenconnect_la-oath.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-oath.lo `test -f 'oath.c' || echo '$(srcdir)/'`oath.c libopenconnect_la-gpst.lo: gpst.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-gpst.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-gpst.Tpo -c -o libopenconnect_la-gpst.lo `test -f 'gpst.c' || echo '$(srcdir)/'`gpst.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-gpst.Tpo $(DEPDIR)/libopenconnect_la-gpst.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='gpst.c' object='libopenconnect_la-gpst.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-gpst.lo `test -f 'gpst.c' || echo '$(srcdir)/'`gpst.c libopenconnect_la-auth-globalprotect.lo: auth-globalprotect.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-auth-globalprotect.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-auth-globalprotect.Tpo -c -o libopenconnect_la-auth-globalprotect.lo `test -f 'auth-globalprotect.c' || echo '$(srcdir)/'`auth-globalprotect.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-auth-globalprotect.Tpo $(DEPDIR)/libopenconnect_la-auth-globalprotect.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='auth-globalprotect.c' object='libopenconnect_la-auth-globalprotect.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-auth-globalprotect.lo `test -f 'auth-globalprotect.c' || echo '$(srcdir)/'`auth-globalprotect.c libopenconnect_la-pulse.lo: pulse.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-pulse.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-pulse.Tpo -c -o libopenconnect_la-pulse.lo `test -f 'pulse.c' || echo '$(srcdir)/'`pulse.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-pulse.Tpo $(DEPDIR)/libopenconnect_la-pulse.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='pulse.c' object='libopenconnect_la-pulse.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-pulse.lo `test -f 'pulse.c' || echo '$(srcdir)/'`pulse.c libopenconnect_la-yubikey.lo: yubikey.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-yubikey.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-yubikey.Tpo -c -o libopenconnect_la-yubikey.lo `test -f 'yubikey.c' || echo '$(srcdir)/'`yubikey.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-yubikey.Tpo $(DEPDIR)/libopenconnect_la-yubikey.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='yubikey.c' object='libopenconnect_la-yubikey.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-yubikey.lo `test -f 'yubikey.c' || echo '$(srcdir)/'`yubikey.c libopenconnect_la-stoken.lo: stoken.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-stoken.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-stoken.Tpo -c -o libopenconnect_la-stoken.lo `test -f 'stoken.c' || echo '$(srcdir)/'`stoken.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-stoken.Tpo $(DEPDIR)/libopenconnect_la-stoken.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='stoken.c' object='libopenconnect_la-stoken.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-stoken.lo `test -f 'stoken.c' || echo '$(srcdir)/'`stoken.c libopenconnect_la-gssapi.lo: gssapi.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-gssapi.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-gssapi.Tpo -c -o libopenconnect_la-gssapi.lo `test -f 'gssapi.c' || echo '$(srcdir)/'`gssapi.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-gssapi.Tpo $(DEPDIR)/libopenconnect_la-gssapi.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='gssapi.c' object='libopenconnect_la-gssapi.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-gssapi.lo `test -f 'gssapi.c' || echo '$(srcdir)/'`gssapi.c libopenconnect_la-gnutls.lo: gnutls.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-gnutls.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-gnutls.Tpo -c -o libopenconnect_la-gnutls.lo `test -f 'gnutls.c' || echo '$(srcdir)/'`gnutls.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-gnutls.Tpo $(DEPDIR)/libopenconnect_la-gnutls.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='gnutls.c' object='libopenconnect_la-gnutls.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-gnutls.lo `test -f 'gnutls.c' || echo '$(srcdir)/'`gnutls.c libopenconnect_la-gnutls_tpm.lo: gnutls_tpm.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-gnutls_tpm.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-gnutls_tpm.Tpo -c -o libopenconnect_la-gnutls_tpm.lo `test -f 'gnutls_tpm.c' || echo '$(srcdir)/'`gnutls_tpm.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-gnutls_tpm.Tpo $(DEPDIR)/libopenconnect_la-gnutls_tpm.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='gnutls_tpm.c' object='libopenconnect_la-gnutls_tpm.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-gnutls_tpm.lo `test -f 'gnutls_tpm.c' || echo '$(srcdir)/'`gnutls_tpm.c libopenconnect_la-gnutls_tpm2.lo: gnutls_tpm2.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-gnutls_tpm2.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-gnutls_tpm2.Tpo -c -o libopenconnect_la-gnutls_tpm2.lo `test -f 'gnutls_tpm2.c' || echo '$(srcdir)/'`gnutls_tpm2.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-gnutls_tpm2.Tpo $(DEPDIR)/libopenconnect_la-gnutls_tpm2.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='gnutls_tpm2.c' object='libopenconnect_la-gnutls_tpm2.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-gnutls_tpm2.lo `test -f 'gnutls_tpm2.c' || echo '$(srcdir)/'`gnutls_tpm2.c libopenconnect_la-gnutls_tpm2_esys.lo: gnutls_tpm2_esys.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-gnutls_tpm2_esys.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-gnutls_tpm2_esys.Tpo -c -o libopenconnect_la-gnutls_tpm2_esys.lo `test -f 'gnutls_tpm2_esys.c' || echo '$(srcdir)/'`gnutls_tpm2_esys.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-gnutls_tpm2_esys.Tpo $(DEPDIR)/libopenconnect_la-gnutls_tpm2_esys.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='gnutls_tpm2_esys.c' object='libopenconnect_la-gnutls_tpm2_esys.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-gnutls_tpm2_esys.lo `test -f 'gnutls_tpm2_esys.c' || echo '$(srcdir)/'`gnutls_tpm2_esys.c libopenconnect_la-gnutls_tpm2_ibm.lo: gnutls_tpm2_ibm.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-gnutls_tpm2_ibm.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-gnutls_tpm2_ibm.Tpo -c -o libopenconnect_la-gnutls_tpm2_ibm.lo `test -f 'gnutls_tpm2_ibm.c' || echo '$(srcdir)/'`gnutls_tpm2_ibm.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-gnutls_tpm2_ibm.Tpo $(DEPDIR)/libopenconnect_la-gnutls_tpm2_ibm.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='gnutls_tpm2_ibm.c' object='libopenconnect_la-gnutls_tpm2_ibm.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-gnutls_tpm2_ibm.lo `test -f 'gnutls_tpm2_ibm.c' || echo '$(srcdir)/'`gnutls_tpm2_ibm.c libopenconnect_la-openssl.lo: openssl.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-openssl.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-openssl.Tpo -c -o libopenconnect_la-openssl.lo `test -f 'openssl.c' || echo '$(srcdir)/'`openssl.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-openssl.Tpo $(DEPDIR)/libopenconnect_la-openssl.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='openssl.c' object='libopenconnect_la-openssl.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-openssl.lo `test -f 'openssl.c' || echo '$(srcdir)/'`openssl.c libopenconnect_la-openssl-pkcs11.lo: openssl-pkcs11.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-openssl-pkcs11.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-openssl-pkcs11.Tpo -c -o libopenconnect_la-openssl-pkcs11.lo `test -f 'openssl-pkcs11.c' || echo '$(srcdir)/'`openssl-pkcs11.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-openssl-pkcs11.Tpo $(DEPDIR)/libopenconnect_la-openssl-pkcs11.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='openssl-pkcs11.c' object='libopenconnect_la-openssl-pkcs11.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-openssl-pkcs11.lo `test -f 'openssl-pkcs11.c' || echo '$(srcdir)/'`openssl-pkcs11.c libopenconnect_la-iconv.lo: iconv.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-iconv.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-iconv.Tpo -c -o libopenconnect_la-iconv.lo `test -f 'iconv.c' || echo '$(srcdir)/'`iconv.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-iconv.Tpo $(DEPDIR)/libopenconnect_la-iconv.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='iconv.c' object='libopenconnect_la-iconv.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-iconv.lo `test -f 'iconv.c' || echo '$(srcdir)/'`iconv.c libopenconnect_la-tun-win32.lo: tun-win32.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-tun-win32.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-tun-win32.Tpo -c -o libopenconnect_la-tun-win32.lo `test -f 'tun-win32.c' || echo '$(srcdir)/'`tun-win32.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-tun-win32.Tpo $(DEPDIR)/libopenconnect_la-tun-win32.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='tun-win32.c' object='libopenconnect_la-tun-win32.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-tun-win32.lo `test -f 'tun-win32.c' || echo '$(srcdir)/'`tun-win32.c libopenconnect_la-sspi.lo: sspi.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-sspi.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-sspi.Tpo -c -o libopenconnect_la-sspi.lo `test -f 'sspi.c' || echo '$(srcdir)/'`sspi.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-sspi.Tpo $(DEPDIR)/libopenconnect_la-sspi.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='sspi.c' object='libopenconnect_la-sspi.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-sspi.lo `test -f 'sspi.c' || echo '$(srcdir)/'`sspi.c libopenconnect_la-tun.lo: tun.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-tun.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-tun.Tpo -c -o libopenconnect_la-tun.lo `test -f 'tun.c' || echo '$(srcdir)/'`tun.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-tun.Tpo $(DEPDIR)/libopenconnect_la-tun.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='tun.c' object='libopenconnect_la-tun.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-tun.lo `test -f 'tun.c' || echo '$(srcdir)/'`tun.c libopenconnect_la-jni.lo: jni.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-jni.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-jni.Tpo -c -o libopenconnect_la-jni.lo `test -f 'jni.c' || echo '$(srcdir)/'`jni.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-jni.Tpo $(DEPDIR)/libopenconnect_la-jni.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='jni.c' object='libopenconnect_la-jni.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-jni.lo `test -f 'jni.c' || echo '$(srcdir)/'`jni.c openconnect-xml.o: xml.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(openconnect_CFLAGS) $(CFLAGS) -MT openconnect-xml.o -MD -MP -MF $(DEPDIR)/openconnect-xml.Tpo -c -o openconnect-xml.o `test -f 'xml.c' || echo '$(srcdir)/'`xml.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/openconnect-xml.Tpo $(DEPDIR)/openconnect-xml.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='xml.c' object='openconnect-xml.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(openconnect_CFLAGS) $(CFLAGS) -c -o openconnect-xml.o `test -f 'xml.c' || echo '$(srcdir)/'`xml.c openconnect-xml.obj: xml.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(openconnect_CFLAGS) $(CFLAGS) -MT openconnect-xml.obj -MD -MP -MF $(DEPDIR)/openconnect-xml.Tpo -c -o openconnect-xml.obj `if test -f 'xml.c'; then $(CYGPATH_W) 'xml.c'; else $(CYGPATH_W) '$(srcdir)/xml.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/openconnect-xml.Tpo $(DEPDIR)/openconnect-xml.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='xml.c' object='openconnect-xml.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(openconnect_CFLAGS) $(CFLAGS) -c -o openconnect-xml.obj `if test -f 'xml.c'; then $(CYGPATH_W) 'xml.c'; else $(CYGPATH_W) '$(srcdir)/xml.c'; fi` openconnect-main.o: main.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(openconnect_CFLAGS) $(CFLAGS) -MT openconnect-main.o -MD -MP -MF $(DEPDIR)/openconnect-main.Tpo -c -o openconnect-main.o `test -f 'main.c' || echo '$(srcdir)/'`main.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/openconnect-main.Tpo $(DEPDIR)/openconnect-main.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='main.c' object='openconnect-main.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(openconnect_CFLAGS) $(CFLAGS) -c -o openconnect-main.o `test -f 'main.c' || echo '$(srcdir)/'`main.c openconnect-main.obj: main.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(openconnect_CFLAGS) $(CFLAGS) -MT openconnect-main.obj -MD -MP -MF $(DEPDIR)/openconnect-main.Tpo -c -o openconnect-main.obj `if test -f 'main.c'; then $(CYGPATH_W) 'main.c'; else $(CYGPATH_W) '$(srcdir)/main.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/openconnect-main.Tpo $(DEPDIR)/openconnect-main.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='main.c' object='openconnect-main.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(openconnect_CFLAGS) $(CFLAGS) -c -o openconnect-main.obj `if test -f 'main.c'; then $(CYGPATH_W) 'main.c'; else $(CYGPATH_W) '$(srcdir)/main.c'; fi` mostlyclean-libtool: -rm -f *.lo clean-libtool: -rm -rf .libs _libs distclean-libtool: -rm -f libtool config.lt install-man8: $(man8_MANS) @$(NORMAL_INSTALL) @list1='$(man8_MANS)'; \ list2=''; \ test -n "$(man8dir)" \ && test -n "`echo $$list1$$list2`" \ || exit 0; \ echo " $(MKDIR_P) '$(DESTDIR)$(man8dir)'"; \ $(MKDIR_P) "$(DESTDIR)$(man8dir)" || exit 1; \ { for i in $$list1; do echo "$$i"; done; \ if test -n "$$list2"; then \ for i in $$list2; do echo "$$i"; done \ | sed -n '/\.8[a-z]*$$/p'; \ fi; \ } | while read p; do \ if test -f $$p; then d=; else d="$(srcdir)/"; fi; \ echo "$$d$$p"; echo "$$p"; \ done | \ sed -e 'n;s,.*/,,;p;h;s,.*\.,,;s,^[^8][0-9a-z]*$$,8,;x' \ -e 's,\.[0-9a-z]*$$,,;$(transform);G;s,\n,.,' | \ sed 'N;N;s,\n, ,g' | { \ list=; while read file base inst; do \ if test "$$base" = "$$inst"; then list="$$list $$file"; else \ echo " $(INSTALL_DATA) '$$file' '$(DESTDIR)$(man8dir)/$$inst'"; \ $(INSTALL_DATA) "$$file" "$(DESTDIR)$(man8dir)/$$inst" || exit $$?; \ fi; \ done; \ for i in $$list; do echo "$$i"; done | $(am__base_list) | \ while read files; do \ test -z "$$files" || { \ echo " $(INSTALL_DATA) $$files '$(DESTDIR)$(man8dir)'"; \ $(INSTALL_DATA) $$files "$(DESTDIR)$(man8dir)" || exit $$?; }; \ done; } uninstall-man8: @$(NORMAL_UNINSTALL) @list='$(man8_MANS)'; test -n "$(man8dir)" || exit 0; \ files=`{ for i in $$list; do echo "$$i"; done; \ } | sed -e 's,.*/,,;h;s,.*\.,,;s,^[^8][0-9a-z]*$$,8,;x' \ -e 's,\.[0-9a-z]*$$,,;$(transform);G;s,\n,.,'`; \ dir='$(DESTDIR)$(man8dir)'; $(am__uninstall_files_from_dir) install-pkgconfigDATA: $(pkgconfig_DATA) @$(NORMAL_INSTALL) @list='$(pkgconfig_DATA)'; test -n "$(pkgconfigdir)" || list=; \ if test -n "$$list"; then \ echo " $(MKDIR_P) '$(DESTDIR)$(pkgconfigdir)'"; \ $(MKDIR_P) "$(DESTDIR)$(pkgconfigdir)" || exit 1; \ fi; \ for p in $$list; do \ if test -f "$$p"; then d=; else d="$(srcdir)/"; fi; \ echo "$$d$$p"; \ done | $(am__base_list) | \ while read files; do \ echo " $(INSTALL_DATA) $$files '$(DESTDIR)$(pkgconfigdir)'"; \ $(INSTALL_DATA) $$files "$(DESTDIR)$(pkgconfigdir)" || exit $$?; \ done uninstall-pkgconfigDATA: @$(NORMAL_UNINSTALL) @list='$(pkgconfig_DATA)'; test -n "$(pkgconfigdir)" || list=; \ files=`for p in $$list; do echo $$p; done | sed -e 's|^.*/||'`; \ dir='$(DESTDIR)$(pkgconfigdir)'; $(am__uninstall_files_from_dir) install-includeHEADERS: $(include_HEADERS) @$(NORMAL_INSTALL) @list='$(include_HEADERS)'; test -n "$(includedir)" || list=; \ if test -n "$$list"; then \ echo " $(MKDIR_P) '$(DESTDIR)$(includedir)'"; \ $(MKDIR_P) "$(DESTDIR)$(includedir)" || exit 1; \ fi; \ for p in $$list; do \ if test -f "$$p"; then d=; else d="$(srcdir)/"; fi; \ echo "$$d$$p"; \ done | $(am__base_list) | \ while read files; do \ echo " $(INSTALL_HEADER) $$files '$(DESTDIR)$(includedir)'"; \ $(INSTALL_HEADER) $$files "$(DESTDIR)$(includedir)" || exit $$?; \ done uninstall-includeHEADERS: @$(NORMAL_UNINSTALL) @list='$(include_HEADERS)'; test -n "$(includedir)" || list=; \ files=`for p in $$list; do echo $$p; done | sed -e 's|^.*/||'`; \ dir='$(DESTDIR)$(includedir)'; $(am__uninstall_files_from_dir) # This directory's subdirectories are mostly independent; you can cd # into them and run 'make' without going through this Makefile. # To change the values of 'make' variables: instead of editing Makefiles, # (1) if the variable is set in 'config.status', edit 'config.status' # (which will cause the Makefiles to be regenerated when you run 'make'); # (2) otherwise, pass the desired values on the 'make' command line. $(am__recursive_targets): @fail=; \ if $(am__make_keepgoing); then \ failcom='fail=yes'; \ else \ failcom='exit 1'; \ fi; \ dot_seen=no; \ target=`echo $@ | sed s/-recursive//`; \ case "$@" in \ distclean-* | maintainer-clean-*) list='$(DIST_SUBDIRS)' ;; \ *) list='$(SUBDIRS)' ;; \ esac; \ for subdir in $$list; do \ echo "Making $$target in $$subdir"; \ if test "$$subdir" = "."; then \ dot_seen=yes; \ local_target="$$target-am"; \ else \ local_target="$$target"; \ fi; \ ($(am__cd) $$subdir && $(MAKE) $(AM_MAKEFLAGS) $$local_target) \ || eval $$failcom; \ done; \ if test "$$dot_seen" = "no"; then \ $(MAKE) $(AM_MAKEFLAGS) "$$target-am" || exit 1; \ fi; test -z "$$fail" ID: $(am__tagged_files) $(am__define_uniq_tagged_files); mkid -fID $$unique tags: tags-recursive TAGS: tags tags-am: $(TAGS_DEPENDENCIES) $(am__tagged_files) set x; \ here=`pwd`; \ if ($(ETAGS) --etags-include --version) >/dev/null 2>&1; then \ include_option=--etags-include; \ empty_fix=.; \ else \ include_option=--include; \ empty_fix=; \ fi; \ list='$(SUBDIRS)'; for subdir in $$list; do \ if test "$$subdir" = .; then :; else \ test ! -f $$subdir/TAGS || \ set "$$@" "$$include_option=$$here/$$subdir/TAGS"; \ fi; \ done; \ $(am__define_uniq_tagged_files); \ shift; \ if test -z "$(ETAGS_ARGS)$$*$$unique"; then :; else \ test -n "$$unique" || unique=$$empty_fix; \ if test $$# -gt 0; then \ $(ETAGS) $(ETAGSFLAGS) $(AM_ETAGSFLAGS) $(ETAGS_ARGS) \ "$$@" $$unique; \ else \ $(ETAGS) $(ETAGSFLAGS) $(AM_ETAGSFLAGS) $(ETAGS_ARGS) \ $$unique; \ fi; \ fi ctags: ctags-recursive CTAGS: ctags ctags-am: $(TAGS_DEPENDENCIES) $(am__tagged_files) $(am__define_uniq_tagged_files); \ test -z "$(CTAGS_ARGS)$$unique" \ || $(CTAGS) $(CTAGSFLAGS) $(AM_CTAGSFLAGS) $(CTAGS_ARGS) \ $$unique GTAGS: here=`$(am__cd) $(top_builddir) && pwd` \ && $(am__cd) $(top_srcdir) \ && gtags -i $(GTAGS_ARGS) "$$here" cscope: cscope.files test ! -s cscope.files \ || $(CSCOPE) -b -q $(AM_CSCOPEFLAGS) $(CSCOPEFLAGS) -i cscope.files $(CSCOPE_ARGS) clean-cscope: -rm -f cscope.files cscope.files: clean-cscope cscopelist cscopelist: cscopelist-recursive cscopelist-am: $(am__tagged_files) list='$(am__tagged_files)'; \ case "$(srcdir)" in \ [\\/]* | ?:[\\/]*) sdir="$(srcdir)" ;; \ *) sdir=$(subdir)/$(srcdir) ;; \ esac; \ for i in $$list; do \ if test -f "$$i"; then \ echo "$(subdir)/$$i"; \ else \ echo "$$sdir/$$i"; \ fi; \ done >> $(top_builddir)/cscope.files distclean-tags: -rm -f TAGS ID GTAGS GRTAGS GSYMS GPATH tags -rm -f cscope.out cscope.in.out cscope.po.out cscope.files distdir: $(BUILT_SOURCES) $(MAKE) $(AM_MAKEFLAGS) distdir-am distdir-am: $(DISTFILES) $(am__remove_distdir) test -d "$(distdir)" || mkdir "$(distdir)" @srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ topsrcdirstrip=`echo "$(top_srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ list='$(DISTFILES)'; \ dist_files=`for file in $$list; do echo $$file; done | \ sed -e "s|^$$srcdirstrip/||;t" \ -e "s|^$$topsrcdirstrip/|$(top_builddir)/|;t"`; \ case $$dist_files in \ */*) $(MKDIR_P) `echo "$$dist_files" | \ sed '/\//!d;s|^|$(distdir)/|;s,/[^/]*$$,,' | \ sort -u` ;; \ esac; \ for file in $$dist_files; do \ if test -f $$file || test -d $$file; then d=.; else d=$(srcdir); fi; \ if test -d $$d/$$file; then \ dir=`echo "/$$file" | sed -e 's,/[^/]*$$,,'`; \ if test -d "$(distdir)/$$file"; then \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ if test -d $(srcdir)/$$file && test $$d != $(srcdir); then \ cp -fpR $(srcdir)/$$file "$(distdir)$$dir" || exit 1; \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ cp -fpR $$d/$$file "$(distdir)$$dir" || exit 1; \ else \ test -f "$(distdir)/$$file" \ || cp -p $$d/$$file "$(distdir)/$$file" \ || exit 1; \ fi; \ done @list='$(DIST_SUBDIRS)'; for subdir in $$list; do \ if test "$$subdir" = .; then :; else \ $(am__make_dryrun) \ || test -d "$(distdir)/$$subdir" \ || $(MKDIR_P) "$(distdir)/$$subdir" \ || exit 1; \ dir1=$$subdir; dir2="$(distdir)/$$subdir"; \ $(am__relativize); \ new_distdir=$$reldir; \ dir1=$$subdir; dir2="$(top_distdir)"; \ $(am__relativize); \ new_top_distdir=$$reldir; \ echo " (cd $$subdir && $(MAKE) $(AM_MAKEFLAGS) top_distdir="$$new_top_distdir" distdir="$$new_distdir" \\"; \ echo " am__remove_distdir=: am__skip_length_check=: am__skip_mode_fix=: distdir)"; \ ($(am__cd) $$subdir && \ $(MAKE) $(AM_MAKEFLAGS) \ top_distdir="$$new_top_distdir" \ distdir="$$new_distdir" \ am__remove_distdir=: \ am__skip_length_check=: \ am__skip_mode_fix=: \ distdir) \ || exit 1; \ fi; \ done $(MAKE) $(AM_MAKEFLAGS) \ top_distdir="$(top_distdir)" distdir="$(distdir)" \ dist-hook -test -n "$(am__skip_mode_fix)" \ || find "$(distdir)" -type d ! -perm -755 \ -exec chmod u+rwx,go+rx {} \; -o \ ! -type d ! -perm -444 -links 1 -exec chmod a+r {} \; -o \ ! -type d ! -perm -400 -exec chmod a+r {} \; -o \ ! -type d ! -perm -444 -exec $(install_sh) -c -m a+r {} {} \; \ || chmod -R a+r "$(distdir)" dist-gzip: distdir tardir=$(distdir) && $(am__tar) | eval GZIP= gzip $(GZIP_ENV) -c >$(distdir).tar.gz $(am__post_remove_distdir) dist-bzip2: distdir tardir=$(distdir) && $(am__tar) | BZIP2=$${BZIP2--9} bzip2 -c >$(distdir).tar.bz2 $(am__post_remove_distdir) dist-lzip: distdir tardir=$(distdir) && $(am__tar) | lzip -c $${LZIP_OPT--9} >$(distdir).tar.lz $(am__post_remove_distdir) dist-xz: distdir tardir=$(distdir) && $(am__tar) | XZ_OPT=$${XZ_OPT--e} xz -c >$(distdir).tar.xz $(am__post_remove_distdir) dist-tarZ: distdir @echo WARNING: "Support for distribution archives compressed with" \ "legacy program 'compress' is deprecated." >&2 @echo WARNING: "It will be removed altogether in Automake 2.0" >&2 tardir=$(distdir) && $(am__tar) | compress -c >$(distdir).tar.Z $(am__post_remove_distdir) dist-shar: distdir @echo WARNING: "Support for shar distribution archives is" \ "deprecated." >&2 @echo WARNING: "It will be removed altogether in Automake 2.0" >&2 shar $(distdir) | eval GZIP= gzip $(GZIP_ENV) -c >$(distdir).shar.gz $(am__post_remove_distdir) dist-zip: distdir -rm -f $(distdir).zip zip -rq $(distdir).zip $(distdir) $(am__post_remove_distdir) dist dist-all: $(MAKE) $(AM_MAKEFLAGS) $(DIST_TARGETS) am__post_remove_distdir='@:' $(am__post_remove_distdir) # This target untars the dist file and tries a VPATH configuration. Then # it guarantees that the distribution is self-contained by making another # tarfile. distcheck: dist case '$(DIST_ARCHIVES)' in \ *.tar.gz*) \ eval GZIP= gzip $(GZIP_ENV) -dc $(distdir).tar.gz | $(am__untar) ;;\ *.tar.bz2*) \ bzip2 -dc $(distdir).tar.bz2 | $(am__untar) ;;\ *.tar.lz*) \ lzip -dc $(distdir).tar.lz | $(am__untar) ;;\ *.tar.xz*) \ xz -dc $(distdir).tar.xz | $(am__untar) ;;\ *.tar.Z*) \ uncompress -c $(distdir).tar.Z | $(am__untar) ;;\ *.shar.gz*) \ eval GZIP= gzip $(GZIP_ENV) -dc $(distdir).shar.gz | unshar ;;\ *.zip*) \ unzip $(distdir).zip ;;\ esac chmod -R a-w $(distdir) chmod u+w $(distdir) mkdir $(distdir)/_build $(distdir)/_build/sub $(distdir)/_inst chmod a-w $(distdir) test -d $(distdir)/_build || exit 0; \ dc_install_base=`$(am__cd) $(distdir)/_inst && pwd | sed -e 's,^[^:\\/]:[\\/],/,'` \ && dc_destdir="$${TMPDIR-/tmp}/am-dc-$$$$/" \ && am__cwd=`pwd` \ && $(am__cd) $(distdir)/_build/sub \ && ../../configure \ $(AM_DISTCHECK_CONFIGURE_FLAGS) \ $(DISTCHECK_CONFIGURE_FLAGS) \ --srcdir=../.. --prefix="$$dc_install_base" \ && $(MAKE) $(AM_MAKEFLAGS) \ && $(MAKE) $(AM_MAKEFLAGS) dvi \ && $(MAKE) $(AM_MAKEFLAGS) check \ && $(MAKE) $(AM_MAKEFLAGS) install \ && $(MAKE) $(AM_MAKEFLAGS) installcheck \ && $(MAKE) $(AM_MAKEFLAGS) uninstall \ && $(MAKE) $(AM_MAKEFLAGS) distuninstallcheck_dir="$$dc_install_base" \ distuninstallcheck \ && chmod -R a-w "$$dc_install_base" \ && ({ \ (cd ../.. && umask 077 && mkdir "$$dc_destdir") \ && $(MAKE) $(AM_MAKEFLAGS) DESTDIR="$$dc_destdir" install \ && $(MAKE) $(AM_MAKEFLAGS) DESTDIR="$$dc_destdir" uninstall \ && $(MAKE) $(AM_MAKEFLAGS) DESTDIR="$$dc_destdir" \ distuninstallcheck_dir="$$dc_destdir" distuninstallcheck; \ } || { rm -rf "$$dc_destdir"; exit 1; }) \ && rm -rf "$$dc_destdir" \ && $(MAKE) $(AM_MAKEFLAGS) dist \ && rm -rf $(DIST_ARCHIVES) \ && $(MAKE) $(AM_MAKEFLAGS) distcleancheck \ && cd "$$am__cwd" \ || exit 1 $(am__post_remove_distdir) @(echo "$(distdir) archives ready for distribution: "; \ list='$(DIST_ARCHIVES)'; for i in $$list; do echo $$i; done) | \ sed -e 1h -e 1s/./=/g -e 1p -e 1x -e '$$p' -e '$$x' distuninstallcheck: @test -n '$(distuninstallcheck_dir)' || { \ echo 'ERROR: trying to run $@ with an empty' \ '$$(distuninstallcheck_dir)' >&2; \ exit 1; \ }; \ $(am__cd) '$(distuninstallcheck_dir)' || { \ echo 'ERROR: cannot chdir into $(distuninstallcheck_dir)' >&2; \ exit 1; \ }; \ test `$(am__distuninstallcheck_listfiles) | wc -l` -eq 0 \ || { echo "ERROR: files left after uninstall:" ; \ if test -n "$(DESTDIR)"; then \ echo " (check DESTDIR support)"; \ fi ; \ $(distuninstallcheck_listfiles) ; \ exit 1; } >&2 distcleancheck: distclean @if test '$(srcdir)' = . ; then \ echo "ERROR: distcleancheck can only run from a VPATH build" ; \ exit 1 ; \ fi @test `$(distcleancheck_listfiles) | wc -l` -eq 0 \ || { echo "ERROR: files left in build directory after distclean:" ; \ $(distcleancheck_listfiles) ; \ exit 1; } >&2 check-am: all-am check: check-recursive all-am: Makefile $(PROGRAMS) $(LTLIBRARIES) $(SCRIPTS) $(MANS) $(DATA) \ $(HEADERS) config.h installdirs: installdirs-recursive installdirs-am: for dir in "$(DESTDIR)$(sbindir)" "$(DESTDIR)$(libdir)" "$(DESTDIR)$(pkglibexecdir)" "$(DESTDIR)$(man8dir)" "$(DESTDIR)$(pkgconfigdir)" "$(DESTDIR)$(includedir)"; do \ test -z "$$dir" || $(MKDIR_P) "$$dir"; \ done install: install-recursive install-exec: install-exec-recursive install-data: install-data-recursive uninstall: uninstall-recursive install-am: all-am @$(MAKE) $(AM_MAKEFLAGS) install-exec-am install-data-am installcheck: installcheck-recursive install-strip: if test -z '$(STRIP)'; then \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ install; \ else \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ "INSTALL_PROGRAM_ENV=STRIPPROG='$(STRIP)'" install; \ fi mostlyclean-generic: clean-generic: distclean-generic: -test -z "$(CONFIG_CLEAN_FILES)" || rm -f $(CONFIG_CLEAN_FILES) -test . = "$(srcdir)" || test -z "$(CONFIG_CLEAN_VPATH_FILES)" || rm -f $(CONFIG_CLEAN_VPATH_FILES) -test -z "$(DISTCLEANFILES)" || rm -f $(DISTCLEANFILES) maintainer-clean-generic: @echo "This command is intended for maintainers to use" @echo "it deletes files that may require special tools to rebuild." clean: clean-recursive clean-am: clean-generic clean-libLTLIBRARIES clean-libtool \ clean-sbinPROGRAMS mostlyclean-am distclean: distclean-recursive -rm -f $(am__CONFIG_DISTCLEAN_FILES) -rm -f ./$(DEPDIR)/libopenconnect_la-auth-common.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-auth-globalprotect.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-auth-juniper.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-auth.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-compat.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-cstp.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-digest.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-dtls.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-esp-seqno.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-esp.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-gnutls-dtls.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-gnutls-esp.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-gnutls.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-gnutls_tpm.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-gnutls_tpm2.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-gnutls_tpm2_esys.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-gnutls_tpm2_ibm.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-gpst.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-gssapi.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-http-auth.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-http.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-iconv.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-jni.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-library.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-lzo.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-lzs.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-mainloop.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-ntlm.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-oath.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-oncp.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-openssl-dtls.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-openssl-esp.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-openssl-pkcs11.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-openssl.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-pulse.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-script.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-ssl.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-sspi.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-stoken.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-tun-win32.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-tun.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-version.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-yubikey.Plo -rm -f ./$(DEPDIR)/libopenconnect_wrapper_la-jni.Plo -rm -f ./$(DEPDIR)/openconnect-main.Po -rm -f ./$(DEPDIR)/openconnect-xml.Po -rm -f Makefile distclean-am: clean-am distclean-compile distclean-generic \ distclean-hdr distclean-libtool distclean-tags dvi: dvi-recursive dvi-am: html: html-recursive html-am: info: info-recursive info-am: install-data-am: install-includeHEADERS install-man \ install-pkgconfigDATA install-dvi: install-dvi-recursive install-dvi-am: install-exec-am: install-libLTLIBRARIES install-pkglibexecSCRIPTS \ install-sbinPROGRAMS install-html: install-html-recursive install-html-am: install-info: install-info-recursive install-info-am: install-man: install-man8 install-pdf: install-pdf-recursive install-pdf-am: install-ps: install-ps-recursive install-ps-am: installcheck-am: maintainer-clean: maintainer-clean-recursive -rm -f $(am__CONFIG_DISTCLEAN_FILES) -rm -rf $(top_srcdir)/autom4te.cache -rm -f ./$(DEPDIR)/libopenconnect_la-auth-common.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-auth-globalprotect.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-auth-juniper.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-auth.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-compat.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-cstp.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-digest.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-dtls.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-esp-seqno.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-esp.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-gnutls-dtls.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-gnutls-esp.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-gnutls.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-gnutls_tpm.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-gnutls_tpm2.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-gnutls_tpm2_esys.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-gnutls_tpm2_ibm.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-gpst.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-gssapi.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-http-auth.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-http.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-iconv.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-jni.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-library.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-lzo.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-lzs.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-mainloop.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-ntlm.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-oath.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-oncp.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-openssl-dtls.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-openssl-esp.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-openssl-pkcs11.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-openssl.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-pulse.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-script.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-ssl.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-sspi.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-stoken.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-tun-win32.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-tun.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-version.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-yubikey.Plo -rm -f ./$(DEPDIR)/libopenconnect_wrapper_la-jni.Plo -rm -f ./$(DEPDIR)/openconnect-main.Po -rm -f ./$(DEPDIR)/openconnect-xml.Po -rm -f Makefile maintainer-clean-am: distclean-am maintainer-clean-generic mostlyclean: mostlyclean-recursive mostlyclean-am: mostlyclean-compile mostlyclean-generic \ mostlyclean-libtool pdf: pdf-recursive pdf-am: ps: ps-recursive ps-am: uninstall-am: uninstall-includeHEADERS uninstall-libLTLIBRARIES \ uninstall-man uninstall-pkgconfigDATA \ uninstall-pkglibexecSCRIPTS uninstall-sbinPROGRAMS uninstall-man: uninstall-man8 .MAKE: $(am__recursive_targets) all install-am install-strip .PHONY: $(am__recursive_targets) CTAGS GTAGS TAGS all all-am \ am--depfiles am--refresh check check-am clean clean-cscope \ clean-generic clean-libLTLIBRARIES clean-libtool \ clean-sbinPROGRAMS cscope cscopelist-am ctags ctags-am dist \ dist-all dist-bzip2 dist-gzip dist-hook dist-lzip dist-shar \ dist-tarZ dist-xz dist-zip distcheck distclean \ distclean-compile distclean-generic distclean-hdr \ distclean-libtool distclean-tags distcleancheck distdir \ distuninstallcheck dvi dvi-am html html-am info info-am \ install install-am install-data install-data-am install-dvi \ install-dvi-am install-exec install-exec-am install-html \ install-html-am install-includeHEADERS install-info \ install-info-am install-libLTLIBRARIES install-man \ install-man8 install-pdf install-pdf-am install-pkgconfigDATA \ install-pkglibexecSCRIPTS install-ps install-ps-am \ install-sbinPROGRAMS install-strip installcheck \ installcheck-am installdirs installdirs-am maintainer-clean \ maintainer-clean-generic mostlyclean mostlyclean-compile \ mostlyclean-generic mostlyclean-libtool pdf pdf-am ps ps-am \ tags tags-am uninstall uninstall-am uninstall-includeHEADERS \ uninstall-libLTLIBRARIES uninstall-man uninstall-man8 \ uninstall-pkgconfigDATA uninstall-pkglibexecSCRIPTS \ uninstall-sbinPROGRAMS .PRECIOUS: Makefile # We kind of want openconnect to be built before we try to test it check-recursive: openconnect$(EXEEXT) # And even *building* some of tests/*.c needs libopenconnect install-recursive: libopenconnect.la all-recursive: libopenconnect.la @OPENCONNECT_WIN32_TRUE@.rc.o: @OPENCONNECT_WIN32_TRUE@ $(WINDRES) $^ -o $@ @OPENCONNECT_WIN32_TRUE@%.o : %.rc @OPENCONNECT_WIN32_TRUE@ $(WINDRES) $^ -o $@ # main.c includes version.c openconnect-main.$(OBJEXT): version.c version.c: $(library_srcs) $(lib_openssl_srcs) $(lib_gnutls_srcs) \ $(openconnect_SOURCES) Makefile.am configure.ac \ openconnect.h openconnect-internal.h version.sh @GITVERSIONDEPS@ @cd $(srcdir) && ./version.sh $(abs_builddir)/version.c AUTHORS: @GITVERSIONDEPS@ @git shortlog -sen > AUTHORS tmp-dist: uncommitted-check $(MAKE) $(AM_MAKEFLAGS) VERSION=$(patsubst v%,%,$(shell git describe --tags)) DISTHOOK=0 dist tmp-distdir: uncommitted-check $(MAKE) $(AM_MAKEFLAGS) VERSION=$(patsubst v%,%,$(shell git describe --tags)) DISTHOOK=0 distdir uncommitted-check: @if ! git update-index --refresh --unmerged || \ ! git diff-index --name-only --exit-code HEAD; then \ echo "*** ERROR: Uncommitted changes in above files"; exit 1; fi dist-hook: uncommitted-check @if [ $(DISTHOOK) = 1 ]; then \ if ! git rev-parse --verify v$(VERSION) &> /dev/null; then \ echo "*** ERROR: Version v$(VERSION) is not tagged"; exit 1; fi ; \ if ! git diff --name-only --exit-code v$(VERSION) HEAD > /dev/null; then \ echo "*** ERROR: Git checkout not at version v$(VERSION)"; exit 1; fi ; \ fi sign-dist: dist @for a in $(DIST_ARCHIVES); do \ gpg --default-key 67E2F359 --detach-sign -a $$a ; \ done tag: uncommitted-check @if git rev-parse --verify v$(VERSION) &> /dev/null; then \ echo "*** ERROR: Version v$(VERSION) is already tagged"; exit 1; fi @sed 's/AC_INIT.*/AC_INIT(openconnect, $(VERSION))/' -i $(srcdir)/configure.ac @sed 's/^v=.*/v="v$(VERSION)"/' -i $(srcdir)/version.sh @( echo '1,//p' ;\ echo '//,$$p' ;\ echo '//a\' ;\ echo 'The latest release is OpenConnect v$(VERSION)\' ;\ echo '(PGP signature),\' ;\ echo 'released on $(shell date +%Y-%m-%d) with the following changelog:

    \' ;\ sed '0,/OpenConnect HEAD/d;/<\/ul>/,$$d;s/$$/\\/' $(srcdir)/www/changelog.xml ;\ echo ' ' ) | \ sed -n -f - -i $(srcdir)/www/download.xml @( echo "s/Last modified: .*/Last modified: $(shell date)/" ;\ echo '/
  • OpenConnect HEAD/a\' ;\ echo '
      \' ;\ echo '
    • No changelog entries yet
      • \';\ echo '

    \' ; echo '
    • \' ;\ echo '
  • OpenConnect v$(VERSION)\' ;\ echo ' (PGP signature) — $(shell date +%Y-%m-%d)' ) | \ sed -f - -i $(srcdir)/www/changelog.xml @echo '/API version [0-9]\+\.[0-9]\+:$$/s/:/ (v$(VERSION); $(shell date +%Y-%m-%d)):/' | \ sed -f - -i $(srcdir)/openconnect.h # stupid syntax highlighting ' @cd $(srcdir) && git commit -s -m "Tag version $(VERSION)" configure.ac version.sh www/download.xml www/changelog.xml openconnect.h @git tag v$(VERSION) @cd $(srcdir) && ./autogen.sh update-po: po/$(PACKAGE).pot @cd $(top_srcdir); if ! git diff-index --name-only --exit-code HEAD -- po/; then \ echo "*** ERROR: Uncommitted changes in above files"; exit 1; \ else \ > po/LINGUAS; \ for a in po/*.po; do \ msgmerge -q -N -F $$a $(abs_builddir)/po/$(PACKAGE).pot > $$a.merge ; \ msgattrib -F --no-fuzzy --no-obsolete $$a.merge > $$a ; \ rm $$a.merge ; \ if msgattrib --translated $$a | grep -q msgstr; then \ echo $$a | sed 's%^po/\(.*\)\.po%\1%' >> po/LINGUAS ; \ fi ; \ done && \ if ! git update-index -q --refresh --unmerged || \ ! git diff-index --name-only --exit-code HEAD -- po/ >/dev/null; then \ git commit -s -m "Resync translations with sources" -- po/ ; \ else \ echo No changes to commit ; \ fi; \ fi po/$(PACKAGE).pot: $(POTFILES) version.sh @echo "Regenerating $@" ; rm -f $@ && \ xgettext --directory=$(top_srcdir) --from-code=UTF-8 \ --sort-by-file --add-comments --keyword=_ --keyword=N_ \ --package-name="@PACKAGE@" --package-version="@VERSION@" \ --msgid-bugs-address=openconnect-devel@lists.infradead.org \ -o $@ $(POTFILES) # Tell versions [3.59,3.63) of GNU make to not export all variables. # Otherwise a system limit (for SysV at least) may be exceeded. .NOEXPORT: openconnect-8.05/TODO0000664000076400007640000000020413415754606016234 0ustar00dwoodhoudwoodhou00000000000000See the contribute.html web page in the documentation, generated in www/ or at http://www.infradead.org/openconnect/contribute.html openconnect-8.05/http.c0000664000076400007640000011057613536301641016674 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * Copyright © 2008 Nick Andrew * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include #include #include #include #include #include #include "openconnect-internal.h" static int proxy_write(struct openconnect_info *vpninfo, char *buf, size_t len); static int proxy_read(struct openconnect_info *vpninfo, char *buf, size_t len); #define BUF_CHUNK_SIZE 4096 struct oc_text_buf *buf_alloc(void) { return calloc(1, sizeof(struct oc_text_buf)); } void buf_append_urlencoded(struct oc_text_buf *buf, const char *str) { while (str && *str) { unsigned char c = *str; if (c < 0x80 && (isalnum((int)(c)) || c=='-' || c=='_' || c=='.' || c=='~')) buf_append_bytes(buf, str, 1); else buf_append(buf, "%%%02x", c); str++; } } void buf_append_xmlescaped(struct oc_text_buf *buf, const char *str) { while (str && *str) { unsigned char c = *str; if (c=='<' || c=='>' || c=='&' || c=='"' || c=='\'') buf_append(buf, "&#x%02x;", c); else buf_append_bytes(buf, str, 1); str++; } } void buf_append_hex(struct oc_text_buf *buf, const void *str, unsigned len) { const unsigned char *data = str; unsigned i; for (i = 0; i < len; i++) buf_append(buf, "%02x", (unsigned)data[i]); } void buf_truncate(struct oc_text_buf *buf) { if (!buf) return; if (buf->data) memset(buf->data, 0, buf->pos); buf->pos = 0; } int buf_ensure_space(struct oc_text_buf *buf, int len) { unsigned int new_buf_len; new_buf_len = (buf->pos + len + BUF_CHUNK_SIZE - 1) & ~(BUF_CHUNK_SIZE - 1); if (new_buf_len <= buf->buf_len) return 0; if (new_buf_len > INT_MAX) { buf->error = -E2BIG; return buf->error; } else { realloc_inplace(buf->data, new_buf_len); if (!buf->data) buf->error = -ENOMEM; else buf->buf_len = new_buf_len; } return buf->error; } void __attribute__ ((format (printf, 2, 3))) buf_append(struct oc_text_buf *buf, const char *fmt, ...) { va_list ap; if (!buf || buf->error) return; if (buf_ensure_space(buf, 1)) return; while (1) { int max_len = buf->buf_len - buf->pos, ret; va_start(ap, fmt); ret = vsnprintf(buf->data + buf->pos, max_len, fmt, ap); va_end(ap); if (ret < 0) { buf->error = -EIO; break; } else if (ret < max_len) { buf->pos += ret; break; } else if (buf_ensure_space(buf, ret)) break; } } void buf_append_bytes(struct oc_text_buf *buf, const void *bytes, int len) { if (!buf || buf->error) return; if (buf_ensure_space(buf, len + 1)) return; memcpy(buf->data + buf->pos, bytes, len); buf->pos += len; buf->data[buf->pos] = 0; } void buf_append_from_utf16le(struct oc_text_buf *buf, const void *_utf16) { const unsigned char *utf16 = _utf16; unsigned char utf8[4]; int c; if (!utf16) return; while (utf16[0] || utf16[1]) { if ((utf16[1] & 0xfc) == 0xd8 && (utf16[3] & 0xfc) == 0xdc) { c = ((load_le16(utf16) & 0x3ff) << 10)| (load_le16(utf16 + 2) & 0x3ff); c += 0x10000; utf16 += 4; } else { c = load_le16(utf16); utf16 += 2; } if (c < 0x80) { utf8[0] = c; buf_append_bytes(buf, utf8, 1); } else if (c < 0x800) { utf8[0] = 0xc0 | (c >> 6); utf8[1] = 0x80 | (c & 0x3f); buf_append_bytes(buf, utf8, 2); } else if (c < 0x10000) { utf8[0] = 0xe0 | (c >> 12); utf8[1] = 0x80 | ((c >> 6) & 0x3f); utf8[2] = 0x80 | (c & 0x3f); buf_append_bytes(buf, utf8, 3); } else { utf8[0] = 0xf0 | (c >> 18); utf8[1] = 0x80 | ((c >> 12) & 0x3f); utf8[2] = 0x80 | ((c >> 6) & 0x3f); utf8[3] = 0x80 | (c & 0x3f); buf_append_bytes(buf, utf8, 4); } } utf8[0] = 0; buf_append_bytes(buf, utf8, 1); } int get_utf8char(const char **p) { const char *utf8 = *p; unsigned char c; int utfchar, nr_extra, min; c = *(utf8++); if (c < 128) { utfchar = c; nr_extra = 0; min = 0; } else if ((c & 0xe0) == 0xc0) { utfchar = c & 0x1f; nr_extra = 1; min = 0x80; } else if ((c & 0xf0) == 0xe0) { utfchar = c & 0x0f; nr_extra = 2; min = 0x800; } else if ((c & 0xf8) == 0xf0) { utfchar = c & 0x07; nr_extra = 3; min = 0x10000; } else { return -EILSEQ; } while (nr_extra--) { c = *(utf8++); if ((c & 0xc0) != 0x80) return -EILSEQ; utfchar <<= 6; utfchar |= (c & 0x3f); } if (utfchar > 0x10ffff || utfchar < min) return -EILSEQ; *p = utf8; return utfchar; } int buf_append_utf16le(struct oc_text_buf *buf, const char *utf8) { int utfchar, len = 0; /* Ick. Now I'm implementing my own UTF8 handling too. Perhaps it's time to bite the bullet and start requiring something like glib? */ while (*utf8) { utfchar = get_utf8char(&utf8); if (utfchar < 0) { if (buf) buf->error = utfchar; return utfchar; } if (!buf) continue; if (utfchar >= 0x10000) { utfchar -= 0x10000; if (buf_ensure_space(buf, 4)) return buf_error(buf); store_le16(buf->data + buf->pos, (utfchar >> 10) | 0xd800); store_le16(buf->data + buf->pos + 2, (utfchar & 0x3ff) | 0xdc00); buf->pos += 4; len += 4; } else { if (buf_ensure_space(buf, 2)) return buf_error(buf); store_le16(buf->data + buf->pos, utfchar); buf->pos += 2; len += 2; } } /* We were only being used for validation */ if (!buf) return 0; /* Ensure UTF16 is NUL-terminated */ if (buf_ensure_space(buf, 2)) return buf_error(buf); buf->data[buf->pos] = buf->data[buf->pos + 1] = 0; return len; } int buf_error(struct oc_text_buf *buf) { return buf ? buf->error : -ENOMEM; } int buf_free(struct oc_text_buf *buf) { int error = buf_error(buf); if (buf) { buf_truncate(buf); if (buf->data) free(buf->data); free(buf); } return error; } /* * We didn't really want to have to do this for ourselves -- one might have * thought that it would be available in a library somewhere. But neither * cURL nor Neon have reliable cross-platform ways of either using a cert * from the TPM, or just reading from / writing to a transport which is * provided by their caller. */ int http_add_cookie(struct openconnect_info *vpninfo, const char *option, const char *value, int replace) { struct oc_vpn_option *new, **this; if (*value) { new = malloc(sizeof(*new)); if (!new) { vpn_progress(vpninfo, PRG_ERR, _("No memory for allocating cookies\n")); return -ENOMEM; } new->next = NULL; new->option = strdup(option); new->value = strdup(value); if (!new->option || !new->value) { free(new->option); free(new->value); free(new); return -ENOMEM; } } else { /* Kill cookie; don't replace it */ new = NULL; /* This would be meaningless */ if (!replace) return -EINVAL; } for (this = &vpninfo->cookies; *this; this = &(*this)->next) { if (!strcmp(option, (*this)->option)) { if (!replace) { free(new->value); free(new->option); free(new); return 0; } /* Replace existing cookie */ if (new) new->next = (*this)->next; else new = (*this)->next; free((*this)->option); free((*this)->value); free(*this); *this = new; break; } } if (new && !*this) { *this = new; new->next = NULL; } return 0; } #define BODY_HTTP10 -1 #define BODY_CHUNKED -2 int process_http_response(struct openconnect_info *vpninfo, int connect, int (*header_cb)(struct openconnect_info *, char *, char *), struct oc_text_buf *body) { char buf[8192]; int bodylen = BODY_HTTP10; int closeconn = 0; int result; int i; buf_truncate(body); cont: if (vpninfo->ssl_gets(vpninfo, buf, sizeof(buf)) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Error fetching HTTPS response\n")); openconnect_close_https(vpninfo, 0); return -EINVAL; } if (!strncmp(buf, "HTTP/1.0 ", 9)) closeconn = 1; if ((!closeconn && strncmp(buf, "HTTP/1.1 ", 9)) || !(result = atoi(buf+9))) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse HTTP response '%s'\n"), buf); openconnect_close_https(vpninfo, 0); return -EINVAL; } vpn_progress(vpninfo, (result == 200 || result == 407) ? PRG_DEBUG : PRG_INFO, _("Got HTTP response: %s\n"), buf); /* Eat headers... */ while ((i = vpninfo->ssl_gets(vpninfo, buf, sizeof(buf)))) { char *colon; if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Error processing HTTP response\n")); openconnect_close_https(vpninfo, 0); return -EINVAL; } colon = strchr(buf, ':'); if (!colon) { vpn_progress(vpninfo, PRG_ERR, _("Ignoring unknown HTTP response line '%s'\n"), buf); continue; } *(colon++) = 0; if (*colon == ' ') colon++; /* Handle Set-Cookie first so that we can avoid printing the webvpn cookie in the verbose debug output */ if (!strcasecmp(buf, "Set-Cookie")) { char *semicolon = strchr(colon, ';'); const char *print_equals; char *equals = strchr(colon, '='); int ret; if (semicolon) *semicolon = 0; if (!equals) { vpn_progress(vpninfo, PRG_ERR, _("Invalid cookie offered: %s\n"), buf); openconnect_close_https(vpninfo, 0); return -EINVAL; } *(equals++) = 0; print_equals = equals; /* Don't print the webvpn cookie unless it's empty; we don't want people posting it in public with debugging output */ if (!strcmp(colon, "webvpn") && *equals) print_equals = _(""); vpn_progress(vpninfo, PRG_DEBUG, "%s: %s=%s%s%s\n", buf, colon, print_equals, semicolon ? ";" : "", semicolon ? (semicolon+1) : ""); /* The server tends to ask for the username and password as usual, even if we've already failed because it didn't like our cert. Thankfully it does give us this hint... */ if (!strcmp(colon, "ClientCertAuthFailed")) vpn_progress(vpninfo, PRG_ERR, _("SSL certificate authentication failed\n")); ret = http_add_cookie(vpninfo, colon, equals, 1); if (ret) { openconnect_close_https(vpninfo, 0); return ret; } } else { vpn_progress(vpninfo, PRG_DEBUG, "%s: %s\n", buf, colon); } if (!strcasecmp(buf, "Connection")) { if (!strcasecmp(colon, "Close")) closeconn = 1; #if 0 /* This might seem reasonable, but in fact it breaks certificate authentication with some servers. If they give an HTTP/1.0 response, even if they explicitly give a Connection: Keep-Alive header, just close the connection. */ else if (!strcasecmp(colon, "Keep-Alive")) closeconn = 0; #endif } if (!strcasecmp(buf, "Location")) { vpninfo->redirect_url = strdup(colon); if (!vpninfo->redirect_url) { openconnect_close_https(vpninfo, 0); return -ENOMEM; } } if (!strcasecmp(buf, "Content-Length")) { bodylen = atoi(colon); if (bodylen < 0) { vpn_progress(vpninfo, PRG_ERR, _("Response body has negative size (%d)\n"), bodylen); openconnect_close_https(vpninfo, 0); return -EINVAL; } } if (!strcasecmp(buf, "Transfer-Encoding")) { if (!strcasecmp(colon, "chunked")) bodylen = BODY_CHUNKED; else { vpn_progress(vpninfo, PRG_ERR, _("Unknown Transfer-Encoding: %s\n"), colon); openconnect_close_https(vpninfo, 0); return -EINVAL; } } if (header_cb) header_cb(vpninfo, buf, colon); } /* Handle 'HTTP/1.1 100 Continue'. Not that we should ever see it */ if (result == 100) goto cont; /* On successful CONNECT or upgrade, there is no body. Return success */ if (connect && (result == 200 || result == 101)) return result; /* Now the body, if there is one */ vpn_progress(vpninfo, PRG_DEBUG, _("HTTP body %s (%d)\n"), bodylen == BODY_HTTP10 ? "http 1.0" : bodylen == BODY_CHUNKED ? "chunked" : "length: ", bodylen); /* If we were given Content-Length, it's nice and easy... */ if (bodylen > 0) { if (buf_ensure_space(body, bodylen + 1)) { openconnect_close_https(vpninfo, 0); return buf_error(body); } while (body->pos < bodylen) { i = vpninfo->ssl_read(vpninfo, body->data + body->pos, bodylen - body->pos); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Error reading HTTP response body\n")); openconnect_close_https(vpninfo, 0); return -EINVAL; } body->pos += i; } } else if (bodylen == BODY_CHUNKED) { /* ... else, chunked */ while ((i = vpninfo->ssl_gets(vpninfo, buf, sizeof(buf)))) { int lastchunk = 0; long chunklen; if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Error fetching chunk header\n")); openconnect_close_https(vpninfo, 0); return i; } chunklen = strtol(buf, NULL, 16); if (!chunklen) { lastchunk = 1; goto skip; } if (chunklen < 0) { vpn_progress(vpninfo, PRG_ERR, _("HTTP chunk length is negative (%ld)\n"), chunklen); openconnect_close_https(vpninfo, 0); return -EINVAL; } if (chunklen >= INT_MAX) { vpn_progress(vpninfo, PRG_ERR, _("HTTP chunk length is too large (%ld)\n"), chunklen); openconnect_close_https(vpninfo, 0); return -EINVAL; } if (buf_ensure_space(body, chunklen + 1)) { openconnect_close_https(vpninfo, 0); return buf_error(body); } while (chunklen) { i = vpninfo->ssl_read(vpninfo, body->data + body->pos, chunklen); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Error reading HTTP response body\n")); openconnect_close_https(vpninfo, 0); return -EINVAL; } chunklen -= i; body->pos += i; } skip: if ((i = vpninfo->ssl_gets(vpninfo, buf, sizeof(buf)))) { if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Error fetching HTTP response body\n")); } else { vpn_progress(vpninfo, PRG_ERR, _("Error in chunked decoding. Expected '', got: '%s'"), buf); } openconnect_close_https(vpninfo, 0); return -EINVAL; } if (lastchunk) break; } } else if (bodylen == BODY_HTTP10) { if (!closeconn) { vpn_progress(vpninfo, PRG_ERR, _("Cannot receive HTTP 1.0 body without closing connection\n")); openconnect_close_https(vpninfo, 0); return -EINVAL; } /* HTTP 1.0 response. Just eat all we can in 4KiB chunks */ while (1) { if (buf_ensure_space(body, 4096 + 1)) { openconnect_close_https(vpninfo, 0); return buf_error(body); } i = vpninfo->ssl_read(vpninfo, body->data + body->pos, 4096); if (i < 0) { /* Error */ openconnect_close_https(vpninfo, 0); return i; } else if (!i) break; /* Got more data */ body->pos += i; } } if (closeconn || vpninfo->no_http_keepalive) openconnect_close_https(vpninfo, 0); body->data[body->pos] = 0; return result; } int internal_parse_url(const char *url, char **res_proto, char **res_host, int *res_port, char **res_path, int default_port) { const char *orig_host, *orig_path; char *host, *port_str; int port, proto_len = 0; orig_host = strstr(url, "://"); if (orig_host) { proto_len = orig_host - url; orig_host += 3; if (strprefix_match(url, proto_len, "https")) port = 443; else if (strprefix_match(url, proto_len, "http")) port = 80; else if (strprefix_match(url, proto_len, "socks") || strprefix_match(url, proto_len, "socks4") || strprefix_match(url, proto_len, "socks5")) port = 1080; else return -EPROTONOSUPPORT; } else { if (default_port) { port = default_port; orig_host = url; } else return -EINVAL; } orig_path = strchr(orig_host, '/'); if (orig_path) { host = strndup(orig_host, orig_path - orig_host); orig_path++; } else host = strdup(orig_host); if (!host) return -ENOMEM; port_str = strrchr(host, ':'); if (port_str) { char *end; int new_port = strtol(port_str + 1, &end, 10); if (!*end) { *port_str = 0; port = new_port; } } if (res_proto) *res_proto = proto_len ? strndup(url, proto_len) : NULL; if (res_host) *res_host = host; else free(host); if (res_port) *res_port = port; if (res_path) *res_path = (orig_path && *orig_path) ? strdup(orig_path) : NULL; return 0; } void openconnect_clear_cookies(struct openconnect_info *vpninfo) { struct oc_vpn_option *opt, *next; for (opt = vpninfo->cookies; opt; opt = next) { next = opt->next; free(opt->option); free(opt->value); free(opt); } vpninfo->cookies = NULL; } /* Return value: * < 0, on error * = 0, on success (go ahead and retry with the latest vpninfo->{hostname,urlpath,port,...}) */ int handle_redirect(struct openconnect_info *vpninfo) { vpninfo->redirect_type = REDIR_TYPE_LOCAL; if (!strncmp(vpninfo->redirect_url, "https://", 8)) { /* New host. Tear down the existing connection and make a new one */ char *host; int port; int ret; free(vpninfo->urlpath); vpninfo->urlpath = NULL; ret = internal_parse_url(vpninfo->redirect_url, NULL, &host, &port, &vpninfo->urlpath, 0); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse redirected URL '%s': %s\n"), vpninfo->redirect_url, strerror(-ret)); free(vpninfo->redirect_url); vpninfo->redirect_url = NULL; return ret; } if (strcasecmp(vpninfo->hostname, host) || port != vpninfo->port) { openconnect_set_hostname(vpninfo, host); vpninfo->port = port; /* Kill the existing connection, and a new one will happen */ openconnect_close_https(vpninfo, 0); openconnect_clear_cookies(vpninfo); vpninfo->redirect_type = REDIR_TYPE_NEWHOST; } free(host); free(vpninfo->redirect_url); vpninfo->redirect_url = NULL; return 0; } else if (strstr(vpninfo->redirect_url, "://")) { vpn_progress(vpninfo, PRG_ERR, _("Cannot follow redirection to non-https URL '%s'\n"), vpninfo->redirect_url); free(vpninfo->redirect_url); vpninfo->redirect_url = NULL; return -EINVAL; } else if (vpninfo->redirect_url[0] == '/') { /* Absolute redirect within same host */ free(vpninfo->urlpath); vpninfo->urlpath = strdup(vpninfo->redirect_url + 1); free(vpninfo->redirect_url); vpninfo->redirect_url = NULL; return 0; } else { char *lastslash = NULL; if (vpninfo->urlpath) lastslash = strrchr(vpninfo->urlpath, '/'); if (!lastslash) { free(vpninfo->urlpath); vpninfo->urlpath = vpninfo->redirect_url; vpninfo->redirect_url = NULL; } else { char *oldurl = vpninfo->urlpath; *lastslash = 0; vpninfo->urlpath = NULL; if (asprintf(&vpninfo->urlpath, "%s/%s", oldurl, vpninfo->redirect_url) == -1) { int err = -errno; vpn_progress(vpninfo, PRG_ERR, _("Allocating new path for relative redirect failed: %s\n"), strerror(-err)); return err; } free(oldurl); free(vpninfo->redirect_url); vpninfo->redirect_url = NULL; } return 0; } } void dump_buf(struct openconnect_info *vpninfo, char prefix, char *buf) { while (*buf) { char *eol = buf; char eol_char = 0; while (*eol) { if (*eol == '\r' || *eol == '\n') { eol_char = *eol; *eol = 0; break; } eol++; } vpn_progress(vpninfo, PRG_DEBUG, "%c %s\n", prefix, buf); if (!eol_char) break; *eol = eol_char; buf = eol + 1; if (eol_char == '\r' && *buf == '\n') buf++; } } void dump_buf_hex(struct openconnect_info *vpninfo, int loglevel, char prefix, unsigned char *buf, int len) { struct oc_text_buf *line = buf_alloc(); int i, j; for (i = 0; i < len; i+=16) { buf_truncate(line); buf_append(line, "%04x:", i); for (j = i; j < i+16; j++) { if (!(j & 7)) buf_append(line, " "); if (j < len) buf_append(line, " %02x", buf[j]); else buf_append(line, " "); } buf_append(line, " |"); for (j = i; j < i+16 && j < len; j++) buf_append(line, "%c", isprint(buf[j])? buf[j] : '.'); buf_append(line, "|"); if (buf_error(line)) break; vpn_progress(vpninfo, loglevel, "%c %s\n", prefix, line->data); } buf_free(line); } /* Inputs: * method: GET or POST * vpninfo->hostname: Host DNS name * vpninfo->port: TCP port, typically 443 * vpninfo->urlpath: Relative path, e.g. /+webvpn+/foo.html * request_body_type: Content type for a POST (e.g. text/html). Can be NULL. * request_body: POST content * form_buf: Callee-allocated buffer for server content * * Return value: * < 0, on error * >=0, on success, indicating the length of the data in *form_buf */ int do_https_request(struct openconnect_info *vpninfo, const char *method, const char *request_body_type, struct oc_text_buf *request_body, char **form_buf, int fetch_redirect) { struct oc_text_buf *buf = buf_alloc(); int result; int rq_retry; int rlen, pad; int i, auth = 0; int max_redirects = 10; if (request_body_type && buf_error(request_body)) return buf_error(request_body); redirected: if (max_redirects-- <= 0) { result = -EIO; goto out; } vpninfo->redirect_type = REDIR_TYPE_NONE; if (*form_buf) { free(*form_buf); *form_buf = NULL; } /* * A long time ago, I *wanted* to use an HTTP client library like cURL * for this. But we need a *lot* of control over the underlying SSL * transport, and we also have to do horrid tricks like the Juniper NC * 'GET' request that actaully behaves like a 'CONNECT'. * * So the world gained Yet Another HTTP Implementation. Sorry. * */ buf_truncate(buf); buf_append(buf, "%s /%s HTTP/1.1\r\n", method, vpninfo->urlpath ?: ""); if (auth) { result = gen_authorization_hdr(vpninfo, 0, buf); if (result) goto out; /* Forget existing challenges */ clear_auth_states(vpninfo, vpninfo->http_auth, 0); } if (vpninfo->proto->add_http_headers) vpninfo->proto->add_http_headers(vpninfo, buf); if (request_body_type) { rlen = request_body->pos; /* force body length to be a multiple of 64, to avoid leaking * password length. */ pad = 64*(1+rlen/64) - rlen; buf_append(buf, "X-Pad: %0*d\r\n", pad, 0); buf_append(buf, "Content-Type: %s\r\n", request_body_type); buf_append(buf, "Content-Length: %d\r\n", (int)rlen); } buf_append(buf, "\r\n"); if (request_body_type) buf_append_bytes(buf, request_body->data, request_body->pos); if (vpninfo->port == 443) vpn_progress(vpninfo, PRG_INFO, "%s https://%s/%s\n", method, vpninfo->hostname, vpninfo->urlpath ?: ""); else vpn_progress(vpninfo, PRG_INFO, "%s https://%s:%d/%s\n", method, vpninfo->hostname, vpninfo->port, vpninfo->urlpath ?: ""); if (buf_error(buf)) return buf_free(buf); vpninfo->retry_on_auth_fail = 0; retry: if (openconnect_https_connected(vpninfo)) { /* The session is already connected. If we get a failure on * *sending* the request, try it again immediately with a new * connection. */ rq_retry = 1; } else { rq_retry = 0; if ((result = openconnect_open_https(vpninfo))) { vpn_progress(vpninfo, PRG_ERR, _("Failed to open HTTPS connection to %s\n"), vpninfo->hostname); /* We really don't want to return -EINVAL if we have failed to even connect to the server, because if we do that openconnect_obtain_cookie() might try again without XMLPOST... with the same result. */ result = -EIO; goto out; } } if (vpninfo->dump_http_traffic) dump_buf(vpninfo, '>', buf->data); for (i = 0; i < buf->pos; i += 16384) { result = vpninfo->ssl_write(vpninfo, buf->data + i, MIN(buf->pos - i, 16384) ); if (result < 0) { if (rq_retry) { /* Retry if we failed to send the request on an already-open connection */ openconnect_close_https(vpninfo, 0); goto retry; } /* We'll already have complained about whatever offended us */ goto out; } } result = process_http_response(vpninfo, 0, http_auth_hdrs, buf); if (result < 0) { goto out; } if (vpninfo->dump_http_traffic && buf->pos) dump_buf(vpninfo, '<', buf->data); if (result == 401 && vpninfo->try_http_auth) { auth = 1; goto redirected; } if (result != 200 && vpninfo->redirect_url) { result = handle_redirect(vpninfo); if (result == 0) { if (!fetch_redirect) goto out; if (fetch_redirect == 2) { /* Juniper requires we GET after a redirected POST */ method = "GET"; request_body_type = NULL; } if (vpninfo->redirect_type == REDIR_TYPE_NEWHOST) clear_auth_states(vpninfo, vpninfo->http_auth, 1); goto redirected; } goto out; } if (!buf->pos || result != 200) { vpn_progress(vpninfo, PRG_ERR, _("Unexpected %d result from server\n"), result); if (result == 401 || result == 403) result = -EPERM; else if (result == 512) /* GlobalProtect invalid username/password */ result = -EACCES; else result = -EINVAL; goto out; } *form_buf = buf->data; buf->data = NULL; result = buf->pos; out: buf_free(buf); /* On success, clear out all authentication state for the next request */ clear_auth_states(vpninfo, vpninfo->http_auth, 1); return result; } char *openconnect_create_useragent(const char *base) { char *uagent; if (asprintf(&uagent, "%s %s", base, openconnect_version_str) < 0) return NULL; return uagent; } static int proxy_gets(struct openconnect_info *vpninfo, char *buf, size_t len) { return cancellable_gets(vpninfo, vpninfo->proxy_fd, buf, len); } static int proxy_write(struct openconnect_info *vpninfo, char *buf, size_t len) { return cancellable_send(vpninfo, vpninfo->proxy_fd, buf, len); } static int proxy_read(struct openconnect_info *vpninfo, char *buf, size_t len) { return cancellable_recv(vpninfo, vpninfo->proxy_fd, buf, len); } static const char *socks_errors[] = { N_("request granted"), N_("general failure"), N_("connection not allowed by ruleset"), N_("network unreachable"), N_("host unreachable"), N_("connection refused by destination host"), N_("TTL expired"), N_("command not supported / protocol error"), N_("address type not supported") }; static int socks_password_auth(struct openconnect_info *vpninfo) { int ul, pl, i; char buf[1024]; if (!vpninfo->proxy_user || !vpninfo->proxy_pass) { vpn_progress(vpninfo, PRG_ERR, _("SOCKS server requested username/password but we have none\n")); return -EIO; } ul = strlen(vpninfo->proxy_user); pl = strlen(vpninfo->proxy_pass); if (ul > 255 || pl > 255) { vpn_progress(vpninfo, PRG_ERR, _("Username and password for SOCKS authentication must be < 255 bytes\n")); return -EINVAL; } buf[0] = 1; buf[1] = ul; memcpy(buf + 2, vpninfo->proxy_user, ul); buf[2 + ul] = pl; memcpy(buf + 3 + ul, vpninfo->proxy_pass, pl); i = proxy_write(vpninfo, buf, 3 + ul + pl); /* Don't leave passwords lying around if we can easily avoid it... */ memset(buf, 0, sizeof(buf)); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Error writing auth request to SOCKS proxy: %s\n"), strerror(-i)); return i; } if ((i = proxy_read(vpninfo, buf, 2)) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Error reading auth response from SOCKS proxy: %s\n"), strerror(-i)); return i; } if (buf[0] != 1) { vpn_progress(vpninfo, PRG_ERR, _("Unexpected auth response from SOCKS proxy: %02x %02x\n"), buf[0], buf[1]); return -EIO; } if (buf[1] == 0) { vpn_progress(vpninfo, PRG_DEBUG, _("Authenticated to SOCKS server using password\n")); return 0; } else { vpn_progress(vpninfo, PRG_ERR, _("Password authentication to SOCKS server failed\n")); return -EIO; } } #define SOCKS_AUTH_NONE 0 /* RFC1928 */ #define SOCKS_AUTH_GSSAPI 1 /* RFC1961 */ #define SOCKS_AUTH_PASSWORD 2 /* RFC1929 */ #define SOCKS_AUTH_NO_ACCEPTABLE 0xff /* RFC1928 */ static int process_socks_proxy(struct openconnect_info *vpninfo) { char buf[1024]; int i, nr_auth_methods = 0; buf[0] = 5; /* SOCKS version */ buf[2 + nr_auth_methods++] = SOCKS_AUTH_NONE; #if defined(HAVE_GSSAPI) || defined(_WIN32) if (vpninfo->proxy_auth[AUTH_TYPE_GSSAPI].state > AUTH_FAILED && !vpninfo->proxy_user && !vpninfo->proxy_pass) buf[2 + nr_auth_methods++] = SOCKS_AUTH_GSSAPI; #endif /* * Basic auth is disabled by default. But for SOCKS, if the user has * actually provided a password then that should implicitly allow * basic auth since that's all that SOCKS can do. We shouldn't force * the user to also add --proxy-auth=basic on the command line. */ if ((vpninfo->proxy_auth[AUTH_TYPE_BASIC].state > AUTH_FAILED || vpninfo->proxy_auth[AUTH_TYPE_BASIC].state == AUTH_DEFAULT_DISABLED) && vpninfo->proxy_user && vpninfo->proxy_pass) buf[2 + nr_auth_methods++] = SOCKS_AUTH_PASSWORD; buf[1] = nr_auth_methods; if ((i = proxy_write(vpninfo, buf, 2 + nr_auth_methods)) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Error writing auth request to SOCKS proxy: %s\n"), strerror(-i)); return i; } if ((i = proxy_read(vpninfo, buf, 2)) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Error reading auth response from SOCKS proxy: %s\n"), strerror(-i)); return i; } if (buf[0] != 5) { vpn_progress(vpninfo, PRG_ERR, _("Unexpected auth response from SOCKS proxy: %02x %02x\n"), buf[0], buf[1]); return -EIO; } switch ((unsigned char)buf[1]) { case SOCKS_AUTH_NONE: /* No authentication */ break; case SOCKS_AUTH_GSSAPI: #if defined(HAVE_GSSAPI) || defined(_WIN32) vpn_progress(vpninfo, PRG_DEBUG, _("SOCKS server requested GSSAPI authentication\n")); if (socks_gssapi_auth(vpninfo)) return -EIO; break; #else /* This should never happen since we didn't ask for it! */ vpn_progress(vpninfo, PRG_ERR, _("SOCKS server requested GSSAPI authentication\n")); return -EIO; #endif case SOCKS_AUTH_PASSWORD: vpn_progress(vpninfo, PRG_DEBUG, _("SOCKS server requested password authentication\n")); if (socks_password_auth(vpninfo)) return -EIO; break; case SOCKS_AUTH_NO_ACCEPTABLE: vpn_progress(vpninfo, PRG_ERR, _("SOCKS server requires authentication\n")); #if !defined(HAVE_GSSAPI) && !defined(_WIN32) vpn_progress(vpninfo, PRG_INFO, _("This version of OpenConnect was built without GSSAPI support\n")); #endif return -EIO; default: vpn_progress(vpninfo, PRG_ERR, _("SOCKS server requested unknown authentication type %02x\n"), (unsigned char)buf[1]); return -EIO; } vpn_progress(vpninfo, PRG_INFO, _("Requesting SOCKS proxy connection to %s:%d\n"), vpninfo->hostname, vpninfo->port); buf[0] = 5; /* SOCKS version */ buf[1] = 1; /* CONNECT */ buf[2] = 0; /* Reserved */ buf[3] = 3; /* Address type is domain name */ buf[4] = strlen(vpninfo->hostname); strcpy((char *)buf + 5, vpninfo->hostname); i = strlen(vpninfo->hostname) + 5; store_be16(buf + i, vpninfo->port); i += 2; if ((i = proxy_write(vpninfo, buf, i)) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Error writing connect request to SOCKS proxy: %s\n"), strerror(-i)); return i; } /* Read 5 bytes -- up to and including the first byte of the returned address (which might be the length byte of a domain name) */ if ((i = proxy_read(vpninfo, buf, 5)) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Error reading connect response from SOCKS proxy: %s\n"), strerror(-i)); return i; } if (i != 5 || buf[0] != 5) { vpn_progress(vpninfo, PRG_ERR, _("Unexpected connect response from SOCKS proxy: %02x %02x...\n"), buf[0], buf[1]); return -EIO; } if (buf[1]) { unsigned char err = buf[1]; if (err < sizeof(socks_errors) / sizeof(socks_errors[0])) vpn_progress(vpninfo, PRG_ERR, _("SOCKS proxy error %02x: %s\n"), err, _(socks_errors[err])); else vpn_progress(vpninfo, PRG_ERR, _("SOCKS proxy error %02x\n"), err); return -EIO; } /* Connect responses contain an address */ switch (buf[3]) { case 1: /* Legacy IP */ i = 5; break; case 3: /* Domain name */ i = buf[4] + 2; break; case 4: /* IPv6 */ i = 17; break; default: vpn_progress(vpninfo, PRG_ERR, _("Unexpected address type %02x in SOCKS connect response\n"), buf[3]); return -EIO; } if ((i = proxy_read(vpninfo, buf, i)) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Error reading connect response from SOCKS proxy: %s\n"), strerror(-i)); return i; } return 0; } static int process_http_proxy(struct openconnect_info *vpninfo) { struct oc_text_buf *reqbuf; int result; int auth = vpninfo->proxy_close_during_auth; vpninfo->proxy_close_during_auth = 0; vpn_progress(vpninfo, PRG_INFO, _("Requesting HTTP proxy connection to %s:%d\n"), vpninfo->hostname, vpninfo->port); retry: reqbuf = buf_alloc(); buf_append(reqbuf, "CONNECT %s:%d HTTP/1.1\r\n", vpninfo->hostname, vpninfo->port); if (vpninfo->port == 443) buf_append(reqbuf, "Host: %s\r\n", vpninfo->hostname); else buf_append(reqbuf, "Host: %s:%d\r\n", vpninfo->hostname, vpninfo->port); buf_append(reqbuf, "User-Agent: %s\r\n", vpninfo->useragent); buf_append(reqbuf, "Proxy-Connection: keep-alive\r\n"); buf_append(reqbuf, "Connection: keep-alive\r\n"); buf_append(reqbuf, "Accept-Encoding: identity\r\n"); if (auth) { result = gen_authorization_hdr(vpninfo, 1, reqbuf); if (result) { buf_free(reqbuf); return result; } /* Forget existing challenges */ clear_auth_states(vpninfo, vpninfo->proxy_auth, 0); } buf_append(reqbuf, "\r\n"); if (buf_error(reqbuf)) return buf_free(reqbuf); if (vpninfo->dump_http_traffic) dump_buf(vpninfo, '>', reqbuf->data); result = proxy_write(vpninfo, reqbuf->data, reqbuf->pos); if (result < 0) { buf_free(reqbuf); vpn_progress(vpninfo, PRG_ERR, _("Sending proxy request failed: %s\n"), strerror(-result)); return result; } result = process_http_response(vpninfo, 1, proxy_auth_hdrs, reqbuf); buf_free(reqbuf); if (result < 0) return -EINVAL; if (result == 407) { /* If the proxy asked us to close the connection, do so */ if (vpninfo->proxy_close_during_auth) return -EAGAIN; auth = 1; goto retry; } if (result == 200) return 0; vpn_progress(vpninfo, PRG_ERR, _("Proxy CONNECT request failed: %d\n"), result); return -EIO; } int process_proxy(struct openconnect_info *vpninfo, int ssl_sock) { int ret; vpninfo->proxy_fd = ssl_sock; vpninfo->ssl_read = proxy_read; vpninfo->ssl_write = proxy_write; vpninfo->ssl_gets = proxy_gets; if (!vpninfo->proxy_type || !strcmp(vpninfo->proxy_type, "http")) ret = process_http_proxy(vpninfo); else if (!strcmp(vpninfo->proxy_type, "socks") || !strcmp(vpninfo->proxy_type, "socks5")) ret = process_socks_proxy(vpninfo); else { vpn_progress(vpninfo, PRG_ERR, _("Unknown proxy type '%s'\n"), vpninfo->proxy_type); ret = -EIO; } vpninfo->proxy_fd = -1; if (!vpninfo->proxy_close_during_auth) clear_auth_states(vpninfo, vpninfo->proxy_auth, 1); return ret; } int openconnect_set_http_proxy(struct openconnect_info *vpninfo, const char *proxy) { char *p; int ret; free(vpninfo->proxy_type); vpninfo->proxy_type = NULL; free(vpninfo->proxy); vpninfo->proxy = NULL; ret = internal_parse_url(proxy, &vpninfo->proxy_type, &vpninfo->proxy, &vpninfo->proxy_port, NULL, 80); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse proxy '%s'\n"), proxy); return ret; } p = strrchr(vpninfo->proxy, '@'); if (p) { /* Proxy username/password */ *p = 0; vpninfo->proxy_user = vpninfo->proxy; vpninfo->proxy = strdup(p + 1); p = strchr(vpninfo->proxy_user, ':'); if (p) { *p = 0; vpninfo->proxy_pass = strdup(p + 1); xmlURIUnescapeString(vpninfo->proxy_pass, 0, vpninfo->proxy_pass); } xmlURIUnescapeString(vpninfo->proxy_user, 0, vpninfo->proxy_user); } if (vpninfo->proxy_type && strcmp(vpninfo->proxy_type, "http") && strcmp(vpninfo->proxy_type, "socks") && strcmp(vpninfo->proxy_type, "socks5")) { vpn_progress(vpninfo, PRG_ERR, _("Only http or socks(5) proxies supported\n")); free(vpninfo->proxy_type); vpninfo->proxy_type = NULL; free(vpninfo->proxy); vpninfo->proxy = NULL; return -EINVAL; } return 0; } void http_common_headers(struct openconnect_info *vpninfo, struct oc_text_buf *buf) { struct oc_vpn_option *opt; if (vpninfo->port == 443) buf_append(buf, "Host: %s\r\n", vpninfo->hostname); else buf_append(buf, "Host: %s:%d\r\n", vpninfo->hostname, vpninfo->port); buf_append(buf, "User-Agent: %s\r\n", vpninfo->useragent); if (vpninfo->cookies) { buf_append(buf, "Cookie: "); for (opt = vpninfo->cookies; opt; opt = opt->next) buf_append(buf, "%s=%s%s", opt->option, opt->value, opt->next ? "; " : "\r\n"); } } openconnect-8.05/AUTHORS0000664000076400007640000000657113536301704016620 0ustar00dwoodhoudwoodhou00000000000000 2431 David Woodhouse 273 Kevin Cernekee 89 Nikos Mavrogiannopoulos 88 Daniel Lenski 24 Jussi Kukkonen 17 Adam Piątyszek 17 Antonio Borneo 11 Nick Andrew 7 Mike Miller 6 Erik Mouw 6 Mike Miller 4 Fengguang Wu 4 Nikolay Martynov 3 Dirk Hohndel 3 Stuart Henderson 3 Ľubomír Carik 2 Björn Ketelaars 2 David Dindorp 2 Jason Cooper 2 Jay Soffian 2 Jeremy Visser 2 John Morrissey 2 Jon DeVree 2 Kazuyoshi Aizawa 2 Marcel Holtmann 2 Piotr Kubaj 2 Ralph Schmieder 2 Ray Kohler 2 Rosen Penev 1 Cameron Eagans 1 Chad Catlett 1 Chaskiel Grundman 1 Colin Petrie 1 Corey Wright 1 David GEIGER 1 Dominic Hargreaves 1 Dominique Leuenberger 1 Eric Barkie 1 Fabian Jäger 1 François Grenier 1 Ilia Kats 1 James Laird-Wah 1 Janne Juntunen 1 Jason Cooper 1 Jason Wessel 1 Jiří Klimeš 1 Joe Hu 1 Joerg Mayer 1 Jørgen Wahlberg 1 Katelyn Schiesser 1 Keith Moyer 1 Kyle Johnson 1 Marc St-Amand 1 Mathias Schuepany 1 Michael Zhilin 1 Murilo Opsfelder Araujo 1 Nick Parrin 1 Nikolay Panin 1 Omar Sandoval 1 Patrick Lühne 1 Paul Brook 1 Paul Donohue 1 Pouya D. Tafti 1 Ross Burton 1 Stefan Becker 1 Steven Allen 1 Steven Ihde 1 Stuart Henderson 1 Svante Signell 1 Thomas Schwinge 1 Thomas Uhle 1 Thomas Wood 1 Thorsten Bonhagen 1 Tiago Vignatti 1 Yoshimasa Niwa 1 Youfu Zhang 1 raminfp openconnect-8.05/auth-globalprotect.c0000664000076400007640000005121713477413651021522 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2016-2018 Daniel Lenski * * Author: Dan Lenski * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include "openconnect-internal.h" struct login_context { char *username; /* Username that has already succeeded in some form */ char *alt_secret; /* Alternative secret (DO NOT FREE) */ struct oc_auth_form *form; }; void gpst_common_headers(struct openconnect_info *vpninfo, struct oc_text_buf *buf) { char *orig_ua = vpninfo->useragent; /* XX: more recent servers don't appear to require this specific UA value, * but we don't have any good way to detect them. */ vpninfo->useragent = (char *)"PAN GlobalProtect"; http_common_headers(vpninfo, buf); vpninfo->useragent = orig_ua; } /* Translate platform names (derived from AnyConnect) into the values * known to be emitted by GlobalProtect clients. */ const char *gpst_os_name(struct openconnect_info *vpninfo) { if (!strcmp(vpninfo->platname, "mac-intel") || !strcmp(vpninfo->platname, "apple-ios")) return "Mac"; else if (!strcmp(vpninfo->platname, "linux-64") || !strcmp(vpninfo->platname, "linux") || !strcmp(vpninfo->platname, "android")) return "Linux"; else return "Windows"; } /* Parse pre-login response ({POST,GET} /{global-protect,ssl-vpn}/pre-login.esp) * * Extracts the relevant arguments from the XML (username-label, password-label) * and uses them to build an auth form, which always has two visible fields: * * 1) username * 2) one secret value: * - normal account password * - "challenge" (2FA) password, along with form name in auth_id * - cookie from external authentication flow ("alternative secret" INSTEAD OF password) * */ static int parse_prelogin_xml(struct openconnect_info *vpninfo, xmlNode *xml_node, void *cb_data) { struct login_context *ctx = cb_data; struct oc_auth_form *form = ctx->form; struct oc_form_opt *opt, *opt2; char *prompt = NULL, *username_label = NULL, *password_label = NULL; char *saml_method = NULL, *saml_path = NULL; int result = 0; if (!xmlnode_is_named(xml_node, "prelogin-response")) goto out; for (xml_node = xml_node->children; xml_node; xml_node = xml_node->next) { char *s = NULL; if (!xmlnode_get_val(xml_node, "saml-request", &s)) { int len; saml_path = openconnect_base64_decode(&len, s); if (len < 0) { vpn_progress(vpninfo, PRG_ERR, "Could not decode SAML request as base64: %s\n", s); free(s); result = -EINVAL; goto out; } free(s); saml_path = realloc(saml_path, len+1); saml_path[len] = '\0'; } else { xmlnode_get_val(xml_node, "saml-auth-method", &saml_method); xmlnode_get_val(xml_node, "authentication-message", &prompt); xmlnode_get_val(xml_node, "username-label", &username_label); xmlnode_get_val(xml_node, "password-label", &password_label); /* XX: should we save the certificate username from ? */ } } /* XX: Alt-secret form field must be specified for SAML, because we can't autodetect it */ if ((saml_method || saml_path) && !ctx->alt_secret) { vpn_progress(vpninfo, PRG_ERR, "SAML authentication via %s to %s is required.\n" "Must specify destination form field by appending :field_name to login URL.\n", saml_method, saml_path); result = -EINVAL; } /* Replace old form */ free_auth_form(ctx->form); form = ctx->form = calloc(1, sizeof(*form)); if (!form) { nomem: free_auth_form(form); result = -ENOMEM; goto out; } if (saml_path && asprintf(&form->banner, _("SAML login is required via %s to this URL:\n\t%s"), saml_method, saml_path) == 0) goto nomem; form->message = prompt ? : strdup(_("Please enter your username and password")); prompt = NULL; form->auth_id = strdup("_login"); /* First field (username) */ opt = form->opts = calloc(1, sizeof(*opt)); if (!opt) goto nomem; opt->name = strdup("user"); if (asprintf(&opt->label, "%s: ", username_label ? : _("Username")) == 0) goto nomem; if (!ctx->username) opt->type = OC_FORM_OPT_TEXT; else { opt->type = OC_FORM_OPT_HIDDEN; opt->_value = ctx->username; ctx->username = NULL; } /* Second field (secret) */ opt2 = opt->next = calloc(1, sizeof(*opt)); if (!opt2) goto nomem; opt2->name = strdup(ctx->alt_secret ? : "passwd"); if (asprintf(&opt2->label, "%s: ", ctx->alt_secret ? : password_label ? : _("Password")) == 0) goto nomem; /* XX: Some VPNs use a password in the first form, followed by a * a token in the second ("challenge") form. Others use only a * token. How can we distinguish these? */ if (!can_gen_tokencode(vpninfo, form, opt2)) opt2->type = OC_FORM_OPT_TOKEN; else opt2->type = OC_FORM_OPT_PASSWORD; vpn_progress(vpninfo, PRG_TRACE, "%s%s: \"%s\" %s(%s)=%s, \"%s\" %s(%s)\n", form->auth_id[0] == '_' ? "Login form" : "Challenge form ", form->auth_id[0] != '_' ? form->auth_id : "", opt->label, opt->name, opt->type == OC_FORM_OPT_TEXT ? "TEXT" : "HIDDEN", opt->_value, opt2->label, opt2->name, opt2->type == OC_FORM_OPT_PASSWORD ? "PASSWORD" : "TOKEN"); out: free(prompt); free(username_label); free(password_label); free(saml_method); free(saml_path); return result; } /* Callback function to create a new form from a challenge * */ static int challenge_cb(struct openconnect_info *vpninfo, char *prompt, char *inputStr, void *cb_data) { struct login_context *ctx = cb_data; struct oc_auth_form *form = ctx->form; struct oc_form_opt *opt = form->opts, *opt2 = form->opts->next; /* Replace prompt, inputStr, and password prompt; * clear password field, and make user field hidden. */ free(form->message); free(form->auth_id); free(opt2->label); free(opt2->_value); opt2->_value = NULL; opt->type = OC_FORM_OPT_HIDDEN; if ( !(form->message = strdup(prompt)) || !(form->auth_id = strdup(inputStr)) || !(opt2->label = strdup(_("Challenge: "))) ) return -ENOMEM; vpn_progress(vpninfo, PRG_TRACE, "%s%s: \"%s\" %s(%s)=%s, \"%s\" %s(%s)\n", form->auth_id[0] == '_' ? "Login form" : "Challenge form ", form->auth_id[0] != '_' ? form->auth_id : "", opt->label, opt->name, opt->type == OC_FORM_OPT_TEXT ? "TEXT" : "HIDDEN", opt->_value, opt2->label, opt2->name, opt2->type == OC_FORM_OPT_PASSWORD ? "PASSWORD" : "TOKEN"); return -EAGAIN; } /* Parse gateway login response (POST /ssl-vpn/login.esp) * * Extracts the relevant arguments from the XML (...) * and uses them to build a query string fragment which is usable for subsequent requests. * This query string fragement is saved as vpninfo->cookie. * */ struct gp_login_arg { const char *opt; unsigned save:1; unsigned show:1; unsigned warn_missing:1; unsigned err_missing:1; const char *check; }; static const struct gp_login_arg gp_login_args[] = { { .opt="unknown-arg0", .show=1 }, { .opt="authcookie", .save=1, .err_missing=1 }, { .opt="persistent-cookie", .warn_missing=1 }, /* 40 hex digits; persists across sessions */ { .opt="portal", .save=1, .warn_missing=1 }, { .opt="user", .save=1, .err_missing=1 }, { .opt="authentication-source", .show=1 }, /* LDAP-auth, AUTH-RADIUS_RSA_OTP, etc. */ { .opt="configuration", .warn_missing=1 }, /* usually vsys1 (sometimes vsys2, etc.) */ { .opt="domain", .save=1, .warn_missing=1 }, { .opt="unknown-arg8", .show=1 }, { .opt="unknown-arg9", .show=1 }, { .opt="unknown-arg10", .show=1 }, { .opt="unknown-arg11", .show=1 }, { .opt="connection-type", .err_missing=1, .check="tunnel" }, { .opt="password-expiration-days", .show=1 }, /* days until password expires, if not -1 */ { .opt="clientVer", .err_missing=1, .check="4100" }, { .opt="preferred-ip", .save=1 }, { .opt=NULL }, }; static int parse_login_xml(struct openconnect_info *vpninfo, xmlNode *xml_node, void *cb_data) { struct oc_text_buf *cookie = buf_alloc(); char *value = NULL; const struct gp_login_arg *arg; if (!xmlnode_is_named(xml_node, "jnlp")) goto err_out; xml_node = xml_node->children; while (xml_node && xml_node->type != XML_ELEMENT_NODE) xml_node = xml_node->next; if (!xmlnode_is_named(xml_node, "application-desc")) goto err_out; xml_node = xml_node->children; for (arg = gp_login_args; arg->opt; arg++) { while (xml_node && xml_node->type != XML_ELEMENT_NODE) xml_node = xml_node->next; if (xml_node && !xmlnode_get_val(xml_node, "argument", &value)) { if (value && (!value[0] || !strcmp(value, "(null)") || !strcmp(value, "-1"))) { free(value); value = NULL; } xml_node = xml_node->next; } else if (xml_node) goto err_out; if (arg->check && (!value || strcmp(value, arg->check))) { vpn_progress(vpninfo, arg->err_missing ? PRG_ERR : PRG_DEBUG, _("GlobalProtect login returned %s=%s (expected %s)\n"), arg->opt, value, arg->check); if (arg->err_missing) goto err_out; } else if ((arg->err_missing || arg->warn_missing) && !value) { vpn_progress(vpninfo, arg->err_missing ? PRG_ERR : PRG_DEBUG, _("GlobalProtect login returned empty or missing %s\n"), arg->opt); if (arg->err_missing) goto err_out; } else if (value && arg->show) { vpn_progress(vpninfo, PRG_INFO, _("GlobalProtect login returned %s=%s\n"), arg->opt, value); } if (value && arg->save) append_opt(cookie, arg->opt, value); free(value); value = NULL; } append_opt(cookie, "computer", vpninfo->localname); if (!buf_error(cookie)) { vpninfo->cookie = cookie->data; cookie->data = NULL; } return buf_free(cookie); err_out: free(value); buf_free(cookie); return -EINVAL; } /* Parse portal login/config response (POST /ssl-vpn/getconfig.esp) * * Extracts the list of gateways from the XML, writes them to the XML config, * presents the user with a form to choose the gateway, and redirects * to that gateway. * */ static int parse_portal_xml(struct openconnect_info *vpninfo, xmlNode *xml_node, void *cb_data) { struct oc_auth_form *form; xmlNode *x = NULL; struct oc_form_opt_select *opt; struct oc_text_buf *buf = NULL; int max_choices = 0, result; char *portal = NULL; form = calloc(1, sizeof(*form)); if (!form) return -ENOMEM; form->message = strdup(_("Please select GlobalProtect gateway.")); form->auth_id = strdup("_portal"); opt = form->authgroup_opt = calloc(1, sizeof(*opt)); if (!opt) { result = -ENOMEM; goto out; } opt->form.type = OC_FORM_OPT_SELECT; opt->form.name = strdup("gateway"); opt->form.label = strdup(_("GATEWAY:")); form->opts = (void *)opt; /* * The portal contains a ton of stuff, but basically none of it is * useful to a VPN client that wishes to give control to the client * user, as opposed to the VPN administrator. The exception is the * list of gateways in policy/gateways/external/list */ if (xmlnode_is_named(xml_node, "policy")) { for (x = xml_node->children, xml_node = NULL; x; x = x->next) { if (xmlnode_is_named(x, "gateways")) xml_node = x; else xmlnode_get_val(x, "portal-name", &portal); } } if (xml_node) { for (xml_node = xml_node->children; xml_node; xml_node = xml_node->next) if (xmlnode_is_named(xml_node, "external")) for (xml_node = xml_node->children; xml_node; xml_node = xml_node->next) if (xmlnode_is_named(xml_node, "list")) goto gateways; } result = -EINVAL; goto out; gateways: if (vpninfo->write_new_config) { buf = buf_alloc(); buf_append(buf, "\n \n"); if (portal) { buf_append(buf, " "); buf_append_xmlescaped(buf, portal); buf_append(buf, "%s", vpninfo->hostname); if (vpninfo->port!=443) buf_append(buf, ":%d", vpninfo->port); buf_append(buf, "/global-protect\n"); } } /* first, count the number of gateways */ for (x = xml_node->children; x; x = x->next) if (xmlnode_is_named(x, "entry")) max_choices++; opt->choices = calloc(max_choices, sizeof(opt->choices[0])); if (!opt->choices) { result = -ENOMEM; goto out; } /* each entry looks like Label */ vpn_progress(vpninfo, PRG_INFO, _("%d gateway servers available:\n"), max_choices); for (xml_node = xml_node->children; xml_node; xml_node = xml_node->next) { if (xmlnode_is_named(xml_node, "entry")) { struct oc_choice *choice = calloc(1, sizeof(*choice)); if (!choice) { result = -ENOMEM; goto out; } xmlnode_get_prop(xml_node, "name", &choice->name); for (x = xml_node->children; x; x=x->next) if (!xmlnode_get_val(x, "description", &choice->label)) { if (vpninfo->write_new_config) { buf_append(buf, " "); buf_append_xmlescaped(buf, choice->label); buf_append(buf, "%s/ssl-vpn\n", choice->name); } } opt->choices[opt->nr_choices++] = choice; vpn_progress(vpninfo, PRG_INFO, _(" %s (%s)\n"), choice->label, choice->name); } } if (!vpninfo->authgroup && opt->nr_choices) vpninfo->authgroup = strdup(opt->choices[0]->name); if (vpninfo->write_new_config) { buf_append(buf, " \n\n"); if ((result = buf_error(buf))) goto out; if ((result = vpninfo->write_new_config(vpninfo->cbdata, buf->data, buf->pos))) goto out; } /* process auth form to select gateway */ result = process_auth_form(vpninfo, form); if (result == OC_FORM_RESULT_CANCELLED || result < 0) goto out; /* redirect to the gateway (no-op if it's the same host) */ free(vpninfo->redirect_url); if (asprintf(&vpninfo->redirect_url, "https://%s", vpninfo->authgroup) == 0) { result = -ENOMEM; goto out; } result = handle_redirect(vpninfo); out: buf_free(buf); free(portal); free_auth_form(form); return result; } /* Main login entry point * * portal: 0 for gateway login, 1 for portal login * alt_secret: "alternate secret" field (see new_auth_form) * */ static int gpst_login(struct openconnect_info *vpninfo, int portal, struct login_context *ctx) { int result, blind_retry = 0; struct oc_text_buf *request_body = buf_alloc(); const char *request_body_type = "application/x-www-form-urlencoded"; char *xml_buf = NULL, *orig_path; /* Ask the user to fill in the auth form; repeat as necessary */ for (;;) { /* submit prelogin request to get form */ orig_path = vpninfo->urlpath; if (asprintf(&vpninfo->urlpath, "%s/prelogin.esp?tmp=tmp&clientVer=4100&clientos=%s", portal ? "global-protect" : "ssl-vpn", gpst_os_name(vpninfo)) < 0) { result = -ENOMEM; goto out; } result = do_https_request(vpninfo, "POST", NULL, NULL, &xml_buf, 0); free(vpninfo->urlpath); vpninfo->urlpath = orig_path; if (result >= 0) result = gpst_xml_or_error(vpninfo, xml_buf, parse_prelogin_xml, NULL, ctx); if (result) goto out; got_form: /* process auth form */ result = process_auth_form(vpninfo, ctx->form); if (result) goto out; replay_form: /* generate token code if specified */ result = do_gen_tokencode(vpninfo, ctx->form); if (result) { vpn_progress(vpninfo, PRG_ERR, _("Failed to generate OTP tokencode; disabling token\n")); vpninfo->token_bypassed = 1; goto out; } /* submit gateway login (ssl-vpn/login.esp) or portal config (global-protect/getconfig.esp) request */ buf_truncate(request_body); buf_append(request_body, "jnlpReady=jnlpReady&ok=Login&direct=yes&clientVer=4100&prot=https:"); append_opt(request_body, "ipv6-support", vpninfo->disable_ipv6 ? "no" : "yes"); append_opt(request_body, "clientos", gpst_os_name(vpninfo)); append_opt(request_body, "os-version", vpninfo->platname); append_opt(request_body, "server", vpninfo->hostname); append_opt(request_body, "computer", vpninfo->localname); if (vpninfo->ip_info.addr) append_opt(request_body, "preferred-ip", vpninfo->ip_info.addr); if (ctx->form->auth_id && ctx->form->auth_id[0]!='_') append_opt(request_body, "inputStr", ctx->form->auth_id); append_form_opts(vpninfo, ctx->form, request_body); if ((result = buf_error(request_body))) goto out; orig_path = vpninfo->urlpath; vpninfo->urlpath = strdup(portal ? "global-protect/getconfig.esp" : "ssl-vpn/login.esp"); result = do_https_request(vpninfo, "POST", request_body_type, request_body, &xml_buf, 0); free(vpninfo->urlpath); vpninfo->urlpath = orig_path; /* Result could be either a JavaScript challenge or XML */ if (result >= 0) result = gpst_xml_or_error(vpninfo, xml_buf, portal ? parse_portal_xml : parse_login_xml, challenge_cb, ctx); if (result == -EACCES) { /* Invalid username/password; reuse same form, but blank, * unless we just did a blind retry. */ nuke_opt_values(ctx->form->opts); if (!blind_retry) goto got_form; else blind_retry = 0; } else { /* Save successful username */ if (!ctx->username) ctx->username = strdup(ctx->form->opts->_value); if (result == -EAGAIN) { /* New form is already populated from the challenge */ goto got_form; } else if (portal && result == 0) { /* Portal login succeeded; blindly retry same credentials on gateway, * unless it was a challenge auth form or alt-secret form. */ portal = 0; if (ctx->form->auth_id[0] == '_' && ctx->alt_secret) { blind_retry = 1; goto replay_form; } } else break; } } out: buf_free(request_body); free(xml_buf); return result; } int gpst_obtain_cookie(struct openconnect_info *vpninfo) { struct login_context ctx = { .username=NULL, .alt_secret=NULL, .form=NULL }; int result; /* An alternate password/secret field may be specified in the "URL path" (or --usergroup). * Known possibilities are: * /portal:portal-userauthcookie * /gateway:prelogin-cookie */ if (vpninfo->urlpath && (ctx.alt_secret = strrchr(vpninfo->urlpath, ':')) != NULL) { *(ctx.alt_secret) = '\0'; ctx.alt_secret = strdup(ctx.alt_secret+1); } if (vpninfo->urlpath && (!strcmp(vpninfo->urlpath, "portal") || !strncmp(vpninfo->urlpath, "global-protect", 14))) { /* assume the server is a portal */ result = gpst_login(vpninfo, 1, &ctx); } else if (vpninfo->urlpath && (!strcmp(vpninfo->urlpath, "gateway") || !strncmp(vpninfo->urlpath, "ssl-vpn", 7))) { /* assume the server is a gateway */ result = gpst_login(vpninfo, 0, &ctx); } else { /* first try handling it as a gateway, then a portal */ result = gpst_login(vpninfo, 0, &ctx); if (result == -EEXIST) { result = gpst_login(vpninfo, 1, &ctx); if (result == -EEXIST) vpn_progress(vpninfo, PRG_ERR, _("Server is neither a GlobalProtect portal nor a gateway.\n")); } } free(ctx.username); free(ctx.alt_secret); free_auth_form(ctx.form); return result; } int gpst_bye(struct openconnect_info *vpninfo, const char *reason) { char *orig_path; int result; struct oc_text_buf *request_body = buf_alloc(); const char *request_body_type = "application/x-www-form-urlencoded"; const char *method = "POST"; char *xml_buf = NULL; /* In order to logout successfully, the client must send not only * the session's authcookie, but also the portal, user, computer, * and domain matching the values sent with the getconfig request. * * You read that right: the client must send a bunch of irrelevant * non-secret values in its logout request. If they're wrong or * missing, the logout will fail and the authcookie will remain * valid -- which is a security hole. * * Don't blame me. I didn't design this. */ buf_append(request_body, "%s", vpninfo->cookie); if ((result = buf_error(request_body))) goto out; /* We need to close and reopen the HTTPS connection (to kill * the tunnel session) and submit a new HTTPS request to * logout. */ orig_path = vpninfo->urlpath; vpninfo->urlpath = strdup("ssl-vpn/logout.esp"); openconnect_close_https(vpninfo, 0); result = do_https_request(vpninfo, method, request_body_type, request_body, &xml_buf, 0); free(vpninfo->urlpath); vpninfo->urlpath = orig_path; /* logout.esp returns HTTP status 200 and when * successful, and all manner of malformed junk when unsuccessful. */ if (result >= 0) result = gpst_xml_or_error(vpninfo, xml_buf, NULL, NULL, NULL); if (result < 0) vpn_progress(vpninfo, PRG_ERR, _("Logout failed.\n")); else vpn_progress(vpninfo, PRG_INFO, _("Logout successful\n")); out: buf_free(request_body); free(xml_buf); return result; } openconnect-8.05/gnutls-dtls.c0000664000076400007640000003716113425024516020173 0ustar00dwoodhoudwoodhou00000000000000 /* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2016 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include #include #include #include #ifndef _WIN32 #include #include #endif #include #include "gnutls.h" #if GNUTLS_VERSION_NUMBER < 0x030200 # define GNUTLS_DTLS1_2 202 #endif #if GNUTLS_VERSION_NUMBER < 0x030400 # define GNUTLS_CIPHER_CHACHA20_POLY1305 23 #endif /* sets the DTLS MTU and returns the actual tunnel MTU */ unsigned dtls_set_mtu(struct openconnect_info *vpninfo, unsigned mtu) { gnutls_dtls_set_mtu(vpninfo->dtls_ssl, mtu); return gnutls_dtls_get_data_mtu(vpninfo->dtls_ssl); } struct { const char *name; gnutls_protocol_t version; gnutls_cipher_algorithm_t cipher; gnutls_kx_algorithm_t kx; gnutls_mac_algorithm_t mac; const char *prio; const char *min_gnutls_version; int cisco_dtls12; } gnutls_dtls_ciphers[] = { { "DHE-RSA-AES128-SHA", GNUTLS_DTLS0_9, GNUTLS_CIPHER_AES_128_CBC, GNUTLS_KX_DHE_RSA, GNUTLS_MAC_SHA1, "NONE:+VERS-DTLS0.9:+COMP-NULL:+AES-128-CBC:+SHA1:+DHE-RSA:%COMPAT", "3.0.0" }, { "DHE-RSA-AES256-SHA", GNUTLS_DTLS0_9, GNUTLS_CIPHER_AES_256_CBC, GNUTLS_KX_DHE_RSA, GNUTLS_MAC_SHA1, "NONE:+VERS-DTLS0.9:+COMP-NULL:+AES-256-CBC:+SHA1:+DHE-RSA:%COMPAT", "3.0.0" }, { "AES128-SHA", GNUTLS_DTLS0_9, GNUTLS_CIPHER_AES_128_CBC, GNUTLS_KX_RSA, GNUTLS_MAC_SHA1, "NONE:+VERS-DTLS0.9:+COMP-NULL:+AES-128-CBC:+SHA1:+RSA:%COMPAT", "3.0.0" }, { "AES256-SHA", GNUTLS_DTLS0_9, GNUTLS_CIPHER_AES_256_CBC, GNUTLS_KX_RSA, GNUTLS_MAC_SHA1, "NONE:+VERS-DTLS0.9:+COMP-NULL:+AES-256-CBC:+SHA1:+RSA:%COMPAT", "3.0.0" }, { "DES-CBC3-SHA", GNUTLS_DTLS0_9, GNUTLS_CIPHER_3DES_CBC, GNUTLS_KX_RSA, GNUTLS_MAC_SHA1, "NONE:+VERS-DTLS0.9:+COMP-NULL:+3DES-CBC:+SHA1:+RSA:%COMPAT", "3.0.0" }, { "OC-DTLS1_2-AES128-GCM", GNUTLS_DTLS1_2, GNUTLS_CIPHER_AES_128_GCM, GNUTLS_KX_RSA, GNUTLS_MAC_AEAD, "NONE:+VERS-DTLS1.2:+COMP-NULL:+AES-128-GCM:+AEAD:+RSA:%COMPAT:+SIGN-ALL", "3.2.7" }, { "OC-DTLS1_2-AES256-GCM", GNUTLS_DTLS1_2, GNUTLS_CIPHER_AES_256_GCM, GNUTLS_KX_RSA, GNUTLS_MAC_AEAD, "NONE:+VERS-DTLS1.2:+COMP-NULL:+AES-256-GCM:+AEAD:+RSA:%COMPAT:+SIGN-ALL", "3.2.7" }, { "OC2-DTLS1_2-CHACHA20-POLY1305", GNUTLS_DTLS1_2, GNUTLS_CIPHER_CHACHA20_POLY1305, GNUTLS_KX_PSK, GNUTLS_MAC_AEAD, "NONE:+VERS-DTLS1.2:+COMP-NULL:+CHACHA20-POLY1305:+AEAD:+PSK:%COMPAT:+SIGN-ALL", "3.4.8" }, /* Cisco X-DTLS12-CipherSuite: values */ { "ECDHE-RSA-AES256-GCM-SHA384", GNUTLS_DTLS1_2, GNUTLS_CIPHER_AES_256_GCM, GNUTLS_KX_ECDHE_RSA, GNUTLS_MAC_AEAD, "NONE:+VERS-DTLS1.2:+COMP-NULL:+AES-256-GCM:+AEAD:+ECDHE-RSA:+SIGN-ALL:%COMPAT", "3.2.7", 1 }, { "ECDHE-RSA-AES128-GCM-SHA256", GNUTLS_DTLS1_2, GNUTLS_CIPHER_AES_128_GCM, GNUTLS_KX_ECDHE_RSA, GNUTLS_MAC_AEAD, "NONE:+VERS-DTLS1.2:+COMP-NULL:+AES-128-GCM:+AEAD:+ECDHE-RSA:+SIGN-ALL:%COMPAT", "3.2.7", 1 }, { "AES128-GCM-SHA256", GNUTLS_DTLS1_2, GNUTLS_CIPHER_AES_128_GCM, GNUTLS_KX_RSA, GNUTLS_MAC_AEAD, "NONE:+VERS-DTLS1.2:+COMP-NULL:+AES-128-GCM:+AEAD:+RSA:+SIGN-ALL:%COMPAT", "3.2.7", 1 }, { "AES256-GCM-SHA384", GNUTLS_DTLS1_2, GNUTLS_CIPHER_AES_256_GCM, GNUTLS_KX_RSA, GNUTLS_MAC_AEAD, "NONE:+VERS-DTLS1.2:+COMP-NULL:+AES-256-GCM:+AEAD:+RSA:+SIGN-ALL:%COMPAT", "3.2.7", 1 }, /* NB. We agreed that any new cipher suites probably shouldn't use * Cisco's session resume hack (which ties us to a specific version * of DTLS). Instead, we'll use GNUTLS_KX_PSK and let it negotiate * the session properly. We might want to wait for * draft-jay-tls-psk-identity-extension before we do that. */ }; #if GNUTLS_VERSION_NUMBER < 0x030009 void gather_dtls_ciphers(struct openconnect_info *vpninfo, struct oc_text_buf *buf, struct oc_text_buf *buf12) { int i, first = 1; for (i = 0; i < sizeof(gnutls_dtls_ciphers) / sizeof(gnutls_dtls_ciphers[0]); i++) { if (!gnutls_dtls_ciphers[i].cisco_dtls12 && gnutls_check_version(gnutls_dtls_ciphers[i].min_gnutls_version)) { buf_append(buf, "%s%s", first ? "" : ":", gnutls_dtls_ciphers[i].name); first = 0; } } } #else void gather_dtls_ciphers(struct openconnect_info *vpninfo, struct oc_text_buf *buf, struct oc_text_buf *buf12) { /* only enable the ciphers that would have been negotiated in the TLS channel */ unsigned i, j; int ret; unsigned idx; gnutls_cipher_algorithm_t cipher; gnutls_mac_algorithm_t mac; gnutls_priority_t cache; uint32_t used = 0; buf_append(buf, "PSK-NEGOTIATE"); ret = gnutls_priority_init(&cache, vpninfo->gnutls_prio, NULL); if (ret < 0) { buf->error = -EIO; return; } for (j=0; ; j++) { ret = gnutls_priority_get_cipher_suite_index(cache, j, &idx); if (ret == GNUTLS_E_UNKNOWN_CIPHER_SUITE) continue; else if (ret < 0) break; if (gnutls_cipher_suite_info(idx, NULL, NULL, &cipher, &mac, NULL) != NULL) { for (i = 0; i < sizeof(gnutls_dtls_ciphers)/sizeof(gnutls_dtls_ciphers[0]); i++) { if (used & (1 << i)) continue; if (gnutls_dtls_ciphers[i].mac == mac && gnutls_dtls_ciphers[i].cipher == cipher) { /* This cipher can be supported. Decide whether which list it lives * in. Cisco's DTLSv1.2 options need to go into a separate * into a separate X-DTLS12-CipherSuite header for some reason... */ struct oc_text_buf *list; if (gnutls_dtls_ciphers[i].cisco_dtls12) list = buf12; else list = buf; if (list && list->pos) buf_append(list, ":%s", gnutls_dtls_ciphers[i].name); else buf_append(list, "%s", gnutls_dtls_ciphers[i].name); used |= (1 << i); break; } } } } gnutls_priority_deinit(cache); } #endif /* This enables a DTLS protocol negotiation. The new negotiation is as follows: * * If the client's X-DTLS-CipherSuite contains the "PSK-NEGOTIATE" keyword, * the server will reply with "X-DTLS-CipherSuite: PSK-NEGOTIATE" and will * enable DTLS-PSK negotiation on the DTLS channel. This allows the protocol * to use new DTLS versions, as well as new DTLS ciphersuites, as long as * they are also permitted by the system crypto policy in use. * * That change still requires to client to pretend it is resuming by setting * in the TLS ClientHello the session ID provided by the X-DTLS-Session-ID * header. That is, because there is no TLS extension we can use to set an * identifier in the client hello (draft-jay-tls-psk-identity-extension * could be used in the future). The session is not actually resumed. */ static int start_dtls_psk_handshake(struct openconnect_info *vpninfo, int dtls_fd) { gnutls_session_t dtls_ssl; gnutls_datum_t key; struct oc_text_buf *prio; int err; if (!vpninfo->https_sess) { vpn_progress(vpninfo, PRG_INFO, _("Deferring DTLS resumption until CSTP generates a PSK\n")); return -EAGAIN; } prio = buf_alloc(); buf_append(prio, "%s:-VERS-TLS-ALL:+VERS-DTLS-ALL:-KX-ALL:+PSK", vpninfo->gnutls_prio); if (buf_error(prio)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to generate DTLS priority string\n")); vpninfo->dtls_attempt_period = 0; return buf_free(prio); } err = gnutls_init(&dtls_ssl, GNUTLS_CLIENT|GNUTLS_DATAGRAM|GNUTLS_NONBLOCK|GNUTLS_NO_EXTENSIONS); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to initialize DTLS: %s\n"), gnutls_strerror(err)); goto fail; } gnutls_session_set_ptr(dtls_ssl, (void *) vpninfo); err = gnutls_priority_set_direct(dtls_ssl, prio->data, NULL); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to set DTLS priority: '%s': %s\n"), prio->data, gnutls_strerror(err)); goto fail; } /* set our session identifier match the application ID; we do that in addition * to the extension which contains the same information in order to deprecate * the latter. The reason is that the session ID field is a field not used * with TLS1.3 (and DTLS1.3), and as such we can rely on it being available to * us, while avoiding a custom extension which requires standardization. */ if (vpninfo->dtls_app_id_size > 0) { gnutls_datum_t id = {vpninfo->dtls_app_id, vpninfo->dtls_app_id_size}; gnutls_session_set_id(dtls_ssl, &id); } gnutls_transport_set_ptr(dtls_ssl, (gnutls_transport_ptr_t)(intptr_t)dtls_fd); /* set PSK credentials */ err = gnutls_psk_allocate_client_credentials(&vpninfo->psk_cred); if (err < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to allocate credentials: %s\n"), gnutls_strerror(err)); goto fail; } /* generate key */ /* we should have used gnutls_prf_rfc5705() but since we don't use * the RFC5705 context, the output is identical with gnutls_prf(). The * latter is available in much earlier versions of gnutls. */ err = gnutls_prf(vpninfo->https_sess, PSK_LABEL_SIZE, PSK_LABEL, 0, 0, 0, PSK_KEY_SIZE, (char*)vpninfo->dtls_secret); if (err < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to generate DTLS key: %s\n"), gnutls_strerror(err)); goto fail; } key.data = vpninfo->dtls_secret; key.size = PSK_KEY_SIZE; /* we set an arbitrary username here. We cannot take advantage of the * username field to send our ID to the server, since the username in TLS-PSK * is sent after the server-hello. */ err = gnutls_psk_set_client_credentials(vpninfo->psk_cred, "psk", &key, 0); if (err < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to set DTLS key: %s\n"), gnutls_strerror(err)); goto fail; } err = gnutls_credentials_set(dtls_ssl, GNUTLS_CRD_PSK, vpninfo->psk_cred); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to set DTLS PSK credentials: %s\n"), gnutls_strerror(err)); goto fail; } buf_free(prio); vpninfo->dtls_ssl = dtls_ssl; return 0; fail: buf_free(prio); gnutls_deinit(dtls_ssl); gnutls_psk_free_client_credentials(vpninfo->psk_cred); vpninfo->psk_cred = NULL; vpninfo->dtls_attempt_period = 0; return -EINVAL; } int start_dtls_handshake(struct openconnect_info *vpninfo, int dtls_fd) { gnutls_session_t dtls_ssl; gnutls_datum_t master_secret, session_id; int err; int cipher; if (strcmp(vpninfo->dtls_cipher, "PSK-NEGOTIATE") == 0) return start_dtls_psk_handshake(vpninfo, dtls_fd); for (cipher = 0; cipher < sizeof(gnutls_dtls_ciphers)/sizeof(gnutls_dtls_ciphers[0]); cipher++) { if (gnutls_dtls_ciphers[cipher].cisco_dtls12 != vpninfo->cisco_dtls12 || gnutls_check_version(gnutls_dtls_ciphers[cipher].min_gnutls_version) == NULL) continue; if (!strcmp(vpninfo->dtls_cipher, gnutls_dtls_ciphers[cipher].name)) goto found_cipher; } vpn_progress(vpninfo, PRG_ERR, _("Unknown DTLS parameters for requested CipherSuite '%s'\n"), vpninfo->dtls_cipher); vpninfo->dtls_attempt_period = 0; return -EINVAL; found_cipher: gnutls_init(&dtls_ssl, GNUTLS_CLIENT|GNUTLS_DATAGRAM|GNUTLS_NONBLOCK); gnutls_session_set_ptr(dtls_ssl, (void *) vpninfo); err = gnutls_priority_set_direct(dtls_ssl, gnutls_dtls_ciphers[cipher].prio, NULL); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to set DTLS priority: %s\n"), gnutls_strerror(err)); gnutls_deinit(dtls_ssl); vpninfo->dtls_attempt_period = 0; return -EINVAL; } gnutls_transport_set_ptr(dtls_ssl, (gnutls_transport_ptr_t)(intptr_t)dtls_fd); gnutls_record_disable_padding(dtls_ssl); master_secret.data = vpninfo->dtls_secret; master_secret.size = sizeof(vpninfo->dtls_secret); session_id.data = vpninfo->dtls_session_id; session_id.size = sizeof(vpninfo->dtls_session_id); err = gnutls_session_set_premaster(dtls_ssl, GNUTLS_CLIENT, gnutls_dtls_ciphers[cipher].version, gnutls_dtls_ciphers[cipher].kx, gnutls_dtls_ciphers[cipher].cipher, gnutls_dtls_ciphers[cipher].mac, GNUTLS_COMP_NULL, &master_secret, &session_id); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to set DTLS session parameters: %s\n"), gnutls_strerror(err)); gnutls_deinit(dtls_ssl); vpninfo->dtls_attempt_period = 0; return -EINVAL; } vpninfo->dtls_ssl = dtls_ssl; return 0; } int dtls_try_handshake(struct openconnect_info *vpninfo) { int err = gnutls_handshake(vpninfo->dtls_ssl); char *str; if (!err) { if (!strcmp(vpninfo->dtls_cipher, "PSK-NEGOTIATE")) { /* For PSK-NEGOTIATE, we have to determine the tunnel MTU * for ourselves based on the base MTU */ int data_mtu = vpninfo->cstp_basemtu; if (vpninfo->peer_addr->sa_family == IPPROTO_IPV6) data_mtu -= 40; /* IPv6 header */ else data_mtu -= 20; /* Legacy IP header */ data_mtu -= 8; /* UDP header */ if (data_mtu < 0) { vpn_progress(vpninfo, PRG_ERR, _("Peer MTU %d too small to allow DTLS\n"), vpninfo->cstp_basemtu); goto nodtls; } /* Reduce it by one because that's the payload header *inside* * the encryption */ data_mtu = dtls_set_mtu(vpninfo, data_mtu) - 1; if (data_mtu < vpninfo->ip_info.mtu) { vpn_progress(vpninfo, PRG_INFO, _("DTLS MTU reduced to %d\n"), data_mtu); vpninfo->ip_info.mtu = data_mtu; } } else { if (!gnutls_session_is_resumed(vpninfo->dtls_ssl)) { /* Someone attempting to hijack the DTLS session? * A real server would never allow a full session * establishment instead of the agreed resume. */ vpn_progress(vpninfo, PRG_ERR, _("DTLS session resume failed; possible MITM attack. Disabling DTLS.\n")); nodtls: dtls_close(vpninfo); vpninfo->dtls_attempt_period = 0; vpninfo->dtls_state = DTLS_DISABLED; return -EIO; } /* Make sure GnuTLS's idea of the MTU is sufficient to take a full VPN MTU (with 1-byte header) in a data record. */ err = gnutls_dtls_set_data_mtu(vpninfo->dtls_ssl, vpninfo->ip_info.mtu + 1); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to set DTLS MTU: %s\n"), gnutls_strerror(err)); goto error; } } vpninfo->dtls_state = DTLS_CONNECTED; str = get_gnutls_cipher(vpninfo->dtls_ssl); if (str) { const char *c; vpn_progress(vpninfo, PRG_INFO, _("Established DTLS connection (using GnuTLS). Ciphersuite %s.\n"), str); gnutls_free(str); c = openconnect_get_dtls_compression(vpninfo); if (c) { vpn_progress(vpninfo, PRG_INFO, _("DTLS connection compression using %s.\n"), c); } } vpninfo->dtls_times.last_rekey = vpninfo->dtls_times.last_rx = vpninfo->dtls_times.last_tx = time(NULL); dtls_detect_mtu(vpninfo); /* XXX: For OpenSSL we explicitly prevent retransmits here. */ return 0; } if (err == GNUTLS_E_AGAIN || err == GNUTLS_E_INTERRUPTED) { if (time(NULL) < vpninfo->new_dtls_started + 12) return 0; vpn_progress(vpninfo, PRG_DEBUG, _("DTLS handshake timed out\n")); } vpn_progress(vpninfo, PRG_ERR, _("DTLS handshake failed: %s\n"), gnutls_strerror(err)); if (err == GNUTLS_E_PUSH_ERROR) vpn_progress(vpninfo, PRG_ERR, _("(Is a firewall preventing you from sending UDP packets?)\n")); error: dtls_close(vpninfo); vpninfo->dtls_state = DTLS_SLEEPING; time(&vpninfo->new_dtls_started); return -EINVAL; } void dtls_shutdown(struct openconnect_info *vpninfo) { dtls_close(vpninfo); } void dtls_ssl_free(struct openconnect_info *vpninfo) { gnutls_deinit(vpninfo->dtls_ssl); if (vpninfo->psk_cred) { gnutls_psk_free_client_credentials(vpninfo->psk_cred); vpninfo->psk_cred = NULL; } } openconnect-8.05/tests/0000775000076400007640000000000013536301731016701 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/tests/auth-pkcs110000775000076400007640000000316613413512532020673 0ustar00dwoodhoudwoodhou00000000000000#!/bin/sh # # Copyright (C) 2016 Red Hat, Inc. # # This file is part of openconnect. # # This is free software; you can redistribute it and/or # modify it under the terms of the GNU Lesser General Public License # as published by the Free Software Foundation; either version 2.1 of # the License, or (at your option) any later version. # # This library is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # Lesser General Public License for more details. # # You should have received a copy of the GNU Lesser General Public License # along with this program. If not, see SERV="${SERV:-../src/ocserv}" srcdir=${srcdir:-.} top_builddir=${top_builddir:-..} . `dirname $0`/common.sh pkcs11_keys=${pkcs11_keys:-object=RSA object=DSA object=EC id=%01 id=%02 id=%03} pkcs11_tokens=${pkcs11_tokens:-openconnect-test} echo "Testing PKCS#11 auth... " launch_simple_sr_server -d 1 -f -c configs/test-user-cert.config PID=$! wait_server $PID for TOKEN in ${pkcs11_tokens}; do for KEY in ${pkcs11_keys}; do echo -n "Connecting to obtain cookie (token ${TOKEN} key ${KEY})... " CERTURI="pkcs11:token=${TOKEN};${KEY};pin-value=1234" ( echo "test" | SOFTHSM2_CONF=softhsm2.conf LD_PRELOAD=libsocket_wrapper.so \ $OPENCONNECT -q $ADDRESS:443 -u test -c "${CERTURI}" --key-password 1234 --servercert=d66b507ae074d03b02eafca40d35f87dd81049d3 --cookieonly --passwd-on-stdin ) || fail $PID "Could not connect with token ${TOKEN} key ${KEY##*/}!" done done echo ok cleanup exit 0 openconnect-8.05/tests/common.sh0000664000076400007640000000456113415754606020544 0ustar00dwoodhoudwoodhou00000000000000#!/bin/sh # # Copyright 2013-2016 Nikos Mavrogiannopoulos # # This file is part of openconnect. # # This is free software; you can redistribute it and/or # modify it under the terms of the GNU Lesser General Public License # as published by the Free Software Foundation; either version 2.1 of # the License, or (at your option) any later version. # # This library is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # Lesser General Public License for more details. # # You should have received a copy of the GNU Lesser General Public License # along with this program. If not, see #this test can only be run as root if ! test -x /usr/sbin/ocserv;then echo "You need ocserv to run this test" exit 77 fi OCSERV=/usr/sbin/ocserv top_builddir=${top_builddir:-..} SOCKDIR="./sockwrap.$$.tmp" mkdir -p $SOCKDIR export SOCKET_WRAPPER_DIR=$SOCKDIR export SOCKET_WRAPPER_DEFAULT_IFACE=2 ADDRESS=127.0.0.$SOCKET_WRAPPER_DEFAULT_IFACE OPENCONNECT="${OPENCONNECT:-${top_builddir}/openconnect}" certdir="${srcdir}/certs" confdir="${srcdir}/configs" update_config() { file=$1 username=$(whoami) group=$(groups|cut -f 1 -d ' ') cp "${srcdir}/configs/${file}" "$file.$$.tmp" sed -i -e 's|@USERNAME@|'${username}'|g' "$file.$$.tmp" \ -e 's|@GROUP@|'${group}'|g' "$file.$$.tmp" \ -e 's|@SRCDIR@|'${srcdir}'|g' "$file.$$.tmp" \ -e 's|@OTP_FILE@|'${OTP_FILE}'|g' "$file.$$.tmp" \ -e 's|@CRLNAME@|'${CRLNAME}'|g' "$file.$$.tmp" \ -e 's|@PORT@|'${PORT}'|g' "$file.$$.tmp" \ -e 's|@ADDRESS@|'${ADDRESS}'|g' "$file.$$.tmp" \ -e 's|@VPNNET@|'${VPNNET}'|g' "$file.$$.tmp" \ -e 's|@VPNNET6@|'${VPNNET6}'|g' "$file.$$.tmp" \ -e 's|@OCCTL_SOCKET@|'${OCCTL_SOCKET}'|g' "$file.$$.tmp" CONFIG="$file.$$.tmp" } launch_simple_sr_server() { LD_PRELOAD=libsocket_wrapper.so:libuid_wrapper.so UID_WRAPPER=1 UID_WRAPPER_ROOT=1 $OCSERV $* & } wait_server() { trap "kill $1" 1 15 2 sleep 5 } cleanup() { ret=0 kill $PID if test $? != 0;then ret=1 fi wait test -n "$SOCKDIR" && rm -rf $SOCKDIR return $ret } fail() { PID=$1 shift; echo "Failure: $1" >&2 kill $PID test -n "$SOCKDIR" && rm -rf $SOCKDIR exit 1 } trap "fail \"Failed to launch the server, aborting test... \"" 10 openconnect-8.05/tests/seqtest.c0000664000076400007640000000627413250312120020531 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2016 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #define __OPENCONNECT_INTERNAL_H__ #define vpn_progress(v, d, ...) printf(__VA_ARGS__) #define _(x) x struct openconnect_info { int esp_replay_protect; }; struct esp { uint64_t seq_backlog; uint64_t seq; }; #include "../esp-seqno.c" int main(void) { struct esp esptest = { 0, 0 }; struct openconnect_info vpninfo = { 1}; if ( verify_packet_seqno(&vpninfo, &esptest, 0) || verify_packet_seqno(&vpninfo, &esptest, 2) || verify_packet_seqno(&vpninfo, &esptest, 1) || !verify_packet_seqno(&vpninfo, &esptest, 0) || verify_packet_seqno(&vpninfo, &esptest, 64) || verify_packet_seqno(&vpninfo, &esptest, 65) || !verify_packet_seqno(&vpninfo, &esptest, 65) || verify_packet_seqno(&vpninfo, &esptest, 66) || verify_packet_seqno(&vpninfo, &esptest, 67) || verify_packet_seqno(&vpninfo, &esptest, 68) || !verify_packet_seqno(&vpninfo, &esptest, 68) || !verify_packet_seqno(&vpninfo, &esptest, 2) || !verify_packet_seqno(&vpninfo, &esptest, 3) || verify_packet_seqno(&vpninfo, &esptest, 4) || verify_packet_seqno(&vpninfo, &esptest, 164) || !verify_packet_seqno(&vpninfo, &esptest, 99) || verify_packet_seqno(&vpninfo, &esptest, 100) || verify_packet_seqno(&vpninfo, &esptest, 200) || verify_packet_seqno(&vpninfo, &esptest, 264) || !verify_packet_seqno(&vpninfo, &esptest, 199) || !verify_packet_seqno(&vpninfo, &esptest, 200) || verify_packet_seqno(&vpninfo, &esptest, 265) || verify_packet_seqno(&vpninfo, &esptest, 210) || verify_packet_seqno(&vpninfo, &esptest, 201) || verify_packet_seqno(&vpninfo, &esptest, 270) || verify_packet_seqno(&vpninfo, &esptest, 206) || !verify_packet_seqno(&vpninfo, &esptest, 210) || verify_packet_seqno(&vpninfo, &esptest, 333) || !verify_packet_seqno(&vpninfo, &esptest, 268) || verify_packet_seqno(&vpninfo, &esptest, 269) || !verify_packet_seqno(&vpninfo, &esptest, 270) || verify_packet_seqno(&vpninfo, &esptest, 0xfffffffd) || !verify_packet_seqno(&vpninfo, &esptest, 1) || verify_packet_seqno(&vpninfo, &esptest, 0xffffffc1) || verify_packet_seqno(&vpninfo, &esptest, 0xfffffffc) || verify_packet_seqno(&vpninfo, &esptest, 0xffffffff) || !verify_packet_seqno(&vpninfo, &esptest, 0) || !verify_packet_seqno(&vpninfo, &esptest, 0xffffffbe) || verify_packet_seqno(&vpninfo, &esptest, 0xffffffbf) || !verify_packet_seqno(&vpninfo, &esptest, 0xffffffc1) || verify_packet_seqno(&vpninfo, &esptest, 0xffffffc0)) return 1; return 0; } openconnect-8.05/tests/pass-ISO8859-20000664000076400007640000000000313111563013020700 0ustar00dwoodhoudwoodhou00000000000000ï openconnect-8.05/tests/auth-nonascii0000775000076400007640000000301113415754601021370 0ustar00dwoodhoudwoodhou00000000000000#!/bin/sh # # Copyright (C) 2016 Red Hat, Inc. # # This file is part of openconnect. # # This is free software; you can redistribute it and/or # modify it under the terms of the GNU Lesser General Public License # as published by the Free Software Foundation; either version 2.1 of # the License, or (at your option) any later version. # # This library is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # Lesser General Public License for more details. # # You should have received a copy of the GNU Lesser General Public License # along with this program. If not, see SERV="${SERV:-../src/ocserv}" srcdir=${srcdir:-.} top_builddir=${top_builddir:-..} . `dirname $0`/common.sh echo "Testing certificate auth with non-ASCII passwords... " launch_simple_sr_server -d 1 -f -c configs/test-user-cert.config PID=$! wait_server $PID KEY=${srcdir}/certs/user-key-nonascii-password.p12 set -x for CHARSET in UTF-8 ISO8859-2; do echo -n "Connecting to obtain cookie (with password charset ${CHARSET})... " CERTARGS="-c ${KEY} --key-password $(cat ${srcdir}/pass-${CHARSET})" ( echo "test" | LC_ALL=cs_CZ.${CHARSET} LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT -q $ADDRESS:443 -u test $CERTARGS --servercert=d66b507ae074d03b02eafca40d35f87dd81049d3 --cookieonly --passwd-on-stdin ) || fail $PID "Could not connect with charset ${CHARSET}!" done echo ok cleanup exit 0 openconnect-8.05/tests/bad_dtls_test.c0000664000076400007640000007161513477440251021677 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2016 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ /* * Unit test for Cisco DTLS1_BAD_VER session resume, as used by * AnyConnect VPN protocol. * * This is designed to exercise the code paths in * http://git.infradead.org/users/dwmw2/openconnect.git/blob/HEAD:/dtls.c * which have frequently been affected by regressions in DTLS1_BAD_VER * support. * * Note that unlike other SSL tests, we don't test against our own SSL * server method. Firstly because we don't have one; we *only* support * DTLS1_BAD_VER as a client. And secondly because even if that were * fixed up it's the wrong thing to test against — because if changes * are made in generic DTLS code which don't take DTLS1_BAD_VER into * account, there's plenty of scope for making those changes such that * they break *both* the client and the server in the same way. * * So we handle the server side manually. In a session resume there isn't * much to be done anyway. */ #include #include #include #include #include #include #include /* LibreSSL lacks this. Let it fail on testing, not building. */ #ifndef DTLS1_BAD_VER #define DTLS1_BAD_VER 0x100 #endif /* PACKET functions lifted from OpenSSL 1.1's ssl/packet_locl.h. Permisson * requested in https://github.com/openssl/openssl/pull/1296 for reuse here * as an OpenConnect test case. */ /* * Copyright 2015-2016 The OpenSSL Project Authors. All Rights Reserved. * * Licensed under the OpenSSL license (the "License"). You may not use * this file except in compliance with the License. You can obtain a copy * in the file LICENSE in the source distribution or at * https://www.openssl.org/source/license.html */ typedef struct { /* Pointer to where we are currently reading from */ const unsigned char *curr; /* Number of bytes remaining */ size_t remaining; } PACKET; /* Internal unchecked shorthand; don't use outside this file. */ static inline void packet_forward(PACKET *pkt, size_t len) { pkt->curr += len; pkt->remaining -= len; } /* * Returns the number of bytes remaining to be read in the PACKET */ static inline size_t PACKET_remaining(const PACKET *pkt) { return pkt->remaining; } /* * Initialise a PACKET with |len| bytes held in |buf|. This does not make a * copy of the data so |buf| must be present for the whole time that the PACKET * is being used. */ static inline int PACKET_buf_init(PACKET *pkt, const unsigned char *buf, size_t len) { /* Sanity check for negative values. */ if (len > (size_t)65536) return 0; pkt->curr = buf; pkt->remaining = len; return 1; } /* * Returns 1 if the packet has length |num| and its contents equal the |num| * bytes read from |ptr|. Returns 0 otherwise (lengths or contents not equal). * If lengths are equal, performs the comparison in constant time. */ static inline int PACKET_equal(const PACKET *pkt, const void *ptr, size_t num) { if (PACKET_remaining(pkt) != num) return 0; return CRYPTO_memcmp(pkt->curr, ptr, num) == 0; } /* * Peek ahead at 2 bytes in network order from |pkt| and store the value in * |*data| */ static inline int PACKET_peek_net_2(const PACKET *pkt, unsigned int *data) { if (PACKET_remaining(pkt) < 2) return 0; *data = ((unsigned int)(*pkt->curr)) << 8; *data |= *(pkt->curr + 1); return 1; } /* Equivalent of n2s */ /* Get 2 bytes in network order from |pkt| and store the value in |*data| */ static inline int PACKET_get_net_2(PACKET *pkt, unsigned int *data) { if (!PACKET_peek_net_2(pkt, data)) return 0; packet_forward(pkt, 2); return 1; } /* Peek ahead at 1 byte from |pkt| and store the value in |*data| */ static inline int PACKET_peek_1(const PACKET *pkt, unsigned int *data) { if (!PACKET_remaining(pkt)) return 0; *data = *pkt->curr; return 1; } /* Get 1 byte from |pkt| and store the value in |*data| */ static inline int PACKET_get_1(PACKET *pkt, unsigned int *data) { if (!PACKET_peek_1(pkt, data)) return 0; packet_forward(pkt, 1); return 1; } /* * Peek ahead at |len| bytes from the |pkt| and store a pointer to them in * |*data|. This just points at the underlying buffer that |pkt| is using. The * caller should not free this data directly (it will be freed when the * underlying buffer gets freed */ static inline int PACKET_peek_bytes(const PACKET *pkt, const unsigned char **data, size_t len) { if (PACKET_remaining(pkt) < len) return 0; *data = pkt->curr; return 1; } /* * Read |len| bytes from the |pkt| and store a pointer to them in |*data|. This * just points at the underlying buffer that |pkt| is using. The caller should * not free this data directly (it will be freed when the underlying buffer gets * freed */ static inline int PACKET_get_bytes(PACKET *pkt, const unsigned char **data, size_t len) { if (!PACKET_peek_bytes(pkt, data, len)) return 0; packet_forward(pkt, len); return 1; } /* Peek ahead at |len| bytes from |pkt| and copy them to |data| */ static inline int PACKET_peek_copy_bytes(const PACKET *pkt, unsigned char *data, size_t len) { if (PACKET_remaining(pkt) < len) return 0; memcpy(data, pkt->curr, len); return 1; } /* * Read |len| bytes from |pkt| and copy them to |data|. * The caller is responsible for ensuring that |data| can hold |len| bytes. */ static inline int PACKET_copy_bytes(PACKET *pkt, unsigned char *data, size_t len) { if (!PACKET_peek_copy_bytes(pkt, data, len)) return 0; packet_forward(pkt, len); return 1; } /* Move the current reading position forward |len| bytes */ static inline int PACKET_forward(PACKET *pkt, size_t len) { if (PACKET_remaining(pkt) < len) return 0; packet_forward(pkt, len); return 1; } /* * Reads a variable-length vector prefixed with a one-byte length, and stores * the contents in |subpkt|. |pkt| can equal |subpkt|. * Data is not copied: the |subpkt| packet will share its underlying buffer with * the original |pkt|, so data wrapped by |pkt| must outlive the |subpkt|. * Upon failure, the original |pkt| and |subpkt| are not modified. */ static inline int PACKET_get_length_prefixed_1(PACKET *pkt, PACKET *subpkt) { unsigned int length; const unsigned char *data; PACKET tmp = *pkt; if (!PACKET_get_1(&tmp, &length) || !PACKET_get_bytes(&tmp, &data, (size_t)length)) { return 0; } *pkt = tmp; subpkt->curr = data; subpkt->remaining = length; return 1; } #define OSSL_NELEM(x) (sizeof(x)/sizeof(x[0])) /* For DTLS1_BAD_VER packets the MAC doesn't include the handshake header */ #define MAC_OFFSET (DTLS1_RT_HEADER_LENGTH + DTLS1_HM_HEADER_LENGTH) static unsigned char client_random[SSL3_RANDOM_SIZE]; static unsigned char server_random[SSL3_RANDOM_SIZE]; /* These are all generated locally, sized purely according to our own whim */ static unsigned char session_id[32]; static unsigned char master_secret[48]; static unsigned char cookie[20]; /* We've hard-coded the cipher suite; we know it's 104 bytes */ static unsigned char key_block[104]; #define mac_key (key_block + 20) #define dec_key (key_block + 40) #define enc_key (key_block + 56) static EVP_MD_CTX *handshake_md5; static EVP_MD_CTX *handshake_sha1; #if OPENSSL_VERSION_NUMBER < 0x10100000L || defined(LIBRESSL_VERSION_NUMBER) static inline HMAC_CTX *HMAC_CTX_new(void) { HMAC_CTX *ret = malloc(sizeof(*ret)); HMAC_CTX_init(ret); return ret; } static inline void HMAC_CTX_free(HMAC_CTX *ctx) { HMAC_CTX_cleanup(ctx); free(ctx); } #define EVP_MD_CTX_new EVP_MD_CTX_create #define EVP_MD_CTX_free EVP_MD_CTX_destroy #endif static int tls1_P_hash(const EVP_MD *md, const unsigned char *sec, int sec_len, const void *seed1, int seed1_len, const void *seed2, int seed2_len, const void *seed3, int seed3_len, unsigned char *out, int olen) { unsigned char A1[EVP_MAX_MD_SIZE]; HMAC_CTX *ctx = HMAC_CTX_new(); unsigned int chunk; int i = 0; HMAC_Init_ex(ctx, sec, sec_len, md, NULL); do { if (i) HMAC_Update(ctx, A1, chunk); if (seed1) HMAC_Update(ctx, seed1, seed1_len); if (seed2) HMAC_Update(ctx, seed2, seed2_len); if (seed3) HMAC_Update(ctx, seed3, seed3_len); /* First generate A1 from the seed */ if (!i) HMAC_Final(ctx, A1, &chunk); else if (i * chunk <= olen) { HMAC_Final(ctx, out + ((i-1) * chunk), NULL); /* calculate A(n+1) value */ HMAC(md, sec, sec_len, A1, chunk, A1, NULL); } else { HMAC_Final(ctx, A1, NULL); memcpy(out + ((i-1) * chunk), A1, olen % chunk); break; } HMAC_Init_ex(ctx, NULL, 0, NULL, NULL); i++; } while ((i-1) * chunk <= olen); HMAC_CTX_free(ctx); return 1; } /* seed1 through seed5 are virtually concatenated */ static int do_PRF(const void *seed1, int seed1_len, const void *seed2, int seed2_len, const void *seed3, int seed3_len, unsigned char *out, int olen) { unsigned char out2[104]; int i, len; if (olen > (int)sizeof(out2)) return 0; len = sizeof(master_secret) / 2; if (!tls1_P_hash(EVP_md5(), master_secret, len, seed1, seed1_len, seed2, seed2_len, seed3, seed3_len, out, olen) || !tls1_P_hash(EVP_sha1(), master_secret + len, len, seed1, seed1_len, seed2, seed2_len, seed3, seed3_len, out2, olen)) return 0; for (i = 0; i < olen; i++) out[i] ^= out2[i]; return 1; } static SSL_SESSION *client_session(void) { static unsigned char session_asn1[] = { 0x30, 0x5F, /* SEQUENCE, length 0x5F */ 0x02, 0x01, 0x01, /* INTEGER, SSL_SESSION_ASN1_VERSION */ 0x02, 0x02, 0x01, 0x00, /* INTEGER, DTLS1_BAD_VER */ 0x04, 0x02, 0x00, 0x2F, /* OCTET_STRING, AES128-SHA */ 0x04, 0x20, /* OCTET_STRING, session id */ #define SS_SESSID_OFS 15 /* Session ID goes here */ 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x04, 0x30, /* OCTET_STRING, master secret */ #define SS_SECRET_OFS 49 /* Master secret goes here */ 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, }; const unsigned char *p = session_asn1; /* Copy the randomly-generated fields into the above ASN1 */ memcpy(session_asn1 + SS_SESSID_OFS, session_id, sizeof(session_id)); memcpy(session_asn1 + SS_SECRET_OFS, master_secret, sizeof(master_secret)); return d2i_SSL_SESSION(NULL, &p, sizeof(session_asn1)); } /* Returns 1 for initial ClientHello, 2 for ClientHello with cookie */ static int validate_client_hello(BIO *wbio) { PACKET pkt, pkt2; long len; unsigned char *data; int cookie_found = 0; unsigned int u; len = BIO_get_mem_data(wbio, (char **)&data); if (!PACKET_buf_init(&pkt, data, len)) return 0; /* Check record header type */ if (!PACKET_get_1(&pkt, &u) || u != SSL3_RT_HANDSHAKE) return 0; /* Version */ if (!PACKET_get_net_2(&pkt, &u) || u != DTLS1_BAD_VER) return 0; /* Skip the rest of the record header */ if (!PACKET_forward(&pkt, DTLS1_RT_HEADER_LENGTH - 3)) return 0; /* Check it's a ClientHello */ if (!PACKET_get_1(&pkt, &u) || u != SSL3_MT_CLIENT_HELLO) return 0; /* Skip the rest of the handshake message header */ if (!PACKET_forward(&pkt, DTLS1_HM_HEADER_LENGTH - 1)) return 0; /* Check client version */ if (!PACKET_get_net_2(&pkt, &u) || u != DTLS1_BAD_VER) return 0; /* Store random */ if (!PACKET_copy_bytes(&pkt, client_random, SSL3_RANDOM_SIZE)) return 0; /* Check session id length and content */ if (!PACKET_get_length_prefixed_1(&pkt, &pkt2) || !PACKET_equal(&pkt2, session_id, sizeof(session_id))) return 0; /* Check cookie */ if (!PACKET_get_length_prefixed_1(&pkt, &pkt2)) return 0; if (PACKET_remaining(&pkt2)) { if (!PACKET_equal(&pkt2, cookie, sizeof(cookie))) return 0; cookie_found = 1; } /* Skip ciphers */ if (!PACKET_get_net_2(&pkt, &u) || !PACKET_forward(&pkt, u)) return 0; /* Skip compression */ if (!PACKET_get_1(&pkt, &u) || !PACKET_forward(&pkt, u)) return 0; /* Skip extensions */ if (!PACKET_get_net_2(&pkt, &u) || !PACKET_forward(&pkt, u)) return 0; /* Now we are at the end */ if (PACKET_remaining(&pkt)) return 0; /* Update handshake MAC for second ClientHello (with cookie) */ if (cookie_found && (!EVP_DigestUpdate(handshake_md5, data + MAC_OFFSET, len - MAC_OFFSET) || !EVP_DigestUpdate(handshake_sha1, data + MAC_OFFSET, len - MAC_OFFSET))) printf("EVP_DigestUpdate() failed\n"); (void)BIO_reset(wbio); return 1 + cookie_found; } static int send_hello_verify(BIO *rbio) { static unsigned char hello_verify[] = { 0x16, /* Handshake */ 0x01, 0x00, /* DTLS1_BAD_VER */ 0x00, 0x00, /* Epoch 0 */ 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, /* Seq# 0 */ 0x00, 0x23, /* Length */ 0x03, /* Hello Verify */ 0x00, 0x00, 0x17, /* Length */ 0x00, 0x00, /* Seq# 0 */ 0x00, 0x00, 0x00, /* Fragment offset */ 0x00, 0x00, 0x17, /* Fragment length */ 0x01, 0x00, /* DTLS1_BAD_VER */ 0x14, /* Cookie length */ #define HV_COOKIE_OFS 28 /* Cookie goes here */ 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, }; memcpy(hello_verify + HV_COOKIE_OFS, cookie, sizeof(cookie)); BIO_write(rbio, hello_verify, sizeof(hello_verify)); return 1; } static int send_server_hello(BIO *rbio) { static unsigned char server_hello[] = { 0x16, /* Handshake */ 0x01, 0x00, /* DTLS1_BAD_VER */ 0x00, 0x00, /* Epoch 0 */ 0x00, 0x00, 0x00, 0x00, 0x00, 0x01, /* Seq# 1 */ 0x00, 0x52, /* Length */ 0x02, /* Server Hello */ 0x00, 0x00, 0x46, /* Length */ 0x00, 0x01, /* Seq# */ 0x00, 0x00, 0x00, /* Fragment offset */ 0x00, 0x00, 0x46, /* Fragment length */ 0x01, 0x00, /* DTLS1_BAD_VER */ #define SH_RANDOM_OFS 27 /* Server random goes here */ 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x20, /* Session ID length */ #define SH_SESSID_OFS 60 /* Session ID goes here */ 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x2f, /* Cipher suite AES128-SHA */ 0x00, /* Compression null */ }; static unsigned char change_cipher_spec[] = { 0x14, /* Change Cipher Spec */ 0x01, 0x00, /* DTLS1_BAD_VER */ 0x00, 0x00, /* Epoch 0 */ 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, /* Seq# 2 */ 0x00, 0x03, /* Length */ 0x01, 0x00, 0x02, /* Message */ }; memcpy(server_hello + SH_RANDOM_OFS, server_random, sizeof(server_random)); memcpy(server_hello + SH_SESSID_OFS, session_id, sizeof(session_id)); if (!EVP_DigestUpdate(handshake_md5, server_hello + MAC_OFFSET, sizeof(server_hello) - MAC_OFFSET) || !EVP_DigestUpdate(handshake_sha1, server_hello + MAC_OFFSET, sizeof(server_hello) - MAC_OFFSET)) printf("EVP_DigestUpdate() failed\n"); BIO_write(rbio, server_hello, sizeof(server_hello)); BIO_write(rbio, change_cipher_spec, sizeof(change_cipher_spec)); return 1; } /* Create header, HMAC, pad, encrypt and send a record */ static int send_record(BIO *rbio, unsigned char type, unsigned long seqnr, const void *msg, size_t len) { /* Note that the order of the record header fields on the wire, * and in the HMAC, is different. So we just keep them in separate * variables and handle them individually. */ static unsigned char epoch[2] = { 0x00, 0x01 }; static unsigned char seq[6] = { 0x00, 0x00, 0x00, 0x00, 0x00, 0x00 }; static unsigned char ver[2] = { 0x01, 0x00 }; /* DTLS1_BAD_VER */ unsigned char lenbytes[2]; HMAC_CTX *ctx = HMAC_CTX_new(); EVP_CIPHER_CTX *enc_ctx = EVP_CIPHER_CTX_new(); unsigned char iv[16]; unsigned char pad; unsigned char *enc; #ifdef SIXTY_FOUR_BIT_LONG seq[0] = (seqnr >> 40) & 0xff; seq[1] = (seqnr >> 32) & 0xff; #endif seq[2] = (seqnr >> 24) & 0xff; seq[3] = (seqnr >> 16) & 0xff; seq[4] = (seqnr >> 8) & 0xff; seq[5] = seqnr & 0xff; pad = 15 - ((len + SHA_DIGEST_LENGTH) % 16); enc = OPENSSL_malloc(len + SHA_DIGEST_LENGTH + 1 + pad); if (enc == NULL) return 0; /* Copy record to encryption buffer */ memcpy(enc, msg, len); /* Append HMAC to data */ HMAC_Init_ex(ctx, mac_key, 20, EVP_sha1(), NULL); HMAC_Update(ctx, epoch, 2); HMAC_Update(ctx, seq, 6); HMAC_Update(ctx, &type, 1); HMAC_Update(ctx, ver, 2); /* Version */ lenbytes[0] = len >> 8; lenbytes[1] = len & 0xff; HMAC_Update(ctx, lenbytes, 2); /* Length */ HMAC_Update(ctx, enc, len); /* Finally the data itself */ HMAC_Final(ctx, enc + len, NULL); HMAC_CTX_free(ctx); /* Append padding bytes */ len += SHA_DIGEST_LENGTH; do { enc[len++] = pad; } while (len % 16); /* Generate IV, and encrypt */ RAND_bytes(iv, sizeof(iv)); // EVP_CIPHER_CTX_init(enc_ctx); EVP_CipherInit_ex(enc_ctx, EVP_aes_128_cbc(), NULL, enc_key, iv, 1); EVP_Cipher(enc_ctx, enc, enc, len); EVP_CIPHER_CTX_free(enc_ctx); /* Finally write header (from fragmented variables), IV and encrypted record */ BIO_write(rbio, &type, 1); BIO_write(rbio, ver, 2); BIO_write(rbio, epoch, 2); BIO_write(rbio, seq, 6); lenbytes[0] = (len + sizeof(iv)) >> 8; lenbytes[1] = (len + sizeof(iv)) & 0xff; BIO_write(rbio, lenbytes, 2); BIO_write(rbio, iv, sizeof(iv)); BIO_write(rbio, enc, len); OPENSSL_free(enc); return 1; } static int send_finished(SSL *s, BIO *rbio) { static unsigned char finished_msg[DTLS1_HM_HEADER_LENGTH + TLS1_FINISH_MAC_LENGTH] = { 0x14, /* Finished */ 0x00, 0x00, 0x0c, /* Length */ 0x00, 0x03, /* Seq# 3 */ 0x00, 0x00, 0x00, /* Fragment offset */ 0x00, 0x00, 0x0c, /* Fragment length */ /* Finished MAC (12 bytes) */ }; unsigned char handshake_hash[EVP_MAX_MD_SIZE * 2]; /* Derive key material */ do_PRF(TLS_MD_KEY_EXPANSION_CONST, TLS_MD_KEY_EXPANSION_CONST_SIZE, server_random, SSL3_RANDOM_SIZE, client_random, SSL3_RANDOM_SIZE, key_block, sizeof(key_block)); /* Generate Finished MAC */ if (!EVP_DigestFinal_ex(handshake_md5, handshake_hash, NULL) || !EVP_DigestFinal_ex(handshake_sha1, handshake_hash + EVP_MD_CTX_size(handshake_md5), NULL)) printf("EVP_DigestFinal_ex() failed\n"); do_PRF(TLS_MD_SERVER_FINISH_CONST, TLS_MD_SERVER_FINISH_CONST_SIZE, handshake_hash, EVP_MD_CTX_size(handshake_md5) + EVP_MD_CTX_size(handshake_sha1), NULL, 0, finished_msg + DTLS1_HM_HEADER_LENGTH, TLS1_FINISH_MAC_LENGTH); return send_record(rbio, SSL3_RT_HANDSHAKE, 0, finished_msg, sizeof(finished_msg)); } static int validate_ccs(BIO *wbio) { PACKET pkt; long len; unsigned char *data; unsigned int u; len = BIO_get_mem_data(wbio, (char **)&data); if (!PACKET_buf_init(&pkt, data, len)) return 0; /* Check record header type */ if (!PACKET_get_1(&pkt, &u) || u != SSL3_RT_CHANGE_CIPHER_SPEC) return 0; /* Version */ if (!PACKET_get_net_2(&pkt, &u) || u != DTLS1_BAD_VER) return 0; /* Skip the rest of the record header */ if (!PACKET_forward(&pkt, DTLS1_RT_HEADER_LENGTH - 3)) return 0; /* Check ChangeCipherSpec message */ if (!PACKET_get_1(&pkt, &u) || u != SSL3_MT_CCS) return 0; /* A DTLS1_BAD_VER ChangeCipherSpec also contains the * handshake sequence number (which is 2 here) */ if (!PACKET_get_net_2(&pkt, &u) || u != 0x0002) return 0; /* Now check the Finished packet */ if (!PACKET_get_1(&pkt, &u) || u != SSL3_RT_HANDSHAKE) return 0; if (!PACKET_get_net_2(&pkt, &u) || u != DTLS1_BAD_VER) return 0; /* Check epoch is now 1 */ if (!PACKET_get_net_2(&pkt, &u) || u != 0x0001) return 0; /* That'll do for now. If OpenSSL accepted *our* Finished packet * then it's evidently remembered that DTLS1_BAD_VER doesn't * include the handshake header in the MAC. There's not a lot of * point in implementing decryption here, just to check that it * continues to get it right for one more packet. */ return 1; } #define NODROP(x) { x##UL, 0 } #define DROP(x) { x##UL, 1 } static struct { unsigned long seq; int drop; } tests[] = { NODROP(1), NODROP(3), NODROP(2), NODROP(0x1234), NODROP(0x1230), NODROP(0x1235), NODROP(0xffff), NODROP(0x10001), NODROP(0xfffe), NODROP(0x10000), DROP(0x10001), DROP(0xff), NODROP(0x100000), NODROP(0x800000), NODROP(0x7fffe1), NODROP(0xffffff), NODROP(0x1000000), NODROP(0xfffffe), DROP(0xffffff), NODROP(0x1000010), NODROP(0xfffffd), NODROP(0x1000011), DROP(0x12), NODROP(0x1000012), NODROP(0x1ffffff), NODROP(0x2000000), DROP(0x1ff00fe), NODROP(0x2000001), NODROP(0x20fffff), NODROP(0x2105500), DROP(0x20ffffe), NODROP(0x21054ff), NODROP(0x211ffff), DROP(0x2110000), NODROP(0x2120000) /* The last test should be NODROP, because a DROP wouldn't get tested. */ }; int main(int argc, char *argv[]) { SSL_SESSION *sess; SSL_CTX *ctx; SSL *con; BIO *rbio; BIO *wbio; int testresult = 0; int ret; int i; #if OPENSSL_VERSION_NUMBER < 0x10100000L || defined(LIBRESSL_VERSION_NUMBER) SSL_library_init(); SSL_load_error_strings(); #endif RAND_bytes(session_id, sizeof(session_id)); RAND_bytes(master_secret, sizeof(master_secret)); RAND_bytes(cookie, sizeof(cookie)); RAND_bytes(server_random + 4, sizeof(server_random) - 4); time((void *)server_random); sess = client_session(); if (sess == NULL) { printf("Failed to generate SSL_SESSION\n"); goto end; } handshake_md5 = EVP_MD_CTX_new(); handshake_sha1 = EVP_MD_CTX_new(); if (!EVP_DigestInit_ex(handshake_md5, EVP_md5(), NULL) || !EVP_DigestInit_ex(handshake_sha1, EVP_sha1(), NULL)) { printf("Failed to initialise handshake_md\n"); goto end; } #if OPENSSL_VERSION_NUMBER < 0x10100000L || defined(LIBRESSL_VERSION_NUMBER) ctx = SSL_CTX_new(DTLSv1_client_method()); if (ctx == NULL) { printf("Failed to allocate SSL_CTX\n"); goto end_md; } SSL_CTX_set_options(ctx, SSL_OP_CISCO_ANYCONNECT); #else ctx = SSL_CTX_new(DTLS_client_method()); if (ctx == NULL || !SSL_CTX_set_min_proto_version(ctx, DTLS1_BAD_VER) || !SSL_CTX_set_max_proto_version(ctx, DTLS1_BAD_VER)) { printf("Failed to allocate SSL_CTX\n"); goto end_md; } #endif if (!SSL_CTX_set_cipher_list(ctx, "AES128-SHA")) { printf("SSL_CTX_set_cipher_list() failed\n"); goto end_ctx; } con = SSL_new(ctx); if (!SSL_set_session(con, sess)) { printf("SSL_set_session() failed\n"); goto end_con; } SSL_SESSION_free(sess); rbio = BIO_new(BIO_s_mem()); wbio = BIO_new(BIO_s_mem()); BIO_set_nbio(rbio, 1); BIO_set_nbio(wbio, 1); SSL_set_bio(con, rbio, wbio); SSL_set_connect_state(con); /* Send initial ClientHello */ ret = SSL_do_handshake(con); if (ret > 0 || SSL_get_error(con, ret) != SSL_ERROR_WANT_READ) { printf("Unexpected handshake result at initial call!\n"); goto end_con; } if (validate_client_hello(wbio) != 1) { printf("Initial ClientHello failed validation\n"); goto end_con; } if (send_hello_verify(rbio) != 1) { printf("Failed to send HelloVerify\n"); goto end_con; } ret = SSL_do_handshake(con); if (ret > 0 || SSL_get_error(con, ret) != SSL_ERROR_WANT_READ) { printf("Unexpected handshake result after HelloVerify!\n"); goto end_con; } if (validate_client_hello(wbio) != 2) { printf("Second ClientHello failed validation\n"); goto end_con; } if (send_server_hello(rbio) != 1) { printf("Failed to send ServerHello\n"); goto end_con; } ret = SSL_do_handshake(con); if (ret > 0 || SSL_get_error(con, ret) != SSL_ERROR_WANT_READ) { printf("Unexpected handshake result after ServerHello!\n"); goto end_con; } if (send_finished(con, rbio) != 1) { printf("Failed to send Finished\n"); goto end_con; } ret = SSL_do_handshake(con); if (ret < 1) { printf("Handshake not successful after Finished!\n"); goto end_con; } if (validate_ccs(wbio) != 1) { printf("Failed to validate client CCS/Finished\n"); goto end_con; } /* While we're here and crafting packets by hand, we might as well do a bit of a stress test on the DTLS record replay handling. Not Cisco-DTLS specific but useful anyway for the general case. It's been broken before, and in fact was broken even for a basic 0, 2, 1 test case when this test was first added.... */ for (i = 0; i < (int)OSSL_NELEM(tests); i++) { unsigned long recv_buf[2]; if (send_record(rbio, SSL3_RT_APPLICATION_DATA, tests[i].seq, &tests[i].seq, sizeof(unsigned long)) != 1) { printf("Failed to send data seq #0x%lx (%d)\n", tests[i].seq, i); goto end_con; } if (tests[i].drop) continue; ret = SSL_read(con, recv_buf, 2 * sizeof(unsigned long)); if (ret != sizeof(unsigned long)) { printf("SSL_read failed or wrong size on seq#0x%lx (%d)\n", tests[i].seq, i); goto end_con; } if (recv_buf[0] != tests[i].seq) { printf("Wrong data packet received (0x%lx not 0x%lx) at packet %d\n", recv_buf[0], tests[i].seq, i); goto end_con; } } if (tests[i-1].drop) { printf("Error: last test cannot be DROP()\n"); goto end_con; } testresult=1; end_con: SSL_free(con); end_ctx: SSL_CTX_free(ctx); end_md: EVP_MD_CTX_free(handshake_md5); EVP_MD_CTX_free(handshake_sha1); end: ERR_print_errors_fp(stderr); if (!testresult) { printf("Cisco BadDTLS test: FAILED\n"); } #if OPENSSL_VERSION_NUMBER < 0x10100000L || defined(LIBRESSL_VERSION_NUMBER) ERR_free_strings(); EVP_cleanup(); #endif return testresult?0:1; } openconnect-8.05/tests/scripts/0000775000076400007640000000000013536301731020370 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/tests/scripts/vpnc-script0000775000076400007640000000057313407155217022576 0ustar00dwoodhoudwoodhou00000000000000#!/bin/sh -x # Fake script just for unit tests. Do not use. # For a real one, see http://www.infradead.org/openconnect/vpnc-script.html if [ "$reason" = "connect" ]; then ip link set dev "$TUNDEV" up mtu "$INTERNAL_IP4_MTU" ip addr add "$INTERNAL_IP4_ADDRESS/32" peer "$INTERNAL_IP4_ADDRESS" dev "$TUNDEV" ip -6 addr add $INTERNAL_IP6_NETMASK dev $TUNDEV fi exit 0 openconnect-8.05/tests/scripts/vpnc-script-detect-disconnect0000775000076400007640000000073413407155217026172 0ustar00dwoodhoudwoodhou00000000000000#!/bin/sh -x # Fake script just for unit tests. Do not use. # For a real one, see http://www.infradead.org/openconnect/vpnc-script.html if [ "$reason" = "connect" ]; then ip link set dev "$TUNDEV" up mtu "$INTERNAL_IP4_MTU" ip addr add "$INTERNAL_IP4_ADDRESS/32" peer "$INTERNAL_IP4_ADDRESS" dev "$TUNDEV" ip -6 addr add $INTERNAL_IP6_NETMASK dev $TUNDEV rm -f ${DISCONNECT_FILE} elif [ "$reason" = "disconnect" ];then touch ${DISCONNECT_FILE} fi exit 0 openconnect-8.05/tests/lzstest.c0000664000076400007640000000350513025070326020554 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #define __OPENCONNECT_INTERNAL_H__ struct oc_packed_uint16_t { unsigned short d; } __attribute__((packed)); int lzs_decompress(unsigned char *dst, int dstlen, const unsigned char *src, int srclen); int lzs_compress(unsigned char *dst, int dstlen, const unsigned char *src, int srclen); #include "../lzs.c" #include #include #include #include #define NR_PKTS 2048 #define MAX_PKT 65536 int main(void) { int i, j, ret; int pktlen; unsigned char pktbuf[MAX_PKT + 3]; unsigned char comprbuf[MAX_PKT * 9 / 8 + 2]; unsigned char uncomprbuf[MAX_PKT]; srand(0xdeadbeef); for (i = 0; i < NR_PKTS; i++) { if (i) pktlen = (rand() % MAX_PKT) + 1; else pktlen = MAX_PKT; for (j = 0; j < pktlen; j++) pktbuf[j] = rand(); ret = lzs_compress(comprbuf, sizeof(comprbuf), pktbuf, pktlen); if (ret < 0) { fprintf(stderr, "Compressing packet %d failed: %s\n", i, strerror(-ret)); exit(1); } ret = lzs_decompress(uncomprbuf, pktlen, comprbuf, sizeof(comprbuf)); if (ret != pktlen) { fprintf(stderr, "Compressing packet %d failed\n", i); exit(1); } if (memcmp(uncomprbuf, pktbuf, pktlen)) { fprintf(stderr, "Comparing packet %d failed\n", i); exit(1); } } return 0; } openconnect-8.05/tests/pass-UTF-80000664000076400007640000000000513111562713020364 0ustar00dwoodhoudwoodhou00000000000000ĂŻ openconnect-8.05/tests/softhsm2.conf.in0000664000076400007640000000013613025070326021716 0ustar00dwoodhoudwoodhou00000000000000directories.tokendir = @top_srcdir@/tests/softhsm objectstore.backend = file loglevel = INFO openconnect-8.05/tests/serverhash.c0000664000076400007640000000362313111562446021224 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2016 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include /* Normally it's nice for header files to automatically include anything * they need. But winsock is a horrid can of worms; we 're not going to * make openconnect.h include anything for itself. So just do this... */ #ifdef _WIN32 #define SOCKET int #endif #include "../openconnect.h" static void progress(void *privdata, int level, const char *fmt, ...) { va_list args; if (level > PRG_ERR) return; va_start(args, fmt); vfprintf(stderr, fmt, args); va_end(args); } static int validate_peer_cert(void *_vpninfo, const char *reason) { printf("%s\n", openconnect_get_peer_cert_hash(_vpninfo)); exit(0); } /* We do this in a separate test tool because we *really* don't want * people scripting it to recover the --no-cert-check functionality. * Validate your server certs properly, people! */ int main(int argc, char **argv) { struct openconnect_info *vpninfo; if (argc != 2) { fprintf(stderr, "usage: serverhash \n"); exit(1); } openconnect_init_ssl(); vpninfo = openconnect_vpninfo_new(NULL, validate_peer_cert, NULL, NULL, progress, NULL); if (openconnect_parse_url(vpninfo, argv[1])) { fprintf(stderr, "Failed to parse URL\n"); exit(1); } openconnect_set_system_trust(vpninfo, 0); openconnect_obtain_cookie(vpninfo); return -1; } openconnect-8.05/tests/dtls-psk0000775000076400007640000001014613407155217020375 0ustar00dwoodhoudwoodhou00000000000000#!/bin/bash # # Copyright (C) 2018 Nikos Mavrogiannopoulos # # This file is part of ocserv. # # ocserv is free software; you can redistribute it and/or modify it # under the terms of the GNU General Public License as published by the # Free Software Foundation; either version 2 of the License, or (at # your option) any later version. # # ocserv is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program. If not, see . # # This tests operation/traffic under compression (lzs or lz4). OCCTL="${OCCTL:-occtl}" SERV="${OCSERV:-ocserv}" srcdir=${srcdir:-.} PORT=4568 PIDFILE=ocserv-pid.$$.tmp CLIPID=oc-pid.$$.tmp PATH=${PATH}:/usr/sbin IP=$(which ip) OUTFILE=traffic.$$.tmp . `dirname $0`/common.sh if test -z "${IP}";then echo "no IP tool is present" exit 77 fi if test "$(id -u)" != "0";then echo "This test must be run as root" exit 77 fi echo "Testing ocserv connection with DTLS-PSK... " function finish { set +e echo " * Cleaning up..." test -n "${PID}" && kill ${PID} >/dev/null 2>&1 test -n "${PIDFILE}" && rm -f ${PIDFILE} >/dev/null 2>&1 test -n "${CLIPID}" && kill $(cat ${CLIPID}) >/dev/null 2>&1 test -n "${CLIPID}" && rm -f ${CLIPID} >/dev/null 2>&1 test -n "${CONFIG}" && rm -f ${CONFIG} >/dev/null 2>&1 rm -f ${OUTFILE} 2>&1 } trap finish EXIT # server address ADDRESS=10.201.2.1 CLI_ADDRESS=10.201.1.1 VPNNET=192.168.2.0/24 VPNADDR=192.168.2.1 VPNNET6=fd91:6d87:7341:dc6a::/112 VPNADDR6=fd91:6d87:7341:dc6a::1 OCCTL_SOCKET=./occtl-comp-$$.socket USERNAME=test TUNDEV=oc-$$-tun0 . `dirname $0`/ns.sh # Run servers update_config test-dtls-psk.config if test "$VERBOSE" = 1;then DEBUG="-d 3" fi ${CMDNS2} ${SERV} -p ${PIDFILE} -f -c ${CONFIG} ${DEBUG} & PID=$! sleep 4 # Run clients echo " * Getting cookie from ${ADDRESS}:${PORT}..." ( echo "test" | ${CMDNS1} ${OPENCONNECT} ${ADDRESS}:${PORT} -u ${USERNAME} --servercert=d66b507ae074d03b02eafca40d35f87dd81049d3 --cookieonly ) if test $? != 0;then echo "Could not get cookie from server" exit 1 fi echo " * Connecting to ${ADDRESS}:${PORT}..." ( echo "test" | ${CMDNS1} ${OPENCONNECT} --interface ${TUNDEV} --dtls-ciphers=PSK-NEGOTIATE ${ADDRESS}:${PORT} -u ${USERNAME} --servercert=d66b507ae074d03b02eafca40d35f87dd81049d3 -s ${srcdir}/scripts/vpnc-script --pid-file=${CLIPID} --passwd-on-stdin -b ) if test $? != 0;then echo "Could not connect to server" exit 1 fi set -e echo " * wait for ${TUNDEV}" TIMEOUT=10 while ! ${CMDNS1} ip addr list dev ${TUNDEV} &>/dev/null; do TIMEOUT=$(($TIMEOUT - 1)) if [ $TIMEOUT -eq 0 ]; then echo "Timed out waiting for ${TUNDEV}" exit 1 fi sleep 1 done echo " * add routes" ${CMDNS1} ip route add ${VPNADDR} dev ${TUNDEV} ${CMDNS1} ip -6 route add ${VPNADDR6} dev ${TUNDEV} echo " * ping remote address" ${CMDNS2} nuttcp -1 ${CMDNS1} ping -c 3 ${VPNADDR} sleep 2 echo " * Transmitting with nuttcp" ${CMDNS1} nuttcp -T 6 -t ${VPNADDR} # IPv6 ${CMDNS2} nuttcp -1 ${CMDNS1} ping -c 3 ${VPNADDR6} echo " * Receiving with nuttcp" ${CMDNS1} nuttcp -T 6 -r ${VPNADDR} set +e ${OCCTL} -s ${OCCTL_SOCKET} show users|grep ${USERNAME} if test $? != 0;then echo "occtl didn't find connected user!" exit 1 fi ${OCCTL} -s ${OCCTL_SOCKET} show user ${USERNAME} >${OUTFILE} if test $? != 0;then ${OCCTL} -s ${OCCTL_SOCKET} show user ${USERNAME} echo "occtl didn't find connected user!" exit 1 fi grep "Username: ${USERNAME}" ${OUTFILE} if test $? != 0;then ${OCCTL} -s ${OCCTL_SOCKET} show user ${USERNAME} echo "occtl show user didn't find connected user!" exit 1 fi grep "DTLS cipher: (DTLS1.2)-(PSK)" ${OUTFILE} if test $? != 0;then ${OCCTL} -s ${OCCTL_SOCKET} show user ${USERNAME} echo "occtl show user didn't show DTLS-PSK ciphersuite!" exit 1 fi grep ${CLI_ADDRESS} ${OUTFILE} if test $? != 0;then ${OCCTL} -s ${OCCTL_SOCKET} show user ${USERNAME} echo "occtl show user didn't find client address!" exit 1 fi exit 0 openconnect-8.05/tests/configs/0000775000076400007640000000000013536301731020331 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/tests/configs/test-user-cert.config0000664000076400007640000001401613536301704024410 0ustar00dwoodhoudwoodhou00000000000000# User authentication method. Could be set multiple times and in that case # all should succeed. # Options: certificate, pam. auth = "certificate" auth = "plain[/home/dwmw2/git/openconnect/gtls/../tests/configs/test1.passwd]" #auth = "pam" # A banner to be displayed on clients #banner = "Welcome" # Use listen-host to limit to specific IPs or to the IPs of a provided hostname. #listen-host = [IP|HOSTNAME] use-dbus = no # Limit the number of clients. Unset or set to zero for unlimited. #max-clients = 1024 max-clients = 16 # Limit the number of client connections to one every X milliseconds # (X is the provided value). Set to zero for no limit. #rate-limit-ms = 100 # Do not ban clients for excessive connection attempts. We kind of expect # that in the certificate test. ban-points-connection = 0 # Limit the number of identical clients (i.e., users connecting multiple times) # Unset or set to zero for unlimited. max-same-clients = 2 # TCP and UDP port number tcp-port = 443 udp-port = 443 # Keepalive in seconds keepalive = 32400 # Dead peer detection in seconds dpd = 440 # MTU discovery (DPD must be enabled) try-mtu-discovery = false # The key and the certificates of the server # The key may be a file, or any URL supported by GnuTLS (e.g., # tpmkey:uuid=xxxxxxx-xxxx-xxxx-xxxx-xxxxxxxx;storage=user # or pkcs11:object=my-vpn-key;object-type=private) # # There may be multiple certificate and key pairs and each key # should correspond to the preceding certificate. server-cert = /home/dwmw2/git/openconnect/gtls/../tests/certs/server-cert.pem server-key = /home/dwmw2/git/openconnect/gtls/../tests/certs/server-key.pem # Diffie-Hellman parameters. Only needed if you require support # for the DHE ciphersuites (by default this server supports ECDHE). # Can be generated using: # certtool --generate-dh-params --outfile /path/to/dh.pem #dh-params = /path/to/dh.pem # If you have a certificate from a CA that provides an OCSP # service you may provide a fresh OCSP status response within # the TLS handshake. That will prevent the client from connecting # independently on the OCSP server. # You can update this response periodically using: # ocsptool --ask --load-cert=your_cert --load-issuer=your_ca --outfile response # Make sure that you replace the following file in an atomic way. #ocsp-response = /path/to/ocsp.der # In case PKCS #11 or TPM keys are used the PINs should be available # in files. The srk-pin-file is applicable to TPM keys only (It's the storage # root key). #pin-file = /path/to/pin.txt #srk-pin-file = /path/to/srkpin.txt # The Certificate Authority that will be used # to verify clients if certificate authentication # is set. ca-cert = /home/dwmw2/git/openconnect/gtls/../tests/certs/ca.pem # The object identifier that will be used to read the user ID in the client certificate. # The object identifier should be part of the certificate's DN # Useful OIDs are: # CN = 2.5.4.3, UID = 0.9.2342.19200300.100.1.1 cert-user-oid = 0.9.2342.19200300.100.1.1 # The object identifier that will be used to read the user group in the client # certificate. The object identifier should be part of the certificate's DN # Useful OIDs are: # OU (organizational unit) = 2.5.4.11 #cert-group-oid = 2.5.4.11 # A revocation list of ca-cert is set #crl = /path/to/crl.pem # GnuTLS priority string tls-priorities = "PERFORMANCE:%SERVER_PRECEDENCE:%COMPAT:+SIGN-DSA-SHA1" # To enforce perfect forward secrecy (PFS) on the main channel. #tls-priorities = "NORMAL:%SERVER_PRECEDENCE:%COMPAT:-RSA" # The time (in seconds) that a client is allowed to stay connected prior # to authentication auth-timeout = 40 # The time (in seconds) that a client is not allowed to reconnect after # a failed authentication attempt. #min-reauth-time = 2 # Cookie validity time (in seconds) # Once a client is authenticated he's provided a cookie with # which he can reconnect. This option sets the maximum lifetime # of that cookie. cookie-validity = 172800 # Script to call when a client connects and obtains an IP # Parameters are passed on the environment. # REASON, USERNAME, GROUPNAME, HOSTNAME (the hostname selected by client), # DEVICE, IP_REAL (the real IP of the client), IP_LOCAL (the local IP # in the P-t-P connection), IP_REMOTE (the VPN IP of the client). REASON # may be "connect" or "disconnect". #connect-script = /usr/bin/myscript #disconnect-script = /usr/bin/myscript # UTMP use-utmp = true # PID file pid-file = ./ocserv.pid # The default server directory. Does not require any devices present. #chroot-dir = /path/to/chroot # socket file used for IPC, will be appended with .PID # It must be accessible within the chroot environment (if any) socket-file = ./ocserv-socket # The user the worker processes will be run as. It should be # unique (no other services run as this user). run-as-user = dwoodhou run-as-group = dwoodhou # Network settings device = vpns # The default domain to be advertised default-domain = example.com ipv4-network = 192.168.1.0 ipv4-netmask = 255.255.255.0 # Use the keywork local to advertize the local P-t-P address as DNS server ipv4-dns = 192.168.1.1 # The NBNS server (if any) #ipv4-nbns = 192.168.2.3 #ipv6-address = #ipv6-mask = #ipv6-dns = # Prior to leasing any IP from the pool ping it to verify that # it is not in use by another (unrelated to this server) host. ping-leases = false # Leave empty to assign the default MTU of the device # mtu = route = 192.168.1.0/255.255.255.0 #route = 192.168.5.0/255.255.255.0 # # The following options are for (experimental) AnyConnect client # compatibility. They are only available if the server is built # with --enable-anyconnect # # Client profile xml. A sample file exists in doc/profile.xml. # This file must be accessible from inside the worker's chroot. # The profile is ignored by the openconnect client. #user-profile = profile.xml # Unless set to false it is required for clients to present their # certificate even if they are authenticating via a previously granted # cookie. Legacy CISCO clients do not do that, and thus this option # should be set for them. cisco-client-compat = true openconnect-8.05/tests/configs/test-dtls-psk.config0000664000076400007640000001324413407155217024245 0ustar00dwoodhoudwoodhou00000000000000# User authentication method. Could be set multiple times and in that case # all should succeed. # Options: certificate, pam. #auth = "certificate" auth = "plain[@SRCDIR@/configs/test1.passwd]" #auth = "pam" isolate-workers = false max-ban-score = 0 # A banner to be displayed on clients #banner = "Welcome" # Use listen-host to limit to specific IPs or to the IPs of a provided hostname. #listen-host = @ADDRESS@ use-dbus = no # Limit the number of clients. Unset or set to zero for unlimited. #max-clients = 1024 max-clients = 16 listen-proxy-proto = false # Limit the number of client connections to one every X milliseconds # (X is the provided value). Set to zero for no limit. #rate-limit-ms = 100 # Limit the number of identical clients (i.e., users connecting multiple times) # Unset or set to zero for unlimited. max-same-clients = 2 # TCP and UDP port number tcp-port = @PORT@ udp-port = @PORT@ # Keepalive in seconds keepalive = 32400 # Dead peer detection in seconds dpd = 440 # MTU discovery (DPD must be enabled) try-mtu-discovery = false # The key and the certificates of the server # The key may be a file, or any URL supported by GnuTLS (e.g., # tpmkey:uuid=xxxxxxx-xxxx-xxxx-xxxx-xxxxxxxx;storage=user # or pkcs11:object=my-vpn-key;object-type=private) # # There may be multiple certificate and key pairs and each key # should correspond to the preceding certificate. server-cert = @SRCDIR@/certs/server-cert.pem server-key = @SRCDIR@/certs/server-key.pem # Diffie-Hellman parameters. Only needed if you require support # for the DHE ciphersuites (by default this server supports ECDHE). # Can be generated using: # certtool --generate-dh-params --outfile /path/to/dh.pem #dh-params = /path/to/dh.pem # If you have a certificate from a CA that provides an OCSP # service you may provide a fresh OCSP status response within # the TLS handshake. That will prevent the client from connecting # independently on the OCSP server. # You can update this response periodically using: # ocsptool --ask --load-cert=your_cert --load-issuer=your_ca --outfile response # Make sure that you replace the following file in an atomic way. #ocsp-response = /path/to/ocsp.der # In case PKCS #11 or TPM keys are used the PINs should be available # in files. The srk-pin-file is applicable to TPM keys only (It's the storage # root key). #pin-file = /path/to/pin.txt #srk-pin-file = /path/to/srkpin.txt # The Certificate Authority that will be used # to verify clients if certificate authentication # is set. #ca-cert = /path/to/ca.pem # The object identifier that will be used to read the user ID in the client certificate. # The object identifier should be part of the certificate's DN # Useful OIDs are: # CN = 2.5.4.3, UID = 0.9.2342.19200300.100.1.1 #cert-user-oid = 0.9.2342.19200300.100.1.1 # The object identifier that will be used to read the user group in the client # certificate. The object identifier should be part of the certificate's DN # Useful OIDs are: # OU (organizational unit) = 2.5.4.11 #cert-group-oid = 2.5.4.11 # A revocation list of ca-cert is set #crl = /path/to/crl.pem # GnuTLS priority string tls-priorities = "PERFORMANCE:%SERVER_PRECEDENCE:%COMPAT" # To enforce perfect forward secrecy (PFS) on the main channel. #tls-priorities = "NORMAL:%SERVER_PRECEDENCE:%COMPAT:-RSA" # The time (in seconds) that a client is allowed to stay connected prior # to authentication auth-timeout = 40 # The time (in seconds) that a client is not allowed to reconnect after # a failed authentication attempt. #min-reauth-time = 2 # Script to call when a client connects and obtains an IP # Parameters are passed on the environment. # REASON, USERNAME, GROUPNAME, HOSTNAME (the hostname selected by client), # DEVICE, IP_REAL (the real IP of the client), IP_LOCAL (the local IP # in the P-t-P connection), IP_REMOTE (the VPN IP of the client). REASON # may be "connect" or "disconnect". #connect-script = /usr/bin/myscript #disconnect-script = /usr/bin/myscript # UTMP #use-utmp = true # PID file #pid-file = ./ocserv.pid # The default server directory. Does not require any devices present. #chroot-dir = /path/to/chroot # socket file used for IPC, will be appended with .PID # It must be accessible within the chroot environment (if any) socket-file = ./ocserv-socket occtl-socket-file = @OCCTL_SOCKET@ use-occtl = true # The user the worker processes will be run as. It should be # unique (no other services run as this user). run-as-user = @USERNAME@ run-as-group = @GROUP@ # Network settings device = vpns # The default domain to be advertised default-domain = example.com ipv4-network = @VPNNET@ # Use the keywork local to advertize the local P-t-P address as DNS server ipv4-dns = 192.168.1.1 # The NBNS server (if any) #ipv4-nbns = 192.168.2.3 ipv6-network = @VPNNET6@ #address = #ipv6-mask = #ipv6-dns = # Prior to leasing any IP from the pool ping it to verify that # it is not in use by another (unrelated to this server) host. ping-leases = false # Leave empty to assign the default MTU of the device # mtu = #route = 192.168.1.0/255.255.255.0 #route = 192.168.5.0/255.255.255.0 # # The following options are for (experimental) AnyConnect client # compatibility. They are only available if the server is built # with --enable-anyconnect # # Client profile xml. A sample file exists in doc/profile.xml. # This file must be accessible from inside the worker's chroot. # The profile is ignored by the openconnect client. #user-profile = profile.xml # Unless set to false it is required for clients to present their # certificate even if they are authenticating via a previously granted # cookie. Legacy CISCO clients do not do that, and thus this option # should be set for them. #always-require-cert = false compression = false openconnect-8.05/tests/configs/test-user-pass.config0000664000076400007640000001357313536301704024430 0ustar00dwoodhoudwoodhou00000000000000# User authentication method. Could be set multiple times and in that case # all should succeed. # Options: certificate, pam. #auth = "certificate" auth = "plain[/home/dwmw2/git/openconnect/gtls/../tests/configs/test1.passwd]" #auth = "pam" # A banner to be displayed on clients #banner = "Welcome" # Use listen-host to limit to specific IPs or to the IPs of a provided hostname. #listen-host = [IP|HOSTNAME] use-dbus = no # Limit the number of clients. Unset or set to zero for unlimited. #max-clients = 1024 max-clients = 16 # Limit the number of client connections to one every X milliseconds # (X is the provided value). Set to zero for no limit. #rate-limit-ms = 100 # Limit the number of identical clients (i.e., users connecting multiple times) # Unset or set to zero for unlimited. max-same-clients = 2 # TCP and UDP port number tcp-port = 443 udp-port = 443 # Keepalive in seconds keepalive = 32400 # Dead peer detection in seconds dpd = 440 # MTU discovery (DPD must be enabled) try-mtu-discovery = false # The key and the certificates of the server # The key may be a file, or any URL supported by GnuTLS (e.g., # tpmkey:uuid=xxxxxxx-xxxx-xxxx-xxxx-xxxxxxxx;storage=user # or pkcs11:object=my-vpn-key;object-type=private) # # There may be multiple certificate and key pairs and each key # should correspond to the preceding certificate. server-cert = /home/dwmw2/git/openconnect/gtls/../tests/certs/server-cert.pem server-key = /home/dwmw2/git/openconnect/gtls/../tests/certs/server-key.pem # Diffie-Hellman parameters. Only needed if you require support # for the DHE ciphersuites (by default this server supports ECDHE). # Can be generated using: # certtool --generate-dh-params --outfile /path/to/dh.pem #dh-params = /path/to/dh.pem # If you have a certificate from a CA that provides an OCSP # service you may provide a fresh OCSP status response within # the TLS handshake. That will prevent the client from connecting # independently on the OCSP server. # You can update this response periodically using: # ocsptool --ask --load-cert=your_cert --load-issuer=your_ca --outfile response # Make sure that you replace the following file in an atomic way. #ocsp-response = /path/to/ocsp.der # In case PKCS #11 or TPM keys are used the PINs should be available # in files. The srk-pin-file is applicable to TPM keys only (It's the storage # root key). #pin-file = /path/to/pin.txt #srk-pin-file = /path/to/srkpin.txt # The Certificate Authority that will be used # to verify clients if certificate authentication # is set. ca-cert = /home/dwmw2/git/openconnect/gtls/../tests/certs/ca.pem # The object identifier that will be used to read the user ID in the client certificate. # The object identifier should be part of the certificate's DN # Useful OIDs are: # CN = 2.5.4.3, UID = 0.9.2342.19200300.100.1.1 cert-user-oid = 0.9.2342.19200300.100.1.1 # The object identifier that will be used to read the user group in the client # certificate. The object identifier should be part of the certificate's DN # Useful OIDs are: # OU (organizational unit) = 2.5.4.11 #cert-group-oid = 2.5.4.11 # A revocation list of ca-cert is set #crl = /path/to/crl.pem # GnuTLS priority string tls-priorities = "PERFORMANCE:%SERVER_PRECEDENCE:%COMPAT" # To enforce perfect forward secrecy (PFS) on the main channel. #tls-priorities = "NORMAL:%SERVER_PRECEDENCE:%COMPAT:-RSA" # The time (in seconds) that a client is allowed to stay connected prior # to authentication auth-timeout = 40 # The time (in seconds) that a client is not allowed to reconnect after # a failed authentication attempt. #min-reauth-time = 2 # Cookie validity time (in seconds) # Once a client is authenticated he's provided a cookie with # which he can reconnect. This option sets the maximum lifetime # of that cookie. cookie-validity = 172800 # Script to call when a client connects and obtains an IP # Parameters are passed on the environment. # REASON, USERNAME, GROUPNAME, HOSTNAME (the hostname selected by client), # DEVICE, IP_REAL (the real IP of the client), IP_LOCAL (the local IP # in the P-t-P connection), IP_REMOTE (the VPN IP of the client). REASON # may be "connect" or "disconnect". #connect-script = /usr/bin/myscript #disconnect-script = /usr/bin/myscript # UTMP use-utmp = true # PID file pid-file = ./ocserv.pid # The default server directory. Does not require any devices present. #chroot-dir = /path/to/chroot # socket file used for IPC, will be appended with .PID # It must be accessible within the chroot environment (if any) socket-file = ./ocserv-socket # The user the worker processes will be run as. It should be # unique (no other services run as this user). run-as-user = dwoodhou run-as-group = dwoodhou # Network settings device = vpns # The default domain to be advertised default-domain = example.com ipv4-network = 192.168.1.0 ipv4-netmask = 255.255.255.0 # Use the keywork local to advertize the local P-t-P address as DNS server ipv4-dns = 192.168.1.1 # The NBNS server (if any) #ipv4-nbns = 192.168.2.3 #ipv6-address = #ipv6-mask = #ipv6-dns = # Prior to leasing any IP from the pool ping it to verify that # it is not in use by another (unrelated to this server) host. ping-leases = false # Leave empty to assign the default MTU of the device # mtu = route = 192.168.1.0/255.255.255.0 #route = 192.168.5.0/255.255.255.0 # # The following options are for (experimental) AnyConnect client # compatibility. They are only available if the server is built # with --enable-anyconnect # # Client profile xml. A sample file exists in doc/profile.xml. # This file must be accessible from inside the worker's chroot. # The profile is ignored by the openconnect client. #user-profile = profile.xml # Unless set to false it is required for clients to present their # certificate even if they are authenticating via a previously granted # cookie. Legacy CISCO clients do not do that, and thus this option # should be set for them. cisco-client-compat = true openconnect-8.05/tests/configs/test1.passwd0000664000076400007640000000102412741644647022626 0ustar00dwoodhoudwoodhou00000000000000test:tost,group1, group2 , group3:$5$i6SNmLDCgBNjyJ7q$SZ4bVJb7I/DLgXo3txHBVohRFBjOtdbxGQZp.DOnrA. sp@c/al:*:$5$kDNrlGibUoktiQ0n$mE/ys1XehvvoWQiSqAfB.Aw1WbAYayMV/ZYTX/6IlkC test2:*:$5$QB3iB31ID49rW6kr$wSvbsDTzUPw51hqWTgvac9LyJ6HLv2HYyxh2Ud4v.x1 test3:*:$5$d24yO9edrMd5ISka$/77d6DRK4fhdbTAecc4V8mmnQXSOU4Qn4zZQhOVaEqC test4:*:$5$5Hzjz2RPxM70vXiH$lCAFmGx77MNcauzf30.HJlKWm8dwVNiut.nyZyQRndC test5:*:$5$nvA.6.RBPqZg16K2$WAEXw7MJaSUj/Nwosu54JfqxMDlkZnrG.0/rsxl276C empty:*:$5$tScKhdO1ZcJ0GmmQ$rw095k.ThqbeQ60N06efHnAOibV/GoW5cRZKyHr8jd2 openconnect-8.05/tests/configs/user-cert.prm0000664000076400007640000000110613025070326022754 0ustar00dwoodhoudwoodhou00000000000000extensions = x509v3 [ x509v3 ] #keyUsage = keyEncipherment,digitalSignature,keyAgreement extendedKeyUsage = clientAuth subjectKeyIdentifier = hash authorityKeyIdentifier = keyid basicConstraints = CA:false [ req ] default_bits = 2432 distinguished_name = req_DN default_md = sha256 string_mask = utf8only [ req_DN ] commonName = "Common Name" commonName_value = "A user" userId = "User ID" userId_value = "test" [something] # The key # the certificate # some dhparam openconnect-8.05/tests/configs/test-user-cert.config.in0000664000076400007640000001371513025070326025016 0ustar00dwoodhoudwoodhou00000000000000# User authentication method. Could be set multiple times and in that case # all should succeed. # Options: certificate, pam. auth = "certificate" auth = "plain[@abs_top_srcdir@/tests/configs/test1.passwd]" #auth = "pam" # A banner to be displayed on clients #banner = "Welcome" # Use listen-host to limit to specific IPs or to the IPs of a provided hostname. #listen-host = [IP|HOSTNAME] use-dbus = no # Limit the number of clients. Unset or set to zero for unlimited. #max-clients = 1024 max-clients = 16 # Limit the number of client connections to one every X milliseconds # (X is the provided value). Set to zero for no limit. #rate-limit-ms = 100 # Do not ban clients for excessive connection attempts. We kind of expect # that in the certificate test. ban-points-connection = 0 # Limit the number of identical clients (i.e., users connecting multiple times) # Unset or set to zero for unlimited. max-same-clients = 2 # TCP and UDP port number tcp-port = 443 udp-port = 443 # Keepalive in seconds keepalive = 32400 # Dead peer detection in seconds dpd = 440 # MTU discovery (DPD must be enabled) try-mtu-discovery = false # The key and the certificates of the server # The key may be a file, or any URL supported by GnuTLS (e.g., # tpmkey:uuid=xxxxxxx-xxxx-xxxx-xxxx-xxxxxxxx;storage=user # or pkcs11:object=my-vpn-key;object-type=private) # # There may be multiple certificate and key pairs and each key # should correspond to the preceding certificate. server-cert = @abs_top_srcdir@/tests/certs/server-cert.pem server-key = @abs_top_srcdir@/tests/certs/server-key.pem # Diffie-Hellman parameters. Only needed if you require support # for the DHE ciphersuites (by default this server supports ECDHE). # Can be generated using: # certtool --generate-dh-params --outfile /path/to/dh.pem #dh-params = /path/to/dh.pem # If you have a certificate from a CA that provides an OCSP # service you may provide a fresh OCSP status response within # the TLS handshake. That will prevent the client from connecting # independently on the OCSP server. # You can update this response periodically using: # ocsptool --ask --load-cert=your_cert --load-issuer=your_ca --outfile response # Make sure that you replace the following file in an atomic way. #ocsp-response = /path/to/ocsp.der # In case PKCS #11 or TPM keys are used the PINs should be available # in files. The srk-pin-file is applicable to TPM keys only (It's the storage # root key). #pin-file = /path/to/pin.txt #srk-pin-file = /path/to/srkpin.txt # The Certificate Authority that will be used # to verify clients if certificate authentication # is set. ca-cert = @abs_top_srcdir@/tests/certs/ca.pem # The object identifier that will be used to read the user ID in the client certificate. # The object identifier should be part of the certificate's DN # Useful OIDs are: # CN = 2.5.4.3, UID = 0.9.2342.19200300.100.1.1 cert-user-oid = 0.9.2342.19200300.100.1.1 # The object identifier that will be used to read the user group in the client # certificate. The object identifier should be part of the certificate's DN # Useful OIDs are: # OU (organizational unit) = 2.5.4.11 #cert-group-oid = 2.5.4.11 # A revocation list of ca-cert is set #crl = /path/to/crl.pem # GnuTLS priority string tls-priorities = "PERFORMANCE:%SERVER_PRECEDENCE:%COMPAT:+SIGN-DSA-SHA1" # To enforce perfect forward secrecy (PFS) on the main channel. #tls-priorities = "NORMAL:%SERVER_PRECEDENCE:%COMPAT:-RSA" # The time (in seconds) that a client is allowed to stay connected prior # to authentication auth-timeout = 40 # The time (in seconds) that a client is not allowed to reconnect after # a failed authentication attempt. #min-reauth-time = 2 # Cookie validity time (in seconds) # Once a client is authenticated he's provided a cookie with # which he can reconnect. This option sets the maximum lifetime # of that cookie. cookie-validity = 172800 # Script to call when a client connects and obtains an IP # Parameters are passed on the environment. # REASON, USERNAME, GROUPNAME, HOSTNAME (the hostname selected by client), # DEVICE, IP_REAL (the real IP of the client), IP_LOCAL (the local IP # in the P-t-P connection), IP_REMOTE (the VPN IP of the client). REASON # may be "connect" or "disconnect". #connect-script = /usr/bin/myscript #disconnect-script = /usr/bin/myscript # UTMP use-utmp = true # PID file pid-file = ./ocserv.pid # The default server directory. Does not require any devices present. #chroot-dir = /path/to/chroot # socket file used for IPC, will be appended with .PID # It must be accessible within the chroot environment (if any) socket-file = ./ocserv-socket # The user the worker processes will be run as. It should be # unique (no other services run as this user). run-as-user = @OCSERV_USER@ run-as-group = @OCSERV_GROUP@ # Network settings device = vpns # The default domain to be advertised default-domain = example.com ipv4-network = 192.168.1.0 ipv4-netmask = 255.255.255.0 # Use the keywork local to advertize the local P-t-P address as DNS server ipv4-dns = 192.168.1.1 # The NBNS server (if any) #ipv4-nbns = 192.168.2.3 #ipv6-address = #ipv6-mask = #ipv6-dns = # Prior to leasing any IP from the pool ping it to verify that # it is not in use by another (unrelated to this server) host. ping-leases = false # Leave empty to assign the default MTU of the device # mtu = route = 192.168.1.0/255.255.255.0 #route = 192.168.5.0/255.255.255.0 # # The following options are for (experimental) AnyConnect client # compatibility. They are only available if the server is built # with --enable-anyconnect # # Client profile xml. A sample file exists in doc/profile.xml. # This file must be accessible from inside the worker's chroot. # The profile is ignored by the openconnect client. #user-profile = profile.xml # Unless set to false it is required for clients to present their # certificate even if they are authenticating via a previously granted # cookie. Legacy CISCO clients do not do that, and thus this option # should be set for them. cisco-client-compat = true openconnect-8.05/tests/configs/test-user-pass.config.in0000664000076400007640000001347213025070326025027 0ustar00dwoodhoudwoodhou00000000000000# User authentication method. Could be set multiple times and in that case # all should succeed. # Options: certificate, pam. #auth = "certificate" auth = "plain[@abs_top_srcdir@/tests/configs/test1.passwd]" #auth = "pam" # A banner to be displayed on clients #banner = "Welcome" # Use listen-host to limit to specific IPs or to the IPs of a provided hostname. #listen-host = [IP|HOSTNAME] use-dbus = no # Limit the number of clients. Unset or set to zero for unlimited. #max-clients = 1024 max-clients = 16 # Limit the number of client connections to one every X milliseconds # (X is the provided value). Set to zero for no limit. #rate-limit-ms = 100 # Limit the number of identical clients (i.e., users connecting multiple times) # Unset or set to zero for unlimited. max-same-clients = 2 # TCP and UDP port number tcp-port = 443 udp-port = 443 # Keepalive in seconds keepalive = 32400 # Dead peer detection in seconds dpd = 440 # MTU discovery (DPD must be enabled) try-mtu-discovery = false # The key and the certificates of the server # The key may be a file, or any URL supported by GnuTLS (e.g., # tpmkey:uuid=xxxxxxx-xxxx-xxxx-xxxx-xxxxxxxx;storage=user # or pkcs11:object=my-vpn-key;object-type=private) # # There may be multiple certificate and key pairs and each key # should correspond to the preceding certificate. server-cert = @abs_top_srcdir@/tests/certs/server-cert.pem server-key = @abs_top_srcdir@/tests/certs/server-key.pem # Diffie-Hellman parameters. Only needed if you require support # for the DHE ciphersuites (by default this server supports ECDHE). # Can be generated using: # certtool --generate-dh-params --outfile /path/to/dh.pem #dh-params = /path/to/dh.pem # If you have a certificate from a CA that provides an OCSP # service you may provide a fresh OCSP status response within # the TLS handshake. That will prevent the client from connecting # independently on the OCSP server. # You can update this response periodically using: # ocsptool --ask --load-cert=your_cert --load-issuer=your_ca --outfile response # Make sure that you replace the following file in an atomic way. #ocsp-response = /path/to/ocsp.der # In case PKCS #11 or TPM keys are used the PINs should be available # in files. The srk-pin-file is applicable to TPM keys only (It's the storage # root key). #pin-file = /path/to/pin.txt #srk-pin-file = /path/to/srkpin.txt # The Certificate Authority that will be used # to verify clients if certificate authentication # is set. ca-cert = @abs_top_srcdir@/tests/certs/ca.pem # The object identifier that will be used to read the user ID in the client certificate. # The object identifier should be part of the certificate's DN # Useful OIDs are: # CN = 2.5.4.3, UID = 0.9.2342.19200300.100.1.1 cert-user-oid = 0.9.2342.19200300.100.1.1 # The object identifier that will be used to read the user group in the client # certificate. The object identifier should be part of the certificate's DN # Useful OIDs are: # OU (organizational unit) = 2.5.4.11 #cert-group-oid = 2.5.4.11 # A revocation list of ca-cert is set #crl = /path/to/crl.pem # GnuTLS priority string tls-priorities = "PERFORMANCE:%SERVER_PRECEDENCE:%COMPAT" # To enforce perfect forward secrecy (PFS) on the main channel. #tls-priorities = "NORMAL:%SERVER_PRECEDENCE:%COMPAT:-RSA" # The time (in seconds) that a client is allowed to stay connected prior # to authentication auth-timeout = 40 # The time (in seconds) that a client is not allowed to reconnect after # a failed authentication attempt. #min-reauth-time = 2 # Cookie validity time (in seconds) # Once a client is authenticated he's provided a cookie with # which he can reconnect. This option sets the maximum lifetime # of that cookie. cookie-validity = 172800 # Script to call when a client connects and obtains an IP # Parameters are passed on the environment. # REASON, USERNAME, GROUPNAME, HOSTNAME (the hostname selected by client), # DEVICE, IP_REAL (the real IP of the client), IP_LOCAL (the local IP # in the P-t-P connection), IP_REMOTE (the VPN IP of the client). REASON # may be "connect" or "disconnect". #connect-script = /usr/bin/myscript #disconnect-script = /usr/bin/myscript # UTMP use-utmp = true # PID file pid-file = ./ocserv.pid # The default server directory. Does not require any devices present. #chroot-dir = /path/to/chroot # socket file used for IPC, will be appended with .PID # It must be accessible within the chroot environment (if any) socket-file = ./ocserv-socket # The user the worker processes will be run as. It should be # unique (no other services run as this user). run-as-user = @OCSERV_USER@ run-as-group = @OCSERV_GROUP@ # Network settings device = vpns # The default domain to be advertised default-domain = example.com ipv4-network = 192.168.1.0 ipv4-netmask = 255.255.255.0 # Use the keywork local to advertize the local P-t-P address as DNS server ipv4-dns = 192.168.1.1 # The NBNS server (if any) #ipv4-nbns = 192.168.2.3 #ipv6-address = #ipv6-mask = #ipv6-dns = # Prior to leasing any IP from the pool ping it to verify that # it is not in use by another (unrelated to this server) host. ping-leases = false # Leave empty to assign the default MTU of the device # mtu = route = 192.168.1.0/255.255.255.0 #route = 192.168.5.0/255.255.255.0 # # The following options are for (experimental) AnyConnect client # compatibility. They are only available if the server is built # with --enable-anyconnect # # Client profile xml. A sample file exists in doc/profile.xml. # This file must be accessible from inside the worker's chroot. # The profile is ignored by the openconnect client. #user-profile = profile.xml # Unless set to false it is required for clients to present their # certificate even if they are authenticating via a previously granted # cookie. Legacy CISCO clients do not do that, and thus this option # should be set for them. cisco-client-compat = true openconnect-8.05/tests/sigterm0000775000076400007640000000645613407155217020317 0ustar00dwoodhoudwoodhou00000000000000#!/bin/bash # # Copyright (C) 2018 Nikos Mavrogiannopoulos # # This file is part of ocserv. # # ocserv is free software; you can redistribute it and/or modify it # under the terms of the GNU General Public License as published by the # Free Software Foundation; either version 2 of the License, or (at # your option) any later version. # # ocserv is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program. If not, see . # # This tests operation/traffic under compression (lzs or lz4). OCCTL="${OCCTL:-occtl}" SERV="${OCSERV:-ocserv}" srcdir=${srcdir:-.} PORT=4569 PIDFILE=ocserv-pid.$$.tmp CLIPID=oc-pid.$$.tmp PATH=${PATH}:/usr/sbin IP=$(which ip) OUTFILE=traffic.$$.tmp export DISCONNECT_FILE=disconnected-ok.$$.tmp . `dirname $0`/common.sh rm -f ${DISCONNECT_FILE} if test -z "${IP}";then echo "no IP tool is present" exit 77 fi if test "$(id -u)" != "0";then echo "This test must be run as root" exit 77 fi echo "Testing ocserv connection with DTLS-PSK... " function finish { set +e echo " * Cleaning up..." test -n "${PID}" && kill ${PID} >/dev/null 2>&1 test -n "${PIDFILE}" && rm -f ${PIDFILE} >/dev/null 2>&1 test -f "${CLIPID}" && kill $(cat ${CLIPID}) >/dev/null 2>&1 test -f "${CLIPID}" && rm -f ${CLIPID} >/dev/null 2>&1 test -n "${CONFIG}" && rm -f ${CONFIG} >/dev/null 2>&1 rm -f ${OUTFILE} 2>&1 } trap finish EXIT # server address ADDRESS=10.202.2.1 CLI_ADDRESS=10.202.1.1 VPNNET=192.168.3.0/24 VPNADDR=192.168.3.1 VPNNET6=fd91:6d87:8341:dc6a::/112 VPNADDR6=fd91:6d87:8341:dc6a::1 OCCTL_SOCKET=./occtl-comp-$$.socket USERNAME=test TUNDEV=oc-$$-tun0 . `dirname $0`/ns.sh # Run servers update_config test-dtls-psk.config if test "$VERBOSE" = 1;then DEBUG="-d 3" fi ${CMDNS2} ${SERV} -p ${PIDFILE} -f -c ${CONFIG} ${DEBUG} & PID=$! sleep 4 # Run clients echo " * Getting cookie from ${ADDRESS}:${PORT}..." ( echo "test" | ${CMDNS1} ${OPENCONNECT} ${ADDRESS}:${PORT} -u ${USERNAME} --servercert=d66b507ae074d03b02eafca40d35f87dd81049d3 --cookieonly ) if test $? != 0;then echo "Could not get cookie from server" exit 1 fi echo " * Connecting to ${ADDRESS}:${PORT}..." ( echo "test" | ${CMDNS1} ${OPENCONNECT} --interface ${TUNDEV} --dtls-ciphers=PSK-NEGOTIATE ${ADDRESS}:${PORT} -u ${USERNAME} --servercert=d66b507ae074d03b02eafca40d35f87dd81049d3 -s ${srcdir}/scripts/vpnc-script-detect-disconnect --pid-file=${CLIPID} --passwd-on-stdin -b ) if test $? != 0;then echo "Could not connect to server" exit 1 fi set -e echo " * wait for ${TUNDEV}" TIMEOUT=10 while ! ${CMDNS1} ip addr list dev ${TUNDEV} &>/dev/null; do TIMEOUT=$(($TIMEOUT - 1)) if [ $TIMEOUT -eq 0 ]; then echo "Timed out waiting for ${TUNDEV}" exit 1 fi sleep 1 done echo " * add routes" ${CMDNS1} ip route add ${VPNADDR} dev ${TUNDEV} ${CMDNS1} ip -6 route add ${VPNADDR6} dev ${TUNDEV} echo " * ping remote address" ${CMDNS1} ping -c 3 ${VPNADDR} test -f "${CLIPID}" && kill $(cat ${CLIPID}) >/dev/null 2>&1 rm -f "${CLIPID}" sleep 5 if ! test -f ${DISCONNECT_FILE};then echo "Could not find ${DISCONNECT_FILE}" exit 1 fi exit 0 openconnect-8.05/tests/ns.sh0000664000076400007640000000537713407155217017674 0ustar00dwoodhoudwoodhou00000000000000#!/bin/bash # # Copyright (C) 2018 Nikos Mavrogiannopoulos # # This file is part of ocserv. # # ocserv is free software; you can redistribute it and/or modify it # under the terms of the GNU General Public License as published by the # Free Software Foundation; either version 2 of the License, or (at # your option) any later version. # # ocserv is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program. If not, see . # # Input: # ADDRESS=10.200.2.1 # CLI_ADDRESS=10.200.1.1 # VPNNET=192.168.1.0/24 # VPNADDR=192.168.1.1 # # Provides: # ${NSCMD1} - to run on NS1 # ${NSCMD2} - to run on NS2 # # Cleanup is automatic via a trap # Requires: finish() to be defined PATH=${PATH}:/usr/sbin IP=$(which ip) if test "$(id -u)" != "0";then echo "This test must be run as root" exit 77 fi ip netns list >/dev/null 2>&1 if test $? != 0;then echo "This test requires ip netns command" exit 77 fi if test "$(uname -s)" != Linux;then echo "This test must be run on Linux" exit 77 fi function nsfinish { set +e test -n "${ETHNAME1}" && ${IP} link delete ${ETHNAME1} >/dev/null 2>&1 test -n "${ETHNAME2}" && ${IP} link delete ${ETHNAME2} >/dev/null 2>&1 test -n "${NSNAME1}" && ${IP} netns delete ${NSNAME1} >/dev/null 2>&1 test -n "${NSNAME2}" && ${IP} netns delete ${NSNAME2} >/dev/null 2>&1 finish } trap nsfinish EXIT echo " * Setting up namespaces..." set -e NSNAME1="ocserv-c-tmp-$$" NSNAME2="ocserv-s-tmp-$$" ETHNAME1="oceth-c$$" ETHNAME2="oceth-s$$" ${IP} netns add ${NSNAME1} ${IP} netns add ${NSNAME2} ${IP} link add ${ETHNAME1} type veth peer name ${ETHNAME2} ${IP} link set ${ETHNAME1} netns ${NSNAME1} ${IP} link set ${ETHNAME2} netns ${NSNAME2} ${IP} netns exec ${NSNAME1} ip link set ${ETHNAME1} up ${IP} netns exec ${NSNAME2} ip link set ${ETHNAME2} up ${IP} netns exec ${NSNAME2} ip link set lo up ${IP} netns exec ${NSNAME1} ip addr add ${CLI_ADDRESS} dev ${ETHNAME1} ${IP} netns exec ${NSNAME2} ip addr add ${ADDRESS} dev ${ETHNAME2} ${IP} netns exec ${NSNAME1} ip route add default via ${CLI_ADDRESS} dev ${ETHNAME1} ${IP} netns exec ${NSNAME2} ip route add default via ${ADDRESS} dev ${ETHNAME2} ${IP} netns exec ${NSNAME2} ip addr ${IP} netns exec ${NSNAME2} ip route ${IP} netns exec ${NSNAME1} ip route ${IP} netns exec ${NSNAME1} ping -c 1 ${ADDRESS} >/dev/null ${IP} netns exec ${NSNAME2} ping -c 1 ${ADDRESS} >/dev/null ${IP} netns exec ${NSNAME2} ping -c 1 ${CLI_ADDRESS} >/dev/null set +e CMDNS1="${IP} netns exec ${NSNAME1}" CMDNS2="${IP} netns exec ${NSNAME2}" openconnect-8.05/tests/softhsm/0000775000076400007640000000000013025070326020360 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/tests/softhsm/3dc692bc-4c91-91a2-488d-6dd1669acb88/0000775000076400007640000000000013470043301025240 5ustar00dwoodhoudwoodhou00000000000000ae22c3cd-e90a-4a8a-b008-26cf5f54bb8f.lock0000664000076400007640000000000013456420777033175 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/tests/softhsm/3dc692bc-4c91-91a2-488d-6dd1669acb88openconnect-8.05/tests/softhsm/3dc692bc-4c91-91a2-488d-6dd1669acb88/token.object0000664000076400007640000000050013470043301027543 0ustar00dwoodhoudwoodhou00000000000000$SI openconnect-test2 SJ488d6dd1669acb88SK-SLH (AȆ &7$-@d1Ay8`5Xqӡx!?u bӮ>NĴcXA _HCdk S27C 612{( 2/Hr[rzil7?3|Dp&m%x@ !0]n˪1W)3 0(I?, gkra[˖.^A+9yG=c?pw+r[" ^ Ҍ=ns&oF6gw[[#Pe1",4 xנ# W PB}po-*GYîڰ !g]kN*{e g)ćO"|5yO~~4v>\0-.ۮNGWeɩ rNrvמbMAI/Y:H`lwvw׀٘7Y'a$-V@ޗb+Q! j 7rk2(X@5rdSm奃U gYٗ9}s^ CT&dhxQ6'n(+f9U]QJdk\eX;OGCy[$5}% g?:;܍g#}[5Kqj zTR/Q qsvre5.pAÛX* o#/#ՁNS k,Nrw;Ζ`Z cCqaʇp]"Z-G|R`xK%\B\l0}b\9jDaj ֌fU#Eqٱ9xZIuG%"(Bf9[p^pֱ!H&Ƕ56x]W:`@*"c 綅7ڹWDO-^ j%KQ 9h:]i&[twf eE"kN01J w>8%I,#•:ߋ!y^H%dZ(o6=VBb_?<ſQ=~$6*HCn1s@jbJbde:^6Ц>uK7oDȧP=e%cNӑ'26&ہݥЪE{н ,ll_|G@yNK&`XhYY 3x`c=qP =(_8L,s/j>=s": `ff~賅@paU++$j8zE'zUG(zw0ER[dž~hSMkI6gTocm֔qaƉo QtVf!o]ik2I MO_ёD20a 47/- ּ#)"hVa8 ~?T]|C,QM0 R#yյCe8L?;YC@bcdefpq@579fac93-d85d-cd55-d408-c78554e25729.object0000664000076400007640000000240513470043301033114 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/tests/softhsm/3dc692bc-4c91-91a2-488d-6dd1669acb88 ѵd'|2HEZ9v'KŪAF#aQWïER)\؇] 8ub`ڳ̋[`0u72<n.<, Q*k)uhUgkoT)m1;zkV]³lkߗq޵%8O9&=#/j?T^H@P`*\1ܧ):ܼEu{ameo[,qV`yT{Q>ۛDPujp;> %sy|v 5tJ#('澇ܩ6UQm,J -aU޼H׺}m֠2Dڐ U{OZZqgOE! h/36;J1Ch(;iYp hJulGz ?Ep3{84ZAU*0Ѕa֡_.0=K=O}}'#H .qf :nI[zQI$cKp  MUSվ$mrk|2ko\ Zj6T>1+\:XF  óSW}gzРH "I@mE*lUG8\r=ʡz9 ~lw :G낧^ c-6oN`" ,\__2FzKq=pqopenconnect-8.05/tests/softhsm/3dc692bc-4c91-91a2-488d-6dd1669acb88/generation0000664000076400007640000000001013457275527027333 0ustar00dwoodhoudwoodhou00000000000000 b9354336-70ae-cbe8-72f7-395370bd14e6.object0000664000076400007640000000130013470043301033057 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/tests/softhsm/3dc692bc-4c91-91a2-488d-6dd1669acb88 :!=A>۹{'m`}\̻@NiuNъk8;%:mSЙ3 θ%PuLqJ%-졄ɦr A՝ <)ys|k.>U|  bcdefpq 4O3 ^ !^{ eY)!~ Mv"DV4|TWP%)ORLqkS.Zc\1 jC)mۼbߘ} o N mJ<}}G.}'.A    0j'Gcϙ~LZvpf(dW\>|T<qJ/ފv"ZyԖzuXqU t(CJ?{_yym,a!0Y2nrHm-#dfz4{10KǚG8ȷUJ1)%07Qjqa2* Ǫ15L:G!̓x^7\jQ)W=Qe:St ӛu1Mfi l} q匏1=>\6h%3 Nkَ"p86/X,!C[;v:(Nd"Oc|cfpq@a15b55d6-1502-bdcf-634c-5d35d3403354.lock0000664000076400007640000000000013456420777032527 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/tests/softhsm/3dc692bc-4c91-91a2-488d-6dd1669acb88a15b55d6-1502-bdcf-634c-5d35d3403354.object0000664000076400007640000000206013470043301033031 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/tests/softhsm/3dc692bc-4c91-91a2-488d-6dd1669acb88  .nmr?ʍI|m몝W1Kx3r?0{Mi߻XL6xxjQ#|+ZLlYpgX@sX ^[kosz: u[ M5e,+5Ň;k`UdkZLq*0R!.VITKk:7yb`<ﶆ{ \N:G#@B2 XOR23 Gj0&]l 1}C#yDIjB%N& VDz(onKq;PyɋOegmZ=aju][-N/Tbؒ,Mݚl%ިQ*K%o1J, M|ʷҵsK)Z X<\/Ց@5gcx8o]uy;f[$$૳E s6Vx l#׻qh,KX-<&Cf Ur /%vDOjgj[ :1:ŗ=x   \ĪYL4z|#JU3@.+ PgN{!i1WФdvJt<.;y47ܨ}!%щc*#XE KOvj K&f! ~׫M+pq204fb296-6512-bade-d242-0c01c6fee44c.lock0000664000076400007640000000000013456420777032745 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/tests/softhsm/3dc692bc-4c91-91a2-488d-6dd1669acb88c623044d-bc60-8200-06e4-3d78db26d0fe.lock0000664000076400007640000000000013456420777032611 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/tests/softhsm/3dc692bc-4c91-91a2-488d-6dd1669acb88ae22c3cd-e90a-4a8a-b008-26cf5f54bb8f.object0000664000076400007640000000314513470043301033504 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/tests/softhsm/3dc692bc-4c91-91a2-488d-6dd1669acb88 6 *d?uYZ(&czHTs S]~]qtT.P0*.f3c@Ql:p6zWum:rفr)ShrnW`ۧS>ʳyS'n %ԯ87AٟPuPOɵG&P% Yx$!z+Z=6{z9nXM~K-mK^LQ6_>mW.¯x!]& *xޘ$:~xSjϚjʲ/P/MVb[.L/4w U["N  oBZc}Ҽ) Q`Grc츆9HRegyZj֐DkOa+ l3;'Sfs*KR L~7R0`5jhuda'>^iRܢgiC'xyRV9a%bu|NQ=Xf!9۞u$*ŵЕ+29ԥָ +ꭺ+Z,;bLv)U&h=ꋣdPCOc4veIo5O(I03Iꆏÿmڀ}VizA\i~i>1 QSΡk|}sl~?3d* C$6Q9 \[l(gQ)6RɷFd  9+ CIO}Kp`bݭ:Cl8@NP"#TT=B8W D=EMΦ.rl Vx(\ Pv¦u 8;4/7b2SC,]5+4f֧ЃVt0-([z͜\Q Hq4w]xH 7 e;+rR_` Cf&)>jb X&D׌ov 䘷rz]O #.q0_u g}MvdJPǏy>/3'M`$r=)J<I>&z=EZM*cO-c(;GG|,A2ɾU,kF*V)"#0] $W~P3T[-b'\BN 2+$^,yjzTx}.5i39B]47,|*[AtRߡF=4/U@|L$?\d\UR1B&@-,V ޮás-*5eGtpحtPrՇ?̶&%YٺGCM۝IP3*D@d.B% vy](U82ֺsܶ_fLָid\~L[7)<=C3#3$XîL=$ N.x v=^o}MqjG% ;־9ׂ=T=v]4Oy^\qYCW<3 M9?bO!zZ_)g?#=ټGV~)gjZ0 I`ј%⊝)3Dw4>ߘ̫s<\"O <#=u|NwpWT">YZObU}-!շO":2mRvV='t[Xrn"DjEkF>B? *{!]س]|b6"74^g8[Mօ: <G5/Ƭhq^:aD룠/]_)†ggtl5=[j^َꇽoVHtWim|Q(;㪞u s8^s:$UNX*BI%+E`X>L@B ?NhAy~dgE(W f`$2l$CV"P)8NBYI2 e07)c  4ThqHbcdefpq@a9ab8460-063c-0884-ecaa-7bd524ec6c17.object0000664000076400007640000000111513470043301033147 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/tests/softhsm/3e606151-441f-fd0b-2b41-bd372ec8723fEC bnQyͼ:ϟ>wIzv9'w/>Q  bcdefpq *H=@a9ab8460-063c-0884-ecaa-7bd524ec6c17.lock0000664000076400007640000000000013456420703032632 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/tests/softhsm/3e606151-441f-fd0b-2b41-bd372ec8723ff095d2b1-1592-4f77-80a7-e5cc04fcc634.lock0000664000076400007640000000000013456420703032503 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/tests/softhsm/3e606151-441f-fd0b-2b41-bd372ec8723f8a45fb7d-e985-5950-6099-1938ac16b4e8.object0000664000076400007640000000265513470043301032725 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/tests/softhsm/3e606151-441f-fd0b-2b41-bd372ec8723fDSAs0o0'W0  *H  0 1 0 UCA0 160919124550Z 260917124550Z0'10 U A user10 &,d test00+*H80z -ť A-"u y05m(q,H˦k]/rfC2WX[X4<ӺUcYlIE4++o9kA´Xx\ќug?E,bUvEz%K|O5[ɤl3N.z }Fľ،0଴CAʛt6tu c LQbz漣DzQ o*-uh):3 cO ti  \CfgE{oIz±F/j3΢s>\4>.&s4SYmS\4)1ֈGF864:ȗ{<̺^('I]G0  *H  12fv x6qw4QTӍ;y:<ʶcmjn^]A:t!#K}-Z:¬pA*nϲa=xoT%_zGI֡8E]ͯzS .xhHh6dF[c]5Ic pÄq;c͍V>1R 䌵GR2td@PplYt6Tf4AM`Ds7F}4ӕK6uzń_єnv*F AIL 0 1 0 UCAW )0'10 U A user10 &,d testpq2a5f48d0-8d6b-1329-67b9-e657e5313ede.object0000664000076400007640000000271213470043301033040 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/tests/softhsm/3e606151-441f-fd0b-2b41-bd372ec8723fRSA00DQ/0  *H  0 1 0 UCA0"20130706145205Z20230515145205Z0'10 UA user10 &,dtest0R0  *H ?0:1Tyx-HQe@RI]p&h9o@E"qZX(y^2%>;4/7b2SC,]5+4f֧ЃVt0-([z͜\Q Hq4w]xH 7 e;+rR_` Cf&)>jb X&D׌ov 䘷rz]O #.q0_u g}MvdJPǏy>/3'M`$r=)J<I>&z=EZM*cO-c(;GG|,A2ɾU,kF*V)v0t0 U00U% 0 +0U0U K;!kL]@^0U#0H#4S 18JZʶҦ+0  *H  1kl aWA*FDl`>/[EjP-ǀuY{TkmE H `0^5RUD|=mX5Aʛt6tu c LQbz漣DzQ o*-uh):3 cO tbcdefpq@openconnect-8.05/tests/softhsm/78239b73-64e9-44df-76cf-8dc68ccc7dab/0000775000076400007640000000000013470043301025415 5ustar00dwoodhoudwoodhou0000000000000048007f21-a8e2-d606-fab0-de8393d2c322.object0000664000076400007640000000162313470043301033300 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/tests/softhsm/78239b73-64e9-44df-76cf-8dc68ccc7dab V]iX†hZ1^k?m0M&4, ?ʎ ʑm(a,,`B6    P,B'Dskg;E7K^m e9VO?}J Bs,J5#÷_Ē  #)uޑsv=S3.h#a.Ҹgw+٨ĔT-¯,(Tg^äu%E TqjH y __r{ s]eK^e OlTۇ=&m$] /y\$QMfU["ɥ&6'$TfmRlby?+O7w J FYw $ϼČAGR \jQb_wHe! " pYԏBUh 6:Ecfpq@d5e1dd1e-63d2-49d5-65dc-117c1394b687.object0000664000076400007640000000211413470043301033317 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/tests/softhsm/78239b73-64e9-44df-76cf-8dc68ccc7dabEC00W0  *H  0 1 0 UCA0 160831164053Z 260829164053Z0'10 U A user10 &,d test0Y0*H=*H=BOr*Y@7LZ*틙pt |c1bcql*7db3c773-52be-09fb-eee9-dc260ef904ce.lock0000664000076400007640000000000013456421060033361 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/tests/softhsm/78239b73-64e9-44df-76cf-8dc68ccc7dabopenconnect-8.05/tests/softhsm/78239b73-64e9-44df-76cf-8dc68ccc7dab/token.lock0000664000076400007640000000000013457275527027423 0ustar00dwoodhoudwoodhou00000000000000d4f69eea-d907-a976-5814-dc67c560fe4c.lock0000664000076400007640000000000013456420123033157 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/tests/softhsm/78239b73-64e9-44df-76cf-8dc68ccc7dabd4f69eea-d907-a976-5814-dc67c560fe4c.object0000664000076400007640000000265513470043301033512 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/tests/softhsm/78239b73-64e9-44df-76cf-8dc68ccc7dabDSAs0o0'W0  *H  0 1 0 UCA0 160919124550Z 260917124550Z0'10 U A user10 &,d test00+*H80z -ť A-"u y05m(q,H˦k]/rfC2WX[X4<ӺUcYlIE4++o9kA´Xx\ќug?E,bUvEz%K|O5[ɤl3N.z }Fľ،0଴CAʛt6tu c LQbz漣DzQ o*-uh):3 cO ti  \CfgE{oIz±F/j3΢s>\4>.&s4SYmS\4)1ֈGF864:ȗ{<̺^('I]G0  *H  12fv x6qw4QTӍ;y:<ʶcmjn^]A:t!#K}-Z:¬pA*nϲa=xoT%_zGI֡8E]ͯzS .xhHh6dF[c]5Ic pÄq;c͍V>1R 䌵GR2td@PplYt6Tf4AM`Ds7F}4ӕK6uzń_єnv*F AIL 0 1 0 UCAW )0'10 U A user10 &,d testpqopenconnect-8.05/tests/softhsm/78239b73-64e9-44df-76cf-8dc68ccc7dab/generation0000664000076400007640000000001013457275527027510 0ustar00dwoodhoudwoodhou0000000000000048007f21-a8e2-d606-fab0-de8393d2c322.lock0000664000076400007640000000000013456421060032754 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/tests/softhsm/78239b73-64e9-44df-76cf-8dc68ccc7dab5d7b9111-1c2f-e2cb-d67b-5cf6683b3ff9.object0000664000076400007640000000121313470043301033536 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/tests/softhsm/78239b73-64e9-44df-76cf-8dc68ccc7dab XY, >8N=k?+Иx ހ*#L( -rdb> &G   cfpq L8Q)ݒp ?'K`زa7ȈiczG]dS~ؽ$3R‚Ři-[#Q=Q-ąg)XYs}pjXBME_ɝ(:;@d5e1dd1e-63d2-49d5-65dc-117c1394b687.lock0000664000076400007640000000000013456420123032776 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/tests/softhsm/78239b73-64e9-44df-76cf-8dc68ccc7daba14b1c07-fd7b-bec1-d93b-03727572ea70.object0000664000076400007640000000271213470043301033434 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/tests/softhsm/78239b73-64e9-44df-76cf-8dc68ccc7dabRSA00DQ/0  *H  0 1 0 UCA0"20130706145205Z20230515145205Z0'10 UA user10 &,dtest0R0  *H ?0:1Tyx-HQe@RI]p&h9o@E"qZX(y^2%>;4/7b2SC,]5+4f֧ЃVt0-([z͜\Q Hq4w]xH 7 e;+rR_` Cf&)>jb X&D׌ov 䘷rz]O #.q0_u g}MvdJPǏy>/3'M`$r=)J<I>&z=EZM*cO-c(;GG|,A2ɾU,kF*V)v0t0 U00U% 0 +0U0U K;!kL]@^0U#0H#4S 18JZʶҦ+0  *H  1kl aWA*FDl`>/[EjP-ǀuY{TkmE H `0^5RUD|=mX5dsnZGB7E\Nywr %4ߝ#*ze s<#Njo9 "uĆM8 (*  bcdefpq B~#80So~S@a14b1c07-fd7b-bec1-d93b-03727572ea70.lock0000664000076400007640000000000013456420123033107 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/tests/softhsm/78239b73-64e9-44df-76cf-8dc68ccc7dab7db3c773-52be-09fb-eee9-dc260ef904ce.object0000664000076400007640000000444013470043301033705 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/tests/softhsm/78239b73-64e9-44df-76cf-8dc68ccc7dab$ QD&);LQ3i2"f 7[k@5?{֡Ԉ   P4Q./QHNsC D(Q )}ݣss8F"숓0* Sߘڥ3> I ݜ*WfA 9ڮ5* Ա-W}! D` 89bJň G](h <Bn_ `X ;^"l0Zv'٬C!6I5l6\Ac{)cq*kUaE-zU MǞvBrdc\7ЌϼUy&/2 $}'MsϝB`pv-3u :+F&88V<;tTn<$ckH63_߀ǛF1fRǡ6gQ4Kb.(Ű qJ%.d١3c5DP^i ozqūZځ|{h&a8Y/3W g[ `0#io%*vPIA}Ry-.t D#|#fWLY|OPyPߩŐժ;7ZbAB>IHQ}Ɔ+>vK <Pdxժ=wE\) -f'>4ՠKcGJm7zc1܄&7U78Kӻ.B7>NŬg- jpuxW9B}V+Bˇnw'Dc}5*B7(OƗ{kdmf`'/d 6nLN)Is=J&6#F2cQ!PeԻxʓ"Mwۂk_VI舒o;s&20kٝU@R!U܊Zo6|0Auo ,hs{kGXYbcdefpq@openconnect-8.05/tests/Makefile.am0000664000076400007640000002302513415754606020750 0ustar00dwoodhoudwoodhou00000000000000 certsdir=$(srcdir)/certs USER_KEYS = \ $(certsdir)/user-key-pkcs1.pem $(certsdir)/user-key-pkcs1.der \ $(certsdir)/user-key-pkcs1-aes128.pem \ $(certsdir)/user-key-pkcs8.pem $(certsdir)/user-key-pkcs8.der \ $(certsdir)/user-key-pkcs8-pbes1-sha1-3des.pem $(certsdir)/user-key-pkcs8-pbes1-sha1-3des.der \ $(certsdir)/user-key-pkcs8-pbes2-sha1.pem $(certsdir)/user-key-pkcs8-pbes2-sha1.der \ $(certsdir)/user-key-sha1-3des-sha1.p12 $(certsdir)/user-key-sha1-3des-sha256.p12 \ $(certsdir)/user-key-aes256-cbc-sha256.p12 # We know GnuTLS doesn't support these for now. https://bugzilla.redhat.com/1369484 OSSL_KEYS = \ $(certsdir)/user-key-md5-des-sha1.p12 $(certsdir)/user-key-aes256-cbc-md5-des-sha256.p12 \ $(certsdir)/user-key-pkcs8-pbes2-sha256.pem $(certsdir)/user-key-pkcs8-pbes2-sha256.der \ $(certsdir)/user-key-pkcs8-pbes1-md5-des.pem $(certsdir)/user-key-pkcs8-pbes1-md5-des.der if OPENCONNECT_OPENSSL USER_KEYS += $(OSSL_KEYS) endif DSA_KEYS = \ $(certsdir)/dsa-key-pkcs1.pem $(certsdir)/dsa-key-pkcs1.der \ $(certsdir)/dsa-key-pkcs1-aes128.pem \ $(certsdir)/dsa-key-pkcs8.pem $(certsdir)/dsa-key-pkcs8.der \ $(certsdir)/dsa-key-pkcs8-pbes2-sha1.pem $(certsdir)/dsa-key-pkcs8-pbes2-sha1.der \ $(certsdir)/dsa-key-aes256-cbc-sha256.p12 if TEST_DSA USER_KEYS += $(DSA_KEYS) endif USER_KEYS += $(certsdir)/ec-key-pkcs1.pem $(certsdir)/ec-key-pkcs1.der \ $(certsdir)/ec-key-pkcs1-aes128.pem \ $(certsdir)/ec-key-pkcs8.pem $(certsdir)/ec-key-pkcs8.der \ $(certsdir)/ec-key-pkcs8-pbes2-sha1.pem $(certsdir)/ec-key-pkcs8-pbes2-sha1.der \ $(certsdir)/ec-key-aes256-cbc-sha256.p12 USER_CERTS = $(certsdir)/user-cert.pem $(certsdir)/dsa-cert.pem $(certsdir)/ec-cert.pem EXTRA_DIST = certs/ca.pem certs/ca-key.pem certs/user-cert.pem $(USER_KEYS) $(USER_CERTS) \ $(OSSL_KEYS) $(DSA_KEYS) $(certsdir)/user-key-nonascii-password.p12 \ pass-UTF-8 pass-ISO8859-2 \ certs/server-cert.pem certs/server-key.pem configs/test1.passwd \ common.sh configs/test-user-cert.config configs/test-user-pass.config \ configs/user-cert.prm softhsm2.conf.in softhsm ns.sh configs/test-dtls-psk.config \ scripts/vpnc-script scripts/vpnc-script-detect-disconnect dist_check_SCRIPTS = if HAVE_NETNS dist_check_SCRIPTS += dtls-psk sigterm endif if HAVE_CWRAP dist_check_SCRIPTS += auth-username-pass auth-certificate auth-nonascii id-test if TEST_PKCS11 dist_check_SCRIPTS += auth-pkcs11 PKCS11_TOKENS = openconnect-test openconnect-test1 PKCS11_KEYS = object=RSA id=%01 # Neither GnuTLS or libp11 support this #PKCS11_KEYS += object=DSA id=%02 PKCS11_KEYS += object=EC id=%03 if OPENCONNECT_GNUTLS # We fail test2 because PKCS11_enumerate_certs() still doesn't seem to return # the certs after we log in. Perhaps it's cached the results? PKCS11_TOKENS += openconnect-test2 endif # OPENCONNECT_GNUTLS endif # TEST_PKCS11 endif # HAVE_CWRAP TESTS_ENVIRONMENT = srcdir="$(srcdir)" \ top_builddir="$(top_builddir)" \ key_list="$(USER_KEYS)" \ pkcs11_keys="$(PKCS11_KEYS)" \ pkcs11_tokens="$(PKCS11_TOKENS)" C_TESTS = lzstest seqtest if CHECK_DTLS C_TESTS += bad_dtls_test bad_dtls_test_SOURCES = bad_dtls_test.c bad_dtls_test_CFLAGS = $(OPENSSL_CFLAGS) bad_dtls_test_LDADD = $(OPENSSL_LIBS) if DTLS_XFAIL XFAIL_TESTS = bad_dtls_test endif endif TESTS = $(dist_check_SCRIPTS) $(C_TESTS) noinst_PROGRAMS = $(C_TESTS) serverhash serverhash_SOURCES = serverhash.c serverhash_LDADD = ../libopenconnect.la $(SSL_LIBS) # Nothing actually *depends* on the cert files; they are created manually # and considered part of the sources, committed to the git tree. But for # reference, the commands used to generate them are here... keyfiles: $(USER_KEYS) $(USER_CERTS) OPENSSL = openssl OSSLARGS = -in $< -out $@ -passout pass:password OSSLARGSP12 = -inkey $< -out $@ -in $${KEYFILE%-key-pkcs8.pem}-cert.pem -passout pass:$${PASSWORD%-password} # Strictly speaking this is only PKCS#1 for RSA. For EC it's probably # best described as RFC5915§4, and no idea what defines it for DSA. $(certsdir)/user-key-pkcs1.pem: $(OPENSSL) genrsa -out $@ 2432 $(certsdir)/dsa-key-pkcs1.pem: $(OPENSSL) dsaparam -genkey 1024 -out $@ $(certsdir)/ec-key-pkcs1.pem: $(OPENSSL) ecparam -genkey -out $@ -name prime256v1 # Even in OpenSSL 1.1, this creates the old encrypted PEM format. $(certsdir)/user-key-pkcs1-aes128.pem: certs/user-key-pkcs1.pem $(OPENSSL) rsa $(OSSLARGS) -aes128 $(certsdir)/dsa-key-pkcs1-aes128.pem: certs/dsa-key-pkcs1.pem $(OPENSSL) dsa $(OSSLARGS) -aes128 $(certsdir)/ec-key-pkcs1-aes128.pem: certs/ec-key-pkcs1.pem $(OPENSSL) ec $(OSSLARGS) -aes128 # Plain unencrypted PKCS#8 %-key-pkcs8.pem: %-key-pkcs1.pem $(OPENSSL) pkcs8 $(OSSLARGS) -topk8 -nocrypt %-key-pkcs8-pbes1-sha1-3des.pem: %-key-pkcs8.pem $(OPENSSL) pkcs8 $(OSSLARGS) -topk8 -v1 pbeWithSHA1And3-KeyTripleDES-CBC # This is the default created by OpenSSL 1.0.2 with -topk8 %-key-pkcs8-pbes1-md5-des.pem: %-key-pkcs8.pem $(OPENSSL) pkcs8 $(OSSLARGS) -topk8 -v1 pbeWithMD5AndDES-CBC %-key-pkcs8-pbes2-sha1.pem: %-key-pkcs8.pem $(OPENSSL) pkcs8 $(OSSLARGS) -topk8 -v2 aes256 -v2prf hmacWithSHA1 # This is the default created by OpenSSL 1.1 with -topk8 %-key-pkcs8-pbes2-sha256.pem: %-key-pkcs8.pem $(OPENSSL) pkcs8 $(OSSLARGS) -topk8 -v2 aes256 -v2prf hmacWithSHA256 %-key-sha1-3des-sha1.p12: %-key-pkcs8.pem %-cert.pem KEYFILE="$<"; $(OPENSSL) pkcs12 $(OSSLARGSP12) -export -macalg SHA1 \ -certpbe pbeWithSHA1And3-KeyTripleDES-CBC -keypbe pbeWithSHA1And3-KeyTripleDES-CBC %-key-sha1-3des-sha256.p12: %-key-pkcs8.pem %-cert.pem KEYFILE="$<"; $(OPENSSL) pkcs12 $(OSSLARGSP12) -export -macalg SHA256 \ -certpbe pbeWithSHA1And3-KeyTripleDES-CBC -keypbe pbeWithSHA1And3-KeyTripleDES-CBC %-key-md5-des-sha1.p12: %-key-pkcs8.pem %-cert.pem KEYFILE="$<"; $(OPENSSL) pkcs12 $(OSSLARGSP12) -export -macalg SHA1 \ -certpbe pbeWithMD5AndDES-CBC -keypbe pbeWithMD5AndDES-CBC %-key-aes256-cbc-sha256.p12: %-key-pkcs8.pem %-cert.pem KEYFILE="$<"; $(OPENSSL) pkcs12 $(OSSLARGSP12) -export -macalg SHA256 \ -certpbe AES-256-CBC -keypbe AES-256-CBC # NB: Needs OpenSSL 1.1 or newer %-key-nonascii-password.p12: %-key-pkcs8.pem %-cert.pem LC_ALL=en_GB.UTF-8 PASSWORD="$$(cat $(srcdir)/pass-UTF-8)" KEYFILE="$<" ; \ $(OPENSSL) pkcs12 $(OSSLARGSP12) -export -macalg SHA256 \ -certpbe AES-256-CBC -keypbe AES-256-CBC # This one makes GnuTLS behave strangely... %-key-aes256-cbc-md5-des-sha256.p12: %-key-pkcs8.pem %-cert.pem KEYFILE="$<"; $(OPENSSL) pkcs12 $(OSSLARGSP12) -export -macalg SHA256 \ -certpbe AES-256-CBC -keypbe pbeWithMD5AndDES-CBC %.der: %.pem sed -e '0,/^-----BEGIN.*KEY-----/d' -e '/^-----END.*KEY-----/,$$d' $< | base64 -d > $@ %-cert.csr: %-key-pkcs8.pem $(OPENSSL) req -new -config $(srcdir)/configs/user-cert.prm -key $< -out $@ %.pem: %.csr $(OPENSSL) x509 -days 3650 -CA $(certsdir)/ca.pem -CAkey $(certsdir)/ca-key.pem \ -set_serial $(shell date +%s) -req -out $@ -in $< SHM2_UTIL=SOFTHSM2_CONF=softhsm2.conf softhsm2-util P11TOOL=SOFTHSM2_CONF=softhsm2.conf p11tool # Nice and simple: Certs visible without login, public keys present in token softhsm-setup0: $(SHM2_UTIL) --show-slots $(SHM2_UTIL) --init-token --slot 0 --label openconnect-test \ --so-pin 12345678 --pin 1234 $(SHM2_UTIL) --slot 0 --pin 1234 --import $(certsdir)/user-key-pkcs8.pem \ --label RSA --id 01 $(P11TOOL) --load-certificate $(certsdir)/user-cert.pem --no-mark-private \ --label RSA --id 01 --set-pin 1234 --login \ --write "pkcs11:token=openconnect-test;pin-value=1234" $(SHM2_UTIL) --slot 0 --pin 1234 --import $(certsdir)/dsa-key-pkcs8.pem \ --label DSA --id 02 $(P11TOOL) --load-certificate $(certsdir)/dsa-cert.pem --no-mark-private \ --label DSA --id 02 --set-pin 1234 --login \ --write "pkcs11:token=openconnect-test;pin-value=1234" $(SHM2_UTIL) --slot 0 --pin 1234 --import $(certsdir)/ec-key-pkcs8.pem \ --label EC --id 03 $(P11TOOL) --load-certificate $(certsdir)/ec-cert.pem --no-mark-private \ --label EC --id 03 --set-pin 1234 --login \ --write "pkcs11:token=openconnect-test;pin-value=1234" # Second test: Import keys with GnuTLS so public key is absent softhsm-setup1: $(SHM2_UTIL) --show-slots $(SHM2_UTIL) --init-token --slot 1 --label openconnect-test1 \ --so-pin 12345678 --pin 1234 $(P11TOOL) --load-certificate $(certsdir)/user-cert.pem --no-mark-private \ --load-privkey $(certsdir)/user-key-pkcs8.pem \ --label RSA --id 01 --login \ --write "pkcs11:token=openconnect-test1;pin-value=1234" $(P11TOOL) --load-certificate $(certsdir)/dsa-cert.pem --no-mark-private \ --load-privkey $(certsdir)/dsa-key-pkcs8.pem \ --label DSA --id 02 --login \ --write "pkcs11:token=openconnect-test1;pin-value=1234" $(P11TOOL) --load-certificate $(certsdir)/ec-cert.pem --no-mark-private \ --load-privkey $(certsdir)/ec-key-pkcs8.pem \ --label EC --id 03 --login \ --write "pkcs11:token=openconnect-test1;pin-value=1234" # Third test: CKA_PRIVATE on certificates softhsm-setup2: $(SHM2_UTIL) --show-slots $(SHM2_UTIL) --init-token --slot 2 --label openconnect-test2 \ --so-pin 12345678 --pin 1234 $(P11TOOL) --load-certificate $(certsdir)/user-cert.pem \ --load-privkey $(certsdir)/user-key-pkcs8.pem \ --label RSA --id 01 --login \ --write "pkcs11:token=openconnect-test2;pin-value=1234" $(P11TOOL) --load-certificate $(certsdir)/dsa-cert.pem \ --load-privkey $(certsdir)/dsa-key-pkcs8.pem \ --label DSA --id 02 --login \ --write "pkcs11:token=openconnect-test2;pin-value=1234" $(P11TOOL) --load-certificate $(certsdir)/ec-cert.pem \ --load-privkey $(certsdir)/ec-key-pkcs8.pem \ --label EC --id 03 --login \ --write "pkcs11:token=openconnect-test2;pin-value=1234" openconnect-8.05/tests/Makefile.in0000664000076400007640000014434613536301674020770 0ustar00dwoodhoudwoodhou00000000000000# Makefile.in generated by automake 1.16.1 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2018 Free Software Foundation, Inc. # This Makefile.in is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY, to the extent permitted by law; without # even the implied warranty of MERCHANTABILITY or FITNESS FOR A # PARTICULAR PURPOSE. @SET_MAKE@ VPATH = @srcdir@ am__is_gnu_make = { \ if test -z '$(MAKELEVEL)'; then \ false; \ elif test -n '$(MAKE_HOST)'; then \ true; \ elif test -n '$(MAKE_VERSION)' && test -n '$(CURDIR)'; then \ true; \ else \ false; \ fi; \ } am__make_running_with_option = \ case $${target_option-} in \ ?) ;; \ *) echo "am__make_running_with_option: internal error: invalid" \ "target option '$${target_option-}' specified" >&2; \ exit 1;; \ esac; \ has_opt=no; \ sane_makeflags=$$MAKEFLAGS; \ if $(am__is_gnu_make); then \ sane_makeflags=$$MFLAGS; \ else \ case $$MAKEFLAGS in \ *\\[\ \ ]*) \ bs=\\; \ sane_makeflags=`printf '%s\n' "$$MAKEFLAGS" \ | sed "s/$$bs$$bs[$$bs $$bs ]*//g"`;; \ esac; \ fi; \ skip_next=no; \ strip_trailopt () \ { \ flg=`printf '%s\n' "$$flg" | sed "s/$$1.*$$//"`; \ }; \ for flg in $$sane_makeflags; do \ test $$skip_next = yes && { skip_next=no; continue; }; \ case $$flg in \ *=*|--*) continue;; \ -*I) strip_trailopt 'I'; skip_next=yes;; \ -*I?*) strip_trailopt 'I';; \ -*O) strip_trailopt 'O'; skip_next=yes;; \ -*O?*) strip_trailopt 'O';; \ -*l) strip_trailopt 'l'; skip_next=yes;; \ -*l?*) strip_trailopt 'l';; \ -[dEDm]) skip_next=yes;; \ -[JT]) skip_next=yes;; \ esac; \ case $$flg in \ *$$target_option*) has_opt=yes; break;; \ esac; \ done; \ test $$has_opt = yes am__make_dryrun = (target_option=n; $(am__make_running_with_option)) am__make_keepgoing = (target_option=k; $(am__make_running_with_option)) pkgdatadir = $(datadir)/@PACKAGE@ pkgincludedir = $(includedir)/@PACKAGE@ pkglibdir = $(libdir)/@PACKAGE@ pkglibexecdir = $(libexecdir)/@PACKAGE@ am__cd = CDPATH="$${ZSH_VERSION+.}$(PATH_SEPARATOR)" && cd install_sh_DATA = $(install_sh) -c -m 644 install_sh_PROGRAM = $(install_sh) -c install_sh_SCRIPT = $(install_sh) -c INSTALL_HEADER = $(INSTALL_DATA) transform = $(program_transform_name) NORMAL_INSTALL = : PRE_INSTALL = : POST_INSTALL = : NORMAL_UNINSTALL = : PRE_UNINSTALL = : POST_UNINSTALL = : build_triplet = @build@ host_triplet = @host@ @OPENCONNECT_OPENSSL_TRUE@am__append_1 = $(OSSL_KEYS) @TEST_DSA_TRUE@am__append_2 = $(DSA_KEYS) @HAVE_NETNS_TRUE@am__append_3 = dtls-psk sigterm @HAVE_CWRAP_TRUE@am__append_4 = auth-username-pass auth-certificate auth-nonascii id-test @HAVE_CWRAP_TRUE@@TEST_PKCS11_TRUE@am__append_5 = auth-pkcs11 # We fail test2 because PKCS11_enumerate_certs() still doesn't seem to return # the certs after we log in. Perhaps it's cached the results? @HAVE_CWRAP_TRUE@@OPENCONNECT_GNUTLS_TRUE@@TEST_PKCS11_TRUE@am__append_6 = openconnect-test2 @CHECK_DTLS_TRUE@am__append_7 = bad_dtls_test @CHECK_DTLS_TRUE@@DTLS_XFAIL_TRUE@XFAIL_TESTS = \ @CHECK_DTLS_TRUE@@DTLS_XFAIL_TRUE@ bad_dtls_test$(EXEEXT) TESTS = $(dist_check_SCRIPTS) $(am__EXEEXT_2) noinst_PROGRAMS = $(am__EXEEXT_2) serverhash$(EXEEXT) subdir = tests ACLOCAL_M4 = $(top_srcdir)/aclocal.m4 am__aclocal_m4_deps = $(top_srcdir)/m4/ax_check_vscript.m4 \ $(top_srcdir)/m4/iconv.m4 $(top_srcdir)/m4/lib-ld.m4 \ $(top_srcdir)/m4/lib-link.m4 $(top_srcdir)/m4/lib-prefix.m4 \ $(top_srcdir)/m4/libtool.m4 $(top_srcdir)/m4/ltoptions.m4 \ $(top_srcdir)/m4/ltsugar.m4 $(top_srcdir)/m4/ltversion.m4 \ $(top_srcdir)/m4/lt~obsolete.m4 $(top_srcdir)/acinclude.m4 \ $(top_srcdir)/configure.ac am__configure_deps = $(am__aclocal_m4_deps) $(CONFIGURE_DEPENDENCIES) \ $(ACLOCAL_M4) DIST_COMMON = $(srcdir)/Makefile.am $(am__dist_check_SCRIPTS_DIST) \ $(am__DIST_COMMON) mkinstalldirs = $(install_sh) -d CONFIG_HEADER = $(top_builddir)/config.h CONFIG_CLEAN_FILES = softhsm2.conf CONFIG_CLEAN_VPATH_FILES = @CHECK_DTLS_TRUE@am__EXEEXT_1 = bad_dtls_test$(EXEEXT) am__EXEEXT_2 = lzstest$(EXEEXT) seqtest$(EXEEXT) $(am__EXEEXT_1) PROGRAMS = $(noinst_PROGRAMS) am__bad_dtls_test_SOURCES_DIST = bad_dtls_test.c @CHECK_DTLS_TRUE@am_bad_dtls_test_OBJECTS = \ @CHECK_DTLS_TRUE@ bad_dtls_test-bad_dtls_test.$(OBJEXT) bad_dtls_test_OBJECTS = $(am_bad_dtls_test_OBJECTS) am__DEPENDENCIES_1 = @CHECK_DTLS_TRUE@bad_dtls_test_DEPENDENCIES = $(am__DEPENDENCIES_1) AM_V_lt = $(am__v_lt_@AM_V@) am__v_lt_ = $(am__v_lt_@AM_DEFAULT_V@) am__v_lt_0 = --silent am__v_lt_1 = bad_dtls_test_LINK = $(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) \ $(LIBTOOLFLAGS) --mode=link $(CCLD) $(bad_dtls_test_CFLAGS) \ $(CFLAGS) $(AM_LDFLAGS) $(LDFLAGS) -o $@ lzstest_SOURCES = lzstest.c lzstest_OBJECTS = lzstest.$(OBJEXT) lzstest_LDADD = $(LDADD) seqtest_SOURCES = seqtest.c seqtest_OBJECTS = seqtest.$(OBJEXT) seqtest_LDADD = $(LDADD) am_serverhash_OBJECTS = serverhash.$(OBJEXT) serverhash_OBJECTS = $(am_serverhash_OBJECTS) serverhash_DEPENDENCIES = ../libopenconnect.la $(am__DEPENDENCIES_1) am__dist_check_SCRIPTS_DIST = dtls-psk sigterm auth-username-pass \ auth-certificate auth-nonascii id-test auth-pkcs11 AM_V_P = $(am__v_P_@AM_V@) am__v_P_ = $(am__v_P_@AM_DEFAULT_V@) am__v_P_0 = false am__v_P_1 = : AM_V_GEN = $(am__v_GEN_@AM_V@) am__v_GEN_ = $(am__v_GEN_@AM_DEFAULT_V@) am__v_GEN_0 = @echo " GEN " $@; am__v_GEN_1 = AM_V_at = $(am__v_at_@AM_V@) am__v_at_ = $(am__v_at_@AM_DEFAULT_V@) am__v_at_0 = @ am__v_at_1 = DEFAULT_INCLUDES = -I.@am__isrc@ -I$(top_builddir) depcomp = $(SHELL) $(top_srcdir)/depcomp am__maybe_remake_depfiles = depfiles am__depfiles_remade = ./$(DEPDIR)/bad_dtls_test-bad_dtls_test.Po \ ./$(DEPDIR)/lzstest.Po ./$(DEPDIR)/seqtest.Po \ ./$(DEPDIR)/serverhash.Po am__mv = mv -f COMPILE = $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) \ $(CPPFLAGS) $(AM_CFLAGS) $(CFLAGS) LTCOMPILE = $(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) \ $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) \ $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) \ $(AM_CFLAGS) $(CFLAGS) AM_V_CC = $(am__v_CC_@AM_V@) am__v_CC_ = $(am__v_CC_@AM_DEFAULT_V@) am__v_CC_0 = @echo " CC " $@; am__v_CC_1 = CCLD = $(CC) LINK = $(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) \ $(LIBTOOLFLAGS) --mode=link $(CCLD) $(AM_CFLAGS) $(CFLAGS) \ $(AM_LDFLAGS) $(LDFLAGS) -o $@ AM_V_CCLD = $(am__v_CCLD_@AM_V@) am__v_CCLD_ = $(am__v_CCLD_@AM_DEFAULT_V@) am__v_CCLD_0 = @echo " CCLD " $@; am__v_CCLD_1 = SOURCES = $(bad_dtls_test_SOURCES) lzstest.c seqtest.c \ $(serverhash_SOURCES) DIST_SOURCES = $(am__bad_dtls_test_SOURCES_DIST) lzstest.c seqtest.c \ $(serverhash_SOURCES) am__can_run_installinfo = \ case $$AM_UPDATE_INFO_DIR in \ n|no|NO) false;; \ *) (install-info --version) >/dev/null 2>&1;; \ esac am__tagged_files = $(HEADERS) $(SOURCES) $(TAGS_FILES) $(LISP) # Read a list of newline-separated strings from the standard input, # and print each of them once, without duplicates. Input order is # *not* preserved. am__uniquify_input = $(AWK) '\ BEGIN { nonempty = 0; } \ { items[$$0] = 1; nonempty = 1; } \ END { if (nonempty) { for (i in items) print i; }; } \ ' # Make sure the list of sources is unique. This is necessary because, # e.g., the same source file might be shared among _SOURCES variables # for different programs/libraries. am__define_uniq_tagged_files = \ list='$(am__tagged_files)'; \ unique=`for i in $$list; do \ if test -f "$$i"; then echo $$i; else echo $(srcdir)/$$i; fi; \ done | $(am__uniquify_input)` ETAGS = etags CTAGS = ctags am__tty_colors_dummy = \ mgn= red= grn= lgn= blu= brg= std=; \ am__color_tests=no am__tty_colors = { \ $(am__tty_colors_dummy); \ if test "X$(AM_COLOR_TESTS)" = Xno; then \ am__color_tests=no; \ elif test "X$(AM_COLOR_TESTS)" = Xalways; then \ am__color_tests=yes; \ elif test "X$$TERM" != Xdumb && { test -t 1; } 2>/dev/null; then \ am__color_tests=yes; \ fi; \ if test $$am__color_tests = yes; then \ red=''; \ grn=''; \ lgn=''; \ blu=''; \ mgn=''; \ brg=''; \ std=''; \ fi; \ } am__vpath_adj_setup = srcdirstrip=`echo "$(srcdir)" | sed 's|.|.|g'`; am__vpath_adj = case $$p in \ $(srcdir)/*) f=`echo "$$p" | sed "s|^$$srcdirstrip/||"`;; \ *) f=$$p;; \ esac; am__strip_dir = f=`echo $$p | sed -e 's|^.*/||'`; am__install_max = 40 am__nobase_strip_setup = \ srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*|]/\\\\&/g'` am__nobase_strip = \ for p in $$list; do echo "$$p"; done | sed -e "s|$$srcdirstrip/||" am__nobase_list = $(am__nobase_strip_setup); \ for p in $$list; do echo "$$p $$p"; done | \ sed "s| $$srcdirstrip/| |;"' / .*\//!s/ .*/ ./; s,\( .*\)/[^/]*$$,\1,' | \ $(AWK) 'BEGIN { files["."] = "" } { files[$$2] = files[$$2] " " $$1; \ if (++n[$$2] == $(am__install_max)) \ { print $$2, files[$$2]; n[$$2] = 0; files[$$2] = "" } } \ END { for (dir in files) print dir, files[dir] }' am__base_list = \ sed '$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;s/\n/ /g' | \ sed '$$!N;$$!N;$$!N;$$!N;s/\n/ /g' am__uninstall_files_from_dir = { \ test -z "$$files" \ || { test ! -d "$$dir" && test ! -f "$$dir" && test ! -r "$$dir"; } \ || { echo " ( cd '$$dir' && rm -f" $$files ")"; \ $(am__cd) "$$dir" && rm -f $$files; }; \ } am__recheck_rx = ^[ ]*:recheck:[ ]* am__global_test_result_rx = ^[ ]*:global-test-result:[ ]* am__copy_in_global_log_rx = ^[ ]*:copy-in-global-log:[ ]* # A command that, given a newline-separated list of test names on the # standard input, print the name of the tests that are to be re-run # upon "make recheck". am__list_recheck_tests = $(AWK) '{ \ recheck = 1; \ while ((rc = (getline line < ($$0 ".trs"))) != 0) \ { \ if (rc < 0) \ { \ if ((getline line2 < ($$0 ".log")) < 0) \ recheck = 0; \ break; \ } \ else if (line ~ /$(am__recheck_rx)[nN][Oo]/) \ { \ recheck = 0; \ break; \ } \ else if (line ~ /$(am__recheck_rx)[yY][eE][sS]/) \ { \ break; \ } \ }; \ if (recheck) \ print $$0; \ close ($$0 ".trs"); \ close ($$0 ".log"); \ }' # A command that, given a newline-separated list of test names on the # standard input, create the global log from their .trs and .log files. am__create_global_log = $(AWK) ' \ function fatal(msg) \ { \ print "fatal: making $@: " msg | "cat >&2"; \ exit 1; \ } \ function rst_section(header) \ { \ print header; \ len = length(header); \ for (i = 1; i <= len; i = i + 1) \ printf "="; \ printf "\n\n"; \ } \ { \ copy_in_global_log = 1; \ global_test_result = "RUN"; \ while ((rc = (getline line < ($$0 ".trs"))) != 0) \ { \ if (rc < 0) \ fatal("failed to read from " $$0 ".trs"); \ if (line ~ /$(am__global_test_result_rx)/) \ { \ sub("$(am__global_test_result_rx)", "", line); \ sub("[ ]*$$", "", line); \ global_test_result = line; \ } \ else if (line ~ /$(am__copy_in_global_log_rx)[nN][oO]/) \ copy_in_global_log = 0; \ }; \ if (copy_in_global_log) \ { \ rst_section(global_test_result ": " $$0); \ while ((rc = (getline line < ($$0 ".log"))) != 0) \ { \ if (rc < 0) \ fatal("failed to read from " $$0 ".log"); \ print line; \ }; \ printf "\n"; \ }; \ close ($$0 ".trs"); \ close ($$0 ".log"); \ }' # Restructured Text title. am__rst_title = { sed 's/.*/ & /;h;s/./=/g;p;x;s/ *$$//;p;g' && echo; } # Solaris 10 'make', and several other traditional 'make' implementations, # pass "-e" to $(SHELL), and POSIX 2008 even requires this. Work around it # by disabling -e (using the XSI extension "set +e") if it's set. am__sh_e_setup = case $$- in *e*) set +e;; esac # Default flags passed to test drivers. am__common_driver_flags = \ --color-tests "$$am__color_tests" \ --enable-hard-errors "$$am__enable_hard_errors" \ --expect-failure "$$am__expect_failure" # To be inserted before the command running the test. Creates the # directory for the log if needed. Stores in $dir the directory # containing $f, in $tst the test, in $log the log. Executes the # developer- defined test setup AM_TESTS_ENVIRONMENT (if any), and # passes TESTS_ENVIRONMENT. Set up options for the wrapper that # will run the test scripts (or their associated LOG_COMPILER, if # thy have one). am__check_pre = \ $(am__sh_e_setup); \ $(am__vpath_adj_setup) $(am__vpath_adj) \ $(am__tty_colors); \ srcdir=$(srcdir); export srcdir; \ case "$@" in \ */*) am__odir=`echo "./$@" | sed 's|/[^/]*$$||'`;; \ *) am__odir=.;; \ esac; \ test "x$$am__odir" = x"." || test -d "$$am__odir" \ || $(MKDIR_P) "$$am__odir" || exit $$?; \ if test -f "./$$f"; then dir=./; \ elif test -f "$$f"; then dir=; \ else dir="$(srcdir)/"; fi; \ tst=$$dir$$f; log='$@'; \ if test -n '$(DISABLE_HARD_ERRORS)'; then \ am__enable_hard_errors=no; \ else \ am__enable_hard_errors=yes; \ fi; \ case " $(XFAIL_TESTS) " in \ *[\ \ ]$$f[\ \ ]* | *[\ \ ]$$dir$$f[\ \ ]*) \ am__expect_failure=yes;; \ *) \ am__expect_failure=no;; \ esac; \ $(AM_TESTS_ENVIRONMENT) $(TESTS_ENVIRONMENT) # A shell command to get the names of the tests scripts with any registered # extension removed (i.e., equivalently, the names of the test logs, with # the '.log' extension removed). The result is saved in the shell variable # '$bases'. This honors runtime overriding of TESTS and TEST_LOGS. Sadly, # we cannot use something simpler, involving e.g., "$(TEST_LOGS:.log=)", # since that might cause problem with VPATH rewrites for suffix-less tests. # See also 'test-harness-vpath-rewrite.sh' and 'test-trs-basic.sh'. am__set_TESTS_bases = \ bases='$(TEST_LOGS)'; \ bases=`for i in $$bases; do echo $$i; done | sed 's/\.log$$//'`; \ bases=`echo $$bases` RECHECK_LOGS = $(TEST_LOGS) AM_RECURSIVE_TARGETS = check recheck TEST_SUITE_LOG = test-suite.log TEST_EXTENSIONS = @EXEEXT@ .test LOG_DRIVER = $(SHELL) $(top_srcdir)/test-driver LOG_COMPILE = $(LOG_COMPILER) $(AM_LOG_FLAGS) $(LOG_FLAGS) am__set_b = \ case '$@' in \ */*) \ case '$*' in \ */*) b='$*';; \ *) b=`echo '$@' | sed 's/\.log$$//'`; \ esac;; \ *) \ b='$*';; \ esac am__test_logs1 = $(TESTS:=.log) am__test_logs2 = $(am__test_logs1:@EXEEXT@.log=.log) TEST_LOGS = $(am__test_logs2:.test.log=.log) TEST_LOG_DRIVER = $(SHELL) $(top_srcdir)/test-driver TEST_LOG_COMPILE = $(TEST_LOG_COMPILER) $(AM_TEST_LOG_FLAGS) \ $(TEST_LOG_FLAGS) am__DIST_COMMON = $(srcdir)/Makefile.in $(srcdir)/softhsm2.conf.in \ $(top_srcdir)/depcomp $(top_srcdir)/test-driver DISTFILES = $(DIST_COMMON) $(DIST_SOURCES) $(TEXINFOS) $(EXTRA_DIST) ACLOCAL = @ACLOCAL@ AMTAR = @AMTAR@ AM_DEFAULT_VERBOSITY = @AM_DEFAULT_VERBOSITY@ APIMAJOR = @APIMAJOR@ APIMINOR = @APIMINOR@ AR = @AR@ AUTOCONF = @AUTOCONF@ AUTOHEADER = @AUTOHEADER@ AUTOMAKE = @AUTOMAKE@ AWK = @AWK@ CC = @CC@ CCDEPMODE = @CCDEPMODE@ CFLAGS = @CFLAGS@ CONFIG_STATUS_DEPENDENCIES = @CONFIG_STATUS_DEPENDENCIES@ CPP = @CPP@ CPPFLAGS = @CPPFLAGS@ CWRAP_CFLAGS = @CWRAP_CFLAGS@ CWRAP_LIBS = @CWRAP_LIBS@ CYGPATH_W = @CYGPATH_W@ DEFAULT_VPNCSCRIPT = @DEFAULT_VPNCSCRIPT@ DEFS = @DEFS@ DEPDIR = @DEPDIR@ DLLTOOL = @DLLTOOL@ DSYMUTIL = @DSYMUTIL@ DUMPBIN = @DUMPBIN@ ECHO_C = @ECHO_C@ ECHO_N = @ECHO_N@ ECHO_T = @ECHO_T@ EGREP = @EGREP@ EXEEXT = @EXEEXT@ FGREP = @FGREP@ GITVERSIONDEPS = @GITVERSIONDEPS@ GNUTLS_CFLAGS = @GNUTLS_CFLAGS@ GNUTLS_LIBS = @GNUTLS_LIBS@ GREP = @GREP@ GROFF = @GROFF@ GSSAPI_CFLAGS = @GSSAPI_CFLAGS@ GSSAPI_LIBS = @GSSAPI_LIBS@ ICONV_CFLAGS = @ICONV_CFLAGS@ ICONV_LIBS = @ICONV_LIBS@ INSTALL = @INSTALL@ INSTALL_DATA = @INSTALL_DATA@ INSTALL_PROGRAM = @INSTALL_PROGRAM@ INSTALL_SCRIPT = @INSTALL_SCRIPT@ INSTALL_STRIP_PROGRAM = @INSTALL_STRIP_PROGRAM@ INTL_CFLAGS = @INTL_CFLAGS@ INTL_LIBS = @INTL_LIBS@ IP = @IP@ JNI_CFLAGS = @JNI_CFLAGS@ KRB5_CONFIG = @KRB5_CONFIG@ LD = @LD@ LDFLAGS = @LDFLAGS@ LIBICONV = @LIBICONV@ LIBLZ4_CFLAGS = @LIBLZ4_CFLAGS@ LIBLZ4_LIBS = @LIBLZ4_LIBS@ LIBLZ4_PC = @LIBLZ4_PC@ LIBOBJS = @LIBOBJS@ LIBP11_CFLAGS = @LIBP11_CFLAGS@ LIBP11_LIBS = @LIBP11_LIBS@ LIBPCSCLITE_CFLAGS = @LIBPCSCLITE_CFLAGS@ LIBPCSCLITE_LIBS = @LIBPCSCLITE_LIBS@ LIBPCSCLITE_PC = @LIBPCSCLITE_PC@ LIBPROXY_CFLAGS = @LIBPROXY_CFLAGS@ LIBPROXY_LIBS = @LIBPROXY_LIBS@ LIBPROXY_PC = @LIBPROXY_PC@ LIBPSKC_CFLAGS = @LIBPSKC_CFLAGS@ LIBPSKC_LIBS = @LIBPSKC_LIBS@ LIBPSKC_PC = @LIBPSKC_PC@ LIBS = @LIBS@ LIBSTOKEN_CFLAGS = @LIBSTOKEN_CFLAGS@ LIBSTOKEN_LIBS = @LIBSTOKEN_LIBS@ LIBSTOKEN_PC = @LIBSTOKEN_PC@ LIBTOOL = @LIBTOOL@ LIBXML2_CFLAGS = @LIBXML2_CFLAGS@ LIBXML2_LIBS = @LIBXML2_LIBS@ LINGUAS = @LINGUAS@ LIPO = @LIPO@ LN_S = @LN_S@ LTLIBICONV = @LTLIBICONV@ LTLIBOBJS = @LTLIBOBJS@ LT_SYS_LIBRARY_PATH = @LT_SYS_LIBRARY_PATH@ MAINT = @MAINT@ MAKEINFO = @MAKEINFO@ MANIFEST_TOOL = @MANIFEST_TOOL@ MKDIR_P = @MKDIR_P@ MSGFMT = @MSGFMT@ NM = @NM@ NMEDIT = @NMEDIT@ NUTTCP = @NUTTCP@ OBJDUMP = @OBJDUMP@ OBJEXT = @OBJEXT@ OCSERV_GROUP = @OCSERV_GROUP@ OCSERV_USER = @OCSERV_USER@ OPENSSL_CFLAGS = @OPENSSL_CFLAGS@ OPENSSL_LIBS = @OPENSSL_LIBS@ OTOOL = @OTOOL@ OTOOL64 = @OTOOL64@ P11KIT_CFLAGS = @P11KIT_CFLAGS@ P11KIT_LIBS = @P11KIT_LIBS@ P11KIT_PC = @P11KIT_PC@ PACKAGE = @PACKAGE@ PACKAGE_BUGREPORT = @PACKAGE_BUGREPORT@ PACKAGE_NAME = @PACKAGE_NAME@ PACKAGE_STRING = @PACKAGE_STRING@ PACKAGE_TARNAME = @PACKAGE_TARNAME@ PACKAGE_URL = @PACKAGE_URL@ PACKAGE_VERSION = @PACKAGE_VERSION@ PATH_SEPARATOR = @PATH_SEPARATOR@ PKG_CONFIG = @PKG_CONFIG@ PKG_CONFIG_LIBDIR = @PKG_CONFIG_LIBDIR@ PKG_CONFIG_PATH = @PKG_CONFIG_PATH@ PYTHON = @PYTHON@ RANLIB = @RANLIB@ SED = @SED@ SET_MAKE = @SET_MAKE@ SHELL = @SHELL@ SSL_CFLAGS = @SSL_CFLAGS@ SSL_LIBS = @SSL_LIBS@ SSL_PC = @SSL_PC@ STRIP = @STRIP@ SYMVER_ASPRINTF = @SYMVER_ASPRINTF@ SYMVER_GETLINE = @SYMVER_GETLINE@ SYMVER_JAVA = @SYMVER_JAVA@ SYMVER_TIME = @SYMVER_TIME@ SYMVER_VASPRINTF = @SYMVER_VASPRINTF@ SYMVER_WIN32_STRERROR = @SYMVER_WIN32_STRERROR@ TASN1_CFLAGS = @TASN1_CFLAGS@ TASN1_LIBS = @TASN1_LIBS@ TPM2_CFLAGS = @TPM2_CFLAGS@ TPM2_LIBS = @TPM2_LIBS@ TSS2_ESYS_CFLAGS = @TSS2_ESYS_CFLAGS@ TSS2_ESYS_LIBS = @TSS2_ESYS_LIBS@ TSS2_LIBS = @TSS2_LIBS@ TSS_CFLAGS = @TSS_CFLAGS@ TSS_LIBS = @TSS_LIBS@ VERSION = @VERSION@ VSCRIPT_LDFLAGS = @VSCRIPT_LDFLAGS@ WFLAGS = @WFLAGS@ WINDRES = @WINDRES@ ZLIB_CFLAGS = @ZLIB_CFLAGS@ ZLIB_LIBS = @ZLIB_LIBS@ ZLIB_PC = @ZLIB_PC@ _ACJNI_JAVAC = @_ACJNI_JAVAC@ abs_builddir = @abs_builddir@ abs_srcdir = @abs_srcdir@ abs_top_builddir = @abs_top_builddir@ abs_top_srcdir = @abs_top_srcdir@ ac_ct_AR = @ac_ct_AR@ ac_ct_CC = @ac_ct_CC@ ac_ct_DUMPBIN = @ac_ct_DUMPBIN@ am__include = @am__include@ am__leading_dot = @am__leading_dot@ am__quote = @am__quote@ am__tar = @am__tar@ am__untar = @am__untar@ bindir = @bindir@ build = @build@ build_alias = @build_alias@ build_cpu = @build_cpu@ build_os = @build_os@ build_vendor = @build_vendor@ builddir = @builddir@ datadir = @datadir@ datarootdir = @datarootdir@ docdir = @docdir@ dvidir = @dvidir@ exec_prefix = @exec_prefix@ host = @host@ host_alias = @host_alias@ host_cpu = @host_cpu@ host_os = @host_os@ host_vendor = @host_vendor@ htmldir = @htmldir@ includedir = @includedir@ infodir = @infodir@ install_sh = @install_sh@ libdir = @libdir@ libexecdir = @libexecdir@ localedir = @localedir@ localstatedir = @localstatedir@ mandir = @mandir@ mkdir_p = @mkdir_p@ oldincludedir = @oldincludedir@ openssl_pc_libs = @openssl_pc_libs@ pdfdir = @pdfdir@ pkgconfigdir = @pkgconfigdir@ prefix = @prefix@ program_transform_name = @program_transform_name@ psdir = @psdir@ sbindir = @sbindir@ sharedstatedir = @sharedstatedir@ srcdir = @srcdir@ sysconfdir = @sysconfdir@ system_pcsc_libs = @system_pcsc_libs@ target_alias = @target_alias@ test_pkcs11 = @test_pkcs11@ top_build_prefix = @top_build_prefix@ top_builddir = @top_builddir@ top_srcdir = @top_srcdir@ certsdir = $(srcdir)/certs USER_KEYS = $(certsdir)/user-key-pkcs1.pem \ $(certsdir)/user-key-pkcs1.der \ $(certsdir)/user-key-pkcs1-aes128.pem \ $(certsdir)/user-key-pkcs8.pem $(certsdir)/user-key-pkcs8.der \ $(certsdir)/user-key-pkcs8-pbes1-sha1-3des.pem \ $(certsdir)/user-key-pkcs8-pbes1-sha1-3des.der \ $(certsdir)/user-key-pkcs8-pbes2-sha1.pem \ $(certsdir)/user-key-pkcs8-pbes2-sha1.der \ $(certsdir)/user-key-sha1-3des-sha1.p12 \ $(certsdir)/user-key-sha1-3des-sha256.p12 \ $(certsdir)/user-key-aes256-cbc-sha256.p12 $(am__append_1) \ $(am__append_2) $(certsdir)/ec-key-pkcs1.pem \ $(certsdir)/ec-key-pkcs1.der \ $(certsdir)/ec-key-pkcs1-aes128.pem \ $(certsdir)/ec-key-pkcs8.pem $(certsdir)/ec-key-pkcs8.der \ $(certsdir)/ec-key-pkcs8-pbes2-sha1.pem \ $(certsdir)/ec-key-pkcs8-pbes2-sha1.der \ $(certsdir)/ec-key-aes256-cbc-sha256.p12 # We know GnuTLS doesn't support these for now. https://bugzilla.redhat.com/1369484 OSSL_KEYS = \ $(certsdir)/user-key-md5-des-sha1.p12 $(certsdir)/user-key-aes256-cbc-md5-des-sha256.p12 \ $(certsdir)/user-key-pkcs8-pbes2-sha256.pem $(certsdir)/user-key-pkcs8-pbes2-sha256.der \ $(certsdir)/user-key-pkcs8-pbes1-md5-des.pem $(certsdir)/user-key-pkcs8-pbes1-md5-des.der DSA_KEYS = \ $(certsdir)/dsa-key-pkcs1.pem $(certsdir)/dsa-key-pkcs1.der \ $(certsdir)/dsa-key-pkcs1-aes128.pem \ $(certsdir)/dsa-key-pkcs8.pem $(certsdir)/dsa-key-pkcs8.der \ $(certsdir)/dsa-key-pkcs8-pbes2-sha1.pem $(certsdir)/dsa-key-pkcs8-pbes2-sha1.der \ $(certsdir)/dsa-key-aes256-cbc-sha256.p12 USER_CERTS = $(certsdir)/user-cert.pem $(certsdir)/dsa-cert.pem $(certsdir)/ec-cert.pem EXTRA_DIST = certs/ca.pem certs/ca-key.pem certs/user-cert.pem $(USER_KEYS) $(USER_CERTS) \ $(OSSL_KEYS) $(DSA_KEYS) $(certsdir)/user-key-nonascii-password.p12 \ pass-UTF-8 pass-ISO8859-2 \ certs/server-cert.pem certs/server-key.pem configs/test1.passwd \ common.sh configs/test-user-cert.config configs/test-user-pass.config \ configs/user-cert.prm softhsm2.conf.in softhsm ns.sh configs/test-dtls-psk.config \ scripts/vpnc-script scripts/vpnc-script-detect-disconnect dist_check_SCRIPTS = $(am__append_3) $(am__append_4) $(am__append_5) @HAVE_CWRAP_TRUE@@TEST_PKCS11_TRUE@PKCS11_TOKENS = openconnect-test \ @HAVE_CWRAP_TRUE@@TEST_PKCS11_TRUE@ openconnect-test1 \ @HAVE_CWRAP_TRUE@@TEST_PKCS11_TRUE@ $(am__append_6) # Neither GnuTLS or libp11 support this #PKCS11_KEYS += object=DSA id=%02 @HAVE_CWRAP_TRUE@@TEST_PKCS11_TRUE@PKCS11_KEYS = object=RSA id=%01 \ @HAVE_CWRAP_TRUE@@TEST_PKCS11_TRUE@ object=EC id=%03 TESTS_ENVIRONMENT = srcdir="$(srcdir)" \ top_builddir="$(top_builddir)" \ key_list="$(USER_KEYS)" \ pkcs11_keys="$(PKCS11_KEYS)" \ pkcs11_tokens="$(PKCS11_TOKENS)" C_TESTS = lzstest seqtest $(am__append_7) @CHECK_DTLS_TRUE@bad_dtls_test_SOURCES = bad_dtls_test.c @CHECK_DTLS_TRUE@bad_dtls_test_CFLAGS = $(OPENSSL_CFLAGS) @CHECK_DTLS_TRUE@bad_dtls_test_LDADD = $(OPENSSL_LIBS) serverhash_SOURCES = serverhash.c serverhash_LDADD = ../libopenconnect.la $(SSL_LIBS) OPENSSL = openssl OSSLARGS = -in $< -out $@ -passout pass:password OSSLARGSP12 = -inkey $< -out $@ -in $${KEYFILE%-key-pkcs8.pem}-cert.pem -passout pass:$${PASSWORD%-password} SHM2_UTIL = SOFTHSM2_CONF=softhsm2.conf softhsm2-util P11TOOL = SOFTHSM2_CONF=softhsm2.conf p11tool all: all-am .SUFFIXES: .SUFFIXES: .c .lo .log .o .obj .test .test$(EXEEXT) .trs $(srcdir)/Makefile.in: @MAINTAINER_MODE_TRUE@ $(srcdir)/Makefile.am $(am__configure_deps) @for dep in $?; do \ case '$(am__configure_deps)' in \ *$$dep*) \ ( cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh ) \ && { if test -f $@; then exit 0; else break; fi; }; \ exit 1;; \ esac; \ done; \ echo ' cd $(top_srcdir) && $(AUTOMAKE) --foreign tests/Makefile'; \ $(am__cd) $(top_srcdir) && \ $(AUTOMAKE) --foreign tests/Makefile Makefile: $(srcdir)/Makefile.in $(top_builddir)/config.status @case '$?' in \ *config.status*) \ cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh;; \ *) \ echo ' cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__maybe_remake_depfiles)'; \ cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__maybe_remake_depfiles);; \ esac; $(top_builddir)/config.status: $(top_srcdir)/configure $(CONFIG_STATUS_DEPENDENCIES) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(top_srcdir)/configure: @MAINTAINER_MODE_TRUE@ $(am__configure_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(ACLOCAL_M4): @MAINTAINER_MODE_TRUE@ $(am__aclocal_m4_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(am__aclocal_m4_deps): softhsm2.conf: $(top_builddir)/config.status $(srcdir)/softhsm2.conf.in cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ clean-noinstPROGRAMS: @list='$(noinst_PROGRAMS)'; test -n "$$list" || exit 0; \ echo " rm -f" $$list; \ rm -f $$list || exit $$?; \ test -n "$(EXEEXT)" || exit 0; \ list=`for p in $$list; do echo "$$p"; done | sed 's/$(EXEEXT)$$//'`; \ echo " rm -f" $$list; \ rm -f $$list bad_dtls_test$(EXEEXT): $(bad_dtls_test_OBJECTS) $(bad_dtls_test_DEPENDENCIES) $(EXTRA_bad_dtls_test_DEPENDENCIES) @rm -f bad_dtls_test$(EXEEXT) $(AM_V_CCLD)$(bad_dtls_test_LINK) $(bad_dtls_test_OBJECTS) $(bad_dtls_test_LDADD) $(LIBS) lzstest$(EXEEXT): $(lzstest_OBJECTS) $(lzstest_DEPENDENCIES) $(EXTRA_lzstest_DEPENDENCIES) @rm -f lzstest$(EXEEXT) $(AM_V_CCLD)$(LINK) $(lzstest_OBJECTS) $(lzstest_LDADD) $(LIBS) seqtest$(EXEEXT): $(seqtest_OBJECTS) $(seqtest_DEPENDENCIES) $(EXTRA_seqtest_DEPENDENCIES) @rm -f seqtest$(EXEEXT) $(AM_V_CCLD)$(LINK) $(seqtest_OBJECTS) $(seqtest_LDADD) $(LIBS) serverhash$(EXEEXT): $(serverhash_OBJECTS) $(serverhash_DEPENDENCIES) $(EXTRA_serverhash_DEPENDENCIES) @rm -f serverhash$(EXEEXT) $(AM_V_CCLD)$(LINK) $(serverhash_OBJECTS) $(serverhash_LDADD) $(LIBS) mostlyclean-compile: -rm -f *.$(OBJEXT) distclean-compile: -rm -f *.tab.c @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/bad_dtls_test-bad_dtls_test.Po@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/lzstest.Po@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/seqtest.Po@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/serverhash.Po@am__quote@ # am--include-marker $(am__depfiles_remade): @$(MKDIR_P) $(@D) @echo '# dummy' >$@-t && $(am__mv) $@-t $@ am--depfiles: $(am__depfiles_remade) .c.o: @am__fastdepCC_TRUE@ $(AM_V_CC)$(COMPILE) -MT $@ -MD -MP -MF $(DEPDIR)/$*.Tpo -c -o $@ $< @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/$*.Tpo $(DEPDIR)/$*.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='$<' object='$@' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(COMPILE) -c -o $@ $< .c.obj: @am__fastdepCC_TRUE@ $(AM_V_CC)$(COMPILE) -MT $@ -MD -MP -MF $(DEPDIR)/$*.Tpo -c -o $@ `$(CYGPATH_W) '$<'` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/$*.Tpo $(DEPDIR)/$*.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='$<' object='$@' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(COMPILE) -c -o $@ `$(CYGPATH_W) '$<'` .c.lo: @am__fastdepCC_TRUE@ $(AM_V_CC)$(LTCOMPILE) -MT $@ -MD -MP -MF $(DEPDIR)/$*.Tpo -c -o $@ $< @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/$*.Tpo $(DEPDIR)/$*.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='$<' object='$@' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LTCOMPILE) -c -o $@ $< bad_dtls_test-bad_dtls_test.o: bad_dtls_test.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(bad_dtls_test_CFLAGS) $(CFLAGS) -MT bad_dtls_test-bad_dtls_test.o -MD -MP -MF $(DEPDIR)/bad_dtls_test-bad_dtls_test.Tpo -c -o bad_dtls_test-bad_dtls_test.o `test -f 'bad_dtls_test.c' || echo '$(srcdir)/'`bad_dtls_test.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/bad_dtls_test-bad_dtls_test.Tpo $(DEPDIR)/bad_dtls_test-bad_dtls_test.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='bad_dtls_test.c' object='bad_dtls_test-bad_dtls_test.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(bad_dtls_test_CFLAGS) $(CFLAGS) -c -o bad_dtls_test-bad_dtls_test.o `test -f 'bad_dtls_test.c' || echo '$(srcdir)/'`bad_dtls_test.c bad_dtls_test-bad_dtls_test.obj: bad_dtls_test.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(bad_dtls_test_CFLAGS) $(CFLAGS) -MT bad_dtls_test-bad_dtls_test.obj -MD -MP -MF $(DEPDIR)/bad_dtls_test-bad_dtls_test.Tpo -c -o bad_dtls_test-bad_dtls_test.obj `if test -f 'bad_dtls_test.c'; then $(CYGPATH_W) 'bad_dtls_test.c'; else $(CYGPATH_W) '$(srcdir)/bad_dtls_test.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/bad_dtls_test-bad_dtls_test.Tpo $(DEPDIR)/bad_dtls_test-bad_dtls_test.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='bad_dtls_test.c' object='bad_dtls_test-bad_dtls_test.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(bad_dtls_test_CFLAGS) $(CFLAGS) -c -o bad_dtls_test-bad_dtls_test.obj `if test -f 'bad_dtls_test.c'; then $(CYGPATH_W) 'bad_dtls_test.c'; else $(CYGPATH_W) '$(srcdir)/bad_dtls_test.c'; fi` mostlyclean-libtool: -rm -f *.lo clean-libtool: -rm -rf .libs _libs ID: $(am__tagged_files) $(am__define_uniq_tagged_files); mkid -fID $$unique tags: tags-am TAGS: tags tags-am: $(TAGS_DEPENDENCIES) $(am__tagged_files) set x; \ here=`pwd`; \ $(am__define_uniq_tagged_files); \ shift; \ if test -z "$(ETAGS_ARGS)$$*$$unique"; then :; else \ test -n "$$unique" || unique=$$empty_fix; \ if test $$# -gt 0; then \ $(ETAGS) $(ETAGSFLAGS) $(AM_ETAGSFLAGS) $(ETAGS_ARGS) \ "$$@" $$unique; \ else \ $(ETAGS) $(ETAGSFLAGS) $(AM_ETAGSFLAGS) $(ETAGS_ARGS) \ $$unique; \ fi; \ fi ctags: ctags-am CTAGS: ctags ctags-am: $(TAGS_DEPENDENCIES) $(am__tagged_files) $(am__define_uniq_tagged_files); \ test -z "$(CTAGS_ARGS)$$unique" \ || $(CTAGS) $(CTAGSFLAGS) $(AM_CTAGSFLAGS) $(CTAGS_ARGS) \ $$unique GTAGS: here=`$(am__cd) $(top_builddir) && pwd` \ && $(am__cd) $(top_srcdir) \ && gtags -i $(GTAGS_ARGS) "$$here" cscopelist: cscopelist-am cscopelist-am: $(am__tagged_files) list='$(am__tagged_files)'; \ case "$(srcdir)" in \ [\\/]* | ?:[\\/]*) sdir="$(srcdir)" ;; \ *) sdir=$(subdir)/$(srcdir) ;; \ esac; \ for i in $$list; do \ if test -f "$$i"; then \ echo "$(subdir)/$$i"; \ else \ echo "$$sdir/$$i"; \ fi; \ done >> $(top_builddir)/cscope.files distclean-tags: -rm -f TAGS ID GTAGS GRTAGS GSYMS GPATH tags # Recover from deleted '.trs' file; this should ensure that # "rm -f foo.log; make foo.trs" re-run 'foo.test', and re-create # both 'foo.log' and 'foo.trs'. Break the recipe in two subshells # to avoid problems with "make -n". .log.trs: rm -f $< $@ $(MAKE) $(AM_MAKEFLAGS) $< # Leading 'am--fnord' is there to ensure the list of targets does not # expand to empty, as could happen e.g. with make check TESTS=''. am--fnord $(TEST_LOGS) $(TEST_LOGS:.log=.trs): $(am__force_recheck) am--force-recheck: @: $(TEST_SUITE_LOG): $(TEST_LOGS) @$(am__set_TESTS_bases); \ am__f_ok () { test -f "$$1" && test -r "$$1"; }; \ redo_bases=`for i in $$bases; do \ am__f_ok $$i.trs && am__f_ok $$i.log || echo $$i; \ done`; \ if test -n "$$redo_bases"; then \ redo_logs=`for i in $$redo_bases; do echo $$i.log; done`; \ redo_results=`for i in $$redo_bases; do echo $$i.trs; done`; \ if $(am__make_dryrun); then :; else \ rm -f $$redo_logs && rm -f $$redo_results || exit 1; \ fi; \ fi; \ if test -n "$$am__remaking_logs"; then \ echo "fatal: making $(TEST_SUITE_LOG): possible infinite" \ "recursion detected" >&2; \ elif test -n "$$redo_logs"; then \ am__remaking_logs=yes $(MAKE) $(AM_MAKEFLAGS) $$redo_logs; \ fi; \ if $(am__make_dryrun); then :; else \ st=0; \ errmsg="fatal: making $(TEST_SUITE_LOG): failed to create"; \ for i in $$redo_bases; do \ test -f $$i.trs && test -r $$i.trs \ || { echo "$$errmsg $$i.trs" >&2; st=1; }; \ test -f $$i.log && test -r $$i.log \ || { echo "$$errmsg $$i.log" >&2; st=1; }; \ done; \ test $$st -eq 0 || exit 1; \ fi @$(am__sh_e_setup); $(am__tty_colors); $(am__set_TESTS_bases); \ ws='[ ]'; \ results=`for b in $$bases; do echo $$b.trs; done`; \ test -n "$$results" || results=/dev/null; \ all=` grep "^$$ws*:test-result:" $$results | wc -l`; \ pass=` grep "^$$ws*:test-result:$$ws*PASS" $$results | wc -l`; \ fail=` grep "^$$ws*:test-result:$$ws*FAIL" $$results | wc -l`; \ skip=` grep "^$$ws*:test-result:$$ws*SKIP" $$results | wc -l`; \ xfail=`grep "^$$ws*:test-result:$$ws*XFAIL" $$results | wc -l`; \ xpass=`grep "^$$ws*:test-result:$$ws*XPASS" $$results | wc -l`; \ error=`grep "^$$ws*:test-result:$$ws*ERROR" $$results | wc -l`; \ if test `expr $$fail + $$xpass + $$error` -eq 0; then \ success=true; \ else \ success=false; \ fi; \ br='==================='; br=$$br$$br$$br$$br; \ result_count () \ { \ if test x"$$1" = x"--maybe-color"; then \ maybe_colorize=yes; \ elif test x"$$1" = x"--no-color"; then \ maybe_colorize=no; \ else \ echo "$@: invalid 'result_count' usage" >&2; exit 4; \ fi; \ shift; \ desc=$$1 count=$$2; \ if test $$maybe_colorize = yes && test $$count -gt 0; then \ color_start=$$3 color_end=$$std; \ else \ color_start= color_end=; \ fi; \ echo "$${color_start}# $$desc $$count$${color_end}"; \ }; \ create_testsuite_report () \ { \ result_count $$1 "TOTAL:" $$all "$$brg"; \ result_count $$1 "PASS: " $$pass "$$grn"; \ result_count $$1 "SKIP: " $$skip "$$blu"; \ result_count $$1 "XFAIL:" $$xfail "$$lgn"; \ result_count $$1 "FAIL: " $$fail "$$red"; \ result_count $$1 "XPASS:" $$xpass "$$red"; \ result_count $$1 "ERROR:" $$error "$$mgn"; \ }; \ { \ echo "$(PACKAGE_STRING): $(subdir)/$(TEST_SUITE_LOG)" | \ $(am__rst_title); \ create_testsuite_report --no-color; \ echo; \ echo ".. contents:: :depth: 2"; \ echo; \ for b in $$bases; do echo $$b; done \ | $(am__create_global_log); \ } >$(TEST_SUITE_LOG).tmp || exit 1; \ mv $(TEST_SUITE_LOG).tmp $(TEST_SUITE_LOG); \ if $$success; then \ col="$$grn"; \ else \ col="$$red"; \ test x"$$VERBOSE" = x || cat $(TEST_SUITE_LOG); \ fi; \ echo "$${col}$$br$${std}"; \ echo "$${col}Testsuite summary for $(PACKAGE_STRING)$${std}"; \ echo "$${col}$$br$${std}"; \ create_testsuite_report --maybe-color; \ echo "$$col$$br$$std"; \ if $$success; then :; else \ echo "$${col}See $(subdir)/$(TEST_SUITE_LOG)$${std}"; \ if test -n "$(PACKAGE_BUGREPORT)"; then \ echo "$${col}Please report to $(PACKAGE_BUGREPORT)$${std}"; \ fi; \ echo "$$col$$br$$std"; \ fi; \ $$success || exit 1 check-TESTS: $(dist_check_SCRIPTS) @list='$(RECHECK_LOGS)'; test -z "$$list" || rm -f $$list @list='$(RECHECK_LOGS:.log=.trs)'; test -z "$$list" || rm -f $$list @test -z "$(TEST_SUITE_LOG)" || rm -f $(TEST_SUITE_LOG) @set +e; $(am__set_TESTS_bases); \ log_list=`for i in $$bases; do echo $$i.log; done`; \ trs_list=`for i in $$bases; do echo $$i.trs; done`; \ log_list=`echo $$log_list`; trs_list=`echo $$trs_list`; \ $(MAKE) $(AM_MAKEFLAGS) $(TEST_SUITE_LOG) TEST_LOGS="$$log_list"; \ exit $$?; recheck: all $(dist_check_SCRIPTS) @test -z "$(TEST_SUITE_LOG)" || rm -f $(TEST_SUITE_LOG) @set +e; $(am__set_TESTS_bases); \ bases=`for i in $$bases; do echo $$i; done \ | $(am__list_recheck_tests)` || exit 1; \ log_list=`for i in $$bases; do echo $$i.log; done`; \ log_list=`echo $$log_list`; \ $(MAKE) $(AM_MAKEFLAGS) $(TEST_SUITE_LOG) \ am__force_recheck=am--force-recheck \ TEST_LOGS="$$log_list"; \ exit $$? dtls-psk.log: dtls-psk @p='dtls-psk'; \ b='dtls-psk'; \ $(am__check_pre) $(LOG_DRIVER) --test-name "$$f" \ --log-file $$b.log --trs-file $$b.trs \ $(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \ "$$tst" $(AM_TESTS_FD_REDIRECT) sigterm.log: sigterm @p='sigterm'; \ b='sigterm'; \ $(am__check_pre) $(LOG_DRIVER) --test-name "$$f" \ --log-file $$b.log --trs-file $$b.trs \ $(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \ "$$tst" $(AM_TESTS_FD_REDIRECT) auth-username-pass.log: auth-username-pass @p='auth-username-pass'; \ b='auth-username-pass'; \ $(am__check_pre) $(LOG_DRIVER) --test-name "$$f" \ --log-file $$b.log --trs-file $$b.trs \ $(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \ "$$tst" $(AM_TESTS_FD_REDIRECT) auth-certificate.log: auth-certificate @p='auth-certificate'; \ b='auth-certificate'; \ $(am__check_pre) $(LOG_DRIVER) --test-name "$$f" \ --log-file $$b.log --trs-file $$b.trs \ $(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \ "$$tst" $(AM_TESTS_FD_REDIRECT) auth-nonascii.log: auth-nonascii @p='auth-nonascii'; \ b='auth-nonascii'; \ $(am__check_pre) $(LOG_DRIVER) --test-name "$$f" \ --log-file $$b.log --trs-file $$b.trs \ $(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \ "$$tst" $(AM_TESTS_FD_REDIRECT) id-test.log: id-test @p='id-test'; \ b='id-test'; \ $(am__check_pre) $(LOG_DRIVER) --test-name "$$f" \ --log-file $$b.log --trs-file $$b.trs \ $(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \ "$$tst" $(AM_TESTS_FD_REDIRECT) auth-pkcs11.log: auth-pkcs11 @p='auth-pkcs11'; \ b='auth-pkcs11'; \ $(am__check_pre) $(LOG_DRIVER) --test-name "$$f" \ --log-file $$b.log --trs-file $$b.trs \ $(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \ "$$tst" $(AM_TESTS_FD_REDIRECT) lzstest.log: lzstest$(EXEEXT) @p='lzstest$(EXEEXT)'; \ b='lzstest'; \ $(am__check_pre) $(LOG_DRIVER) --test-name "$$f" \ --log-file $$b.log --trs-file $$b.trs \ $(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \ "$$tst" $(AM_TESTS_FD_REDIRECT) seqtest.log: seqtest$(EXEEXT) @p='seqtest$(EXEEXT)'; \ b='seqtest'; \ $(am__check_pre) $(LOG_DRIVER) --test-name "$$f" \ --log-file $$b.log --trs-file $$b.trs \ $(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \ "$$tst" $(AM_TESTS_FD_REDIRECT) bad_dtls_test.log: bad_dtls_test$(EXEEXT) @p='bad_dtls_test$(EXEEXT)'; \ b='bad_dtls_test'; \ $(am__check_pre) $(LOG_DRIVER) --test-name "$$f" \ --log-file $$b.log --trs-file $$b.trs \ $(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \ "$$tst" $(AM_TESTS_FD_REDIRECT) .test.log: @p='$<'; \ $(am__set_b); \ $(am__check_pre) $(TEST_LOG_DRIVER) --test-name "$$f" \ --log-file $$b.log --trs-file $$b.trs \ $(am__common_driver_flags) $(AM_TEST_LOG_DRIVER_FLAGS) $(TEST_LOG_DRIVER_FLAGS) -- $(TEST_LOG_COMPILE) \ "$$tst" $(AM_TESTS_FD_REDIRECT) @am__EXEEXT_TRUE@.test$(EXEEXT).log: @am__EXEEXT_TRUE@ @p='$<'; \ @am__EXEEXT_TRUE@ $(am__set_b); \ @am__EXEEXT_TRUE@ $(am__check_pre) $(TEST_LOG_DRIVER) --test-name "$$f" \ @am__EXEEXT_TRUE@ --log-file $$b.log --trs-file $$b.trs \ @am__EXEEXT_TRUE@ $(am__common_driver_flags) $(AM_TEST_LOG_DRIVER_FLAGS) $(TEST_LOG_DRIVER_FLAGS) -- $(TEST_LOG_COMPILE) \ @am__EXEEXT_TRUE@ "$$tst" $(AM_TESTS_FD_REDIRECT) distdir: $(BUILT_SOURCES) $(MAKE) $(AM_MAKEFLAGS) distdir-am distdir-am: $(DISTFILES) @srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ topsrcdirstrip=`echo "$(top_srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ list='$(DISTFILES)'; \ dist_files=`for file in $$list; do echo $$file; done | \ sed -e "s|^$$srcdirstrip/||;t" \ -e "s|^$$topsrcdirstrip/|$(top_builddir)/|;t"`; \ case $$dist_files in \ */*) $(MKDIR_P) `echo "$$dist_files" | \ sed '/\//!d;s|^|$(distdir)/|;s,/[^/]*$$,,' | \ sort -u` ;; \ esac; \ for file in $$dist_files; do \ if test -f $$file || test -d $$file; then d=.; else d=$(srcdir); fi; \ if test -d $$d/$$file; then \ dir=`echo "/$$file" | sed -e 's,/[^/]*$$,,'`; \ if test -d "$(distdir)/$$file"; then \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ if test -d $(srcdir)/$$file && test $$d != $(srcdir); then \ cp -fpR $(srcdir)/$$file "$(distdir)$$dir" || exit 1; \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ cp -fpR $$d/$$file "$(distdir)$$dir" || exit 1; \ else \ test -f "$(distdir)/$$file" \ || cp -p $$d/$$file "$(distdir)/$$file" \ || exit 1; \ fi; \ done check-am: all-am $(MAKE) $(AM_MAKEFLAGS) $(dist_check_SCRIPTS) $(MAKE) $(AM_MAKEFLAGS) check-TESTS check: check-am all-am: Makefile $(PROGRAMS) installdirs: install: install-am install-exec: install-exec-am install-data: install-data-am uninstall: uninstall-am install-am: all-am @$(MAKE) $(AM_MAKEFLAGS) install-exec-am install-data-am installcheck: installcheck-am install-strip: if test -z '$(STRIP)'; then \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ install; \ else \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ "INSTALL_PROGRAM_ENV=STRIPPROG='$(STRIP)'" install; \ fi mostlyclean-generic: -test -z "$(TEST_LOGS)" || rm -f $(TEST_LOGS) -test -z "$(TEST_LOGS:.log=.trs)" || rm -f $(TEST_LOGS:.log=.trs) -test -z "$(TEST_SUITE_LOG)" || rm -f $(TEST_SUITE_LOG) clean-generic: distclean-generic: -test -z "$(CONFIG_CLEAN_FILES)" || rm -f $(CONFIG_CLEAN_FILES) -test . = "$(srcdir)" || test -z "$(CONFIG_CLEAN_VPATH_FILES)" || rm -f $(CONFIG_CLEAN_VPATH_FILES) maintainer-clean-generic: @echo "This command is intended for maintainers to use" @echo "it deletes files that may require special tools to rebuild." clean: clean-am clean-am: clean-generic clean-libtool clean-noinstPROGRAMS \ mostlyclean-am distclean: distclean-am -rm -f ./$(DEPDIR)/bad_dtls_test-bad_dtls_test.Po -rm -f ./$(DEPDIR)/lzstest.Po -rm -f ./$(DEPDIR)/seqtest.Po -rm -f ./$(DEPDIR)/serverhash.Po -rm -f Makefile distclean-am: clean-am distclean-compile distclean-generic \ distclean-tags dvi: dvi-am dvi-am: html: html-am html-am: info: info-am info-am: install-data-am: install-dvi: install-dvi-am install-dvi-am: install-exec-am: install-html: install-html-am install-html-am: install-info: install-info-am install-info-am: install-man: install-pdf: install-pdf-am install-pdf-am: install-ps: install-ps-am install-ps-am: installcheck-am: maintainer-clean: maintainer-clean-am -rm -f ./$(DEPDIR)/bad_dtls_test-bad_dtls_test.Po -rm -f ./$(DEPDIR)/lzstest.Po -rm -f ./$(DEPDIR)/seqtest.Po -rm -f ./$(DEPDIR)/serverhash.Po -rm -f Makefile maintainer-clean-am: distclean-am maintainer-clean-generic mostlyclean: mostlyclean-am mostlyclean-am: mostlyclean-compile mostlyclean-generic \ mostlyclean-libtool pdf: pdf-am pdf-am: ps: ps-am ps-am: uninstall-am: .MAKE: check-am install-am install-strip .PHONY: CTAGS GTAGS TAGS all all-am am--depfiles check check-TESTS \ check-am clean clean-generic clean-libtool \ clean-noinstPROGRAMS cscopelist-am ctags ctags-am distclean \ distclean-compile distclean-generic distclean-libtool \ distclean-tags distdir dvi dvi-am html html-am info info-am \ install install-am install-data install-data-am install-dvi \ install-dvi-am install-exec install-exec-am install-html \ install-html-am install-info install-info-am install-man \ install-pdf install-pdf-am install-ps install-ps-am \ install-strip installcheck installcheck-am installdirs \ maintainer-clean maintainer-clean-generic mostlyclean \ mostlyclean-compile mostlyclean-generic mostlyclean-libtool \ pdf pdf-am ps ps-am recheck tags tags-am uninstall \ uninstall-am .PRECIOUS: Makefile # Nothing actually *depends* on the cert files; they are created manually # and considered part of the sources, committed to the git tree. But for # reference, the commands used to generate them are here... keyfiles: $(USER_KEYS) $(USER_CERTS) # Strictly speaking this is only PKCS#1 for RSA. For EC it's probably # best described as RFC5915§4, and no idea what defines it for DSA. $(certsdir)/user-key-pkcs1.pem: $(OPENSSL) genrsa -out $@ 2432 $(certsdir)/dsa-key-pkcs1.pem: $(OPENSSL) dsaparam -genkey 1024 -out $@ $(certsdir)/ec-key-pkcs1.pem: $(OPENSSL) ecparam -genkey -out $@ -name prime256v1 # Even in OpenSSL 1.1, this creates the old encrypted PEM format. $(certsdir)/user-key-pkcs1-aes128.pem: certs/user-key-pkcs1.pem $(OPENSSL) rsa $(OSSLARGS) -aes128 $(certsdir)/dsa-key-pkcs1-aes128.pem: certs/dsa-key-pkcs1.pem $(OPENSSL) dsa $(OSSLARGS) -aes128 $(certsdir)/ec-key-pkcs1-aes128.pem: certs/ec-key-pkcs1.pem $(OPENSSL) ec $(OSSLARGS) -aes128 # Plain unencrypted PKCS#8 %-key-pkcs8.pem: %-key-pkcs1.pem $(OPENSSL) pkcs8 $(OSSLARGS) -topk8 -nocrypt %-key-pkcs8-pbes1-sha1-3des.pem: %-key-pkcs8.pem $(OPENSSL) pkcs8 $(OSSLARGS) -topk8 -v1 pbeWithSHA1And3-KeyTripleDES-CBC # This is the default created by OpenSSL 1.0.2 with -topk8 %-key-pkcs8-pbes1-md5-des.pem: %-key-pkcs8.pem $(OPENSSL) pkcs8 $(OSSLARGS) -topk8 -v1 pbeWithMD5AndDES-CBC %-key-pkcs8-pbes2-sha1.pem: %-key-pkcs8.pem $(OPENSSL) pkcs8 $(OSSLARGS) -topk8 -v2 aes256 -v2prf hmacWithSHA1 # This is the default created by OpenSSL 1.1 with -topk8 %-key-pkcs8-pbes2-sha256.pem: %-key-pkcs8.pem $(OPENSSL) pkcs8 $(OSSLARGS) -topk8 -v2 aes256 -v2prf hmacWithSHA256 %-key-sha1-3des-sha1.p12: %-key-pkcs8.pem %-cert.pem KEYFILE="$<"; $(OPENSSL) pkcs12 $(OSSLARGSP12) -export -macalg SHA1 \ -certpbe pbeWithSHA1And3-KeyTripleDES-CBC -keypbe pbeWithSHA1And3-KeyTripleDES-CBC %-key-sha1-3des-sha256.p12: %-key-pkcs8.pem %-cert.pem KEYFILE="$<"; $(OPENSSL) pkcs12 $(OSSLARGSP12) -export -macalg SHA256 \ -certpbe pbeWithSHA1And3-KeyTripleDES-CBC -keypbe pbeWithSHA1And3-KeyTripleDES-CBC %-key-md5-des-sha1.p12: %-key-pkcs8.pem %-cert.pem KEYFILE="$<"; $(OPENSSL) pkcs12 $(OSSLARGSP12) -export -macalg SHA1 \ -certpbe pbeWithMD5AndDES-CBC -keypbe pbeWithMD5AndDES-CBC %-key-aes256-cbc-sha256.p12: %-key-pkcs8.pem %-cert.pem KEYFILE="$<"; $(OPENSSL) pkcs12 $(OSSLARGSP12) -export -macalg SHA256 \ -certpbe AES-256-CBC -keypbe AES-256-CBC # NB: Needs OpenSSL 1.1 or newer %-key-nonascii-password.p12: %-key-pkcs8.pem %-cert.pem LC_ALL=en_GB.UTF-8 PASSWORD="$$(cat $(srcdir)/pass-UTF-8)" KEYFILE="$<" ; \ $(OPENSSL) pkcs12 $(OSSLARGSP12) -export -macalg SHA256 \ -certpbe AES-256-CBC -keypbe AES-256-CBC # This one makes GnuTLS behave strangely... %-key-aes256-cbc-md5-des-sha256.p12: %-key-pkcs8.pem %-cert.pem KEYFILE="$<"; $(OPENSSL) pkcs12 $(OSSLARGSP12) -export -macalg SHA256 \ -certpbe AES-256-CBC -keypbe pbeWithMD5AndDES-CBC %.der: %.pem sed -e '0,/^-----BEGIN.*KEY-----/d' -e '/^-----END.*KEY-----/,$$d' $< | base64 -d > $@ %-cert.csr: %-key-pkcs8.pem $(OPENSSL) req -new -config $(srcdir)/configs/user-cert.prm -key $< -out $@ %.pem: %.csr $(OPENSSL) x509 -days 3650 -CA $(certsdir)/ca.pem -CAkey $(certsdir)/ca-key.pem \ -set_serial $(shell date +%s) -req -out $@ -in $< # Nice and simple: Certs visible without login, public keys present in token softhsm-setup0: $(SHM2_UTIL) --show-slots $(SHM2_UTIL) --init-token --slot 0 --label openconnect-test \ --so-pin 12345678 --pin 1234 $(SHM2_UTIL) --slot 0 --pin 1234 --import $(certsdir)/user-key-pkcs8.pem \ --label RSA --id 01 $(P11TOOL) --load-certificate $(certsdir)/user-cert.pem --no-mark-private \ --label RSA --id 01 --set-pin 1234 --login \ --write "pkcs11:token=openconnect-test;pin-value=1234" $(SHM2_UTIL) --slot 0 --pin 1234 --import $(certsdir)/dsa-key-pkcs8.pem \ --label DSA --id 02 $(P11TOOL) --load-certificate $(certsdir)/dsa-cert.pem --no-mark-private \ --label DSA --id 02 --set-pin 1234 --login \ --write "pkcs11:token=openconnect-test;pin-value=1234" $(SHM2_UTIL) --slot 0 --pin 1234 --import $(certsdir)/ec-key-pkcs8.pem \ --label EC --id 03 $(P11TOOL) --load-certificate $(certsdir)/ec-cert.pem --no-mark-private \ --label EC --id 03 --set-pin 1234 --login \ --write "pkcs11:token=openconnect-test;pin-value=1234" # Second test: Import keys with GnuTLS so public key is absent softhsm-setup1: $(SHM2_UTIL) --show-slots $(SHM2_UTIL) --init-token --slot 1 --label openconnect-test1 \ --so-pin 12345678 --pin 1234 $(P11TOOL) --load-certificate $(certsdir)/user-cert.pem --no-mark-private \ --load-privkey $(certsdir)/user-key-pkcs8.pem \ --label RSA --id 01 --login \ --write "pkcs11:token=openconnect-test1;pin-value=1234" $(P11TOOL) --load-certificate $(certsdir)/dsa-cert.pem --no-mark-private \ --load-privkey $(certsdir)/dsa-key-pkcs8.pem \ --label DSA --id 02 --login \ --write "pkcs11:token=openconnect-test1;pin-value=1234" $(P11TOOL) --load-certificate $(certsdir)/ec-cert.pem --no-mark-private \ --load-privkey $(certsdir)/ec-key-pkcs8.pem \ --label EC --id 03 --login \ --write "pkcs11:token=openconnect-test1;pin-value=1234" # Third test: CKA_PRIVATE on certificates softhsm-setup2: $(SHM2_UTIL) --show-slots $(SHM2_UTIL) --init-token --slot 2 --label openconnect-test2 \ --so-pin 12345678 --pin 1234 $(P11TOOL) --load-certificate $(certsdir)/user-cert.pem \ --load-privkey $(certsdir)/user-key-pkcs8.pem \ --label RSA --id 01 --login \ --write "pkcs11:token=openconnect-test2;pin-value=1234" $(P11TOOL) --load-certificate $(certsdir)/dsa-cert.pem \ --load-privkey $(certsdir)/dsa-key-pkcs8.pem \ --label DSA --id 02 --login \ --write "pkcs11:token=openconnect-test2;pin-value=1234" $(P11TOOL) --load-certificate $(certsdir)/ec-cert.pem \ --load-privkey $(certsdir)/ec-key-pkcs8.pem \ --label EC --id 03 --login \ --write "pkcs11:token=openconnect-test2;pin-value=1234" # Tell versions [3.59,3.63) of GNU make to not export all variables. # Otherwise a system limit (for SysV at least) may be exceeded. .NOEXPORT: openconnect-8.05/tests/auth-certificate0000775000076400007640000000306113025070326022044 0ustar00dwoodhoudwoodhou00000000000000#!/bin/sh # # Copyright (C) 2016 Red Hat, Inc. # # This file is part of openconnect. # # This is free software; you can redistribute it and/or # modify it under the terms of the GNU Lesser General Public License # as published by the Free Software Foundation; either version 2.1 of # the License, or (at your option) any later version. # # This library is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # Lesser General Public License for more details. # # You should have received a copy of the GNU Lesser General Public License # along with this program. If not, see SERV="${SERV:-../src/ocserv}" srcdir=${srcdir:-.} top_builddir=${top_builddir:-..} . `dirname $0`/common.sh key_list=${key_list:-`echo ${certdir}/*-key-*.{pem,der,p12}`} echo "Testing certificate auth... " launch_simple_sr_server -d 1 -f -c configs/test-user-cert.config PID=$! wait_server $PID for KEY in ${key_list}; do echo -n "Connecting to obtain cookie (with key ${KEY##*/})... " if [ "${KEY%%.p12}" != "${KEY}" ]; then CERTARGS="-c ${KEY} --key-password password" else CERTARGS="--sslkey ${KEY} --key-password password -c ${KEY%%-*}-cert.pem " fi ( echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT -q $ADDRESS:443 -u test $CERTARGS --servercert=d66b507ae074d03b02eafca40d35f87dd81049d3 --cookieonly --passwd-on-stdin ) || fail $PID "Could not connect with key ${KEY##*/}!" done echo ok cleanup exit 0 openconnect-8.05/tests/certs/0000775000076400007640000000000013536301731020021 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/tests/certs/dsa-key-pkcs8.der0000664000076400007640000000051613025070326023076 0ustar00dwoodhoudwoodhou000000000000000J0+*H80z -ť A-"u y05m(q,H˦k]/rfC2WX[X4<ӺUcYlIE4++o9kA´Xx\ќug?E,bUvEz%K|O5[ɤl3N.z }Fľ،0଴CAʛt6tu c LQbz漣DzQ o*-uh):3 cO trmXYo]ćʼnIv2aopenconnect-8.05/tests/certs/user-key-pkcs1.pem0000664000076400007640000000366413025070326023314 0ustar00dwoodhoudwoodhou00000000000000-----BEGIN RSA PRIVATE KEY----- MIIFfAIBAAKCATEAq1SY/KnGFZWdpsGUhJSReR542y1IUZllAQLAQFJJXetwvCbv aDkeBJHi28tvk0BFHiKOcVpYiSh5XhoyJT6LnTs0fxn40C83t2Iyt1OlQyzFXeys +TX6FCs0ZvHWp6HQg5pW9BmDvL8RdDAtqChboqt6xs2cXPhR6akMSNtxu7E0d/fu 3l14wEgKNw1lHjsrFAOJcvJS7V8AxQZg6oAg0EPsZrzSJtvwKT5q+WIgvlgmRLrX jG92pgUg5Ji3xHJ6Xd9PDSPsLpxx7DD5FF/IdQurZ/Z9+012ZEql1fq0CFCdE8eP wnmwtD4vidMzJ02fi9NgJAersnI9KaXESuw8BNJJPiYb7HoQPcpFWoCLTSqWY08t YygPO0dHynwsFUEy1eDJvqVVLLNrRipWsRvtKQIDAQABAoIBMF2XINskgqhXyn7F UDP8VFstYieYXOD2Qk6DCjIYwSsk6bheLHlqehNU/e/C+Xgeq6MCjX0uNR73lRTq imn9+JYzOUIVFe3jXTQ32Cx87NH9KvNbzkF0Ut+hmkaB5Rg9NIIvVUCSj3wTg51M lCQ/p478zVy8BKZkn5pcVfGWrlIxQtAmB75AoS2oLKxWDN6uw6FzLSo1ZUd0sJtw uditEnRQswD7hnLVAOgCstHj1Yc/zLbzJv4lwbVZveDJ+tm6R/hD6q/PTZKu250R SexQMyq2RECsBsf2ZC5CJYEg1fZ2ebn7vdLFXfcoFp3ME83ZVePKx9I48ZIy1rrb c7bctl9mieNMnta40gHuqNJpZN1cGn5M5B1bN5QpPJM9Q7szjxAjFBKwMyRYw66X TD3FwYECgZkAwZwNTqobLsQU5njtC3aQr9o9XhVvfZyXTXGjHWpHlCUgnZj00DvW vr4SOefXgj1UPfd2BuKsXeYfNP28nZyL9U+DiY956p5epVzptHGuWUP/7AP2VzzW Mwu6TTk/kGKyT6/gIXpaD5P0/F+6KbmvZxg/DiM93tm8R63eVhHR48B+KbtnrBtq r1owGQwUSa/bGoIQYOHRmN0CgZkA4oqdgLUpMwZE0uN3vTQ+wN+YzKvzunM8GVzY 7cgivLmPTxrYDQji4sroPBOqIxs9ddR84k7NytD8t3dwV1ThHCKiPg+nWcBaT7Ho YlWFB30DpI+C6y0h/MvVtzx3pZ1npquVXR7To0l4m3UsB+m9ug9maX4uUC92X+ko +OHJzndKSO6S0dXcKS8/KXoSsNb5jWjkgkXsOr0CgZh4jty2dDQy/cRp8zjgH3df GU2HTV+8XwrUHYPNqEVkGW5i1ED1fZ1t7ttYlWZb4iaX44TqKrHcUpRyIeIWXsnD +jxVJzNqhi03WVDpnLRNP4uYAqudjPNwm8fpmFFdbifMeR7emdqEwsQVduJsYwS2 9KEnA4jeQMT9+WVuQPBqmo21HM4knHnlMQqsPhpP/CI6Mm1SdqtWPQKBmQCbdFtY cvhulyKrRIRqRWu6lrUX3fdGPsVC8j+6C9gqgXsh4V3Ys/xdfLeYYjYiGRM3xDRe Z404W+jPTRq+EvTWhb2nsL46DJDslzzMHbtHxDW3uvMvxqzH+GgTcV75OuZhrOS2 He1E46nro6AvXepfvymbwoatZ6RndGw1PVtqXtmO6oe9jm+ho1ZIdAhXaW2d6BjG fIz6UQKBmQCC0uQ746qemXUNc+TpOPVec+TCOiRVTupY9yryD/9C1+LvSdIljYYC pyvJRR7uoBxgWD5Mu0CZQiD/xz9OaIyL9OhB/vR5AKR+ZGeVjr/DRSjc2le5qiCs ZrDIEbKawmCsJDJ/F+Rs3CRDViJQhimnOPtOjOGayEKkWatJMr0LZTA3BpUpY4gJ EQsK8zSC9lRozHHp6p9IDw== -----END RSA PRIVATE KEY----- openconnect-8.05/tests/certs/user-key-nonascii-password.p120000664000076400007640000000526313413515134025556 0ustar00dwoodhoudwoodhou000000000000000 0 e *H  V R0 N0 *H 00 *H 0W *H  0J0) *H  0mb@[0 *H  0 `He*@ 1y,nLY)p-/.*l7М{n+yʿO?.w@Q+2'P2ѩ(yuz˾.8똯TKNGqK -;asq#T]w\X~ TjmzlN/$DmgZB TV5n+ew_({kBKGDz\i( L VMw}TUӘ|O%mjd55}UM,gKʦ΁>M= blp2ؑJmפ,}f,!Nԍgt04!?tX<+g;j@Dz#rRdZN[%EKqgxT0*@22XK +5X^=\D: Iv~0J{-ǂ//)٫MzKh|]iqr1%K7ţ~I gg6`2"En~kj)l/nm u:_<17US<^WwoV|5!3{q66%L &=5AL镥aPY yOT^pCY:=Vň9Q=^C_SݒFm6ldbOTOz۠dOH͏{(^[H_:ixkz ;NJguDœMz7:B̆@i>i00Em:ZzXNw\nOi|ppDU \ڑaI]%؜q"4%Az=vϢet",@0T *H EA0=09 *H  00W *H  0J0) *H  0ؠ 0 *H  0 `He*c*li.7/I}mOm;Pʡc#_ );`+m%l\3G[KsKтD$kE.ndG 5DS@dN\vs*P23>"k.\)(R@H3UAZb"%]Y蘂4OZ0jXVq#uPPC^OFÀ᭰MgõdR6!qt|GB8]Y廃' ;f+EeToo6Uj7.e2Fh3ؕ4ȴڛU׈3&gC 9" FJ:wa7&[{E$R+w09I :DɃ9^\}Qዏ#tFXh5kI- -@{|^wS2EI"c7N+uk/Vz3rUsB[ V A~XvUtNa ŗFV@hy]Vf:x:EL51%0# *H  1RLLQm0A010  `He P,X,k>j[@x蕢dRw7openconnect-8.05/tests/certs/ec-cert.pem0000664000076400007640000000140613123423207022042 0ustar00dwoodhoudwoodhou00000000000000-----BEGIN CERTIFICATE----- MIICDzCByAIEV8cIlTANBgkqhkiG9w0BAQsFADANMQswCQYDVQQDEwJDQTAeFw0x NjA4MzExNjQwNTNaFw0yNjA4MjkxNjQwNTNaMCcxDzANBgNVBAMMBkEgdXNlcjEU MBIGCgmSJomT8ixkAQEMBHRlc3QwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAARP ciqE+wW2iVlAFTcBTFoq7YuZcHTV4SAdxnwSYzFiYxdxxBenm4aRPOD2QeAcTeCK qOaDmIJEpRudLEuGwaVUMA0GCSqGSIb3DQEBCwUAA4IBMQAJ2U2xLOexUCllJcGm GUp2JA9Nmy4BNrU2dhh/8s8DXZfR0yBmg+rTyqHAqdt8R3twSfn94uMM7aZxW1jP q5sYfr+Z/j20hy4cXvWoYLZeinFMk4VT0F8NNs9G1Box6ottV3s8gd0WFTmIf4n/ QsPxrO3TVm70jotffZjXgIRx0e/Jf1v2L+4FnK3BCYXmJe26AxXDIoknteTOUV99 xAVmB1ylzct6974vzKUNfZDMeR5RAHo0RquKJrqqBrh7HAEH/fPBCHzwlNZJDDHK G7Fox/ADi6zj7sBlnsYePVYjZODqUq+ZBg0f1epvWfyyX8RzbwMWuCy8Ourf02ak 29isNJu6pi5ojgHcw+Zy9axb1nwu8y9R50gNhk9boqO0UYsyUR6Svnt6B+FYdaIp jpZi -----END CERTIFICATE----- openconnect-8.05/tests/certs/user-key-sha1-3des-sha1.p120000664000076400007640000000525513123423207024433 0ustar00dwoodhoudwoodhou000000000000000 0 o *H  ` \0 X07 *H (0$0 *H 0 *H  0 } bK.bpʏO*֧!*AV?s $%M+E3\eϊE!۾MVʟ] mKF4S"yQ0Ԏ+hk։)$z[>LZ݋vykjΟO4zF캌;㦽9C .:'J6nf[˒>f[lU*M~S>X9P q27 M5Կ;9\/VXqt*uBg4V}n;!f,~\Wf)3<ӽ=)EeB}V/Wc`>Rc48uf̋UhLYeR&[1W낲A4}?%$sd3Ff~d!hi+qlWJ&T YgAɲ/tѧ4ټ'T1H^q~AZL殱]w(eIR9w!L>9l\NS寧]B>Mp`<~yʖaguŢ-ko6j(bPL2Y*!6>A=Zc$)OP0 *H  00 *H  00 *H  058rHzѶ7"YBd@{!8CCspe#'Tڲ@G)̙~H]EX'!)@ :$t=f@Cڀ`h}oecҎ eҞ%Nx++%5epŲ4lShq:.p7&AX-}'I` CZHӷ{TV/#]a{*]> 60t<|zl"uϤ+zujڸO<>دT=t|X ҟS\hT-֑ /n)ci' y 1ŌI3dMV GeN0/;߹p1pv[lzFЗ4nְQ*t(ׯ 4zcH5&1 :]A\%1Ëlਸ਼ ਆ> }\LoH >{ z [[krI=l:7t0AZ(%]oТޱ; ԯZ фcr2!-ﵶ{&1RS*'>*eC ؝+6C:ѝAv ,3vtbEN{jpIkC[.URs@T/58I#D^ZͿm!'-t_+>܇tHRG,FgĎkgXA TL^TQ/佞Q ؠwG 7a4cDe݁xȆo&Ŝr7]]W[K{йY"*+RAթJһ0cM>uɶw4԰_dO㇚j 1%0# *H  1jJʟإOt*ꄀQ010!0 +a-=Z3aߖs2-lopenconnect-8.05/tests/certs/user-key-aes256-cbc-sha256.p120000664000076400007640000000542713123423207024652 0ustar00dwoodhoudwoodhou000000000000000 0  *H   0 0d *H U0Q0J *H 0I *H  0<0 *H  0Lb0 `He*˱5 ߜ1!O\(7Hb=b|0cD\Fki'+5'4&^PN&#ͶdNW_Ar;%O"!xhDC1CRߴe5Aޓ>Rtx@ZG X'$*di魘;h/}yO$6t)i YB%K`!Ҭ/:/+ۿO0īC`[o*[W |X3̨xpZ1,F̈ea| Bi} 0kmj37 ʃ}Htk֤* 9mF3דetI2]l*fuVޠK8ZSȧR6.{dNcm)zUJ0{ $_JLUۋX ؽˁ[v^&%]`  n2Nd׫oVjfPձnAȕ9& KI;9*:}9,yv溥r" -^rO&cA8Odl6'J΅vץdC#P5~eL̜/hE}%lz=}ʍ~ ﵾtio44H#c $GhO1x-^T B8nQ%Y$Sn8h;5j*_F88 KS0]zѫxPv2e*\ġ2'Ʒ<(FX|ĉHX6xc hJUpFhfREzCWGP o%yvpwe?"_|Ru2e q5#2HUݣZM+\ン) WXby"kNJWS>Au:o8 QJG1A O4c h-1Y76U ?r\;IH5︉G?1j0F *H 730/0+ *H  00I *H  0<0 *H  0Sl0 `He*r͐"TR-qU8sssm +Pzh>@L ]_^ V"Ee(2NLT?P$Q+$O$37?G(' qV,Edч}/r]ibmHF4~✱9li 1[GH`V;V ؑ9?EĩKi#4>}D#ERnfX z6AYn/ʦ=cBT٬¾J_}8 ]hIZQM 3? &@H cHA74fdJ )h(}"F44C.Kjn8n%!e+' &K#_.Ӧ,u+FgqnvxNwS`X`pTH8TOgh450̚rc_VG ƶ!tEpM#i sZvϾia`؟_*if8w33 [ŰZv9F6h9:5Y.A9=Qw(0a=BSc1cFF#irl3\99iwhh~4~Z`:a io~u:2G{PwsUUUjT*E\!P3vS|0-4ҵqQzF D3M$>GTE 4]{ f(?/{>-g,(…ݘ16t}w鄨 Sb释&7D'v6϶5% @fD=#N}`H%Na USخޑM^b4b{,i;p'kK @TcHFÒ^IW*3GC?&*bA\` N`+|6}q]^*iiÕE실,|D_|C\ғ3ʚ>B0%xP32qZЯ3}K?V>}4v1[5AWe nL7mN;Y2hG+c~¿ݪHM+6BE~ ٵa+*9 bZl.aG簞tG3f2GYö~ 5͊Cb As NGc  f y43J-*S.`a]|8m\i?Xnv)F1%0# *H  1jJʟإOt*ꄀQ0A010  `He BPpKk3o,Iqa+k,; f f8_Ea`openconnect-8.05/tests/certs/dsa-key-pkcs1-aes128.pem0000664000076400007640000000135713123423207024102 0ustar00dwoodhoudwoodhou00000000000000-----BEGIN DSA PRIVATE KEY----- Proc-Type: 4,ENCRYPTED DEK-Info: AES-128-CBC,B5E2E3C0512B0453408F3A8861A02AC9 0yXMkniOOlMsqGmIui1NYCQ/BDrGvN+1WFNdocoyWtR/XJi7Efln5C3ZZRn4i39q iN50QLbTeLlofmrzbXQwV2PW5enkUZuArVawsxQBLG7ojumfkFCaDlXz2AN1iqWR fjiuOWirvMX3hGa+R8obCfHGdnYIesx8PZ3etsHC39dyD8H2SU4Unz7kNh1iRaaB Fprmu3uy4xa4EdDHILtpsp0eVQULD1VQOT/2Ezq8jtayUJTpuOyz1lFgt9iacl2P Hg638Tpx+iOVV3esLDdfArwzAES1Hc4vnXKXA24KFtLtHidKSE8A1bcXdpARB/UW dWo/F1iAm+kjuvIaxz6g5cM+CsRO8E6HRWeI4v3jsFcsfmzkyuWoVHm6GXCLk30c lPgLIjW8zjDyGhvtT7aV+T11gzL/3SUw2ww+ue7zghpZ3+QJNQlJP0Ym6xP3d7+E UdUZdyclOU0kzNDGvPcUcEs7WfcxUtqNTvQm7lRJ3y0dHuRJ4SINrESe5c79ch/R 0ISpQC/XbCjY8o0wXFBcl/RsFpGdSdmv50u3R+8vV+Rr5S0TavFhkh7EnNWgSqip fb1j8aRVvYGpJywo5IyhxQ== -----END DSA PRIVATE KEY----- openconnect-8.05/tests/certs/dsa-cert.pem0000664000076400007640000000234513123423207022225 0ustar00dwoodhoudwoodhou00000000000000-----BEGIN CERTIFICATE----- MIIDbzCCAicCBFff3f4wDQYJKoZIhvcNAQELBQAwDTELMAkGA1UEAxMCQ0EwHhcN MTYwOTE5MTI0NTUwWhcNMjYwOTE3MTI0NTUwWjAnMQ8wDQYDVQQDDAZBIHVzZXIx FDASBgoJkiaJk/IsZAEBDAR0ZXN0MIIBtjCCASsGByqGSM44BAEwggEeAoGBALZ6 DbjeLf24xaULlkEtInXlvAnG9PgPmZX1eTA1bd8o1XEs9Ejdy6YbEWtdL3JmQzLm 0VcV1lhbWDQY/9M807pVY1mBbKpJ6EXINLwrnCun/ZRv7jlrA0GpwrTTWHhc0ZyC dWcCs6k/7gBF2CyCnGKJVdvI4/520vAO50WReiVLAhUAmL74s54WuR187bweT4Y1 s1vJpJUCgYBsMxuyAJ7TEa1OLnrqDX1G2OTsxL6M2IynMKTgrLRD1DzyVDxyZGqG wB4k6jtEkDAIaz6c1BEWk6ZBmMqbAqHwGnQ22HSVsNbldQljIEwSlR4QUWLjG3rv ppIEzUR6uqu0Uf2B5gL6ywtvKi11aP0RKaE6MyBjD75P3gmjlp108QOBhAACgYBp ChsNXENm9wRnRXuxmG+8SXrCsYBGiaovav+u8hGQkLYzzqKfEtFzjg8+vdQF0Fw0 FT4GpC7AtyYQyHM0A1NZbVOtxlw0iBspMaDtrPvWiBAeR/oSmkazu4aPOLeINjQ6 yJfAFAab/LzBvRKf2Nh7PJesux4XzLrlXignSV1HuzANBgkqhkiG9w0BAQsFAAOC ATEAMmawHHaxCbvVeDZxlbSk/KLSd4E0f/FRylSfge7U043LO4B5pTrzPLupp8q2 Y9nB54xtFu1q091uD+Nehl2exEHU7Tp0ISOR7sGfS30tWoOhh7btrjrCrPFwrbnx 5UHDKuxusc+y387wq2E9zeJ4zG9UEx8lrL3oH196DkeO+JDR8oX7yNhJ1qHEHDhF Xc2velMC4b4LLoh4aL6yyREFwRdIH2g2ZEZbY6Nd5jVJYyBwm/q2w4QS0cBxGjtj zY3oVqv9ED4W3u8xw1IKzOSMtUdSroWuMrYSdGSqQBVQcGxZqZN0NlSsmGbjljRB TaaQt2C5kA64RHOpN/udRn30HR405MCmy/PB3dOVt0s2dXrFhIPIX9GU7m6rBnYq Rg4RDIip9UGHSZL9TMoTogwJlg== -----END CERTIFICATE----- openconnect-8.05/tests/certs/user-key-md5-des-sha1.p120000664000076400007640000000525313413514073024203 0ustar00dwoodhoudwoodhou000000000000000 0 m *H  ^ Z0 V06 *H '0#0 *H 0 *H 02k݀zaT(JD]6~:A}RI IݬGǢdl jn!fxMH'Z`o !Kg'xmU,bK^"Nb g#i+gAuσ"kgG%dWx/dPy ΝfZ9s,DXё&REz lpv- 6Z'Pl_A=F^.^|:U7<2ow:_XXW`\r=w F$@|4|kLOs2āĻyN [;/$B-_Ku ޞٌg^7eɅwΏ]}R1P $40M?ԲtUY|l\4'k<!,gwaws23r_98Ԩ2'>Se31 MH9I #a-55#X?0(aG޹O.7r~_M~`y{>eꩋAnVR:H:: d)aP01]i?2ZT9Mi?Nw^|W3§0Xx-XVf;.{nQA%Axq 3 E4H3QDͼ:_eYq86MlYC7Ą$ź)Z˪8_f}<4G؏shUGa;E0|aP ̔iț3H$?T*8ئ'ݘK.D mlHhTy 9U_)ӘԄU(~B2+uMd64 XGLSQ]Q)}?c$L_(^FIU&DB۲`#տG|]H.KS4Vr<NF8Z\1&iDKCK_8T#-sʿ\0Lmwe "ɀ'!BnfwRs+qB UIY>(f+R6>o2E^\1FB<66+]@NB1T$|0Nߍt@ sDe=ˀj*HB)etlo"b&S4Zމ׳ŀ5)wqx,/ԡ}1fm25 1%0# *H  1jJʟإOt*ꄀQ010!0 +h1bj l\ixopenconnect-8.05/tests/certs/dsa-key-pkcs8.pem0000664000076400007640000000077513025070326023114 0ustar00dwoodhoudwoodhou00000000000000-----BEGIN PRIVATE KEY----- MIIBSgIBADCCASsGByqGSM44BAEwggEeAoGBALZ6DbjeLf24xaULlkEtInXlvAnG 9PgPmZX1eTA1bd8o1XEs9Ejdy6YbEWtdL3JmQzLm0VcV1lhbWDQY/9M807pVY1mB bKpJ6EXINLwrnCun/ZRv7jlrA0GpwrTTWHhc0ZyCdWcCs6k/7gBF2CyCnGKJVdvI 4/520vAO50WReiVLAhUAmL74s54WuR187bweT4Y1s1vJpJUCgYBsMxuyAJ7TEa1O LnrqDX1G2OTsxL6M2IynMKTgrLRD1DzyVDxyZGqGwB4k6jtEkDAIaz6c1BEWk6ZB mMqbAqHwGnQ22HSVsNbldQljIEwSlR4QUWLjG3rvppIEzUR6uqu0Uf2B5gL6ywtv Ki11aP0RKaE6MyBjD75P3gmjlp108QQWAhRynY/qbQJYWdtv5l3Eh8WJSXYyYQ== -----END PRIVATE KEY----- openconnect-8.05/tests/certs/user-key-pkcs8-pbes2-sha256.der0000664000076400007640000000300113413514073025317 0ustar00dwoodhoudwoodhou0000000000000000W *H  0J0) *H  0h in'0 *H  0 `He*QJ :;J{lE`[A7H_т:q d'_w͵ yB k~V&ѝᘴ t[/z;S0q /]ѿs`_ d,ލRK4D 6 H=c9hݨDmeū trF"wpz1w[hȖoǎyy~NX kuC{ЕQ!>A F-3Kj[б$ U۽Թ@|UţκX^qۡ }hײgTkeRPpv`ͽ]m=aT "^0EGfpJ T$ljB0DYX٪sK<1](>dRz/x1鏎~!26ajCbONt?o&Lbcq>p:Yʍ|by"|錩\j hODBz* ^.AȀ{6ILF[‘O'IPާk(wnЩ+kr)WA YEK[Y(e^P NFY1)zc`@/5%"XwHgZȰ$q3cc5C V?5H!z82JLw> %jtzqӸrBζBXuhIח+Fek"e;k`Z֯R)cQz?F!b}ì7_mX8SF˵eyi%zN 8kxˎLYvpyf^҈!fDdKiK߮lSaA4.apG36k0ai:~%D rRaCW3R ?5>r$Gvw21P qNSm%ť>z^ǫ4 mUa=)f[yE3Z Wya廉V]CŻLm?P{;5>6nS5B9Byzg-OOϼ ?H/y2 $!;ҁBN ~ߴJf ҃=ֳ!'҃A/mwSz/rJ15DTQi+C+;Op Y$ %_f; jr_ F>eՔ˛/Ͱ6openconnect-8.05/tests/certs/user-key-pkcs1.der0000664000076400007640000000260013123423114023266 0ustar00dwoodhoudwoodhou000000000000000|1Tyx-HQe@RI]p&h9o@E"qZX(y^2%>;4/7b2SC,]5+4f֧ЃVt0-([z͜\Q Hq4w]xH 7 e;+rR_` Cf&)>jb X&D׌ov 䘷rz]O #.q0_u g}MvdJPǏy>/3'M`$r=)J<I>&z=EZM*cO-c(;GG|,A2ɾU,kF*V)0] $W~P3T[-b'\BN 2+$^,yjzTx}.5i39B]47,|*[AtRߡF=4/U@|L$?\d\UR1B&@-,V ޮás-*5eGtpحtPrՇ?̶&%YٺGCM۝IP3*D@d.B% vy](U82ֺsܶ_fLָid\~L[7)<=C3#3$XîL= N.x v=^o}MqjG% ;־9ׂ=T=v]4Oy^\qYCW<3 M9?bO!zZ_)g?#=ټGV~)gjZ0 I`ј⊝)3Dw4>ߘ̫s<\"O <#=u|NwpWT">YZObU}-!շO":2mRvV=t[Xrn"DjEkF>B? *{!]س]|b6"74^g8[Mօ: <G5/Ƭhq^:aD룠/]_)†ggtl5=[j^َꇽoVHtWim|Q;㪞u s8^s:$UNX*BI%+E`X>L@B ?NhAy~dgE(W f`$2l$CV"P)8NBYI2 e07)c  4ThqHopenconnect-8.05/tests/certs/user-key-pkcs8-pbes1-md5-des.der0000664000076400007640000000270513413514073025556 0ustar00dwoodhoudwoodhou0000000000000000 *H 0LbBJWk񤝮QK0vD|DizR0Wi #,Oaeu⵴_jp\rس]@$s3_}b-h˽_R8`vxޛCkpUeҥHdGob 3Xm$>Vr wE CKڭO|nQ#L͖Sle.\PA7;Zh%neyS~B)&,"YAEu*P̀z\gqL m9z~T=.hp&Z郿eF.MQNn%_`]ʣ }!9d ƍ%V#嬜Z( s}oDFZC{I.Q;jbn`,N!#z =ᇏ,R\˵fiZi, *z-eYc5v175[gzliu_Mff4k*Y7 Fik\Bd:m^&ORi5W7[2&gҪuj曹n]`26w/̯1 I>(tLz);USˋe/VD6םn~O raff~T@)ujUA#zɥA6=mƮkK0ڦ- V>(ioA$ X>F`&Sk|qFz6k9V^'K{T21׽* PMEFIOm*g>RqR}-t&[C(`t q)wUEx\^X Bz)I> Byy/d<&?XiJWx@\P MOџ9@3a^:kL$Gr惵'g&Iy偃:7Ux`jRHG8MZGԌ\S}4M.&yUFs,S M Ko qhи C{ۆ|ACGL.G_ ތ߀<ާ*0WH)ɬۘ)Xe)i2]-FGW*yJ6/`!Y$GT\c+Ӊ9v4,C' &%CC6v {9ڂ;hrֈ)@ru;|4j q;k(l 6GLLlJ(;,a?^B1N"GPxY>)4&~\][XL9Kopenconnect-8.05/tests/certs/ec-key-pkcs8-pbes2-sha1.pem0000664000076400007640000000057313025070326024573 0ustar00dwoodhoudwoodhou00000000000000-----BEGIN ENCRYPTED PRIVATE KEY----- MIHeMEkGCSqGSIb3DQEFDTA8MBsGCSqGSIb3DQEFDDAOBAiebBrnqPv4owICCAAw HQYJYIZIAWUDBAEqBBBykFR6i1My/DYFBYrz1lmABIGQ3XGpp3+v/ENC1S+X7Ay6 JoquYKuMw6yUmWoGFvPIPA9UWqMve2Uj4l2l96Sywd6iNFP63ow6pIq4wUP6REuY ZhCgoAOQomeFqhAhkw6QJCygp5vw2rh9OZ5tiP/Ko6IDTA2rSas91nepHpQOb247 zta5XzXb5TRkBsVU8tAPADP+wS/vBCS05ne1wmhdD6c6 -----END ENCRYPTED PRIVATE KEY----- openconnect-8.05/tests/certs/user-key-pkcs8-pbes1-md5-des.pem0000664000076400007640000000403513413514073025563 0ustar00dwoodhoudwoodhou00000000000000-----BEGIN ENCRYPTED PRIVATE KEY----- MIIFwTAbBgkqhkiG9w0BBQMwDgQIj0zLYsYVnewCAggABIIFoNbtBreeQp6iStj1 h6NXjxaaa+zxpJ2ujFGlkUuYMHYHRHyBRBLPEIBpFK8TeoGz5PtS0TDdV6fNwGmw qv4aDSMFLMNPvdhh85mEZXW54rW0h8YOy/dfaueHcAYBlANccpnYs11AJHOul8sz X32Q5cDOE2KUqC0DaMu9X1I4YHa2AMrX6Z7/pLx4FN6bAbGNgENrm6j7+53xf7Nw +rdV9WXm0qXlSJ/yZNnawEdvYgzUM4YC91iIDoFthiQ+VtRy7oTQC3dFCsjT80NL 2q0X555PfPpuUSOgTKznzZbkUwMWhmzUZZwEly4YXFBBNztaaL2nJeZu+QOZZXlT 7H7UQvcpgiYszh4WIlm0vEG6CEXm4X/Rdf2q4LMqs4BQGKfMgJbZeq9cF2cIcf5M CrKxyW3qOXp+kFQ9LsURxcrgiWhwJlrpg7+NxWVGLstNUU4R5W4lAF9g3/xdo7P9 w8qjxwp9kcMhOWT62AaTwtLkIMaNJarwViMCluWsnIdaKL4Etb+iC7VzyucAHA59 5KjHb0S8RlpDe5roSS6GxdxRiztqYn+riW5gA7v8HiyyTiHnF8AjehwNuck94YeP lMosUqXYG/BcDsu1ZtFpWmmRqNgss5eQ6bogKqKI0wN6vC1lqVljho0123ae9Jkx NzX05s1b4mcBemxpdV9N0tNmZh3gmYn7+7vN7xzzNGsSKtwZWTcM4/ZGlK/uyGmb a1xCvRr+5v+fZDpt2l4myfZPUp8UuPRpNVc3FaTl8Btb6jKHJtZnmdKqunVqzOab uf6cgLHBbl2Ah+Dd4tv3YMUy6zZ3Bge0HL4vzK+B1svDBOIRMQvI0N7usUndPp2q KK100tdMtNF6KTv5VVOApIuu7MuLwN9lqRXKwbyaL1ZEx/Xj5jbXnQJu935/Twpy YWZm4Rd/uay1flQXQMjhKXUC32rNAvQUVcFBBoUjGw96yaW1QTaiPYq2bcauH4K3 rAZrSzDapi0gVoYACD4oqh30aW+aQaKxkRn9ziQLWDyaTU836EYnS071BPq9evth iFi2uGnnYmVtF1j1RDDaiC6ip2DxznDuvmM+sz6k6cUIvazqx0bp4ZXcAGAmU4lr fHEbw0YZ4NvvejYAApRrqzlWvf9e4icR5UvMe/lUkjIxkde9n/PZKhYLUJxNReUQ 8ZtGSU8cbYcqr2eZhj71vFJ/cedSrLnLfd8tFXQmkKlb9EOFAYgo02CBdKMNcSl3 FlVFeFywXljSGwmZv8rr2u7vEUIGlXrEKZnLST76DQpC/Xl5phTrL2Q8JqsHP/OH olisadfSEUoB5PEGV3iqQKOvxVxQIE1P0Z85DuBAguOAM2Gfg/FeOmuvTCQY3uDe ALZH8KW5cuaDtePXJ2fRJkl5rxrlgYMcxzr2EtQ3VZJ/eGBqUtjewZrAu9POSO74 7oMTp60ZRxXi3jiUrJZNWtRH//6ezNSMyhWsl6dcyFN96TTzik0uJnlVBEZzF60s Uw1NIBdLom8Lccxo0LjKIIxDvLb7e+MG9tuGrXwSyUFDR4pMzC7nR18JE96M34DG 2/k83qcq74swV+K5xEicsBkpyazbmLYpFpZY8pfI1mUb+ilp3+veMtdduS1GR/RX KgXqeUr5toY2L2AIIRasm6j0t9ZZ7vbe+q+dluIkBKaTR1Rc+txjK8jxkdOJGDmz f3am49sFNAIstvDzQ+wnxCAmG6mY+pAlQ0P8NnYMu57dxAEQe6PvFjnP2f3aghs7 m2jXct/WiNQG6aopxEDb9XL8daI7fOHKNGodqRMBC3GsO2sEvii2/Gy5DL4Kiro2 5UfWTPOCFotMbJYTSp/KKJbk4fMC1xI7lKosYYXbHhg/oV5Cr5zp8DFO+SL4lB7v R/VQqKJ4AJpZiz4pNCbwfqNchr3bXe4AosATW1igTDkZf6u6Sw== -----END ENCRYPTED PRIVATE KEY----- openconnect-8.05/tests/certs/user-key-pkcs8.der0000664000076400007640000000263213123423114023302 0ustar00dwoodhoudwoodhou0000000000000000  *H 0|1Tyx-HQe@RI]p&h9o@E"qZX(y^2%>;4/7b2SC,]5+4f֧ЃVt0-([z͜\Q Hq4w]xH 7 e;+rR_` Cf&)>jb X&D׌ov 䘷rz]O #.q0_u g}MvdJPǏy>/3'M`$r=)J<I>&z=EZM*cO-c(;GG|,A2ɾU,kF*V)0] $W~P3T[-b'\BN 2+$^,yjzTx}.5i39B]47,|*[AtRߡF=4/U@|L$?\d\UR1B&@-,V ޮás-*5eGtpحtPrՇ?̶&%YٺGCM۝IP3*D@d.B% vy](U82ֺsܶ_fLָid\~L[7)<=C3#3$XîL= N.x v=^o}MqjG% ;־9ׂ=T=v]4Oy^\qYCW<3 M9?bO!zZ_)g?#=ټGV~)gjZ0 I`ј⊝)3Dw4>ߘ̫s<\"O <#=u|NwpWT">YZObU}-!շO":2mRvV=t[Xrn"DjEkF>B? *{!]س]|b6"74^g8[Mօ: <G5/Ƭhq^:aD룠/]_)†ggtl5=[j^َꇽoVHtWim|Q;㪞u s8^s:$UNX*BI%+E`X>L@B ?NhAy~dgE(W f`$2l$CV"P)8NBYI2 e07)c  4ThqHopenconnect-8.05/tests/certs/ec-key-pkcs1-aes128.pem0000664000076400007640000000047213025070326023720 0ustar00dwoodhoudwoodhou00000000000000-----BEGIN EC PRIVATE KEY----- Proc-Type: 4,ENCRYPTED DEK-Info: AES-128-CBC,927CAE0CE3B772EB2C054434B4BAAEFB q+NRTd0tcrm8yZxMX98F3aFBmuW+4dSqZUKpcNbAPcAVI3YChesLJ7gSpwtlIJkR WHDain7tM5jsioNxYCBBi9RZ8k7yzl1XGY8ipVQbHFh9tS38Fku17DL8lSpyRR+f EhleTvJEvHFFENFQtx56zGQ0T7ePdV3UvO9jDcyMAXQ= -----END EC PRIVATE KEY----- openconnect-8.05/tests/certs/user-cert.pem0000664000076400007640000000241113111635411022425 0ustar00dwoodhoudwoodhou00000000000000-----BEGIN CERTIFICATE----- MIIDjDCCAkSgAwIBAgIEUdgvFDANBgkqhkiG9w0BAQsFADANMQswCQYDVQQDEwJD QTAiGA8yMDEzMDcwNjE0NTIwNVoYDzIwMjMwNTE1MTQ1MjA1WjAnMQ8wDQYDVQQD EwZBIHVzZXIxFDASBgoJkiaJk/IsZAEBEwR0ZXN0MIIBUjANBgkqhkiG9w0BAQEF AAOCAT8AMIIBOgKCATEAq1SY/KnGFZWdpsGUhJSReR542y1IUZllAQLAQFJJXetw vCbvaDkeBJHi28tvk0BFHiKOcVpYiSh5XhoyJT6LnTs0fxn40C83t2Iyt1OlQyzF Xeys+TX6FCs0ZvHWp6HQg5pW9BmDvL8RdDAtqChboqt6xs2cXPhR6akMSNtxu7E0 d/fu3l14wEgKNw1lHjsrFAOJcvJS7V8AxQZg6oAg0EPsZrzSJtvwKT5q+WIgvlgm RLrXjG92pgUg5Ji3xHJ6Xd9PDSPsLpxx7DD5FF/IdQurZ/Z9+012ZEql1fq0CFCd E8ePwnmwtD4vidMzJ02fi9NgJAersnI9KaXESuw8BNJJPiYb7HoQPcpFWoCLTSqW Y08tYygPO0dHynwsFUEy1eDJvqVVLLNrRipWsRvtKQIDAQABo3YwdDAMBgNVHRMB Af8EAjAAMBMGA1UdJQQMMAoGCCsGAQUFBwMCMA8GA1UdDwEB/wQFAwMHoAAwHQYD VR0OBBYEFIsBCUs7kezjIbkd7I1rTF2eQIBeMB8GA1UdIwQYMBaAFEgjNFMKiTE4 SlrqyrbSpt7OHSsYMA0GCSqGSIb3DQEBCwUAA4IBMQBrveOQ1xHPbA3jvfRhzVeD Qb4qkkbd+kRsYBzvPh4v4eJbRYhqHlAtjZbEx4B1WXtUa/uGsPFtRQnbSN4gCodg MF418FLEVUTB/+F8PdZtWMoc/b8EmpsQNQX80QE8r7tkMV5Zj+9vDTXlwAd3DjEg juMu8aZN8b6FW98ESJ2MycnBuOPi0ktVg+nYe3Evjon8TafxsL9Hm5fEhd3DPTgV NghzEIcI9uYcTimopfUkuA3p2bgZJx1zNf57gR9KgWqTzaJx12AOCO7qyCtEG+RF bP5EaNaGrYlPfp/5GiqXD2vrXW44s1sTueNKEDJb3Km0oU6z+U+R3rzMNpFEuuA0 dPdotHsO207sKAMBzwpjxCN1C0tBneBos8u/tVw9UpMguuq48Iz3puzNo6pPKv8g -----END CERTIFICATE----- openconnect-8.05/tests/certs/user-key-pkcs8-pbes1-sha1-3des.pem0000664000076400007640000000403513123423207026011 0ustar00dwoodhoudwoodhou00000000000000-----BEGIN ENCRYPTED PRIVATE KEY----- MIIFwjAcBgoqhkiG9w0BDAEDMA4ECGT7vziFqXEkAgIIAASCBaBZVTKtQqnE5MuC AgjsFQc8GGYU28y0J5Pmo1BDc4VgvkFF6ey7MVhr5le9dH8xmI8I4ejslr4diF5I O3l+o/cBWEH0UeeEXiMn6sliOW1WX9mw4ZPYs8YsECxBenn6u8yEmfWbRr7O8pMZ Kfw4agKcE7UFNKllhau/OMH6xb8DOXLx+67RvOKZpIbuZTnL0p7yU1d1hldDlLeM rOXoEcxkzY9JqNzvsrbrXf/MynnSIyQJqI2e31Pqn2MX/hUX4MqF7QnsUh6nYUlX O/srKG4Uk55kO5zpcNBfyPLwBejnsRHnCMaClajvdnw3odo/oWnzzm61sgroyBcI 05NsOEk7CxrL/iAuBZeLv6wTVMSS6Eo0tgTN42tlumfjta0NIagaub6tnchLyf4i LvZnn23ua5OxI+yZ6oOoX3xJR3XxaX9Ii5pPZBny/QXZ+xL2uJNU6FUNhRlF8ywA Tc+FJnk/4AAXPtB4Hg/g5MhOXpD+oleOlPmxkLZHENGabiDi6ysEZv/gtdPK090i FDPJQJrIDttc6/Jbs1ECVGexViHaF5WBBdW6Ukgh6JII+fGcbL65AXKCFTeZfoum G4LUSndP34oLB4Xsoigz0sEfbfsSz7fD2AKfFOX0RiFfL4mL2GkVIbYVzA7Olav8 bwGV7uRj8Q+pAc4JbWxP/4YlReNHNwRGVzo/vptjadNS1vMvU6bc9hYZhhdGpZiA S1KYV5BLiFx2skmKSI9h6AF3zjYk30LObNk7G/80x8Dw4J5KjjXp2ZGtb8kwYrSJ WiwhUX5rn9LMWbLhvzUdV/adUI/f6deA5Bu4H/DjU1ApSo8gdf1tnmuRiHOuA8Wg pudUv3evn1g8WlvD7DDg9RbgXNp82A+b5MGODbB8M2pOSErnPcypIffc+LSAjK+m 32txpWlMO6M6nI/1shkrb0pvJZnr/MriVDLV6AsB/s3Cs1w8TV0rkZvnuZOPfLZP G3GDjZrJ5YMDElFh2xPN0WzneJOi7lOA/LMIJp7P4Eg8PlghbPmBejx586pfzfsQ TJ8WEQstPRWWdjDmQqofHgPLh5B6cP1I9UPiYD+ldUu2rhl/US/red2kWOY8COfz J/1Hnx6jQcQYBU9la6Cu3oaNwUU7VU158rz1Mc6hl28q/yZ5/3zaVruYSyQjNoG2 CHKthdQLq25FkAIcU38K9T8Qb8dLdqKGnl4sizIRzAoVlrJInV03aufIAW0hlv3X EVKqv80WPuTo0gMdDPqU31c8cMsBHvp+zq63CmUN+8jXZF9ARfWUaA6iSIRHMDox g47DPZKjvkRsWgo349QPW1o4qmZ2joxJLXuDcJEFAMHzByxipi5JcwaZBuYGBHmB e/Vhl5OTVb/aDzW2PRBMvrz7Cwo9K2usSQlUO5IR4Lrs9TAafbREE8T47uXz/+Y8 K/P14JtHwJAagxLNsYyZzOXp80FJUoIbHyQDUSDsQu5eiAlPBFlWD9lEoQzeOUqy yt5UUD8hnpPydYvMwlU9qWgY9fuBNIcYr3OsseRHalq8AOrIV6PuoDB/uKltBt0i jzBMjj6JjgjUnki1u/drbi6g16dC1b7xM5So2ZR9ihQVgp1uOEivesM+9xMu4KJp ljnMbgUi4xIsLoqDziP8zGXljnG3WnpZYRXoy6fOOW+RuwSPeLZN6l/AkTzPvB6U jq1r5XOMq7tBy0BIPvki8lk/vgjWWox1XGpcTZ4F38Hv1ghReHO/mMW0iRs9YNoO fVD5pR6VAaiAa0/1jaZA2Dcg66a+mAYrc9BmYG3klbF30I5eJyxjKGqey6TESj1u xYBf+X4pbmCZgFSz3JDdFD5guaVBK+JtiP1MLJaNj2+GDXqu8bbOZlEK1RLsxQBE FqKQqAXSf3W3YJK8kPR8PSyiokROwvzSE7I9k9loptu92wqNYyo= -----END ENCRYPTED PRIVATE KEY----- openconnect-8.05/tests/certs/user-key-pkcs8.pem0000664000076400007640000000371413025070326023317 0ustar00dwoodhoudwoodhou00000000000000-----BEGIN PRIVATE KEY----- MIIFlgIBADANBgkqhkiG9w0BAQEFAASCBYAwggV8AgEAAoIBMQCrVJj8qcYVlZ2m wZSElJF5HnjbLUhRmWUBAsBAUkld63C8Ju9oOR4EkeLby2+TQEUeIo5xWliJKHle GjIlPoudOzR/GfjQLze3YjK3U6VDLMVd7Kz5NfoUKzRm8danodCDmlb0GYO8vxF0 MC2oKFuiq3rGzZxc+FHpqQxI23G7sTR39+7eXXjASAo3DWUeOysUA4ly8lLtXwDF BmDqgCDQQ+xmvNIm2/ApPmr5YiC+WCZEuteMb3amBSDkmLfEcnpd308NI+wunHHs MPkUX8h1C6tn9n37TXZkSqXV+rQIUJ0Tx4/CebC0Pi+J0zMnTZ+L02AkB6uycj0p pcRK7DwE0kk+JhvsehA9ykVagItNKpZjTy1jKA87R0fKfCwVQTLV4Mm+pVUss2tG KlaxG+0pAgMBAAECggEwXZcg2ySCqFfKfsVQM/xUWy1iJ5hc4PZCToMKMhjBKyTp uF4seWp6E1T978L5eB6rowKNfS41HveVFOqKaf34ljM5QhUV7eNdNDfYLHzs0f0q 81vOQXRS36GaRoHlGD00gi9VQJKPfBODnUyUJD+njvzNXLwEpmSfmlxV8ZauUjFC 0CYHvkChLagsrFYM3q7DoXMtKjVlR3Swm3C52K0SdFCzAPuGctUA6AKy0ePVhz/M tvMm/iXBtVm94Mn62bpH+EPqr89Nkq7bnRFJ7FAzKrZEQKwGx/ZkLkIlgSDV9nZ5 ufu90sVd9ygWncwTzdlV48rH0jjxkjLWuttztty2X2aJ40ye1rjSAe6o0mlk3Vwa fkzkHVs3lCk8kz1DuzOPECMUErAzJFjDrpdMPcXBgQKBmQDBnA1OqhsuxBTmeO0L dpCv2j1eFW99nJdNcaMdakeUJSCdmPTQO9a+vhI559eCPVQ993YG4qxd5h80/byd nIv1T4OJj3nqnl6lXOm0ca5ZQ//sA/ZXPNYzC7pNOT+QYrJPr+AheloPk/T8X7op ua9nGD8OIz3e2bxHrd5WEdHjwH4pu2esG2qvWjAZDBRJr9saghBg4dGY3QKBmQDi ip2AtSkzBkTS43e9ND7A35jMq/O6czwZXNjtyCK8uY9PGtgNCOLiyug8E6ojGz11 1HziTs3K0Py3d3BXVOEcIqI+D6dZwFpPsehiVYUHfQOkj4LrLSH8y9W3PHelnWem q5VdHtOjSXibdSwH6b26D2Zpfi5QL3Zf6Sj44cnOd0pI7pLR1dwpLz8pehKw1vmN aOSCRew6vQKBmHiO3LZ0NDL9xGnzOOAfd18ZTYdNX7xfCtQdg82oRWQZbmLUQPV9 nW3u21iVZlviJpfjhOoqsdxSlHIh4hZeycP6PFUnM2qGLTdZUOmctE0/i5gCq52M 83Cbx+mYUV1uJ8x5Ht6Z2oTCxBV24mxjBLb0oScDiN5AxP35ZW5A8GqajbUcziSc eeUxCqw+Gk/8IjoybVJ2q1Y9AoGZAJt0W1hy+G6XIqtEhGpFa7qWtRfd90Y+xULy P7oL2CqBeyHhXdiz/F18t5hiNiIZEzfENF5njThb6M9NGr4S9NaFvaewvjoMkOyX PMwdu0fENbe68y/GrMf4aBNxXvk65mGs5LYd7UTjqeujoC9d6l+/KZvChq1npGd0 bDU9W2pe2Y7qh72Ob6GjVkh0CFdpbZ3oGMZ8jPpRAoGZAILS5Dvjqp6ZdQ1z5Ok4 9V5z5MI6JFVO6lj3KvIP/0LX4u9J0iWNhgKnK8lFHu6gHGBYPky7QJlCIP/HP05o jIv06EH+9HkApH5kZ5WOv8NFKNzaV7mqIKxmsMgRsprCYKwkMn8X5GzcJENWIlCG Kac4+06M4ZrIQqRZq0kyvQtlMDcGlSljiAkRCwrzNIL2VGjMcenqn0gP -----END PRIVATE KEY----- openconnect-8.05/tests/certs/user-key-pkcs8-pbes2-sha256.pem0000664000076400007640000000415713413514073025343 0ustar00dwoodhoudwoodhou00000000000000-----BEGIN ENCRYPTED PRIVATE KEY----- MIIF/TBXBgkqhkiG9w0BBQ0wSjApBgkqhkiG9w0BBQwwHAQI1NhoCmm0bicCAggA MAwGCCqGSIb3DQIJBQAwHQYJYIZIAWUDBAEqBBDk8ZQX5/5RSgw6O5zfStl7BIIF oBFsReLKYFvjQeo3SPCU4JSlXwjtHdGCCBI6q3+mtMhxk8QJ1GQnGl93zbUNuXlC Cthr/X5WJtGdkOGYtAt0pO1bLwL6euvTO7rkU/IwubGF6HH/84gNGNjkL/zJXdDR v+FzYIpfmgpkLOEIvN6NvplSS6U0RAb/DOg2tAlI0D3FY7Y5rGiw3aioRG1lg8Wr CXRyRiK58XfqcHrkMXdb5f6QGKtoyJZvzAfHjnkVeX5OFeYB0sPHWAtrHQMX+tna ddHDQ/p7GPuw0JVR4q75IRs+QQ1GqRTT0PC2LaYzn0uxatPH/Z3nW9CxAa7E5SQK VePbvdS5QHwEAITG0VXFowTOuhNYAvacqYaYXpd/gHEa26H3gBMKxfrOfWjXsmcS VO72oZCAa2VS8RRQ6AhwmqZ2vmDNvenBPGK/3R+aGX4fFgmN+Uv2CxAu8ZYN1WHt BJOdI1hTFrtLCfuU398CPdk8Xc0Y45N29Ao+XW0W8z1hqACpVAy89YYilF4wRRpH ZnBKrwvxhfQcqVSuJOOfxmxqQrylzzCF4O6ug+lE+RlZpO5Yvtmqc/i4SzzxAu8x XentKLEIPmQaUpWElHriL/YYeDHpj46PAPbyfh2vgxLFGvsf6CHT1PkyNmHGwR6Y FmoEQ75i3f9PTnQ/byYODkyiYmNxPnCEOpNZp8qNnAZ8YnkifOmMqYJcaglohdlP REIAehmXKgyzDpe1Xi6OQfwDyIB7Dw+oNqajSUyLHqOtRv6ziLxbwpEc1gMETyeP yUlQuenAy96n6WvQKPF3boMH0KkrjaPyvBDsawIPBXKlKRPL0d9XQQn7m1mqRUtb nVkog2XKXuDAyVDQC07dRhJZ4u/AMX+4KaJ6Y2DhQLYDuKgvHqI1JSJYd6OeSGce WsiwkiTS2nEz5WPgHWM1sEPsFwlWnxubou2DPzWugh1IIed68TgyShgTG0yxdz4E ICVqdBN6HHHTuMdyQgasxc62QhHo0FgdE3XWaNFJ15edK0aMZbfZaxv5Ab0iZYUI lDtrhrenYFr+/davowWJ645S95+bKagSkmPmz1G/orjh86XE93rswhw/0EbxyRSK CO4hkOVifdrAw6z6pTfx9OJf7hFtWBQ4wxZTRrzLtWV5qKP2GBDiaewl7R6/eoWs TsUNEjhry3jLjqzmTOtZz3ZwvHkCZhNekdKIHSEWEH/uZkQaHIVk20tpqqdL365s U2FBNC7/rJXzYbtwRzOhNmswYaKxBmnxOhoWfsCcJZVElB6qDHIQkBFSyQBhQ1ec M+hSsAo/3TWM7z63PJNOCPnOr/KspMHCuh6iDy4yd1FN1rGZ0DNbL8QE/9pS8zIw fBYi1/7oWIDeAvw5h8CW3p6o4XMCNl+WtWQBaRVkd7LDtRoLczrwRz3eR6vlvPvd 7gEeqi5O9RIgRkLA6q+j1EwnBdIdcV+OZtmCFMk8CcTQONAFyynLqpq2zGjB/xCH yyORpPEHZiJJhcEmWf1eu3BJPnLL9RW8wCTlRwF2nKeYf3fRMjFQDQ5xTuuy1RxT uG0l9cWl970+BHoAEohewKcTBYz8s9fHqxm65eI0DW2WVWE99ilm4bhbsnkHRTNa uwwH6IxXeZyWH5Bh76aiulbT4qFdQ+4SxbuuGZzRTG0/UPrYe5n9/TuhNT6b6BKv Nutu6P3j4oPAuVObNUL7OUKMB7eDzBC4eXpnD6WuHdEAh9EtT0+/7Nzoz7yiwhS3 v/msCT9IANXsL3kyneKOCyQhyDu90oGxu65CwutOIPZ+lt+0vgYfSpmmZgnSg5a4 vT3a1rMQvSEntPHSg39BL6xtd7FTrnovckrp74QxNdwRlkTXVLRRaYErBEPhK7+S vKuEkoGfO+dPDqMVioxwEQtZJAuhJZRfZjsMorrIanK/XyBGPmXVlMubLwLNsDaq 1w== -----END ENCRYPTED PRIVATE KEY----- openconnect-8.05/tests/certs/server-cert.pem0000664000076400007640000000242212761604271022771 0ustar00dwoodhoudwoodhou00000000000000-----BEGIN CERTIFICATE----- MIIDkTCCAkmgAwIBAgIEUdgu8DANBgkqhkiG9w0BAQsFADANMQswCQYDVQQDEwJD QTAiGA8yMDEzMDcwNjE0NTEyOVoYDzIwMjMwNTE1MTQ1MTI5WjAUMRIwEAYDVQQD Ewlsb2NhbGhvc3QwggFSMA0GCSqGSIb3DQEBAQUAA4IBPwAwggE6AoIBMQCnOivs PxSwLBn28W6QHb+OqfbpcIQJh/NQ81/DlFD6LGTWV4BY4Zb87tC9BBV+X3+lM/j8 u5HvN3nDWtv4Ge0DryLW6Tcs6FPCt4srEfCkh5l54LrMmWbhFgkVlN5fTqoY0lnd YJx2X8WWldRjeL+8E7nFUcFStWrgi9AzgMFrjsL4pql97YAZRXcMoQXVjbRmzVLZ IVumQy7c+tl7Eqz8lx/xS/5Fx9tIRunqNS5jEUs8Nn5E6FvraAcy+eI0gXTGk759 KNPYisSqAuFAmmt/XDTTvvOo6dpAseXqtR2/LjZJWOlXdiZ/yjHg5+RKQ5dt3dk5 7lAIWER9egIOo/+GAkyek0ZJ5GWU6VxTsFcIl6oy3S7EtB0NCIM7hvhy32QrJ5ZU yNncTSf6qMVoedgdAgMBAAGjgY0wgYowDAYDVR0TAQH/BAIwADAUBgNVHREEDTAL gglsb2NhbGhvc3QwEwYDVR0lBAwwCgYIKwYBBQUHAwEwDwYDVR0PAQH/BAUDAweg ADAdBgNVHQ4EFgQUqCVH9o9E1jUb72ys0de5boT536MwHwYDVR0jBBgwFoAUSCM0 UwqJMThKWurKttKm3s4dKxgwDQYJKoZIhvcNAQELBQADggExAK7dBCSwM/OJw+6s 9MJAb7Ygi9xhHSq30Hg3M7DaPC7J9rZB6+IAVb3poOZAtDDtyTqvXH7qY5UMjJC9 GsFmHPI/OSk2xuJJpG+ZJaP54b7kzTtUD6UCHETsgBk2aNuqNhjXR2fYnR9QME0C zZWIDV+5DFEBI97ln30N6PcXvIxp7Rsac3qwzvwt3zL+23kTwgM+DoRPoPO0PHr/ eQ9hvRU5wA2Vc47zhUXIFy1Jmx7Sf//pw0/wq46VUAjDZ5B09EoCpzBNvOD7P+cF FQQ7SId8h8OQ2uOWxT2baeJX0pVbVv+qwOOB1F0q3sjx0dZa/2rxOUZ3wnHG9j8j LZSUkZxGpPQffCSpSPma5RhYff8/BncdA8soT0dyEfXIX5V91IXnrlI8XZrADvJM zzJKdNg= -----END CERTIFICATE----- openconnect-8.05/tests/certs/dsa-key-aes256-cbc-sha256.p120000664000076400007640000000324713123423207024441 0ustar00dwoodhoudwoodhou0000000000000000Y *H JF0B0D *H 5010* *H 0I *H  0<0 *H  0bg0 `He*SxCv2vN0KҀAp:;p|` F*\7\ ox2cw6w3 BpW^׈f̷WX%7eX8~K88fl1W?wˎ;Bc:^R - p 6m]dOq- T*bKOc b@iJ%51. - Qyܻ9f 0vtVe iM/98|_֭|V(} jO@Mp;imjCǽU͹P{װg ޟ,K@<bNFߑ 8Lw+V ͤ<7=>MQED\dXtj^LS88^+Gq9.N((7MtljX ^ 7В}B%CV.ߚ]6GXЗ0^aVbc}22ѻ޹=<)СK>2ݚMj0ǶM& qũ׼dp<3q%C\(k!{endD)%ϗkspBԖrcfxk۔QT4HAஐc6"AI.TʞRso@Y}%ƿDY|0=5.>z N~w#LPMmPh*Y6/Nx<(+cKE qg0J|e:Qٍ<E҅uEes?bRt,FtT;A}3.&o <i{oI$X:ϧz>lMLkp融e6͛]ՙUs0 *H 00 *H  00I *H  0<0 *H  0Ďw0 `He*I/O" P\mLjYOUP 'SdT<2} Uz~ǫ/?u&a%ec"RzR Ҡ! x0+whsG}_xQqIËědgc(ŘGm!hCx9!]V+Ǣv7x^/2%7: 枡e[)X KjHo 'yxn)b<:T  r,6 PT~YuOg$MOIS?EyeB\zݨ`Ie 0,7|]=lKrדlkB V3l/y1%0# *H  1[swIzv9'w/>Q *H=DBOr*Y@7LZ*틙pt |c1bcqxN^WGњn +f"3@\[QTgV!պRH!lr7~JwOߊ (3mϷF!_/i!Εoc mlO%EG7FW:?ciR/SFKRWK\vIHaw6$Bl;4J5ّo0bZ,!Q~kY5WP׀SP)J umksŠTwXX!lz WԞHkn.קBվ3ٔ}n8Hz>.i9n",.#eqZzYa˧9oxM_<ϼksA@H>"Y?Zu\j\MQxsŴ=`}PkO@7 릾+sf`m䕱wЎ^',c(jˤJ=nŀ_~)n`Tܐ>`A+mL,o zfQ Du`|=,DN=h۽ c*openconnect-8.05/tests/certs/dsa-key-pkcs1.pem0000664000076400007640000000214313025070326023074 0ustar00dwoodhoudwoodhou00000000000000-----BEGIN DSA PARAMETERS----- MIIBHgKBgQC2eg243i39uMWlC5ZBLSJ15bwJxvT4D5mV9XkwNW3fKNVxLPRI3cum GxFrXS9yZkMy5tFXFdZYW1g0GP/TPNO6VWNZgWyqSehFyDS8K5wrp/2Ub+45awNB qcK001h4XNGcgnVnArOpP+4ARdgsgpxiiVXbyOP+dtLwDudFkXolSwIVAJi++LOe FrkdfO28Hk+GNbNbyaSVAoGAbDMbsgCe0xGtTi566g19Rtjk7MS+jNiMpzCk4Ky0 Q9Q88lQ8cmRqhsAeJOo7RJAwCGs+nNQRFpOmQZjKmwKh8Bp0Nth0lbDW5XUJYyBM EpUeEFFi4xt676aSBM1EerqrtFH9geYC+ssLbyotdWj9ESmhOjMgYw++T94Jo5ad dPE= -----END DSA PARAMETERS----- -----BEGIN DSA PRIVATE KEY----- MIIBugIBAAKBgQC2eg243i39uMWlC5ZBLSJ15bwJxvT4D5mV9XkwNW3fKNVxLPRI 3cumGxFrXS9yZkMy5tFXFdZYW1g0GP/TPNO6VWNZgWyqSehFyDS8K5wrp/2Ub+45 awNBqcK001h4XNGcgnVnArOpP+4ARdgsgpxiiVXbyOP+dtLwDudFkXolSwIVAJi+ +LOeFrkdfO28Hk+GNbNbyaSVAoGAbDMbsgCe0xGtTi566g19Rtjk7MS+jNiMpzCk 4Ky0Q9Q88lQ8cmRqhsAeJOo7RJAwCGs+nNQRFpOmQZjKmwKh8Bp0Nth0lbDW5XUJ YyBMEpUeEFFi4xt676aSBM1EerqrtFH9geYC+ssLbyotdWj9ESmhOjMgYw++T94J o5addPECgYBpChsNXENm9wRnRXuxmG+8SXrCsYBGiaovav+u8hGQkLYzzqKfEtFz jg8+vdQF0Fw0FT4GpC7AtyYQyHM0A1NZbVOtxlw0iBspMaDtrPvWiBAeR/oSmkaz u4aPOLeINjQ6yJfAFAab/LzBvRKf2Nh7PJesux4XzLrlXignSV1HuwIUcp2P6m0C WFnbb+ZdxIfFiUl2MmE= -----END DSA PRIVATE KEY----- openconnect-8.05/tests/certs/dsa-key-pkcs1.der0000664000076400007640000000067613123423114023072 0ustar00dwoodhoudwoodhou000000000000000z -ť A-"u y05m(q,H˦k]/rfC2WX[X4<ӺUcYlIE4++o9kA´Xx\ќug?E,bUvEz%K|O5[ɤl3N.z }Fľ،0଴CAʛt6tu c LQbz漣DzQ o*-uh):3 cO ti  \CfgE{oIz±F/j3΢s>\4>.&s4SYmS\4)1ֈGF864:ȗ{<̺^('I]GrmXYo]ćʼnIv2aopenconnect-8.05/tests/certs/ca.pem0000664000076400007640000000224412761604271021115 0ustar00dwoodhoudwoodhou00000000000000-----BEGIN CERTIFICATE----- MIIDPzCCAfegAwIBAgIEUdguzDANBgkqhkiG9w0BAQsFADANMQswCQYDVQQDEwJD QTAiGA8yMDEzMDcwNjE0NTA1MloYDzIwMjMwNTE1MTQ1MDUyWjANMQswCQYDVQQD EwJDQTCCAVIwDQYJKoZIhvcNAQEBBQADggE/ADCCAToCggExALRrJ5glr8H/Hsqw fvTYvO1DhmdUXdq0HsKQX4M8AhH8E3KFsoikZUELdl8jvoqf/nlLczsux0s8vxbJ l1U1F/OhckswwuAnlBLzVgDmzoJLEV2kHpv6+rkbKk0Ytbql5gzHqKihbaqIhNyW DrJsHDWq58eUPfnVx8KiDUuzbnr3CF/FCc0Vkxr3mN8qTGaJJO0f0BZjgWWlWDuh zSVim5mBVAgXGOx8LwiiOyhXMp0XRwqG+2KxQZnm+96o6iB+8xvuuuqaIWQpkvKt c+UZBZ03U+IRnxhfIrriiw0AjJ4vp4c9QL5KoqWSCAwuYcBYfJqZ4dasgzklzz4b 7eujbZ3LxTjewcdumzQUvjA+gpAeuUqaduTvMwxGojFy9sNhC/iqZ4n0peV2N6Ep n4B5qnUCAwEAAaNDMEEwDwYDVR0TAQH/BAUwAwEB/zAPBgNVHQ8BAf8EBQMDBwQA MB0GA1UdDgQWBBRIIzRTCokxOEpa6sq20qbezh0rGDANBgkqhkiG9w0BAQsFAAOC ATEAa1kdd8E1PkM06Isw0S/thEll0rAYsNHwSX17IDUWocTTQlmVXBXcvLqM04QT z7WNG4eushLhRpSn8LJQkf4RgvAxOMIjHM9troDbPVoec6k8fZrJ8jfXurOgoOVP g+hScT3VDvxgiOVwgXSe2XBryGDaviRuSOHlfy5GPVirLJLZwpcX6RpsHMX9rrZX ghvf8dwm4To9H5wT0Le2FnZRoLOTMmpr49bfKJqy/U7AUHaf4saSdkdEIaGOxkPk x+SFlr9TjavnJvL0TApkvfNZ1aOVHRHINgaFYHQJ4U0jQ/g7lPmD+UtZWnvSMNXH yct5cKOyP4j7Kla1sKPs+oamOQ7pR1Z/GwBxe48FvO7VDi7EkugLwlzoXC2G+4Jg fJbi9Ui2FmXEeKkX34f1ONNj9Q== -----END CERTIFICATE----- openconnect-8.05/tests/certs/dsa-key-pkcs8-pbes2-sha1.pem0000664000076400007640000000120313025070326024742 0ustar00dwoodhoudwoodhou00000000000000-----BEGIN ENCRYPTED PRIVATE KEY----- MIIBnzBJBgkqhkiG9w0BBQ0wPDAbBgkqhkiG9w0BBQwwDgQIooK903OtgzACAggA MB0GCWCGSAFlAwQBKgQQbMWAZkjuU6y8WEp20tn1hQSCAVBwhirHpLN0C7K5cCp4 AgsnHelzTShsU2MIS51sFtUDyoQBcF9oHw67+hwO8lvTlIJgF/OqsSSbMjQ2DsV2 eKmBehm9LdERiwnQYYxLdSX+mmXyvrRUpMTtNDgEpLK0J45K/j3smVZ8ibDWsjRE 23fe/SYrKFTNAEm+rU7XoTENLzsgPOWmmYpyBVwNNFrqqWxlXfrVSW/fZ/pWlAhh ErOAVAdogrjilWEOYMkB8mmKsFcCGx7kGVxvG6X77AhM6ke8qj4kUbHZkwR8tf08 /RbmrX/MxC3aMLhcldGEupSH5oI201L6qYP4DDbJNIndMk+xCMZQwBPvJB8nO6kA laxW1WMZX9W6m9XdWD2RkzFdHeGPC2jEQyQE7DuHIfT7cvq4MSBSI+iHHrh6KKam aaJU7IH5W7L7r/4DYtGG/j+Nu0eJbwzf2ep9zZjVXUNkCRM= -----END ENCRYPTED PRIVATE KEY----- openconnect-8.05/tests/certs/ec-key-pkcs8.der0000664000076400007640000000021213025070326022707 0ustar00dwoodhoudwoodhou0000000000000000*H=*H=m0k bnQyͼ:ϟ>wIzv9'w/>QDBOr*Y@7LZ*틙pt |c1bcq-s/*+D3m[4q w6mO+=J#5j'rzi;-ҙeҮbVsLvb*XkX n ĤTܩ?!HQ\: >!l90j[?_êpY1.]Y "蚂Hrs"3K`$0/Ir(SV' S:(᯲]5aP$`pIt;p뀁R K:}$] x+;l/ݷʏ(Dۮ#I_X;0,rRX-mZ\t|ŠD8魦A4̶˹ag5 9K0VMW>Rb>'shH$MϚgtPZ._pbv[IdV|oFetTjhGE|H-ĵX>zt`P?;4>;!`4U=0F]/~c4+fm NNj]zds;քHʪ (;) *~$82U{㝅S(>8؜*/o' 53i_O1I$pb"}>PX!" b1?;*XH#w 苄/|\\E3ݑӛpM*8+|ulNGwyz=W;/3ԤyZVHay$wƢdŴ@Jᮉ+'&vHiW! ѐ%h13,te_;:L8Y /؜G%ͥ}pE_-~JT>UECW7[>!o'T s dt&š߂/ )jzs Bm0 *H  00 *H  00 *H 0tGbUn̡PNA6*h5nzc:)7Ǐ]{S uMÙdj3.1 F<\+eכ_-L#Aǡ8s22LV}<<7%බ*:ɐ^=-'zA-m2g(.}Y|(`|z4ƓG(?9dee&,"64Z:u`i7) i`FS}Rp}62dDl눣PY1vX1xS>uV>/M&m1v r"2{{izW5GrAJf[JjtPy ;~(g[7ʧ[,d; <:d]^hv%~) VcID9DߡKG %7ks(Y/9'"0'^/r(-Pρ݊s40bLk5obbi:uaY6C$?FeĘ}|vȮ9f7B@gV`5SƇ[2vEBk#^MJxz2q PϢ``Z8̙dh4q62T Y*o#Y4Tv/Z4f^>=B:W| ;FE|^m>У$ɫ^;[p@ %3i<L&o"LW/̞"#}Q+*+?v5)dɣT+wwlyy^MD=Ǔg([0MV$aQK [@`nW3md2)qV$ׄP'<,QbP.jGø[0,m!I40pl@R_LlSֶ^CyV?1%0# *H  1jJʟإOt*ꄀQ0A010  `He kSaPg٥``?o-gPcʂnBopenconnect-8.05/tests/certs/ec-key-aes256-cbc-sha256.p120000664000076400007640000000220413123423207024251 0ustar00dwoodhoudwoodhou00000000000000006 *H '#00 *H 00 *H 0I *H  0<0 *H  0P&])0 `He*'{&\O! $;pXQrܖ]vaJ{EIycvtGR)a1]x \|mILps 7dIf@|+wi* Bҏ$[;Fh: `oO_t@?+ڷa-uKy>Yam'2R8ZćyAΟUVK/qʇW٨>+770& F"mV_z[R/FѻM0eռDKS'o oYnA~vȡ7.=wtr;0K+HoS bL~j;s>̞ݬܵY }AT2WYά  VGRbK(4ST< 'l-.#is2Sn'/>$]Tmw6$Qٓ|<-0\ф6R 642OP$';Vc_պX=1] hC$;!r1 R#z(iT[bц?Go }͘]Cd openconnect-8.05/tests/certs/user-key-pkcs8-pbes2-sha1.der0000664000076400007640000000276313123423207025155 0ustar00dwoodhoudwoodhou0000000000000000I *H  0<0 *H  0I#JM0 `He*&c&D,in g,bQ(ͧޏb,ICjYOlEtBκ縈Q"ZkŢCS γTץi)a7ElhLؤ; 4*`ݞxVuhGׁzT;^r C we\B5{ZsBфŽ='ta 2`#}_ zRk^ "9 {?揶{7l=\%~3KK7< (jx(0QۋwO#+=[QEoU>עr }W+H¾HλhK: ^;.k&(J= F}BQv$,SQ8#FƧLsUm#D?:KX΂IUkw{Nbњp|'d-0n }818bh̏^XedmJ BGL=R>`׶'H> 3BH;ܤ}8w,VgK, y@L-~۬Ul5BWa"8GȀ嘹\kF$*4s/VԪIT^}`5۶2:ރ9"}7弙QL7K-h+b.塱0n> ً2ctА^ Z}3F|IMh`/4k<zvIz곿 iJCSE+>\"UL[YRN wJ|@R3b-Z;8gmgTF$UlXSr0^<  X2U ,34]~5\:8e3T4-2H&_Ìk jopenconnect-8.05/tests/certs/server-key.pem0000664000076400007640000000366012761604271022631 0ustar00dwoodhoudwoodhou00000000000000-----BEGIN RSA PRIVATE KEY----- MIIFegIBAAKCATEApzor7D8UsCwZ9vFukB2/jqn26XCECYfzUPNfw5RQ+ixk1leA WOGW/O7QvQQVfl9/pTP4/LuR7zd5w1rb+BntA68i1uk3LOhTwreLKxHwpIeZeeC6 zJlm4RYJFZTeX06qGNJZ3WCcdl/FlpXUY3i/vBO5xVHBUrVq4IvQM4DBa47C+Kap fe2AGUV3DKEF1Y20Zs1S2SFbpkMu3PrZexKs/Jcf8Uv+RcfbSEbp6jUuYxFLPDZ+ ROhb62gHMvniNIF0xpO+fSjT2IrEqgLhQJprf1w0077zqOnaQLHl6rUdvy42SVjp V3Ymf8ox4OfkSkOXbd3ZOe5QCFhEfXoCDqP/hgJMnpNGSeRllOlcU7BXCJeqMt0u xLQdDQiDO4b4ct9kKyeWVMjZ3E0n+qjFaHnYHQIDAQABAoIBMHkrhm39W0E4A2xS jllwpL972kRV2eaKEr0iS86MZoyPpFVHO+GrPFtzs95x2h0il3weB5khVGHwYZMy /9Zq+rlDqsvsWqV4hlC96+I+co7VDlkohFICCXCpJdX0c5i9iDTKHoFxIo4HYUV2 tVmKQevGo0IdtiX2/EVOKYNYFU6ZOB8xq/hqIfqtwdBt0KtnrUMcHZ7lM+Jo+eL6 2JrnNuAgjCVN6ReVS3E43xhxzeCgf7JY/ovAHNKWShcUvxw76LVUK41HUKd3VmGo 43ndcIhfiaH4eA1H7zKYwUeI2DPtlRCQf/FXyysYyVih3u8ccFpYPIY9lhetnP0L 69gzpF9/25fAeLSUVlYKg7PTAsZvCNwNIo8qSyV6NJeOY0mKOdHBHpuTQcWctlCe /3o35MECgZkAyxNKo4+tXGOJMPM76yWF2WytbVD4AwDTHuOurVR6myEachimVOQy WI1mN2WM9483Zez47y6pwXi7BJCq/gryfICCMsfb77wQxv/g1C65Og7MKSiBuEF4 N4BpOV6XRDbWzTmvFMLf82e31KdJ2vTT7hQQ5Fw/SmJSgTTQjvN+1EIKNOL5p7wD +cBI6Jt/2gjs24L9oqoPXXECgZkA0s8tgQAoQ3azdhA/BFdjlPq7CGqifZlLD612 EdpcKiszCgUN+FGaTbNAS1NjyMGWRcdCNc8Fz4riqr3clsD9yMTcTAsfQ3QEzxP1 +uq2DYKSjAO96Xux8tDf/cUbbma3zvYSZTTIFQHaNl752K03hlIr6p/1dWuRswFv UunpBxbbumXiScxPcBE5XPrS2tQMJBfEaG/Uf20CgZh2ztSOGJLuSHWNI+DcU9mZ ONHF8OcIqsTZf49EbPZGJ/nW4sD9TXx+/krdAhaVBz777MY++Ofr/vw7UYAYnML9 QBnsJ61u9nJCWpVozeUkKGAdfEtYR0VUA1aMb+DD0emdq6/Yz6JCP133ld/JsA8F bMvtLmMA28E1Qnb6C08aU4CxLFGvZnpU9cAyBjeokiwwyNQnBKN0oQKBmBgHQVqI 2A4Ig6AbbfNiupkKkzL8ZJUIWgPpc6HJT+QGlIS52sPJGVtt6RAs6xzA5A4EDknv 1Ou5Guj3RyNvz/2IYsvQILohiULJNapqAmI71dRbwNPSI5BXupBEXUISNzVB2wrq Hzw1v9eer7/AzqliyFqv7Nx7bFoI+dVrkAIc2uK+JjLfNNbDP9SXSl1i+hdLFjoJ NSFpAoGYO5byBpYiFKL+JwkvQ7AipvSuM8L4vtUDln1K0et7nVG9dx0/ee9iHcPp wppT3+wzmzI29udA6GwbFj1OlJeUAl3MI0VrU424fA4k+Vww5ON2W/YfdD3K5++g HtPIolTS2wZLDbC5ZMrdaERR1gfFrFvnEUt2sHi6qrGvBmQNJxqFLahawdfBLvbv /vYN1vEY/AsUsdd2URs= -----END RSA PRIVATE KEY----- openconnect-8.05/tests/certs/user-key-sha1-3des-sha256.p120000664000076400007640000000527513123423207024611 0ustar00dwoodhoudwoodhou000000000000000 0 o *H  ` \0 X07 *H (0$0 *H 0 *H  0ĭ£meq`ITt^e p'o{ń3v ]:Ō cG+":raܩy"xF4w7 iZ*H6\BTgZ&WE {QM}k۲+7QFc(f\e{VyueN9OӲ\|K^NPlN6t٪1cD@s|)8%G/ݎpڷS%x3V#mP"ήLv7hF¹F@ 0.s5%X4 u5S/FQ5Ӕ9dr8Ec*٪46MиqGko8|Alƽe 5ᩗiUנmAqܞM2a, ds7k*n8Sk^]f*|8 Wi[3ZSwi__+,g=@+sfBy-= #ڱaXE |6Js Q-qo^zOe ʝL~ KR˷3N.z?[*R#3FoB?MQj} h$9H.m0 *H  00 *H  00 *H  0=oy?&6麝Du9hTz=*:D]}x!̃ouj:)5._9]yfFi]V7 ZYOfZ*6Hzz/_ CTG6݅ Ks0!>'$~Yq7aQ !7#W29P}H}-U6q&NnUB OI|]H"$|_kC.+G0%V}f3IzgMI_']8KO2\3jhrJ3R] {P_&Yq-ӈĹTm)l:Օ@^q:o& L^Rj_9~Lh\5㈍NJGxa!|MaF{D-*5_#畜#=cE#F$BCX'v-T!9 4(D7E|0$O(a % /V&0kԾ0Fu $jLdQa拣eFMpZIv=#)TtǿCvݡAXWgYLZ5"NtUQ+b eQyeѤO$U!l=@CB 0O_ SmzgE~`f^_Bu_WjK-+8)@/3ϵ@ 9K`* a뤍ںD1bKxC5mu:%چ+zsLb]aߢȦ2.h]WR لӖmgȻ9:'3Q;[+3 hnVRIhF@ fG5#<-3X3m`Zg<%IkE6z(̎qϽ&s5gi;S>Ln_2J|2%Պ1uFUލm,};H]v `b~fZ`, dOs8wr^}D~ke88=W tकhˁ_9d 0R9)S9NPJɭpKwz!fwropOURs%G#Mq٪r(Mo(pҴJF Q5"tJG&vd$?yy]^iH7![m{6 6sH(( I w$)1 }mS{p2Bp_R]t^O/\nN[˯5Z{w DkV M +~8v8~-V4<|ܛ`xMҹ0z}?){OYςgutSHo=$ʬR{t~h'.Wee21%0# *H  1jJʟإOt*ꄀQ0A010  `He CgtX< SERV="${SERV:-../src/ocserv}" srcdir=${srcdir:-.} top_builddir=${top_builddir:-..} . `dirname $0`/common.sh echo "Testing certificate auth... " launch_simple_sr_server -d 1 -f -c configs/test-user-pass.config >/dev/null 2>&1 PID=$! wait_server $PID echo -n "Connecting with legacy hash... " ( echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT -q $ADDRESS:443 -u test --servercert=d66b507ae074d03b02eafca40d35f87dd81049d3 --cookieonly >/dev/null 2>&1) || fail $PID "Could not receive cookie from server" echo ok echo -n "Connecting with SHA1 ID... " ( echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT -q $ADDRESS:443 -u test --servercert=sha1:a82547f68f44d6351bef6cacd1d7b96e84f9dfa3 --cookieonly >/dev/null 2>&1) || fail $PID "Could not receive cookie from server" echo ok echo -n "Connecting with SHA256 ID... " ( echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT -q $ADDRESS:443 -u test --servercert=sha256:c69dec71fcf2deb390b2ff4d70ebdeffc61556ffa91ebe2a3425c45eb365e6cf --cookieonly >/dev/null 2>&1) || fail $PID "Could not receive cookie from server" echo ok echo -n "Connecting with SHA256 partial ID... " ( echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT -q $ADDRESS:443 -u test --servercert=sha256:c69dec --cookieonly >/dev/null 2>&1) || fail $PID "Could not receive cookie from server" echo ok echo -n "Connecting with wrong SHA256 ID... " ( echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT -q $ADDRESS:443 -u test --servercert=sha256:c69ded --cookieonly >/dev/null 2>&1) && fail $PID "Did connect to the server with wrong ID" echo ok cleanup exit 0 openconnect-8.05/tests/auth-username-pass0000775000076400007640000000416213025070326022350 0ustar00dwoodhoudwoodhou00000000000000#!/bin/sh # # Copyright (C) 2016 Red Hat, Inc. # # This file is part of openconnect. # # This is free software; you can redistribute it and/or # modify it under the terms of the GNU Lesser General Public License # as published by the Free Software Foundation; either version 2.1 of # the License, or (at your option) any later version. # # This library is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # Lesser General Public License for more details. # # You should have received a copy of the GNU Lesser General Public License # along with this program. If not, see SERV="${SERV:-../src/ocserv}" srcdir=${srcdir:-.} top_builddir=${top_builddir:-..} . `dirname $0`/common.sh echo "Testing certificate auth... " launch_simple_sr_server -d 1 -f -c configs/test-user-pass.config PID=$! wait_server $PID echo -n "Connecting to obtain cookie... " ( echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT -q $ADDRESS:443 -u test --servercert=d66b507ae074d03b02eafca40d35f87dd81049d3 --cookieonly >/dev/null 2>&1) || fail $PID "Could not receive cookie from server" echo ok echo -n "Connecting to obtain cookie with wrong password... " ( echo "tost" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT -q $ADDRESS:443 -u test --servercert=d66b507ae074d03b02eafca40d35f87dd81049d3 --cookieonly >/dev/null 2>&1) && fail $PID "Received cookie when we shouldn't" echo ok #test special characters echo -n "Connecting to obtain cookie... " ( echo "!@#$%^&*()<>" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT -q $ADDRESS:443 -u "sp@c/al" --servercert=d66b507ae074d03b02eafca40d35f87dd81049d3 --cookieonly >/dev/null 2>&1 ) || fail $PID "Could not receive cookie from server" echo ok echo -n "Connecting to obtain cookie with empty password... " ( echo "" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT -q $ADDRESS:443 -u "empty" --servercert=d66b507ae074d03b02eafca40d35f87dd81049d3 --cookieonly >/dev/null 2>&1 ) || fail $PID "Could not receive cookie from server" echo ok cleanup exit 0 openconnect-8.05/trojans/0000775000076400007640000000000013536301731017217 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/trojans/hipreport-android.sh0000775000076400007640000000367213477413651023231 0ustar00dwoodhoudwoodhou00000000000000#!/system/bin/sh # These values may need to be extracted from the official HIP report, if made-up values are not accepted. PLATFORM_VERSION="4.3" PLATFORM_NAME="Android-x86" HOSTID="deadbeef-dead-beef-dead-beefdeadbeef" # Read command line arguments into variables COOKIE= IP= IPV6= MD5= while [ "$1" ]; do if [ "$1" = "--cookie" ]; then shift; COOKIE="$1"; fi if [ "$1" = "--client-ip" ]; then shift; IP="$1"; fi if [ "$1" = "--client-ipv6" ]; then shift; IPV6="$1"; fi if [ "$1" = "--md5" ]; then shift; MD5="$1"; fi shift done if [ -z "$COOKIE" -o -z "$MD5" -o -z "$IP$IPV6" ]; then echo "Parameters --cookie, --md5, and --client-ip and/or --client-ipv6 are required" >&2 exit 1; fi # Extract username and domain and computer from cookie USER=$(echo "$COOKIE" | sed -rn 's/(.+&|^)user=([^&]+)(&.+|$)/\2/p') DOMAIN=$(echo "$COOKIE" | sed -rn 's/(.+&|^)domain=([^&]+)(&.+|$)/\2/p') COMPUTER=$(echo "$COOKIE" | sed -rn 's/(.+&|^)computer=([^&]+)(&.+|$)/\2/p') # Timestamp in the format expected by GlobalProtect server NOW=$(date +'%m/%d/%Y %H:%M:%S') # WARNING: Replacing this with a here-doc (cat <' echo " $MD5" echo " $USER" echo " $DOMAIN" echo " $COMPUTER" echo " $HOSTID" echo " $IP" echo " $IPV6" echo " $NOW" echo ' ' echo ' ' echo ' 4.0.2-19' echo " $PLATFORM_NAME $PLATFORM_VERSION" echo ' Google' echo " $DOMAIN.internal" echo " $COMPUTER" echo " $HOSTID" echo ' ' echo ' ' echo '' openconnect-8.05/trojans/hipreport.sh0000775000076400007640000001425113477413651021606 0ustar00dwoodhoudwoodhou00000000000000#!/bin/sh # openconnect will call this script with the follow command-line # arguments, which are needed to populate the contents of the # HIP report: # # --cookie: a URL-encoded string, as output by openconnect # --authenticate --protocol=gp, which includes parameters # from the /ssl-vpn/login.esp response # # --client-ip{,v6}: IPv4/6 addresses allocated by the GlobalProtect # VPN for this client (included in # /ssl-vpn/getconfig.esp response) # # --md5: The md5 digest to encode into this HIP report. I'm not sure # exactly what this is the md5 digest *of*, but all that # really matters is that the value in the HIP report # submission should match the value in the HIP report check. # # This hipreport.sh does not work as-is on Android. The large here-doc # (cat <&2 exit 1; fi # Extract username and domain and computer from cookie USER=$(echo "$COOKIE" | sed -rn 's/(.+&|^)user=([^&]+)(&.+|$)/\2/p') DOMAIN=$(echo "$COOKIE" | sed -rn 's/(.+&|^)domain=([^&]+)(&.+|$)/\2/p') COMPUTER=$(echo "$COOKIE" | sed -rn 's/(.+&|^)computer=([^&]+)(&.+|$)/\2/p') # Timestamp in the format expected by GlobalProtect server NOW=$(date +'%m/%d/%Y %H:%M:%S') DAY=$(date +'%d') MONTH=$(date +'%m') YEAR=$(date +'%Y') # This value may need to be extracted from the official HIP report, if a made-up value is not accepted. HOSTID="deadbeef-dead-beef-dead-beefdeadbeef" # Many VPNs seem to require trailing backslash, others don't accept it ENCDRIVE='C:\\' cat < $MD5 $USER $DOMAIN $COMPUTER $HOSTID $IP $IPV6 $NOW 4.0.2-19 Microsoft Windows 10 Pro , 64-bit Microsoft $DOMAIN.internal $COMPUTER $HOSTID PANGP Virtual Ethernet Adapter #2 01-02-03-00-00-01 yes $NOW no n/a yes $NOW no n/a n/a $ENCDRIVE full yes yes yes EOF openconnect-8.05/trojans/csd-wrapper.sh0000775000076400007640000000723613413512534022014 0ustar00dwoodhoudwoodhou00000000000000#!/bin/bash # Cisco Anyconnect CSD wrapper for OpenConnect # # [05 May 2015] Written by Nikolay Panin : # - source: https://gist.github.com/l0ki000/56845c00fd2a0e76d688 # [27 Oct 2017] Updated by Daniel Lenski : # - use -url argument # - kill cstub after timeout # - fix small typos: # [31 May 2018] Updated by Daniel Lenski : # - use curl with --pinnedpubkey to rely on sha256 hash of peer cert passed by openconnect TIMEOUT=30 URL="https://${CSD_HOSTNAME}/CACHE" HOSTSCAN_DIR="$HOME/.cisco/hostscan" LIB_DIR="$HOSTSCAN_DIR/lib" BIN_DIR="$HOSTSCAN_DIR/bin" PINNEDPUBKEY="-s ${CSD_SHA256:+"-k --pinnedpubkey sha256//$CSD_SHA256"}" BINS=("cscan" "cstub" "cnotify") # parsing command line shift URL= TICKET= STUB= GROUP= CERTHASH= LANGSELEN= while [ "$1" ]; do if [ "$1" == "-ticket" ]; then shift; TICKET=$1; fi if [ "$1" == "-stub" ]; then shift; STUB=$1; fi if [ "$1" == "-group" ]; then shift; GROUP=$1; fi if [ "$1" == "-certhash" ]; then shift; CERTHASH=$1; fi if [ "$1" == "-url" ]; then shift; URL=$(echo $1|tr -d '"'); fi # strip quotes if [ "$1" == "-langselen" ];then shift; LANGSELEN=$1; fi shift done ARCH=$(uname -m) if [[ "$ARCH" == "x86_64" ]] then ARCH="linux_x64" else ARCH="linux_i386" fi # creating dirs for dir in $HOSTSCAN_DIR $LIB_DIR $BIN_DIR ; do if [[ ! -f $dir ]] then mkdir -p $dir fi done # getting manifest, and checking binaries curl $PINNEDPUBKEY "${URL}/sdesktop/hostscan/$ARCH/manifest" -o "$HOSTSCAN_DIR/manifest" # generating md5.sum with full paths from manifest export HOSTSCAN_DIR=$HOSTSCAN_DIR while read HASHTYPE FILE EQU HASHVAL; do FILE="${FILE%*)}" FILE="${FILE#(}" if grep --extended-regexp --quiet --invert-match ".so|tables.dat" <<< "$FILE"; then PATHNAME="${BIN_DIR}/$FILE" IS_BIN=yes else PATHNAME="${LIB_DIR}/$FILE" IS_BIN=no fi DOWNLOAD=yes case $HASHTYPE in MD5) if [ -r "$PATHNAME" ] && md5sum --status -c <<< "$HASHVAL $PATHNAME"; then DOWNLOAD=no fi ;; SHA1) if [ -r "$PATHNAME" ] && sha1sum --status -c <<< "$HASHVAL $PATHNAME"; then DOWNLOAD=no fi ;; SHA256) if [ -r "$PATHNAME" ] && sha256sum --status -c <<< "$HASHVAL $PATHNAME"; then DOWNLOAD=no fi ;; *) echo "Unsupported hash type $HASHTYPE" ;; esac if [ "$DOWNLOAD" = "yes" ]; then echo "Downloading: $FILE" TMPFILE="${PATHNAME}.tmp" curl $PINNEDPUBKEY "${URL}/sdesktop/hostscan/$ARCH/$FILE" -o "${TMPFILE}" # some files are in gz (don't understand logic here) if [[ ! -f "${TMPFILE}" || ! -s "${TMPFILE}" ]] then # remove 0 size files if [[ ! -s ${TMPFILE} ]]; then rm ${TMPFILE} fi echo "Failure on $FILE, trying gz" FILE_GZ="${TMPFILE}.gz" curl $PINNEDPUBKEY "${URL}/sdesktop/hostscan/$ARCH/$FILE_GZ" -o "${FILE_GZ}" && gunzip --verbose --decompress "${FILE_GZ}" fi if [ -r "${TMPFILE}" ]; then if [ "$IS_BIN" = "yes" ]; then chmod +x "${TMPFILE}" fi mv "${TMPFILE}" "${PATHNAME}" fi fi done < $HOSTSCAN_DIR/manifest # cstub doesn't care about logging options, sic! #ARGS="-log debug -ticket $TICKET -stub $STUB -group $GROUP -host "$URL" -certhash $CERTHASH" ARGS="-log error -ticket $TICKET -stub $STUB -group $GROUP -host \"$URL\" -certhash $CERTHASH" echo "Launching: $BIN_DIR/cstub $ARGS" $BIN_DIR/cstub $ARGS & CSTUB_PID=$! sleep $TIMEOUT if kill -0 $CSTUB_PID 2> /dev/null; then echo "Killing cstub process after $TIMEOUT seconds" kill $CSTUB_PID 2> /dev/null || kill -9 $CSTUB_PID 2> /dev/null fi openconnect-8.05/trojans/tncc-wrapper.py0000775000076400007640000000773713413770715022225 0ustar00dwoodhoudwoodhou00000000000000#!/usr/bin/python2 # Lifted from Russ Dill's juniper-vpn-wrap.py, thus: # # This program is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 2 of the License, or # (at your option) any later version. # # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software # Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA import subprocess import mechanize import cookielib import getpass import sys import os import zipfile import urllib import socket import ssl import errno import argparse import atexit import signal import ConfigParser import time import binascii import hmac import hashlib def mkdir_p(path): try: os.mkdir(path) except OSError, exc: if exc.errno == errno.EEXIST and os.path.isdir(path): pass else: raise class Tncc: def __init__(self, vpn_host): self.vpn_host = vpn_host; self.plugin_jar = '/usr/share/icedtea-web/plugin.jar' if not os.path.isfile(self.plugin_jar): raise Exception(self.plugin_jar + ' not found') self.user_agent = 'Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.0.1) Gecko/2008071615 Fedora/3.0.1-1.fc9 Firefox/3.0.1' def tncc_init(self): class_names = ('net.juniper.tnc.NARPlatform.linux.LinuxHttpNAR', 'net.juniper.tnc.HttpNAR.HttpNAR') self.class_name = None self.tncc_jar = os.path.expanduser('~/.juniper_networks/tncc.jar') try: if zipfile.ZipFile(self.tncc_jar, 'r').testzip() is not None: raise Exception() except: print 'Downloading tncc.jar...' mkdir_p(os.path.expanduser('~/.juniper_networks')) urllib.urlretrieve('https://' + self.vpn_host + '/dana-cached/hc/tncc.jar', self.tncc_jar) with zipfile.ZipFile(self.tncc_jar, 'r') as jar: for name in class_names: try: jar.getinfo(name.replace('.', '/') + '.class') self.class_name = name break except: pass if self.class_name is None: raise Exception('Could not find class name for', self.tncc_jar) self.tncc_preload = \ os.path.expanduser('~/.juniper_networks/tncc_preload.so') if not os.path.isfile(self.tncc_preload): raise Exception('Missing', self.tncc_preload) def tncc_start(self): # tncc is the host checker app. It can check different # security policies of the host and report back. We have # to send it a preauth key (from the DSPREAUTH cookie) # and it sends back a new cookie value we submit. # After logging in, we send back another cookie to tncc. # Subsequently, it contacts https:// /dev/null 2>&1; then echo "************************************************************************" >&2 echo "WARNING: xmlstarlet not found in path; CSD token extraction may not work" >&2 echo "************************************************************************" >&2 unset XMLSTARLET else XMLSTARLET=true fi DATA='endpoint.os.version="Linux"; endpoint.os.servicepack="4.17.9-200.fc28.x86_64"; endpoint.os.architecture="x64"; endpoint.policy.location="Default"; endpoint.device.protection="none"; endpoint.device.protection_version="3.1.03103"; endpoint.device.hostname="vpnclient.example.com"; endpoint.device.port["9217"]="true"; endpoint.device.port["139"]="true"; endpoint.device.port["53"]="true"; endpoint.device.port["22"]="true"; endpoint.device.port["631"]="true"; endpoint.device.port["445"]="true"; endpoint.device.port["9216"]="true"; endpoint.device.tcp4port["9217"]="true"; endpoint.device.tcp4port["139"]="true"; endpoint.device.tcp4port["53"]="true"; endpoint.device.tcp4port["22"]="true"; endpoint.device.tcp4port["631"]="true"; endpoint.device.tcp4port["445"]="true"; endpoint.device.tcp4port["9216"]="true"; endpoint.device.tcp6port["139"]="true"; endpoint.device.tcp6port["53"]="true"; endpoint.device.tcp6port["22"]="true"; endpoint.device.tcp6port["631"]="true"; endpoint.device.tcp6port["445"]="true"; endpoint.device.MAC["FFFF.FFFF.FFFF"]="true"; endpoint.device.protection_extension="3.6.4900.2"; endpoint.fw["IPTablesFW"]={}; endpoint.fw["IPTablesFW"].exists="true"; endpoint.fw["IPTablesFW"].description="IPTables (Linux)"; endpoint.fw["IPTablesFW"].version="1.6.1"; endpoint.fw["IPTablesFW"].enabled="ok"; ' shift TICKET= STUB=0 while [ "$1" ]; do if [ "$1" == "-ticket" ]; then shift; TICKET=${1//\"/}; fi if [ "$1" == "-stub" ]; then shift; STUB=${1//\"/}; fi shift done PINNEDPUBKEY="-s ${CSD_SHA256:+"-k --pinnedpubkey sha256//$CSD_SHA256"}" URL="https://$CSD_HOSTNAME/+CSCOE+/sdesktop/token.xml?ticket=$TICKET&stub=$STUB" if [ -n "$XMLSTARLET" ]; then TOKEN=$(curl $PINNEDPUBKEY -s "$URL" | xmlstarlet sel -t -v /hostscan/token) else TOKEN=$(curl $PINNEDPUBKEY -s "$URL" | sed -n '//s^.*\(.*\)^\1^p' ) fi COOKIE_HEADER="Cookie: sdesktop=$TOKEN" CONTENT_HEADER="Content-Type: text/xml" URL="https://$CSD_HOSTNAME/+CSCOE+/sdesktop/scan.xml?reusebrowser=1" curl $PINNEDPUBKEY -H "$CONTENT_HEADER" -H "$COOKIE_HEADER" --data "$DATA;type=text/xml" "$URL" openconnect-8.05/mainloop.c0000664000076400007640000002423113513324634017525 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include #ifndef _WIN32 /* for setgroups() */ # include # include #endif #include "openconnect-internal.h" int queue_new_packet(struct pkt_q *q, void *buf, int len) { struct pkt *new = malloc(sizeof(struct pkt) + len); if (!new) return -ENOMEM; new->len = len; new->next = NULL; memcpy(new->data, buf, len); queue_packet(q, new); return 0; } /* This is here because it's generic and hence can't live in either of the tun*.c files for specific platforms */ int tun_mainloop(struct openconnect_info *vpninfo, int *timeout, int readable) { struct pkt *this; int work_done = 0; if (!tun_is_up(vpninfo)) { /* no tun yet; clear any queued packets */ while ((this = dequeue_packet(&vpninfo->incoming_queue))) free(this); return 0; } if (readable && read_fd_monitored(vpninfo, tun)) { struct pkt *out_pkt = vpninfo->tun_pkt; while (1) { int len = vpninfo->ip_info.mtu; if (!out_pkt) { out_pkt = malloc(sizeof(struct pkt) + len + vpninfo->pkt_trailer); if (!out_pkt) { vpn_progress(vpninfo, PRG_ERR, _("Allocation failed\n")); break; } out_pkt->len = len; } if (os_read_tun(vpninfo, out_pkt)) break; vpninfo->stats.tx_pkts++; vpninfo->stats.tx_bytes += out_pkt->len; work_done = 1; if (queue_packet(&vpninfo->outgoing_queue, out_pkt) + vpninfo->oncp_control_queue.count >= vpninfo->max_qlen) { out_pkt = NULL; unmonitor_read_fd(vpninfo, tun); break; } out_pkt = NULL; } vpninfo->tun_pkt = out_pkt; } else if (vpninfo->outgoing_queue.count + vpninfo->oncp_control_queue.count < vpninfo->max_qlen) { monitor_read_fd(vpninfo, tun); } while ((this = dequeue_packet(&vpninfo->incoming_queue))) { unmonitor_write_fd(vpninfo, tun); if (os_write_tun(vpninfo, this)) { requeue_packet(&vpninfo->incoming_queue, this); break; } vpninfo->stats.rx_pkts++; vpninfo->stats.rx_bytes += this->len; free(this); } /* Work is not done if we just got rid of packets off the queue */ return work_done; } static int setup_tun_device(struct openconnect_info *vpninfo) { int ret; if (vpninfo->setup_tun) { vpninfo->setup_tun(vpninfo->cbdata); if (tun_is_up(vpninfo)) return 0; } #ifndef _WIN32 if (vpninfo->use_tun_script) { ret = openconnect_setup_tun_script(vpninfo, vpninfo->vpnc_script); if (ret) { fprintf(stderr, _("Set up tun script failed\n")); return ret; } } else #endif ret = openconnect_setup_tun_device(vpninfo, vpninfo->vpnc_script, vpninfo->ifname); if (ret) { fprintf(stderr, _("Set up tun device failed\n")); return ret; } #if !defined(_WIN32) && !defined(__native_client__) if (vpninfo->uid != getuid()) { int e; if (setgid(vpninfo->gid)) { e = errno; fprintf(stderr, _("Failed to set gid %ld: %s\n"), (long)vpninfo->gid, strerror(e)); return -EPERM; } if (setgroups(1, &vpninfo->gid)) { e = errno; fprintf(stderr, _("Failed to set groups to %ld: %s\n"), (long)vpninfo->gid, strerror(e)); return -EPERM; } if (setuid(vpninfo->uid)) { e = errno; fprintf(stderr, _("Failed to set uid %ld: %s\n"), (long)vpninfo->uid, strerror(e)); return -EPERM; } } #endif return 0; } /* Return value: * = 0, when successfully paused (may call again) * = -EINTR, if aborted locally via OC_CMD_CANCEL * = -ECONNABORTED, if aborted locally via OC_CMD_DETACH * = -EPIPE, if the remote end explicitly terminated the session * = -EPERM, if the gateway sent 401 Unauthorized (cookie expired) * < 0, for any other error */ int openconnect_mainloop(struct openconnect_info *vpninfo, int reconnect_timeout, int reconnect_interval) { int ret = 0; int tun_r = 1, udp_r = 1, tcp_r = 1; vpninfo->reconnect_timeout = reconnect_timeout; vpninfo->reconnect_interval = reconnect_interval; if (vpninfo->cmd_fd != -1) { monitor_fd_new(vpninfo, cmd); monitor_read_fd(vpninfo, cmd); } while (!vpninfo->quit_reason) { int did_work = 0; int timeout; #ifdef _WIN32 HANDLE events[4]; int nr_events = 0; #else struct timeval tv; fd_set rfds, wfds, efds; #endif /* If tun is not up, loop more often to detect * a DTLS timeout (due to a firewall block) as soon. */ if (tun_is_up(vpninfo)) timeout = INT_MAX; else timeout = 1000; if (vpninfo->dtls_state > DTLS_DISABLED) { /* Postpone tun device creation after DTLS is connected so * we have a better knowledge of the link MTU. We also * force the creation if DTLS enters sleeping mode - i.e., * we failed to connect on time. */ if (!tun_is_up(vpninfo) && (vpninfo->dtls_state == DTLS_CONNECTED || vpninfo->dtls_state == DTLS_SLEEPING)) { ret = setup_tun_device(vpninfo); if (ret) { break; } } ret = vpninfo->proto->udp_mainloop(vpninfo, &timeout, udp_r); if (vpninfo->quit_reason) break; did_work += ret; } else if (!tun_is_up(vpninfo)) { /* No DTLS - setup TUN device unconditionally */ ret = setup_tun_device(vpninfo); if (ret) break; } ret = vpninfo->proto->tcp_mainloop(vpninfo, &timeout, tcp_r); if (vpninfo->quit_reason) break; did_work += ret; /* Tun must be last because it will set/clear its bit in the select_rfds according to the queue length */ did_work += tun_mainloop(vpninfo, &timeout, tun_r); if (vpninfo->quit_reason) break; poll_cmd_fd(vpninfo, 0); if (vpninfo->got_cancel_cmd) { if (vpninfo->cancel_type == OC_CMD_CANCEL) { vpninfo->quit_reason = "Aborted by caller"; ret = -EINTR; } else { ret = -ECONNABORTED; } vpninfo->got_cancel_cmd = 0; break; } if (vpninfo->got_pause_cmd) { /* close all connections and wait for the user to call openconnect_mainloop() again */ openconnect_close_https(vpninfo, 0); if (vpninfo->dtls_state > DTLS_DISABLED) { vpninfo->proto->udp_close(vpninfo); vpninfo->new_dtls_started = 0; } vpninfo->got_pause_cmd = 0; vpn_progress(vpninfo, PRG_INFO, _("Caller paused the connection\n")); return 0; } if (did_work) continue; vpn_progress(vpninfo, PRG_TRACE, _("No work to do; sleeping for %d ms...\n"), timeout); #ifdef _WIN32 if (vpninfo->dtls_monitored) { WSAEventSelect(vpninfo->dtls_fd, vpninfo->dtls_event, vpninfo->dtls_monitored); events[nr_events++] = vpninfo->dtls_event; } if (vpninfo->ssl_monitored) { WSAEventSelect(vpninfo->ssl_fd, vpninfo->ssl_event, vpninfo->ssl_monitored); events[nr_events++] = vpninfo->ssl_event; } if (vpninfo->cmd_monitored) { WSAEventSelect(vpninfo->cmd_fd, vpninfo->cmd_event, vpninfo->cmd_monitored); events[nr_events++] = vpninfo->cmd_event; } if (vpninfo->tun_monitored) { events[nr_events++] = vpninfo->tun_rd_overlap.hEvent; } if (WaitForMultipleObjects(nr_events, events, FALSE, timeout) == WAIT_FAILED) { char *errstr = openconnect__win32_strerror(GetLastError()); vpn_progress(vpninfo, PRG_ERR, _("WaitForMultipleObjects failed: %s\n"), errstr); free(errstr); } #else memcpy(&rfds, &vpninfo->_select_rfds, sizeof(rfds)); memcpy(&wfds, &vpninfo->_select_wfds, sizeof(wfds)); memcpy(&efds, &vpninfo->_select_efds, sizeof(efds)); tv.tv_sec = timeout / 1000; tv.tv_usec = (timeout % 1000) * 1000; select(vpninfo->_select_nfds, &rfds, &wfds, &efds, &tv); if (vpninfo->tun_fd >= 0) tun_r = FD_ISSET(vpninfo->tun_fd, &rfds); if (vpninfo->dtls_fd >= 0) udp_r = FD_ISSET(vpninfo->dtls_fd, &rfds); if (vpninfo->ssl_fd >= 0) tcp_r = FD_ISSET(vpninfo->ssl_fd, &rfds); #endif } if (vpninfo->quit_reason && vpninfo->proto->vpn_close_session) vpninfo->proto->vpn_close_session(vpninfo, vpninfo->quit_reason); if (tun_is_up(vpninfo)) os_shutdown_tun(vpninfo); return ret < 0 ? ret : -EIO; } int ka_check_deadline(int *timeout, time_t now, time_t due) { if (now >= due) return 1; if (*timeout > (due - now) * 1000) *timeout = (due - now) * 1000; return 0; } /* Called when the socket is unwritable, to get the deadline for DPD. Returns 1 if DPD deadline has already arrived. */ int ka_stalled_action(struct keepalive_info *ka, int *timeout) { time_t now = time(NULL); /* We only support the new-tunnel rekey method for now. */ if (ka->rekey_method != REKEY_NONE && ka_check_deadline(timeout, now, ka->last_rekey + ka->rekey)) { ka->last_rekey = now; return KA_REKEY; } if (ka->dpd && ka_check_deadline(timeout, now, ka->last_rx + (2 * ka->dpd))) return KA_DPD_DEAD; return KA_NONE; } int keepalive_action(struct keepalive_info *ka, int *timeout) { time_t now = time(NULL); if (ka->rekey_method != REKEY_NONE && ka_check_deadline(timeout, now, ka->last_rekey + ka->rekey)) { ka->last_rekey = now; return KA_REKEY; } /* DPD is bidirectional -- PKT 3 out, PKT 4 back */ if (ka->dpd) { time_t due = ka->last_rx + ka->dpd; time_t overdue = ka->last_rx + (2 * ka->dpd); /* Peer didn't respond */ if (now > overdue) return KA_DPD_DEAD; /* If we already have DPD outstanding, don't flood. Repeat by all means, but only after half the DPD period. */ if (ka->last_dpd > ka->last_rx) due = ka->last_dpd + ka->dpd / 2; /* We haven't seen a packet from this host for $DPD seconds. Prod it to see if it's still alive */ if (ka_check_deadline(timeout, now, due)) { ka->last_dpd = now; return KA_DPD; } } /* Keepalive is just client -> server. If we haven't sent anything for $KEEPALIVE seconds, send a dummy packet (which the server will discard) */ if (ka->keepalive && ka_check_deadline(timeout, now, ka->last_tx + ka->keepalive)) return KA_KEEPALIVE; return KA_NONE; } openconnect-8.05/www/0000775000076400007640000000000013536301731016363 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/www/menu2-protocols.xml0000664000076400007640000000060013476531422022156 0ustar00dwoodhoudwoodhou00000000000000 openconnect-8.05/www/menu2-features.xml0000664000076400007640000000162613413512534021753 0ustar00dwoodhoudwoodhou00000000000000 openconnect-8.05/www/packages.xml0000664000076400007640000000440612727726520020677 0ustar00dwoodhoudwoodhou00000000000000

    Distribution Status

    Updates to the information below are welcomed, especially for distributions (including *BSD etc.) which aren't yet mentioned.

    • Fedora

      Both openconnect and NetworkManager-openconnect packages are included in Fedora and kept up to date. Fedora's OpenSSL packages include all required patches for DTLS compatibility.

    • Debian

      The openconnect and network-manager-openconnect packages are included in Debian.
      Debian's OpenSSL packages include all required patches for DTLS compatibility.

    • Ubuntu

      Reasonably current versions of the required packages are finally included in Ubuntu 10.04 "Lucid". Older releases still have out of date OpenSSL and out of date OpenConnect which doesn't work around the latest Cisco bugs.

    • OpenSuSE

      OpenSuSE 12.1 should finally include openconnect and NetworkManager-openconnect packages, which are absent from older releases.

    • Gentoo

      Gentoo Portage contains packages for both openconnect and networkmanager-openconnect.

    • NetBSD, DragonFly BSD, etc. (pkgsrc)

      There are somewhat out of date packages for vpnc-script and openconnect in the pkgsrc-wip repository (pkgsrc-wip.sf.net).

    • FreeBSD

      An openconnect port is available for FreeBSD.

    • OpenBSD

      The OpenBSD ports collection contains an openconnect package.
     openconnect-8.05/www/globalprotect.xml0000664000076400007640000000742313477413651021765 0ustar00dwoodhoudwoodhou00000000000000

    PAN GlobalProtect

    How the VPN works

    This VPN is based on HTTPS and ESP, with routing and configuration information distributed in XML format.

    GlobalProtect mode is requested by adding --protocol=gp to the command line: 

      openconnect --protocol=gp vpn.example.com

    Authentication

    To authenticate, you connect to the secure web server (POST /ssl-vpn/login.esp), provide a username, password, and (optionally) a certificate, and receive an authcookie. The username, authcookie, and a couple other bits of information obtained at login are combined into the OpenConnect cookie.

    Tunnel configuration

    To connect to the secure tunnel, the cookie is used to read routing and tunnel configuration information (POST /ssl-vpn/getconfig.esp).

    Next, a HIP report (security scanner report) is generated by the client and submitted to the server, if required.

    Finally, either an HTTPS-based or ESP-based tunnel is setup:

    1. The cookie is used in a non-standard HTTP request (GET /ssl-tunnel-connect.sslvpn, which acts more like a CONNECT). Arbitrary IP packets can be passed over the resulting tunnel.
    2. The ESP keys provided by the configuration request are used to set up a UDP-encapsulated ESP tunnel.

    Since TCP over TCP is very suboptimal, OpenConnect tries to always use ESP-over-UDP, and will only fall over to the HTTPS tunnel if that fails, or if disabled via the --no-dtls argument.

    Quirks and issues

    There appears to be no reasonable mechanism to negotiate the MTU for the link, or discover the MTU of the accessed network. The configuration always shows . OpenConnect attempts to calculate the MTU by starting from the base MTU with the overhead of encapsulating each packets within ESP, UDP, and IP.

    IPv6 support was added in GlobalProtect 4.0 in 2017 but OpenConnect support for GlobalProtect IPv6 is incomplete due to developers' lack of access to a GlobalProtect VPN server that supports it. If you have access to a GlobalProtect VPN that supports IPv6, please send information to the mailing list so we can add complete support.

    The ESP and HTTPS tunnels cannot be connected simultaneously. The ESP tunnel becomes unresponsive as soon as the HTTPS tunnel is started, and remains so unless/until the tunnel is closed and the configuration is re-fetched.

    Compared to the AnyConnect or Juniper protocols, the GlobalProtect protocol appears to have very little in the way of in-band signaling. The HTTPS tunnel can only send or receive IP packets and a simple DPD/keepalive packet (always sent by the client and echoed by the server). The ESP tunnel does not have any special DPD/keepalive packet, but uses an ICMP ("ping") request to the server with a magic payload for this purpose

     openconnect-8.05/www/contribute.xml0000664000076400007640000002075613505425637021305 0ustar00dwoodhoudwoodhou00000000000000

    Contributing to OpenConnect

    Contributions to OpenConnect are very welcome. You don't need to be able to write code. Testing, documentation improvements and especially translations are all extremely useful. Some specific suggestions and requests for help can be found below.

    Submitting Patches

    Patches can be sent to the mailing list or directly to the author in private email. We are also experimenting with using GitLab, so please feel free to file issues and submit merge requests at https://gitlab.com/openconnect/openconnect.

    When submitting patches to be included in OpenConnect, please certify that your patch meets the criteria below by including include a sign-off line in your email which looks like this:

    Signed-off-by: Random J Developer &lt;random@developer.example.org&gt;

    This confirms that you are permitted to submit the patch for inclusion in OpenConnect under the LGPLv2.1 licence. The full text of the certificate is as follows:

    • Developer's Certificate of Origin 1.1

      By making a contribution to this project, I certify that:

      1. The contribution was created in whole or in part by me and I have the right to submit it under the open source license indicated in the file; or
      2. The contribution is based upon previous work that, to the best of my knowledge, is covered under an appropriate open source license and I have the right under that license to submit that work with modifications, whether created in whole or in part by me, under the same open source license (unless I am permitted to submit under a different license), as indicated in the file; or
      3. The contribution was provided directly to me by some other person who certified (1), (2) or (3) and I have not modified it.

      and also that:

      • I understand and agree that this project and the contribution are public and that a record of the contribution (including all personal information I submit with it, including my sign-off) is maintained indefinitely and may be redistributed consistent with this project or the open source license(s) involved.

    What needs doing?

    Translations

    One of the main things needed at the present time is translations into languages other than English. All contributions will be gratefully received.

    Translations for OpenConnect are maintained in the GNOME NetworkManager-openconnect module. Translations can be contributed by joining the GNOME team as described on their TranslationProject wiki page, or simply by editing one of the language files in the po/ directory and sending the resulting patch (or file) to the mailing list.

    If there are questions about the messages because the intent is not clear, or if the messages could be improved to make translation easier or better, please also feel free to ask or make suggestions on the mailing list.

    Documentation / Web Site

    OpenConnect is designed with the principle that "if it needs documenting, fix it instead". That isn't to say that we don't have documentation. But if a user finds something non-obvious and has to look it up in the documentation, then that in itself is a little bit of a usability failure. Software should Just Work™.

    So if you find something that is more complex than it needs to be, and you think it should Just Work™ then please don't hesistate to tell us bout it.

    Any improvements to the documentation are most welcome. In particular:

    • Update web site to be mobile-friendly
      The current template is definitely showing its age, and could very much do with an overhaul.

    Testing

    All testing is valuable, and please do let us know if anything doesn't work when you think it should. There are some things which the regular developers don't have easy access to test, some help with testing these would be particularly welcome:

    • Testing a PAN GlobalProtect VPN with IPv6 internal addresses.
      We think we know how this works, but we've not been able to test.
    • Various authentication methods for Pulse Secure.
      Although it looked sane at first, the Pulse protocol has a lot of horrid special cases. Aside from the Host Checker most should be working, but please test and let us know if anything is missing or wrong.

    New Protocols

    There are some other protocols which would be good to add to OpenConnect. Getting a new protocol to the point where it basically works to send and receive traffic is only a few hours of work, and can be very rewarding.

    For some protocols we already know how they work on the wire and it's mostly just a matter of typing. For others we might have to observe the existing clients to learn how they work.

    These would be great projects for someone to take on as a learning exercise, or perhaps even Google Summer of Code projects.

    • CheckPoint VPN
      This is an IPSec-based VPN with fallback to using the SSL transport. Some discussion of OpenConnect support in this GitLab ticket.
    • Cisco / Nortel IPSec VPN
      These IPSec-based protocols are already supported by vpnc to differing extents, but vpnc is no longer actively maintained. Since OpenConnect now has ESP support, and since some of these protocols also fall back to operating over TCP when UDP and native ESP aren't available, it may make sense to implement them in OpenConnect now.

    Suggestions for other protocols which OpenConnect could usefully implement, are also welcome.

    Other enhancements

    One of the main other improvements that would be welcome, is implementing a full WebView in the graphical clients. Currently for protocols like Juniper, OpenConnect screen-scrapes the HTML pages used for login, and attempts to make sense of them. This is The main thing that would be Other items on the TODO list include:
    • WebView support in graphical clients.
      OpenConnect currently screen-scrapes the HTML login pages for protocols like Juniper, which is fragile and error-prone. It would be great if the graphical interfaces like NetworkManager could use a real WebView to show the pages, which would work with JavaScript and various other customisations that the admins often make. This might make an excellent Google Summer of Code project, or would also suit someone just trying to contribute in their spare time.
    • Better support for running or emulating the 'Cisco Secure Desktop' trojan.
      The Cisco hostscan tool seems to download and interpret a manifest file from the server and send back results based on the "questions" therein. A native implementation of this would be useful.
    • GUI for OS X, perhaps based on Tunnelblick.
    • Full Android keystore support.
      OpenConnect's support for the Android keystore predates the Android keystore actually doing anything useful. We assume we can just ask for the private key and be given it. A real keystore would only allow us to perform signature operations using the key, and wouldn't just give it to us. Modern versions of Android can support this, and we should add support for it.
    • Mac OS X keychain support.
      Likewise, using keys stored in the OS X keychain would be extremely useful.

     openconnect-8.05/www/licence.xml0000664000076400007640000007631313357523143020525 0ustar00dwoodhoudwoodhou00000000000000

    Licence

    OpenConnect in publshed under the GNU Lesser Public License, v2.1. The full text of the licence is as follows:

    GNU LESSER GENERAL PUBLIC LICENSE

    Version 2.1, February 1999 

    Copyright (C) 1991, 1999 Free Software Foundation, Inc.
51 Franklin Street, Fifth Floor, Boston, MA  02110-1301  USA
Everyone is permitted to copy and distribute verbatim copies
of this license document, but changing it is not allowed.

[This is the first released version of the Lesser GPL.  It also counts
 as the successor of the GNU Library Public License, version 2, hence
 the version number 2.1.]

    Preamble

    The licenses for most software are designed to take away your freedom to share and change it. By contrast, the GNU General Public Licenses are intended to guarantee your freedom to share and change free software--to make sure the software is free for all its users.

    This license, the Lesser General Public License, applies to some specially designated software packages--typically libraries--of the Free Software Foundation and other authors who decide to use it. You can use it too, but we suggest you first think carefully about whether this license or the ordinary General Public License is the better strategy to use in any particular case, based on the explanations below.

    When we speak of free software, we are referring to freedom of use, not price. Our General Public Licenses are designed to make sure that you have the freedom to distribute copies of free software (and charge for this service if you wish); that you receive source code or can get it if you want it; that you can change the software and use pieces of it in new free programs; and that you are informed that you can do these things.

    To protect your rights, we need to make restrictions that forbid distributors to deny you these rights or to ask you to surrender these rights. These restrictions translate to certain responsibilities for you if you distribute copies of the library or if you modify it.

    For example, if you distribute copies of the library, whether gratis or for a fee, you must give the recipients all the rights that we gave you. You must make sure that they, too, receive or can get the source code. If you link other code with the library, you must provide complete object files to the recipients, so that they can relink them with the library after making changes to the library and recompiling it. And you must show them these terms so they know their rights.

    We protect your rights with a two-step method: (1) we copyright the library, and (2) we offer you this license, which gives you legal permission to copy, distribute and/or modify the library.

    To protect each distributor, we want to make it very clear that there is no warranty for the free library. Also, if the library is modified by someone else and passed on, the recipients should know that what they have is not the original version, so that the original author's reputation will not be affected by problems that might be introduced by others.

    Finally, software patents pose a constant threat to the existence of any free program. We wish to make sure that a company cannot effectively restrict the users of a free program by obtaining a restrictive license from a patent holder. Therefore, we insist that any patent license obtained for a version of the library must be consistent with the full freedom of use specified in this license.

    Most GNU software, including some libraries, is covered by the ordinary GNU General Public License. This license, the GNU Lesser General Public License, applies to certain designated libraries, and is quite different from the ordinary General Public License. We use this license for certain libraries in order to permit linking those libraries into non-free programs.

    When a program is linked with a library, whether statically or using a shared library, the combination of the two is legally speaking a combined work, a derivative of the original library. The ordinary General Public License therefore permits such linking only if the entire combination fits its criteria of freedom. The Lesser General Public License permits more lax criteria for linking other code with the library.

    We call this license the "Lesser" General Public License because it does Less to protect the user's freedom than the ordinary General Public License. It also provides other free software developers Less of an advantage over competing non-free programs. These disadvantages are the reason we use the ordinary General Public License for many libraries. However, the Lesser license provides advantages in certain special circumstances.

    For example, on rare occasions, there may be a special need to encourage the widest possible use of a certain library, so that it becomes a de-facto standard. To achieve this, non-free programs must be allowed to use the library. A more frequent case is that a free library does the same job as widely used non-free libraries. In this case, there is little to gain by limiting the free library to free software only, so we use the Lesser General Public License.

    In other cases, permission to use a particular library in non-free programs enables a greater number of people to use a large body of free software. For example, permission to use the GNU C Library in non-free programs enables many more people to use the whole GNU operating system, as well as its variant, the GNU/Linux operating system.

    Although the Lesser General Public License is Less protective of the users' freedom, it does ensure that the user of a program that is linked with the Library has the freedom and the wherewithal to run that program using a modified version of the Library.

    The precise terms and conditions for copying, distribution and modification follow. Pay close attention to the difference between a "work based on the library" and a "work that uses the library". The former contains code derived from the library, whereas the latter must be combined with the library in order to run.

    TERMS AND CONDITIONS FOR COPYING, DISTRIBUTION AND MODIFICATION

    0. This License Agreement applies to any software library or other program which contains a notice placed by the copyright holder or other authorized party saying it may be distributed under the terms of this Lesser General Public License (also called "this License"). Each licensee is addressed as "you".

    A "library" means a collection of software functions and/or data prepared so as to be conveniently linked with application programs (which use some of those functions and data) to form executables.

    The "Library", below, refers to any such software library or work which has been distributed under these terms. A "work based on the Library" means either the Library or any derivative work under copyright law: that is to say, a work containing the Library or a portion of it, either verbatim or with modifications and/or translated straightforwardly into another language. (Hereinafter, translation is included without limitation in the term "modification".)

    "Source code" for a work means the preferred form of the work for making modifications to it. For a library, complete source code means all the source code for all modules it contains, plus any associated interface definition files, plus the scripts used to control compilation and installation of the library.

    Activities other than copying, distribution and modification are not covered by this License; they are outside its scope. The act of running a program using the Library is not restricted, and output from such a program is covered only if its contents constitute a work based on the Library (independent of the use of the Library in a tool for writing it). Whether that is true depends on what the Library does and what the program that uses the Library does.

    1. You may copy and distribute verbatim copies of the Library's complete source code as you receive it, in any medium, provided that you conspicuously and appropriately publish on each copy an appropriate copyright notice and disclaimer of warranty; keep intact all the notices that refer to this License and to the absence of any warranty; and distribute a copy of this License along with the Library.

    You may charge a fee for the physical act of transferring a copy, and you may at your option offer warranty protection in exchange for a fee.

    2. You may modify your copy or copies of the Library or any portion of it, thus forming a work based on the Library, and copy and distribute such modifications or work under the terms of Section 1 above, provided that you also meet all of these conditions:

    • a) The modified work must itself be a software library.
    • b) You must cause the files modified to carry prominent notices stating that you changed the files and the date of any change.
    • c) You must cause the whole of the work to be licensed at no charge to all third parties under the terms of this License.
    • d) If a facility in the modified Library refers to a function or a table of data to be supplied by an application program that uses the facility, other than as an argument passed when the facility is invoked, then you must make a good faith effort to ensure that, in the event an application does not supply such function or table, the facility still operates, and performs whatever part of its purpose remains meaningful.

      (For example, a function in a library to compute square roots has a purpose that is entirely well-defined independent of the application. Therefore, Subsection 2d requires that any application-supplied function or table used by this function must be optional: if the application does not supply it, the square root function must still compute square roots.)

    These requirements apply to the modified work as a whole. If identifiable sections of that work are not derived from the Library, and can be reasonably considered independent and separate works in themselves, then this License, and its terms, do not apply to those sections when you distribute them as separate works. But when you distribute the same sections as part of a whole which is a work based on the Library, the distribution of the whole must be on the terms of this License, whose permissions for other licensees extend to the entire whole, and thus to each and every part regardless of who wrote it.

    Thus, it is not the intent of this section to claim rights or contest your rights to work written entirely by you; rather, the intent is to exercise the right to control the distribution of derivative or collective works based on the Library.

    In addition, mere aggregation of another work not based on the Library with the Library (or with a work based on the Library) on a volume of a storage or distribution medium does not bring the other work under the scope of this License.

    3. You may opt to apply the terms of the ordinary GNU General Public License instead of this License to a given copy of the Library. To do this, you must alter all the notices that refer to this License, so that they refer to the ordinary GNU General Public License, version 2, instead of to this License. (If a newer version than version 2 of the ordinary GNU General Public License has appeared, then you can specify that version instead if you wish.) Do not make any other change in these notices.

    Once this change is made in a given copy, it is irreversible for that copy, so the ordinary GNU General Public License applies to all subsequent copies and derivative works made from that copy.

    This option is useful when you wish to copy part of the code of the Library into a program that is not a library.

    4. You may copy and distribute the Library (or a portion or derivative of it, under Section 2) in object code or executable form under the terms of Sections 1 and 2 above provided that you accompany it with the complete corresponding machine-readable source code, which must be distributed under the terms of Sections 1 and 2 above on a medium customarily used for software interchange.

    If distribution of object code is made by offering access to copy from a designated place, then offering equivalent access to copy the source code from the same place satisfies the requirement to distribute the source code, even though third parties are not compelled to copy the source along with the object code.

    5. A program that contains no derivative of any portion of the Library, but is designed to work with the Library by being compiled or linked with it, is called a "work that uses the Library". Such a work, in isolation, is not a derivative work of the Library, and therefore falls outside the scope of this License.

    However, linking a "work that uses the Library" with the Library creates an executable that is a derivative of the Library (because it contains portions of the Library), rather than a "work that uses the library". The executable is therefore covered by this License. Section 6 states terms for distribution of such executables.

    When a "work that uses the Library" uses material from a header file that is part of the Library, the object code for the work may be a derivative work of the Library even though the source code is not. Whether this is true is especially significant if the work can be linked without the Library, or if the work is itself a library. The threshold for this to be true is not precisely defined by law.

    If such an object file uses only numerical parameters, data structure layouts and accessors, and small macros and small inline functions (ten lines or less in length), then the use of the object file is unrestricted, regardless of whether it is legally a derivative work. (Executables containing this object code plus portions of the Library will still fall under Section 6.)

    Otherwise, if the work is a derivative of the Library, you may distribute the object code for the work under the terms of Section 6. Any executables containing that work also fall under Section 6, whether or not they are linked directly with the Library itself.

    6. As an exception to the Sections above, you may also combine or link a "work that uses the Library" with the Library to produce a work containing portions of the Library, and distribute that work under terms of your choice, provided that the terms permit modification of the work for the customer's own use and reverse engineering for debugging such modifications.

    You must give prominent notice with each copy of the work that the Library is used in it and that the Library and its use are covered by this License. You must supply a copy of this License. If the work during execution displays copyright notices, you must include the copyright notice for the Library among them, as well as a reference directing the user to the copy of this License. Also, you must do one of these things:

    • a) Accompany the work with the complete corresponding machine-readable source code for the Library including whatever changes were used in the work (which must be distributed under Sections 1 and 2 above); and, if the work is an executable linked with the Library, with the complete machine-readable "work that uses the Library", as object code and/or source code, so that the user can modify the Library and then relink to produce a modified executable containing the modified Library. (It is understood that the user who changes the contents of definitions files in the Library will not necessarily be able to recompile the application to use the modified definitions.)
    • b) Use a suitable shared library mechanism for linking with the Library. A suitable mechanism is one that (1) uses at run time a copy of the library already present on the user's computer system, rather than copying library functions into the executable, and (2) will operate properly with a modified version of the library, if the user installs one, as long as the modified version is interface-compatible with the version that the work was made with.
    • c) Accompany the work with a written offer, valid for at least three years, to give the same user the materials specified in Subsection 6a, above, for a charge no more than the cost of performing this distribution.
    • d) If distribution of the work is made by offering access to copy from a designated place, offer equivalent access to copy the above specified materials from the same place.
    • e) Verify that the user has already received a copy of these materials or that you have already sent this user a copy.

    For an executable, the required form of the "work that uses the Library" must include any data and utility programs needed for reproducing the executable from it. However, as a special exception, the materials to be distributed need not include anything that is normally distributed (in either source or binary form) with the major components (compiler, kernel, and so on) of the operating system on which the executable runs, unless that component itself accompanies the executable.

    It may happen that this requirement contradicts the license restrictions of other proprietary libraries that do not normally accompany the operating system. Such a contradiction means you cannot use both them and the Library together in an executable that you distribute.

    7. You may place library facilities that are a work based on the Library side-by-side in a single library together with other library facilities not covered by this License, and distribute such a combined library, provided that the separate distribution of the work based on the Library and of the other library facilities is otherwise permitted, and provided that you do these two things:

    • a) Accompany the combined library with a copy of the same work based on the Library, uncombined with any other library facilities. This must be distributed under the terms of the Sections above.
    • b) Give prominent notice with the combined library of the fact that part of it is a work based on the Library, and explaining where to find the accompanying uncombined form of the same work.

    8. You may not copy, modify, sublicense, link with, or distribute the Library except as expressly provided under this License. Any attempt otherwise to copy, modify, sublicense, link with, or distribute the Library is void, and will automatically terminate your rights under this License. However, parties who have received copies, or rights, from you under this License will not have their licenses terminated so long as such parties remain in full compliance.

    9. You are not required to accept this License, since you have not signed it. However, nothing else grants you permission to modify or distribute the Library or its derivative works. These actions are prohibited by law if you do not accept this License. Therefore, by modifying or distributing the Library (or any work based on the Library), you indicate your acceptance of this License to do so, and all its terms and conditions for copying, distributing or modifying the Library or works based on it.

    10. Each time you redistribute the Library (or any work based on the Library), the recipient automatically receives a license from the original licensor to copy, distribute, link with or modify the Library subject to these terms and conditions. You may not impose any further restrictions on the recipients' exercise of the rights granted herein. You are not responsible for enforcing compliance by third parties with this License.

    11. If, as a consequence of a court judgment or allegation of patent infringement or for any other reason (not limited to patent issues), conditions are imposed on you (whether by court order, agreement or otherwise) that contradict the conditions of this License, they do not excuse you from the conditions of this License. If you cannot distribute so as to satisfy simultaneously your obligations under this License and any other pertinent obligations, then as a consequence you may not distribute the Library at all. For example, if a patent license would not permit royalty-free redistribution of the Library by all those who receive copies directly or indirectly through you, then the only way you could satisfy both it and this License would be to refrain entirely from distribution of the Library.

    If any portion of this section is held invalid or unenforceable under any particular circumstance, the balance of the section is intended to apply, and the section as a whole is intended to apply in other circumstances.

    It is not the purpose of this section to induce you to infringe any patents or other property right claims or to contest validity of any such claims; this section has the sole purpose of protecting the integrity of the free software distribution system which is implemented by public license practices. Many people have made generous contributions to the wide range of software distributed through that system in reliance on consistent application of that system; it is up to the author/donor to decide if he or she is willing to distribute software through any other system and a licensee cannot impose that choice.

    This section is intended to make thoroughly clear what is believed to be a consequence of the rest of this License.

    12. If the distribution and/or use of the Library is restricted in certain countries either by patents or by copyrighted interfaces, the original copyright holder who places the Library under this License may add an explicit geographical distribution limitation excluding those countries, so that distribution is permitted only in or among countries not thus excluded. In such case, this License incorporates the limitation as if written in the body of this License.

    13. The Free Software Foundation may publish revised and/or new versions of the Lesser General Public License from time to time. Such new versions will be similar in spirit to the present version, but may differ in detail to address new problems or concerns.

    Each version is given a distinguishing version number. If the Library specifies a version number of this License which applies to it and "any later version", you have the option of following the terms and conditions either of that version or of any later version published by the Free Software Foundation. If the Library does not specify a license version number, you may choose any version ever published by the Free Software Foundation.

    14. If you wish to incorporate parts of the Library into other free programs whose distribution conditions are incompatible with these, write to the author to ask for permission. For software which is copyrighted by the Free Software Foundation, write to the Free Software Foundation; we sometimes make exceptions for this. Our decision will be guided by the two goals of preserving the free status of all derivatives of our free software and of promoting the sharing and reuse of software generally.

    NO WARRANTY

    15. BECAUSE THE LIBRARY IS LICENSED FREE OF CHARGE, THERE IS NO WARRANTY FOR THE LIBRARY, TO THE EXTENT PERMITTED BY APPLICABLE LAW. EXCEPT WHEN OTHERWISE STATED IN WRITING THE COPYRIGHT HOLDERS AND/OR OTHER PARTIES PROVIDE THE LIBRARY "AS IS" WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESSED OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. THE ENTIRE RISK AS TO THE QUALITY AND PERFORMANCE OF THE LIBRARY IS WITH YOU. SHOULD THE LIBRARY PROVE DEFECTIVE, YOU ASSUME THE COST OF ALL NECESSARY SERVICING, REPAIR OR CORRECTION.

    16. IN NO EVENT UNLESS REQUIRED BY APPLICABLE LAW OR AGREED TO IN WRITING WILL ANY COPYRIGHT HOLDER, OR ANY OTHER PARTY WHO MAY MODIFY AND/OR REDISTRIBUTE THE LIBRARY AS PERMITTED ABOVE, BE LIABLE TO YOU FOR DAMAGES, INCLUDING ANY GENERAL, SPECIAL, INCIDENTAL OR CONSEQUENTIAL DAMAGES ARISING OUT OF THE USE OR INABILITY TO USE THE LIBRARY (INCLUDING BUT NOT LIMITED TO LOSS OF DATA OR DATA BEING RENDERED INACCURATE OR LOSSES SUSTAINED BY YOU OR THIRD PARTIES OR A FAILURE OF THE LIBRARY TO OPERATE WITH ANY OTHER SOFTWARE), EVEN IF SUCH HOLDER OR OTHER PARTY HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.

    END OF TERMS AND CONDITIONS

    How to Apply These Terms to Your New Libraries

    If you develop a new library, and you want it to be of the greatest possible use to the public, we recommend making it free software that everyone can redistribute and change. You can do so by permitting redistribution under these terms (or, alternatively, under the terms of the ordinary General Public License).

    To apply these terms, attach the following notices to the library. It is safest to attach them to the start of each source file to most effectively convey the exclusion of warranty; and each file should have at least the "copyright" line and a pointer to where the full notice is found. 

    one line to give the library's name and an idea of what it does.
Copyright (C) year  name of author

This library is free software; you can redistribute it and/or
modify it under the terms of the GNU Lesser General Public
License as published by the Free Software Foundation; either
version 2.1 of the License, or (at your option) any later version.

This library is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
Lesser General Public License for more details.

You should have received a copy of the GNU Lesser General Public
License along with this library; if not, write to the Free Software
Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301  USA

    Also add information on how to contact you by electronic and paper mail.

    You should also get your employer (if you work as a programmer) or your school, if any, to sign a "copyright disclaimer" for the library, if necessary. Here is a sample; alter the names: 

    Yoyodyne, Inc., hereby disclaims all copyright interest in
the library `Frob' (a library for tweaking knobs) written
by James Random Hacker.

signature of Ty Coon, 1 April 1990
Ty Coon, President of Vice

    That's all there is to it!

    Additional licences

    In addition to the bulk of OpenConnect being under the LGPLv2.1, some sections were incorporated from other works making use of the 3-clause BSD licence, which requires the following information to be available as part of the documentation:

    Windows socketpair implementation

    The socketpair implementation used for communication with the OpenConnect library under Windows, used with permission from https://github.com/ncm/selectable-socketpair:

    Copyright 2007, 2010 by Nathan C. Myers <ncm@cantrip.org>
Redistribution and use in source and binary forms, with or without modification, 
are permitted provided that the following conditions are met:

    Redistributions of source code must retain the above copyright notice, this
    list of conditions and the following disclaimer.
    
    Redistributions in binary form must reproduce the above copyright notice,
    this list of conditions and the following disclaimer in the documentation
    and/or other materials provided with the distribution.

    The name of the author must not be used to endorse or promote products derived 
    from this software without specific prior written permission.

THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY
EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT
SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT,
INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED
TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR
BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY
WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.

    GnuTLS TPMv2.0 support

    Sections of TPMv2.0 support used with permission from tpm2-tss-engine:

    Copyright 2017-2018, Fraunhofer SIT sponsored by Infineon Technologies AG
All rights reserved.

Redistribution and use in source and binary forms, with or without
modification, are permitted provided that the following conditions are met:

1. Redistributions of source code must retain the above copyright notice,
this list of conditions and the following disclaimer.

2. Redistributions in binary form must reproduce the above copyright notice,
this list of conditions and the following disclaimer in the documentation
and/or other materials provided with the distribution.

3. Neither the name of tpm2-tss-engine nor the names of its contributors
may be used to endorse or promote products derived from this software
without specific prior written permission.

THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE
LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF
THE POSSIBILITY OF SUCH DAMAGE.
    openconnect-8.05/www/html.py0000775000076400007640000001217113425024516017706 0ustar00dwoodhoudwoodhou00000000000000#!/usr/bin/env python3 # # Simple XML to HTML converter. # # (C) 2005 Thomas Gleixner # # This program is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License version 2 as # published by the Free Software Foundation. # import os import sys import getopt import pprint import shutil import string import smtplib import socket import time import xml.sax import codecs if sys.version_info >= (3,0): sys.stdout = codecs.getwriter("utf-8")(sys.stdout.detach()) else: reload(sys) sys.setdefaultencoding('utf-8') sys.stdout = codecs.getwriter("utf-8")(sys.stdout) lookupdir = '' # Print the usage information def usage(): print ("USAGE:") print ("html.py <-f -h file.xml>") print (" -d DIR use DIR as base directory for opening files") print (" -f write output to file.html (default is stdout)") print (" -h help") return # Headerfields header = [ "Mime-Version: 1.0\r\n", "Content-Type: text/plain; charset=utf-8\r\n", "Content-Transfer-Encoding: 8bit\r\n", "Content-Disposition: inline\r\n", ] html = [] replace = [] fdout = sys.stdout def replaceVars(line): cnt = 0 while cnt < len(replace): if line.find(replace[cnt]) >= 0: line = line.replace(replace[cnt], replace[cnt+1]) cnt = cnt + 2 return line def writeHtml(line): fdout.write(replaceVars(line)) def startMenu(level): writeHtml("
    \n" %(level)) def placeMenu(topic, link, mode): topic = replaceVars(topic) mode = replaceVars(mode) if mode == 'text': writeHtml("

    %s

    \n" %(topic)) return if mode == 'selected': writeHtml("\n") else: writeHtml("\n") writeHtml("%s\n" %(link, topic)) writeHtml("\n") # configuration parser class docHandler(xml.sax.ContentHandler): def __init__(self): self.content = "" return def startElement(self, name, attrs): self.element = name if len(self.content) > 0: writeHtml(self.content) self.content = "" if name == "PAGE": return elif name == "INCLUDE": try: fd = codecs.open(attrs.get('file'), 'r', 'utf-8') except: fd = codecs.open(lookupdir + attrs.get('file'), 'r', 'utf-8') lines = fd.readlines() fd.close() for line in lines: writeHtml(line) elif name == "PARSE": parseConfig(attrs.get('file')) elif name == 'STARTMENU': startMenu(attrs.get('level')) elif name == 'MENU': placeMenu(attrs.get('topic'), attrs.get('link'), attrs.get('mode')) elif name == 'ENDMENU': writeHtml("
    \n") elif name == 'VAR': match = attrs.get('match') repl = attrs.get('replace') idx = len(replace) replace[idx:] = [match] idx = len(replace) replace[idx:] = [repl] elif name == "br": writeHtml(" 0: names = attrs.getNames() for name in names: writeHtml(" " + name + "=\"" + attrs.get(name) + "\"") writeHtml(" />") else: writeHtml("<" + name) if attrs.getLength() > 0: names = attrs.getNames() for name in names: writeHtml(" " + name + "=\"" + attrs.get(name) + "\"") writeHtml(">") def characters(self, ch): self.content = self.content + ch def endElement(self, name): if name == "PAGE": return elif name == 'INCLUDE': return elif name == 'PARSE': return elif name == 'PAGE': return elif name == 'STARTMENU': return elif name == 'ENDMENU': return elif name == 'MENU': return elif name == 'VAR': return elif name == 'br': return if len(self.content) > 0: writeHtml(self.content) self.content = "" writeHtml("") # error handler class errHandler(xml.sax.ErrorHandler): def __init__(self): return def error(self, exception): sys.stderr.write("%s\n" % exception) def fatalError(self, exception): sys.stderr.write("Fatal error while parsing configuration\n") sys.stderr.write("%s\n" % exception) sys.exit(1) # parse the configuration file def parseConfig(file): # handlers dh = docHandler() eh = errHandler() # Create an XML parser parser = xml.sax.make_parser() # Set the handlers parser.setContentHandler(dh) parser.setErrorHandler(eh) try: fd = codecs.open(file, 'r', 'utf-8') except: fd = codecs.open(lookupdir + file, 'r', 'utf-8') # Parse the file parser.parse(fd) fd.close() # Here we go # Parse the commandline writefile = 0 try: (options, arguments) = getopt.getopt(sys.argv[1:],'fhd:') except getopt.GetoptError as ex: print print ("ERROR:") print (ex.msg) usage() sys.exit(1) pass for option, value in options: if option == '-d': lookupdir = value + '/' if option == '-f': writefile = 1 elif option == '-h': usage() sys.exit(0) pass pass # Handle special case VAR_ORIGIN idx = len(replace) replace[idx:] = ['VAR_ORIGIN'] idx = len(replace) replace[idx:] = [lookupdir] if not arguments: print ("No source file specified") usage() sys.exit(1) pass if writefile > 0: fname = arguments[0].split('.')[0] fname = fname + ".html" fdout = codecs.open(fname, 'w', 'utf-8') parseConfig(arguments[0]) if writefile > 0: fdout.close() openconnect-8.05/www/building.xml0000664000076400007640000001330113357523143020704 0ustar00dwoodhoudwoodhou00000000000000

    Building OpenConnect

    Unless you need to test the very latest version, you should not need to build OpenConnect for yourself. Your operating system should have a prepackaged version which you can install; if it does not then file a bug or enhancement request asking for one.

    Requirements

    To build OpenConnect from its source code, you will need the following libraries and tools installed:

    • libxml2
    • zlib
    • Either OpenSSL or GnuTLS (v3.2.10+)
    • pkg-config
    And optionally also:

    OpenConnect supports the use of HTTP and SOCKS proxies to connect to the AnyConnect service, even without using libproxy. You may wish to use libproxy if you want OpenConnect to automatically use the appropriate proxies for your environment, without having to manually give it the --proxy argument on the command line.

    Install vpnc-script

    Since version 3.17, The vpnc-script that OpenConnect uses to configure the network is no longer optional, so it needs to be told at compile time where to find that script.

    The configure script will check whether /etc/vpnc/vpnc-script exists and can be executed, and will fail if not. If you don't already have a copy then you should install one. It might be in a separate vpnc-script package for your operating system, it might be part of their vpnc package, and there's one linked from from the vpnc-script page, if you need to download it manually. Install it as /etc/vpnc/vpnc-script.

    If you do not want to use the standard location, you can configure OpenConnect to use a different location by default. When running the ./configure script in the instructions below, you can append an argument such as --with-vpnc-script=/where/I/put/vpnc-script to its command line. Note that the path you give will not be checked; the script doesn't have to be present when you build OpenConnect. But of course OpenConnect won't work very well without it, so you'll still have to install it later.

    Building OpenConnect

    If you checked the source code out from git rather from a release tarball then run this command first to prepare the build system:

    • ./autogen.sh

    Then to build it, run the following commands:

    • ./configure
    • make
    • make install (If you want to install it)

    Note that OpenConnect will attempt to use the GnuTLS library by default. If you want it to use OpenSSL instead, then add --without-gnutls to the ./configure command above.

    If compilation fails, please make sure you have a working compiler and the development packages for all the required libraries mentioned above. If it still doesn't build, please send the full output in a plain-text mail to the mailing list.

    TUN/TAP driver

    Mac OS X users with OS X 10.6 or older, or using OpenConnect 6.00 or older, will also need to install the Mac OS X tun/tap driver. Newer versions of OpenConnect will use the utun device on OS X which does not require additional kernel modules to be installed.

    Solaris/OpenIndiana users will need the Solaris TAP driver. Note that for IPv6 support, the Solaris tun/tap driver from 16th Nov 2009 or newer is required.

    On Windows, version 9.9 or later of the TAP-Windows driver from the OpenVPN project is required. The easiest way to install the driver is to use the Windows installer from the Community Downloads page. The 64-bit installer contains signed drivers suitable for use on Windows 7 and later versions.

     openconnect-8.05/www/anyconnect.xml0000664000076400007640000000667313413512534021261 0ustar00dwoodhoudwoodhou00000000000000

    Cisco AnyConnect

    How the VPN works

    The VPN is extremely simple, based almost entirely on the standard HTTPS and DTLS protocols. You connect to the secure web server, authenticate using certificates and/or arbitrary web forms, and you are rewarded with a standard HTTP cookie named webvpn.

    Some Cisco servers require you to execute a 'Cisco Secure Desktop' trojan binary (intended for security scanning of the client system) before authentication can complete; see the CSD page for information on how to comply with this requirement, or spoof it, with OpenConnect.

    After authentication, you use the webvpn cookie in an HTTP CONNECT request, and can then pass traffic over that connection. IP addresses and routing information are passed back and forth in the headers of that CONNECT request.

    Since TCP over TCP is very suboptimal, the VPN also attempts to use UDP datagrams, and will only actually pass traffic over the HTTPS connection if that fails. The UDP connectivity is done using Datagram TLS, which is supported by OpenSSL.

    DTLS compatibility

    Note: DTLS is optional and not required for basic connectivity, as explained above.

    Unfortunately, Cisco used an old version of OpenSSL for their server, which predates the official RFC and has a few differences in the implementation of DTLS.

    OpenSSL

    Compatibility support for their "speshul" version of the protocol is in the 0.9.8m and later releases of OpenSSL (and 1.0.0-beta2 and later).

    NOTE: OpenSSL 1.0.0k, 1.0.1d and 1.0.1e have introduced bugs which break this compatibility. See the thread on the mailing list, which has patches for each.

    If you are using an older version of OpenSSL which predates the compatibility, you will need to apply this patch from OpenSSL CVS:

    For versions older than 0.9.8j, some generic DTLS bug fixes are also required: The username/password for OpenSSL RT is 'guest/guest'

    GnuTLS

    Support for Cisco's version of DTLS was included in GnuTLS from 3.0.21 onwards (commited in fd5ca1af).

     openconnect-8.05/www/platforms.xml0000664000076400007640000000374312727726520021133 0ustar00dwoodhoudwoodhou00000000000000

    Supported Platforms

    OpenConnect is known to work, with both IPv6 and Legacy IP, on Linux (including Android), OpenBSD, FreeBSD (including Debian GNU/kFreeBSD), NetBSD, DragonFly BSD, OpenIndiana/OpenSolaris, Solaris 10/11, Windows and Mac OS X platforms, and should be trivially portable to any other platform supporting TUN/TAP devices and on which GnuTLS or OpenSSL runs.

    For Solaris support, and for IPv6 on any platform, the vpnc-script shipped with vpnc itself (as of v0.5.3) is not sufficient. It is necessary to use the script from the vpnc-scripts repository instead. That repository also contains an updated version of vpnc-script-win.js which is required for correct IPv6 configuration under Windows.

    OpenConnect is known to work on at least i386, x86_64, PowerPC and MIPS processors, and should not have issues with portability to other CPUs.

    Note that 'Cisco Secure Desktop' support may require the ability to run Linux/i386 binaries; see the CSD page. CSD is not yet supported under Windows.

    New Ports

    Platform support for new UNIX systems is relatively simple to add — most of the difference is in the TUN/TAP device handling, and the major variants of that are already supported.

    OpenConnect builds for Windows using MinGW in 32-bit and 64-bit mode, and works with the TAP-Windows driver shipped with OpenVPN (driver version 9.9 or later).

     openconnect-8.05/www/vpnc-script.xml0000664000076400007640000000600412727726520021365 0ustar00dwoodhoudwoodhou00000000000000

    Install a vpnc-script.

    OpenConnect just handles the communication with the VPN server; it does not know how to configure the network routing and name service on all the various operating systems that it runs on.

    To set the routing and name service up, it uses an external script which is usually called vpnc-script. It's exactly the same script that vpnc uses. You may already have a vpnc-script installed on your system, perhaps in a location such as /etc/vpnc/vpnc-script.

    If you don't already have it, you can get a current version from here. Even if you already have a copy from vpnc, you may wish to install this updated version which has support for IPv6, and for running on Solaris and on newer Linux kernels amongst other bug fixes.

    Note that the script needs to be executable, and stored somewhere where SELinux or similar security systems won't prevent the root user from accessing it.

    Current versions of OpenConnect (since version 3.17) are configured with the location of the script at build time, and will use the script automatically. If you are using a packaged build of OpenConnect rather than building it yourself, then the OpenConnect package should have a dependency on a suitable version of vpnc-script and should be built to look in the right place for it. Hopefully your distributions gets that right.

    If you're using an older version of OpenConnect, or if you want to use a script other than the one that OpenConnect was configured to use, you can use the --script argument on the command line. For example:

    • openconnect --script /etc/vpnc/vpnc-script https://vpn.example.com/

    If OpenConnect is invoked without a suitable script, it will not be able to configure the routing or name service for the VPN.

    Windows

    On Windows, the default configuration of OpenConnect will look for a script named named vpnc-script-win.js in the same directory as the openconnect.exe executable, and will execute it with the command-based script host (CScript.exe).

    The current version of this script can be found here.

    Note that although the script is basically functional for configuring both IPv6 and Legacy IP, it does not fully tear down the configuration on exit so stale IP address might be left around on the interface.

     openconnect-8.05/www/csd.xml0000664000076400007640000000613513413512534017662 0ustar00dwoodhoudwoodhou00000000000000

    Cisco Secure Desktop

    The CSD ('Cisco Secure Desktop') mechanism is a security scanner for the Cisco AnyConnect VPNs, in the same vein as Juniper's Host Checker (tncc.jar) and GlobalProtect's HIP.

    Background

    The 'Cisco Secure Desktop' is a bit of a misnomer — it works by downloading a trojan binary from the server and running it on your client machine to perform some kind of 'verification' and post its approval back to the server. This seems anything but secure to me, especially given their history of trivially-exploitable bugs.

    It's also fairly easy to subvert, by running your own modified binary instead of the one you download from the server. Or by running their binary but poking at it with gdb.

    We support this idiocy, but because of the security concerns the trojan will be executed only if a userid is specified on the command line using the --csd-user= option, or the --csd-wrapper= option is used to handle the script in a 'safe' manner.

    This support currently only works when the server has a Linux binary installed, and only when that Linux binary runs on the client machine.

    CSD support in OpenConnect

    OpenConnect supports running the CSD binary, or spoofing its behaviour, by passing the --csd-wrapper=SCRIPT argument with a shell script.

    The OpenConnect distribution includes two alternative scripts to support the execution or spoofing of the CSD behaviour, in the trojans/ subdirectory:

    • csd-wrapper.sh: This script accepts the same options as some versions of the CSD trojan binary, (-ticket, -stub, -group, -certhash, -url, -langselen), downloads the files required by the binary, and then wraps the execution of the cstub binary. Because of the security dangers of executing a server-provided trojan binary, this script should ideally be executed with the permissions of a low-privilege user (e.g. --csd-user=nobody --csd-wrapper=trojans/csd-wrapper.sh).
    • csd-post.sh: This script does not actually run the CSD trojan binary. Instead, it emulates the behaviour of the CSD trojan, creating a plaintext report similar to the one that the CSD trojans build, and uploading it to the server sent by the VPN gateway. The report may need to be customized in order to be accepted by some servers; the hostscan-bypass tool may help with this. Because this script does not actually execute a trojan binary, and because its complete output is easily visible in the script, the security concerns are greatly alleviated.
    openconnect-8.05/www/menu2-started.xml0000664000076400007640000000055212727726520021611 0ustar00dwoodhoudwoodhou00000000000000 openconnect-8.05/www/token.xml0000664000076400007640000002361712727726520020246 0ustar00dwoodhoudwoodhou00000000000000

    One Time Password support

    OpenConnect supports three types of software tokens for automatically generating one-time passwords:

    OATH HOTP/TOTP tokens are also supported in hardware by:

    On the command line, the token mode is specified with the --token-mode argument, which can be one of rsa, totp, hotp or yubioath.

    The token secret is provided with the --token-secret argument, and the precise form it takes is dependent on the type of token as described below.

    For the openconnect command line program, if the first character of the --token-secret value is / or @, the argument is interpreted as a filename. The secret data will be loaded from (and potentially saved back to, in the case of HOTP tokens) the specifed file.

    In each case, the automatic token generation will be tried twice before it is automatically disabled and the user asked to enter tokencodes manually.

    SecurID token codes will automatically fill in the primary password field in the authentication form presented by the server, while OATH token codes will fill in the secondary password field. This behaviour is empirically determined by the requirements of the servers that we have tested with; if you find a configuration in which it is not appropriate, please let us know.

    SecurID

    If no --token-secret argument is provided in SecurID mode, the default .stokenrc file from the user's home directory will be used. For the NetworkManager integration, this is a separate choice for the token type — the UI has separate choices for "RSA SecurID - read from ~/.stokenrc" vs. "RSA SecurID - manually entered".

    If a token is provided — either directly on the command line, as the contents of a referenced file, or entered into the NetworkManager configuration dialog — it may take one of the many forms accepted by the stoken import command:

    • 286510182209303756117707012447003320623006...
    • 29658-21098-45467-64675-65731-01441-11337...
      Pure numeric (81-digit) "ctf" (compressed token format) strings, with or without dashes. These may have been furnished as-is, or they could have been derived from an sdtid file by the RSA TokenConverter program.
    • com.rsa.securid.iphone://ctf?ctfData=229639330774927764401...
      iPhone-compatible token strings.
    • http://127.0.0.1/securid/ctf?ctfData=250494932146245277466...
    • http://127.0.0.1/securid/ctf?ctfData=AwAAfBc3QSopPxxjLGnxf...
      Android-compatible token strings.
    • &lt;?xml version=...
      RSA sdtid-formatted XML files. These should be generally be imported from a file: '--token-secret @FILE.SDTID'

    SecurID two-factor authentication is based on something you have (a hardware or software token) and something you know (a 4-8 digit PIN code). SecurID administrators can provision software tokens in three different ways:

    • PIN included in tokencode computation
      In most deployments, the software token application will prompt the user for a PIN, and then use the PIN to help calculate an 8-digit tokencode by summing each of the lower digits (modulo 10). The tokencode displayed by the app is then entered verbatim into the password field.
    • PIN manually prepended to tokencode
      In other cases, the software token application will not prompt for a PIN; it will simply display a "bare" tokencode, often 6 digits long, similar to a SecurID hardware token (SID700 or equivalent). In response to the Password: prompt, the user concatenates his PIN and the tokencode: PIN & Tokencode = Passcode.
    • No PIN
      In rare cases, the server is configured such that a PIN is not required at all. In this case, the software token application does not prompt for a PIN and the user simply enters the tokencode into the password field.

    For the first case, OpenConnect will prompt for a PIN if the PIN has not been saved in ~/.stokenrc using the stoken setpin command. Otherwise the saved PIN will automatically be used, permitting unattended operation. This works with all versions of libstoken.

    For the second and third cases, OpenConnect will unconditionally prompt for a PIN and concatenate the PIN with the generated tokencode. If appropriate, an empty PIN may be entered. This requires libstoken v0.8 or higher.

    TOTP (Time-Based One-Time Password)

    As with SecurID tokens, OATH TOTP tokens may be provided either directly on the command line, as the contents of a referenced file, or entered into the NetworkManager configuration dialog. They may be specified in one of the following forms:

    • SecretSecret!
    • sha256:SecretSecret!
    • sha512:SecretSecret!
      For secrets which are actually UTF-8 strings instead of entirely randomly generated data, they may be specified directly in this form.
    • 0x53656372657453656372657421
    • sha256:0x53656372657453656372657421
    • sha512:0x53656372657453656372657421
      This is the hexadecimal form which (without the leading 0x) is accepted by default by the oathtool program.
    • base32:KNSWG4TFORJWKY3SMV2CC===
    • sha256:base32:KNSWG4TFORJWKY3SMV2CC===
    • sha512:base32:KNSWG4TFORJWKY3SMV2CC===
      This is the base32 form which is accepted by the oathtool program with its -b option..
    • &lt;?xml version=...
      PSKC XML files conforming to RFC6030. These should be generally be imported from a file: '--token-secret @FILE.PSKC'

    The default HMAC algorithm for TOTP tokens is SHA-1. SHA-256 and SHA-512 are also supported; to use them prefix "sha256:" or "sha512:" when explicitly providing a key on the command line. Algorithms other than SHA-1 are not yet supported with PSKC files until the relevant standards have been updated to indicate how they shall be indicated in the PSKC file. See this erratum to RFC6238 for current status.

    HOTP (HMAC-Based One-Time Password)

    HOTP tokens are very similar to TOTP tokens except that they are event-based, and contain an additional counter which is incremented each time a token is generated.

    For HOTP tokens, the secret and counter may be provided in one of the following forms:

    • SecretSecret!,99
    • 0x53656372657453656372657421,99
    • base32:KNSWG4TFORJWKY3SMV2CC===,99
      These correspond to the raw forms of the TOTP tokens given above, with the counter value appended in decimal form after a comma.
    • &lt;?xml version=...
      PSKC XML files conforming to RFC6030 will contain the counter value.

    Although it is possible to specify HOTP tokens in their raw form on the command line, that's not very useful because any updates to the counter field will be discarded. Therefore it is advisable to use the @filename form of the --token-secret argument, and the updated secret with incremented counter value will be stored back to the file each time a token is generated.

    The token will be stored back to the file in the same form that it was originally provided.

    Although NetworkManager-openconnect only supports direct token entry (you can't enter @filename into its GUI configuration and expect that to work), versions which are new enough to support HOTP will also have support for reading the updated counter values back from libopenconnect and storing them to the NetworkManager VPN configuration. So if you configure a VPN connection with a HOTP token secret of "0x1234,1" and authenticate once, you should be able to go back into the configuration and see that the token secret has been updated to "0x1234,2".

    HOTP tokens also support SHA-256 and SHA-512 in precisely the same fashion as TOTP tokens, as described above.

    Yubikey HOTP/TOTP

    The ykneo-oath applet implements secure HOTP/TOTP support by storing the private key within the hardware device so that it cannot be recovered.

    The applet can store multiple credentials. If a --token-secret argument is provided, it specifies the name of the credential which is to be used. Otherwise OpenConnect will use the first credential found on the device.

    Yubikey support is not yet implemented in NetworkManager.

     openconnect-8.05/www/menu1.xml0000664000076400007640000000120512727726520020140 0ustar00dwoodhoudwoodhou00000000000000 openconnect-8.05/www/juniper.xml0000664000076400007640000001034313413512534020561 0ustar00dwoodhoudwoodhou00000000000000

    Juniper SSL VPN / Pulse Connect Secure

    Support for Juniper's Network Connect protocol was added to OpenConnect in early 2015, for the 7.05 release. It is still experimental, and is quite likely to be deprecated in favour of the newer Junos Pulse protocol.

    Juniper mode is requested by adding --protocol=nc to the command line: 

      openconnect --protocol=nc vpn.example.com

    Network Connect works very similarly to AnyConnect — initial authentication is made over HTTP, resulting in an HTTP cookie which is used to make the actual VPN connection. That connection is also made over HTTP, and the IP address and routing information are provided by the VPN server. The client then attempts to bring up a UDP transport, which in the case of Juniper is ESP.

    Authentication

    The authentication stage with Juniper is what is expected to cause most problems. Unlike AnyConnect which has a relatively simple XML schema for interacting with the user, the Juniper VPN expects a full web browser environment and uses HTML forms with JavaScript and even full-blown Java support.

    The common case is relatively simple, and OpenConnect supports the common forms defined by the Juniper-provided templates. However, administrators have the facility to put arbitrary HTML pages into the login sequence and full compatibility may require actually using a web browser to log in — ironically, since much of the reason users have been asking for OpenConnect to support Juniper is because they didn't want to have to use a web browser.

    For NetworkManager we may end up putting a full HTML renderer into the GUI authentication dialog, while the command line client continues to parse the common login forms and make a best attempt at handling anything non-standard.

    External authentication

    There are a number of perl and python scripts which handle authentication to Juniper servers to bypass the web browser. One such script has been ported to invoke OpenConnect instead of Juniper's own ncsvc client and can be found here.

    Any of these scripts which authenticate and obtain a DSID cookie representing a VPN session can be used with OpenConnect. Just pass the cookie to OpenConnect with its -C option, for example: 

      openconnect --juniper -C "DSID=foobar12345" vpn.example.com

    Host Checker (tncc.jar)

    Many sites require a Java applet to run certain tests as a precondition of authentication (similar to CSD for AnyConnect VPNs and HIP for GlobalProtect VPNs). See the Host Checker / TNCC page for how to configure OpenConnect to wrap and run this applet.

    Connectivity

    Once authentication is complete, the VPN connection can be established. At the time of writing much of the configuration for Legacy IP addressing and routes is understood and implemented. IPv6 is not yet implemented, and test reports from someone with an IPv6-capable server would be greatly appreciated.

    The data transport is functional both over the HTTPS session and also over ESP. Servers with compression enabled should also be supported, as LZO decompression is working and although we lack compression support it appears acceptable to simply send packets uncompressed.

    At the time of writing, keepalive for the ESP connection has been implemented and extremely lightly tested, while it isn't yet known if the VPN supports keepalive on the HTTPS connection. Reconnection of both the HTTPS and ESP links is implemented. The current implementation is basically usable and is definitely ready for some more widespread testing.

     openconnect-8.05/www/tncc.xml0000664000076400007640000000501013505425637020040 0ustar00dwoodhoudwoodhou00000000000000

    Juniper Host Checker (tncc.jar)

    The Host Checker mechanism is a security scanner for the Juniper VPNs, in the same vein as Cisco's CSD and GlobalProtect's HIP. It is also used by the Pulse Secure protocol but support it in Pulse is not included in OpenConnect yet.

    Background

    Many sites require a Java applet to run certain tests as a precondition of authentication. This works by sending a DSPREAUTH cookie to the client which is attempting to authenticate, and the Java code in tncc.jar then runs and communicates with the server, handing back a new value for the DSPREAUTH cookie to be used when autnentication continues.

    This Java applet is a black-box binary provided by a server outside of the client's control, and therefore has similar security concerns to Cisco's CSD trojan.

    TNCC support in OpenConnect

    OpenConnect supports running the tncc.jar binary with a little assistance. A Python wrapper script, tncc-wrapper.py, is provided in the trojans/ subdirectory of the OpenConnect distribution. It can be used along with the tncc-preload.so from this repository. It may also be necessary to pass a Mozilla-compatible user agent string: 

      ./openconnect --protocol=nc --useragent 'Mozilla/5.0 (Linux) Firefox' --csd-wrapper=trojans/tncc-wrapper.py vpn.example.com
    Because of the security dangers of executing a server-provided trojan binary, this script should ideally be executed with the permissions of a low-privilege user (e.g. --csd-user=nobody).

    Alternatively, the juniper-vpn-py project provides a tncc.py which emulates the behaviour of the tncc.jar binary, rather than actually executing it. Because this script does not actually execute a server-provided binary, security concerns are greatly alleviated. However, this alternative script may require customization to work with VPNs that have modified the behaviour of their Host Checker binaries in some way.

    openconnect-8.05/www/pulse.xml0000664000076400007640000000344413477413651020253 0ustar00dwoodhoudwoodhou00000000000000

    Pulse Connect Secure

    Support for Pulse Connect Secure was added to OpenConnect in June 2019, for the 8.04 release. In most cases it supersedes the older Juniper Network Connect support. It is a much saner protocol.

    Pulse mode is requested by adding --protocol=pulse to the command line: 

      openconnect --protocol=pulse vpn.example.com

    The TCP transport for Pulse Connect Secure works over IF-T/TLS, first using EAP (and EAP-TTLS if certificates are being used) for authentication and then passing traffic over IF-T messages over the same transport. Just as with the older Juniper protocol, the UDP transport is ESP.

    Authentication

    The authentication cookies are compatible with the Juniper mode, which means that external tools like juniper-vpn-py should be usable with OpenConnect in Pulse mode too.

    Host Checker

    Not yet investigated and implemented for Pulse mode. The Juniper support may suffice for some users.

    Connectivity

    Once authentication is complete, the VPN connection can be established. Both Legacy IP and IPv6 should be working, although test reports from someone with an IPv6-capable server would be greatly appreciated as the freely available demo Virtual Appliance does not support IPv6.

     openconnect-8.05/www/download.xml0000664000076400007640000000333213536301670020717 0ustar00dwoodhoudwoodhou00000000000000

    Download

    Released versions of OpenConnect are available from the FTP site:

    Release tarballs (since 3.13) are signed with the PGP key with fingerprint BE07 D9FD 5480 9AB2 C4B0 FF5F 6376 2CDA 67E2 F359.

    The latest release is OpenConnect v8.05 (PGP signature), released on 2019-09-12 with the following changelog:

    • Fix GlobalProtect ESP stall (#55).
    • Fix HTTP chunked encoding buffer overflow (CVE-2019-16239).

    For older releases and change logs, see the changelog page.

    Latest sources

    The latest source code is available from the git repository at:

     openconnect-8.05/www/inc/0000775000076400007640000000000013536301731017134 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/www/inc/footer.tmpl0000664000076400007640000000005112727726520021334 0ustar00dwoodhoudwoodhou00000000000000 openconnect-8.05/www/inc/content.tmpl0000664000076400007640000000006712727726520021517 0ustar00dwoodhoudwoodhou00000000000000
    openconnect-8.05/www/inc/Makefile.am0000664000076400007640000000010412727726520021173 0ustar00dwoodhoudwoodhou00000000000000tmpldatadir = $(htmldir)/inc dist_tmpldata_DATA = $(srcdir)/*.tmpl openconnect-8.05/www/inc/Makefile.in0000664000076400007640000004125313536301674021214 0ustar00dwoodhoudwoodhou00000000000000# Makefile.in generated by automake 1.16.1 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2018 Free Software Foundation, Inc. # This Makefile.in is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY, to the extent permitted by law; without # even the implied warranty of MERCHANTABILITY or FITNESS FOR A # PARTICULAR PURPOSE. @SET_MAKE@ VPATH = @srcdir@ am__is_gnu_make = { \ if test -z '$(MAKELEVEL)'; then \ false; \ elif test -n '$(MAKE_HOST)'; then \ true; \ elif test -n '$(MAKE_VERSION)' && test -n '$(CURDIR)'; then \ true; \ else \ false; \ fi; \ } am__make_running_with_option = \ case $${target_option-} in \ ?) ;; \ *) echo "am__make_running_with_option: internal error: invalid" \ "target option '$${target_option-}' specified" >&2; \ exit 1;; \ esac; \ has_opt=no; \ sane_makeflags=$$MAKEFLAGS; \ if $(am__is_gnu_make); then \ sane_makeflags=$$MFLAGS; \ else \ case $$MAKEFLAGS in \ *\\[\ \ ]*) \ bs=\\; \ sane_makeflags=`printf '%s\n' "$$MAKEFLAGS" \ | sed "s/$$bs$$bs[$$bs $$bs ]*//g"`;; \ esac; \ fi; \ skip_next=no; \ strip_trailopt () \ { \ flg=`printf '%s\n' "$$flg" | sed "s/$$1.*$$//"`; \ }; \ for flg in $$sane_makeflags; do \ test $$skip_next = yes && { skip_next=no; continue; }; \ case $$flg in \ *=*|--*) continue;; \ -*I) strip_trailopt 'I'; skip_next=yes;; \ -*I?*) strip_trailopt 'I';; \ -*O) strip_trailopt 'O'; skip_next=yes;; \ -*O?*) strip_trailopt 'O';; \ -*l) strip_trailopt 'l'; skip_next=yes;; \ -*l?*) strip_trailopt 'l';; \ -[dEDm]) skip_next=yes;; \ -[JT]) skip_next=yes;; \ esac; \ case $$flg in \ *$$target_option*) has_opt=yes; break;; \ esac; \ done; \ test $$has_opt = yes am__make_dryrun = (target_option=n; $(am__make_running_with_option)) am__make_keepgoing = (target_option=k; $(am__make_running_with_option)) pkgdatadir = $(datadir)/@PACKAGE@ pkgincludedir = $(includedir)/@PACKAGE@ pkglibdir = $(libdir)/@PACKAGE@ pkglibexecdir = $(libexecdir)/@PACKAGE@ am__cd = CDPATH="$${ZSH_VERSION+.}$(PATH_SEPARATOR)" && cd install_sh_DATA = $(install_sh) -c -m 644 install_sh_PROGRAM = $(install_sh) -c install_sh_SCRIPT = $(install_sh) -c INSTALL_HEADER = $(INSTALL_DATA) transform = $(program_transform_name) NORMAL_INSTALL = : PRE_INSTALL = : POST_INSTALL = : NORMAL_UNINSTALL = : PRE_UNINSTALL = : POST_UNINSTALL = : build_triplet = @build@ host_triplet = @host@ subdir = www/inc ACLOCAL_M4 = $(top_srcdir)/aclocal.m4 am__aclocal_m4_deps = $(top_srcdir)/m4/ax_check_vscript.m4 \ $(top_srcdir)/m4/iconv.m4 $(top_srcdir)/m4/lib-ld.m4 \ $(top_srcdir)/m4/lib-link.m4 $(top_srcdir)/m4/lib-prefix.m4 \ $(top_srcdir)/m4/libtool.m4 $(top_srcdir)/m4/ltoptions.m4 \ $(top_srcdir)/m4/ltsugar.m4 $(top_srcdir)/m4/ltversion.m4 \ $(top_srcdir)/m4/lt~obsolete.m4 $(top_srcdir)/acinclude.m4 \ $(top_srcdir)/configure.ac am__configure_deps = $(am__aclocal_m4_deps) $(CONFIGURE_DEPENDENCIES) \ $(ACLOCAL_M4) DIST_COMMON = $(srcdir)/Makefile.am $(dist_tmpldata_DATA) \ $(am__DIST_COMMON) mkinstalldirs = $(install_sh) -d CONFIG_HEADER = $(top_builddir)/config.h CONFIG_CLEAN_FILES = CONFIG_CLEAN_VPATH_FILES = AM_V_P = $(am__v_P_@AM_V@) am__v_P_ = $(am__v_P_@AM_DEFAULT_V@) am__v_P_0 = false am__v_P_1 = : AM_V_GEN = $(am__v_GEN_@AM_V@) am__v_GEN_ = $(am__v_GEN_@AM_DEFAULT_V@) am__v_GEN_0 = @echo " GEN " $@; am__v_GEN_1 = AM_V_at = $(am__v_at_@AM_V@) am__v_at_ = $(am__v_at_@AM_DEFAULT_V@) am__v_at_0 = @ am__v_at_1 = SOURCES = DIST_SOURCES = am__can_run_installinfo = \ case $$AM_UPDATE_INFO_DIR in \ n|no|NO) false;; \ *) (install-info --version) >/dev/null 2>&1;; \ esac am__vpath_adj_setup = srcdirstrip=`echo "$(srcdir)" | sed 's|.|.|g'`; am__vpath_adj = case $$p in \ $(srcdir)/*) f=`echo "$$p" | sed "s|^$$srcdirstrip/||"`;; \ *) f=$$p;; \ esac; am__strip_dir = f=`echo $$p | sed -e 's|^.*/||'`; am__install_max = 40 am__nobase_strip_setup = \ srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*|]/\\\\&/g'` am__nobase_strip = \ for p in $$list; do echo "$$p"; done | sed -e "s|$$srcdirstrip/||" am__nobase_list = $(am__nobase_strip_setup); \ for p in $$list; do echo "$$p $$p"; done | \ sed "s| $$srcdirstrip/| |;"' / .*\//!s/ .*/ ./; s,\( .*\)/[^/]*$$,\1,' | \ $(AWK) 'BEGIN { files["."] = "" } { files[$$2] = files[$$2] " " $$1; \ if (++n[$$2] == $(am__install_max)) \ { print $$2, files[$$2]; n[$$2] = 0; files[$$2] = "" } } \ END { for (dir in files) print dir, files[dir] }' am__base_list = \ sed '$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;s/\n/ /g' | \ sed '$$!N;$$!N;$$!N;$$!N;s/\n/ /g' am__uninstall_files_from_dir = { \ test -z "$$files" \ || { test ! -d "$$dir" && test ! -f "$$dir" && test ! -r "$$dir"; } \ || { echo " ( cd '$$dir' && rm -f" $$files ")"; \ $(am__cd) "$$dir" && rm -f $$files; }; \ } am__installdirs = "$(DESTDIR)$(tmpldatadir)" DATA = $(dist_tmpldata_DATA) am__tagged_files = $(HEADERS) $(SOURCES) $(TAGS_FILES) $(LISP) am__DIST_COMMON = $(srcdir)/Makefile.in DISTFILES = $(DIST_COMMON) $(DIST_SOURCES) $(TEXINFOS) $(EXTRA_DIST) ACLOCAL = @ACLOCAL@ AMTAR = @AMTAR@ AM_DEFAULT_VERBOSITY = @AM_DEFAULT_VERBOSITY@ APIMAJOR = @APIMAJOR@ APIMINOR = @APIMINOR@ AR = @AR@ AUTOCONF = @AUTOCONF@ AUTOHEADER = @AUTOHEADER@ AUTOMAKE = @AUTOMAKE@ AWK = @AWK@ CC = @CC@ CCDEPMODE = @CCDEPMODE@ CFLAGS = @CFLAGS@ CONFIG_STATUS_DEPENDENCIES = @CONFIG_STATUS_DEPENDENCIES@ CPP = @CPP@ CPPFLAGS = @CPPFLAGS@ CWRAP_CFLAGS = @CWRAP_CFLAGS@ CWRAP_LIBS = @CWRAP_LIBS@ CYGPATH_W = @CYGPATH_W@ DEFAULT_VPNCSCRIPT = @DEFAULT_VPNCSCRIPT@ DEFS = @DEFS@ DEPDIR = @DEPDIR@ DLLTOOL = @DLLTOOL@ DSYMUTIL = @DSYMUTIL@ DUMPBIN = @DUMPBIN@ ECHO_C = @ECHO_C@ ECHO_N = @ECHO_N@ ECHO_T = @ECHO_T@ EGREP = @EGREP@ EXEEXT = @EXEEXT@ FGREP = @FGREP@ GITVERSIONDEPS = @GITVERSIONDEPS@ GNUTLS_CFLAGS = @GNUTLS_CFLAGS@ GNUTLS_LIBS = @GNUTLS_LIBS@ GREP = @GREP@ GROFF = @GROFF@ GSSAPI_CFLAGS = @GSSAPI_CFLAGS@ GSSAPI_LIBS = @GSSAPI_LIBS@ ICONV_CFLAGS = @ICONV_CFLAGS@ ICONV_LIBS = @ICONV_LIBS@ INSTALL = @INSTALL@ INSTALL_DATA = @INSTALL_DATA@ INSTALL_PROGRAM = @INSTALL_PROGRAM@ INSTALL_SCRIPT = @INSTALL_SCRIPT@ INSTALL_STRIP_PROGRAM = @INSTALL_STRIP_PROGRAM@ INTL_CFLAGS = @INTL_CFLAGS@ INTL_LIBS = @INTL_LIBS@ IP = @IP@ JNI_CFLAGS = @JNI_CFLAGS@ KRB5_CONFIG = @KRB5_CONFIG@ LD = @LD@ LDFLAGS = @LDFLAGS@ LIBICONV = @LIBICONV@ LIBLZ4_CFLAGS = @LIBLZ4_CFLAGS@ LIBLZ4_LIBS = @LIBLZ4_LIBS@ LIBLZ4_PC = @LIBLZ4_PC@ LIBOBJS = @LIBOBJS@ LIBP11_CFLAGS = @LIBP11_CFLAGS@ LIBP11_LIBS = @LIBP11_LIBS@ LIBPCSCLITE_CFLAGS = @LIBPCSCLITE_CFLAGS@ LIBPCSCLITE_LIBS = @LIBPCSCLITE_LIBS@ LIBPCSCLITE_PC = @LIBPCSCLITE_PC@ LIBPROXY_CFLAGS = @LIBPROXY_CFLAGS@ LIBPROXY_LIBS = @LIBPROXY_LIBS@ LIBPROXY_PC = @LIBPROXY_PC@ LIBPSKC_CFLAGS = @LIBPSKC_CFLAGS@ LIBPSKC_LIBS = @LIBPSKC_LIBS@ LIBPSKC_PC = @LIBPSKC_PC@ LIBS = @LIBS@ LIBSTOKEN_CFLAGS = @LIBSTOKEN_CFLAGS@ LIBSTOKEN_LIBS = @LIBSTOKEN_LIBS@ LIBSTOKEN_PC = @LIBSTOKEN_PC@ LIBTOOL = @LIBTOOL@ LIBXML2_CFLAGS = @LIBXML2_CFLAGS@ LIBXML2_LIBS = @LIBXML2_LIBS@ LINGUAS = @LINGUAS@ LIPO = @LIPO@ LN_S = @LN_S@ LTLIBICONV = @LTLIBICONV@ LTLIBOBJS = @LTLIBOBJS@ LT_SYS_LIBRARY_PATH = @LT_SYS_LIBRARY_PATH@ MAINT = @MAINT@ MAKEINFO = @MAKEINFO@ MANIFEST_TOOL = @MANIFEST_TOOL@ MKDIR_P = @MKDIR_P@ MSGFMT = @MSGFMT@ NM = @NM@ NMEDIT = @NMEDIT@ NUTTCP = @NUTTCP@ OBJDUMP = @OBJDUMP@ OBJEXT = @OBJEXT@ OCSERV_GROUP = @OCSERV_GROUP@ OCSERV_USER = @OCSERV_USER@ OPENSSL_CFLAGS = @OPENSSL_CFLAGS@ OPENSSL_LIBS = @OPENSSL_LIBS@ OTOOL = @OTOOL@ OTOOL64 = @OTOOL64@ P11KIT_CFLAGS = @P11KIT_CFLAGS@ P11KIT_LIBS = @P11KIT_LIBS@ P11KIT_PC = @P11KIT_PC@ PACKAGE = @PACKAGE@ PACKAGE_BUGREPORT = @PACKAGE_BUGREPORT@ PACKAGE_NAME = @PACKAGE_NAME@ PACKAGE_STRING = @PACKAGE_STRING@ PACKAGE_TARNAME = @PACKAGE_TARNAME@ PACKAGE_URL = @PACKAGE_URL@ PACKAGE_VERSION = @PACKAGE_VERSION@ PATH_SEPARATOR = @PATH_SEPARATOR@ PKG_CONFIG = @PKG_CONFIG@ PKG_CONFIG_LIBDIR = @PKG_CONFIG_LIBDIR@ PKG_CONFIG_PATH = @PKG_CONFIG_PATH@ PYTHON = @PYTHON@ RANLIB = @RANLIB@ SED = @SED@ SET_MAKE = @SET_MAKE@ SHELL = @SHELL@ SSL_CFLAGS = @SSL_CFLAGS@ SSL_LIBS = @SSL_LIBS@ SSL_PC = @SSL_PC@ STRIP = @STRIP@ SYMVER_ASPRINTF = @SYMVER_ASPRINTF@ SYMVER_GETLINE = @SYMVER_GETLINE@ SYMVER_JAVA = @SYMVER_JAVA@ SYMVER_TIME = @SYMVER_TIME@ SYMVER_VASPRINTF = @SYMVER_VASPRINTF@ SYMVER_WIN32_STRERROR = @SYMVER_WIN32_STRERROR@ TASN1_CFLAGS = @TASN1_CFLAGS@ TASN1_LIBS = @TASN1_LIBS@ TPM2_CFLAGS = @TPM2_CFLAGS@ TPM2_LIBS = @TPM2_LIBS@ TSS2_ESYS_CFLAGS = @TSS2_ESYS_CFLAGS@ TSS2_ESYS_LIBS = @TSS2_ESYS_LIBS@ TSS2_LIBS = @TSS2_LIBS@ TSS_CFLAGS = @TSS_CFLAGS@ TSS_LIBS = @TSS_LIBS@ VERSION = @VERSION@ VSCRIPT_LDFLAGS = @VSCRIPT_LDFLAGS@ WFLAGS = @WFLAGS@ WINDRES = @WINDRES@ ZLIB_CFLAGS = @ZLIB_CFLAGS@ ZLIB_LIBS = @ZLIB_LIBS@ ZLIB_PC = @ZLIB_PC@ _ACJNI_JAVAC = @_ACJNI_JAVAC@ abs_builddir = @abs_builddir@ abs_srcdir = @abs_srcdir@ abs_top_builddir = @abs_top_builddir@ abs_top_srcdir = @abs_top_srcdir@ ac_ct_AR = @ac_ct_AR@ ac_ct_CC = @ac_ct_CC@ ac_ct_DUMPBIN = @ac_ct_DUMPBIN@ am__include = @am__include@ am__leading_dot = @am__leading_dot@ am__quote = @am__quote@ am__tar = @am__tar@ am__untar = @am__untar@ bindir = @bindir@ build = @build@ build_alias = @build_alias@ build_cpu = @build_cpu@ build_os = @build_os@ build_vendor = @build_vendor@ builddir = @builddir@ datadir = @datadir@ datarootdir = @datarootdir@ docdir = @docdir@ dvidir = @dvidir@ exec_prefix = @exec_prefix@ host = @host@ host_alias = @host_alias@ host_cpu = @host_cpu@ host_os = @host_os@ host_vendor = @host_vendor@ htmldir = @htmldir@ includedir = @includedir@ infodir = @infodir@ install_sh = @install_sh@ libdir = @libdir@ libexecdir = @libexecdir@ localedir = @localedir@ localstatedir = @localstatedir@ mandir = @mandir@ mkdir_p = @mkdir_p@ oldincludedir = @oldincludedir@ openssl_pc_libs = @openssl_pc_libs@ pdfdir = @pdfdir@ pkgconfigdir = @pkgconfigdir@ prefix = @prefix@ program_transform_name = @program_transform_name@ psdir = @psdir@ sbindir = @sbindir@ sharedstatedir = @sharedstatedir@ srcdir = @srcdir@ sysconfdir = @sysconfdir@ system_pcsc_libs = @system_pcsc_libs@ target_alias = @target_alias@ test_pkcs11 = @test_pkcs11@ top_build_prefix = @top_build_prefix@ top_builddir = @top_builddir@ top_srcdir = @top_srcdir@ tmpldatadir = $(htmldir)/inc dist_tmpldata_DATA = $(srcdir)/*.tmpl all: all-am .SUFFIXES: $(srcdir)/Makefile.in: @MAINTAINER_MODE_TRUE@ $(srcdir)/Makefile.am $(am__configure_deps) @for dep in $?; do \ case '$(am__configure_deps)' in \ *$$dep*) \ ( cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh ) \ && { if test -f $@; then exit 0; else break; fi; }; \ exit 1;; \ esac; \ done; \ echo ' cd $(top_srcdir) && $(AUTOMAKE) --foreign www/inc/Makefile'; \ $(am__cd) $(top_srcdir) && \ $(AUTOMAKE) --foreign www/inc/Makefile Makefile: $(srcdir)/Makefile.in $(top_builddir)/config.status @case '$?' in \ *config.status*) \ cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh;; \ *) \ echo ' cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__maybe_remake_depfiles)'; \ cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__maybe_remake_depfiles);; \ esac; $(top_builddir)/config.status: $(top_srcdir)/configure $(CONFIG_STATUS_DEPENDENCIES) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(top_srcdir)/configure: @MAINTAINER_MODE_TRUE@ $(am__configure_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(ACLOCAL_M4): @MAINTAINER_MODE_TRUE@ $(am__aclocal_m4_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(am__aclocal_m4_deps): mostlyclean-libtool: -rm -f *.lo clean-libtool: -rm -rf .libs _libs install-dist_tmpldataDATA: $(dist_tmpldata_DATA) @$(NORMAL_INSTALL) @list='$(dist_tmpldata_DATA)'; test -n "$(tmpldatadir)" || list=; \ if test -n "$$list"; then \ echo " $(MKDIR_P) '$(DESTDIR)$(tmpldatadir)'"; \ $(MKDIR_P) "$(DESTDIR)$(tmpldatadir)" || exit 1; \ fi; \ for p in $$list; do \ if test -f "$$p"; then d=; else d="$(srcdir)/"; fi; \ echo "$$d$$p"; \ done | $(am__base_list) | \ while read files; do \ echo " $(INSTALL_DATA) $$files '$(DESTDIR)$(tmpldatadir)'"; \ $(INSTALL_DATA) $$files "$(DESTDIR)$(tmpldatadir)" || exit $$?; \ done uninstall-dist_tmpldataDATA: @$(NORMAL_UNINSTALL) @list='$(dist_tmpldata_DATA)'; test -n "$(tmpldatadir)" || list=; \ files=`for p in $$list; do echo $$p; done | sed -e 's|^.*/||'`; \ dir='$(DESTDIR)$(tmpldatadir)'; $(am__uninstall_files_from_dir) tags TAGS: ctags CTAGS: cscope cscopelist: distdir: $(BUILT_SOURCES) $(MAKE) $(AM_MAKEFLAGS) distdir-am distdir-am: $(DISTFILES) @srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ topsrcdirstrip=`echo "$(top_srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ list='$(DISTFILES)'; \ dist_files=`for file in $$list; do echo $$file; done | \ sed -e "s|^$$srcdirstrip/||;t" \ -e "s|^$$topsrcdirstrip/|$(top_builddir)/|;t"`; \ case $$dist_files in \ */*) $(MKDIR_P) `echo "$$dist_files" | \ sed '/\//!d;s|^|$(distdir)/|;s,/[^/]*$$,,' | \ sort -u` ;; \ esac; \ for file in $$dist_files; do \ if test -f $$file || test -d $$file; then d=.; else d=$(srcdir); fi; \ if test -d $$d/$$file; then \ dir=`echo "/$$file" | sed -e 's,/[^/]*$$,,'`; \ if test -d "$(distdir)/$$file"; then \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ if test -d $(srcdir)/$$file && test $$d != $(srcdir); then \ cp -fpR $(srcdir)/$$file "$(distdir)$$dir" || exit 1; \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ cp -fpR $$d/$$file "$(distdir)$$dir" || exit 1; \ else \ test -f "$(distdir)/$$file" \ || cp -p $$d/$$file "$(distdir)/$$file" \ || exit 1; \ fi; \ done check-am: all-am check: check-am all-am: Makefile $(DATA) installdirs: for dir in "$(DESTDIR)$(tmpldatadir)"; do \ test -z "$$dir" || $(MKDIR_P) "$$dir"; \ done install: install-am install-exec: install-exec-am install-data: install-data-am uninstall: uninstall-am install-am: all-am @$(MAKE) $(AM_MAKEFLAGS) install-exec-am install-data-am installcheck: installcheck-am install-strip: if test -z '$(STRIP)'; then \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ install; \ else \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ "INSTALL_PROGRAM_ENV=STRIPPROG='$(STRIP)'" install; \ fi mostlyclean-generic: clean-generic: distclean-generic: -test -z "$(CONFIG_CLEAN_FILES)" || rm -f $(CONFIG_CLEAN_FILES) -test . = "$(srcdir)" || test -z "$(CONFIG_CLEAN_VPATH_FILES)" || rm -f $(CONFIG_CLEAN_VPATH_FILES) maintainer-clean-generic: @echo "This command is intended for maintainers to use" @echo "it deletes files that may require special tools to rebuild." clean: clean-am clean-am: clean-generic clean-libtool mostlyclean-am distclean: distclean-am -rm -f Makefile distclean-am: clean-am distclean-generic dvi: dvi-am dvi-am: html: html-am html-am: info: info-am info-am: install-data-am: install-dist_tmpldataDATA install-dvi: install-dvi-am install-dvi-am: install-exec-am: install-html: install-html-am install-html-am: install-info: install-info-am install-info-am: install-man: install-pdf: install-pdf-am install-pdf-am: install-ps: install-ps-am install-ps-am: installcheck-am: maintainer-clean: maintainer-clean-am -rm -f Makefile maintainer-clean-am: distclean-am maintainer-clean-generic mostlyclean: mostlyclean-am mostlyclean-am: mostlyclean-generic mostlyclean-libtool pdf: pdf-am pdf-am: ps: ps-am ps-am: uninstall-am: uninstall-dist_tmpldataDATA .MAKE: install-am install-strip .PHONY: all all-am check check-am clean clean-generic clean-libtool \ cscopelist-am ctags-am distclean distclean-generic \ distclean-libtool distdir dvi dvi-am html html-am info info-am \ install install-am install-data install-data-am \ install-dist_tmpldataDATA install-dvi install-dvi-am \ install-exec install-exec-am install-html install-html-am \ install-info install-info-am install-man install-pdf \ install-pdf-am install-ps install-ps-am install-strip \ installcheck installcheck-am installdirs maintainer-clean \ maintainer-clean-generic mostlyclean mostlyclean-generic \ mostlyclean-libtool pdf pdf-am ps ps-am tags-am uninstall \ uninstall-am uninstall-dist_tmpldataDATA .PRECIOUS: Makefile # Tell versions [3.59,3.63) of GNU make to not export all variables. # Otherwise a system limit (for SysV at least) may be exceeded. .NOEXPORT: openconnect-8.05/www/inc/header.tmpl0000664000076400007640000000152412727726520021274 0ustar00dwoodhoudwoodhou00000000000000 OpenConnect VPN client.
    openconnect-8.05/www/index.xml0000664000076400007640000000440413357523143020222 0ustar00dwoodhoudwoodhou00000000000000

    OpenConnect

    OpenConnect is an SSL VPN client initially created to support Cisco's AnyConnect SSL VPN. It has since been ported to support the Juniper SSL VPN (which is now known as Pulse Connect Secure), and to the Palo Alto Networks GlobalProtect SSL VPN.

    OpenConnect is released under the GNU Lesser Public License, version 2.1.

    Like vpnc, OpenConnect is not officially supported by, or associated in any way with, Cisco Systems, Juniper Networks, Pulse Secure, or Palo Alto Networks. It just happens to interoperate with their equipment.

    Development of OpenConnect was started after a trial of the Cisco client under Linux found it to have many deficiencies:

    • Inability to use SSL certificates from a TPM or PKCS#11 smartcard, or even use a passphrase.
    • Lack of support for Linux platforms other than i386.
    • Lack of integration with NetworkManager on the Linux desktop.
    • Lack of proper (RPM/DEB) packaging for Linux distributions.
    • "Stealth" use of libraries with dlopen(), even using the development-only symlinks such as libz.so — making it hard to properly discover the dependencies which proper packaging would have expressed
    • Tempfile races allowing unprivileged users to trick it into overwriting arbitrary files, as root.
    • Unable to run as an unprivileged user, which would have reduced the severity of the above bug.
    • Inability to audit the source code for further such "Security 101" bugs.

    Naturally, OpenConnect addresses all of the above issues, and more.

    openconnect-8.05/www/connecting.xml0000664000076400007640000000345512727726520021253 0ustar00dwoodhoudwoodhou00000000000000

    Connecting to the VPN

    Once you have installed OpenConnect and checked that you have a vpnc-script which will set up the routing and DNS for it, using OpenConnect is very simple. As root, run the following command:

    • openconnect https://vpn.mycompany.com/

    That should be it, if you have a password-based login. If you use certificates, you'll need to tell OpenConnect where to find the certificate with the -c option.

    You can provide the certificate either as the file name of a PKCS#12 or PEM file, or if OpenConnect is built against a suitable version of GnuTLS you can provide the certificate in the form of a PKCS#11 URL:

    • openconnect -c certificate.pem https://vpn.mycompany.com/
    • openconnect -c pkcs11:id=X_%b04%c3%85%d4u%e7%0b%10v%08%c9%0dA%8f%3bl%df https://vpn.mycompany.com/

    You might need to steal the certificate from your Windows certificate store using a tool like Jailbreak.

    To start with, you can ignore anything you see in the technical page about needing to patch OpenSSL or GnuTLS so that DTLS works — you can survive without it, although DTLS will make your connections much faster if you're experiencing packet loss between you and the VPN server. But you can worry about that later.

    openconnect-8.05/www/changelog.xml0000664000076400007640000013004413536301670021040 0ustar00dwoodhoudwoodhou00000000000000

    Changelog

    For full changelog entries including the latest development, see gitweb.

    • OpenConnect HEAD
      • No changelog entries yet

    • OpenConnect v8.05 (PGP signature) — 2019-09-12
      • Fix GlobalProtect ESP stall (#55).
      • Fix HTTP chunked encoding buffer overflow (CVE-2019-16239).

    • OpenConnect v8.04 (PGP signature) — 2019-08-09
      • Rework DTLS MTU detection. (#10)
      • Add Pulse Connect Secure support.
      • OpenSSL build fixes (#51).
      • Add HMAC-SHA256-128 (RFC4868) support for ESP.
      • Support IPv6 in ESP.
      • Translate user-visible strings from openconnect_get_supported_protocols().
      • Fix proxy username/password handling to allow special characters and escaping.

    • OpenConnect v8.03 (PGP signature) — 2019-05-18
      • Fix detection of utun support on OS X (#18).
      • Fix Cisco DTLSv1.2 support for AES256-GCM-SHA384.
      • Fix Solaris 11.4 build by properly detecting memset_s().
      • Fix recognition of OTP password fields (#24).

    • OpenConnect v8.02 (PGP signature) — 2019-01-16
      • Fix GNU/Hurd build.
      • Discover vpnc-script in default packaged location on FreeBSD/OpenBSD.
      • Support split-exclude routes for GlobalProtect.
      • Fix GnuTLS builds without libtasn1.
      • Fix DTLS support with OpenSSL 1.1.1+.
      • Add Cisco-compatible DTLSv1.2 support.
      • Invoke script with reason=attempt-reconnect before doing so.

    • OpenConnect v8.01 (PGP signature) — 2019-01-05
      • Fix memset_s() arguments.
      • Fix OpenBSD build.

    • OpenConnect v8.00 (PGP signature) — 2019-01-05
      • Clear form submissions (which may include passwords) before freeing (CVE-2018-20319).
      • Allow form responses to be provided on command line.
      • Add support for SSL keys stored in TPM2.
      • Fix ESP rekey when replay protection is disabled.
      • Drop support for GnuTLS older than 3.2.10.
      • Fix --passwd-on-stdin for Windows to not forcibly open console.
      • Fix portability of shell scripts in test suite.
      • Add Google Authenticator TOTP support for Juniper.
      • Add RFC7469 key PIN support for cert hashes.
      • Add protocol method to securely log out the Juniper session.
      • Relax requirements for Juniper hostname packet response to support old gateways.
      • Add API functions to query the supported protocols.
      • Verify ESP sequence numbers and warn even if replay protection is disabled.
      • Add support for PAN GlobalProtect VPN protocol (--protocol=gp).
      • Reorganize listing of command-line options, and include information on supported protocols.
      • SIGTERM cleans up the session similarly to SIGINT.

    • OpenConnect v7.08 (PGP signature) — 2016-12-13
      • Add SHA256 support for server cert hashes.
      • Enable DHE ciphers for Cisco DTLS.
      • Increase initial oNCP configuration buffer size.
      • Reopen CONIN$ when stdin is redirected on Windows.
      • Improve support for point-to-point routing on Windows.
      • Check for non-resumed DTLS sessions which may indicate a MiTM attack.
      • Add TUNIDX environment variable on Windows.
      • Fix compatibility with Pulse Secure 8.2R5.
      • Fix IPv6 support in Solaris.
      • Support DTLS automatic negotiation.
      • Support --key-password for GnuTLS PKCS#11 PIN.
      • Support automatic DTLS MTU detection with OpenSSL.
      • Drop support for combined GnuTLS/OpenSSL build.
      • Update OpenSSL to allow TLSv1.2, improve compatibility options.
      • Remove --no-cert-check option. It was being (mis)used.
      • Fix OpenSSL support for PKCS#11 EC keys without public key.
      • Support for final OpenSSL 1.1 release.
      • Fix polling/retry on "tun" socket when buffers full.
      • Fix AnyConnect server-side MTU setting.
      • Fix ESP replay detection.
      • Allow build with LibreSSL (for fetishists only; do not use this as DTLS is broken).
      • Add certificate torture test suite.
      • Support PKCS#11 PIN via pin-value= and --key-password for OpenSSL.
      • Fix integer overflow issues with ESP packet replay detection.
      • Add --pass-tos option as in OpenVPN.
      • Support rôle selection form in Juniper VPN.
      • Support DER-format certificates, add certificate format torture tests.
      • For OpenSSL >= 1.0.2, fix certificate validation when only an intermediate CA is specified with the --cafile option.
      • Support Juniper "Pre Sign-in Message".

    • OpenConnect v7.07 (PGP signature) — 2016-07-11
      • More fixes for OpenSSL 1.1 build.
      • Support Juniper "Post Sign-in Message".
      • Add --protocol option.
      • Fix ChaCha20-Poly1305 cipher suite to reflect final standard.
      • Add ability to disable IPv6 support via library API.
      • Set groups appropriately when using setuid().
      • Automatic DTLS MTU detection.
      • Support SSL client certificate authentication with Juniper servers.
      • Revamp SSL certificate validation for OpenSSL and stop supporting OpenSSL older than 0.9.8.
      • Fix handling of multiple DNS search domains with Network Connect.
      • Fix handling of large configuration packets for Network Connect.
      • Enable SNI when built with OpenSSL (1.0.1g or later).
      • Add --resolve and --local-hostname options to command line.

    • OpenConnect v7.06 (PGP signature) — 2015-03-17
      • Fix openconnect.pc breakage after liboath removal.
      • Refactor Juniper Network Connect receive loop.
      • Fix some memory leaks.
      • Add Bosnian translation.

    • OpenConnect v7.05 (PGP signature) — 2015-03-10
      • Fix alignment issue which broke LZS compression on ARM etc.
      • Support HTTP authentication to servers, not just proxies.
      • Work around Yubikey issue with non-ASCII passphrase set on pre-KitKat Android.
      • Add SHA256/SHA512 support for OATH.
      • Remove liboath dependency.
      • Support DTLS v1.2 and AES-GCM with OpenSSL 1.0.2.
      • Add OpenSSL 1.0.2 to known-broken releases (RT#3703, RT#3711).
      • Fix build with OpenSSL HEAD (OpenSSL 1.1.x).
      • Preliminary support for Juniper SSL VPN.

    • OpenConnect v7.04 (PGP signature) — 2015-01-25
      • Change default behaviour to enable only stateless compression.
      • Add --compression argument and openconnect_set_compression_mode().
      • Add support for LZS compression (compatible with latest Cisco ASA and ocserv).
      • Add support for LZ4 compression (compatible with ocserv).

    • OpenConnect v7.03 (PGP signature) — 2015-01-09
      • Android build infrastructure updates, including 64-bit support.
      • Clean up handling of incoming packets.
      • Fix issue with two-stage (i.e. NetworkManager) connection to servers with trick DNS (RH#1179681).
      • Stop using static variables for received packets.

    • OpenConnect v7.02 (PGP signature) — 2014-12-19
      • Add PKCS#11 support for OpenSSL.
      • Fix handling of select options in openconnect_set_option_value().

    • OpenConnect v7.01 (PGP signature) — 2014-12-07
      • Try harder to find a PKCS#11 key to match a given certificate.
      • Handle 'Connection: close' from proxies correctly.
      • Warn when MTU is set too low (<1280) to permit IPv6 connectivity.
      • Add support for X-CSTP-DynDNS, to trigger DNS lookup on each reconnect.

    • OpenConnect v7.00 (PGP signature) — 2014-11-27
      • Add support for GnuTLS 3.4 system: keys including Windows certificate store.
      • Add support for HOTP/TOTP keys from Yubikey NEO devices.
      • Add ---no-system-trust option to disable default certificate authorities.
      • Improve libiconv and libintl detection.
      • Stop calling setenv() from library functions.
      • Support utun driver on OS X.
      • Change library API so string ownership is never transferred.
      • Support new NDIS6 TAP-Windows driver shipped with OpenVPN 2.3.4.
      • Support using PSKC (RFC6030) token files for HOTP/TOTP tokens.
      • Support for updating HOTP token storage when token is used.
      • Support for reading OTP token data from a file.
      • Add full character set handling for legacy non-UTF8 systems (including Windows).
      • Fix legacy (i.e. not XML POST) submission of non-ASCII form entries (even in UTF-8 locales).
      • Add support for 32-bit Windows XP.
      • Avoid retrying without XML POST, when we failed to even reach the server.
      • Fix off-by-one in parameter substitution in error messages.
      • Improve reporting when GSSAPI auth requested but not compiled in.
      • Fix parsing of split include routes on Windows.
      • Fix crash on invocation with --token-mode but no --token-secret.

    • OpenConnect v6.00 (PGP signature) — 2014-07-08
      • Support SOCKS proxy authentication (password, GSSAPI).
      • Support HTTP proxy authentication (Basic, Digest, NTLM and GSSAPI).
      • Download XML profile in XML POST mode.
      • Fix a couple of bugs involving DTLS rekeying.
      • Fix problems seen when building or connecting without DTLS enabled.
      • Fix tun error handling on Windows hosts.
      • Skip password prompts when using PKCS#8 and PKCS#12 certificates with empty passwords.
      • Fix several minor memory leaks and error paths.
      • Update several Android dependencies, and make the download process more robust.

    • OpenConnect v5.99 (PGP signature) — 2014-03-05
      • Add RFC4226 HOTP token support.
      • Tolerate servers closing connection uncleanly after HTTP/1.0 response (Ubuntu #1225276).
      • Add support for IPv6 split tunnel configuration.
      • Add Windows support with MinGW (tested with both IPv6 and Legacy IP with latest vpnc-script-win.js)
      • Change library API to support updating the auth form when the authgroup is changed (Ubuntu #1229195).
      • Change --os mac to --os mac-intel, to match the identifier used by Cisco clients.
      • Add new API functions to support invoking the VPN mainloop directly from an application.
      • Add JNI interface and sample Java application.
      • Fix junk in --cookieonly output when CSD is enabled.
      • Enable TOTP, stoken, and JNI support in the Android builds.
      • Add --pfs option to enforce perfect forward secrecy.
      • Enable elliptic curves with GnuTLS 3.2.9+, where there is a workaround for certain firewalls that fail with client hellos between 256 and 512 bytes.
      • Add padding when sending password, to avoid leakage of password and username length.
      • Add support for DTLS 1.2 and AES-GCM when connecting to ocserv.
      • Add support for server name indication when compiled with GnuTLS 3.2.9+.

    • OpenConnect v5.03 (PGP signature) — 2014-02-03
      • Fix crash on --authenticate due to freeing --cafile option in argv.

    • OpenConnect v5.02 (PGP signature) — 2014-01-01
      • Fix XML POST issues with authgroups by falling back to old style login.
      • Fix --cookie-on-stdin with cookies from ocserv.
      • Fix reconnection to wrong host after redirect.
      • Reduce limit of queued packets on DTLS socket, to fix VoIP latency.
      • Fix Solaris build breakage due to missing &lt;string.h&gt; includes.
      • Include path in &lt;group-access&gt; node.
      • Include supporting CA certificates from PKCS#11 tokens (with GnuTLS 3.2.7+).
      • Fix possible heap overflow if MTU is increased on reconnection (CVE-2013-7098).

    • OpenConnect v5.01 (PGP signature) — 2013-06-01
      • Attempt to handle &lt;client-cert-request&gt; in aggregate auth mode.
      • Don't include X-Aggregate-Auth: header in fallback mode.
      • Enable AES256 mode for DTLS with GnuTLS (RH#955710).
      • Add --dump-http-traffic option for debugging.
      • Be more permissive in parsing XML forms.
      • Use original URL when falling back to non-XML POST mode.
      • Add --no-xmlpost option to revert to older, compatible behaviour.
      • Close connection before falling back to non-xmlpost mode (RH#964650).
      • Improve error handling when server closes connection (Debian #708928).

    • OpenConnect v5.00 (PGP signature) — 2013-05-15
      • Use GnuTLS by default instead of OpenSSL.
      • Avoid using deprecated gnutls_pubkey_verify_data() function.
      • Fix compatibility issues with XML POST authentication.
      • Fix memory leaks on realloc() failure.
      • Fix certificate validation problem caused by hostname canonicalisation.
      • Add RFC6238 TOTP token support using liboath.
      • Replace --stoken option with more generic --token-mode and --token-secret options.

    • OpenConnect v4.99 (PGP signature) — 2013-02-07
      • Add --os switch to report a different OS type to the gateway.
      • Support new XML POST format.
      • Add SecurID token support using libstoken.

    • OpenConnect v4.08 (PGP signature) — 2013-02-13
      • Fix overflow on HTTP request buffers (CVE-2012-6128)
      • Fix connection to servers with round-robin DNS with two-stage auth/connect.
      • Impose minimum MTU of 1280 bytes.
      • Fix some harmless issues reported by Coverity.
      • Improve "Attempting to connect..." message to be explicit when it's connecting to a proxy.

    • OpenConnect v4.07 (PGP signature) — 2012-08-31
      • Fix segmentation fault when invoked with -p argument.
      • Fix handling of write stalls on CSTP (TCP) socket.

    • OpenConnect v4.06 (PGP signature) — 2012-07-23
      • Fix default CA location for non-Fedora systems with old GnuTLS.
      • Improve error handing when vpnc-script exits with error.
      • Handle PKCS#11 tokens which won't list keys without login.

    • OpenConnect v4.05 (PGP signature) — 2012-07-12
      • Use correct CSD script for Mac OS X.
      • Fix endless loop in PIN cache handling with multiple PKCS#11 tokens.
      • Fix PKCS#11 URI handling to preserve all attributes.
      • Don't forget key password on GUI reconnect.
      • Fix GnuTLS v3 build on OpenBSD.

    • OpenConnect v4.04 (PGP signature) — 2012-07-05
      • Fix GnuTLS password handling for PKCS#8 files.

    • OpenConnect v4.03 (PGP signature) — 2012-07-02
      • Fix --no-proxy option.
      • Fix handling of requested vs. received MTU settings.
      • Fix DTLS MTU for GnuTLS 3.0.21 and newer.
      • Support more ciphers for OpenSSL encrypted PEM keys, with GnuTLS.
      • Fix GnuTLS compatibilty issue with servers that insist on TLSv1.0 or non-AES ciphers (RH#836558).

    • OpenConnect v4.02 (PGP signature) — 2012-06-28
      • Fix build failure due to unconditional inclusion of &lt;gnutls/dtls.h&gt;.

    • OpenConnect v4.01 (PGP signature) — 2012-06-28
      • Fix DTLS MTU issue with GnuTLS.
      • Fix reconnect crash when compression is disabled.
      • Fix build on systems like FreeBSD 8 without O_CLOEXEC.
      • Add --dtls-local-port option.
      • Print correct error when /dev/net/tun cannot be opened.
      • Fix openconnect.pc pkg-config file not to require zlib.pc on systems which lack it (like RHEL5).

    • OpenConnect v4.00 (PGP signature) — 2012-06-20
      • Add support for OpenSSL's odd encrypted PKCS#1 files, for GnuTLS.
      • Fix repeated passphrase retry for OpenSSL.
      • Add keystore support for Android.
      • Support TPM, and also additional checks on PKCS#11 certs, even with GnuTLS 2.12.
      • Fix library references to OpenSSL's ERR_print_errors_cb() when built against GnuTLS v2.12.

    • OpenConnect v3.99 (PGP signature) — 2012-06-13
      • Enable native TPM support when built with GnuTLS.
      • Enable PKCS#11 token support when built with GnuTLS.
      • Eliminate all SSL library exposure through libopenconnect.
      • Parse split DNS information, provide $CISCO_SPLIT_DNS environment variable to vpnc-script.
      • Attempt to provide new-style MTU information to server (on Linux only, unless specified on command line).
      • Allow building against GnuTLS, including DTLS support.
      • Add --with-pkgconfigdir= option to configure for FreeBSD's benefit (fd#48743).

    • OpenConnect v3.20 (PGP signature) — 2012-05-18
      • Cope with non-keepalive HTTP response on authentication success.
      • Fix progress callback with incorrect cbdata which caused KDE crash.

    • OpenConnect v3.19 (PGP signature) — 2012-05-17
      • Add --config option for reading options from file.
      • Improve OpenSSL DTLS compatibility to work on Ubuntu 10.04.
      • Flush progress logging output promptly after each message.
      • Add symbol versioning for shared library (on sane platforms).
      • Add openconnect_set_cancel_fd() function to allow clean cancellation.
      • Fix corruption of URL in openconnect_parse_url() if it specifies a port number.
      • Fix inappropriate exit() calls from library code.
      • Library namespace cleanup — all symbols now have the prefix openconnect_ on platforms where symbol versioning works.
      • Fix --non-inter option so it still uses login information from command line.

    • OpenConnect v3.18 (PGP signature) — 2012-04-25
      • Fix autohate breakage with --disable-nls... hopefully.
      • Fix buffer overflow in banner handling.

    • OpenConnect v3.17 (PGP signature) — 2012-04-20
      • Work around time() brokenness on Solaris.
      • Fix interface plumbing on Solaris 10.
      • Provide asprintf() function for (unpatched) Solaris 10.
      • Make vpnc-script mandatory, like it is for vpnc
      • Don't set Legacy IP address on tun device; let vpnc-script do it.
      • Detect OpenSSL even without pkg-config.
      • Stop building static library by default.
      • Invoke vpnc-script with "pre-init" reason to load tun module if necessary.

    • OpenConnect v3.16 (PGP signature) — 2012-04-08
      • Fix build failure on Debian/kFreeBSD and Hurd.
      • Fix memory leak of deflated packets.
      • Fix memory leak of zlib state on CSTP reconnect.
      • Eliminate memcpy() calls on packets from DTLS and tunnel device.
      • Use I_LINK instead of I_PLINK on Solaris to plumb interface for Legacy IP.
      • Plumb interface for IPv6 on Solaris, instead of expecting vpnc-script to do it.
      • Refer to vpnc-script and help web pages in openconnect output.
      • Fix potential crash when processing libproxy results.
      • Be more conservative in detecting libproxy without pkg-config.

    • OpenConnect v3.15 (PGP signature) — 2011-11-25
      • Fix for reading multiple packets from Solaris tun device.
      • Call bindtextdomain() to ensure that translations are found in install path.

    • OpenConnect v3.14 (PGP signature) — 2011-11-08
      • Move executable to $prefix/sbin.
      • Fix build issues on OSX, OpenIndiana, DragonFlyBSD, OpenBSD, FreeBSD &amp; NetBSD.
      • Fix non-portable (void *) arithmetic.
      • Make more messages translatable.
      • Attempt to make NLS support more portable (with fewer dependencies).

    • OpenConnect v3.13 (PGP signature) — 2011-09-30
      • Add --cert-expire-warning option.
      • Give visible warning when server dislikes client SSL certificate.
      • Add localisation support.
      • Fix build on Debian systems where dtls1_stop_timer() is not available.
      • Fix libproxy detection.
      • Enable a useful set of compiler warnings by default.
      • Fix various minor compiler warnings.

    • OpenConnect v3.12 — 2011-09-12
      • Fix DTLS compatibility with ASA firmware 8.4.1(11) and above.
      • Fix build failures on GNU Hurd, on systems with ancient OpenSSL, and on Debian.
      • Add --pid-file option.
      • Print SHA1 fingerprint with server certificate details.

    • OpenConnect v3.11 — 2011-07-20
      • Add Android.mk file for Android build support
      • Add logging support for Android, in place of standard syslog().
      • Switch back to using TLSv1, but without extensions.
      • Make TPM support optional, dependent on OpenSSL ENGINE support.

    • OpenConnect v3.10 — 2011-06-30
      • Switch to using GNU autoconf/automake/libtool.
      • Produce shared library for authentication.
      • Improve library API to make life easier for C++ users.
      • Be more explicit about requiring pkg-config.
      • Invoke script with reason=reconnect on CSTP reconnect.
      • Add --non-inter option to avoid all user input.

    • OpenConnect v3.02 — 2011-04-19
      • Install man page in make install target.
      • Add openconnect_vpninfo_free() to libopenconnect.
      • Clear cached peer_addr to avoid reconnecting to wrong host.

    • OpenConnect v3.01 — 2011-03-09
      • Add libxml2 to pkg-config requirements.

    • OpenConnect v3.00 — 2011-03-09
      • Create libopenconnect.a for GUI authentication dialog to use.
      • Remove auth-dialog, which now lives in the network-manager-openconnect package.
      • Cope with more entries in authentication forms.
      • Add --csd-wrapper option to wrap CSD trojan.
      • Report error and abort if CA file cannot be opened.

    • OpenConnect v2.26 — 2010-09-22
      • Fix potential crash on relative HTTP redirect.
      • Use correct TUN/TAP device node on Android.
      • Check client certificate expiry date.
      • Implement CSTP and DTLS rekeying (both by reconnecting CSTP).
      • Add --force-dpd option to set minimum DPD interval.
      • Don't print webvpn cookie in debug output.
      • Fix host selection in NetworkManager auth dialog.
      • Use SSLv3 instead of TLSv1; some servers (or their firewalls) don't accept any ClientHello options.
      • Never include address family prefix on script-tun connections.

    • OpenConnect v2.25 — 2010-05-15
      • Always validate server certificate, even when no extra --cafile is provided.
      • Add --no-cert-check option to avoid certificate validation.
      • Check server hostname against its certificate.
      • Provide text-mode function for reviewing and accepting "invalid" certificates.
      • Fix libproxy detection on NetBSD.

    • OpenConnect v2.24 — 2010-05-07
      • Forget preconfigured password after a single attempt; don't retry infinitely if it's failing.
      • Set $CISCO_BANNER environment variable when running script.
      • Better handling of passphrase failure on certificate files.
      • Fix NetBSD build (thanks to Pouya D. Tafti).
      • Fix DragonFly BSD build.

    • OpenConnect v2.23 — 2010-04-09
      • Support "Cisco Secure Desktop" trojan in NetworkManager auth-dialog.
      • Support proxy in NetworkManager auth-dialog.
      • Add --no-http-keepalive option to work around Cisco's incompetence.
      • Fix build on Debian/kFreeBSD.
      • Fix crash on receiving HTTP 404 error.
      • Improve workaround for server certificates lacking SSL_SERVER purpose, so that it also works with OpenSSL older than 0.9.8k.

    • OpenConnect v2.22 — 2010-03-07
      • Fix bug handling port numbers above 9999.
      • Ignore "Connection: Keep-Alive" in HTTP/1.0 to work around server bug with certificate authentication.
      • Handle non-standard port (and full URLs) when used with NetworkManager.
      • Cope with relative redirect and form URLs.
      • Allocate HTTP receive buffer dynamically, to cope with arbitrary size of content.
      • Fix server cert SHA1 comparison to be case-insensitive.
      • Fix build on Solaris and OSX (strndup(), AI_NUMERICSERV).
      • Fix exit code with --background option.

    • OpenConnect v2.21 — 2010-01-10
      • Fix handling of HTTP 1.0 responses with keepalive (RH#553817).
      • Fix case sensitivity in HTTP headers and hostname comparison on redirect.

    • OpenConnect v2.20 — 2010-01-04
      • Fix use-after-free bug in NetworkManager authentication dialog (RH#551665).
      • Allow server to be specified with https:// URL, including port and pathname (which Cisco calls 'UserGroup')
      • Support connection through HTTP and SOCKS proxies.
      • Handle HTTP redirection with port numbers.
      • Handle HTTP redirection with IPv6 literal addresses.

    • OpenConnect v2.12 — 2009-12-07
      • Fix buffer overflow when generating useragent string.
      • Cope with idiotic schizoDNS configurations by not repeating DNS lookup for VPN server on reconnects.
      • Support DragonFlyBSD. Probably.

    • OpenConnect v2.11 — 2009-11-17
      • Add IPv6 support for FreeBSD.
      • Support "split tunnel" mode for IPv6 routing.
      • Fix bug where client certificate's MD5 was only given to the CSD trojan if a PKCS#12 certificate was used.

    • OpenConnect v2.10 — 2009-11-04
      • OpenSolaris support.
      • Preliminary support for IPv6 connectivity.
      • Fix session shutdown on exit.
      • Fix reconnection when TCP connection is closed.
      • Support for "Cisco Secure Desktop" idiocy.
      • Allow User-Agent: to be specified on command line.
      • Fix session termination on disconnect.
      • Fix recognition of certificates from OpenSSL 1.0.0.

    • OpenConnect v2.01 — 2009-06-24
      • Fix bug causing loss of DTLS (and lots of syslog spam about it) after a CSTP reconnection.
      • Don't apply OpenSSL certificate chain workaround if we already have "extra" certificates loaded (e.g. from a PKCS#12 file).
      • Load "extra" certificates from .pem files too.
      • Fix SEGV caused by freeing certificates after processing cert chain.

    • OpenConnect v2.00 — 2009-06-03
      • Add OpenBSD and FreeBSD support.
      • Build with OpenSSL-0.9.7 (Mac OS X, OpenBSD, etc.)
      • Support PKCS#12 certificates.
      • Automatic detection of certificate type (PKCS#12, PEM, TPM).
      • Work around OpenSSL trust chain issues (RT#1942).
      • Allow PEM passphrase to be specified on command line.
      • Allow PEM passphrase automatically generated from the fsid of the file system on which the certificate is stored.
      • Fix certificate comparisons (in NM auth-dialog and --servercert option) to use SHA1 fingerprint, not signature.
      • Fix segfault in NM auth-dialog when changing hosts.

    • OpenConnect v1.40 — 2009-05-27
      • Fix validation of server's SSL certificate when NetworkManager runs openconnect as an unprivileged user (which can't read the real user's trust chain file).
      • Fix double-free of DTLS Cipher option on reconnect.
      • Reconnect on SSL write errors
      • Fix reporting of SSL errors through syslog/UI.

    • OpenConnect v1.30 — 2009-05-13
      • NetworkManager auth-dialog will now cache authentication form options.

    • OpenConnect v1.20 — 2009-05-08
      • DTLS cipher choice fixes.
      • Improve handling of authentication group selection.
      • Export more information to connection script.
      • Add --background option to dæmonize after connection.
      • Detect TCP connection closure.

    • OpenConnect v1.10 — 2009-04-01
      • NetworkManager UI rewrite with many improvements.
      • Support for "UserGroups" where a single server offers multiple configurations according to the URL used to connect.

    • OpenConnect v1.00 — 2009-03-18
      • First non-beta release.
     openconnect-8.05/www/menu2.xml0000664000076400007640000000100413357523143020132 0ustar00dwoodhoudwoodhou00000000000000 openconnect-8.05/www/manual.xml0000664000076400007640000000052112727726520020370 0ustar00dwoodhoudwoodhou00000000000000 openconnect-8.05/www/styles/0000775000076400007640000000000013536301731017706 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/www/styles/main.css0000664000076400007640000000565012727726520021362 0ustar00dwoodhoudwoodhou00000000000000body { background: white; font-family: 'Raleway', Sans, Arial, Helvetica, Geneva, Swiss, SunSans-Regular; font-size: 12px; } #logo { text-align: right; margin: 0; } #main { margin: 0; border-left-style: double; border-bottom-style: double; border-color: #1414a6; border-left-width: 5px; border-bottom-width: 5px; min-width: 70em; } #menu1 { margin: 0; padding-left: 20px; background: #1414a6; height: 2.2em; } #menu1 p { color: white; font-size: 14px; text-align: right; vertical-align: middle; padding-right: 10px; padding-top: 0.2em; } #menu1 .nonsel a { color: black; float: left; background: url(../images/left.png) top left no-repeat #b3b3b3; margin-top: 0.2em; margin-left: 5px; padding-top: 0.2em; height: 1.8em; text-decoration: none; } #menu1 .nonsel a span { background: url(../images/right.png) top right no-repeat transparent; padding: 0.2em 1em 0 1em; } #menu1 .nonsel a:hover { background: url(../images/leftsel.png) top left no-repeat #e6e6e6; } #menu1 .nonsel a:hover span { color: Black; text-decoration: underline; background: url(../images/rightsel.png) top right no-repeat transparent; } #menu1 .sel a { color: black; float: left; padding-top: 0.2em; background: url(../images/leftsel.png) top left no-repeat #e6e6e6; margin-top: 0.2em; margin-left: 5px; height: 2em; text-decoration: none; } #menu1 .sel a span { background: url(../images/rightsel.png) top right no-repeat transparent; padding: 0.2em 1em 0 1em; } #menu2 { background: #e6e6e6; height: 2.3em; border-bottom-style: solid; border-color: #1414a6; border-bottom-width: 1px; } #menu2 .nonsel a { color: black; float: left; background: url(../images/left2.png) top left no-repeat #b3b3b3; margin-top: 0.2em; margin-left: 5px; padding-top: 0.2em; height: 1.8em; text-decoration: none; } #menu2 .nonsel a span { background: url(../images/right2.png) top right no-repeat transparent; padding: 0.2em 1em 0 1em; } #menu2 .nonsel a:hover { background: url(../images/leftsel2.png) top left no-repeat #e6e6e6; } #menu2 .nonsel a:hover span { color: Black; text-decoration: underline; background: url(../images/rightsel2.png) top right no-repeat transparent; } #menu2 .sel a { color: black; float: left; padding: 0.2em 1em 0 1em; margin-top: 0.2em; margin-left: 0px; height: 2em; text-decoration: none; } #textbox { margin-left: 20px; margin-bottom: 20px; margin-right: 20px; margin-top: 20px; padding-top: 20px; padding-left: 20px; padding-right: 120px; padding-bottom: 20px; font-size: 14px; } #text { margin: 0; border-color: #e6e6e6; font-size: 14px; background: #ffffff; } #text a { color: blue; text-decoration: none; } #text a:hover { text-decoration: underline; } openconnect-8.05/www/styles/Makefile.am0000664000076400007640000000010312727726520021744 0ustar00dwoodhoudwoodhou00000000000000stylesdatadir = $(htmldir)/styles dist_stylesdata_DATA = main.css openconnect-8.05/www/styles/Makefile.in0000664000076400007640000004133313536301675021766 0ustar00dwoodhoudwoodhou00000000000000# Makefile.in generated by automake 1.16.1 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2018 Free Software Foundation, Inc. # This Makefile.in is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY, to the extent permitted by law; without # even the implied warranty of MERCHANTABILITY or FITNESS FOR A # PARTICULAR PURPOSE. @SET_MAKE@ VPATH = @srcdir@ am__is_gnu_make = { \ if test -z '$(MAKELEVEL)'; then \ false; \ elif test -n '$(MAKE_HOST)'; then \ true; \ elif test -n '$(MAKE_VERSION)' && test -n '$(CURDIR)'; then \ true; \ else \ false; \ fi; \ } am__make_running_with_option = \ case $${target_option-} in \ ?) ;; \ *) echo "am__make_running_with_option: internal error: invalid" \ "target option '$${target_option-}' specified" >&2; \ exit 1;; \ esac; \ has_opt=no; \ sane_makeflags=$$MAKEFLAGS; \ if $(am__is_gnu_make); then \ sane_makeflags=$$MFLAGS; \ else \ case $$MAKEFLAGS in \ *\\[\ \ ]*) \ bs=\\; \ sane_makeflags=`printf '%s\n' "$$MAKEFLAGS" \ | sed "s/$$bs$$bs[$$bs $$bs ]*//g"`;; \ esac; \ fi; \ skip_next=no; \ strip_trailopt () \ { \ flg=`printf '%s\n' "$$flg" | sed "s/$$1.*$$//"`; \ }; \ for flg in $$sane_makeflags; do \ test $$skip_next = yes && { skip_next=no; continue; }; \ case $$flg in \ *=*|--*) continue;; \ -*I) strip_trailopt 'I'; skip_next=yes;; \ -*I?*) strip_trailopt 'I';; \ -*O) strip_trailopt 'O'; skip_next=yes;; \ -*O?*) strip_trailopt 'O';; \ -*l) strip_trailopt 'l'; skip_next=yes;; \ -*l?*) strip_trailopt 'l';; \ -[dEDm]) skip_next=yes;; \ -[JT]) skip_next=yes;; \ esac; \ case $$flg in \ *$$target_option*) has_opt=yes; break;; \ esac; \ done; \ test $$has_opt = yes am__make_dryrun = (target_option=n; $(am__make_running_with_option)) am__make_keepgoing = (target_option=k; $(am__make_running_with_option)) pkgdatadir = $(datadir)/@PACKAGE@ pkgincludedir = $(includedir)/@PACKAGE@ pkglibdir = $(libdir)/@PACKAGE@ pkglibexecdir = $(libexecdir)/@PACKAGE@ am__cd = CDPATH="$${ZSH_VERSION+.}$(PATH_SEPARATOR)" && cd install_sh_DATA = $(install_sh) -c -m 644 install_sh_PROGRAM = $(install_sh) -c install_sh_SCRIPT = $(install_sh) -c INSTALL_HEADER = $(INSTALL_DATA) transform = $(program_transform_name) NORMAL_INSTALL = : PRE_INSTALL = : POST_INSTALL = : NORMAL_UNINSTALL = : PRE_UNINSTALL = : POST_UNINSTALL = : build_triplet = @build@ host_triplet = @host@ subdir = www/styles ACLOCAL_M4 = $(top_srcdir)/aclocal.m4 am__aclocal_m4_deps = $(top_srcdir)/m4/ax_check_vscript.m4 \ $(top_srcdir)/m4/iconv.m4 $(top_srcdir)/m4/lib-ld.m4 \ $(top_srcdir)/m4/lib-link.m4 $(top_srcdir)/m4/lib-prefix.m4 \ $(top_srcdir)/m4/libtool.m4 $(top_srcdir)/m4/ltoptions.m4 \ $(top_srcdir)/m4/ltsugar.m4 $(top_srcdir)/m4/ltversion.m4 \ $(top_srcdir)/m4/lt~obsolete.m4 $(top_srcdir)/acinclude.m4 \ $(top_srcdir)/configure.ac am__configure_deps = $(am__aclocal_m4_deps) $(CONFIGURE_DEPENDENCIES) \ $(ACLOCAL_M4) DIST_COMMON = $(srcdir)/Makefile.am $(dist_stylesdata_DATA) \ $(am__DIST_COMMON) mkinstalldirs = $(install_sh) -d CONFIG_HEADER = $(top_builddir)/config.h CONFIG_CLEAN_FILES = CONFIG_CLEAN_VPATH_FILES = AM_V_P = $(am__v_P_@AM_V@) am__v_P_ = $(am__v_P_@AM_DEFAULT_V@) am__v_P_0 = false am__v_P_1 = : AM_V_GEN = $(am__v_GEN_@AM_V@) am__v_GEN_ = $(am__v_GEN_@AM_DEFAULT_V@) am__v_GEN_0 = @echo " GEN " $@; am__v_GEN_1 = AM_V_at = $(am__v_at_@AM_V@) am__v_at_ = $(am__v_at_@AM_DEFAULT_V@) am__v_at_0 = @ am__v_at_1 = SOURCES = DIST_SOURCES = am__can_run_installinfo = \ case $$AM_UPDATE_INFO_DIR in \ n|no|NO) false;; \ *) (install-info --version) >/dev/null 2>&1;; \ esac am__vpath_adj_setup = srcdirstrip=`echo "$(srcdir)" | sed 's|.|.|g'`; am__vpath_adj = case $$p in \ $(srcdir)/*) f=`echo "$$p" | sed "s|^$$srcdirstrip/||"`;; \ *) f=$$p;; \ esac; am__strip_dir = f=`echo $$p | sed -e 's|^.*/||'`; am__install_max = 40 am__nobase_strip_setup = \ srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*|]/\\\\&/g'` am__nobase_strip = \ for p in $$list; do echo "$$p"; done | sed -e "s|$$srcdirstrip/||" am__nobase_list = $(am__nobase_strip_setup); \ for p in $$list; do echo "$$p $$p"; done | \ sed "s| $$srcdirstrip/| |;"' / .*\//!s/ .*/ ./; s,\( .*\)/[^/]*$$,\1,' | \ $(AWK) 'BEGIN { files["."] = "" } { files[$$2] = files[$$2] " " $$1; \ if (++n[$$2] == $(am__install_max)) \ { print $$2, files[$$2]; n[$$2] = 0; files[$$2] = "" } } \ END { for (dir in files) print dir, files[dir] }' am__base_list = \ sed '$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;s/\n/ /g' | \ sed '$$!N;$$!N;$$!N;$$!N;s/\n/ /g' am__uninstall_files_from_dir = { \ test -z "$$files" \ || { test ! -d "$$dir" && test ! -f "$$dir" && test ! -r "$$dir"; } \ || { echo " ( cd '$$dir' && rm -f" $$files ")"; \ $(am__cd) "$$dir" && rm -f $$files; }; \ } am__installdirs = "$(DESTDIR)$(stylesdatadir)" DATA = $(dist_stylesdata_DATA) am__tagged_files = $(HEADERS) $(SOURCES) $(TAGS_FILES) $(LISP) am__DIST_COMMON = $(srcdir)/Makefile.in DISTFILES = $(DIST_COMMON) $(DIST_SOURCES) $(TEXINFOS) $(EXTRA_DIST) ACLOCAL = @ACLOCAL@ AMTAR = @AMTAR@ AM_DEFAULT_VERBOSITY = @AM_DEFAULT_VERBOSITY@ APIMAJOR = @APIMAJOR@ APIMINOR = @APIMINOR@ AR = @AR@ AUTOCONF = @AUTOCONF@ AUTOHEADER = @AUTOHEADER@ AUTOMAKE = @AUTOMAKE@ AWK = @AWK@ CC = @CC@ CCDEPMODE = @CCDEPMODE@ CFLAGS = @CFLAGS@ CONFIG_STATUS_DEPENDENCIES = @CONFIG_STATUS_DEPENDENCIES@ CPP = @CPP@ CPPFLAGS = @CPPFLAGS@ CWRAP_CFLAGS = @CWRAP_CFLAGS@ CWRAP_LIBS = @CWRAP_LIBS@ CYGPATH_W = @CYGPATH_W@ DEFAULT_VPNCSCRIPT = @DEFAULT_VPNCSCRIPT@ DEFS = @DEFS@ DEPDIR = @DEPDIR@ DLLTOOL = @DLLTOOL@ DSYMUTIL = @DSYMUTIL@ DUMPBIN = @DUMPBIN@ ECHO_C = @ECHO_C@ ECHO_N = @ECHO_N@ ECHO_T = @ECHO_T@ EGREP = @EGREP@ EXEEXT = @EXEEXT@ FGREP = @FGREP@ GITVERSIONDEPS = @GITVERSIONDEPS@ GNUTLS_CFLAGS = @GNUTLS_CFLAGS@ GNUTLS_LIBS = @GNUTLS_LIBS@ GREP = @GREP@ GROFF = @GROFF@ GSSAPI_CFLAGS = @GSSAPI_CFLAGS@ GSSAPI_LIBS = @GSSAPI_LIBS@ ICONV_CFLAGS = @ICONV_CFLAGS@ ICONV_LIBS = @ICONV_LIBS@ INSTALL = @INSTALL@ INSTALL_DATA = @INSTALL_DATA@ INSTALL_PROGRAM = @INSTALL_PROGRAM@ INSTALL_SCRIPT = @INSTALL_SCRIPT@ INSTALL_STRIP_PROGRAM = @INSTALL_STRIP_PROGRAM@ INTL_CFLAGS = @INTL_CFLAGS@ INTL_LIBS = @INTL_LIBS@ IP = @IP@ JNI_CFLAGS = @JNI_CFLAGS@ KRB5_CONFIG = @KRB5_CONFIG@ LD = @LD@ LDFLAGS = @LDFLAGS@ LIBICONV = @LIBICONV@ LIBLZ4_CFLAGS = @LIBLZ4_CFLAGS@ LIBLZ4_LIBS = @LIBLZ4_LIBS@ LIBLZ4_PC = @LIBLZ4_PC@ LIBOBJS = @LIBOBJS@ LIBP11_CFLAGS = @LIBP11_CFLAGS@ LIBP11_LIBS = @LIBP11_LIBS@ LIBPCSCLITE_CFLAGS = @LIBPCSCLITE_CFLAGS@ LIBPCSCLITE_LIBS = @LIBPCSCLITE_LIBS@ LIBPCSCLITE_PC = @LIBPCSCLITE_PC@ LIBPROXY_CFLAGS = @LIBPROXY_CFLAGS@ LIBPROXY_LIBS = @LIBPROXY_LIBS@ LIBPROXY_PC = @LIBPROXY_PC@ LIBPSKC_CFLAGS = @LIBPSKC_CFLAGS@ LIBPSKC_LIBS = @LIBPSKC_LIBS@ LIBPSKC_PC = @LIBPSKC_PC@ LIBS = @LIBS@ LIBSTOKEN_CFLAGS = @LIBSTOKEN_CFLAGS@ LIBSTOKEN_LIBS = @LIBSTOKEN_LIBS@ LIBSTOKEN_PC = @LIBSTOKEN_PC@ LIBTOOL = @LIBTOOL@ LIBXML2_CFLAGS = @LIBXML2_CFLAGS@ LIBXML2_LIBS = @LIBXML2_LIBS@ LINGUAS = @LINGUAS@ LIPO = @LIPO@ LN_S = @LN_S@ LTLIBICONV = @LTLIBICONV@ LTLIBOBJS = @LTLIBOBJS@ LT_SYS_LIBRARY_PATH = @LT_SYS_LIBRARY_PATH@ MAINT = @MAINT@ MAKEINFO = @MAKEINFO@ MANIFEST_TOOL = @MANIFEST_TOOL@ MKDIR_P = @MKDIR_P@ MSGFMT = @MSGFMT@ NM = @NM@ NMEDIT = @NMEDIT@ NUTTCP = @NUTTCP@ OBJDUMP = @OBJDUMP@ OBJEXT = @OBJEXT@ OCSERV_GROUP = @OCSERV_GROUP@ OCSERV_USER = @OCSERV_USER@ OPENSSL_CFLAGS = @OPENSSL_CFLAGS@ OPENSSL_LIBS = @OPENSSL_LIBS@ OTOOL = @OTOOL@ OTOOL64 = @OTOOL64@ P11KIT_CFLAGS = @P11KIT_CFLAGS@ P11KIT_LIBS = @P11KIT_LIBS@ P11KIT_PC = @P11KIT_PC@ PACKAGE = @PACKAGE@ PACKAGE_BUGREPORT = @PACKAGE_BUGREPORT@ PACKAGE_NAME = @PACKAGE_NAME@ PACKAGE_STRING = @PACKAGE_STRING@ PACKAGE_TARNAME = @PACKAGE_TARNAME@ PACKAGE_URL = @PACKAGE_URL@ PACKAGE_VERSION = @PACKAGE_VERSION@ PATH_SEPARATOR = @PATH_SEPARATOR@ PKG_CONFIG = @PKG_CONFIG@ PKG_CONFIG_LIBDIR = @PKG_CONFIG_LIBDIR@ PKG_CONFIG_PATH = @PKG_CONFIG_PATH@ PYTHON = @PYTHON@ RANLIB = @RANLIB@ SED = @SED@ SET_MAKE = @SET_MAKE@ SHELL = @SHELL@ SSL_CFLAGS = @SSL_CFLAGS@ SSL_LIBS = @SSL_LIBS@ SSL_PC = @SSL_PC@ STRIP = @STRIP@ SYMVER_ASPRINTF = @SYMVER_ASPRINTF@ SYMVER_GETLINE = @SYMVER_GETLINE@ SYMVER_JAVA = @SYMVER_JAVA@ SYMVER_TIME = @SYMVER_TIME@ SYMVER_VASPRINTF = @SYMVER_VASPRINTF@ SYMVER_WIN32_STRERROR = @SYMVER_WIN32_STRERROR@ TASN1_CFLAGS = @TASN1_CFLAGS@ TASN1_LIBS = @TASN1_LIBS@ TPM2_CFLAGS = @TPM2_CFLAGS@ TPM2_LIBS = @TPM2_LIBS@ TSS2_ESYS_CFLAGS = @TSS2_ESYS_CFLAGS@ TSS2_ESYS_LIBS = @TSS2_ESYS_LIBS@ TSS2_LIBS = @TSS2_LIBS@ TSS_CFLAGS = @TSS_CFLAGS@ TSS_LIBS = @TSS_LIBS@ VERSION = @VERSION@ VSCRIPT_LDFLAGS = @VSCRIPT_LDFLAGS@ WFLAGS = @WFLAGS@ WINDRES = @WINDRES@ ZLIB_CFLAGS = @ZLIB_CFLAGS@ ZLIB_LIBS = @ZLIB_LIBS@ ZLIB_PC = @ZLIB_PC@ _ACJNI_JAVAC = @_ACJNI_JAVAC@ abs_builddir = @abs_builddir@ abs_srcdir = @abs_srcdir@ abs_top_builddir = @abs_top_builddir@ abs_top_srcdir = @abs_top_srcdir@ ac_ct_AR = @ac_ct_AR@ ac_ct_CC = @ac_ct_CC@ ac_ct_DUMPBIN = @ac_ct_DUMPBIN@ am__include = @am__include@ am__leading_dot = @am__leading_dot@ am__quote = @am__quote@ am__tar = @am__tar@ am__untar = @am__untar@ bindir = @bindir@ build = @build@ build_alias = @build_alias@ build_cpu = @build_cpu@ build_os = @build_os@ build_vendor = @build_vendor@ builddir = @builddir@ datadir = @datadir@ datarootdir = @datarootdir@ docdir = @docdir@ dvidir = @dvidir@ exec_prefix = @exec_prefix@ host = @host@ host_alias = @host_alias@ host_cpu = @host_cpu@ host_os = @host_os@ host_vendor = @host_vendor@ htmldir = @htmldir@ includedir = @includedir@ infodir = @infodir@ install_sh = @install_sh@ libdir = @libdir@ libexecdir = @libexecdir@ localedir = @localedir@ localstatedir = @localstatedir@ mandir = @mandir@ mkdir_p = @mkdir_p@ oldincludedir = @oldincludedir@ openssl_pc_libs = @openssl_pc_libs@ pdfdir = @pdfdir@ pkgconfigdir = @pkgconfigdir@ prefix = @prefix@ program_transform_name = @program_transform_name@ psdir = @psdir@ sbindir = @sbindir@ sharedstatedir = @sharedstatedir@ srcdir = @srcdir@ sysconfdir = @sysconfdir@ system_pcsc_libs = @system_pcsc_libs@ target_alias = @target_alias@ test_pkcs11 = @test_pkcs11@ top_build_prefix = @top_build_prefix@ top_builddir = @top_builddir@ top_srcdir = @top_srcdir@ stylesdatadir = $(htmldir)/styles dist_stylesdata_DATA = main.css all: all-am .SUFFIXES: $(srcdir)/Makefile.in: @MAINTAINER_MODE_TRUE@ $(srcdir)/Makefile.am $(am__configure_deps) @for dep in $?; do \ case '$(am__configure_deps)' in \ *$$dep*) \ ( cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh ) \ && { if test -f $@; then exit 0; else break; fi; }; \ exit 1;; \ esac; \ done; \ echo ' cd $(top_srcdir) && $(AUTOMAKE) --foreign www/styles/Makefile'; \ $(am__cd) $(top_srcdir) && \ $(AUTOMAKE) --foreign www/styles/Makefile Makefile: $(srcdir)/Makefile.in $(top_builddir)/config.status @case '$?' in \ *config.status*) \ cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh;; \ *) \ echo ' cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__maybe_remake_depfiles)'; \ cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__maybe_remake_depfiles);; \ esac; $(top_builddir)/config.status: $(top_srcdir)/configure $(CONFIG_STATUS_DEPENDENCIES) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(top_srcdir)/configure: @MAINTAINER_MODE_TRUE@ $(am__configure_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(ACLOCAL_M4): @MAINTAINER_MODE_TRUE@ $(am__aclocal_m4_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(am__aclocal_m4_deps): mostlyclean-libtool: -rm -f *.lo clean-libtool: -rm -rf .libs _libs install-dist_stylesdataDATA: $(dist_stylesdata_DATA) @$(NORMAL_INSTALL) @list='$(dist_stylesdata_DATA)'; test -n "$(stylesdatadir)" || list=; \ if test -n "$$list"; then \ echo " $(MKDIR_P) '$(DESTDIR)$(stylesdatadir)'"; \ $(MKDIR_P) "$(DESTDIR)$(stylesdatadir)" || exit 1; \ fi; \ for p in $$list; do \ if test -f "$$p"; then d=; else d="$(srcdir)/"; fi; \ echo "$$d$$p"; \ done | $(am__base_list) | \ while read files; do \ echo " $(INSTALL_DATA) $$files '$(DESTDIR)$(stylesdatadir)'"; \ $(INSTALL_DATA) $$files "$(DESTDIR)$(stylesdatadir)" || exit $$?; \ done uninstall-dist_stylesdataDATA: @$(NORMAL_UNINSTALL) @list='$(dist_stylesdata_DATA)'; test -n "$(stylesdatadir)" || list=; \ files=`for p in $$list; do echo $$p; done | sed -e 's|^.*/||'`; \ dir='$(DESTDIR)$(stylesdatadir)'; $(am__uninstall_files_from_dir) tags TAGS: ctags CTAGS: cscope cscopelist: distdir: $(BUILT_SOURCES) $(MAKE) $(AM_MAKEFLAGS) distdir-am distdir-am: $(DISTFILES) @srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ topsrcdirstrip=`echo "$(top_srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ list='$(DISTFILES)'; \ dist_files=`for file in $$list; do echo $$file; done | \ sed -e "s|^$$srcdirstrip/||;t" \ -e "s|^$$topsrcdirstrip/|$(top_builddir)/|;t"`; \ case $$dist_files in \ */*) $(MKDIR_P) `echo "$$dist_files" | \ sed '/\//!d;s|^|$(distdir)/|;s,/[^/]*$$,,' | \ sort -u` ;; \ esac; \ for file in $$dist_files; do \ if test -f $$file || test -d $$file; then d=.; else d=$(srcdir); fi; \ if test -d $$d/$$file; then \ dir=`echo "/$$file" | sed -e 's,/[^/]*$$,,'`; \ if test -d "$(distdir)/$$file"; then \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ if test -d $(srcdir)/$$file && test $$d != $(srcdir); then \ cp -fpR $(srcdir)/$$file "$(distdir)$$dir" || exit 1; \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ cp -fpR $$d/$$file "$(distdir)$$dir" || exit 1; \ else \ test -f "$(distdir)/$$file" \ || cp -p $$d/$$file "$(distdir)/$$file" \ || exit 1; \ fi; \ done check-am: all-am check: check-am all-am: Makefile $(DATA) installdirs: for dir in "$(DESTDIR)$(stylesdatadir)"; do \ test -z "$$dir" || $(MKDIR_P) "$$dir"; \ done install: install-am install-exec: install-exec-am install-data: install-data-am uninstall: uninstall-am install-am: all-am @$(MAKE) $(AM_MAKEFLAGS) install-exec-am install-data-am installcheck: installcheck-am install-strip: if test -z '$(STRIP)'; then \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ install; \ else \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ "INSTALL_PROGRAM_ENV=STRIPPROG='$(STRIP)'" install; \ fi mostlyclean-generic: clean-generic: distclean-generic: -test -z "$(CONFIG_CLEAN_FILES)" || rm -f $(CONFIG_CLEAN_FILES) -test . = "$(srcdir)" || test -z "$(CONFIG_CLEAN_VPATH_FILES)" || rm -f $(CONFIG_CLEAN_VPATH_FILES) maintainer-clean-generic: @echo "This command is intended for maintainers to use" @echo "it deletes files that may require special tools to rebuild." clean: clean-am clean-am: clean-generic clean-libtool mostlyclean-am distclean: distclean-am -rm -f Makefile distclean-am: clean-am distclean-generic dvi: dvi-am dvi-am: html: html-am html-am: info: info-am info-am: install-data-am: install-dist_stylesdataDATA install-dvi: install-dvi-am install-dvi-am: install-exec-am: install-html: install-html-am install-html-am: install-info: install-info-am install-info-am: install-man: install-pdf: install-pdf-am install-pdf-am: install-ps: install-ps-am install-ps-am: installcheck-am: maintainer-clean: maintainer-clean-am -rm -f Makefile maintainer-clean-am: distclean-am maintainer-clean-generic mostlyclean: mostlyclean-am mostlyclean-am: mostlyclean-generic mostlyclean-libtool pdf: pdf-am pdf-am: ps: ps-am ps-am: uninstall-am: uninstall-dist_stylesdataDATA .MAKE: install-am install-strip .PHONY: all all-am check check-am clean clean-generic clean-libtool \ cscopelist-am ctags-am distclean distclean-generic \ distclean-libtool distdir dvi dvi-am html html-am info info-am \ install install-am install-data install-data-am \ install-dist_stylesdataDATA install-dvi install-dvi-am \ install-exec install-exec-am install-html install-html-am \ install-info install-info-am install-man install-pdf \ install-pdf-am install-ps install-ps-am install-strip \ installcheck installcheck-am installdirs maintainer-clean \ maintainer-clean-generic mostlyclean mostlyclean-generic \ mostlyclean-libtool pdf pdf-am ps ps-am tags-am uninstall \ uninstall-am uninstall-dist_stylesdataDATA .PRECIOUS: Makefile # Tell versions [3.59,3.63) of GNU make to not export all variables. # Otherwise a system limit (for SysV at least) may be exceeded. .NOEXPORT: openconnect-8.05/www/gui.xml0000664000076400007640000000237613470043037017700 0ustar00dwoodhoudwoodhou00000000000000

    GUI Tools for OpenConnect

    NetworkManager

    Support for OpenConnect in NetworkManager has been integrated into GNOME git and is released alongside NetworkManager's other VPN modules: http://ftp.gnome.org/pub/GNOME/sources/NetworkManager-openconnect/.

    OpenConnect is also supported in KDE Plasma NM as well as the older widget-based NetworkManagement applet.

    ConnMan

    ConnMan has core OpenConnect functionality as from version 0.48, and the corresponding support is also in the meego-panel-networks user interface. Other ConnMan UI front ends may lack VPN support.

    OpenConnect-gui

    OpenConnect-gui is a graphical (Windows and MacOSX) port of OpenConnect.

     openconnect-8.05/www/Makefile.am0000664000076400007640000000263413476531422020431 0ustar00dwoodhoudwoodhou00000000000000# SUBDIRS = styles inc images CONV = "$(srcdir)/html.py" FTR_PAGES = csd.html charset.html token.html pkcs11.html tpm.html features.html gui.html nonroot.html hip.html tncc.html START_PAGES = building.html connecting.html manual.html vpnc-script.html INDEX_PAGES = changelog.html download.html index.html packages.html platforms.html licence.html PROTO_PAGES = anyconnect.html juniper.html globalprotect.html pulse.html TOPLEVEL_PAGES = contribute.html mail.html ALL_PAGES = $(FTR_PAGES) $(START_PAGES) $(INDEX_PAGES) $(TOPLEVEL_PAGES) $(PROTO_PAGES) html_DATA = $(ALL_PAGES) .xml.html: $(PYTHON) $(CONV) -d $(srcdir) $< > $@ || (rm $@; exit 1) clean-local: rm -f $(ALL_PAGES) openconnect.8.inc $(ALL_PAGES): menu1.xml $(srcdir)/inc/*.tmpl $(FTR_PAGES): menu2-features.xml $(START_PAGES): menu2-started.xml $(PROTO_PAGES): menu2-protocols.xml $(MAIN_PAGES): menu2.xml manual.html: openconnect.8.inc $(top_builddir)/openconnect.8: $(top_srcdir)/openconnect.8.in $(top_builddir)/config.status cd $(top_builddir) && $(SHELL) ./config.status openconnect.8 # If this command line ever changes significantly, so should the # corresponding autoconf check. openconnect.8.inc: $(top_builddir)/openconnect.8 $(GROFF) -t -K UTF-8 -mandoc -Txhtml $? | \ sed -e 's/−/-/g' -e '1,//d' -e '/<\/body>/,$$d' > $@ EXTRA_DIST = $(patsubst %.html,%.xml,$(ALL_PAGES)) $(srcdir)/menu1.xml $(srcdir)/menu2*.xml $(srcdir)/html.py openconnect-8.05/www/hip.xml0000664000076400007640000001023713477413651017701 0ustar00dwoodhoudwoodhou00000000000000

    PAN GlobalProtect HIP

    The HIP ('Host Integrity Protection') mechanism is a security scanner for the PAN GlobalProtect VPNs, in the same vein as Cisco's CSD and Juniper's Host Checker (tncc.jar).

    How it works

    It is somewhat less intrusive than CSD or TNCC, because it does not appear to work by downloading a trojan binary from the VPN server. Instead, it runs a HIP report generator (built-in as part of the official GlobalProtect VPN client software), which generates an "HIP report" XML file.

    HIP flow used in the official clients:

    1. Client authenticates and fetches the tunnel configuration from the GlobalProtect gateway.
    2. Client runs HIP report generator and computes MD5 digest of report.
    3. Client checks whether a HIP report is required (/ssl-vpn/hipreportcheck.esp), including its MD5 digest and gateway-assigned IP address in the report.
    4. Gateway responds whether or not a HIP report is required (normally, it doesn't require a new one if a report with the same MD5 digest and same IP address have been submitted recently).
    5. Client uploads the complete HIP report to (/ssl-vpn/hipreport.esp).
    6. Server confirms acceptance of HIP report with a success message.

    If all goes well, the client should have the expected level of access to resources on the network after these steps are complete. However, two things can go wrong:

    • Many GlobalProtect servers report that they require HIP reports (#3 above), but don't actually enforce this requirement. (For this reason, OpenConnect does not currently fail if a HIP report is required but no HIP report script is provided.)
    • Many GlobalProtect servers will claim that the HIP report was accepted successfully (#6 above) but silently fail to enable the expected network access, presumably because some aspect of the HIP report contents were not approved.

    HIP support in OpenConnect

    OpenConnect supports HIP report generation and submission by passing the --csd-wrapper=SCRIPT argument with a shell script to generate a HIP report in the format expected by the server. This shell script must output the HIP report to standard output and exit successfully (status code 0). The HIP script is called with the following command-line arguments:

       --cookie: a URL-encoded string, as output by openconnect
             --authenticate --protocol=gp, which includes parameters
             --from the /ssl-vpn/login.esp response

   --client-ip{,v6}: IPv4/6 addresses allocated by the GlobalProtect
                     VPN for this client (included in
                     /ssl-vpn/getconfig.esp response)

   --md5: The md5 digest to encode into this HIP report. All that
          really matters is that the value in the HIP report
          submission should match the value in the HIP report check.

    Generating/spoofing a HIP report

    Two example scripts are included in the OpenConnect distribution, in the trojans/ subdirectory: hipreport.sh (which reproduces the behavior of a GlobalProtect Windows client) and hipreport-android.sh (a report with minimal contents suitable for use on an Android device).

    Depending on how picky your GlobalProtect VPN is, it may be necessary to spoof or alter some of the parameters of the HIP report to match the output of one of the official clients. In order to capture the contents of the official Windows client's HIP reports, enable the highest logging level for the "PanGPS Service", and then sift through the giant PanGPS.log file (which should be in the same directory as the executables, normally c:\Program Files\PaloAlto Networks\GlobalProtect) to find the HIP report submission.

     openconnect-8.05/www/pkcs11.xml0000664000076400007640000002632512741644647020234 0ustar00dwoodhoudwoodhou00000000000000

    Smart Card / PKCS#11 support

    OpenConnect supports the use of X.509 certificates and keys from smart cards (as well as software storage such as GNOME Keyring and SoftHSM) by means of the PKCS#11 standard. Objects from PKCS#11 tokens are specified by a PKCS#11 URI according to RFC 7512.

    In order to use a certificate or key with OpenConnect, you must provide a PKCS#11 URI which identifies it sufficiently. That can be as simple as the following example:

    • openconnect -c pkcs11:id=%01 vpn.example.com
    However, if you're now looking blankly at a USB crypto device and wondering what PKCS#11 URI to use, the following documentation should hopefully assist you in working it out.

    Identifying the token

    In order to use a PKCS#11 token with OpenConnect, first it must be installed appropriately in the system's p11-kit configuration. You shouldn't need to worry about this; it should automatically be the case for properly packaged software on any modern operating system.

    Typically, the smart card support is likely to be provided by OpenSC and a distribution's packaging of OpenSC should automatically have registered the OpenSC module with p11-kit by creating a file such as /usr/share/p11-kit/modules/opensc.module.

    In order to query the available PKCS#11 modules, and the certificates stored therein, the best tool to use is the p11tool distributed with GnuTLS. In Fedora it's in the gnutls-utils package.

    First identify the PKCS#11 modules which are available by using the --list-tokens option:

    • p11tool --list-tokens
    This should produce output including something like the following: 
    Token 7:
	URL: pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29 
	Label: PIV_II (PIV Card Holder pin)
	Type: Hardware token
	Manufacturer: piv_II
	Model: PKCS#15 emulated
	Serial: 108421384210c3f5

    This example shows the relatively common PIV SmartCard, in this case in a Yubikey NEO device.

    Locating the certificate

    Having established that the token is present and registered correctly with p11-kit, the next step is to identify the URI of the certificate you wish to use. You will note that the above output of p11tool --list-tokens gave a PKCS#11 URI for each token. With that, we can now query the objects available within a specific token, using the --list-all-certs option. We can cut and paste the PKCS#11 URI for the token, but be careful to put it within quotes because it contains semicolons:

    • p11tool --list-all-certs 'pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29'

    Note that the PKCS#11 URI specifies a list of attributes which must match. Some of these match criteria may be redundant — in this case we've asked it to list the certificates in a token which has a model of "PKCS#15 emulated" and a manufacturer of "piv_II" and serial number 108421384210c3f5 and token label "PIV_II (PIV Card Holder pin)". Since any one of those criteria would probably be sufficient to uniquely identify this token from the other configured tokens in our system, a simpler command line would also work. For example:

    • p11tool --list-all-certs pkcs11:manufacturer=piv_II
    The output of either such command should look something like this: 
    Object 0:
	URL: pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29;id=%01;object=Certificate%20for%20PIV%20Authentication;object-type=cert
	Type: X.509 Certificate
	Label: Certificate for PIV Authentication
	ID: 01

Object 1:
	URL: pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29;id=%02;object=Certificate%20for%20Digital%20Signature;object-type=cert
	Type: X.509 Certificate
	Label: Certificate for Digital Signature
	ID: 02

Object 2:
	URL: pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29;id=%03;object=Certificate%20for%20Key%20Management;object-type=cert
	Type: X.509 Certificate
	Label: Certificate for Key Management
	ID: 03

Object 3:
	URL: pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29;id=%04;object=Certificate%20for%20Card%20Authentication;object-type=cert
	Type: X.509 Certificate
	Label: Certificate for Card Authentication
	ID: 04

    This device has four certificates installed; the URL for each one is given in the output. (Choosing between the certificates on a given device, if there is more than one, is left as an exercise for the user. You may need to try each one.)

    Some devices may not even permit you to list the certificates without logging in. In that case add --login to the p11tool command line above, and provide the PIN when requested

    For OpenConnect 7.01 we should be able to use the URI seen here in its entirety, and the software will be cunning enough to find the corresponding key:

    • openconnect -c 'pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29;id=%01;object=Certificate%20for%20PIV%20Authentication;object-type=cert' vpn.example.com
    Older versions, however, may require a little help...

    Helping OpenConnect find the key

    If no explicit -k argument is given to specify the key, OpenConnect will use the contents of the -c argument as the basis for finding both certificate and key.

    It will sensibly add object-type=cert or object-type=private for itself, according to which object it is trying to locate each time. But in version 7.00 and earlier, it would not do that if the URI you provide already contained any object-type= element. So the first thing you need to do with older versions of OpenConnect is trim that part of the URI. So the above example might now be:

    • openconnect -c 'pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29;id=%01;object=Certificate%20for%20PIV%20Authentication' vpn.example.com

    Additionally, it can sometimes be the case that although the ID (id=) for a certificate should match the ID of its matching key, the label (object=) might not match. Newer versions of OpenConnect (7.01+), on failing to find a key, will strip the label from the search URI and add the ID of the certificate that was found (even if no ID was part of the original search terms provided with the -c option). But older versions don't.

    So it can be useful also to remove the object= part of the URI and leave only the id= attribute to specify the individual object, so that you're giving search criteria which are true for both the certificate and the key:

    • openconnect -c 'pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29;id=%01' vpn.example.com

    And while we're at it, that's still a massively redundant way of specifying which token to look in, so we can cut that down as we did before just to make it less unwieldy:

    • openconnect -c 'pkcs11:manufacturer=piv_II;id=%01' vpn.example.com

    Searching for the key manually

    If the heuristics for finding the key don't work, you can always provide an explicit PKCS#11 URI for the key with the -k option. You can look for them by using the --list-privkeys option to p11tool. You will almost certainly want to use the --login option too:

    • p11tool --list-privkeys --login pkcs11:manufacturer=piv_II
    Token 'PIV_II (PIV Card Holder pin)' with URL 'pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29' requires user PIN
Enter PIN: 
Object 0:
	URL: pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29;id=%01;object=PIV%20AUTH%20key;object-type=private
	Type: Private key
	Label: PIV AUTH key
	Flags: CKA_WRAP/UNWRAP; CKA_PRIVATE; CKA_SENSITIVE; 
	ID: 01

Object 1:
	URL: pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29;id=%02;object=SIGN%20key;object-type=private
	Type: Private key
	Label: SIGN key
	Flags: CKA_PRIVATE; CKA_SENSITIVE; 
	ID: 02

Object 2:
	URL: pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29;id=%03;object=KEY%20MAN%20key;object-type=private
	Type: Private key
	Label: KEY MAN key
	Flags: CKA_WRAP/UNWRAP; CKA_PRIVATE; CKA_SENSITIVE; 
	ID: 03

Object 3:
	URL: pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29;id=%04;object=CARD%20AUTH%20key;object-type=private
	Type: Private key
	Label: CARD AUTH key
	Flags: CKA_SENSITIVE; 
	ID: 04

    Here's the full longhand specification of both certificate and key:

    • openconnect -c 'pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29;id=%01;object=Certificate%20for%20PIV%20Authentication;object-type=cert' -k 'pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29;id=%01;object=PIV%20AUTH%20key;object-type=private' vpn.example.com
    OpenConnect doesn't care; you can use certificate and key from entirely different hardware tokens if you want to. Or one from a file. Or a key from a TPM and a certificate from a PKCS#11 hardware token. Or all kinds of bizarre combinations. But if it's a sensible combination on a sanely configured PKCS#11 token, and OpenConnect can't infer the key location from the certificate, then please send us an email and we'll try to fix it.

     openconnect-8.05/www/Makefile.in0000664000076400007640000006020213536301674020436 0ustar00dwoodhoudwoodhou00000000000000# Makefile.in generated by automake 1.16.1 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2018 Free Software Foundation, Inc. # This Makefile.in is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY, to the extent permitted by law; without # even the implied warranty of MERCHANTABILITY or FITNESS FOR A # PARTICULAR PURPOSE. @SET_MAKE@ # VPATH = @srcdir@ am__is_gnu_make = { \ if test -z '$(MAKELEVEL)'; then \ false; \ elif test -n '$(MAKE_HOST)'; then \ true; \ elif test -n '$(MAKE_VERSION)' && test -n '$(CURDIR)'; then \ true; \ else \ false; \ fi; \ } am__make_running_with_option = \ case $${target_option-} in \ ?) ;; \ *) echo "am__make_running_with_option: internal error: invalid" \ "target option '$${target_option-}' specified" >&2; \ exit 1;; \ esac; \ has_opt=no; \ sane_makeflags=$$MAKEFLAGS; \ if $(am__is_gnu_make); then \ sane_makeflags=$$MFLAGS; \ else \ case $$MAKEFLAGS in \ *\\[\ \ ]*) \ bs=\\; \ sane_makeflags=`printf '%s\n' "$$MAKEFLAGS" \ | sed "s/$$bs$$bs[$$bs $$bs ]*//g"`;; \ esac; \ fi; \ skip_next=no; \ strip_trailopt () \ { \ flg=`printf '%s\n' "$$flg" | sed "s/$$1.*$$//"`; \ }; \ for flg in $$sane_makeflags; do \ test $$skip_next = yes && { skip_next=no; continue; }; \ case $$flg in \ *=*|--*) continue;; \ -*I) strip_trailopt 'I'; skip_next=yes;; \ -*I?*) strip_trailopt 'I';; \ -*O) strip_trailopt 'O'; skip_next=yes;; \ -*O?*) strip_trailopt 'O';; \ -*l) strip_trailopt 'l'; skip_next=yes;; \ -*l?*) strip_trailopt 'l';; \ -[dEDm]) skip_next=yes;; \ -[JT]) skip_next=yes;; \ esac; \ case $$flg in \ *$$target_option*) has_opt=yes; break;; \ esac; \ done; \ test $$has_opt = yes am__make_dryrun = (target_option=n; $(am__make_running_with_option)) am__make_keepgoing = (target_option=k; $(am__make_running_with_option)) pkgdatadir = $(datadir)/@PACKAGE@ pkgincludedir = $(includedir)/@PACKAGE@ pkglibdir = $(libdir)/@PACKAGE@ pkglibexecdir = $(libexecdir)/@PACKAGE@ am__cd = CDPATH="$${ZSH_VERSION+.}$(PATH_SEPARATOR)" && cd install_sh_DATA = $(install_sh) -c -m 644 install_sh_PROGRAM = $(install_sh) -c install_sh_SCRIPT = $(install_sh) -c INSTALL_HEADER = $(INSTALL_DATA) transform = $(program_transform_name) NORMAL_INSTALL = : PRE_INSTALL = : POST_INSTALL = : NORMAL_UNINSTALL = : PRE_UNINSTALL = : POST_UNINSTALL = : build_triplet = @build@ host_triplet = @host@ subdir = www ACLOCAL_M4 = $(top_srcdir)/aclocal.m4 am__aclocal_m4_deps = $(top_srcdir)/m4/ax_check_vscript.m4 \ $(top_srcdir)/m4/iconv.m4 $(top_srcdir)/m4/lib-ld.m4 \ $(top_srcdir)/m4/lib-link.m4 $(top_srcdir)/m4/lib-prefix.m4 \ $(top_srcdir)/m4/libtool.m4 $(top_srcdir)/m4/ltoptions.m4 \ $(top_srcdir)/m4/ltsugar.m4 $(top_srcdir)/m4/ltversion.m4 \ $(top_srcdir)/m4/lt~obsolete.m4 $(top_srcdir)/acinclude.m4 \ $(top_srcdir)/configure.ac am__configure_deps = $(am__aclocal_m4_deps) $(CONFIGURE_DEPENDENCIES) \ $(ACLOCAL_M4) DIST_COMMON = $(srcdir)/Makefile.am $(am__DIST_COMMON) mkinstalldirs = $(install_sh) -d CONFIG_HEADER = $(top_builddir)/config.h CONFIG_CLEAN_FILES = CONFIG_CLEAN_VPATH_FILES = AM_V_P = $(am__v_P_@AM_V@) am__v_P_ = $(am__v_P_@AM_DEFAULT_V@) am__v_P_0 = false am__v_P_1 = : AM_V_GEN = $(am__v_GEN_@AM_V@) am__v_GEN_ = $(am__v_GEN_@AM_DEFAULT_V@) am__v_GEN_0 = @echo " GEN " $@; am__v_GEN_1 = AM_V_at = $(am__v_at_@AM_V@) am__v_at_ = $(am__v_at_@AM_DEFAULT_V@) am__v_at_0 = @ am__v_at_1 = SOURCES = DIST_SOURCES = RECURSIVE_TARGETS = all-recursive check-recursive cscopelist-recursive \ ctags-recursive dvi-recursive html-recursive info-recursive \ install-data-recursive install-dvi-recursive \ install-exec-recursive install-html-recursive \ install-info-recursive install-pdf-recursive \ install-ps-recursive install-recursive installcheck-recursive \ installdirs-recursive pdf-recursive ps-recursive \ tags-recursive uninstall-recursive am__can_run_installinfo = \ case $$AM_UPDATE_INFO_DIR in \ n|no|NO) false;; \ *) (install-info --version) >/dev/null 2>&1;; \ esac am__vpath_adj_setup = srcdirstrip=`echo "$(srcdir)" | sed 's|.|.|g'`; am__vpath_adj = case $$p in \ $(srcdir)/*) f=`echo "$$p" | sed "s|^$$srcdirstrip/||"`;; \ *) f=$$p;; \ esac; am__strip_dir = f=`echo $$p | sed -e 's|^.*/||'`; am__install_max = 40 am__nobase_strip_setup = \ srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*|]/\\\\&/g'` am__nobase_strip = \ for p in $$list; do echo "$$p"; done | sed -e "s|$$srcdirstrip/||" am__nobase_list = $(am__nobase_strip_setup); \ for p in $$list; do echo "$$p $$p"; done | \ sed "s| $$srcdirstrip/| |;"' / .*\//!s/ .*/ ./; s,\( .*\)/[^/]*$$,\1,' | \ $(AWK) 'BEGIN { files["."] = "" } { files[$$2] = files[$$2] " " $$1; \ if (++n[$$2] == $(am__install_max)) \ { print $$2, files[$$2]; n[$$2] = 0; files[$$2] = "" } } \ END { for (dir in files) print dir, files[dir] }' am__base_list = \ sed '$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;s/\n/ /g' | \ sed '$$!N;$$!N;$$!N;$$!N;s/\n/ /g' am__uninstall_files_from_dir = { \ test -z "$$files" \ || { test ! -d "$$dir" && test ! -f "$$dir" && test ! -r "$$dir"; } \ || { echo " ( cd '$$dir' && rm -f" $$files ")"; \ $(am__cd) "$$dir" && rm -f $$files; }; \ } am__installdirs = "$(DESTDIR)$(htmldir)" DATA = $(html_DATA) RECURSIVE_CLEAN_TARGETS = mostlyclean-recursive clean-recursive \ distclean-recursive maintainer-clean-recursive am__recursive_targets = \ $(RECURSIVE_TARGETS) \ $(RECURSIVE_CLEAN_TARGETS) \ $(am__extra_recursive_targets) AM_RECURSIVE_TARGETS = $(am__recursive_targets:-recursive=) TAGS CTAGS \ distdir distdir-am am__tagged_files = $(HEADERS) $(SOURCES) $(TAGS_FILES) $(LISP) # Read a list of newline-separated strings from the standard input, # and print each of them once, without duplicates. Input order is # *not* preserved. am__uniquify_input = $(AWK) '\ BEGIN { nonempty = 0; } \ { items[$$0] = 1; nonempty = 1; } \ END { if (nonempty) { for (i in items) print i; }; } \ ' # Make sure the list of sources is unique. This is necessary because, # e.g., the same source file might be shared among _SOURCES variables # for different programs/libraries. am__define_uniq_tagged_files = \ list='$(am__tagged_files)'; \ unique=`for i in $$list; do \ if test -f "$$i"; then echo $$i; else echo $(srcdir)/$$i; fi; \ done | $(am__uniquify_input)` ETAGS = etags CTAGS = ctags DIST_SUBDIRS = $(SUBDIRS) am__DIST_COMMON = $(srcdir)/Makefile.in DISTFILES = $(DIST_COMMON) $(DIST_SOURCES) $(TEXINFOS) $(EXTRA_DIST) am__relativize = \ dir0=`pwd`; \ sed_first='s,^\([^/]*\)/.*$$,\1,'; \ sed_rest='s,^[^/]*/*,,'; \ sed_last='s,^.*/\([^/]*\)$$,\1,'; \ sed_butlast='s,/*[^/]*$$,,'; \ while test -n "$$dir1"; do \ first=`echo "$$dir1" | sed -e "$$sed_first"`; \ if test "$$first" != "."; then \ if test "$$first" = ".."; then \ dir2=`echo "$$dir0" | sed -e "$$sed_last"`/"$$dir2"; \ dir0=`echo "$$dir0" | sed -e "$$sed_butlast"`; \ else \ first2=`echo "$$dir2" | sed -e "$$sed_first"`; \ if test "$$first2" = "$$first"; then \ dir2=`echo "$$dir2" | sed -e "$$sed_rest"`; \ else \ dir2="../$$dir2"; \ fi; \ dir0="$$dir0"/"$$first"; \ fi; \ fi; \ dir1=`echo "$$dir1" | sed -e "$$sed_rest"`; \ done; \ reldir="$$dir2" ACLOCAL = @ACLOCAL@ AMTAR = @AMTAR@ AM_DEFAULT_VERBOSITY = @AM_DEFAULT_VERBOSITY@ APIMAJOR = @APIMAJOR@ APIMINOR = @APIMINOR@ AR = @AR@ AUTOCONF = @AUTOCONF@ AUTOHEADER = @AUTOHEADER@ AUTOMAKE = @AUTOMAKE@ AWK = @AWK@ CC = @CC@ CCDEPMODE = @CCDEPMODE@ CFLAGS = @CFLAGS@ CONFIG_STATUS_DEPENDENCIES = @CONFIG_STATUS_DEPENDENCIES@ CPP = @CPP@ CPPFLAGS = @CPPFLAGS@ CWRAP_CFLAGS = @CWRAP_CFLAGS@ CWRAP_LIBS = @CWRAP_LIBS@ CYGPATH_W = @CYGPATH_W@ DEFAULT_VPNCSCRIPT = @DEFAULT_VPNCSCRIPT@ DEFS = @DEFS@ DEPDIR = @DEPDIR@ DLLTOOL = @DLLTOOL@ DSYMUTIL = @DSYMUTIL@ DUMPBIN = @DUMPBIN@ ECHO_C = @ECHO_C@ ECHO_N = @ECHO_N@ ECHO_T = @ECHO_T@ EGREP = @EGREP@ EXEEXT = @EXEEXT@ FGREP = @FGREP@ GITVERSIONDEPS = @GITVERSIONDEPS@ GNUTLS_CFLAGS = @GNUTLS_CFLAGS@ GNUTLS_LIBS = @GNUTLS_LIBS@ GREP = @GREP@ GROFF = @GROFF@ GSSAPI_CFLAGS = @GSSAPI_CFLAGS@ GSSAPI_LIBS = @GSSAPI_LIBS@ ICONV_CFLAGS = @ICONV_CFLAGS@ ICONV_LIBS = @ICONV_LIBS@ INSTALL = @INSTALL@ INSTALL_DATA = @INSTALL_DATA@ INSTALL_PROGRAM = @INSTALL_PROGRAM@ INSTALL_SCRIPT = @INSTALL_SCRIPT@ INSTALL_STRIP_PROGRAM = @INSTALL_STRIP_PROGRAM@ INTL_CFLAGS = @INTL_CFLAGS@ INTL_LIBS = @INTL_LIBS@ IP = @IP@ JNI_CFLAGS = @JNI_CFLAGS@ KRB5_CONFIG = @KRB5_CONFIG@ LD = @LD@ LDFLAGS = @LDFLAGS@ LIBICONV = @LIBICONV@ LIBLZ4_CFLAGS = @LIBLZ4_CFLAGS@ LIBLZ4_LIBS = @LIBLZ4_LIBS@ LIBLZ4_PC = @LIBLZ4_PC@ LIBOBJS = @LIBOBJS@ LIBP11_CFLAGS = @LIBP11_CFLAGS@ LIBP11_LIBS = @LIBP11_LIBS@ LIBPCSCLITE_CFLAGS = @LIBPCSCLITE_CFLAGS@ LIBPCSCLITE_LIBS = @LIBPCSCLITE_LIBS@ LIBPCSCLITE_PC = @LIBPCSCLITE_PC@ LIBPROXY_CFLAGS = @LIBPROXY_CFLAGS@ LIBPROXY_LIBS = @LIBPROXY_LIBS@ LIBPROXY_PC = @LIBPROXY_PC@ LIBPSKC_CFLAGS = @LIBPSKC_CFLAGS@ LIBPSKC_LIBS = @LIBPSKC_LIBS@ LIBPSKC_PC = @LIBPSKC_PC@ LIBS = @LIBS@ LIBSTOKEN_CFLAGS = @LIBSTOKEN_CFLAGS@ LIBSTOKEN_LIBS = @LIBSTOKEN_LIBS@ LIBSTOKEN_PC = @LIBSTOKEN_PC@ LIBTOOL = @LIBTOOL@ LIBXML2_CFLAGS = @LIBXML2_CFLAGS@ LIBXML2_LIBS = @LIBXML2_LIBS@ LINGUAS = @LINGUAS@ LIPO = @LIPO@ LN_S = @LN_S@ LTLIBICONV = @LTLIBICONV@ LTLIBOBJS = @LTLIBOBJS@ LT_SYS_LIBRARY_PATH = @LT_SYS_LIBRARY_PATH@ MAINT = @MAINT@ MAKEINFO = @MAKEINFO@ MANIFEST_TOOL = @MANIFEST_TOOL@ MKDIR_P = @MKDIR_P@ MSGFMT = @MSGFMT@ NM = @NM@ NMEDIT = @NMEDIT@ NUTTCP = @NUTTCP@ OBJDUMP = @OBJDUMP@ OBJEXT = @OBJEXT@ OCSERV_GROUP = @OCSERV_GROUP@ OCSERV_USER = @OCSERV_USER@ OPENSSL_CFLAGS = @OPENSSL_CFLAGS@ OPENSSL_LIBS = @OPENSSL_LIBS@ OTOOL = @OTOOL@ OTOOL64 = @OTOOL64@ P11KIT_CFLAGS = @P11KIT_CFLAGS@ P11KIT_LIBS = @P11KIT_LIBS@ P11KIT_PC = @P11KIT_PC@ PACKAGE = @PACKAGE@ PACKAGE_BUGREPORT = @PACKAGE_BUGREPORT@ PACKAGE_NAME = @PACKAGE_NAME@ PACKAGE_STRING = @PACKAGE_STRING@ PACKAGE_TARNAME = @PACKAGE_TARNAME@ PACKAGE_URL = @PACKAGE_URL@ PACKAGE_VERSION = @PACKAGE_VERSION@ PATH_SEPARATOR = @PATH_SEPARATOR@ PKG_CONFIG = @PKG_CONFIG@ PKG_CONFIG_LIBDIR = @PKG_CONFIG_LIBDIR@ PKG_CONFIG_PATH = @PKG_CONFIG_PATH@ PYTHON = @PYTHON@ RANLIB = @RANLIB@ SED = @SED@ SET_MAKE = @SET_MAKE@ SHELL = @SHELL@ SSL_CFLAGS = @SSL_CFLAGS@ SSL_LIBS = @SSL_LIBS@ SSL_PC = @SSL_PC@ STRIP = @STRIP@ SYMVER_ASPRINTF = @SYMVER_ASPRINTF@ SYMVER_GETLINE = @SYMVER_GETLINE@ SYMVER_JAVA = @SYMVER_JAVA@ SYMVER_TIME = @SYMVER_TIME@ SYMVER_VASPRINTF = @SYMVER_VASPRINTF@ SYMVER_WIN32_STRERROR = @SYMVER_WIN32_STRERROR@ TASN1_CFLAGS = @TASN1_CFLAGS@ TASN1_LIBS = @TASN1_LIBS@ TPM2_CFLAGS = @TPM2_CFLAGS@ TPM2_LIBS = @TPM2_LIBS@ TSS2_ESYS_CFLAGS = @TSS2_ESYS_CFLAGS@ TSS2_ESYS_LIBS = @TSS2_ESYS_LIBS@ TSS2_LIBS = @TSS2_LIBS@ TSS_CFLAGS = @TSS_CFLAGS@ TSS_LIBS = @TSS_LIBS@ VERSION = @VERSION@ VSCRIPT_LDFLAGS = @VSCRIPT_LDFLAGS@ WFLAGS = @WFLAGS@ WINDRES = @WINDRES@ ZLIB_CFLAGS = @ZLIB_CFLAGS@ ZLIB_LIBS = @ZLIB_LIBS@ ZLIB_PC = @ZLIB_PC@ _ACJNI_JAVAC = @_ACJNI_JAVAC@ abs_builddir = @abs_builddir@ abs_srcdir = @abs_srcdir@ abs_top_builddir = @abs_top_builddir@ abs_top_srcdir = @abs_top_srcdir@ ac_ct_AR = @ac_ct_AR@ ac_ct_CC = @ac_ct_CC@ ac_ct_DUMPBIN = @ac_ct_DUMPBIN@ am__include = @am__include@ am__leading_dot = @am__leading_dot@ am__quote = @am__quote@ am__tar = @am__tar@ am__untar = @am__untar@ bindir = @bindir@ build = @build@ build_alias = @build_alias@ build_cpu = @build_cpu@ build_os = @build_os@ build_vendor = @build_vendor@ builddir = @builddir@ datadir = @datadir@ datarootdir = @datarootdir@ docdir = @docdir@ dvidir = @dvidir@ exec_prefix = @exec_prefix@ host = @host@ host_alias = @host_alias@ host_cpu = @host_cpu@ host_os = @host_os@ host_vendor = @host_vendor@ htmldir = @htmldir@ includedir = @includedir@ infodir = @infodir@ install_sh = @install_sh@ libdir = @libdir@ libexecdir = @libexecdir@ localedir = @localedir@ localstatedir = @localstatedir@ mandir = @mandir@ mkdir_p = @mkdir_p@ oldincludedir = @oldincludedir@ openssl_pc_libs = @openssl_pc_libs@ pdfdir = @pdfdir@ pkgconfigdir = @pkgconfigdir@ prefix = @prefix@ program_transform_name = @program_transform_name@ psdir = @psdir@ sbindir = @sbindir@ sharedstatedir = @sharedstatedir@ srcdir = @srcdir@ sysconfdir = @sysconfdir@ system_pcsc_libs = @system_pcsc_libs@ target_alias = @target_alias@ test_pkcs11 = @test_pkcs11@ top_build_prefix = @top_build_prefix@ top_builddir = @top_builddir@ top_srcdir = @top_srcdir@ SUBDIRS = styles inc images CONV = "$(srcdir)/html.py" FTR_PAGES = csd.html charset.html token.html pkcs11.html tpm.html features.html gui.html nonroot.html hip.html tncc.html START_PAGES = building.html connecting.html manual.html vpnc-script.html INDEX_PAGES = changelog.html download.html index.html packages.html platforms.html licence.html PROTO_PAGES = anyconnect.html juniper.html globalprotect.html pulse.html TOPLEVEL_PAGES = contribute.html mail.html ALL_PAGES = $(FTR_PAGES) $(START_PAGES) $(INDEX_PAGES) $(TOPLEVEL_PAGES) $(PROTO_PAGES) html_DATA = $(ALL_PAGES) EXTRA_DIST = $(patsubst %.html,%.xml,$(ALL_PAGES)) $(srcdir)/menu1.xml $(srcdir)/menu2*.xml $(srcdir)/html.py all: all-recursive .SUFFIXES: .SUFFIXES: .html .xml $(srcdir)/Makefile.in: @MAINTAINER_MODE_TRUE@ $(srcdir)/Makefile.am $(am__configure_deps) @for dep in $?; do \ case '$(am__configure_deps)' in \ *$$dep*) \ ( cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh ) \ && { if test -f $@; then exit 0; else break; fi; }; \ exit 1;; \ esac; \ done; \ echo ' cd $(top_srcdir) && $(AUTOMAKE) --foreign www/Makefile'; \ $(am__cd) $(top_srcdir) && \ $(AUTOMAKE) --foreign www/Makefile Makefile: $(srcdir)/Makefile.in $(top_builddir)/config.status @case '$?' in \ *config.status*) \ cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh;; \ *) \ echo ' cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__maybe_remake_depfiles)'; \ cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__maybe_remake_depfiles);; \ esac; $(top_builddir)/config.status: $(top_srcdir)/configure $(CONFIG_STATUS_DEPENDENCIES) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(top_srcdir)/configure: @MAINTAINER_MODE_TRUE@ $(am__configure_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(ACLOCAL_M4): @MAINTAINER_MODE_TRUE@ $(am__aclocal_m4_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(am__aclocal_m4_deps): mostlyclean-libtool: -rm -f *.lo clean-libtool: -rm -rf .libs _libs install-htmlDATA: $(html_DATA) @$(NORMAL_INSTALL) @list='$(html_DATA)'; test -n "$(htmldir)" || list=; \ if test -n "$$list"; then \ echo " $(MKDIR_P) '$(DESTDIR)$(htmldir)'"; \ $(MKDIR_P) "$(DESTDIR)$(htmldir)" || exit 1; \ fi; \ for p in $$list; do \ if test -f "$$p"; then d=; else d="$(srcdir)/"; fi; \ echo "$$d$$p"; \ done | $(am__base_list) | \ while read files; do \ echo " $(INSTALL_DATA) $$files '$(DESTDIR)$(htmldir)'"; \ $(INSTALL_DATA) $$files "$(DESTDIR)$(htmldir)" || exit $$?; \ done uninstall-htmlDATA: @$(NORMAL_UNINSTALL) @list='$(html_DATA)'; test -n "$(htmldir)" || list=; \ files=`for p in $$list; do echo $$p; done | sed -e 's|^.*/||'`; \ dir='$(DESTDIR)$(htmldir)'; $(am__uninstall_files_from_dir) # This directory's subdirectories are mostly independent; you can cd # into them and run 'make' without going through this Makefile. # To change the values of 'make' variables: instead of editing Makefiles, # (1) if the variable is set in 'config.status', edit 'config.status' # (which will cause the Makefiles to be regenerated when you run 'make'); # (2) otherwise, pass the desired values on the 'make' command line. $(am__recursive_targets): @fail=; \ if $(am__make_keepgoing); then \ failcom='fail=yes'; \ else \ failcom='exit 1'; \ fi; \ dot_seen=no; \ target=`echo $@ | sed s/-recursive//`; \ case "$@" in \ distclean-* | maintainer-clean-*) list='$(DIST_SUBDIRS)' ;; \ *) list='$(SUBDIRS)' ;; \ esac; \ for subdir in $$list; do \ echo "Making $$target in $$subdir"; \ if test "$$subdir" = "."; then \ dot_seen=yes; \ local_target="$$target-am"; \ else \ local_target="$$target"; \ fi; \ ($(am__cd) $$subdir && $(MAKE) $(AM_MAKEFLAGS) $$local_target) \ || eval $$failcom; \ done; \ if test "$$dot_seen" = "no"; then \ $(MAKE) $(AM_MAKEFLAGS) "$$target-am" || exit 1; \ fi; test -z "$$fail" ID: $(am__tagged_files) $(am__define_uniq_tagged_files); mkid -fID $$unique tags: tags-recursive TAGS: tags tags-am: $(TAGS_DEPENDENCIES) $(am__tagged_files) set x; \ here=`pwd`; \ if ($(ETAGS) --etags-include --version) >/dev/null 2>&1; then \ include_option=--etags-include; \ empty_fix=.; \ else \ include_option=--include; \ empty_fix=; \ fi; \ list='$(SUBDIRS)'; for subdir in $$list; do \ if test "$$subdir" = .; then :; else \ test ! -f $$subdir/TAGS || \ set "$$@" "$$include_option=$$here/$$subdir/TAGS"; \ fi; \ done; \ $(am__define_uniq_tagged_files); \ shift; \ if test -z "$(ETAGS_ARGS)$$*$$unique"; then :; else \ test -n "$$unique" || unique=$$empty_fix; \ if test $$# -gt 0; then \ $(ETAGS) $(ETAGSFLAGS) $(AM_ETAGSFLAGS) $(ETAGS_ARGS) \ "$$@" $$unique; \ else \ $(ETAGS) $(ETAGSFLAGS) $(AM_ETAGSFLAGS) $(ETAGS_ARGS) \ $$unique; \ fi; \ fi ctags: ctags-recursive CTAGS: ctags ctags-am: $(TAGS_DEPENDENCIES) $(am__tagged_files) $(am__define_uniq_tagged_files); \ test -z "$(CTAGS_ARGS)$$unique" \ || $(CTAGS) $(CTAGSFLAGS) $(AM_CTAGSFLAGS) $(CTAGS_ARGS) \ $$unique GTAGS: here=`$(am__cd) $(top_builddir) && pwd` \ && $(am__cd) $(top_srcdir) \ && gtags -i $(GTAGS_ARGS) "$$here" cscopelist: cscopelist-recursive cscopelist-am: $(am__tagged_files) list='$(am__tagged_files)'; \ case "$(srcdir)" in \ [\\/]* | ?:[\\/]*) sdir="$(srcdir)" ;; \ *) sdir=$(subdir)/$(srcdir) ;; \ esac; \ for i in $$list; do \ if test -f "$$i"; then \ echo "$(subdir)/$$i"; \ else \ echo "$$sdir/$$i"; \ fi; \ done >> $(top_builddir)/cscope.files distclean-tags: -rm -f TAGS ID GTAGS GRTAGS GSYMS GPATH tags distdir: $(BUILT_SOURCES) $(MAKE) $(AM_MAKEFLAGS) distdir-am distdir-am: $(DISTFILES) @srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ topsrcdirstrip=`echo "$(top_srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ list='$(DISTFILES)'; \ dist_files=`for file in $$list; do echo $$file; done | \ sed -e "s|^$$srcdirstrip/||;t" \ -e "s|^$$topsrcdirstrip/|$(top_builddir)/|;t"`; \ case $$dist_files in \ */*) $(MKDIR_P) `echo "$$dist_files" | \ sed '/\//!d;s|^|$(distdir)/|;s,/[^/]*$$,,' | \ sort -u` ;; \ esac; \ for file in $$dist_files; do \ if test -f $$file || test -d $$file; then d=.; else d=$(srcdir); fi; \ if test -d $$d/$$file; then \ dir=`echo "/$$file" | sed -e 's,/[^/]*$$,,'`; \ if test -d "$(distdir)/$$file"; then \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ if test -d $(srcdir)/$$file && test $$d != $(srcdir); then \ cp -fpR $(srcdir)/$$file "$(distdir)$$dir" || exit 1; \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ cp -fpR $$d/$$file "$(distdir)$$dir" || exit 1; \ else \ test -f "$(distdir)/$$file" \ || cp -p $$d/$$file "$(distdir)/$$file" \ || exit 1; \ fi; \ done @list='$(DIST_SUBDIRS)'; for subdir in $$list; do \ if test "$$subdir" = .; then :; else \ $(am__make_dryrun) \ || test -d "$(distdir)/$$subdir" \ || $(MKDIR_P) "$(distdir)/$$subdir" \ || exit 1; \ dir1=$$subdir; dir2="$(distdir)/$$subdir"; \ $(am__relativize); \ new_distdir=$$reldir; \ dir1=$$subdir; dir2="$(top_distdir)"; \ $(am__relativize); \ new_top_distdir=$$reldir; \ echo " (cd $$subdir && $(MAKE) $(AM_MAKEFLAGS) top_distdir="$$new_top_distdir" distdir="$$new_distdir" \\"; \ echo " am__remove_distdir=: am__skip_length_check=: am__skip_mode_fix=: distdir)"; \ ($(am__cd) $$subdir && \ $(MAKE) $(AM_MAKEFLAGS) \ top_distdir="$$new_top_distdir" \ distdir="$$new_distdir" \ am__remove_distdir=: \ am__skip_length_check=: \ am__skip_mode_fix=: \ distdir) \ || exit 1; \ fi; \ done check-am: all-am check: check-recursive all-am: Makefile $(DATA) installdirs: installdirs-recursive installdirs-am: for dir in "$(DESTDIR)$(htmldir)"; do \ test -z "$$dir" || $(MKDIR_P) "$$dir"; \ done install: install-recursive install-exec: install-exec-recursive install-data: install-data-recursive uninstall: uninstall-recursive install-am: all-am @$(MAKE) $(AM_MAKEFLAGS) install-exec-am install-data-am installcheck: installcheck-recursive install-strip: if test -z '$(STRIP)'; then \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ install; \ else \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ "INSTALL_PROGRAM_ENV=STRIPPROG='$(STRIP)'" install; \ fi mostlyclean-generic: clean-generic: distclean-generic: -test -z "$(CONFIG_CLEAN_FILES)" || rm -f $(CONFIG_CLEAN_FILES) -test . = "$(srcdir)" || test -z "$(CONFIG_CLEAN_VPATH_FILES)" || rm -f $(CONFIG_CLEAN_VPATH_FILES) maintainer-clean-generic: @echo "This command is intended for maintainers to use" @echo "it deletes files that may require special tools to rebuild." clean: clean-recursive clean-am: clean-generic clean-libtool clean-local mostlyclean-am distclean: distclean-recursive -rm -f Makefile distclean-am: clean-am distclean-generic distclean-tags dvi: dvi-recursive dvi-am: html: html-recursive html-am: info: info-recursive info-am: install-data-am: install-htmlDATA install-dvi: install-dvi-recursive install-dvi-am: install-exec-am: install-html: install-html-recursive install-html-am: install-info: install-info-recursive install-info-am: install-man: install-pdf: install-pdf-recursive install-pdf-am: install-ps: install-ps-recursive install-ps-am: installcheck-am: maintainer-clean: maintainer-clean-recursive -rm -f Makefile maintainer-clean-am: distclean-am maintainer-clean-generic mostlyclean: mostlyclean-recursive mostlyclean-am: mostlyclean-generic mostlyclean-libtool pdf: pdf-recursive pdf-am: ps: ps-recursive ps-am: uninstall-am: uninstall-htmlDATA .MAKE: $(am__recursive_targets) install-am install-strip .PHONY: $(am__recursive_targets) CTAGS GTAGS TAGS all all-am check \ check-am clean clean-generic clean-libtool clean-local \ cscopelist-am ctags ctags-am distclean distclean-generic \ distclean-libtool distclean-tags distdir dvi dvi-am html \ html-am info info-am install install-am install-data \ install-data-am install-dvi install-dvi-am install-exec \ install-exec-am install-html install-html-am install-htmlDATA \ install-info install-info-am install-man install-pdf \ install-pdf-am install-ps install-ps-am install-strip \ installcheck installcheck-am installdirs installdirs-am \ maintainer-clean maintainer-clean-generic mostlyclean \ mostlyclean-generic mostlyclean-libtool pdf pdf-am ps ps-am \ tags tags-am uninstall uninstall-am uninstall-htmlDATA .PRECIOUS: Makefile .xml.html: $(PYTHON) $(CONV) -d $(srcdir) $< > $@ || (rm $@; exit 1) clean-local: rm -f $(ALL_PAGES) openconnect.8.inc $(ALL_PAGES): menu1.xml $(srcdir)/inc/*.tmpl $(FTR_PAGES): menu2-features.xml $(START_PAGES): menu2-started.xml $(PROTO_PAGES): menu2-protocols.xml $(MAIN_PAGES): menu2.xml manual.html: openconnect.8.inc $(top_builddir)/openconnect.8: $(top_srcdir)/openconnect.8.in $(top_builddir)/config.status cd $(top_builddir) && $(SHELL) ./config.status openconnect.8 # If this command line ever changes significantly, so should the # corresponding autoconf check. openconnect.8.inc: $(top_builddir)/openconnect.8 $(GROFF) -t -K UTF-8 -mandoc -Txhtml $? | \ sed -e 's/−/-/g' -e '1,//d' -e '/<\/body>/,$$d' > $@ # Tell versions [3.59,3.63) of GNU make to not export all variables. # Otherwise a system limit (for SysV at least) may be exceeded. .NOEXPORT: openconnect-8.05/www/mail.xml0000664000076400007640000000740413425024516020034 0ustar00dwoodhoudwoodhou00000000000000

    Getting help

    If you have problems building or using OpenConnect, or other questions or comments, please send email to the mailing list described below. You don't need to be subscribed to the list; you only need to click on the email address below, and send a plain text (not HTML) mail.

    A lot of people seem to post questions about OpenConnect on random web forums, where they are unlikely to get a quick or knowledgeable response. It's almost as if they don't want a coherent response, which is strange. Please, don't do that.

    GitLab

    As an experiment we have created an OpenConnect project on GitLab.

    You can file issues there, which may be slightly more effective than sending them in email. You can also submit merge requests.

    Mailing list

    There is a mailing list at openconnect-devel@lists.infradead.org. The list does not accept HTML email, so please make sure you post as plain text only.

    As mentioned above, you do not have to be subscribed to the list in order to post a question.

    It's usually best to read the recent messages in the archive before posting a question that is likely to have been asked before.

    If you do want to subscribe to the mailing list, you can do so from the Mailman admin page.

    SECURITY WARNING:
    If you are posting debugging output from openconnect to the mailing list, do not include a line which looks like this:
    Set-Cookie: webvpn=835278264@921600@1221512527@6B9EC24DEB2F59E242F75B424D42F223D0912984;PATH=/
    That HTTP cookie is all that's needed to grant access to the VPN session you just logged in to — it's almost as bad as giving your password away. Version 2.26 or later of OpenConnect will automatically filter this out of the debugging output for you.

    For Juniper VPN, the equivalent is a DSID cookie, which is not yet filtered out of any output (the authentication support in Juniper is still very new). For PAN GlobalConnect, the equivalent is a URL-encoded authcookie parameter, which is also not filtered out of any output.

    Internet Relay Chat (IRC)

    There is also an IRC channel #openconnect on the OFTC network. You can access it via the OFTC webchat if you don't have an IRC client.

    Please note that the people who can help you may be busy, and may be in a different time zone to you, and often indeed in a different time zone from one day to the next. If nobody is answering you immediately, please be patient — state your problem or question concisely and completely, and remain on the channel. You may well find that by the time you look back again, even if it's the next day, you have an answer or a fix has been made.

    If you simply look in, say "hello?" a few times in the middle of the night, and then disappear again, that's not a lot more useful than posting to a randomly-chosen web forum as discussed above.

     openconnect-8.05/www/images/0000775000076400007640000000000013536301731017630 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/www/images/openconnect.svg0000664000076400007640000044413112727726520022703 0ustar00dwoodhoudwoodhou00000000000000 image/svg+xml OpenConnect openconnect-8.05/www/images/right.png0000664000076400007640000000022612727726520021463 0ustar00dwoodhoudwoodhou00000000000000PNG  IHDR PX pHYs  tIME "#5IDATcܼy3 $&~f@LȜy) WOYvi tC @7ai IENDB`openconnect-8.05/www/images/left.png0000664000076400007640000000022312727726520021275 0ustar00dwoodhoudwoodhou00000000000000PNG  IHDR 2Ͻ pHYs  tIME F& 2IDATcY ?BH 0E!>EpaXW!1f" AgkIENDB`openconnect-8.05/www/images/left2.png0000664000076400007640000000022312727726520021357 0ustar00dwoodhoudwoodhou00000000000000PNG  IHDR 2Ͻ pHYs  tIME 7s2IDATc|,ٳ(|B `E( )+$j 14-$1wFIENDB`openconnect-8.05/www/images/rightsel.png0000664000076400007640000000022412727726520022165 0ustar00dwoodhoudwoodhou00000000000000PNG  IHDR \'. PLTEcw, pHYs  tIME "IDATcXjU x 89IENDB`openconnect-8.05/www/images/Makefile.am0000664000076400007640000000012212727726520021667 0ustar00dwoodhoudwoodhou00000000000000imagesdir = $(htmldir)/images dist_images_DATA = $(srcdir)/*.png $(srcdir)/*.svg openconnect-8.05/www/images/Makefile.in0000664000076400007640000004123213536301674021705 0ustar00dwoodhoudwoodhou00000000000000# Makefile.in generated by automake 1.16.1 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2018 Free Software Foundation, Inc. # This Makefile.in is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY, to the extent permitted by law; without # even the implied warranty of MERCHANTABILITY or FITNESS FOR A # PARTICULAR PURPOSE. @SET_MAKE@ VPATH = @srcdir@ am__is_gnu_make = { \ if test -z '$(MAKELEVEL)'; then \ false; \ elif test -n '$(MAKE_HOST)'; then \ true; \ elif test -n '$(MAKE_VERSION)' && test -n '$(CURDIR)'; then \ true; \ else \ false; \ fi; \ } am__make_running_with_option = \ case $${target_option-} in \ ?) ;; \ *) echo "am__make_running_with_option: internal error: invalid" \ "target option '$${target_option-}' specified" >&2; \ exit 1;; \ esac; \ has_opt=no; \ sane_makeflags=$$MAKEFLAGS; \ if $(am__is_gnu_make); then \ sane_makeflags=$$MFLAGS; \ else \ case $$MAKEFLAGS in \ *\\[\ \ ]*) \ bs=\\; \ sane_makeflags=`printf '%s\n' "$$MAKEFLAGS" \ | sed "s/$$bs$$bs[$$bs $$bs ]*//g"`;; \ esac; \ fi; \ skip_next=no; \ strip_trailopt () \ { \ flg=`printf '%s\n' "$$flg" | sed "s/$$1.*$$//"`; \ }; \ for flg in $$sane_makeflags; do \ test $$skip_next = yes && { skip_next=no; continue; }; \ case $$flg in \ *=*|--*) continue;; \ -*I) strip_trailopt 'I'; skip_next=yes;; \ -*I?*) strip_trailopt 'I';; \ -*O) strip_trailopt 'O'; skip_next=yes;; \ -*O?*) strip_trailopt 'O';; \ -*l) strip_trailopt 'l'; skip_next=yes;; \ -*l?*) strip_trailopt 'l';; \ -[dEDm]) skip_next=yes;; \ -[JT]) skip_next=yes;; \ esac; \ case $$flg in \ *$$target_option*) has_opt=yes; break;; \ esac; \ done; \ test $$has_opt = yes am__make_dryrun = (target_option=n; $(am__make_running_with_option)) am__make_keepgoing = (target_option=k; $(am__make_running_with_option)) pkgdatadir = $(datadir)/@PACKAGE@ pkgincludedir = $(includedir)/@PACKAGE@ pkglibdir = $(libdir)/@PACKAGE@ pkglibexecdir = $(libexecdir)/@PACKAGE@ am__cd = CDPATH="$${ZSH_VERSION+.}$(PATH_SEPARATOR)" && cd install_sh_DATA = $(install_sh) -c -m 644 install_sh_PROGRAM = $(install_sh) -c install_sh_SCRIPT = $(install_sh) -c INSTALL_HEADER = $(INSTALL_DATA) transform = $(program_transform_name) NORMAL_INSTALL = : PRE_INSTALL = : POST_INSTALL = : NORMAL_UNINSTALL = : PRE_UNINSTALL = : POST_UNINSTALL = : build_triplet = @build@ host_triplet = @host@ subdir = www/images ACLOCAL_M4 = $(top_srcdir)/aclocal.m4 am__aclocal_m4_deps = $(top_srcdir)/m4/ax_check_vscript.m4 \ $(top_srcdir)/m4/iconv.m4 $(top_srcdir)/m4/lib-ld.m4 \ $(top_srcdir)/m4/lib-link.m4 $(top_srcdir)/m4/lib-prefix.m4 \ $(top_srcdir)/m4/libtool.m4 $(top_srcdir)/m4/ltoptions.m4 \ $(top_srcdir)/m4/ltsugar.m4 $(top_srcdir)/m4/ltversion.m4 \ $(top_srcdir)/m4/lt~obsolete.m4 $(top_srcdir)/acinclude.m4 \ $(top_srcdir)/configure.ac am__configure_deps = $(am__aclocal_m4_deps) $(CONFIGURE_DEPENDENCIES) \ $(ACLOCAL_M4) DIST_COMMON = $(srcdir)/Makefile.am $(dist_images_DATA) \ $(am__DIST_COMMON) mkinstalldirs = $(install_sh) -d CONFIG_HEADER = $(top_builddir)/config.h CONFIG_CLEAN_FILES = CONFIG_CLEAN_VPATH_FILES = AM_V_P = $(am__v_P_@AM_V@) am__v_P_ = $(am__v_P_@AM_DEFAULT_V@) am__v_P_0 = false am__v_P_1 = : AM_V_GEN = $(am__v_GEN_@AM_V@) am__v_GEN_ = $(am__v_GEN_@AM_DEFAULT_V@) am__v_GEN_0 = @echo " GEN " $@; am__v_GEN_1 = AM_V_at = $(am__v_at_@AM_V@) am__v_at_ = $(am__v_at_@AM_DEFAULT_V@) am__v_at_0 = @ am__v_at_1 = SOURCES = DIST_SOURCES = am__can_run_installinfo = \ case $$AM_UPDATE_INFO_DIR in \ n|no|NO) false;; \ *) (install-info --version) >/dev/null 2>&1;; \ esac am__vpath_adj_setup = srcdirstrip=`echo "$(srcdir)" | sed 's|.|.|g'`; am__vpath_adj = case $$p in \ $(srcdir)/*) f=`echo "$$p" | sed "s|^$$srcdirstrip/||"`;; \ *) f=$$p;; \ esac; am__strip_dir = f=`echo $$p | sed -e 's|^.*/||'`; am__install_max = 40 am__nobase_strip_setup = \ srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*|]/\\\\&/g'` am__nobase_strip = \ for p in $$list; do echo "$$p"; done | sed -e "s|$$srcdirstrip/||" am__nobase_list = $(am__nobase_strip_setup); \ for p in $$list; do echo "$$p $$p"; done | \ sed "s| $$srcdirstrip/| |;"' / .*\//!s/ .*/ ./; s,\( .*\)/[^/]*$$,\1,' | \ $(AWK) 'BEGIN { files["."] = "" } { files[$$2] = files[$$2] " " $$1; \ if (++n[$$2] == $(am__install_max)) \ { print $$2, files[$$2]; n[$$2] = 0; files[$$2] = "" } } \ END { for (dir in files) print dir, files[dir] }' am__base_list = \ sed '$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;s/\n/ /g' | \ sed '$$!N;$$!N;$$!N;$$!N;s/\n/ /g' am__uninstall_files_from_dir = { \ test -z "$$files" \ || { test ! -d "$$dir" && test ! -f "$$dir" && test ! -r "$$dir"; } \ || { echo " ( cd '$$dir' && rm -f" $$files ")"; \ $(am__cd) "$$dir" && rm -f $$files; }; \ } am__installdirs = "$(DESTDIR)$(imagesdir)" DATA = $(dist_images_DATA) am__tagged_files = $(HEADERS) $(SOURCES) $(TAGS_FILES) $(LISP) am__DIST_COMMON = $(srcdir)/Makefile.in DISTFILES = $(DIST_COMMON) $(DIST_SOURCES) $(TEXINFOS) $(EXTRA_DIST) ACLOCAL = @ACLOCAL@ AMTAR = @AMTAR@ AM_DEFAULT_VERBOSITY = @AM_DEFAULT_VERBOSITY@ APIMAJOR = @APIMAJOR@ APIMINOR = @APIMINOR@ AR = @AR@ AUTOCONF = @AUTOCONF@ AUTOHEADER = @AUTOHEADER@ AUTOMAKE = @AUTOMAKE@ AWK = @AWK@ CC = @CC@ CCDEPMODE = @CCDEPMODE@ CFLAGS = @CFLAGS@ CONFIG_STATUS_DEPENDENCIES = @CONFIG_STATUS_DEPENDENCIES@ CPP = @CPP@ CPPFLAGS = @CPPFLAGS@ CWRAP_CFLAGS = @CWRAP_CFLAGS@ CWRAP_LIBS = @CWRAP_LIBS@ CYGPATH_W = @CYGPATH_W@ DEFAULT_VPNCSCRIPT = @DEFAULT_VPNCSCRIPT@ DEFS = @DEFS@ DEPDIR = @DEPDIR@ DLLTOOL = @DLLTOOL@ DSYMUTIL = @DSYMUTIL@ DUMPBIN = @DUMPBIN@ ECHO_C = @ECHO_C@ ECHO_N = @ECHO_N@ ECHO_T = @ECHO_T@ EGREP = @EGREP@ EXEEXT = @EXEEXT@ FGREP = @FGREP@ GITVERSIONDEPS = @GITVERSIONDEPS@ GNUTLS_CFLAGS = @GNUTLS_CFLAGS@ GNUTLS_LIBS = @GNUTLS_LIBS@ GREP = @GREP@ GROFF = @GROFF@ GSSAPI_CFLAGS = @GSSAPI_CFLAGS@ GSSAPI_LIBS = @GSSAPI_LIBS@ ICONV_CFLAGS = @ICONV_CFLAGS@ ICONV_LIBS = @ICONV_LIBS@ INSTALL = @INSTALL@ INSTALL_DATA = @INSTALL_DATA@ INSTALL_PROGRAM = @INSTALL_PROGRAM@ INSTALL_SCRIPT = @INSTALL_SCRIPT@ INSTALL_STRIP_PROGRAM = @INSTALL_STRIP_PROGRAM@ INTL_CFLAGS = @INTL_CFLAGS@ INTL_LIBS = @INTL_LIBS@ IP = @IP@ JNI_CFLAGS = @JNI_CFLAGS@ KRB5_CONFIG = @KRB5_CONFIG@ LD = @LD@ LDFLAGS = @LDFLAGS@ LIBICONV = @LIBICONV@ LIBLZ4_CFLAGS = @LIBLZ4_CFLAGS@ LIBLZ4_LIBS = @LIBLZ4_LIBS@ LIBLZ4_PC = @LIBLZ4_PC@ LIBOBJS = @LIBOBJS@ LIBP11_CFLAGS = @LIBP11_CFLAGS@ LIBP11_LIBS = @LIBP11_LIBS@ LIBPCSCLITE_CFLAGS = @LIBPCSCLITE_CFLAGS@ LIBPCSCLITE_LIBS = @LIBPCSCLITE_LIBS@ LIBPCSCLITE_PC = @LIBPCSCLITE_PC@ LIBPROXY_CFLAGS = @LIBPROXY_CFLAGS@ LIBPROXY_LIBS = @LIBPROXY_LIBS@ LIBPROXY_PC = @LIBPROXY_PC@ LIBPSKC_CFLAGS = @LIBPSKC_CFLAGS@ LIBPSKC_LIBS = @LIBPSKC_LIBS@ LIBPSKC_PC = @LIBPSKC_PC@ LIBS = @LIBS@ LIBSTOKEN_CFLAGS = @LIBSTOKEN_CFLAGS@ LIBSTOKEN_LIBS = @LIBSTOKEN_LIBS@ LIBSTOKEN_PC = @LIBSTOKEN_PC@ LIBTOOL = @LIBTOOL@ LIBXML2_CFLAGS = @LIBXML2_CFLAGS@ LIBXML2_LIBS = @LIBXML2_LIBS@ LINGUAS = @LINGUAS@ LIPO = @LIPO@ LN_S = @LN_S@ LTLIBICONV = @LTLIBICONV@ LTLIBOBJS = @LTLIBOBJS@ LT_SYS_LIBRARY_PATH = @LT_SYS_LIBRARY_PATH@ MAINT = @MAINT@ MAKEINFO = @MAKEINFO@ MANIFEST_TOOL = @MANIFEST_TOOL@ MKDIR_P = @MKDIR_P@ MSGFMT = @MSGFMT@ NM = @NM@ NMEDIT = @NMEDIT@ NUTTCP = @NUTTCP@ OBJDUMP = @OBJDUMP@ OBJEXT = @OBJEXT@ OCSERV_GROUP = @OCSERV_GROUP@ OCSERV_USER = @OCSERV_USER@ OPENSSL_CFLAGS = @OPENSSL_CFLAGS@ OPENSSL_LIBS = @OPENSSL_LIBS@ OTOOL = @OTOOL@ OTOOL64 = @OTOOL64@ P11KIT_CFLAGS = @P11KIT_CFLAGS@ P11KIT_LIBS = @P11KIT_LIBS@ P11KIT_PC = @P11KIT_PC@ PACKAGE = @PACKAGE@ PACKAGE_BUGREPORT = @PACKAGE_BUGREPORT@ PACKAGE_NAME = @PACKAGE_NAME@ PACKAGE_STRING = @PACKAGE_STRING@ PACKAGE_TARNAME = @PACKAGE_TARNAME@ PACKAGE_URL = @PACKAGE_URL@ PACKAGE_VERSION = @PACKAGE_VERSION@ PATH_SEPARATOR = @PATH_SEPARATOR@ PKG_CONFIG = @PKG_CONFIG@ PKG_CONFIG_LIBDIR = @PKG_CONFIG_LIBDIR@ PKG_CONFIG_PATH = @PKG_CONFIG_PATH@ PYTHON = @PYTHON@ RANLIB = @RANLIB@ SED = @SED@ SET_MAKE = @SET_MAKE@ SHELL = @SHELL@ SSL_CFLAGS = @SSL_CFLAGS@ SSL_LIBS = @SSL_LIBS@ SSL_PC = @SSL_PC@ STRIP = @STRIP@ SYMVER_ASPRINTF = @SYMVER_ASPRINTF@ SYMVER_GETLINE = @SYMVER_GETLINE@ SYMVER_JAVA = @SYMVER_JAVA@ SYMVER_TIME = @SYMVER_TIME@ SYMVER_VASPRINTF = @SYMVER_VASPRINTF@ SYMVER_WIN32_STRERROR = @SYMVER_WIN32_STRERROR@ TASN1_CFLAGS = @TASN1_CFLAGS@ TASN1_LIBS = @TASN1_LIBS@ TPM2_CFLAGS = @TPM2_CFLAGS@ TPM2_LIBS = @TPM2_LIBS@ TSS2_ESYS_CFLAGS = @TSS2_ESYS_CFLAGS@ TSS2_ESYS_LIBS = @TSS2_ESYS_LIBS@ TSS2_LIBS = @TSS2_LIBS@ TSS_CFLAGS = @TSS_CFLAGS@ TSS_LIBS = @TSS_LIBS@ VERSION = @VERSION@ VSCRIPT_LDFLAGS = @VSCRIPT_LDFLAGS@ WFLAGS = @WFLAGS@ WINDRES = @WINDRES@ ZLIB_CFLAGS = @ZLIB_CFLAGS@ ZLIB_LIBS = @ZLIB_LIBS@ ZLIB_PC = @ZLIB_PC@ _ACJNI_JAVAC = @_ACJNI_JAVAC@ abs_builddir = @abs_builddir@ abs_srcdir = @abs_srcdir@ abs_top_builddir = @abs_top_builddir@ abs_top_srcdir = @abs_top_srcdir@ ac_ct_AR = @ac_ct_AR@ ac_ct_CC = @ac_ct_CC@ ac_ct_DUMPBIN = @ac_ct_DUMPBIN@ am__include = @am__include@ am__leading_dot = @am__leading_dot@ am__quote = @am__quote@ am__tar = @am__tar@ am__untar = @am__untar@ bindir = @bindir@ build = @build@ build_alias = @build_alias@ build_cpu = @build_cpu@ build_os = @build_os@ build_vendor = @build_vendor@ builddir = @builddir@ datadir = @datadir@ datarootdir = @datarootdir@ docdir = @docdir@ dvidir = @dvidir@ exec_prefix = @exec_prefix@ host = @host@ host_alias = @host_alias@ host_cpu = @host_cpu@ host_os = @host_os@ host_vendor = @host_vendor@ htmldir = @htmldir@ includedir = @includedir@ infodir = @infodir@ install_sh = @install_sh@ libdir = @libdir@ libexecdir = @libexecdir@ localedir = @localedir@ localstatedir = @localstatedir@ mandir = @mandir@ mkdir_p = @mkdir_p@ oldincludedir = @oldincludedir@ openssl_pc_libs = @openssl_pc_libs@ pdfdir = @pdfdir@ pkgconfigdir = @pkgconfigdir@ prefix = @prefix@ program_transform_name = @program_transform_name@ psdir = @psdir@ sbindir = @sbindir@ sharedstatedir = @sharedstatedir@ srcdir = @srcdir@ sysconfdir = @sysconfdir@ system_pcsc_libs = @system_pcsc_libs@ target_alias = @target_alias@ test_pkcs11 = @test_pkcs11@ top_build_prefix = @top_build_prefix@ top_builddir = @top_builddir@ top_srcdir = @top_srcdir@ imagesdir = $(htmldir)/images dist_images_DATA = $(srcdir)/*.png $(srcdir)/*.svg all: all-am .SUFFIXES: $(srcdir)/Makefile.in: @MAINTAINER_MODE_TRUE@ $(srcdir)/Makefile.am $(am__configure_deps) @for dep in $?; do \ case '$(am__configure_deps)' in \ *$$dep*) \ ( cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh ) \ && { if test -f $@; then exit 0; else break; fi; }; \ exit 1;; \ esac; \ done; \ echo ' cd $(top_srcdir) && $(AUTOMAKE) --foreign www/images/Makefile'; \ $(am__cd) $(top_srcdir) && \ $(AUTOMAKE) --foreign www/images/Makefile Makefile: $(srcdir)/Makefile.in $(top_builddir)/config.status @case '$?' in \ *config.status*) \ cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh;; \ *) \ echo ' cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__maybe_remake_depfiles)'; \ cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__maybe_remake_depfiles);; \ esac; $(top_builddir)/config.status: $(top_srcdir)/configure $(CONFIG_STATUS_DEPENDENCIES) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(top_srcdir)/configure: @MAINTAINER_MODE_TRUE@ $(am__configure_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(ACLOCAL_M4): @MAINTAINER_MODE_TRUE@ $(am__aclocal_m4_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(am__aclocal_m4_deps): mostlyclean-libtool: -rm -f *.lo clean-libtool: -rm -rf .libs _libs install-dist_imagesDATA: $(dist_images_DATA) @$(NORMAL_INSTALL) @list='$(dist_images_DATA)'; test -n "$(imagesdir)" || list=; \ if test -n "$$list"; then \ echo " $(MKDIR_P) '$(DESTDIR)$(imagesdir)'"; \ $(MKDIR_P) "$(DESTDIR)$(imagesdir)" || exit 1; \ fi; \ for p in $$list; do \ if test -f "$$p"; then d=; else d="$(srcdir)/"; fi; \ echo "$$d$$p"; \ done | $(am__base_list) | \ while read files; do \ echo " $(INSTALL_DATA) $$files '$(DESTDIR)$(imagesdir)'"; \ $(INSTALL_DATA) $$files "$(DESTDIR)$(imagesdir)" || exit $$?; \ done uninstall-dist_imagesDATA: @$(NORMAL_UNINSTALL) @list='$(dist_images_DATA)'; test -n "$(imagesdir)" || list=; \ files=`for p in $$list; do echo $$p; done | sed -e 's|^.*/||'`; \ dir='$(DESTDIR)$(imagesdir)'; $(am__uninstall_files_from_dir) tags TAGS: ctags CTAGS: cscope cscopelist: distdir: $(BUILT_SOURCES) $(MAKE) $(AM_MAKEFLAGS) distdir-am distdir-am: $(DISTFILES) @srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ topsrcdirstrip=`echo "$(top_srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ list='$(DISTFILES)'; \ dist_files=`for file in $$list; do echo $$file; done | \ sed -e "s|^$$srcdirstrip/||;t" \ -e "s|^$$topsrcdirstrip/|$(top_builddir)/|;t"`; \ case $$dist_files in \ */*) $(MKDIR_P) `echo "$$dist_files" | \ sed '/\//!d;s|^|$(distdir)/|;s,/[^/]*$$,,' | \ sort -u` ;; \ esac; \ for file in $$dist_files; do \ if test -f $$file || test -d $$file; then d=.; else d=$(srcdir); fi; \ if test -d $$d/$$file; then \ dir=`echo "/$$file" | sed -e 's,/[^/]*$$,,'`; \ if test -d "$(distdir)/$$file"; then \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ if test -d $(srcdir)/$$file && test $$d != $(srcdir); then \ cp -fpR $(srcdir)/$$file "$(distdir)$$dir" || exit 1; \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ cp -fpR $$d/$$file "$(distdir)$$dir" || exit 1; \ else \ test -f "$(distdir)/$$file" \ || cp -p $$d/$$file "$(distdir)/$$file" \ || exit 1; \ fi; \ done check-am: all-am check: check-am all-am: Makefile $(DATA) installdirs: for dir in "$(DESTDIR)$(imagesdir)"; do \ test -z "$$dir" || $(MKDIR_P) "$$dir"; \ done install: install-am install-exec: install-exec-am install-data: install-data-am uninstall: uninstall-am install-am: all-am @$(MAKE) $(AM_MAKEFLAGS) install-exec-am install-data-am installcheck: installcheck-am install-strip: if test -z '$(STRIP)'; then \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ install; \ else \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ "INSTALL_PROGRAM_ENV=STRIPPROG='$(STRIP)'" install; \ fi mostlyclean-generic: clean-generic: distclean-generic: -test -z "$(CONFIG_CLEAN_FILES)" || rm -f $(CONFIG_CLEAN_FILES) -test . = "$(srcdir)" || test -z "$(CONFIG_CLEAN_VPATH_FILES)" || rm -f $(CONFIG_CLEAN_VPATH_FILES) maintainer-clean-generic: @echo "This command is intended for maintainers to use" @echo "it deletes files that may require special tools to rebuild." clean: clean-am clean-am: clean-generic clean-libtool mostlyclean-am distclean: distclean-am -rm -f Makefile distclean-am: clean-am distclean-generic dvi: dvi-am dvi-am: html: html-am html-am: info: info-am info-am: install-data-am: install-dist_imagesDATA install-dvi: install-dvi-am install-dvi-am: install-exec-am: install-html: install-html-am install-html-am: install-info: install-info-am install-info-am: install-man: install-pdf: install-pdf-am install-pdf-am: install-ps: install-ps-am install-ps-am: installcheck-am: maintainer-clean: maintainer-clean-am -rm -f Makefile maintainer-clean-am: distclean-am maintainer-clean-generic mostlyclean: mostlyclean-am mostlyclean-am: mostlyclean-generic mostlyclean-libtool pdf: pdf-am pdf-am: ps: ps-am ps-am: uninstall-am: uninstall-dist_imagesDATA .MAKE: install-am install-strip .PHONY: all all-am check check-am clean clean-generic clean-libtool \ cscopelist-am ctags-am distclean distclean-generic \ distclean-libtool distdir dvi dvi-am html html-am info info-am \ install install-am install-data install-data-am \ install-dist_imagesDATA install-dvi install-dvi-am \ install-exec install-exec-am install-html install-html-am \ install-info install-info-am install-man install-pdf \ install-pdf-am install-ps install-ps-am install-strip \ installcheck installcheck-am installdirs maintainer-clean \ maintainer-clean-generic mostlyclean mostlyclean-generic \ mostlyclean-libtool pdf pdf-am ps ps-am tags-am uninstall \ uninstall-am uninstall-dist_imagesDATA .PRECIOUS: Makefile # Tell versions [3.59,3.63) of GNU make to not export all variables. # Otherwise a system limit (for SysV at least) may be exceeded. .NOEXPORT: openconnect-8.05/www/images/openconnect.png0000664000076400007640000015521312727726520022670 0ustar00dwoodhoudwoodhou00000000000000PNG  IHDR:88DsBIT|d pHYstEXtSoftwarewww.inkscape.org< IDATxyp]};@ (A4EQ-YQ,^xlS*oũ,]qO''\Ig$])Tb%Jlɖ Ӣ$ @oYsu{Dx?U}|o9B@BBBBB+? !!!!asHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBM? !!!^- [' u+u $$)XE,_K4QH$!!hGu_bYx]BI$!O"(vm=z,!Ji=|]"1MVl):D&.&`1$b5I$!u$&ݶGH J)`Y8diiI,$DŽ!5M )*O[P1٢$aiD U,P!B ,$x]~O4 --- @ "`R"(+$O" DkhUXDx9!J,1ላH4HmB#p WEEu i"tyf$bII$!pÜs1 !>,@ea!2 HA}hh\(X5eYPs^Ka]!D\׽$X}zjj4~Z cq1 q**1F '02I-@" Մѣ^h0p.rs44M 9rY``M]m|߷(a0 L@B0ƀ9x1@p9T0ƄiLӴk晦yj̜yRX|g8k:4Md2J:$C" 1 8<9(|A@heuhFvac`6ܸqB!WǙVONOO=|nSB 9#iF$$*"II$!5D¡s)$Ja-$ɐ|;B{(l6kea`&Rz1{!L4fY4MfY/ <IDOI$!UM/ǁ^"ŭRݤEb6Z-)ۄj77ihZuR)I\Z}H" 7AUAl6K|LԤ?wuR\,dH8 È\T\R-H8ke>PJ#lµk ,:vш4Ml6F ;2FD@^!ݬm QJɟ?xqK7骒eZb!RP{synj\pca߻~>裧l=ϣaV,ˢJldEV""?$$VsY9C tZ]uƘV.Rz|>]d*PcmߊkN {mCV qhV~|;߹>uڶM àB?IHX'ģ^ Z:ւ Фx|c{i;*R d2HQP\ͤz5ze5^Y-%8DM\ׅv ϟ)h4²z},..}ߧmе?IHXy$hkAJ%ˆa<~X,BX04Uk:]҅޳|ώ/H&,A8077Pڄ/;v쯟{ ˲R"DD^IHXu]-uu]uJ|s߿\.CT|>T*ʨ/?=6ONޫ ".!DT=w3t[.j5x駡nCfiիW__VU4mHHB but:Z'>bСCFTb\Lӌʌnղ#uMtxLMMARBSSSQc->lmp]t]r G~qpjhbt]|> _"E8q87naxƍ~O?ED(D@6D@V!f}`HӚyO~ aJ|lG`|-wQv|LOO!Rd2(X`Br)alۆYJh6wrΣB NGhs@yp5z @)s7}''&&j(1hz""K" =%28!-O_foX,B*>{?tԢjZPVsuFc: y#0!D !X !taGi`fbr\v 00:: Xm[u/;0.LOOB.^F Xp3Nz򩧞Z4M3p'yH%n=(iZ&\5M3 0>O}u``Q200JwjVG7kCt}߇f Nr!jo!Giyrc<9^[ZZr٫'NXl~sl6u]f65JRj۶mH0A]׷ !?jvEaR)( J JEkX: ʕ+Hxa#QtZZ-p]@ d28vY۶cbbg}vnL&C$ׅD@^%W+$k %ccclFA1 0>OGGGJ%HRQFUYk~ې ϝ;Md|l Ji#;9wwM޸qC]H*n;:-t:d2[{&4;8 r9d2f!EBh4`ii !F$YUMp%FfJ?_xS=B*6r4TO!W*mj#jϭO\'w]۶Z*5M3|7~W~p4(x8lۆcǎHZ:ޕ+Wʼn BhEw@ W.jtU<W6JJ|[v]jA޹s'&Kc ]krHՊDE-"MӠ^ÓO> B^ 㜫j /t뺾eY4N06D@֠`csGu_%vnSwulw{\PD>lj{R)u]C4cO[_>c۶m]-z~*4 ii@Zee]J]oC.zjfcii |ߟmZwwBp`l 189 'kZk N<$sy=)RJL$|z'<(4}Rl6 ˵b"Se\^åKܹsm|jjɓ'ffft:$YYm-  0>>3n&?hH&$P-x0T>Wף:JAIĤ̺R\W'>X7 d۶mP,5첒GO>$@VׯL>|ROCK}hߪ_JE^}݃ L${Çs=R}`2?v̄ypΡjP՞~o8q+Wjd2Rĕ1hkd뱆p ](RTQX i}r8P4eY(\ #nև18@,4H<BB4.ߪض- ccc?@|䱹/:4>>jfa9޿Rr lLٯC̥^!zXVw~wu=`Q0m۔s82 CHD+G*X)0<fp˲ bE B'ud2 7v[]l۶O<9~N8<)za--M,(088SSS ‘KKKvh1qK$6QWrUѐ)1ƘsN#B`1  !i5 !0 R,t:mi4- ;Vv8}A XPJXV%66ED!#PZPꮆmu1( pug?+u!X.c"\(/Uv9OF DQr9j 1JǏ9N&(eWu}cu2  طox{:~b617eU8T4 SJIL4R8HX4:VJ%s׮]]v=<<|eY{l!3ư Ň1&c!u]gBBcbܸq˗_k4@(!0 !=ci|̂ e117 #.B6زH}%$(ز,ZoG/`Y+j``u ~qRAW)Uߎ=ScjhrrRHk$H!$M |ԩS|>wu{Mӄ|>JΝ;g```|۶m'''=i4PqfRm&h Du1&s&1F2vС;8#t>6!D0 R.L&CdR5eqUj%UVݟJ~j``=C BRZ=vϞ=;j\ ECɔP&PJeYjq g*[b\ x}CoJi BA]W1j0??_'l6r',kv"$"t!Qm鴳ַ&>Z^x"޽{U.nX\kwΝ;?qcm[J@zYGEzÙLKc0 MiB cL#4ɑ#G:xϤRc˲+N*wܫ-Y'V3vp3Y2+ @}jjuoru"7&&&NϷ( !DÛ.3MNU!1l]kydq xxxHVzONN=C) 2[XX⡢MMM(n`ii [w\̙3ahhh]u1XLJLMMݹ}kn=[F@z:8V}L&C( !hc"Bhhij cccsLӤ"1˿˯=PZlZ011wr57{*۷7 ~jy2ѣ2xSʦ^.q,I6%u#"M4=U*1Ct@ֆ uP.l֋P Jiư,hܢ竢"ej[yPT`ddٳgGmo{7aM!R)djZsz6 uժ! ƒu|sNl6 ZMx?!iR-(w̍'衦iBul6i c̞~;|[333,,,!G+Ȗa@pί$r ؔ-qQ,]V\.G<|@ csu14M3>}4Nkppm68]%]Tk굴, /.9K㜃eYN!B>XZZB'O7'x.^&`qeYԶm$]ZDD"`BqV sh4_x{7 ! !W}m"&''Ν;\Њ1>|js=?0Z-tiعs'd+ PJSl6_ptE51M3ꖦ zE[VZWC9mҒbR*`nn&&&M#nJ@@x.+MH8vQٟJݻWQ5(W2w nGBHTN0 <Ӹn{>uԗ|+23}$UDRD By^QN$@!H)ch4inMXVu_Na׮]/(er0;; jl6"밈h41Ƣ M% Bt]u0HnB J|t bbԿ9P*F.^q8̘{UU[:|I!wp4ȑ#Gw{gۺ#r9h6P׷%"gt}ʵ=qj9 xTZfi ۶E^Ajx \.Çʕ+{={@VpwBT],[ĦnxXiF:!@c#Ng>l{R " ٌ$ecUd:̎?I%g^Պ+UaQ߫fkIщT*b.\\ghh ǎ#'n&`(JyF|ZtΝ;1Bn _~;Z! }rl6w6M)"¶x=zT QcjGj "۷ch$9l6z. \i\v apXXX\Y!y:9}/ 9}=ϋt]Uc?sb:\V3߹b_ܥE)---AрZMӠjAPڵkѺ YQ~*0Ipn&y۾}{;B@)ׯΝ;att4[@ 4h4n#wiQ F۶m,..Ǐ'fLOO?K}!-Br^!P**I,qq+fò,Q;e2s{]`zz._ ###011B!hZi[>S\.#mxR<>яLox́T*NWU ̪<ի0009W8G9!OiMX4iu! ۶]K/US޾}{z```T* 4$@1}9;@)a\)/SSB*}0R\^hrna~~&B N89gΜA޷o߾O3ɓ'4 ̓X7Dt(_S"c q{\i-KDNMYd(9,\&c0 vΝzvZ΄[C_ HH< iR !$-(*| J%d2NÔHKCǁsAXqc ׮]f)(t:=My] <*lnG-EPBi+ vJ>|xב#GB7{oܸǶ}+ ]\WQC 1FxH6ÇH!?8Q|nCVf |bԏZt]gϞѱ ccu]6"Aպڠ&vwq0pmTjSM(֩Pyu5JxKf}j54PJ54M+w]_8p@RtXUpPJu]r GhW{mBc1!J8X(_'T*?B$P(w; [ {77C.Jxevr B! D-!DAT(^R*dsjcVqJ)m9{+$B('j0 pι l!x1GA>Ŏfї !{y` tr r9 tAV ;pu J7/ʵkl!7 mF,T*%0ƲTEGfǖewr 2+{v;850PJiرcO?›u>}жmΝ;ȵoQ'MӌܹZh} B|{ڶms΃v1>>7b@Vk6QK z mVkiqs2&W,8Hw>\EGmh |ׄ!DÕJl:^㰴\ŋ'}ߧс.k4Y MӢeuc3=^PJ8b|> 19g>7W~wZ8qxضmpΣ縻OnYeAT1!سgi4V^z6n YqrAMa^4JZ@ lԹ=!qH> ˶m'XH HȊGBBcϞ=s!\.G+墸^ՓSfXK`TUr d2kkiZrO!iF(j }3GO=\EqJ)}m|A `{|mϿo3gpZwy' @..^g]ׁR c8O,eׯclaa,eq4EXBͨ,?/zqn19 lMN~z{qq?moAV{N?r!X,vǰvPuaϞ=ڵ륹Fu]g`d6V_Vfˆs뙭'.BAavۻy+Y5@X;vJrT*]^\\tlcu] ]R2snU+ Tb~~91۹o/8)ZzeN'|OMHw?K䚑0s B~G]&S-/_ p XXX=3׾Ar.,,aL&CKbax+Ҏx*q1O>ͧX:fi24۶ao6~u}'`nn.*(^@2 ,EسgY,~ǎ-19hllLCatW["-[ez=cBH"]兺Y2`FӖ SJ [sNDw|> dܶm5/^G}tZ|`YMRljj&J0b 1'''իWY*baPq0 fi_|?y,=PV!u͸,P+ >`Y9DžB1dGRFa^Xh?*ZQT$7FX܅@cM<=/ lҷ<9GbQuhFַA)-:P}?j._:kB\<4bR4:VU255RuIK}j۶׿\VO>$4ȗE0 JA>ݱcG>JaJ)fa媷!$"~ -DVy/?nŏq|%4qam }# >">8o|GFGGjE)j5d2 "ScrrWpq4RJ۶k׮5_Fַq?t\?bYd2;pD~^ *τXP*+񎁄.$eқ>t"XF@Bd@-!!,b5 JJR l6ZRuʕ+-)Ƙ7M:x,[4QJvMf*;;; b?m,Tc IR044drtZclxs ],hmX iQQ̈́pλ HmpGA/[",hug%zAm6h6`̟~ c8u[e׈LNNr08!k,cL_zT*v 000=,--An,%{k@*ʌ:tѾ "a-WP^'"ZbIu1(Z^P;|bEXQ@O2Z"XsXڱzW/xf0kBl-DdUi&t]fcyXU9CzꩯfYpwñcʕ+jCZuܹ3NQ {BzTz l6BSJYqOc'EZCAo!pKKrC%Zd-%mۆjj?S\u@X٭IcAy(ǏOZl0>>pQhpI *ȕlW*9wD6xZ8+NW1fu+ t­/VǦ.p#0BB"kJ3w׮]pUJy; )kqVΚ- .--msՂpZ_`rR†Oґ lȍ6hh"@ : 8??cjn_'&X#DјyB%GFF̙3pupwm099 f[]PJ5-)߈o?A7ܪBI*xI@:G8 0ɰmT&VF7k^0my-go#rQ?Y)<ur̙("l :t .@{nfK/AV,(l: Y-ͤs6:/gWdׇb 70 dl߾=k۶!SF{>f)?(ux(ēb*rQ!<ٳoOZCCCsN8sL2x+Jf5cɺu vW+|^x ;Ɂv9Di IDAT)E2p ,!r9`A8nmJϿ!$ ](ρiPT{K.A044###~BHl6fZ]Ց^ΐy@!"1ـ׊l^-Zp->3LA)mߓ^i}!u ",,, \|YD7eC}kE}$>V+ղ1p]w}L_ @G'2M3Z=/fD d df؝RB mML&{( B:r5oKC>XY)o"XY+q!9L Hu݌/^S5C\TV@%.NR):Pf066022/ VH/VVMƳt;(^[ #|4M˪jZ&'$$N21]cP u - U V;-)5!rj5?u;aE]]BwJGѵ|J) cyy 6#USTF]ӱR۷oΙfF,;}]m@K)AtU\r{%ZY*$LZ7J)<ϋgb%gaBlpJ%hb-}q_NBz^'Hl3\#|ljw ~:[a{5t!Xu7, Lfjz<6|S\c7>^mNoA$YXHߞܥRi>Z~-A d/om|y9B4M^>S>pSp0VFzW;u3ɬ zCǾn$ez[X13FBL z5_uB\!̛fR[b v7M) L`X)wjnՒ:x,nb3[z͌QO6f۶~Φ6`V4lɠZjo=+*(olVM%W6.mZZ܎QJZL`s͊7`v. sVW5%.uy== ظ_пiDEu`e+'& s+NnۅB"_)&H.^ښnN͔@ֵ[<e `~ynk{lȊ뙥YahP [u+c8o|5Y?Xo}?I9&n.i1?86ҍbALVU`o`UJ|%o=h'm"]"fīBdFDksHӪ[19̦@4aBXkCYa] *=8K 5zu--pf *O}_X6 :y-8ܿ)F´nueuW'{d""+HkD<6$ {EjF^.> Oą՛{ s!EV}-0UT{ N H#bRAdxqA$VD,;JWdkYbYRL7• ~c!6mW4mBis,o=]X*e)0X9.t!7M% qz]̽^X ɉmV,3u aiͰP{U,"ˇ*;3*[ruZb(Bҷ |@?!iG8wy,: W(+ p]w,CcεSi8܈V!bD[$Wtp' "Q 1I_iQnұgs{=9ǜsSsjWP^{=k9o<~Ckeh4JV1rO.)[5J?&Xdefve+'+Y)ce_9 Z0ph.\`xF⥂S{D~'4`oZ NSfRXBRB)%ݮȲLw}n;h߿hZieY3 jt$IbǤsF@5gۉLv̷RCb<WﵸiRݖiV%69N`HĴm,u#fS S (Be)ERJE-R&ƘTH:ly|\@$IJ)%ʲZk%B@n֪aЈ<7O12-2B$d<Ʋg@$I$)iYv$QRJЎȐVVVɓ''"W2qt 4`0 F~_yZ,Sz _X*HQX]]$I>UNyGIDy.>Mj#x, YEEQ$(4MS 6Xj-F <'lYr<VQiY2UJB^Լ\NFV-"ʲl ! !$"]&fCauuUw:N#1e)LHen]<*MD`)]cěIӔ(ZatQphr+N+`0H;WlZ ($I$$,yAK֩{SȴnYx.]RDBhAs+  "ba"LZK!=`Վ$IZJ1F!dQBEQ&I"*I1N#677Ê5A.0 "IY̲LmP)&I? /~wu$AQxGq!t]3O7Їȑ#ӧODQdls.-4bqu+x !)em)v-uB$^[[i*|qID.!;@1gdYyi:W"eYr#%)4Toׅ΅P&"1&Z}5k1FQZ yk"RJ#B%ԣHu]ni}}] 'Oƃ{V#;@*.QQeY$Ih@c~'i7=Xc,zI52-6T=fQm~pF}c׆_ƸFc/wF%<`qsC h g|w^Ły~ohVVVL45 VsssxGNQIY:nM;Q5bߜ(+ݟ۞?3 n y?~?\}31I>b;)e+˲4I?~ W?Klj@&l0)Ew}`@Lwch9}Va'إY2sq# "oP}urA{}7$ր xcG/ܿ)׋\)as@"ґſsO=~/yϼuQW2n)WN:q8IMq+I]E:B|םw7N/P {I}6+oiVB$ւ!aI/BqxeA~n ?# Xyp=@(Qx3>@ثP|D!̻ʊc`[B{o=10x玁;GG#\ #xF#vhԒRco~p~ΣǐmAy#_ u=xolkM})`$>V_3. 48f}3ƥ:Fh{]? Z副}ӵYYyGQ177W߿_=C.ƚuaTF`)iI)Tk%_K7]zsMP :I  aOc CCm @ AA@9N = $"ϯBJF:Ǔ} ᕋn%ʽ HH2l!{!dV0F* EcWG^3kEFAh]}Ӌ疵0ٟa |+*2*˒/cYEQN#,{{WyOQn|!3 䞁+cFH"? ϏxƱbɆV=–P|]yFV0xc(:ގk0ڝX0(Q`Ϡøߗǣ[=7Kh]Bkk.0$?~#v,KDZS rMH=x B%$cBVrA0אÌ>28[+lmӤ+YVEcu7Ri=tBNJOxsR4&P(0BQnGQh: IDATȞ"S.O4ɼ8IkMJJߥ d9`=`4(V5A7ž/RH_86?9ޢq}[ʜlE HȆѰ?F80v @UDs)!'=w;ߣL d ^:uR>tDQ\}j+vRe赝J3%Q\ ]G r "ܹQ0b@a6zҢs)ZHm6ZA"v-r\dβ̟ Dm@b )E:~68ނtJ? @ RÅIDviKuԍB@Ė- ҿ&8#(\8QAhMZ`%+fݓ-dHZSףx,P$dؙ96GvV`2206#NC "/{myv;^Ks.~ !ܵEI\`*5-`Er.+r.. Dz!S Lk D+h@q:( 8u)h]9Q 0eN] EV>0}(3I̴nW@!!3h&oK(RJUwwVa\i](@ ZFByi?1% iPd8F&1c[0XکQ9<4FmٓKȎ!X2$@ k&u?䚚=ֶքNv$21+sEXvW0pn pTsF ?5kp;(Z8Qe ^xu֦$k NJn9e`l*h*B@k7`A+V AaT]g@"m4mB_V4ͤhߜ#"aB#$R)!ѨyWUd3:0_;t"%)5ѓ XPW>!j '~mBw_#4b8"FȡG`C 2 Q=Nx 5*H6 ^Ce`K./"x}XC-Atx6:o:V}BZQHe8DÓ=&nt3NLh 0P@ikӍڋ]GCv0>gD3b(`De+"?Mxs.Ӑ^ 2m]hD d2돵F5rkxW Vk=/%TBtª8{G)qF(b*x9W;4& Ratn]esi 3 e #caQ%@ pp$HkD) C\,5Ve]SG?oUΪb)'{jIn .jQ koRDIUv~]nXs!Y]]5RJn:y&"$?cdHQjd"va '[" tĔ}p/7dO*%uǏ v`0hV3T)c=y˧O0t:TJΝۗub߾}%)zVL)gQ?!|3D%aD3"XCbBxAgEY"yj<5GJMlAsɻ9}'tեup)YUS2+YXut]G]Ϯց>vQ) 35 f.U8~xr…ZWo|>,,,ܕ,C J绲@Cqj DƬH걕&JhaQOD'dDk>j"NeHD-d2+f%/FC%jv^l1;54., Ps6U.Y-? (cy0|VnEŀL5{2; WRՁp} whB͵sc*B^[xի^5{w8p๷v[Z( (~(e+ÇO}/}̙3~}OcǎN:UJdHu/M~뛅`$4A10Jz 5f;5(=P>qVY9&>@TΪ=t LkZ ?s cXkDF|sssXŠD,gPhtv/~/,//{_yceeeHW 7waY7-ktTN&qs)*wc519v߅i'HjrS՟T&p﫽`o=./ -Ռq (]Vs+űp_vrTp?\`L),Wm:2ņ,, }Kya5kjFc Wh sOۨ Vc *0ζ8[!^lUv{z84jƆ5eYSl\a*ٍ<@%ȍ3f1QB6Equ^ƩM +h+QA @ĭ\Z~ W9FzhB0c_?߫:_刈LiUz8FdHDZʈg'BDT Q}ոe( M2ŭZ(׃*,Q1j@d)^}@G+\]]mI)_җBq,a)ۿ_+ηO|:=QRfYm(''|.//ϵ>lܮJ{^@-eRO}SO(`&RvPJa8jA<+ieYV҅{X ϔܿpRMT_e`S0J}pJɖ J٥ j-me!BFw)( Cq5-7vp%:\z?'[KQhlnmW!ごG6=宻/{˾6MV4M}"2/;8P>|8t:̙3R$w,],KHQ(׊pHNL/v߿~_EX/ӎΔi]ADiD Mٺ ڴ8hj-(гWa|&:°Do;P1Hn9>SG'}W ֗cZ%QJSZn3" `TKwM  AiR`BFRݭ4+͊t":Vs/WES>(7r1Ǜ硵mP*l/gP8J`B\SxB ^1Ѣ3ALJ4`r"I (Q޸Rx#CzzΈ3YX+Ρ(di8pٽ^/|<=)~}o~y^~w}NQ<6Rܿ/"YXkC'I@(Ck%S#lB{鬘ZB3!%XB*fBP j,+Q *Mb2ܻAd' ϓ ]4(u5/ $"Iōul*sW,#ԫᐬq)q\rt[Mc7TlѼ`!V3+o4@; "NO~bӹgPJ4Rv;߾/Zk-vj8{,!*sssHB I0IOH3IYhoVNDvzWZr &hmP*['D "STzc[:Xd`|B[cRFELo 5< vO sa rűBFu ҵ-`f"\%g߈]sUFXHcOh 3nVa轎 .Yj1ց:+ 8qΜ9#|-2"Z-he]c,RJc}lll`߾}X__G<2<> sזRJJD);# 0:+f Nגvy%Eֲt^?y`?^BtR՘"ޫE >FPή+M@wu R?gWds O&d1c0XƧfPuay7\s\幍Wy$TkRn;\U1Q"'~ϲ ^BAJV$IpY,--!MSZ- C۷p@( aE.0hZriiΝ;wu2S $&S 8Ͷjj |AoCPش` ه|֦|3&Z0b+2ؓqxqr=CKDX| sayN7'D:='|].opSGԔQօm2$F̻º7T  6^{LG@[Jϲ,n+6b*^b*#ϲ\%ܽtWW﫣 ?뚍[(W{1o$k]v1"`$.pȴ^ t:H)1 vؿ?xꅅnߎ>XfJ܌b6Akp] ]v \MhjLj8C' XTuPm@MBVL;G_H:a3O&()+z@M ,5{jh38.BTM4^&1>^8甏Vˉp JЈѫ}Mc]s\X3:Ǝvq#d.@Lblnn`pC\>dDk8F־HpuupA> ؀1sss(@JŠYY: )AQomo˷U;n E%&[s,k)Bش@|V]4޺KC\8ՠ&N_l vb Mv ҈7U IDATWi(U'׻nB?\iU%$z0k9666XwTncss^!15JvB}S{˲B3@x1!QWr 46ޛɅVʂ0;>!5[Tj[7;*cEDKy14p+7`ћ]XUQwNfߣVf ԁuB)|&!vuC Qy*w蓋X#4; .~tBsta]in1D[~bMc#Xp ={z*. dvȃ NR)Ui3@dOvSDי۔wik= %ŋY^^~q FQlӭ3e{GYX__( \p "lnn"IO֨4bɲ ?Zܑ7 xu$˱\`E^3ej.z80j)A؊ ˪[ @rƧNjA_สU|[=ٓ=ݮ*2;{짎9E$(Szxccssn׳e镅o@(htǚO~Te~iL)^9U%vLWXDVSVp5BF]< { pHE_ҧN 1p6̴߃\ ZW] LS#'ׅjjIkUj5+)UNב!KTUTEAA:d +GUGݕזe)IUG"^,~)%:>OP1p0qeY@dCR Wʂ`+k͹Z6YA,!0=q&8-.\zȣJOȢ:O"D i+VChkFz[iחLQ+Ձ"iOL.!^;. jpy?yG c!1^ccH¦їL>u-mǫv]UsC`L3߻2 YK^O,,,+qT3&Jqb|lQ^Y_'>$Iֵv}̈vR 3=I-\[L(LP@Qjvv Ol<-i"7}\vE0++\?=ͪsyLgWnaRVwʹ `Ri{W[:>UwMk6xDbR?QCMBkTk8tK 4rg5#Xi.YKky}-m+sssSv TIL-b޸0溊q…ϼ}NǎOP fŮKu-Å4mB߁hm8;%8QqV'vQ+QQvIz}!|wc2H ¿K!j9H<|K7"v'a6Sxw&=*ݼ!:Ѷ5+rG-˿'~?$^]];7$I^^^Ι S915I\m8FrEO}~~c>讠`F@6G64R p qB $ni냕":j c}Mt":-ж֢y!\=a'nu ʌ 7 #LDg3 PO/+bˌ004ϥb [ @g#.6XnPK t\XDsShsg6`` ;<;L27׹ߝȱc6{~k^_R޶zv9uep8#,'Gp>Oo}u:չܹsj70# $h/ ҜƻU ٪-Z`(WZub'.E)V\\#R'] 5|OhN̓xϗ吅c6ω A^t"C$sN켟bWT&&bX!h q NJoh*:6r"_J\@+&Bq̀ZC\\C*YrQǧ4 Rq}ԩ'СCZ%n  9bS0/|o|CD$܇G v ~‚Yv&Lb[]>?|Zm#FauB@M/)"FpܺǼ!-?o;q(ܢ,,84b[j@ b78vgh̋;&܅k`&A|s2^MǓG$#bff 3\-ѷ;݅U;<ެ`ꎌk08?=;y#ȧw9W,//W:q9"r]`Dŋc}䵯}ۈ|>Åݮl(0u4(a97QKJ ]=AlJn@v/A؅%@h!wî.ua _)VKloxk8im8ipO[0\0KRޘc&M8{ ve1 od\;$x#G__~镯|7Yzֿ?;'vPy^hBeF̕?S?S(1f/9P[ߺ )V'+`ᘈCN|k_@u{?{Ӟvbii vX[[sm B^ej҂Jn2^yF\6h WW'؍z(P?gWDe{zGVK}pG'GH@wxgߺSC-ꆈ?WVVs΍oŻx<>|7絪,˞x׻4Mv4>}:%n#Q Ka;T&ՅƧ}%D:dP-1%u8 eGUIGDŽy;йէC}*KsT*ʃ)lR`S[pIcB(:{b~Q b`bk~yc(i(b#I`3>/|Ξ={,ˍ'x" XfG\Ci s u,,a΢1.fhp ~`х왊}#Ί@TCbp}B%8\`EQ,o e P ,-m xL"^6x3N6ХOIIۺ@;-ȽD+dDGxgaZ,+S Fiݟ] u 5ge8gciynn1%<βb+,ξU!ơC'xb0# s퉴JW!L`uvYrNJp+sZٱ!t8eJ%ІϒifU|ѭ-\=~jLb"O&{ИUUw68qxϫu 0FʹDKT#W]C0Fc] ;DK$f0H]| F'O9̈avSt rai8TZ-@PW'Є8Q,B'tˋd[]N p8$ƈKƑ] `m-0wcsYnLPe7LoBB* h "OzՐ7"3؝ -QU_[7+j.ԦJ~76XvoZ4,ξ] O>]5B;zy4Ҭ7V%"OPKe&S v:+Ea.VέU&!Ubč:y6] ݮ"ܒ M7?[W[ETx<; H{F]KC' %`Ux:!R!ǜkU-Eq̅u&pF !Q>pًƘ1vYJdVMI%(܄;X!QwS%S]Xg%FU힐8n=0a Ŷ1(T8>w\/v}8I@ď`0νc)Ⱥ]7F-iB 5B 5'mUo] vM~ri9M8Tp~̶ҮB^+DdRŠ%$Iy8 -@+./XBQBk> ŰZ H=Qq5OZ <l}+U&NW\P/uzH}M~ фlYK!(y :pwN-"Zq\X۩D vgOM;V]C`ݩk+svokra1Ϻ8}՚=y6n6e&NyBi{"˰2xE솺pV\X6~-`L/̑aK!Ԯj>$]6J x0Ʌ1bq%q0/:=ƋmKWңؘwyxwW퉮مcu`1vg0RnRdVi(/|?JAD3ƚb b[˔SA=ђ[[@XNv}mUՁ4*=E،I>nգ<|HtLZaB{J]DDaxb8crFnB9r;A Yx]ԽK-Rkv1c2Z[ Z@ ۓW>og] o"ls4;7:Edb Wx}f[[O]XiJE/zG?m(=#3@RZ \_j.I>.,p=Oh{* : 9e[ uk]Rv9a1bC/LG MY:nbQEux)";!)gaq[&Rv#G q®e&~$]3[{r.xr@!W/fb;k/s0"Sӳ[W7BNK *O񚫠sc`,K u ӊ eCČ3@v/'&N'mJ֤@Fj(u5W4sG[SC AXL#?4tP dB9(T't-a*aha[ag FAyv2 jި ?Os_PRM{Dzp YEBa.`l){r%r=?,5bRG Y=?o0zK BCy 6F|1al^qg+DI] * * [@7 YXKAG(粣tRLfZJ@tepMfaqWW đ}g,/bdY Q-)ࢍ!8TV[#LdRXX8X^;4NI\0n\-?8-H n_a,Dvi4*<@J@N)@;7WuGۖl@k__t:(@+aظzkT!Xy6+9eXhEz$B`ssWgI ̑Z sl 4l$I;dB2pR8Ą1XgD\M ce 3k 0(ZSՊMXA{[YYZZ0 OV{m)N Bc\t;B n" 2 .xb/Mzc\w='YXej\3)"`~j:^H\LH? 4YMW~89?/Xجe∾ĄE:8(QR/phJAϴwLI Ss_NK6"u$Œ dJ a1+U647Int A=uPf?c3&{Bq =h Ԫj<2G $63e]>kEdgThџh Zt  $kHi 0}K&5D@R {G?T#}^?q/}g?m۶WlݺsΩ*,5 r3Dxж&, ; iH@(^DI^slvxq%XXEQ1QP)0^x6 璆evU}El3a=wfҀIݫV$mDXFCP)+Yb;t,y9{kh{-B~&z>ţAc7Q獈ȦJ G7߼3"(Ӕ0~Z51EC\!Ԋ/U‹6fRwGJ6 *S9Z($$VQ$Q6)FظL1מ :ԉL‰0 +6PmtL Vn]+үVJ82,&2g*$qHLX|!$?7qwN bop;|+_G !h}g60;$3n\@ҒCͣ~MozӧWVV:;w:GT0wGˆ`:@hFuGbNlDp&@g3q\m5^m9޳l}': ՙg1J,. VHfoW,tw(1k>I+<@3Yo> ݐN+K @6XM%6&&Ҵ~jh$vT?,,"2W^y廚}|L qvjER' el3=%{Qv0g@w}FOcִQI9E+Vk:isC`4aSLklŠ<-7aE1ʚ`iF5?G6$D,ٳ犋.:cM742)RfthNj5<o6:iMaxIKi)"!IK\pw:C'pBk߾}S}hJ/N!j*?[0M";gt|N("j/7뮻ݻ]є0b ؆ 4LD?37AMαDkep(1@˾i{e_5Us?ZZ dF!MveH1j|~vl޼9ؽ{QJaڴia v' ?6 vٟc@;Jqvl)\ 2$Vq:7m4ش k DO %pSNwe$cҁֲ1PB2S!NezNbNLtٳbVjsP H$q =QQքk?_|]veZ͛wi"S@ cࢮaٕv6n[Da+%vi <YF99‡k76jl:8q1hYGYI*=tTcpIj b1D7q U&9o 5`M=} ,vı cHx9P*ѢHVU~ zo:sz(m耣t՚U\fFQ܋1^N7>E/zr&əx CPLtBQ&rtG?K.+JʴV% 5ԡ؀Ȥ/p\&,JX$u}{KYSݬ *s 9cd,3Gqyc; *&QX1mkΜirL\w' ^ڢ;s.ŝ7l\䀁1aBO=yDZe &dL|~@1 XܵkWk,DS@zL+1br{[#kH#^E0H38wR &_"̘S=L ^n:gsHkʓkI*ɦdhwn_Qy*k`Q'ڶw3AIOԾpZ蕜E)QEsDjdEaeWNٰaʊY\\f0{{:ABCf;i7ruPگ6w&:Y) wbk[.1CqU8΢)ծ]2lYq>C!kΒۥHa ց_a@ϸîR NP\qE̜i߾ lfAߟ @* +HNzPT0X 9]&,Yjn(G&>gF+OJL_䙹∳8fz I'sv+ŕ]?!FDIi.8#d5d8xBHڄCi&qg$ᛞ\8G8uY*NЬbM ,Y) ?6]9ܨ` 3D1)";Ӕ%x38)W'O1VU{᙭50N<3TȞK&:nE9-#a.h}H։k׮mh Z"B<~hLyR^MQt0WԄ5&l5=ʚaxnZtISL^Ρ|'M!Y\/aLh%dA:R]זJƓC:) c Ga)x>"qĉWGK k@rwexxNk2"\uUwc۷o: !e4]cM4f8 VɟB䃾c4EN}f3Dg]-Ԟjر"N+b@h*1>PdJ2ɂ&ָd>Vj 's\ u@i:X}?G"t|$\O(pϋ0TyF$dޝ˵28<j#%؍}.oRrgm.ԾZlycd t^}Nԫ9`M#y@ai1 d3V"r䋕!OI=zK3GE) 26YC1HA J0(G)*DҤmOMQ1.V߇sO@3RZd5=e {kY&0jw(,@X8weבaŎ5.EΆB 8-"L1ka6$Wu'9o慝'4&KF΄mZc̝Fciݝi<ҸGafLE 'lªvE,Yz' BUjDF-6D઀@6{i :]&vnF}sGN\/u#bӖX}O;@x/8x_I~F J)6 Z̕J%+X)Ӧi8Dφk{Fuu`,TP &"l&k7IrZΝ hhNHk 67WKZ<+;M ݞ=HLins<*wݻJr䦛nhb>mc7H)Ъj)c`ӄH^~L`"^-^[o ;LZl5H{&x y tj~C?bMjAF'LX{- i/21qy0ƛ5-BW/0AJpPV}fXE{Z J֯RZ5 u;vE𪫮 ݻ P_57{l dزe -//A2Au1<ܪͭ|$l~VK4^RvԙX2%kf<$繶/Zr{bavS.7vb†BeUpg|@(rW΄9:3n,,95cMpo雌BłPypk=*TS4z8@F YkM+++&2DA( b9jž@1 &"%U͙o'2dӞ- ,5 ,1 zg9s3꽱ܢ{EA*tPؔdfee͍+p֬Y4 8cǎm^xuJ#gqFk޽y#f vM؇Y(wOO|Y܄#퇗8Հ9l#ڝ$/$Q&5JR{y%UkheR Zig~6 "wi 4||Z Ǧi͔؇rQXN/BCAl69i4fg7]8ƮƇ>ӂ`nnl6JtjAԢ(AP3T Y_pVq̑rIN[÷w~i_x:$nxq3"^^^HөjJE(*j50j=1c bNC~0EӉ vX:Z-*Xu?p| oy f^ywx=5cU m`5Qz/eq9nj/~xtѨ~O3!οׂt,_rM9@Bi@8;suO >f:X)~LG72λ1(^l$#zx* ^Ó${| iH!YK%t3=%xϯ5`I~i'hN !3w<6#7¿o8#i uWa_gް} `{ X3\r [}`F5.ϫKQ,!kvAI¾M?b|\b\l`mr18ʬo= cz*1mncN}RLk$ 8O7I>c03:<ύ7"`\G4 ϭӄR`8߷s^\cݛ\$ԋ DEa":Xm$ſD)z4xY/.A Ró2FK.Os6RzTTǧLYRJJJ%ۯNa[\Jݤt\%[UygxR`mm(b09~אҭDDž F89tg.{]GLgPJ{Z!,U.CM=g<0SzTpT86;-sR#+;CF pgAzvn*9`?voj\ /9]%'N,(R5H)}l: 8̄ ^2}3s!y/Ei{n?{#u@4mgc~ 8+96o}s,1{pV}, y`DL*mzD~IËw`LK>ß!'dzjq}9o>Z0PQ?% 0G>O:<&DxJxw? 6. qI`G>$^-}$}<}8>}qG_}+CC{->o}w}סkzo,s] -[D4(8b~QT] <(eImLt Ro'[ccݨ7 6/Ia!}}ƴ\D?/> ̀?gx@%D^ﻂ6kP)DDۅc4 OlOШa4"lw] Yyz||0$J? x$ E"? ]bE~*l72RJU!~ EҏmKH{#)G-Y q$")kq^pDT0kms[IDK!&s:1U G?_~dtCw{r.k!Hx,p LaZIDH,N<(xbt6dBQD9Cy$?%zȢADVyyuFI%)h37P>ҭ$Lڑd#5I"*+PI*l<[h>ep䞄$'%5g60QyDݲ$yN?);5=M,/.^rSv452&Ϧ%slD$q2i"jjH) 25h{ ޥ$p/8EBdWmD D&&ki^ԃ4 a>IӗK\kGHGIR~Rd/y_XtI9^:믅nt[џx9.zk)914C;]9 31CukzeEc}0pf ]`eI[剂"e\^`g(>&:м'r -}kkȢxwp/,a?' %1iOCP Op4*hf AOaU5|j>ƒ/ yptFQQ%Q^ޏָmY#}!|{?MXpS 28-`\B?`<21vͼ=kGu=~^(%~{]5JO][N 8 lnpL0֮?, 뾸W_v("?pN<95X~҃M(sQ% `2J5M&|\\IU;fr?߿k?fH)uWtƫfƇSpLLl0',wX@Y~xb=l8 Z{^{?C8

    Running as non-root user

    Under normal circumstances OpenConnect needs to be run as the root user. If it cannot create the local tun network interface, you will see an error such as: 

      Failed to bind (TUNSETIFF) tun device: Operation not permitted
    or in older versions, "TUNSETIFF failed: Operation not permitted". The simple fix for this problem is, of course, to run OpenConnect as root.

    For security reasons, it is better if network-facing code can run without root privileges — and there are a few options which allow OpenConnect to run as an unprivileged user instead.

    Pre-configured tun device

    On Linux, it's possible to create its tun device in advance. For example:

    # ip tuntap add vpn0 mode tun user dwmw2

    This creates a device vpn0 which can be opened by user dwmw2 who can pass traffic to/from it without needing any elevated privileges. You can now tell OpenConnect to use that device by adding "-i vpn0" to its command-line arguments. Note that the /dev/net/tun device node should be readable and writeable by everyone. (Some distributions misconfigure that, so if it isn't world-writeable then please file a bug against your distribution.)

    Of course, something does also need to configure the IP addresses and routing. You could either add "-s /bin/true" to OpenConnect's command line to stop it trying to run vpnc-script for itself, and manually configure the network as root too. Or you could use "-s 'sudo -E /etc/vpnc/vpnc-script'" so that OpenConnect itself runs without elevated privileges but can still invoke vpnc-script as root. Note the -E part which ensures the environment variables with the configuration are actually passed through to vpnc-script.

    NetworkManager usually has a dedicated unprivileged user nm-openconnect and runs OpenConnect as that user, having pre-created the tun device for it. OpenConnect then invokes a "vpnc-script" provided by NetworkManager which just passes all the configuration back to NetworkManager over DBus.

    SOCKS / port-forwarding proxy

    An alternative option which doesn't require any root access at all, is simply not to create the tun device and modify the system's network configuration. Instead, OpenConnect can spawn a user-supplied program, passing all data traffic through a UNIX socket to that program.

    This option can be used in conjunction with a userspace TCP stack such as lwip to provide SOCKS access to the VPN, without requiring root privileges at all.

    SOCKS proxy implementions suitable for being used from OpenConnect include:

    openconnect-8.05/www/features.xml0000664000076400007640000000354213333013173020722 0ustar00dwoodhoudwoodhou00000000000000

    Features

    • Connection through HTTP proxy, including libproxy support for automatic proxy configuration.
    • Connection through SOCKS5 proxy.
    • Automatic detection of IPv4 and IPv6 address, routes.
    • Authentication via HTTP forms.
    • Authentication using SSL certificates — from local file, Trusted Platform Module and PKCS#11 smartcards.
    • Authentication using SecurID software tokens (when built with libstoken)
    • Authentication using OATH TOTP or HOTP software tokens.
    • Authentication using Yubikey OATH tokens (when built with libpcsclite)
    • UserGroup support for selecting between multiple configurations on a single VPN server.
    • Data transport over TCP (HTTPS) or UDP (DTLS or ESP).
    • Keepalive and Dead Peer Detection on both HTTPS and DTLS.
    • Automatic update of VPN server list / configuration.
    • Roaming support, allowing reconnection when the local IP address changes.
    • Run without root privileges (see here).
    • Support for "Cisco Secure Desktop" (see here), Juniper TNCC (see here), and "GlobalProtect HIP report" (see here).
    • Graphical connection tools for various environments (see here).
     openconnect-8.05/www/tpm.xml0000664000076400007640000000474713360376477017737 0ustar00dwoodhoudwoodhou00000000000000

    Trusted Platform Module (TPM) support

    OpenConnect supports the use of private keys secured or "wrapped" by a TPM. Instead of being stored inside the trusted hardware as with typical PKCS#11 keys, the key is encrypted by the TPM and handed back to the user to be saved in a PEM file. Only the same TPM can decrypt the file, and use the private key.

    Use of TPM-wrapped keys is intended to be entirely transparent. OpenConnect will automatically use the TPM when presented with an appropriate PEM file with a TPM-wrapped key.

    When OpenConnect is built with OpenSSL, the appropriate TPM ENGINE must be installed correctly on the system, and OpenConnect will load and use it automatically when appropriate.

    For GnuTLS builds of OpenConnect, it needs to have been built with the appropriate TPM (v1 or v2) support built-in.

    TPM v1

    TPM v1 wrapped keys appear in the form of a PEM file marked with the tag: 

    -----BEGIN TSS KEY BLOB-----
    These files can be created by the create_tpm_key tool which is part of the OpenSSL TPM ENGINE or the tpmtool which is part of the GnuTLS distribution.

    TPM v2

    As from the 8.0 release, OpenConnect supports TPM v2 wrapped keys. These have the PEM tag: 

    -----BEGIN TSS2 PRIVATE KEY-----
    There are two ENGINE implementations for TPM v2 with OpenSSL, based on different TSS libraries.

    openssl_tpm2_engine is based on IBM's TPM 2.0 TSS, while tss2-tss-engine uses the Intel/TCG stack. OpenConnect can use either ENGINE.

    The GnuTLS build of OpenConnect can use either TSS library.

    Older keys from openssl_tpm2_engine may have the tag: 

    -----BEGIN TSS2 KEY BLOB-----

    This format is also supported by the GnuTLS builds of OpenConnect.     openconnect-8.05/www/charset.xml0000664000076400007640000000360512727726520020552 0ustar00dwoodhoudwoodhou00000000000000

    Character set handling

    OpenConnect development started in 2008 on a modern Linux box, and as such the character set handling was extremely simplistic. It boiled down to the simple but reasonable assumption that "everything is UTF-8, all of the time". This was the case up to and including the OpenConnect 6.00 release in July 2014.

    Since its inception, however, OpenConnect has been ported to various less progressive POSIX-based systems and also to Windows, which has its own particular style of charset insanity. It was therefore necessary to implement some explicit handling for character set conversion.

    The design of this character set handling is that the internal libopenconnect library still handles every string as UTF-8. All input and output of the library remains UTF-8, and all callers of the library are expected to handle them appropriately. For the GNOME and KDE GUI tools, this should come naturally as all strings are expected to be UTF-8 there. For the command-line tool openconnect itself, implemented in main.c, this means that character set conversion is done on all terminal input and output, and all arguments provided on the command line.

    Where it is necessary to open files or interact with the system in other ways using the legacy character set, libopenconnect will do the required conversion transparently. On POSIX systems with legacy non-UTF-8 character sets, it will use iconv to convert, while on Windows it will convert to UTF-16 and use the wide character (so-called "Unicode") APIs instead.

     openconnect-8.05/ntlm.c0000664000076400007640000007735612741644647016714 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include #include #include #include #include #include #include #ifdef HAVE_ALLOCA_H #include #endif #ifndef _WIN32 #include #endif #include "openconnect-internal.h" #define NTLM_SSO_REQ 2 /* SSO type1 packet sent */ #define NTLM_MANUAL 3 /* SSO challenge/response sent or skipped; manual next */ #define NTLM_MANUAL_REQ 4 /* manual type1 packet sent */ #ifdef _WIN32 static int ntlm_sspi(struct openconnect_info *vpninfo, int proxy, struct http_auth_state *auth_state, struct oc_text_buf *buf, const char *challenge) { SECURITY_STATUS status; SecBufferDesc input_desc, output_desc; SecBuffer in_token, out_token; ULONG ret_flags; if (challenge) { int token_len = -EINVAL; input_desc.cBuffers = 1; input_desc.pBuffers = &in_token; input_desc.ulVersion = SECBUFFER_VERSION; in_token.BufferType = SECBUFFER_TOKEN; in_token.pvBuffer = openconnect_base64_decode(&token_len, challenge); if (!in_token.pvBuffer) return token_len; in_token.cbBuffer = token_len; } output_desc.cBuffers = 1; output_desc.pBuffers = &out_token; output_desc.ulVersion = SECBUFFER_VERSION; out_token.BufferType = SECBUFFER_TOKEN; out_token.cbBuffer = 0; out_token.pvBuffer = NULL; status = InitializeSecurityContextW(&auth_state->ntlm_sspi_cred, challenge ? &auth_state->ntlm_sspi_ctx : NULL, (SEC_WCHAR *)L"", ISC_REQ_ALLOCATE_MEMORY | ISC_REQ_CONFIDENTIALITY | ISC_REQ_REPLAY_DETECT | ISC_REQ_CONNECTION, 0, SECURITY_NETWORK_DREP, challenge ? &input_desc : NULL, 0, &auth_state->ntlm_sspi_ctx, &output_desc, &ret_flags, NULL); if (status != SEC_E_OK && status != SEC_I_CONTINUE_NEEDED) { vpn_progress(vpninfo, PRG_ERR, _("InitializeSecurityContext() failed: %lx\n"), status); return -EIO; } buf_append(buf, "%sAuthorization: NTLM ", proxy ? "Proxy-" : ""); buf_append_base64(buf, out_token.pvBuffer, out_token.cbBuffer); buf_append(buf, "\r\n"); FreeContextBuffer(out_token.pvBuffer); return 0; } static int ntlm_helper_spawn(struct openconnect_info *vpninfo, int proxy, struct http_auth_state *auth_state, struct oc_text_buf *buf) { SECURITY_STATUS status; int ret; status = AcquireCredentialsHandleW(NULL, (SEC_WCHAR *)L"NTLM", SECPKG_CRED_OUTBOUND, NULL, NULL, NULL, NULL, &auth_state->ntlm_sspi_cred, NULL); if (status != SEC_E_OK) { vpn_progress(vpninfo, PRG_ERR, _("AcquireCredentialsHandle() failed: %lx\n"), status); return -EIO; } ret = ntlm_sspi(vpninfo, proxy, auth_state, buf, NULL); if (ret) FreeCredentialsHandle(&auth_state->ntlm_sspi_cred); return ret; } static int ntlm_helper_challenge(struct openconnect_info *vpninfo, int proxy, struct http_auth_state *auth_state, struct oc_text_buf *buf) { return ntlm_sspi(vpninfo, proxy, auth_state, buf, auth_state->challenge); } void cleanup_ntlm_auth(struct openconnect_info *vpninfo, struct http_auth_state *auth_state) { if (auth_state->state == NTLM_SSO_REQ) { FreeCredentialsHandle(&auth_state->ntlm_sspi_cred); DeleteSecurityContext(&auth_state->ntlm_sspi_ctx); } } #else /* !_WIN32 */ static int ntlm_helper_spawn(struct openconnect_info *vpninfo, int proxy, struct http_auth_state *auth_state, struct oc_text_buf *buf) { char *username; int pipefd[2]; pid_t pid; char helperbuf[4096]; int len; if (access("/usr/bin/ntlm_auth", X_OK)) return -errno; username = vpninfo->proxy_user; if (!username) username = getenv("NTLMUSER"); if (!username) username = getenv("USER"); if (!username) return -EINVAL; #ifdef SOCK_CLOEXEC if (socketpair(AF_UNIX, SOCK_STREAM | SOCK_CLOEXEC, 0, pipefd)) #endif { if (socketpair(AF_UNIX, SOCK_STREAM, 0, pipefd)) return -errno; set_fd_cloexec(pipefd[0]); set_fd_cloexec(pipefd[1]); } pid = fork(); if (pid == -1) return -errno; if (!pid) { int i; char *p; const char *argv[9]; /* Fork again to detach grandchild */ if (fork()) exit(1); close(pipefd[1]); /* The duplicated fd does not have O_CLOEXEC */ dup2(pipefd[0], 0); dup2(pipefd[0], 1); /* Should we leave stderr open? */ for (i = 3; i < 1024 ; i++) close(i); i = 0; argv[i++] = "/usr/bin/ntlm_auth"; argv[i++] = "--helper-protocol"; argv[i++] = "ntlmssp-client-1"; argv[i++] = "--use-cached-creds"; argv[i++] = "--username"; p = strchr(username, '\\'); if (p) { argv[i++] = p+1; argv[i++] = "--domain"; argv[i++] = strndup(username, p - username); } else argv[i++] = username; argv[i++] = NULL; execv(argv[0], (char **)argv); exit(1); } waitpid(pid, NULL, 0); close(pipefd[0]); if (write(pipefd[1], "YR\n", 3) != 3) { close(pipefd[1]); return -EIO; } len = read(pipefd[1], helperbuf, sizeof(helperbuf)); if (len < 4 || helperbuf[0] != 'Y' || helperbuf[1] != 'R' || helperbuf[2] != ' ' || helperbuf[len - 1] != '\n') { close(pipefd[1]); return -EIO; } helperbuf[len - 1] = 0; buf_append(buf, "%sAuthorization: NTLM %s\r\n", proxy ? "Proxy-" : "", helperbuf + 3); auth_state->ntlm_helper_fd = pipefd[1]; return 0; } static int ntlm_helper_challenge(struct openconnect_info *vpninfo, int proxy, struct http_auth_state *auth_state, struct oc_text_buf *buf) { char helperbuf[4096]; int len; if (!auth_state->challenge || write(auth_state->ntlm_helper_fd, "TT ", 3) != 3 || write(auth_state->ntlm_helper_fd, auth_state->challenge, strlen(auth_state->challenge)) != strlen(auth_state->challenge) || write(auth_state->ntlm_helper_fd, "\n", 1) != 1) { err: vpn_progress(vpninfo, PRG_ERR, _("Error communicating with ntlm_auth helper\n")); close(auth_state->ntlm_helper_fd); auth_state->ntlm_helper_fd = -1; return -EAGAIN; } len = read(auth_state->ntlm_helper_fd, helperbuf, sizeof(helperbuf)); /* Accept both 'KK' and 'AF'. It should be the latter but see https://bugzilla.samba.org/show_bug.cgi?id=10691 */ if (len < 4 || (!(helperbuf[0] == 'K' && helperbuf[1] == 'K') && !(helperbuf[0] == 'A' && helperbuf[1] == 'F')) || helperbuf[2] != ' ' || helperbuf[len - 1] != '\n') { goto err; } helperbuf[len - 1] = 0; buf_append(buf, "%sAuthorization: NTLM %s\r\n", proxy ? "Proxy-" : "", helperbuf + 3); if (proxy) vpn_progress(vpninfo, PRG_INFO, _("Attempting HTTP NTLM authentication to proxy (single-sign-on)\n")); else vpn_progress(vpninfo, PRG_INFO, _("Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n"), vpninfo->hostname); return 0; } void cleanup_ntlm_auth(struct openconnect_info *vpninfo, struct http_auth_state *auth_state) { if (auth_state->state == NTLM_SSO_REQ) { close(auth_state->ntlm_helper_fd); auth_state->ntlm_helper_fd = -1; } } #endif /* !_WIN32 */ /* * NTLM implementation taken from libsoup / Evolution Data Server * Copyright (C) 2007 Red Hat, Inc. * Copyright (C) 1999-2008 Novell, Inc. (www.novell.com) */ /* DES */ typedef uint32_t DES_KS[16][2]; /* Single-key DES key schedule */ /* * MD4 encoder. (The one everyone else uses is not GPL-compatible; * this is a reimplementation from spec.) This doesn't need to be * efficient for our purposes, although it would be nice to fix * it to not malloc()... */ #define F(X,Y,Z) ( ((X)&(Y)) | ((~(X))&(Z)) ) #define G(X,Y,Z) ( ((X)&(Y)) | ((X)&(Z)) | ((Y)&(Z)) ) #define H(X,Y,Z) ( (X)^(Y)^(Z) ) #define ROT(val, n) ( ((val) << (n)) | ((val) >> (32 - (n))) ) static int md4sum (struct oc_text_buf *buf, unsigned char digest[16]) { int nbytes = buf->pos; unsigned char *M; uint32_t A, B, C, D, AA, BB, CC, DD, X[16]; int pbytes, nbits = nbytes * 8, i, j; /* There is *always* padding of at least one bit. */ pbytes = ((119 - (nbytes % 64)) % 64) + 1; if (buf_ensure_space (buf, pbytes + 8)) return -ENOMEM; M = (void *)buf->data; memset (M + nbytes, 0, pbytes + 8); M[nbytes] = 0x80; store_le32(&M[nbytes + pbytes], nbits); A = 0x67452301; B = 0xEFCDAB89; C = 0x98BADCFE; D = 0x10325476; for (i = 0; i < nbytes + pbytes + 8; i += 64) { for (j = 0; j < 16; j++) X[j] = load_le32(&M[i + j * 4]); AA = A; BB = B; CC = C; DD = D; A = ROT (A + F (B, C, D) + X[0], 3); D = ROT (D + F (A, B, C) + X[1], 7); C = ROT (C + F (D, A, B) + X[2], 11); B = ROT (B + F (C, D, A) + X[3], 19); A = ROT (A + F (B, C, D) + X[4], 3); D = ROT (D + F (A, B, C) + X[5], 7); C = ROT (C + F (D, A, B) + X[6], 11); B = ROT (B + F (C, D, A) + X[7], 19); A = ROT (A + F (B, C, D) + X[8], 3); D = ROT (D + F (A, B, C) + X[9], 7); C = ROT (C + F (D, A, B) + X[10], 11); B = ROT (B + F (C, D, A) + X[11], 19); A = ROT (A + F (B, C, D) + X[12], 3); D = ROT (D + F (A, B, C) + X[13], 7); C = ROT (C + F (D, A, B) + X[14], 11); B = ROT (B + F (C, D, A) + X[15], 19); A = ROT (A + G (B, C, D) + X[0] + 0x5A827999, 3); D = ROT (D + G (A, B, C) + X[4] + 0x5A827999, 5); C = ROT (C + G (D, A, B) + X[8] + 0x5A827999, 9); B = ROT (B + G (C, D, A) + X[12] + 0x5A827999, 13); A = ROT (A + G (B, C, D) + X[1] + 0x5A827999, 3); D = ROT (D + G (A, B, C) + X[5] + 0x5A827999, 5); C = ROT (C + G (D, A, B) + X[9] + 0x5A827999, 9); B = ROT (B + G (C, D, A) + X[13] + 0x5A827999, 13); A = ROT (A + G (B, C, D) + X[2] + 0x5A827999, 3); D = ROT (D + G (A, B, C) + X[6] + 0x5A827999, 5); C = ROT (C + G (D, A, B) + X[10] + 0x5A827999, 9); B = ROT (B + G (C, D, A) + X[14] + 0x5A827999, 13); A = ROT (A + G (B, C, D) + X[3] + 0x5A827999, 3); D = ROT (D + G (A, B, C) + X[7] + 0x5A827999, 5); C = ROT (C + G (D, A, B) + X[11] + 0x5A827999, 9); B = ROT (B + G (C, D, A) + X[15] + 0x5A827999, 13); A = ROT (A + H (B, C, D) + X[0] + 0x6ED9EBA1, 3); D = ROT (D + H (A, B, C) + X[8] + 0x6ED9EBA1, 9); C = ROT (C + H (D, A, B) + X[4] + 0x6ED9EBA1, 11); B = ROT (B + H (C, D, A) + X[12] + 0x6ED9EBA1, 15); A = ROT (A + H (B, C, D) + X[2] + 0x6ED9EBA1, 3); D = ROT (D + H (A, B, C) + X[10] + 0x6ED9EBA1, 9); C = ROT (C + H (D, A, B) + X[6] + 0x6ED9EBA1, 11); B = ROT (B + H (C, D, A) + X[14] + 0x6ED9EBA1, 15); A = ROT (A + H (B, C, D) + X[1] + 0x6ED9EBA1, 3); D = ROT (D + H (A, B, C) + X[9] + 0x6ED9EBA1, 9); C = ROT (C + H (D, A, B) + X[5] + 0x6ED9EBA1, 11); B = ROT (B + H (C, D, A) + X[13] + 0x6ED9EBA1, 15); A = ROT (A + H (B, C, D) + X[3] + 0x6ED9EBA1, 3); D = ROT (D + H (A, B, C) + X[11] + 0x6ED9EBA1, 9); C = ROT (C + H (D, A, B) + X[7] + 0x6ED9EBA1, 11); B = ROT (B + H (C, D, A) + X[15] + 0x6ED9EBA1, 15); A += AA; B += BB; C += CC; D += DD; } store_le32(digest, A); store_le32(digest + 4, B); store_le32(digest + 8, C); store_le32(digest + 12, D); return 0; } /* Public domain DES implementation from Phil Karn */ static const uint32_t Spbox[8][64] = { { 0x01010400, 0x00000000, 0x00010000, 0x01010404, 0x01010004, 0x00010404, 0x00000004, 0x00010000, 0x00000400, 0x01010400, 0x01010404, 0x00000400, 0x01000404, 0x01010004, 0x01000000, 0x00000004, 0x00000404, 0x01000400, 0x01000400, 0x00010400, 0x00010400, 0x01010000, 0x01010000, 0x01000404, 0x00010004, 0x01000004, 0x01000004, 0x00010004, 0x00000000, 0x00000404, 0x00010404, 0x01000000, 0x00010000, 0x01010404, 0x00000004, 0x01010000, 0x01010400, 0x01000000, 0x01000000, 0x00000400, 0x01010004, 0x00010000, 0x00010400, 0x01000004, 0x00000400, 0x00000004, 0x01000404, 0x00010404, 0x01010404, 0x00010004, 0x01010000, 0x01000404, 0x01000004, 0x00000404, 0x00010404, 0x01010400, 0x00000404, 0x01000400, 0x01000400, 0x00000000, 0x00010004, 0x00010400, 0x00000000, 0x01010004 }, { 0x80108020, 0x80008000, 0x00008000, 0x00108020, 0x00100000, 0x00000020, 0x80100020, 0x80008020, 0x80000020, 0x80108020, 0x80108000, 0x80000000, 0x80008000, 0x00100000, 0x00000020, 0x80100020, 0x00108000, 0x00100020, 0x80008020, 0x00000000, 0x80000000, 0x00008000, 0x00108020, 0x80100000, 0x00100020, 0x80000020, 0x00000000, 0x00108000, 0x00008020, 0x80108000, 0x80100000, 0x00008020, 0x00000000, 0x00108020, 0x80100020, 0x00100000, 0x80008020, 0x80100000, 0x80108000, 0x00008000, 0x80100000, 0x80008000, 0x00000020, 0x80108020, 0x00108020, 0x00000020, 0x00008000, 0x80000000, 0x00008020, 0x80108000, 0x00100000, 0x80000020, 0x00100020, 0x80008020, 0x80000020, 0x00100020, 0x00108000, 0x00000000, 0x80008000, 0x00008020, 0x80000000, 0x80100020, 0x80108020, 0x00108000 }, { 0x00000208, 0x08020200, 0x00000000, 0x08020008, 0x08000200, 0x00000000, 0x00020208, 0x08000200, 0x00020008, 0x08000008, 0x08000008, 0x00020000, 0x08020208, 0x00020008, 0x08020000, 0x00000208, 0x08000000, 0x00000008, 0x08020200, 0x00000200, 0x00020200, 0x08020000, 0x08020008, 0x00020208, 0x08000208, 0x00020200, 0x00020000, 0x08000208, 0x00000008, 0x08020208, 0x00000200, 0x08000000, 0x08020200, 0x08000000, 0x00020008, 0x00000208, 0x00020000, 0x08020200, 0x08000200, 0x00000000, 0x00000200, 0x00020008, 0x08020208, 0x08000200, 0x08000008, 0x00000200, 0x00000000, 0x08020008, 0x08000208, 0x00020000, 0x08000000, 0x08020208, 0x00000008, 0x00020208, 0x00020200, 0x08000008, 0x08020000, 0x08000208, 0x00000208, 0x08020000, 0x00020208, 0x00000008, 0x08020008, 0x00020200 }, { 0x00802001, 0x00002081, 0x00002081, 0x00000080, 0x00802080, 0x00800081, 0x00800001, 0x00002001, 0x00000000, 0x00802000, 0x00802000, 0x00802081, 0x00000081, 0x00000000, 0x00800080, 0x00800001, 0x00000001, 0x00002000, 0x00800000, 0x00802001, 0x00000080, 0x00800000, 0x00002001, 0x00002080, 0x00800081, 0x00000001, 0x00002080, 0x00800080, 0x00002000, 0x00802080, 0x00802081, 0x00000081, 0x00800080, 0x00800001, 0x00802000, 0x00802081, 0x00000081, 0x00000000, 0x00000000, 0x00802000, 0x00002080, 0x00800080, 0x00800081, 0x00000001, 0x00802001, 0x00002081, 0x00002081, 0x00000080, 0x00802081, 0x00000081, 0x00000001, 0x00002000, 0x00800001, 0x00002001, 0x00802080, 0x00800081, 0x00002001, 0x00002080, 0x00800000, 0x00802001, 0x00000080, 0x00800000, 0x00002000, 0x00802080 }, { 0x00000100, 0x02080100, 0x02080000, 0x42000100, 0x00080000, 0x00000100, 0x40000000, 0x02080000, 0x40080100, 0x00080000, 0x02000100, 0x40080100, 0x42000100, 0x42080000, 0x00080100, 0x40000000, 0x02000000, 0x40080000, 0x40080000, 0x00000000, 0x40000100, 0x42080100, 0x42080100, 0x02000100, 0x42080000, 0x40000100, 0x00000000, 0x42000000, 0x02080100, 0x02000000, 0x42000000, 0x00080100, 0x00080000, 0x42000100, 0x00000100, 0x02000000, 0x40000000, 0x02080000, 0x42000100, 0x40080100, 0x02000100, 0x40000000, 0x42080000, 0x02080100, 0x40080100, 0x00000100, 0x02000000, 0x42080000, 0x42080100, 0x00080100, 0x42000000, 0x42080100, 0x02080000, 0x00000000, 0x40080000, 0x42000000, 0x00080100, 0x02000100, 0x40000100, 0x00080000, 0x00000000, 0x40080000, 0x02080100, 0x40000100 }, { 0x20000010, 0x20400000, 0x00004000, 0x20404010, 0x20400000, 0x00000010, 0x20404010, 0x00400000, 0x20004000, 0x00404010, 0x00400000, 0x20000010, 0x00400010, 0x20004000, 0x20000000, 0x00004010, 0x00000000, 0x00400010, 0x20004010, 0x00004000, 0x00404000, 0x20004010, 0x00000010, 0x20400010, 0x20400010, 0x00000000, 0x00404010, 0x20404000, 0x00004010, 0x00404000, 0x20404000, 0x20000000, 0x20004000, 0x00000010, 0x20400010, 0x00404000, 0x20404010, 0x00400000, 0x00004010, 0x20000010, 0x00400000, 0x20004000, 0x20000000, 0x00004010, 0x20000010, 0x20404010, 0x00404000, 0x20400000, 0x00404010, 0x20404000, 0x00000000, 0x20400010, 0x00000010, 0x00004000, 0x20400000, 0x00404010, 0x00004000, 0x00400010, 0x20004010, 0x00000000, 0x20404000, 0x20000000, 0x00400010, 0x20004010 }, { 0x00200000, 0x04200002, 0x04000802, 0x00000000, 0x00000800, 0x04000802, 0x00200802, 0x04200800, 0x04200802, 0x00200000, 0x00000000, 0x04000002, 0x00000002, 0x04000000, 0x04200002, 0x00000802, 0x04000800, 0x00200802, 0x00200002, 0x04000800, 0x04000002, 0x04200000, 0x04200800, 0x00200002, 0x04200000, 0x00000800, 0x00000802, 0x04200802, 0x00200800, 0x00000002, 0x04000000, 0x00200800, 0x04000000, 0x00200800, 0x00200000, 0x04000802, 0x04000802, 0x04200002, 0x04200002, 0x00000002, 0x00200002, 0x04000000, 0x04000800, 0x00200000, 0x04200800, 0x00000802, 0x00200802, 0x04200800, 0x00000802, 0x04000002, 0x04200802, 0x04200000, 0x00200800, 0x00000000, 0x00000002, 0x04200802, 0x00000000, 0x00200802, 0x04200000, 0x00000800, 0x04000002, 0x04000800, 0x00000800, 0x00200002 }, { 0x10001040, 0x00001000, 0x00040000, 0x10041040, 0x10000000, 0x10001040, 0x00000040, 0x10000000, 0x00040040, 0x10040000, 0x10041040, 0x00041000, 0x10041000, 0x00041040, 0x00001000, 0x00000040, 0x10040000, 0x10000040, 0x10001000, 0x00001040, 0x00041000, 0x00040040, 0x10040040, 0x10041000, 0x00001040, 0x00000000, 0x00000000, 0x10040040, 0x10000040, 0x10001000, 0x00041040, 0x00040000, 0x00041040, 0x00040000, 0x10041000, 0x00001000, 0x00000040, 0x10040040, 0x00001000, 0x00041040, 0x10001000, 0x00000040, 0x10000040, 0x10040000, 0x10040040, 0x10000000, 0x00040000, 0x10001040, 0x00000000, 0x10041040, 0x00040040, 0x10000040, 0x10040000, 0x10001000, 0x10001040, 0x00000000, 0x10041040, 0x00041000, 0x00041000, 0x00001040, 0x00001040, 0x00040040, 0x10000000, 0x10041000 } }; #undef F #define F(l,r,key){\ work = ((r >> 4) | (r << 28)) ^ key[0];\ l ^= Spbox[6][work & 0x3f];\ l ^= Spbox[4][(work >> 8) & 0x3f];\ l ^= Spbox[2][(work >> 16) & 0x3f];\ l ^= Spbox[0][(work >> 24) & 0x3f];\ work = r ^ key[1];\ l ^= Spbox[7][work & 0x3f];\ l ^= Spbox[5][(work >> 8) & 0x3f];\ l ^= Spbox[3][(work >> 16) & 0x3f];\ l ^= Spbox[1][(work >> 24) & 0x3f];\ } /* Encrypt or decrypt a block of data in ECB mode */ static void des (uint32_t ks[16][2], unsigned char block[8]) { uint32_t left, right, work; /* Read input block and place in left/right in big-endian order */ left = load_be32(block); right = load_be32(block + 4); /* Hoey's clever initial permutation algorithm, from Outerbridge * (see Schneier p 478) * * The convention here is the same as Outerbridge: rotate each * register left by 1 bit, i.e., so that "left" contains permuted * input bits 2, 3, 4, ... 1 and "right" contains 33, 34, 35, ... 32 * (using origin-1 numbering as in the FIPS). This allows us to avoid * one of the two rotates that would otherwise be required in each of * the 16 rounds. */ work = ((left >> 4) ^ right) & 0x0f0f0f0f; right ^= work; left ^= work << 4; work = ((left >> 16) ^ right) & 0xffff; right ^= work; left ^= work << 16; work = ((right >> 2) ^ left) & 0x33333333; left ^= work; right ^= (work << 2); work = ((right >> 8) ^ left) & 0xff00ff; left ^= work; right ^= (work << 8); right = (right << 1) | (right >> 31); work = (left ^ right) & 0xaaaaaaaa; left ^= work; right ^= work; left = (left << 1) | (left >> 31); /* Now do the 16 rounds */ F (left,right,ks[0]); F (right,left,ks[1]); F (left,right,ks[2]); F (right,left,ks[3]); F (left,right,ks[4]); F (right,left,ks[5]); F (left,right,ks[6]); F (right,left,ks[7]); F (left,right,ks[8]); F (right,left,ks[9]); F (left,right,ks[10]); F (right,left,ks[11]); F (left,right,ks[12]); F (right,left,ks[13]); F (left,right,ks[14]); F (right,left,ks[15]); /* Inverse permutation, also from Hoey via Outerbridge and Schneier */ right = (right << 31) | (right >> 1); work = (left ^ right) & 0xaaaaaaaa; left ^= work; right ^= work; left = (left >> 1) | (left << 31); work = ((left >> 8) ^ right) & 0xff00ff; right ^= work; left ^= work << 8; work = ((left >> 2) ^ right) & 0x33333333; right ^= work; left ^= work << 2; work = ((right >> 16) ^ left) & 0xffff; left ^= work; right ^= work << 16; work = ((right >> 4) ^ left) & 0x0f0f0f0f; left ^= work; right ^= work << 4; /* Put the block back into the user's buffer with final swap */ store_be32(block, right); store_be32(block + 4, left); } /* Key schedule-related tables from FIPS-46 */ /* permuted choice table (key) */ static const unsigned char pc1[] = { 57, 49, 41, 33, 25, 17, 9, 1, 58, 50, 42, 34, 26, 18, 10, 2, 59, 51, 43, 35, 27, 19, 11, 3, 60, 52, 44, 36, 63, 55, 47, 39, 31, 23, 15, 7, 62, 54, 46, 38, 30, 22, 14, 6, 61, 53, 45, 37, 29, 21, 13, 5, 28, 20, 12, 4 }; /* number left rotations of pc1 */ static const unsigned char totrot[] = { 1,2,4,6,8,10,12,14,15,17,19,21,23,25,27,28 }; /* permuted choice key (table) */ static const unsigned char pc2[] = { 14, 17, 11, 24, 1, 5, 3, 28, 15, 6, 21, 10, 23, 19, 12, 4, 26, 8, 16, 7, 27, 20, 13, 2, 41, 52, 31, 37, 47, 55, 30, 40, 51, 45, 33, 48, 44, 49, 39, 56, 34, 53, 46, 42, 50, 36, 29, 32 }; /* End of DES-defined tables */ /* bit 0 is left-most in byte */ static const int bytebit[] = { 0200,0100,040,020,010,04,02,01 }; /* Generate key schedule for encryption or decryption * depending on the value of "decrypt" */ static void deskey (DES_KS k, unsigned char *key, int decrypt) { unsigned char pc1m[56]; /* place to modify pc1 into */ unsigned char pcr[56]; /* place to rotate pc1 into */ register int i,j,l; int m; unsigned char ks[8]; for (j=0; j<56; j++) { /* convert pc1 to bits of key */ l=pc1[j]-1; /* integer bit location */ m = l & 07; /* find bit */ pc1m[j]=(key[l>>3] & /* find which key byte l is in */ bytebit[m]) /* and which bit of that byte */ ? 1 : 0; /* and store 1-bit result */ } for (i=0; i<16; i++) { /* key chunk for each iteration */ memset (ks,0,sizeof (ks)); /* Clear key schedule */ for (j=0; j<56; j++) /* rotate pc1 the right amount */ pcr[j] = pc1m[(l = j + totrot[decrypt? 15 - i : i]) < (j < 28? 28 : 56) ? l: l - 28]; /* rotate left and right halves independently */ for (j=0; j<48; j++){ /* select bits individually */ /* check bit that goes to ks[j] */ if (pcr[pc2[j]-1]) { /* mask it in if it's there */ l= j % 6; ks[j / 6] |= bytebit[l] >> 2; } } /* Now convert to packed odd/even interleaved form */ k[i][0] = ((uint32_t) ks[0] << 24) | ((uint32_t) ks[2] << 16) | ((uint32_t) ks[4] << 8) | ((uint32_t) ks[6]); k[i][1] = ((uint32_t) ks[1] << 24) | ((uint32_t) ks[3] << 16) | ((uint32_t) ks[5] << 8) | ((uint32_t) ks[7]); } } #define HIKEYBITS(k,s) ((k[(s) / 8] << ((s) % 8)) & 0xFF) #define LOKEYBITS(k,s) (k[(s) / 8 + 1] >> (8 - (s) % 8)) /* DES utils */ /* Set up a key schedule based on a 56bit key */ static void setup_schedule (const unsigned char *key_56, DES_KS ks) { unsigned char key[8]; int i, c, bit; for (i = 0; i < 8; i++) { key[i] = HIKEYBITS (key_56, i * 7); /* Mask in the low bits only if they're used. It doesn't * matter if we get an unwanted bit 0; it's going to be * overwritten with parity anyway. */ if (i && i < 7) key[i] |= LOKEYBITS(key_56, i * 7); /* Fix parity */ for (c = bit = 0; bit < 8; bit++) if (key[i] & (1 << bit)) c++; if (!(c & 1)) key[i] ^= 0x01; } deskey (ks, key, 0); } #define LM_PASSWORD_MAGIC "\x4B\x47\x53\x21\x40\x23\x24\x25" \ "\x4B\x47\x53\x21\x40\x23\x24\x25" \ "\x00\x00\x00\x00\x00" static void ntlm_lanmanager_hash (const char *password, char hash[21]) { unsigned char lm_password[15]; DES_KS ks; int i; for (i = 0; i < 14 && password[i]; i++) lm_password[i] = toupper ((unsigned char) password[i]); for (; i < 15; i++) lm_password[i] = '\0'; memcpy (hash, LM_PASSWORD_MAGIC, 21); setup_schedule (lm_password, ks); des (ks, (unsigned char *) hash); setup_schedule (lm_password + 7, ks); des (ks, (unsigned char *) hash + 8); memset(lm_password, 0, sizeof(lm_password)); } static int ntlm_nt_hash (const char *pass, char hash[21]) { struct oc_text_buf *utf16pass = buf_alloc(); int ret; /* Preallocate just to ensure md4sum() doesn't have to realloc, which would leave a copy of the password lying around. There is always at least one byte of padding, then 8 bytes of length, and round up to the next multiple of 64. */ ret = buf_ensure_space(utf16pass, ((strlen(pass) * 2) + 1 + 8 + 63) & ~63); if (ret) goto out; ret = buf_append_utf16le(utf16pass, pass); if (ret < 0) goto wipe; ret = buf_error(utf16pass); if (ret) goto wipe; ret = md4sum(utf16pass, (unsigned char *) hash); if (ret) goto wipe; memset(hash + 16, 0, 5); wipe: memset(utf16pass->data, 0, utf16pass->pos); out: buf_free(utf16pass); return 0; } static void ntlm_calc_response (const unsigned char key[21], const unsigned char plaintext[8], unsigned char results[24]) { DES_KS ks; memcpy (results, plaintext, 8); memcpy (results + 8, plaintext, 8); memcpy (results + 16, plaintext, 8); setup_schedule (key, ks); des (ks, results); setup_schedule (key + 7, ks); des (ks, results + 8); setup_schedule (key + 14, ks); des (ks, results + 16); } #define NTLM_CHALLENGE_DOMAIN_OFFSET 12 #define NTLM_CHALLENGE_FLAGS_OFFSET 20 #define NTLM_CHALLENGE_NONCE_OFFSET 24 #define NTLM_RESPONSE_BASE_SIZE 64 #define NTLM_RESPONSE_LM_RESP_OFFSET 12 #define NTLM_RESPONSE_NT_RESP_OFFSET 20 #define NTLM_RESPONSE_DOMAIN_OFFSET 28 #define NTLM_RESPONSE_USER_OFFSET 36 #define NTLM_RESPONSE_HOST_OFFSET 44 #define NTLM_RESPONSE_FLAGS_OFFSET 60 static const char ntlm_response_base[NTLM_RESPONSE_BASE_SIZE] = { 'N', 'T', 'L', 'M', 'S', 'S', 'P', 0x00, 0x03, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x82, 0x01, 0x00, 0x00 }; static void ntlm_set_string_utf8(struct oc_text_buf *buf, int offset, const char *data) { int oldpos = buf->pos; int len = buf_append_utf16le(buf, data); /* Fill in the SecurityBuffer pointing to the string */ store_le16(buf->data + offset, len); /* len */ store_le16(buf->data + offset + 2, len); /* allocated */ store_le32(buf->data + offset + 4, oldpos); /* offset */ } static void ntlm_set_string_binary(struct oc_text_buf *buf, int offset, const void *data, int len) { /* Fill in the SecurityBuffer pointing to the string */ store_le16(buf->data + offset, len); /* len */ store_le16(buf->data + offset + 2, len); /* allocated */ store_le32(buf->data + offset + 4, buf->pos); /* offset */ buf_append_bytes(buf, data, len); } static int ntlm_manual_challenge(struct openconnect_info *vpninfo, int proxy, struct http_auth_state *auth_state, struct oc_text_buf *hdrbuf, const char *domuser, const char *pass) { struct oc_text_buf *resp; char *user; unsigned char nonce[8], hash[21], lm_resp[24], nt_resp[24]; unsigned char *token; int token_len = -EINVAL; int ntlmver; if (!auth_state->challenge) return -EINVAL; if (ntlm_nt_hash (pass, (char *) hash)) return -EINVAL; token = openconnect_base64_decode(&token_len, auth_state->challenge); if (!token) return token_len; if (token_len < NTLM_CHALLENGE_NONCE_OFFSET + 8 || token[0] != 'N' || token[1] != 'T' || token[2] != 'L' || token[3] != 'M' || token[4] != 'S' || token[5] != 'S' || token[6] != 'P' || token[7] || token[8] != 2 || token[9] || token[10] || token[11]) { free(token); return -EINVAL; } /* 0x00080000: Negotiate NTLM2 Key */ if (token[NTLM_CHALLENGE_FLAGS_OFFSET + 2] & 8) { /* NTLM2 session response */ struct { uint32_t srv[2]; uint32_t clnt[2]; } sess_nonce; unsigned char digest[16]; ntlmver = 2; if (openconnect_random(sess_nonce.clnt, sizeof(sess_nonce.clnt))) { free(token); return -EIO; } /* LM response is 8-byte client nonce, NUL-padded to 24 */ memcpy (lm_resp, sess_nonce.clnt, 8); memset (lm_resp + 8, 0, 16); /* Session nonce is client nonce + server nonce */ memcpy (sess_nonce.srv, token + NTLM_CHALLENGE_NONCE_OFFSET, 8); /* Take MD5 of session nonce */ if (openconnect_md5(digest, &sess_nonce, sizeof(sess_nonce))) { free(token); return -EIO; } ntlm_calc_response (hash, digest, nt_resp); } else { /* NTLM1 */ ntlmver = 1; memcpy (nonce, token + NTLM_CHALLENGE_NONCE_OFFSET, 8); ntlm_calc_response (hash, nonce, nt_resp); ntlm_lanmanager_hash (pass, (char *) hash); ntlm_calc_response (hash, nonce, lm_resp); } resp = buf_alloc(); buf_append_bytes(resp, ntlm_response_base, sizeof(ntlm_response_base)); if (buf_error(resp)) { free(token); return buf_free(resp); } /* Mask in the NTLM2SESSION flag */ resp->data[NTLM_RESPONSE_FLAGS_OFFSET + 2] = token[NTLM_CHALLENGE_FLAGS_OFFSET + 2] & 8; user = strchr(domuser, '\\'); if (user) { *user = 0; ntlm_set_string_utf8(resp, NTLM_RESPONSE_DOMAIN_OFFSET, domuser); *user = '\\'; user++; } else { int offset = load_le32(token + NTLM_CHALLENGE_DOMAIN_OFFSET + 4); int len = load_le16(token + NTLM_CHALLENGE_DOMAIN_OFFSET); if (!len || offset + len >= token_len) { free(token); buf_free(resp); return -EINVAL; } ntlm_set_string_binary(resp, NTLM_RESPONSE_DOMAIN_OFFSET, token + offset, len); user = (char *)domuser; } ntlm_set_string_utf8(resp, NTLM_RESPONSE_USER_OFFSET, user); ntlm_set_string_utf8(resp, NTLM_RESPONSE_HOST_OFFSET, "UNKNOWN"); ntlm_set_string_binary(resp, NTLM_RESPONSE_LM_RESP_OFFSET, lm_resp, sizeof(lm_resp)); ntlm_set_string_binary(resp, NTLM_RESPONSE_NT_RESP_OFFSET, nt_resp, sizeof(nt_resp)); free(token); if (buf_error(resp)) return buf_free(resp); buf_append(hdrbuf, "%sAuthorization: NTLM ", proxy ? "Proxy-" : ""); buf_append_base64(hdrbuf, resp->data, resp->pos); buf_append(hdrbuf, "\r\n"); buf_free(resp); if (proxy) vpn_progress(vpninfo, PRG_INFO, _("Attempting HTTP NTLMv%d authentication to proxy\n"), ntlmver); else vpn_progress(vpninfo, PRG_INFO, _("Attempting HTTP NTLMv%d authentication to server '%s'\n"), ntlmver, vpninfo->hostname); return 0; } int ntlm_authorization(struct openconnect_info *vpninfo, int proxy, struct http_auth_state *auth_state, struct oc_text_buf *buf) { const char *user, *pass; if (proxy) { user = vpninfo->proxy_user; pass = vpninfo->proxy_pass; } else { user = pass = NULL; } if (auth_state->state == AUTH_AVAILABLE) { auth_state->state = NTLM_MANUAL; /* Don't attempt automatic NTLM auth if we were given a password */ if (!pass && !ntlm_helper_spawn(vpninfo, proxy, auth_state, buf)) { auth_state->state = NTLM_SSO_REQ; return 0; } } if (auth_state->state == NTLM_SSO_REQ) { int ret; ret = ntlm_helper_challenge(vpninfo, proxy, auth_state, buf); /* Clean up after it. We're done here, whether it worked or not */ cleanup_ntlm_auth(vpninfo, auth_state); auth_state->state = NTLM_MANUAL; if (ret == -EAGAIN) { /* Don't let it reset our state when it reconnects */ if (proxy) vpninfo->proxy_close_during_auth = 1; return ret; } if (!ret) return ret; } if (auth_state->state == NTLM_MANUAL && user && pass) { buf_append(buf, "%sAuthorization: NTLM %s\r\n", proxy ? "Proxy-" : "", "TlRMTVNTUAABAAAABYIIAAAAAAAAAAAAAAAAAAAAAAAAAAAAMAAAAAAAAAAwAAAA"); auth_state->state = NTLM_MANUAL_REQ; return 0; } if (auth_state->state == NTLM_MANUAL_REQ && user && pass && !ntlm_manual_challenge(vpninfo, proxy, auth_state, buf, user, pass)) { /* Leave the state as it is. If we come back there'll be no challenge string and we'll fail then. */ return 0; } auth_state->state = AUTH_FAILED; return -EAGAIN; } openconnect-8.05/tun-win32.c0000775000076400007640000002701613352672003017461 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #define WIN32_LEAN_AND_MEAN #include #include #include #include #include #include /* * TAP-Windows support inspired by http://i3.cs.berkeley.edu/ with * permission. */ #define _TAP_IOCTL(nr) CTL_CODE(FILE_DEVICE_UNKNOWN, nr, METHOD_BUFFERED, \ FILE_ANY_ACCESS) #define TAP_IOCTL_GET_MAC _TAP_IOCTL(1) #define TAP_IOCTL_GET_VERSION _TAP_IOCTL(2) #define TAP_IOCTL_GET_MTU _TAP_IOCTL(3) #define TAP_IOCTL_GET_INFO _TAP_IOCTL(4) #define TAP_IOCTL_CONFIG_POINT_TO_POINT _TAP_IOCTL(5) #define TAP_IOCTL_SET_MEDIA_STATUS _TAP_IOCTL(6) #define TAP_IOCTL_CONFIG_DHCP_MASQ _TAP_IOCTL(7) #define TAP_IOCTL_GET_LOG_LINE _TAP_IOCTL(8) #define TAP_IOCTL_CONFIG_DHCP_SET_OPT _TAP_IOCTL(9) #define TAP_IOCTL_CONFIG_TUN _TAP_IOCTL(10) #define TAP_COMPONENT_ID "tap0901" #define DEVTEMPLATE "\\\\.\\Global\\%s.tap" #define NETDEV_GUID "{4D36E972-E325-11CE-BFC1-08002BE10318}" #define CONTROL_KEY "SYSTEM\\CurrentControlSet\\Control\\" #define ADAPTERS_KEY CONTROL_KEY "Class\\" NETDEV_GUID #define CONNECTIONS_KEY CONTROL_KEY "Network\\" NETDEV_GUID typedef intptr_t (tap_callback)(struct openconnect_info *vpninfo, char *idx, char *name); static intptr_t search_taps(struct openconnect_info *vpninfo, tap_callback *cb, int all) { LONG status; HKEY adapters_key, hkey; DWORD len, type; char buf[40]; wchar_t name[40]; char keyname[strlen(CONNECTIONS_KEY) + sizeof(buf) + 1 + strlen("\\Connection")]; int i = 0, found = 0; intptr_t ret = -1; struct oc_text_buf *namebuf = buf_alloc(); status = RegOpenKeyExA(HKEY_LOCAL_MACHINE, ADAPTERS_KEY, 0, KEY_READ, &adapters_key); if (status) { vpn_progress(vpninfo, PRG_ERR, _("Error accessing registry key for network adapters\n")); return -EIO; } while (1) { len = sizeof(buf); status = RegEnumKeyExA(adapters_key, i++, buf, &len, NULL, NULL, NULL, NULL); if (status) { if (status != ERROR_NO_MORE_ITEMS) ret = -1; break; } snprintf(keyname, sizeof(keyname), "%s\\%s", ADAPTERS_KEY, buf); status = RegOpenKeyExA(HKEY_LOCAL_MACHINE, keyname, 0, KEY_QUERY_VALUE, &hkey); if (status) continue; len = sizeof(buf); status = RegQueryValueExA(hkey, "ComponentId", NULL, &type, (unsigned char *)buf, &len); if (status || type != REG_SZ || strcmp(buf, TAP_COMPONENT_ID)) { RegCloseKey(hkey); continue; } len = sizeof(buf); status = RegQueryValueExA(hkey, "NetCfgInstanceId", NULL, &type, (unsigned char *)buf, &len); RegCloseKey(hkey); if (status || type != REG_SZ) continue; snprintf(keyname, sizeof(keyname), "%s\\%s\\Connection", CONNECTIONS_KEY, buf); status = RegOpenKeyExA(HKEY_LOCAL_MACHINE, keyname, 0, KEY_QUERY_VALUE, &hkey); if (status) continue; len = sizeof(name); status = RegQueryValueExW(hkey, L"Name", NULL, &type, (unsigned char *)name, &len); RegCloseKey(hkey); if (status || type != REG_SZ) continue; buf_truncate(namebuf); buf_append_from_utf16le(namebuf, name); if (buf_error(namebuf)) { ret = buf_free(namebuf); namebuf = NULL; break; } found++; if (vpninfo->ifname && strcmp(namebuf->data, vpninfo->ifname)) { vpn_progress(vpninfo, PRG_DEBUG, _("Ignoring non-matching TAP interface \"%s\"\n"), namebuf->data); continue; } ret = cb(vpninfo, buf, namebuf->data); if (!all) break; } RegCloseKey(adapters_key); buf_free(namebuf); if (!found) vpn_progress(vpninfo, PRG_ERR, _("No Windows-TAP adapters found. Is the driver installed?\n")); return ret; } static int get_adapter_index(struct openconnect_info *vpninfo, char *guid) { struct oc_text_buf *buf = buf_alloc(); IP_ADAPTER_INFO *adapter; void *adapters_buf; ULONG idx; DWORD status; int ret = -EINVAL; vpninfo->tun_idx = -1; buf_append_utf16le(buf, "\\device\\tcpip_"); buf_append_utf16le(buf, guid); if (buf_error(buf)) { /* If we didn't manage to malloc for this, we're never * going to manage for GetAdaptersInfo(). Give up. */ return buf_free(buf); } status = GetAdapterIndex((void *)buf->data, &idx); buf_free(buf); if (status == NO_ERROR) { vpninfo->tun_idx = idx; return 0; } else { char *errstr = openconnect__win32_strerror(status); vpn_progress(vpninfo, PRG_INFO, _("GetAdapterIndex() failed: %s\nFalling back to GetAdaptersInfo()\n"), errstr); free(errstr); } idx = 0; status = GetAdaptersInfo(NULL, &idx); if (status != ERROR_BUFFER_OVERFLOW) return -EIO; adapters_buf = malloc(idx); if (!adapters_buf) return -ENOMEM; status = GetAdaptersInfo(adapters_buf, &idx); if (status != NO_ERROR) { char *errstr = openconnect__win32_strerror(status); vpn_progress(vpninfo, PRG_ERR, _("GetAdaptersInfo() failed: %s\n"), errstr); free(errstr); free(adapters_buf); return -EIO; } for (adapter = adapters_buf; adapter; adapter = adapter->Next) { if (!strcmp(adapter->AdapterName, guid)) { vpninfo->tun_idx = adapter->Index; ret = 0; break; } } free(adapters_buf); return ret; } static intptr_t open_tun(struct openconnect_info *vpninfo, char *guid, char *name) { char devname[80]; HANDLE tun_fh; ULONG data[3]; DWORD len; snprintf(devname, sizeof(devname), DEVTEMPLATE, guid); tun_fh = CreateFileA(devname, GENERIC_WRITE|GENERIC_READ, 0, 0, OPEN_EXISTING, FILE_ATTRIBUTE_SYSTEM | FILE_FLAG_OVERLAPPED, 0); if (tun_fh == INVALID_HANDLE_VALUE) { vpn_progress(vpninfo, PRG_ERR, _("Failed to open %s\n"), devname); return -1; } vpn_progress(vpninfo, PRG_DEBUG, _("Opened tun device %s\n"), name); if (!DeviceIoControl(tun_fh, TAP_IOCTL_GET_VERSION, data, sizeof(&data), data, sizeof(data), &len, NULL)) { char *errstr = openconnect__win32_strerror(GetLastError()); vpn_progress(vpninfo, PRG_ERR, _("Failed to obtain TAP driver version: %s\n"), errstr); free(errstr); return -1; } if (data[0] < 9 || (data[0] == 9 && data[1] < 9)) { vpn_progress(vpninfo, PRG_ERR, _("Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n"), data[0], data[1]); return -1; } vpn_progress(vpninfo, PRG_DEBUG, "TAP-Windows driver v%ld.%ld (%ld)\n", data[0], data[1], data[2]); data[0] = inet_addr(vpninfo->ip_info.addr); /* Set network and mask both to 0.0.0.0. It's not about routing; * it just ensures that the TAP driver fakes ARP responses for * *everything* we throw at it, and we can just configure them * as on-link routes. */ data[1] = 0; data[2] = 0; if (!DeviceIoControl(tun_fh, TAP_IOCTL_CONFIG_TUN, data, sizeof(data), data, sizeof(data), &len, NULL)) { char *errstr = openconnect__win32_strerror(GetLastError()); vpn_progress(vpninfo, PRG_ERR, _("Failed to set TAP IP addresses: %s\n"), errstr); free(errstr); return -1; } data[0] = 1; if (!DeviceIoControl(tun_fh, TAP_IOCTL_SET_MEDIA_STATUS, data, sizeof(data[0]), data, sizeof(data[0]), &len, NULL)) { char *errstr = openconnect__win32_strerror(GetLastError()); vpn_progress(vpninfo, PRG_ERR, _("Failed to set TAP media status: %s\n"), errstr); free(errstr); return -1; } if (!vpninfo->ifname) vpninfo->ifname = strdup(name); get_adapter_index(vpninfo, guid); return (intptr_t)tun_fh; } intptr_t os_setup_tun(struct openconnect_info *vpninfo) { return search_taps(vpninfo, open_tun, 0); } int os_read_tun(struct openconnect_info *vpninfo, struct pkt *pkt) { DWORD pkt_size; reread: if (!vpninfo->tun_rd_pending && !ReadFile(vpninfo->tun_fh, pkt->data, pkt->len, &pkt_size, &vpninfo->tun_rd_overlap)) { DWORD err = GetLastError(); if (err == ERROR_IO_PENDING) vpninfo->tun_rd_pending = 1; else if (err == ERROR_OPERATION_ABORTED) { vpninfo->quit_reason = "TAP device aborted"; vpn_progress(vpninfo, PRG_ERR, _("TAP device aborted connectivity. Disconnecting.\n")); return -1; } else { char *errstr = openconnect__win32_strerror(err); vpn_progress(vpninfo, PRG_ERR, _("Failed to read from TAP device: %s\n"), errstr); free(errstr); } return -1; } else if (!GetOverlappedResult(vpninfo->tun_fh, &vpninfo->tun_rd_overlap, &pkt_size, FALSE)) { DWORD err = GetLastError(); if (err != ERROR_IO_INCOMPLETE) { char *errstr = openconnect__win32_strerror(err); vpninfo->tun_rd_pending = 0; vpn_progress(vpninfo, PRG_ERR, _("Failed to complete read from TAP device: %s\n"), errstr); free(errstr); goto reread; } return -1; } /* Either a straight ReadFile() or a subsequent GetOverlappedResult() succeeded... */ vpninfo->tun_rd_pending = 0; pkt->len = pkt_size; return 0; } int os_write_tun(struct openconnect_info *vpninfo, struct pkt *pkt) { DWORD pkt_size = 0; DWORD err; char *errstr; if (WriteFile(vpninfo->tun_fh, pkt->data, pkt->len, &pkt_size, &vpninfo->tun_wr_overlap)) { vpn_progress(vpninfo, PRG_TRACE, _("Wrote %ld bytes to tun\n"), pkt_size); return 0; } err = GetLastError(); if (err == ERROR_IO_PENDING) { /* Theoretically we should let the mainloop handle this blocking, but that's non-trivial and it doesn't ever seem to happen in practice anyway. */ vpn_progress(vpninfo, PRG_TRACE, _("Waiting for tun write...\n")); if (GetOverlappedResult(vpninfo->tun_fh, &vpninfo->tun_wr_overlap, &pkt_size, TRUE)) { vpn_progress(vpninfo, PRG_TRACE, _("Wrote %ld bytes to tun after waiting\n"), pkt_size); return 0; } err = GetLastError(); } errstr = openconnect__win32_strerror(err); vpn_progress(vpninfo, PRG_ERR, _("Failed to write to TAP device: %s\n"), errstr); free(errstr); return -1; } void os_shutdown_tun(struct openconnect_info *vpninfo) { script_config_tun(vpninfo, "disconnect"); CloseHandle(vpninfo->tun_fh); vpninfo->tun_fh = NULL; CloseHandle(vpninfo->tun_rd_overlap.hEvent); vpninfo->tun_rd_overlap.hEvent = NULL; } int openconnect_setup_tun_fd(struct openconnect_info *vpninfo, intptr_t tun_fd) { ULONG data; DWORD len; /* Toggle media status so that network location awareness picks up all the configuration that occurred and properly assigns the network so the user can adjust firewall settings. */ for (data = 0; data <= 1; data++) { if (!DeviceIoControl((HANDLE)tun_fd, TAP_IOCTL_SET_MEDIA_STATUS, &data, sizeof(data), &data, sizeof(data), &len, NULL)) { char *errstr = openconnect__win32_strerror(GetLastError()); vpn_progress(vpninfo, PRG_ERR, _("Failed to set TAP media status: %s\n"), errstr); free(errstr); return -1; } } vpninfo->tun_fh = (HANDLE)tun_fd; vpninfo->tun_rd_overlap.hEvent = CreateEvent(NULL, FALSE, FALSE, NULL); monitor_read_fd(vpninfo, tun); return 0; } int openconnect_setup_tun_script(struct openconnect_info *vpninfo, const char *tun_script) { vpn_progress(vpninfo, PRG_ERR, _("Spawning tunnel scripts is not yet supported on Windows\n")); return -1; } openconnect-8.05/config.rpath0000775000076400007640000004421612727726520020066 0ustar00dwoodhoudwoodhou00000000000000#! /bin/sh # Output a system dependent set of variables, describing how to set the # run time search path of shared libraries in an executable. # # Copyright 1996-2014 Free Software Foundation, Inc. # Taken from GNU libtool, 2001 # Originally by Gordon Matzigkeit , 1996 # # This file is free software; the Free Software Foundation gives # unlimited permission to copy and/or distribute it, with or without # modifications, as long as this notice is preserved. # # The first argument passed to this file is the canonical host specification, # CPU_TYPE-MANUFACTURER-OPERATING_SYSTEM # or # CPU_TYPE-MANUFACTURER-KERNEL-OPERATING_SYSTEM # The environment variables CC, GCC, LDFLAGS, LD, with_gnu_ld # should be set by the caller. # # The set of defined variables is at the end of this script. # Known limitations: # - On IRIX 6.5 with CC="cc", the run time search patch must not be longer # than 256 bytes, otherwise the compiler driver will dump core. The only # known workaround is to choose shorter directory names for the build # directory and/or the installation directory. # All known linkers require a '.a' archive for static linking (except MSVC, # which needs '.lib'). libext=a shrext=.so host="$1" host_cpu=`echo "$host" | sed 's/^\([^-]*\)-\([^-]*\)-\(.*\)$/\1/'` host_vendor=`echo "$host" | sed 's/^\([^-]*\)-\([^-]*\)-\(.*\)$/\2/'` host_os=`echo "$host" | sed 's/^\([^-]*\)-\([^-]*\)-\(.*\)$/\3/'` # Code taken from libtool.m4's _LT_CC_BASENAME. for cc_temp in $CC""; do case $cc_temp in compile | *[\\/]compile | ccache | *[\\/]ccache ) ;; distcc | *[\\/]distcc | purify | *[\\/]purify ) ;; \-*) ;; *) break;; esac done cc_basename=`echo "$cc_temp" | sed -e 's%^.*/%%'` # Code taken from libtool.m4's _LT_COMPILER_PIC. wl= if test "$GCC" = yes; then wl='-Wl,' else case "$host_os" in aix*) wl='-Wl,' ;; mingw* | cygwin* | pw32* | os2* | cegcc*) ;; hpux9* | hpux10* | hpux11*) wl='-Wl,' ;; irix5* | irix6* | nonstopux*) wl='-Wl,' ;; linux* | k*bsd*-gnu | kopensolaris*-gnu) case $cc_basename in ecc*) wl='-Wl,' ;; icc* | ifort*) wl='-Wl,' ;; lf95*) wl='-Wl,' ;; nagfor*) wl='-Wl,-Wl,,' ;; pgcc* | pgf77* | pgf90* | pgf95* | pgfortran*) wl='-Wl,' ;; ccc*) wl='-Wl,' ;; xl* | bgxl* | bgf* | mpixl*) wl='-Wl,' ;; como) wl='-lopt=' ;; *) case `$CC -V 2>&1 | sed 5q` in *Sun\ F* | *Sun*Fortran*) wl= ;; *Sun\ C*) wl='-Wl,' ;; esac ;; esac ;; newsos6) ;; *nto* | *qnx*) ;; osf3* | osf4* | osf5*) wl='-Wl,' ;; rdos*) ;; solaris*) case $cc_basename in f77* | f90* | f95* | sunf77* | sunf90* | sunf95*) wl='-Qoption ld ' ;; *) wl='-Wl,' ;; esac ;; sunos4*) wl='-Qoption ld ' ;; sysv4 | sysv4.2uw2* | sysv4.3*) wl='-Wl,' ;; sysv4*MP*) ;; sysv5* | unixware* | sco3.2v5* | sco5v6* | OpenUNIX*) wl='-Wl,' ;; unicos*) wl='-Wl,' ;; uts4*) ;; esac fi # Code taken from libtool.m4's _LT_LINKER_SHLIBS. hardcode_libdir_flag_spec= hardcode_libdir_separator= hardcode_direct=no hardcode_minus_L=no case "$host_os" in cygwin* | mingw* | pw32* | cegcc*) # FIXME: the MSVC++ port hasn't been tested in a loooong time # When not using gcc, we currently assume that we are using # Microsoft Visual C++. if test "$GCC" != yes; then with_gnu_ld=no fi ;; interix*) # we just hope/assume this is gcc and not c89 (= MSVC++) with_gnu_ld=yes ;; openbsd*) with_gnu_ld=no ;; esac ld_shlibs=yes if test "$with_gnu_ld" = yes; then # Set some defaults for GNU ld with shared library support. These # are reset later if shared libraries are not supported. Putting them # here allows them to be overridden if necessary. # Unlike libtool, we use -rpath here, not --rpath, since the documented # option of GNU ld is called -rpath, not --rpath. hardcode_libdir_flag_spec='${wl}-rpath ${wl}$libdir' case "$host_os" in aix[3-9]*) # On AIX/PPC, the GNU linker is very broken if test "$host_cpu" != ia64; then ld_shlibs=no fi ;; amigaos*) case "$host_cpu" in powerpc) ;; m68k) hardcode_libdir_flag_spec='-L$libdir' hardcode_minus_L=yes ;; esac ;; beos*) if $LD --help 2>&1 | grep ': supported targets:.* elf' > /dev/null; then : else ld_shlibs=no fi ;; cygwin* | mingw* | pw32* | cegcc*) # hardcode_libdir_flag_spec is actually meaningless, as there is # no search path for DLLs. hardcode_libdir_flag_spec='-L$libdir' if $LD --help 2>&1 | grep 'auto-import' > /dev/null; then : else ld_shlibs=no fi ;; haiku*) ;; interix[3-9]*) hardcode_direct=no hardcode_libdir_flag_spec='${wl}-rpath,$libdir' ;; gnu* | linux* | tpf* | k*bsd*-gnu | kopensolaris*-gnu) if $LD --help 2>&1 | grep ': supported targets:.* elf' > /dev/null; then : else ld_shlibs=no fi ;; netbsd*) ;; solaris*) if $LD -v 2>&1 | grep 'BFD 2\.8' > /dev/null; then ld_shlibs=no elif $LD --help 2>&1 | grep ': supported targets:.* elf' > /dev/null; then : else ld_shlibs=no fi ;; sysv5* | sco3.2v5* | sco5v6* | unixware* | OpenUNIX*) case `$LD -v 2>&1` in *\ [01].* | *\ 2.[0-9].* | *\ 2.1[0-5].*) ld_shlibs=no ;; *) if $LD --help 2>&1 | grep ': supported targets:.* elf' > /dev/null; then hardcode_libdir_flag_spec='`test -z "$SCOABSPATH" && echo ${wl}-rpath,$libdir`' else ld_shlibs=no fi ;; esac ;; sunos4*) hardcode_direct=yes ;; *) if $LD --help 2>&1 | grep ': supported targets:.* elf' > /dev/null; then : else ld_shlibs=no fi ;; esac if test "$ld_shlibs" = no; then hardcode_libdir_flag_spec= fi else case "$host_os" in aix3*) # Note: this linker hardcodes the directories in LIBPATH if there # are no directories specified by -L. hardcode_minus_L=yes if test "$GCC" = yes; then # Neither direct hardcoding nor static linking is supported with a # broken collect2. hardcode_direct=unsupported fi ;; aix[4-9]*) if test "$host_cpu" = ia64; then # On IA64, the linker does run time linking by default, so we don't # have to do anything special. aix_use_runtimelinking=no else aix_use_runtimelinking=no # Test if we are trying to use run time linking or normal # AIX style linking. If -brtl is somewhere in LDFLAGS, we # need to do runtime linking. case $host_os in aix4.[23]|aix4.[23].*|aix[5-9]*) for ld_flag in $LDFLAGS; do if (test $ld_flag = "-brtl" || test $ld_flag = "-Wl,-brtl"); then aix_use_runtimelinking=yes break fi done ;; esac fi hardcode_direct=yes hardcode_libdir_separator=':' if test "$GCC" = yes; then case $host_os in aix4.[012]|aix4.[012].*) collect2name=`${CC} -print-prog-name=collect2` if test -f "$collect2name" && \ strings "$collect2name" | grep resolve_lib_name >/dev/null then # We have reworked collect2 : else # We have old collect2 hardcode_direct=unsupported hardcode_minus_L=yes hardcode_libdir_flag_spec='-L$libdir' hardcode_libdir_separator= fi ;; esac fi # Begin _LT_AC_SYS_LIBPATH_AIX. echo 'int main () { return 0; }' > conftest.c ${CC} ${LDFLAGS} conftest.c -o conftest aix_libpath=`dump -H conftest 2>/dev/null | sed -n -e '/Import File Strings/,/^$/ { /^0/ { s/^0 *\(.*\)$/\1/; p; } }'` if test -z "$aix_libpath"; then aix_libpath=`dump -HX64 conftest 2>/dev/null | sed -n -e '/Import File Strings/,/^$/ { /^0/ { s/^0 *\(.*\)$/\1/; p; } }'` fi if test -z "$aix_libpath"; then aix_libpath="/usr/lib:/lib" fi rm -f conftest.c conftest # End _LT_AC_SYS_LIBPATH_AIX. if test "$aix_use_runtimelinking" = yes; then hardcode_libdir_flag_spec='${wl}-blibpath:$libdir:'"$aix_libpath" else if test "$host_cpu" = ia64; then hardcode_libdir_flag_spec='${wl}-R $libdir:/usr/lib:/lib' else hardcode_libdir_flag_spec='${wl}-blibpath:$libdir:'"$aix_libpath" fi fi ;; amigaos*) case "$host_cpu" in powerpc) ;; m68k) hardcode_libdir_flag_spec='-L$libdir' hardcode_minus_L=yes ;; esac ;; bsdi[45]*) ;; cygwin* | mingw* | pw32* | cegcc*) # When not using gcc, we currently assume that we are using # Microsoft Visual C++. # hardcode_libdir_flag_spec is actually meaningless, as there is # no search path for DLLs. hardcode_libdir_flag_spec=' ' libext=lib ;; darwin* | rhapsody*) hardcode_direct=no if { case $cc_basename in ifort*) true;; *) test "$GCC" = yes;; esac; }; then : else ld_shlibs=no fi ;; dgux*) hardcode_libdir_flag_spec='-L$libdir' ;; freebsd2.[01]*) hardcode_direct=yes hardcode_minus_L=yes ;; freebsd* | dragonfly*) hardcode_libdir_flag_spec='-R$libdir' hardcode_direct=yes ;; hpux9*) hardcode_libdir_flag_spec='${wl}+b ${wl}$libdir' hardcode_libdir_separator=: hardcode_direct=yes # hardcode_minus_L: Not really in the search PATH, # but as the default location of the library. hardcode_minus_L=yes ;; hpux10*) if test "$with_gnu_ld" = no; then hardcode_libdir_flag_spec='${wl}+b ${wl}$libdir' hardcode_libdir_separator=: hardcode_direct=yes # hardcode_minus_L: Not really in the search PATH, # but as the default location of the library. hardcode_minus_L=yes fi ;; hpux11*) if test "$with_gnu_ld" = no; then hardcode_libdir_flag_spec='${wl}+b ${wl}$libdir' hardcode_libdir_separator=: case $host_cpu in hppa*64*|ia64*) hardcode_direct=no ;; *) hardcode_direct=yes # hardcode_minus_L: Not really in the search PATH, # but as the default location of the library. hardcode_minus_L=yes ;; esac fi ;; irix5* | irix6* | nonstopux*) hardcode_libdir_flag_spec='${wl}-rpath ${wl}$libdir' hardcode_libdir_separator=: ;; netbsd*) hardcode_libdir_flag_spec='-R$libdir' hardcode_direct=yes ;; newsos6) hardcode_direct=yes hardcode_libdir_flag_spec='${wl}-rpath ${wl}$libdir' hardcode_libdir_separator=: ;; *nto* | *qnx*) ;; openbsd*) if test -f /usr/libexec/ld.so; then hardcode_direct=yes if test -z "`echo __ELF__ | $CC -E - | grep __ELF__`" || test "$host_os-$host_cpu" = "openbsd2.8-powerpc"; then hardcode_libdir_flag_spec='${wl}-rpath,$libdir' else case "$host_os" in openbsd[01].* | openbsd2.[0-7] | openbsd2.[0-7].*) hardcode_libdir_flag_spec='-R$libdir' ;; *) hardcode_libdir_flag_spec='${wl}-rpath,$libdir' ;; esac fi else ld_shlibs=no fi ;; os2*) hardcode_libdir_flag_spec='-L$libdir' hardcode_minus_L=yes ;; osf3*) hardcode_libdir_flag_spec='${wl}-rpath ${wl}$libdir' hardcode_libdir_separator=: ;; osf4* | osf5*) if test "$GCC" = yes; then hardcode_libdir_flag_spec='${wl}-rpath ${wl}$libdir' else # Both cc and cxx compiler support -rpath directly hardcode_libdir_flag_spec='-rpath $libdir' fi hardcode_libdir_separator=: ;; solaris*) hardcode_libdir_flag_spec='-R$libdir' ;; sunos4*) hardcode_libdir_flag_spec='-L$libdir' hardcode_direct=yes hardcode_minus_L=yes ;; sysv4) case $host_vendor in sni) hardcode_direct=yes # is this really true??? ;; siemens) hardcode_direct=no ;; motorola) hardcode_direct=no #Motorola manual says yes, but my tests say they lie ;; esac ;; sysv4.3*) ;; sysv4*MP*) if test -d /usr/nec; then ld_shlibs=yes fi ;; sysv4*uw2* | sysv5OpenUNIX* | sysv5UnixWare7.[01].[10]* | unixware7* | sco3.2v5.0.[024]*) ;; sysv5* | sco3.2v5* | sco5v6*) hardcode_libdir_flag_spec='`test -z "$SCOABSPATH" && echo ${wl}-R,$libdir`' hardcode_libdir_separator=':' ;; uts4*) hardcode_libdir_flag_spec='-L$libdir' ;; *) ld_shlibs=no ;; esac fi # Check dynamic linker characteristics # Code taken from libtool.m4's _LT_SYS_DYNAMIC_LINKER. # Unlike libtool.m4, here we don't care about _all_ names of the library, but # only about the one the linker finds when passed -lNAME. This is the last # element of library_names_spec in libtool.m4, or possibly two of them if the # linker has special search rules. library_names_spec= # the last element of library_names_spec in libtool.m4 libname_spec='lib$name' case "$host_os" in aix3*) library_names_spec='$libname.a' ;; aix[4-9]*) library_names_spec='$libname$shrext' ;; amigaos*) case "$host_cpu" in powerpc*) library_names_spec='$libname$shrext' ;; m68k) library_names_spec='$libname.a' ;; esac ;; beos*) library_names_spec='$libname$shrext' ;; bsdi[45]*) library_names_spec='$libname$shrext' ;; cygwin* | mingw* | pw32* | cegcc*) shrext=.dll library_names_spec='$libname.dll.a $libname.lib' ;; darwin* | rhapsody*) shrext=.dylib library_names_spec='$libname$shrext' ;; dgux*) library_names_spec='$libname$shrext' ;; freebsd[23].*) library_names_spec='$libname$shrext$versuffix' ;; freebsd* | dragonfly*) library_names_spec='$libname$shrext' ;; gnu*) library_names_spec='$libname$shrext' ;; haiku*) library_names_spec='$libname$shrext' ;; hpux9* | hpux10* | hpux11*) case $host_cpu in ia64*) shrext=.so ;; hppa*64*) shrext=.sl ;; *) shrext=.sl ;; esac library_names_spec='$libname$shrext' ;; interix[3-9]*) library_names_spec='$libname$shrext' ;; irix5* | irix6* | nonstopux*) library_names_spec='$libname$shrext' case "$host_os" in irix5* | nonstopux*) libsuff= shlibsuff= ;; *) case $LD in *-32|*"-32 "|*-melf32bsmip|*"-melf32bsmip ") libsuff= shlibsuff= ;; *-n32|*"-n32 "|*-melf32bmipn32|*"-melf32bmipn32 ") libsuff=32 shlibsuff=N32 ;; *-64|*"-64 "|*-melf64bmip|*"-melf64bmip ") libsuff=64 shlibsuff=64 ;; *) libsuff= shlibsuff= ;; esac ;; esac ;; linux*oldld* | linux*aout* | linux*coff*) ;; linux* | k*bsd*-gnu | kopensolaris*-gnu) library_names_spec='$libname$shrext' ;; knetbsd*-gnu) library_names_spec='$libname$shrext' ;; netbsd*) library_names_spec='$libname$shrext' ;; newsos6) library_names_spec='$libname$shrext' ;; *nto* | *qnx*) library_names_spec='$libname$shrext' ;; openbsd*) library_names_spec='$libname$shrext$versuffix' ;; os2*) libname_spec='$name' shrext=.dll library_names_spec='$libname.a' ;; osf3* | osf4* | osf5*) library_names_spec='$libname$shrext' ;; rdos*) ;; solaris*) library_names_spec='$libname$shrext' ;; sunos4*) library_names_spec='$libname$shrext$versuffix' ;; sysv4 | sysv4.3*) library_names_spec='$libname$shrext' ;; sysv4*MP*) library_names_spec='$libname$shrext' ;; sysv5* | sco3.2v5* | sco5v6* | unixware* | OpenUNIX* | sysv4*uw2*) library_names_spec='$libname$shrext' ;; tpf*) library_names_spec='$libname$shrext' ;; uts4*) library_names_spec='$libname$shrext' ;; esac sed_quote_subst='s/\(["`$\\]\)/\\\1/g' escaped_wl=`echo "X$wl" | sed -e 's/^X//' -e "$sed_quote_subst"` shlibext=`echo "$shrext" | sed -e 's,^\.,,'` escaped_libname_spec=`echo "X$libname_spec" | sed -e 's/^X//' -e "$sed_quote_subst"` escaped_library_names_spec=`echo "X$library_names_spec" | sed -e 's/^X//' -e "$sed_quote_subst"` escaped_hardcode_libdir_flag_spec=`echo "X$hardcode_libdir_flag_spec" | sed -e 's/^X//' -e "$sed_quote_subst"` LC_ALL=C sed -e 's/^\([a-zA-Z0-9_]*\)=/acl_cv_\1=/' < * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include "openconnect-internal.h" #define NAME_TAG 0x71 #define NAME_LIST_TAG 0x72 #define KEY_TAG 0x73 #define CHALLENGE_TAG 0x74 #define RESPONSE_TAG 0x75 #define T_RESPONSE_TAG 0x76 #define NO_RESPONSE_TAG 0x77 #define PROPERTY_TAG 0x78 #define VERSION_TAG 0x79 #define IMF_TAG 0x7a #define PUT_INS 0x01 #define DELETE_INS 0x02 #define SET_CODE_INS 0x03 #define RESET_INS 0x04 #define LIST_INS 0xa1 #define CALCULATE_INS 0xa2 #define VALIDATE_INS 0xa3 #define CALCULATE_ALL_INS 0xa4 #define SEND_REMAINING_INS 0xa5 static const unsigned char appselect[] = { 0x00, 0xa4, 0x04, 0x00, 0x07, 0xa0, 0x00, 0x00, 0x05, 0x27, 0x21, 0x01 }; static const unsigned char list_keys[] = { 0x00, LIST_INS, 0x00, 0x00 }; static const unsigned char send_remaining[] = { 0x00, SEND_REMAINING_INS, 0x00, 0x00 }; #ifdef _WIN32 #define scard_error(st) openconnect__win32_strerror(st) #define free_scard_error(str) free(str) #else #define scard_error(st) ((char *)pcsc_stringify_error(st)) #define free_scard_error(str) do { ; } while (0) #endif #ifdef __APPLE__ #include #include #else #include #endif struct oc_pcsc_ctx { SCARDHANDLE pcsc_ctx, pcsc_card; char *yubikey_objname; int yubikey_pw_set; int yubikey_mode; }; static int yubikey_cmd(struct openconnect_info *vpninfo, SCARDHANDLE card, int errlvl, const char *desc, const unsigned char *out, size_t outlen, struct oc_text_buf *buf) { DWORD status; buf_truncate(buf); do { DWORD respsize = 258; if (buf_ensure_space(buf, 258)) return -ENOMEM; status = SCardTransmit (card, SCARD_PCI_T1, out, outlen, NULL, (unsigned char *)&buf->data[buf->pos], &respsize); if (status != SCARD_S_SUCCESS) { char *pcsc_err = scard_error(status); vpn_progress(vpninfo, errlvl, _("Failed to send \"%s\" to ykneo-oath applet: %s\n"), desc, pcsc_err); free_scard_error(pcsc_err); return -EIO; } if (respsize < 2) { vpn_progress(vpninfo, errlvl, _("Invalid short response to \"%s\" from ykneo-oath applet\n"), desc); return -EIO; } buf->pos += respsize - 2; /* Continuation */ out = send_remaining; outlen = sizeof(send_remaining); } while (buf->data[buf->pos] == 0x61); status = load_be16(buf->data + buf->pos); if (status == 0x9000) return 0; vpn_progress(vpninfo, errlvl, _("Failure response to \"%s\": %04x\n"), desc, (unsigned)status); switch (status) { case 0x6a80: return -EINVAL; default: return -EIO; } } static int buf_tlv(struct oc_text_buf *buf, int *loc, unsigned char *type) { int len; int left = buf->pos - *loc; if (left < 2) return -EINVAL; *type = (unsigned char)buf->data[(*loc)++]; len = (unsigned char)buf->data[(*loc)++]; left -= 2; if (len > 0x82) return -EINVAL; else if (len == 0x81) { if (left < 1) return -EINVAL; len = (unsigned char)buf->data[(*loc)++]; left--; } else if (len == 0x82) { if (left < 2) return -EINVAL; len = (unsigned char)buf->data[(*loc)++]; len <<= 8; len = (unsigned char)buf->data[(*loc)++]; left -= 2; } if (left < len) return -EINVAL; return len; } static int select_yubioath_applet(struct openconnect_info *vpninfo, SCARDHANDLE pcsc_card, struct oc_text_buf *buf) { int ret, tlvlen, tlvpos, id_len, chall_len; unsigned char type; unsigned char applet_id[16], challenge[16]; unsigned char *applet_ver; char *pin = NULL; int pin_len = 0; ret = yubikey_cmd(vpninfo, pcsc_card, PRG_DEBUG, _("select applet command"), appselect, sizeof(appselect), buf); if (ret) return ret; tlvpos = 0; tlvlen = buf_tlv(buf, &tlvpos, &type); if (tlvlen < 0 || type != VERSION_TAG || tlvlen != 3) { bad_applet: vpn_progress(vpninfo, PRG_ERR, _("Unrecognised response from ykneo-oath applet\n")); return -EIO; } applet_ver = (void *)&buf->data[tlvpos]; tlvpos += tlvlen; tlvlen = buf_tlv(buf, &tlvpos, &type); if (tlvlen < 0 || type != NAME_TAG || tlvlen > sizeof(applet_id)) goto bad_applet; memcpy(applet_id, &buf->data[tlvpos], tlvlen); id_len = tlvlen; tlvpos += tlvlen; /* Only print this during the first discovery loop */ if (!vpninfo->pcsc) vpn_progress(vpninfo, PRG_INFO, _("Found ykneo-oath applet v%d.%d.%d.\n"), applet_ver[0], applet_ver[1], applet_ver[2]); if (tlvpos != buf->pos) { unsigned char chalresp[7 + SHA1_SIZE + 10]; tlvlen = buf_tlv(buf, &tlvpos, &type); if (tlvlen < 0 || type != CHALLENGE_TAG || tlvlen > sizeof(challenge)) goto bad_applet; memcpy(challenge, &buf->data[tlvpos], tlvlen); chall_len = tlvlen; /* On later invocations, we know there must have been a * successfui authentication in the past. So try the same * hash first, and only retry in the loop on failure. */ if (!vpninfo->pcsc) { struct oc_auth_form f; struct oc_form_opt o; retry_pass: memset(&f, 0, sizeof(f)); f.auth_id = (char *)"yubikey_oath_pin"; f.opts = &o; f.message = (char *)_("PIN required for Yubikey OATH applet"); o.next = NULL; o.type = OC_FORM_OPT_PASSWORD; o.name = (char *)"yubikey_pin"; o.label = (char *)_("Yubikey PIN:"); o._value = NULL; ret = process_auth_form(vpninfo, &f); if (ret) goto out; if (!o._value) { ret = -EPERM; goto out; } if (pin) { memset(pin, 0, pin_len); free(pin); } pin = o._value; pin_len = strlen(pin); /* This *should* be UTF-8 but see the workaround below. */ ret = openconnect_hash_yubikey_password(vpninfo, o._value, pin_len, applet_id, id_len); if (ret) goto out; } retry_hash: if (openconnect_yubikey_chalresp(vpninfo, &challenge, chall_len, chalresp + 7)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to calculate Yubikey unlock response\n")); ret = -EIO; goto out; } chalresp[0] = 0; chalresp[1] = VALIDATE_INS; chalresp[2] = 0; chalresp[3] = 0; chalresp[4] = sizeof(chalresp) - 5; chalresp[5] = RESPONSE_TAG; chalresp[6] = SHA1_SIZE; /* Response is already filled in */ chalresp[7 + SHA1_SIZE] = CHALLENGE_TAG; chalresp[8 + SHA1_SIZE] = 8; memset(chalresp + 9 + SHA1_SIZE, 0xff, 8); ret = yubikey_cmd(vpninfo, pcsc_card, PRG_ERR, _("unlock command"), chalresp, sizeof(chalresp), buf); if (ret == -EINVAL) { memset(vpninfo->yubikey_pwhash, 0, sizeof(vpninfo->yubikey_pwhash)); if (pin) { /* Try working around pre-KitKat PBKDF2 bug discussed at * http://forum.yubico.com/viewtopic.php?f=26&t=1601#p6807 and * http://android-developers.blogspot.se/2013/12/changes-to-secretkeyfactory-api-in.html */ const char *in; char *out; /* Convert the UTF-8 PIN to byte-truncated form in-place */ in = out = pin; while (*in) { int c = get_utf8char(&in); if (c < 0) { /* Screw it. Break out of the loop in such a fashion * that we don't try the 'converted' result. */ in = out; break; } *(out++) = c; } /* If out == in then the string only contained ASCII so * there was no conversion to be done (or was invalid * UTF-8 and hit the error case above). So don't try. */ if (out != in && !openconnect_hash_yubikey_password(vpninfo, pin, out - pin, applet_id, id_len)) { /* We'll have printed with PRG_ERR when the proper * encoding failed. So use PRG_ERR here too. */ vpn_progress(vpninfo, PRG_ERR, _("Trying truncated-char PBKBF2 variant of Yubikey PIN\n")); goto retry_hash; } } goto retry_pass; } } out: free_pass(&pin); return ret; } #ifdef _WIN32 #define reader_len wcslen #else #define SCardListReadersW SCardListReaders #define SCardConnectW SCardConnect #define reader_len strlen #endif int set_yubikey_mode(struct openconnect_info *vpninfo, const char *token_str) { SCARDHANDLE pcsc_ctx, pcsc_card; LONG status; #ifdef _WIN32 wchar_t *readers = NULL, *reader; #else char *readers = NULL, *reader; #endif DWORD readers_size, proto; int ret, tlvlen, tlvpos; struct oc_text_buf *buf = NULL; status = SCardEstablishContext(SCARD_SCOPE_USER, NULL, NULL, &pcsc_ctx); if (status != SCARD_S_SUCCESS) { char *pcsc_err = scard_error(status); vpn_progress(vpninfo, PRG_ERR, _("Failed to establish PC/SC context: %s\n"), pcsc_err); free_scard_error(pcsc_err); return -EIO; } vpn_progress(vpninfo, PRG_TRACE, _("Established PC/SC context\n")); ret = -ENOENT; status = SCardListReadersW(pcsc_ctx, NULL, NULL, &readers_size); if (status != SCARD_S_SUCCESS) { char *pcsc_err = scard_error(status); vpn_progress(vpninfo, PRG_ERR, _("Failed to query reader list: %s\n"), pcsc_err); free_scard_error(pcsc_err); goto out_ctx; } readers = calloc(readers_size, sizeof(readers[0])); if (!readers) goto out_ctx; status = SCardListReadersW(pcsc_ctx, NULL, readers, &readers_size); if (status != SCARD_S_SUCCESS) { char *pcsc_err = scard_error(status); vpn_progress(vpninfo, PRG_ERR, _("Failed to query reader list: %s\n"), pcsc_err); free_scard_error(pcsc_err); goto out_ctx; } buf = buf_alloc(); reader = readers; while (reader[0]) { unsigned char type; #ifdef _WIN32 char *reader_utf8; int reader_len; reader_len = WideCharToMultiByte(CP_UTF8, 0, reader, -1, NULL, 0, NULL, NULL); reader_utf8 = malloc(reader_len); if (!reader_utf8) goto next_reader; WideCharToMultiByte(CP_UTF8, 0, reader, -1, reader_utf8, reader_len, NULL, NULL); #else #define reader_utf8 reader #endif status = SCardConnectW(pcsc_ctx, reader, SCARD_SHARE_SHARED, SCARD_PROTOCOL_T1, &pcsc_card, &proto); if (status != SCARD_S_SUCCESS) { char *pcsc_err = scard_error(status); vpn_progress(vpninfo, PRG_ERR, _("Failed to connect to PC/SC reader '%s': %s\n"), reader_utf8, pcsc_err); free_scard_error(pcsc_err); goto free_reader_utf8; } vpn_progress(vpninfo, PRG_TRACE, _("Connected PC/SC reader '%s'\n"), reader_utf8); status = SCardBeginTransaction(pcsc_card); if (status != SCARD_S_SUCCESS) { char *pcsc_err = scard_error(status); vpn_progress(vpninfo, PRG_ERR, _("Failed to obtain exclusive access to reader '%s': %s\n"), reader_utf8, pcsc_err); free_scard_error(pcsc_err); goto disconnect; } ret = select_yubioath_applet(vpninfo, pcsc_card, buf); if (ret) goto end_trans; ret = yubikey_cmd(vpninfo, pcsc_card, PRG_ERR, _("list keys command"), list_keys, sizeof(list_keys), buf); if (ret) goto end_trans; tlvpos = 0; while (tlvpos < buf->pos) { unsigned char mode, hash; tlvlen = buf_tlv(buf, &tlvpos, &type); if (type != NAME_LIST_TAG || tlvlen < 1) { bad_applet: vpn_progress(vpninfo, PRG_ERR, _("Unrecognised response from ykneo-oath applet\n")); goto end_trans; } mode = buf->data[tlvpos] & 0xf0; hash = buf->data[tlvpos] & 0x0f; if (mode != 0x10 && mode != 0x20) goto bad_applet; if (hash != 0x01 && hash != 0x02) goto bad_applet; if (!token_str || ((tlvlen - 1 == strlen(token_str)) && !memcmp(token_str, &buf->data[tlvpos+1], tlvlen-1))) { char *objname = strndup(&buf->data[tlvpos+1], tlvlen-1); if (!objname) { ret = -ENOMEM; SCardEndTransaction(pcsc_card, SCARD_LEAVE_CARD); SCardDisconnect(pcsc_card, SCARD_LEAVE_CARD); goto out_ctx; } /* Translators: This is filled in with mode and hash type, and the key identifier. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" */ vpn_progress(vpninfo, PRG_INFO, _("Found %s/%s key '%s' on '%s'\n"), (mode == 0x20) ? "TOTP" : "HOTP", (hash == 0x2) ? "SHA256" : "SHA1", objname, reader_utf8); vpninfo->pcsc = calloc(1, sizeof(*vpninfo->pcsc)); if (!vpninfo->pcsc) { free(objname); goto out_ctx; } vpninfo->pcsc->yubikey_objname = objname; vpninfo->pcsc->yubikey_mode = mode; vpninfo->pcsc->pcsc_ctx = pcsc_ctx; vpninfo->pcsc->pcsc_card = pcsc_card; vpninfo->token_mode = OC_TOKEN_MODE_YUBIOATH; SCardEndTransaction(pcsc_card, SCARD_LEAVE_CARD); goto success; } tlvpos += tlvlen; } if (token_str) { vpn_progress(vpninfo, PRG_ERR, _("Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n"), token_str, reader_utf8); } end_trans: SCardEndTransaction(pcsc_card, SCARD_LEAVE_CARD); disconnect: SCardDisconnect(pcsc_card, SCARD_LEAVE_CARD); free_reader_utf8: #ifdef _WIN32 free(reader_utf8); next_reader: #endif while (*reader) reader++; reader++; } ret = -ENOENT; out_ctx: SCardReleaseContext(pcsc_ctx); success: free(readers); buf_free(buf); return ret; } /* Return value: * < 0, if unable to generate a tokencode * = 0, on success */ int can_gen_yubikey_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt) { if (vpninfo->token_bypassed) return -EINVAL; if (vpninfo->token_tries == 0) { vpn_progress(vpninfo, PRG_DEBUG, _("OK to generate INITIAL tokencode\n")); vpninfo->token_time = 0; } else if (vpninfo->token_tries == 1) { vpn_progress(vpninfo, PRG_DEBUG, _("OK to generate NEXT tokencode\n")); vpninfo->token_time += 30; } else { /* limit the number of retries, to avoid account lockouts */ vpn_progress(vpninfo, PRG_INFO, _("Server is rejecting the Yubikey token; switching to manual entry\n")); return -ENOENT; } return 0; } static int tlvlen_len(int tlvlen) { if (tlvlen < 0x80) return 1; else if (tlvlen < 0x100) return 2; else return 3; } static int append_tlvlen(unsigned char *p, int tlvlen) { if (tlvlen < 0x80) { if (p) p[0] = tlvlen; return 1; } else if (tlvlen < 0x100) { if (p) { p[0] = 0x81; p[1] = tlvlen; } return 2; } else { if (p) { p[0] = 0x82; store_be16(p + 1, tlvlen); } return 3; } } int do_gen_yubikey_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt) { struct oc_text_buf *respbuf = NULL; DWORD status; int name_len = strlen(vpninfo->pcsc->yubikey_objname); int name_tlvlen; int calc_tlvlen; unsigned char *reqbuf = NULL; int tokval; int i = 0; int ret; if (!vpninfo->token_time) vpninfo->token_time = time(NULL); vpn_progress(vpninfo, PRG_INFO, _("Generating Yubikey token code\n")); status = SCardBeginTransaction(vpninfo->pcsc->pcsc_card); if (status != SCARD_S_SUCCESS) { char *pcsc_err = scard_error(status); vpn_progress(vpninfo, PRG_ERR, _("Failed to obtain exclusive access to Yubikey: %s\n"), pcsc_err); free_scard_error(pcsc_err); return -EIO; } respbuf = buf_alloc(); ret = select_yubioath_applet(vpninfo, vpninfo->pcsc->pcsc_card, respbuf); if (ret) goto out; name_tlvlen = tlvlen_len(strlen(vpninfo->pcsc->yubikey_objname)); calc_tlvlen = 1 /* NAME_TAG */ + name_tlvlen + name_len + 1 /* CHALLENGE_TAG */ + 1 /* Challenge TLV len */; if (vpninfo->pcsc->yubikey_mode == 0x20) calc_tlvlen += 8; /* TOTP needs the time as challenge */ reqbuf = malloc(4 + tlvlen_len(calc_tlvlen) + calc_tlvlen); if (!reqbuf) goto out; reqbuf[i++] = 0; reqbuf[i++] = CALCULATE_INS; reqbuf[i++] = 0; reqbuf[i++] = 1; i += append_tlvlen(reqbuf + i, calc_tlvlen); reqbuf[i++] = NAME_TAG; i += append_tlvlen(reqbuf + i, name_len); memcpy(reqbuf + i, vpninfo->pcsc->yubikey_objname, name_len); i += name_len; reqbuf[i++] = CHALLENGE_TAG; if (vpninfo->pcsc->yubikey_mode == 0x20) { long token_steps = vpninfo->token_time / 30; reqbuf[i++] = 8; reqbuf[i++] = 0; reqbuf[i++] = 0; reqbuf[i++] = 0; reqbuf[i++] = 0; store_be32(reqbuf + i, token_steps); i += 4; } else { reqbuf[i++] = 0; /* HOTP mode, zero-length challenge */ } ret = yubikey_cmd(vpninfo, vpninfo->pcsc->pcsc_card, PRG_ERR, _("calculate command"), reqbuf, i, respbuf); if (ret) goto out; if (respbuf->pos != 7 || (unsigned char)respbuf->data[0] != T_RESPONSE_TAG || respbuf->data[1] != 5 || respbuf->data[2] > 8 || respbuf->data[2] < 6) { vpn_progress(vpninfo, PRG_ERR, _("Unrecognised response from Yubikey when generating tokencode\n")); ret = -EIO; goto out; } tokval = load_be32(respbuf->data + 3); opt->_value = malloc(respbuf->data[2] + 1); if (!opt->_value) { ret = -ENOMEM; goto out; } i = respbuf->data[2]; opt->_value[i] = 0; while (i--) { opt->_value[i] = '0' + tokval % 10; tokval /= 10; } vpninfo->token_tries++; out: SCardEndTransaction(vpninfo->pcsc->pcsc_card, SCARD_LEAVE_CARD); buf_free(respbuf); free(reqbuf); return ret; } void release_pcsc_ctx(struct openconnect_info *vpninfo) { if (!vpninfo->pcsc) return; if (vpninfo->token_mode == OC_TOKEN_MODE_YUBIOATH) { SCardDisconnect(vpninfo->pcsc->pcsc_card, SCARD_LEAVE_CARD); SCardReleaseContext(vpninfo->pcsc->pcsc_ctx); } memset(vpninfo->yubikey_pwhash, 0, sizeof(vpninfo->yubikey_pwhash)); free(vpninfo->pcsc->yubikey_objname); free(vpninfo->pcsc); vpninfo->pcsc = NULL; } openconnect-8.05/java/0000775000076400007640000000000013536301731016460 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/java/README0000664000076400007640000000113113333013173017327 0ustar00dwoodhoudwoodhou00000000000000Description: This directory contains a JNI interface layer for libopenconnect, and a demo program to show how it can be used. Build instructions: From the top level, run: ./configure --with-java make cd java ant sudo java -Djava.library.path=../.libs -jar dist/example.jar [protocol] If ocproxy[1] is installed somewhere in your $PATH, this can be run as a non-root user and it should be pingable from across the VPN. Test/demo code is in src/com/example/ OpenConnect wrapper library is in src/org/infradead/libopenconnect/ [1] http://repo.or.cz/w/ocproxy.git openconnect-8.05/java/build.xml0000664000076400007640000000167113245212704020304 0ustar00dwoodhoudwoodhou00000000000000 openconnect-8.05/java/src/0000775000076400007640000000000013536301731017247 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/java/src/org/0000775000076400007640000000000013536301731020036 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/java/src/org/infradead/0000775000076400007640000000000013536301731021753 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/java/src/org/infradead/libopenconnect/0000775000076400007640000000000013536301731024755 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/java/src/org/infradead/libopenconnect/LibOpenConnect.java0000664000076400007640000002316013407155217030467 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2013 Kevin Cernekee * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ package org.infradead.libopenconnect; import java.util.ArrayList; import java.util.HashMap; public abstract class LibOpenConnect { /* constants */ public static final int OC_PROTO_PROXY = 1; public static final int OC_PROTO_CSD = 2; public static final int OC_PROTO_AUTH_CERT = 4; public static final int OC_PROTO_AUTH_OTP = 8; public static final int OC_PROTO_AUTH_STOKEN = 16; public static final int OC_FORM_OPT_TEXT = 1; public static final int OC_FORM_OPT_PASSWORD = 2; public static final int OC_FORM_OPT_SELECT = 3; public static final int OC_FORM_OPT_HIDDEN = 4; public static final int OC_FORM_OPT_TOKEN = 5; public static final int OC_FORM_OPT_IGNORE = 0x0001; public static final int OC_FORM_OPT_NUMERIC = 0x0002; public static final int OC_TOKEN_MODE_NONE = 0; public static final int OC_TOKEN_MODE_STOKEN = 1; public static final int OC_TOKEN_MODE_TOTP = 2; public static final int OC_TOKEN_MODE_HOTP = 3; public static final int OC_FORM_RESULT_ERR = -1; public static final int OC_FORM_RESULT_OK = 0; public static final int OC_FORM_RESULT_CANCELLED = 1; public static final int OC_FORM_RESULT_NEWGROUP = 2; public static final int PRG_ERR = 0; public static final int PRG_INFO = 1; public static final int PRG_DEBUG = 2; public static final int PRG_TRACE = 3; public static final int RECONNECT_INTERVAL_MIN = 10; public static final int RECONNECT_INTERVAL_MAX = 100; /* required callbacks */ public abstract int onProcessAuthForm(AuthForm authForm); public abstract void onProgress(int level, String msg); /* optional callbacks */ public int onValidatePeerCert(String msg) { return 0; } public int onWriteNewConfig(byte[] buf) { return 0; } public void onProtectSocket(int fd) { } public void onStatsUpdate(VPNStats stats) { } public int onTokenLock() { return 0; } public int onTokenUnlock(String newToken) { return 0; } public void onSetupTun() { } public void onReconnected() { } /* create/destroy library instances */ public LibOpenConnect() { libctx = init("OpenConnect VPN Agent (Java)"); } public LibOpenConnect(String userAgent) { libctx = init(userAgent); } public synchronized void destroy() { if (libctx != 0) { free(); libctx = 0; } } /* async requests (safe to call from any thread) */ public void cancel() { synchronized (asyncLock) { if (!canceled) { doCancel(); canceled = true; } } } public boolean isCanceled() { synchronized (asyncLock) { return canceled; } } public native void pause(); public native void requestStats(); public native void setLogLevel(int level); /* control operations */ public synchronized native int parseURL(String url); public synchronized native int obtainCookie(); public synchronized native void clearCookie(); public synchronized native void resetSSL(); public synchronized native int makeCSTPConnection(); public synchronized native int setupTunDevice(String vpncScript, String IFName); public synchronized native int setupTunScript(String tunScript); public synchronized native int setupTunFD(int tunFD); public synchronized native int setupDTLS(int attemptPeriod); public synchronized native int mainloop(int reconnectTimeout, int reconnectInterval); /* connection settings */ public synchronized native int passphraseFromFSID(); public synchronized native void setCertExpiryWarning(int seconds); public synchronized native void setDPD(int minSeconds); public synchronized native int setProxyAuth(String methods); public synchronized native int setHTTPProxy(String proxy); public synchronized native void setXMLSHA1(String hash); public synchronized native void setHostname(String hostname); public synchronized native void setVersionString(String version); public synchronized native void setUrlpath(String urlpath); public synchronized native void setLocalName(String localName); public synchronized native void setCAFile(String caFile); public synchronized native void setReportedOS(String os); public synchronized native void setMobileInfo(String mobilePlatformVersion, String mobileDeviceType, String mobileDeviceUniqueID); public synchronized native int setTokenMode(int tokenMode, String tokenString); public synchronized native void setCSDWrapper(String wrapper, String TMPDIR, String PATH); public synchronized native void setXMLPost(boolean isEnabled); public synchronized native void setClientCert(String cert, String sslKey); public synchronized native void setReqMTU(int mtu); public synchronized native void setPFS(boolean isEnabled); public synchronized native void setSystemTrust(boolean isEnabled); public synchronized native int setProtocol(String protocol); /* connection info */ public synchronized native String getHostname(); public synchronized native String getDNSName(); public synchronized native String getUrlpath(); public synchronized native int getPort(); public synchronized native String getCookie(); public synchronized native String getIFName(); public synchronized native IPInfo getIPInfo(); public synchronized native String getCSTPCipher(); public synchronized native String getDTLSCipher(); public synchronized native String getCSTPCompression(); public synchronized native String getDTLSCompression(); public synchronized native String getProtocol(); public synchronized native int getIdleTimeout(); /* certificate info */ public synchronized native int checkPeerCertHash(String hash); public synchronized native String getPeerCertHash(); public synchronized native String getPeerCertDetails(); public synchronized native byte[] getPeerCertDER(); public synchronized native byte[][] getPeerCertChain(); /* library info */ public static native String getVersion(); public static native boolean hasPKCS11Support(); public static native boolean hasTSSBlobSupport(); public static native boolean hasTSS2BlobSupport(); public static native boolean hasStokenSupport(); public static native boolean hasOATHSupport(); public static native boolean hasYubiOATHSupport(); public static native VPNProto[] getSupportedProtocols(); /* public data structures */ public static class FormOpt { public int type; public String name; public String label; public long flags; public ArrayList choices = new ArrayList(); public String value; public Object userData; /* FormOpt internals (called from JNI) */ void addChoice(FormChoice fc) { this.choices.add(fc); } }; public static class FormChoice { public String name; public String label; public String authType; public String overrideName; public String overrideLabel; public Object userData; }; public static class AuthForm { public String banner; public String message; public String error; public String authID; public String method; public String action; public ArrayList opts = new ArrayList(); public FormOpt authgroupOpt; public int authgroupSelection; public Object userData; /* AuthForm internals (called from JNI) */ FormOpt addOpt(boolean isAuthgroup) { FormOpt fo = new FormOpt(); opts.add(fo); if (isAuthgroup) { authgroupOpt = fo; } return fo; } String getOptValue(String name) { for (FormOpt fo : opts) { if (fo.name.equals(name)) { return fo.value; } } return null; } } public static class IPInfo { public String addr; public String netmask; public String addr6; public String netmask6; public ArrayList DNS = new ArrayList(); public ArrayList NBNS = new ArrayList(); public String domain; public String proxyPac; public String gatewayAddr; public int MTU; public int idleTimeoutSec; public ArrayList splitDNS = new ArrayList(); public ArrayList splitIncludes = new ArrayList(); public ArrayList splitExcludes = new ArrayList(); public HashMap CSTPOptions = new HashMap(); public HashMap DTLSOptions = new HashMap(); public Object userData; /* IPInfo internals (called from JNI) */ void addDNS(String arg) { DNS.add(arg); } void addNBNS(String arg) { NBNS.add(arg); } void addSplitDNS(String arg) { splitDNS.add(arg); } void addSplitInclude(String arg) { splitIncludes.add(arg); } void addSplitExclude(String arg) { splitExcludes.add(arg); } void addCSTPOption(String key, String value) { CSTPOptions.put(key, value); } void addDTLSOption(String key, String value) { DTLSOptions.put(key, value); } } public static class VPNStats { public long txPkts; public long txBytes; public long rxPkts; public long rxBytes; public Object userData; }; public static class VPNProto { public String name; public String prettyName; public String description; public int flags; }; /* Optional storage for caller's data */ public Object userData; /* LibOpenConnect internals */ long libctx; boolean canceled = false; Object asyncLock = new Object(); static synchronized native void globalInit(); static { globalInit(); } synchronized native long init(String useragent); synchronized native void free(); native void doCancel(); } openconnect-8.05/java/src/com/0000775000076400007640000000000013536301731020025 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/java/src/com/example/0000775000076400007640000000000013536301731021460 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.05/java/src/com/example/LibTest.java0000664000076400007640000002124013407155217023673 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2013 Kevin Cernekee * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ package com.example; import java.io.*; import java.util.*; import org.infradead.libopenconnect.LibOpenConnect; public final class LibTest { private static void die(String msg) { System.out.println(msg); System.exit(1); } private static String getline() { BufferedReader br = new BufferedReader(new InputStreamReader(System.in)); try { String line = br.readLine(); return line; } catch (IOException e) { die("\nI/O error"); } return ""; } private static class TestLib extends LibOpenConnect { @Override public int onValidatePeerCert(String msg) { System.out.println("cert warning: " + msg); System.out.println("cert hash: " + getPeerCertHash()); System.out.println("cert details: " + getPeerCertDetails()); System.out.println("Internal consistency check: " + (checkPeerCertHash(getPeerCertHash()) == 0 ? "OK" : "FAIL")); byte der[] = getPeerCertDER(); System.out.println("DER is " + der.length + " bytes long"); byte chain[][] = getPeerCertChain(); System.out.println("Chain has " + chain.length + " certs"); System.out.print("\nAccept this certificate? [n] "); String s = getline(); if (s.startsWith("y") || s.startsWith("Y")) { return 0; } else { return -1; } } @Override public int onWriteNewConfig(byte[] buf) { System.out.println("NEW_CONFIG: " + buf.length + " bytes"); return 0; } @Override public void onProtectSocket(int fd) { System.out.println("PROTECT_FD: " + fd); } private void printChoices(FormOpt fo) { for (FormChoice fc : fo.choices) { System.out.println("--->FormChoice: "); System.out.println(" +-name: " + fc.name); System.out.println(" +-label: " + fc.label); System.out.println(" +-authType: " + fc.authType); System.out.println(" +-overrideName: " + fc.overrideName); System.out.println(" +-overrideLabel: " + fc.overrideLabel); } } private String authgroup; private boolean lastFormEmpty; @Override public int onProcessAuthForm(LibOpenConnect.AuthForm authForm) { boolean empty = true; System.out.println("\nCSTP Cipher: " + getCSTPCipher()); System.out.println("\nAuthForm:"); System.out.println("+-banner: " + authForm.banner); System.out.println("+-message: " + authForm.message); System.out.println("+-error: " + authForm.error); System.out.println("+-authID: " + authForm.authID); System.out.println("+-method: " + authForm.method); System.out.println("+-action: " + authForm.action); if (authgroup == null && authForm.authgroupOpt != null) { FormOpt fo = authForm.authgroupOpt; printChoices(fo); System.out.print("\n" + fo.label + " "); String value = getline(); fo.value = value; authgroup = value; return OC_FORM_RESULT_NEWGROUP; } for (FormOpt fo : authForm.opts) { System.out.println("->FormOpt: "); System.out.println(" +-type: " + fo.type); System.out.println(" +-name: " + fo.name); System.out.println(" +-label: " + fo.label); System.out.println(" +-flags: " + fo.flags); if ((fo.flags & OC_FORM_OPT_IGNORE) != 0) { continue; } if (fo.type == OC_FORM_OPT_SELECT) { if (fo == authForm.authgroupOpt && authgroup != null) { fo.value = authgroup; continue; } printChoices(fo); } if (fo.type == OC_FORM_OPT_TEXT || fo.type == OC_FORM_OPT_PASSWORD || fo.type == OC_FORM_OPT_SELECT) { System.out.print("\n" + fo.label + " "); String value = getline(); fo.value = value; empty = false; } } System.out.println(""); if (lastFormEmpty && empty) { return OC_FORM_RESULT_CANCELLED; } lastFormEmpty = empty; return OC_FORM_RESULT_OK; } @Override public void onProgress(int level, String msg) { switch (level) { case LibOpenConnect.PRG_TRACE: System.out.print("TRACE: " + msg); break; case LibOpenConnect.PRG_DEBUG: System.out.print("DEBUG: " + msg); break; case LibOpenConnect.PRG_INFO: System.out.print("INFO: " + msg); break; case LibOpenConnect.PRG_ERR: System.out.print("ERROR: " + msg); break; } } @Override public void onSetupTun() { System.out.println("SETUP_TUN"); if (setupTunDevice("/etc/vpnc/vpnc-script", null) != 0 && setupTunScript("ocproxy") != 0) die("Error setting up tunnel"); } } private static void printList(String pfx, List ss) { System.out.print(pfx + ":"); if (ss.size() == 0) { System.out.println(" "); return; } for (String s : ss) { System.out.print(" " + s); } System.out.println(""); } private static void printIPInfo(LibOpenConnect.IPInfo ip) { System.out.println("\nIPInfo:"); System.out.println("+-IPv4: " + ip.addr + " / " + ip.netmask); System.out.println("+-IPv6: " + ip.addr6 + " / " + ip.netmask6); System.out.println("+-Domain: " + ip.domain); System.out.println("+-proxy.pac: " + ip.proxyPac); System.out.println("+-Gateway IP: " + ip.gatewayAddr); System.out.println("+-MTU: " + ip.MTU); printList("+-DNS", ip.DNS); printList("+-NBNS", ip.NBNS); printList("+-Split DNS", ip.splitDNS); printList("+-Split includes", ip.splitIncludes); printList("+-Split excludes", ip.splitExcludes); System.out.println(""); } private static void describeProtocol(LibOpenConnect.VPNProto vp) { ArrayList flags = new ArrayList(); if ((vp.flags & LibOpenConnect.OC_PROTO_PROXY) != 0) flags.add("proxy"); if ((vp.flags & LibOpenConnect.OC_PROTO_CSD) != 0) flags.add("CSD"); if ((vp.flags & LibOpenConnect.OC_PROTO_AUTH_CERT) != 0) flags.add("auth-cert"); if ((vp.flags & LibOpenConnect.OC_PROTO_AUTH_OTP) != 0) flags.add("auth-otp"); if ((vp.flags & LibOpenConnect.OC_PROTO_AUTH_OTP) != 0) flags.add("auth-stoken"); System.out.println(" " + vp.name + ") PRETTY_NAME=" + vp.prettyName + ", DESCRIPTION=" + vp.description + ", FLAGS=" + String.join("+", flags)); } public static void main(String argv[]) { System.loadLibrary("openconnect-wrapper"); LibOpenConnect lib = new TestLib(); String server_name, protocol; if (argv.length != 1 && argv.length != 2) die("usage: LibTest [protocol]"); server_name = argv[0]; protocol = argv.length == 2 ? argv[1] : null; System.out.println("OpenConnect version: " + lib.getVersion()); System.out.println(" PKCS=" + lib.hasPKCS11Support() + ", TSS=" + lib.hasTSSBlobSupport() + ", TSS2=" + lib.hasTSS2BlobSupport() + ", STOKEN=" + lib.hasStokenSupport() + ", OATH=" + lib.hasOATHSupport() + ", YUBIOATH=" + lib.hasYubiOATHSupport()); System.out.println("Supported protocols:"); for (LibOpenConnect.VPNProto vp : lib.getSupportedProtocols()) describeProtocol(vp); if (protocol == null) { System.out.println("Using default VPN protocol of " + lib.getProtocol()); } else { System.out.println("Setting VPN protocol to " + protocol); if (lib.setProtocol(protocol) != 0) die("Error setting VPN protocol"); } lib.setReportedOS("win"); lib.setLogLevel(lib.PRG_DEBUG); lib.setVersionString("2.2.0133"); //lib.setTokenMode(LibOpenConnect.OC_TOKEN_MODE_STOKEN, null); String csd_wrapper = "./csd-" + lib.getProtocol() + ".sh"; if (new File(csd_wrapper).exists()) { System.out.println("Using CSD wrapper script " + csd_wrapper); lib.setCSDWrapper(csd_wrapper, null, null); } else { System.out.println("Skipping CSD wrapper (script " + csd_wrapper + " doesn't exist)"); } lib.parseURL(server_name); lib.setSystemTrust(true); int ret = lib.obtainCookie(); if (ret < 0) die("obtainCookie() returned error"); else if (ret > 0) die("Aborted by user"); String cookie = lib.getCookie(); if (cookie.length() > 40) { System.out.println("Cookie: " + cookie.substring(0, 40) + "..."); } else { System.out.println("Cookie: " + cookie); } if (lib.makeCSTPConnection() != 0) die("Error establishing VPN link"); int idleTimeout = lib.getIdleTimeout(); System.out.println("Idle Timeout: " + idleTimeout + " seconds"); printIPInfo(lib.getIPInfo()); if (lib.setupDTLS(60) != 0) die("Error setting up DTLS"); lib.mainloop(300, LibOpenConnect.RECONNECT_INTERVAL_MIN); } } openconnect-8.05/pulse.c0000664000076400007640000022546313513327724017054 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2019 David Woodhouse. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include #include #include #include #include #include #include #include #include #include "openconnect-internal.h" #define VENDOR_JUNIPER 0xa4c #define VENDOR_JUNIPER2 0x583 #define VENDOR_TCG 0x5597 #define IFT_VERSION_REQUEST 1 #define IFT_VERSION_RESPONSE 2 #define IFT_CLIENT_AUTH_REQUEST 3 #define IFT_CLIENT_AUTH_SELECTION 4 #define IFT_CLIENT_AUTH_CHALLENGE 5 #define IFT_CLIENT_AUTH_RESPONSE 6 #define IFT_CLIENT_AUTH_SUCCESS 7 /* IF-T/TLS v1 authentication messages all start * with the Auth Type Vendor (Juniper) + Type (1) */ #define JUNIPER_1 ((VENDOR_JUNIPER << 8) | 1) #define AVP_VENDOR 0x80 #define AVP_MANDATORY 0x40 #define EAP_REQUEST 1 #define EAP_RESPONSE 2 #define EAP_SUCCESS 3 #define EAP_FAILURE 4 #define EAP_TYPE_IDENTITY 1 #define EAP_TYPE_GTC 6 #define EAP_TYPE_TLS 0x0d #define EAP_TYPE_TTLS 0x15 #define EAP_TYPE_EXPANDED 0xfe #define EXPANDED_JUNIPER ((EAP_TYPE_EXPANDED << 24) | VENDOR_JUNIPER) #define AVP_CODE_EAP_MESSAGE 79 #if defined(OPENCONNECT_OPENSSL) #define TTLS_SEND SSL_write #define TTLS_RECV SSL_read #elif defined(OPENCONNECT_GNUTLS) #define TTLS_SEND gnutls_record_send #define TTLS_RECV gnutls_record_recv #endif /* Flags for prompt handling during authentication, based on the contents of the 0xd73 AVP (qv). */ #define PROMPT_PRIMARY 1 #define PROMPT_USERNAME 2 #define PROMPT_PASSWORD 4 #define PROMPT_GTC_NEXT 0x10000 static void buf_append_be16(struct oc_text_buf *buf, uint16_t val) { unsigned char b[2]; store_be16(b, val); buf_append_bytes(buf, b, 2); } static void buf_append_be32(struct oc_text_buf *buf, uint32_t val) { unsigned char b[4]; store_be32(b, val); buf_append_bytes(buf, b, 4); } static void buf_append_ift_hdr(struct oc_text_buf *buf, uint32_t vendor, uint32_t type) { uint32_t b[4]; store_be32(&b[0], vendor); store_be32(&b[1], type); b[2] = 0; /* Length will be filled in later. */ b[3] = 0; buf_append_bytes(buf, b, 16); } /* Append EAP header, using VENDOR_JUNIPER and the given subtype if * the main type is EAP_TYPE_EXPANDED */ static int buf_append_eap_hdr(struct oc_text_buf *buf, uint8_t code, uint8_t ident, uint8_t type, uint32_t subtype) { unsigned char b[24]; int len_ofs = -1; if (!buf_error(buf)) len_ofs = buf->pos; b[0] = code; b[1] = ident; b[2] = b[3] = 0; /* Length is filled in later. */ if (type == EAP_TYPE_EXPANDED) { store_be32(b + 4, EXPANDED_JUNIPER); store_be32(b + 8, subtype); buf_append_bytes(buf, b, 12); } else { b[4] = type; buf_append_bytes(buf, b, 5); } return len_ofs; } /* For an IF-T/TLS auth frame containing the Juniper/1 Auth Type, * the EAP header is at offset 0x14. Fill in the length field, * based on the current length of the buf */ static void buf_fill_eap_len(struct oc_text_buf *buf, int ofs) { /* EAP length word is always at 0x16, and counts bytes from 0x14 */ if (ofs >= 0 && !buf_error(buf) && buf->pos > ofs + 8) store_be16(buf->data + ofs + 2, buf->pos - ofs); } static void buf_append_avp(struct oc_text_buf *buf, uint32_t type, const void *bytes, int len) { buf_append_be32(buf, type); buf_append_be16(buf, 0x8000); buf_append_be16(buf, len + 12); buf_append_be32(buf, VENDOR_JUNIPER2); buf_append_bytes(buf, bytes, len); if (len & 3) { uint32_t pad = 0; buf_append_bytes(buf, &pad, 4 - ( len & 3 )); } } static void buf_append_avp_string(struct oc_text_buf *buf, uint32_t type, const char *str) { buf_append_avp(buf, type, str, strlen(str)); } static void buf_append_avp_be32(struct oc_text_buf *buf, uint32_t type, uint32_t val) { uint32_t val_be; store_be32(&val_be, val); buf_append_avp(buf, type, &val_be, sizeof(val_be)); } static int valid_ift_success(unsigned char *bytes, int len) { if (len != 0x18 || (load_be32(bytes) & 0xffffff) != VENDOR_TCG || load_be32(bytes + 4) != IFT_CLIENT_AUTH_SUCCESS || load_be32(bytes + 8) != len || load_be32(bytes + 0x10) != JUNIPER_1 || bytes[0x14] != EAP_SUCCESS || load_be16(bytes + 0x16) != len - 0x14) return 0; return 1; } /* Check for a valid IF-T/TLS auth challenge of the Juniper/1 Auth Type */ static int valid_ift_auth(unsigned char *bytes, int len) { if (len < 0x14 || (load_be32(bytes) & 0xffffff) != VENDOR_TCG || load_be32(bytes + 4) != IFT_CLIENT_AUTH_CHALLENGE || load_be32(bytes + 8) != len || load_be32(bytes + 0x10) != JUNIPER_1) return 0; return 1; } static int valid_ift_auth_eap(unsigned char *bytes, int len) { /* Needs to be a valid IF-T/TLS auth challenge with the * expect Auth Type, *and* the payload has to be a valid * EAP request with correct length field. */ if (!valid_ift_auth(bytes, len) || len < 0x19 || bytes[0x14] != EAP_REQUEST || load_be16(bytes + 0x16) != len - 0x14) return 0; return 1; } static int valid_ift_auth_eap_exj1(unsigned char *bytes, int len) { /* Also needs to be the Expanded Juniper/1 EAP Type */ if (!valid_ift_auth_eap(bytes, len) || len < 0x20 || load_be32(bytes + 0x18) != EXPANDED_JUNIPER || load_be32(bytes + 0x1c) != 1) return 0; return 1; } /* We behave like CSTP — create a linked list in vpninfo->cstp_options * with the strings containing the information we got from the server, * and oc_ip_info contains const copies of those pointers. */ static const char *add_option(struct openconnect_info *vpninfo, const char *opt, const char *val, int val_len) { struct oc_vpn_option *new = malloc(sizeof(*new)); if (!new) return NULL; new->option = strdup(opt); if (!new->option) { free(new); return NULL; } if (val_len >= 0) new->value = strndup(val, val_len); else new->value = strdup(val); if (!new->value) { free(new->option); free(new); return NULL; } new->next = vpninfo->cstp_options; vpninfo->cstp_options = new; return new->value; } static int process_attr(struct openconnect_info *vpninfo, uint16_t type, unsigned char *data, int attrlen) { struct oc_split_include *xc; char buf[80]; int i; switch (type) { case 0x0001: if (attrlen != 4) goto badlen; snprintf(buf, sizeof(buf), "%d.%d.%d.%d", data[0], data[1], data[2], data[3]); vpn_progress(vpninfo, PRG_DEBUG, _("Received internal Legacy IP address %s\n"), buf); vpninfo->ip_info.addr = add_option(vpninfo, "ipaddr", buf, -1); break; case 0x0002: if (attrlen != 4) goto badlen; snprintf(buf, sizeof(buf), "%d.%d.%d.%d", data[0], data[1], data[2], data[3]); vpn_progress(vpninfo, PRG_DEBUG, _("Received netmask %s\n"), buf); vpninfo->ip_info.netmask = add_option(vpninfo, "netmask", buf, -1); break; case 0x0003: if (attrlen != 4) goto badlen; snprintf(buf, sizeof(buf), "%d.%d.%d.%d", data[0], data[1], data[2], data[3]); vpn_progress(vpninfo, PRG_DEBUG, _("Received DNS server %s\n"), buf); for (i = 0; i < 3; i++) { if (!vpninfo->ip_info.dns[i]) { vpninfo->ip_info.dns[i] = add_option(vpninfo, "DNS", buf, -1); break; } } break; case 0x0004: if (attrlen != 4) goto badlen; snprintf(buf, sizeof(buf), "%d.%d.%d.%d", data[0], data[1], data[2], data[3]); vpn_progress(vpninfo, PRG_DEBUG, _("Received WINS server %s\n"), buf); for (i = 0; i < 3; i++) { if (!vpninfo->ip_info.nbns[i]) { vpninfo->ip_info.nbns[i] = add_option(vpninfo, "WINS", buf, -1); break; } } break; case 0x0008: if (attrlen != 17) goto badlen; if (!inet_ntop(AF_INET6, data, buf, sizeof(buf))) { vpn_progress(vpninfo, PRG_ERR, _("Failed to handle IPv6 address\n")); return -EINVAL; } vpninfo->ip_info.addr6 = add_option(vpninfo, "ip6addr", buf, -1); i = strlen(buf); snprintf(buf + i, sizeof(buf) - i, "/%d", data[16]); vpninfo->ip_info.netmask6 = add_option(vpninfo, "ip6netmask", buf, -1); vpn_progress(vpninfo, PRG_DEBUG, _("Received internal IPv6 address %s\n"), buf); break; case 0x000a: if (attrlen != 16) goto badlen; if (!inet_ntop(AF_INET6, data, buf, sizeof(buf))) { vpn_progress(vpninfo, PRG_ERR, _("Failed to handle IPv6 address\n")); return -EINVAL; } for (i = 0; i < 3; i++) { if (!vpninfo->ip_info.dns[i]) { vpninfo->ip_info.dns[i] = add_option(vpninfo, "DNS", buf, -1); break; } } vpn_progress(vpninfo, PRG_DEBUG, _("Received DNS server %s\n"), buf); break; case 0x000f: if (attrlen != 17) goto badlen; if (!inet_ntop(AF_INET6, data, buf, sizeof(buf))) { vpn_progress(vpninfo, PRG_ERR, _("Failed to handle IPv6 address\n")); return -EINVAL; } i = strlen(buf); snprintf(buf + i, sizeof(buf) - i, "/%d", data[16]); xc = malloc(sizeof(*xc)); if (xc) { xc->route = add_option(vpninfo, "split-include6", buf, -1); if (xc->route) { xc->next = vpninfo->ip_info.split_includes; vpninfo->ip_info.split_includes = xc; } else free(xc); } vpn_progress(vpninfo, PRG_DEBUG, _("Received IPv6 split include %s\n"), buf); break; case 0x0010: if (attrlen != 17) goto badlen; if (!inet_ntop(AF_INET6, data, buf, sizeof(buf))) { vpn_progress(vpninfo, PRG_ERR, _("Failed to handle IPv6 address\n")); return -EINVAL; } i = strlen(buf); snprintf(buf + i, sizeof(buf) - i, "/%d", data[16]); xc = malloc(sizeof(*xc)); if (xc) { xc->route = add_option(vpninfo, "split-exclude6", buf, -1); if (xc->route) { xc->next = vpninfo->ip_info.split_excludes; vpninfo->ip_info.split_excludes = xc; } else free(xc); } vpn_progress(vpninfo, PRG_DEBUG, _("Received IPv6 split exclude %s\n"), buf); break; case 0x4005: if (attrlen != 4) { badlen: vpn_progress(vpninfo, PRG_ERR, _("Unexpected length %d for attr 0x%x\n"), attrlen, type); return -EINVAL; } vpninfo->ip_info.mtu = load_be32(data); vpn_progress(vpninfo, PRG_DEBUG, _("Received MTU %d from server\n"), vpninfo->ip_info.mtu); break; case 0x4006: if (!attrlen) goto badlen; if (!data[attrlen-1]) attrlen--; vpn_progress(vpninfo, PRG_DEBUG, _("Received DNS search domain %.*s\n"), attrlen, (char *)data); vpninfo->ip_info.domain = add_option(vpninfo, "search", (char *)data, attrlen); if (vpninfo->ip_info.domain) { char *p = (char *)vpninfo->ip_info.domain; while ((p = strchr(p, ','))) *p = ' '; } break; case 0x400b: if (attrlen != 4) goto badlen; snprintf(buf, sizeof(buf), "%d.%d.%d.%d", data[0], data[1], data[2], data[3]); vpn_progress(vpninfo, PRG_DEBUG, _("Received internal gateway address %s\n"), buf); /* Hm, what are we supposed to do with this? It's a tunnel; having a gateway is meaningless. */ add_option(vpninfo, "ipaddr", buf, -1); break; case 0x4010: { const char *enctype; uint16_t val; if (attrlen != 2) goto badlen; val = load_be16(data); if (val == ENC_AES_128_CBC) { enctype = "AES-128"; vpninfo->enc_key_len = 16; } else if (val == ENC_AES_256_CBC) { enctype = "AES-256"; vpninfo->enc_key_len = 32; } else enctype = "unknown"; vpn_progress(vpninfo, PRG_DEBUG, _("ESP encryption: 0x%04x (%s)\n"), val, enctype); vpninfo->esp_enc = val; break; } case 0x4011: { const char *mactype; uint16_t val; if (attrlen != 2) goto badlen; val = load_be16(data); if (val == HMAC_MD5) { mactype = "MD5"; vpninfo->hmac_key_len = 16; } else if (val == HMAC_SHA1) { mactype = "SHA1"; vpninfo->hmac_key_len = 20; } else if (val == HMAC_SHA256) { mactype = "SHA256"; vpninfo->hmac_key_len = 32; } else mactype = "unknown"; vpn_progress(vpninfo, PRG_DEBUG, _("ESP HMAC: 0x%04x (%s)\n"), val, mactype); vpninfo->esp_hmac = val; break; } case 0x4012: if (attrlen != 4) goto badlen; vpninfo->esp_lifetime_seconds = load_be32(data); vpn_progress(vpninfo, PRG_DEBUG, _("ESP key lifetime: %u seconds\n"), vpninfo->esp_lifetime_seconds); break; case 0x4013: if (attrlen != 4) goto badlen; vpninfo->esp_lifetime_bytes = load_be32(data); vpn_progress(vpninfo, PRG_DEBUG, _("ESP key lifetime: %u bytes\n"), vpninfo->esp_lifetime_bytes); break; case 0x4014: if (attrlen != 4) goto badlen; vpninfo->esp_replay_protect = load_be32(data); vpn_progress(vpninfo, PRG_DEBUG, _("ESP replay protection: %d\n"), load_be32(data)); break; case 0x4016: if (attrlen != 2) goto badlen; i = load_be16(data); udp_sockaddr(vpninfo, i); vpn_progress(vpninfo, PRG_DEBUG, _("ESP port: %d\n"), i); break; case 0x4017: if (attrlen != 4) goto badlen; vpninfo->esp_ssl_fallback = load_be32(data); vpn_progress(vpninfo, PRG_DEBUG, _("ESP to SSL fallback: %u seconds\n"), vpninfo->esp_ssl_fallback); break; case 0x401a: if (attrlen != 1) goto badlen; /* Amusingly, this isn't enforced. It's client-only */ vpn_progress(vpninfo, PRG_DEBUG, _("ESP only: %d\n"), data[0]); break; #if 0 case GRP_ATTR(7, 1): if (attrlen != 4) goto badlen; memcpy(&vpninfo->esp_out.spi, data, 4); vpn_progress(vpninfo, PRG_DEBUG, _("ESP SPI (outbound): %x\n"), load_be32(data)); break; case GRP_ATTR(7, 2): if (attrlen != 0x40) goto badlen; /* data contains enc_key and hmac_key concatenated */ memcpy(vpninfo->esp_out.enc_key, data, 0x40); vpn_progress(vpninfo, PRG_DEBUG, _("%d bytes of ESP secrets\n"), attrlen); break; #endif /* 0x4022: disable proxy 0x400a: preserve proxy 0x4008: proxy (string) 0x4000: disconnect when routes changed 0x4015: tos copy 0x4001: tunnel routes take precedence 0x401f: tunnel routes with subnet access (also 4001 set) 0x4020: Enforce IPv4 0x4021: Enforce IPv6 0x401e: Server IPv6 address 0x000f: IPv6 netmask? */ default: buf[0] = 0; for (i=0; i < 16 && i < attrlen; i++) sprintf(buf + strlen(buf), " %02x", data[i]); if (attrlen > 16) sprintf(buf + strlen(buf), "..."); vpn_progress(vpninfo, PRG_DEBUG, _("Unknown attr 0x%x len %d:%s\n"), type, attrlen, buf); } return 0; } static int recv_ift_packet(struct openconnect_info *vpninfo, void *buf, int len) { int ret = vpninfo->ssl_read(vpninfo, buf, len); if (ret > 0 && vpninfo->dump_http_traffic) { vpn_progress(vpninfo, PRG_TRACE, _("Read %d bytes of IF-T/TLS record\n"), ret); dump_buf_hex(vpninfo, PRG_TRACE, '<', buf, ret); } return ret; } static int send_ift_bytes(struct openconnect_info *vpninfo, void *bytes, int len) { int ret; store_be32(((char *)bytes) + 12, vpninfo->ift_seq++); dump_buf_hex(vpninfo, PRG_DEBUG, '>', (void *)bytes, len); ret = vpninfo->ssl_write(vpninfo, bytes, len); if (ret != len) { if (ret >= 0) { vpn_progress(vpninfo, PRG_ERR, _("Short write to IF-T/TLS\n")); ret = -EIO; } return ret; } return 0; } static int send_ift_packet(struct openconnect_info *vpninfo, struct oc_text_buf *buf) { if (buf_error(buf) || buf->pos < 16) { vpn_progress(vpninfo, PRG_ERR, _("Error creating IF-T packet\n")); return buf_error(buf); } /* Fill in the length word in the header with the full length of the buffer. * Also populate the sequence number. */ store_be32(buf->data + 8, buf->pos); return send_ift_bytes(vpninfo, buf->data, buf->pos); } /* We create packets with IF-T/TLS headers prepended because that's the * larger header. In the case where they need to be sent over EAP-TTLS, * convert the header to the EAP-Message AVP instead. */ static int send_eap_packet(struct openconnect_info *vpninfo, void *ttls, struct oc_text_buf *buf) { int ret; if (buf_error(buf) || buf->pos < 16) { vpn_progress(vpninfo, PRG_ERR, _("Error creating EAP packet\n")); return buf_error(buf); } if (!ttls) return send_ift_packet(vpninfo, buf); /* AVP EAP-Message header */ store_be32(buf->data + 0x0c, AVP_CODE_EAP_MESSAGE); store_be32(buf->data + 0x10, buf->pos - 0xc); dump_buf_hex(vpninfo, PRG_DEBUG, '.', (void *)(buf->data + 0x0c), buf->pos - 0x0c); ret = TTLS_SEND(ttls, buf->data + 0x0c, buf->pos - 0x0c); if (ret != buf->pos - 0x0c) return -EIO; return 0; } /* * Using the given buffer, receive and validate an EAP request of the * Expanded Juniper/1 type, either natively over IF-T/TLS or by EAP-TTLS * over IF-T/TLS. Return a pointer to the EAP header, with its length and * type already validated. */ static void *recv_eap_packet(struct openconnect_info *vpninfo, void *ttls, void *buf, int len) { unsigned char *cbuf = buf; int ret; if (!ttls) { ret = recv_ift_packet(vpninfo, buf, len); if (ret < 0) return NULL; if (!valid_ift_auth_eap_exj1(buf, ret)) { vpn_progress(vpninfo, PRG_ERR, _("Unexpected IF-T/TLS authentication challenge:\n")); dump_buf_hex(vpninfo, PRG_ERR, '<', (void *)buf, ret); return NULL; } return cbuf + 0x14; } else { ret = TTLS_RECV(ttls, buf, len); if (ret <= 8) return NULL; if (/* EAP-Message AVP */ load_be32(cbuf) != AVP_CODE_EAP_MESSAGE || /* Ignore the mandatory bit */ (load_be32(cbuf+0x04) & ~0x40000000) != ret || cbuf[0x08] != EAP_REQUEST || load_be16(cbuf+0x0a) != ret - 8 || load_be32(cbuf+0x0c) != EXPANDED_JUNIPER || load_be32(cbuf+0x10) != 1) { vpn_progress(vpninfo, PRG_ERR, _("Unexpected EAP-TTLS payload:\n")); dump_buf_hex(vpninfo, PRG_ERR, '<', buf, ret); return NULL; } return cbuf + 0x08; } } static void dump_avp(struct openconnect_info *vpninfo, uint8_t flags, uint32_t vendor, uint32_t code, void *p, int len) { struct oc_text_buf *buf = buf_alloc(); const char *pretty; int i; for (i = 0; i < len; i++) if (!isprint( ((char *)p)[i] )) break; if (i == len) { buf_append(buf, " '"); buf_append_bytes(buf, p, len); buf_append(buf, "'"); } else { for (i = 0; i < len; i++) buf_append(buf, " %02x", ((unsigned char *)p)[i]); } if (buf_error(buf)) pretty = " "; else pretty = buf->data; if (flags & AVP_VENDOR) vpn_progress(vpninfo, PRG_TRACE, _("AVP 0x%x/0x%x:%s\n"), vendor, code, pretty); else vpn_progress(vpninfo, PRG_TRACE, _("AVP %d:%s\n"), code, pretty); buf_free(buf); } /* RFC5281 §10 */ static int parse_avp(struct openconnect_info *vpninfo, void **pkt, int *pkt_len, void **avp_out, int *avp_len, uint8_t *avp_flags, uint32_t *avp_vendor, uint32_t *avp_code) { unsigned char *p = *pkt; int l = *pkt_len; uint32_t code, len, vendor = 0; uint8_t flags; if (l < 8) return -EINVAL; code = load_be32(p); len = load_be32(p + 4) & 0xffffff; flags = p[4]; if (len > l || len < 8) return -EINVAL; p += 8; l -= 8; len -= 8; /* Vendor field is optional. */ if (flags & AVP_VENDOR) { if (l < 4) return -EINVAL; vendor = load_be32(p); p += 4; l -= 4; len -= 4; } *avp_vendor = vendor; *avp_flags = flags; *avp_code = code; *avp_out = p; *avp_len = len; /* Now set up packet pointer and length for next AVP, * aligned to 4 octets (if they exist in the packet) */ len = (len + 3) & ~3; if (len > l) len = l; *pkt = p + len; *pkt_len = l - len; return 0; } static int pulse_request_realm_entry(struct openconnect_info *vpninfo, struct oc_text_buf *reqbuf) { struct oc_auth_form f; struct oc_form_opt o; int ret; memset(&f, 0, sizeof(f)); memset(&o, 0, sizeof(o)); f.auth_id = (char *)"pulse_realm_entry"; f.opts = &o; f.message = _("Enter Pulse user realm:"); o.next = NULL; o.type = OC_FORM_OPT_TEXT; o.name = (char *)"realm"; o.label = (char *)_("Realm:"); ret = process_auth_form(vpninfo, &f); if (ret) return ret; if (o._value) { buf_append_avp_string(reqbuf, 0xd50, o._value); free_pass(&o._value); return 0; } return -EINVAL; } static int pulse_request_realm_choice(struct openconnect_info *vpninfo, struct oc_text_buf *reqbuf, int realms, unsigned char *eap) { uint8_t avp_flags; uint32_t avp_code; uint32_t avp_vendor; int avp_len; void *avp_p; struct oc_auth_form f; struct oc_form_opt_select o; int i = 0, ret; void *p; int l; l = load_be16(eap + 2) - 0x0c; /* Already validated */ p = eap + 0x0c; memset(&f, 0, sizeof(f)); memset(&o, 0, sizeof(o)); f.auth_id = (char *)"pulse_realm_choice"; f.opts = &o.form; f.authgroup_opt = &o; f.authgroup_selection = 1; f.message = _("Choose Pulse user realm:"); o.form.next = NULL; o.form.type = OC_FORM_OPT_SELECT; o.form.name = (char *)"realm_choice"; o.form.label = (char *)_("Realm:"); o.nr_choices = realms; o.choices = calloc(realms, sizeof(*o.choices)); if (!o.choices) return -ENOMEM; while (l) { if (parse_avp(vpninfo, &p, &l, &avp_p, &avp_len, &avp_flags, &avp_vendor, &avp_code)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse AVP\n")); ret = -EINVAL; goto out; } if (avp_vendor != VENDOR_JUNIPER2 || avp_code != 0xd4e) continue; o.choices[i] = malloc(sizeof(struct oc_choice)); if (!o.choices[i]) { ret = -ENOMEM; goto out; } o.choices[i]->name = o.choices[i]->label = strndup(avp_p, avp_len); if (!o.choices[i]->name) { ret = -ENOMEM; goto out; } i++; } /* We don't need to do anything on group changes. */ do { ret = process_auth_form(vpninfo, &f); } while (ret == OC_FORM_RESULT_NEWGROUP); if (!ret) buf_append_avp_string(reqbuf, 0xd50, o.form._value); out: if (o.choices) { for (i = 0; i < realms; i++) { if (o.choices[i]) { free(o.choices[i]->name); free(o.choices[i]); } } free(o.choices); } return ret; } static int pulse_request_session_kill(struct openconnect_info *vpninfo, struct oc_text_buf *reqbuf, int sessions, unsigned char *eap) { uint8_t avp_flags; uint32_t avp_code; uint32_t avp_vendor; int avp_len, avp_len2; void *avp_p, *avp_p2; struct oc_auth_form f; struct oc_form_opt_select o; int i = 0, ret; void *p; int l; struct oc_text_buf *form_msg = buf_alloc(); char tmbuf[80]; struct tm tm; l = load_be16(eap + 2) - 0x0c; /* Already validated */ p = eap + 0x0c; memset(&f, 0, sizeof(f)); memset(&o, 0, sizeof(o)); f.auth_id = (char *)"pulse_session_kill"; f.opts = &o.form; buf_append(form_msg, _("Session limit reached. Choose session to kill:\n")); o.form.next = NULL; o.form.type = OC_FORM_OPT_SELECT; o.form.name = (char *)"session_choice"; o.form.label = (char *)_("Session:"); o.nr_choices = sessions; o.choices = calloc(sessions, sizeof(*o.choices)); if (!o.choices) return -ENOMEM; while (l) { char *from = NULL; time_t when = 0; char *sessid = NULL; if (parse_avp(vpninfo, &p, &l, &avp_p, &avp_len, &avp_flags, &avp_vendor, &avp_code)) { badlist: vpn_progress(vpninfo, PRG_ERR, _("Failed to parse session list\n")); ret = -EINVAL; goto out; } if (avp_vendor != VENDOR_JUNIPER2 || avp_code != 0xd65) continue; while (avp_len) { if (parse_avp(vpninfo, &avp_p, &avp_len, &avp_p2, &avp_len2, &avp_flags, &avp_vendor, &avp_code)) goto badlist; dump_avp(vpninfo, avp_flags, avp_vendor, avp_code, avp_p2, avp_len2); if (avp_vendor == VENDOR_JUNIPER2 && avp_code == 0xd66) { sessid = strndup(avp_p2, avp_len2); } else if (avp_vendor == VENDOR_JUNIPER2 && avp_code == 0xd67) { from = strndup(avp_p2, avp_len2); } else if (avp_vendor == VENDOR_JUNIPER2 && avp_code == 0xd68 && avp_len2 == 8) { when = load_be32((char *)avp_p2 + 4); if (sizeof(time_t) > 4) when |= ((uint64_t)load_be32(avp_p2)) << 32; } } if (!from || !sessid || !when) { free(from); free(sessid); goto badlist; } localtime_r(&when, &tm); strftime(tmbuf, 80, "%a, %d %b %Y %H:%M:%S %Z", &tm); buf_append(form_msg, " - %s from %s at %s\n", sessid, from, tmbuf); free(from); o.choices[i] = malloc(sizeof(struct oc_choice)); if (!o.choices[i]) { ret = -ENOMEM; goto out; } o.choices[i]->name = o.choices[i]->label = sessid; if (!o.choices[i]->name) { ret = -ENOMEM; goto out; } i++; } ret = buf_error(form_msg); if (ret) goto out; f.message = form_msg->data; ret = process_auth_form(vpninfo, &f); if (!ret) buf_append_avp_string(reqbuf, 0xd69, o.form._value); out: if (o.choices) { for (i = 0; i < sessions; i++) { if (o.choices[i]) { free(o.choices[i]->name); free(o.choices[i]); } } free(o.choices); } buf_free(form_msg); return ret; } static int pulse_request_user_auth(struct openconnect_info *vpninfo, struct oc_text_buf *reqbuf, uint8_t eap_ident, int prompt_flags, char *user_prompt, char *pass_prompt) { struct oc_auth_form f; struct oc_form_opt o[2]; unsigned char eap_avp[23]; int l; int ret; memset(&f, 0, sizeof(f)); memset(o, 0, sizeof(o)); f.auth_id = (char *) ((prompt_flags & PROMPT_PRIMARY) ? "pulse_user" : "pulse_secondary"); f.opts = &o[1]; /* Point to password prompt in case that's all we use */ f.message = (prompt_flags & PROMPT_PRIMARY) ? _("Enter user credentials:") : _("Enter secondary credentials:"); if (prompt_flags & PROMPT_USERNAME) { f.opts = &o[0]; o[0].next = NULL; /* Again, for now */ o[0].type = OC_FORM_OPT_TEXT; o[0].name = (char *)"username"; if (user_prompt) o[0].label = user_prompt; else o[0].label = (char *) ((prompt_flags & PROMPT_PRIMARY) ? _("Username:") : _("Secondary username:")); } if (prompt_flags & PROMPT_PASSWORD) { /* Might be referenced from o[0] or directly from f.opts */ o[0].next = &o[1]; o[1].type = OC_FORM_OPT_PASSWORD; o[1].name = (char *)"password"; if (pass_prompt) o[1].label = pass_prompt; else o[1].label = (char *) ((prompt_flags & PROMPT_PRIMARY) ? _("Password:") : _("Secondary password:")); } ret = process_auth_form(vpninfo, &f); if (ret) goto out; if (o[0]._value) { buf_append_avp_string(reqbuf, 0xd6d, o[0]._value); free_pass(&o[0]._value); } if (o[1]._value) { l = strlen(o[1]._value); if (l > 253) { free_pass(&o[1]._value); return -EINVAL; } } else { /* Their client actually resubmits the primary password when * a secondary password is requested. But it doesn't seem to * be necessary; might even just be a bug. */ l = 0; } /* AVP flags+mandatory+length */ store_be32(eap_avp, AVP_CODE_EAP_MESSAGE); store_be32(eap_avp + 4, (AVP_MANDATORY << 24) + sizeof(eap_avp) + l); /* EAP header: code/ident/len */ eap_avp[8] = EAP_RESPONSE; eap_avp[9] = eap_ident; store_be16(eap_avp + 10, l + 15); /* EAP length */ store_be32(eap_avp + 12, EXPANDED_JUNIPER); store_be32(eap_avp + 16, 2); /* EAP Juniper/2 payload: 02 02 */ eap_avp[20] = eap_avp[21] = 0x02; eap_avp[22] = l + 2; /* Why 2? */ buf_append_bytes(reqbuf, eap_avp, sizeof(eap_avp)); if (o[1]._value) { buf_append_bytes(reqbuf, o[1]._value, l); free_pass(&o[1]._value); } /* Padding */ if ((sizeof(eap_avp) + l) & 3) { uint32_t pad = 0; buf_append_bytes(reqbuf, &pad, 4 - ((sizeof(eap_avp) + l) & 3)); } ret = 0; out: return ret; } static int pulse_request_gtc(struct openconnect_info *vpninfo, struct oc_text_buf *reqbuf, uint8_t eap_ident, int prompt_flags, char *user_prompt, char *pass_prompt, char *gtc_prompt) { struct oc_auth_form f; struct oc_form_opt o[2]; int ret; memset(&f, 0, sizeof(f)); memset(o, 0, sizeof(o)); f.auth_id = (char *)"pulse_gtc"; /* The first prompt always seems to be 'Enter SecurID PASSCODE:' and is ignored. */ if (gtc_prompt && (prompt_flags & PROMPT_GTC_NEXT)) f.message = gtc_prompt; else f.message = _("Token code request:"); if (prompt_flags & PROMPT_USERNAME) { f.opts = &o[0]; o[0].next = &o[1]; o[0].type = OC_FORM_OPT_TEXT; o[0].name = (char *)"username"; if (user_prompt) o[0].label = user_prompt; else o[0].label = (char *) ((prompt_flags & PROMPT_PRIMARY) ? _("Username:") : _("Secondary username:")); } else { f.opts = &o[1]; } o[1].type = OC_FORM_OPT_PASSWORD; o[1].name = (char *)"tokencode"; /* * For retries, we have a gtc_prompt and we just say 'Please enter response:'. * Otherwise, use the pass_prompt if it exists, or create our own based * on whether it's primary authentication or not. */ if (prompt_flags & PROMPT_GTC_NEXT) { o[1].label = _("Please enter response:"); } else if (pass_prompt) { o[1].label = pass_prompt; } else if (prompt_flags & PROMPT_PRIMARY) { o[1].label = _("Please enter your passcode:"); } else { o[1].label = _("Please enter your secondary token information:"); } if (!can_gen_tokencode(vpninfo, &f, &o[1])) o[1].type = OC_FORM_OPT_TOKEN; ret = process_auth_form(vpninfo, &f); if (ret) goto out; ret = do_gen_tokencode(vpninfo, &f); if (ret) goto out; if (o[0]._value) { buf_append_avp_string(reqbuf, 0xd6d, o[0]._value); free_pass(&o[0]._value); } if (o[1]._value) { unsigned char eap_avp[13]; int l = strlen(o[1]._value); if (l > 253) { free_pass(&o[1]._value); ret = -EINVAL; goto out; } /* AVP flags+mandatory+length */ store_be32(eap_avp, AVP_CODE_EAP_MESSAGE); store_be32(eap_avp + 4, (AVP_MANDATORY << 24) + sizeof(eap_avp) + l); /* EAP header: code/ident/len */ eap_avp[8] = EAP_RESPONSE; eap_avp[9] = eap_ident; store_be16(eap_avp + 10, l + 5); /* EAP length */ eap_avp[12] = EAP_TYPE_GTC; buf_append_bytes(reqbuf, eap_avp, sizeof(eap_avp)); buf_append_bytes(reqbuf, o[1]._value, l); /* Padding */ if ((sizeof(eap_avp) + l) & 3) { uint32_t pad = 0; buf_append_bytes(reqbuf, &pad, 4 - ((sizeof(eap_avp) + l) & 3)); } free_pass(&o[1]._value); } else { ret = -EINVAL; goto out; } ret = 0; out: return ret; } static int dup_prompt(char **p, uint8_t *avp_p, int avp_len) { char *ret = NULL; free(*p); *p = NULL; if (!avp_len) { return 0; } else if (avp_p[avp_len - 1] == ':') { ret = strndup((char *)avp_p, avp_len); } else { ret = calloc(avp_len + 2, 1); if (ret) { memcpy(ret, avp_p, avp_len); ret[avp_len] = ':'; ret[avp_len + 1] = 0; } } if (ret) { *p = ret; return 0; } else return -ENOMEM; } /* * There is complex client-side logic around when to (re)prompt for a password. * The first prompt always needs it, whether it's a TokenCode request (EAP-06) * or a normal password request (EAP-Expanded-Juniper/2). If a password request * fails (0x81) then we prompt for username again in case that's what was wrong. * * If there's a secondary password request, it might need a *secondary* username. * The first request comes with a 0xd73 AVP which has a single integer: * 1: prompt for both username and password. * 3: Prompt for password only. * 5: Prompt for username only. * */ /* IF-T/TLS session establishment is the same for both pulse_obtain_cookie() and * pulse_connect(). We have to go through the EAP phase of the connection either * way; it's just that we might do it with just the cookie, or we might need to * use the password/cert etc. */ static int pulse_authenticate(struct openconnect_info *vpninfo, int connecting) { int ret; struct oc_text_buf *reqbuf; unsigned char bytes[16384]; int eap_ofs; uint8_t eap_ident, eap2_ident = 0; uint8_t avp_flags; uint32_t avp_code; uint32_t avp_vendor; int avp_len, l; void *avp_p, *p; unsigned char *eap; int cookie_found = 0; int j2_found = 0, realms_found = 0, realm_entry = 0, old_sessions = 0, gtc_found = 0; uint8_t j2_code = 0; void *ttls = NULL; char *user_prompt = NULL, *pass_prompt = NULL, *gtc_prompt = NULL, *signin_prompt = NULL; char *user2_prompt = NULL, *pass2_prompt = NULL; int prompt_flags = PROMPT_PRIMARY | PROMPT_USERNAME | PROMPT_PASSWORD; /* XXX: We should do what cstp_connect() does to check that configuration hasn't changed on a reconnect. */ ret = openconnect_open_https(vpninfo); if (ret) return ret; reqbuf = buf_alloc(); buf_append(reqbuf, "GET /%s HTTP/1.1\r\n", vpninfo->urlpath ?: ""); http_common_headers(vpninfo, reqbuf); buf_append(reqbuf, "Content-Type: EAP\r\n"); buf_append(reqbuf, "Upgrade: IF-T/TLS 1.0\r\n"); buf_append(reqbuf, "Content-Length: 0\r\n"); buf_append(reqbuf, "\r\n"); if (buf_error(reqbuf)) { vpn_progress(vpninfo, PRG_ERR, _("Error creating Pulse connection request\n")); ret = buf_error(reqbuf); goto out; } if (vpninfo->dump_http_traffic) dump_buf(vpninfo, '>', reqbuf->data); ret = vpninfo->ssl_write(vpninfo, reqbuf->data, reqbuf->pos); if (ret < 0) goto out; ret = process_http_response(vpninfo, 1, NULL, reqbuf); if (ret < 0) goto out; if (ret != 101) { vpn_progress(vpninfo, PRG_ERR, _("Unexpected %d result from server\n"), ret); ret = -EINVAL; goto out; } vpninfo->ift_seq = 0; /* IF-T version request. */ buf_truncate(reqbuf); buf_append_ift_hdr(reqbuf, VENDOR_TCG, IFT_VERSION_REQUEST); /* Min version 1, max 2, preferred 2. Not that we actually do v2; the auth is * still all IF-T/TLS v1. But the server won't offer us HMAC-SHA256 unless we * advertise v2 */ buf_append_be32(reqbuf, 0x00010202); ret = send_ift_packet(vpninfo, reqbuf); if (ret) goto out; ret = recv_ift_packet(vpninfo, (void *)bytes, sizeof(bytes)); if (ret < 0) goto out; if (ret != 0x14 || (load_be32(bytes) & 0xffffff) != VENDOR_TCG || load_be32(bytes + 4) != IFT_VERSION_RESPONSE || load_be32(bytes + 8) != 0x14) { vpn_progress(vpninfo, PRG_ERR, _("Unexpected response to IF-T/TLS version negotiation:\n")); dump_buf_hex(vpninfo, PRG_ERR, '<', (void *)bytes, ret); ret = -EINVAL; goto out; } vpn_progress(vpninfo, PRG_TRACE, _("IF-T/TLS version from server: %d\n"), bytes[0x13]); /* Client information packet over IF-T/TLS */ buf_truncate(reqbuf); buf_append_ift_hdr(reqbuf, VENDOR_JUNIPER, 0x88); buf_append(reqbuf, "clientHostName=%s", vpninfo->localname); bytes[0] = 0; if (vpninfo->peer_addr && vpninfo->peer_addr->sa_family == AF_INET6) { struct sockaddr_in6 a; socklen_t l = sizeof(a); if (!getsockname(vpninfo->ssl_fd, (void *)&a, &l)) inet_ntop(AF_INET6, &a.sin6_addr, (void *)bytes, sizeof(bytes)); } else if (vpninfo->peer_addr && vpninfo->peer_addr->sa_family == AF_INET) { struct sockaddr_in a; socklen_t l = sizeof(a); if (!getsockname(vpninfo->ssl_fd, (void *)&a, &l)) inet_ntop(AF_INET, &a.sin_addr, (void *)bytes, sizeof(bytes)); } if (bytes[0]) buf_append(reqbuf, " clientIp=%s", bytes); buf_append(reqbuf, "\n%c", 0); ret = send_ift_packet(vpninfo, reqbuf); if (ret) goto out; /* Await start of auth negotiations */ ret = recv_ift_packet(vpninfo, (void *)bytes, sizeof(bytes)); if (ret < 0) goto out; /* Basically an empty IF-T/TLS auth challenge packet of type Juniper/1, * without even an EAP header in the payload. */ if (!valid_ift_auth(bytes, ret) || ret != 0x14) { vpn_progress(vpninfo, PRG_ERR, _("Unexpected IF-T/TLS authentication challenge:\n")); dump_buf_hex(vpninfo, PRG_ERR, '<', (void *)bytes, ret); ret = -EINVAL; goto out; } /* Start by sending an EAP Identity of 'anonymous'. At this point we * aren't yet very far down the rabbithole... * * -------------------------------------- * | TCP/IP | * |------------------------------------| * | TLS | * |------------------------------------| * | IF-T/TLS | * |------------------------------------| * | EAP (IF-T/TLS Auth Type Juniper/1) | * |------------------------------------| * | EAP-Identity | * -------------------------------------- */ buf_truncate(reqbuf); buf_append_ift_hdr(reqbuf, VENDOR_TCG, IFT_CLIENT_AUTH_RESPONSE); buf_append_be32(reqbuf, JUNIPER_1); /* IF-T/TLS Auth Type */ eap_ofs = buf_append_eap_hdr(reqbuf, EAP_RESPONSE, 1, EAP_TYPE_IDENTITY, 0); buf_append(reqbuf, "anonymous"); buf_fill_eap_len(reqbuf, eap_ofs); ret = send_ift_packet(vpninfo, reqbuf); if (ret) goto out; /* * Phase 2 may continue directly with EAP within IF-T/TLS, or if certificate * auth is enabled, the server may use EAP-TTLS. In that case, we end up * with EAP within EAP-Message AVPs within EAP-TTLS within IF-T/TLS. * The send_eap_packet() and recv_eap_packet() functions cope with both * formats. The buffers have 0x14 bytes of header space, to allow for * the IF-T/TLS header which is the larger of the two. * * -------------------------------------- * | TCP/IP | * |------------------------------------| * | TLS | * |------------------------------------| * | IF-T/TLS | * |------------------------------------| * | EAP (IF-T/TLS Auth Type Juniper/1) | * |------------------ | * | EAP-TTLS | | * |-----------------| (or directly) | * | EAP-Message AVP | | * |-----------------|------------------| * | EAP-Juniper-1 | * -------------------------------------- */ ret = recv_ift_packet(vpninfo, (void *)bytes, sizeof(bytes)); if (ret < 0) goto out; /* Check EAP header and length */ if (!valid_ift_auth_eap(bytes, ret)) { bad_ift: vpn_progress(vpninfo, PRG_ERR, _("Unexpected IF-T/TLS authentication challenge:\n")); dump_buf_hex(vpninfo, PRG_ERR, '<', (void *)bytes, ret); ret = -EINVAL; goto out; } /* * We know the packet is valid at least down to the first layer of * EAP in the diagram above, directly within the IF-T/TLS Auth Type * of Juniper/1. Now, disambiguate between the two cases where the * diagram diverges. Is it EAP-TTLS or is it EAP-Juniper-1 directly? */ if (valid_ift_auth_eap_exj1(bytes, ret)) { eap = bytes + 0x14; } else { /* If it isn't that, it'd better be EAP-TTLS... */ if (bytes[0x18] != EAP_TYPE_TTLS) goto bad_ift; vpninfo->ttls_eap_ident = bytes[0x15]; vpninfo->ttls_recvbuf = malloc(16384); if (!vpninfo->ttls_recvbuf) return -ENOMEM; vpninfo->ttls_recvlen = 0; vpninfo->ttls_recvpos = 0; ttls = establish_eap_ttls(vpninfo); if (!ttls) { vpn_progress(vpninfo, PRG_ERR, _("Failed to establish EAP-TTLS session\n")); ret = -EINVAL; goto out; } /* Resend the EAP Identity 'anonymous' packet within EAP-TTLS */ ret = send_eap_packet(vpninfo, ttls, reqbuf); if (ret) goto out; /* * The recv_eap_packet() function receives and validates the EAP * packet of type Extended Juniper-1, either natively or within * EAP-TTLS according to whether 'ttls' is set. */ eap = recv_eap_packet(vpninfo, ttls, bytes, sizeof(bytes)); if (!eap) { ret = -EIO; goto out; } } /* Now we (hopefully) have the server information packet, in an EAP request * from the server. Either it was received directly in IF-T/TLS, or within * an EAP-Message within EAP-TTLS. Either way, the EAP message we're * interested in will be at offset 0x14 in the packet, its header will * have been checked, and is Expanded Juniper/1, and its payload thus * starts at 0x20. And its length is sufficient that we won't underflow */ eap_ident = eap[1]; l = load_be16(eap + 2) - 0x0c; /* Already validated */ p = eap + 0x0c; /* We don't actually use anything we get here. Typically it * contains Juniper/0xd49 and Juniper/0xd4a word AVPs, and * a Juniper/0xd56 AVP with server licensing information. */ while (l) { if (parse_avp(vpninfo, &p, &l, &avp_p, &avp_len, &avp_flags, &avp_vendor, &avp_code)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse AVP\n")); bad_eap: dump_buf_hex(vpninfo, PRG_ERR, 'E', eap, load_be16(eap + 2)); ret = -EINVAL; goto out; } dump_avp(vpninfo, avp_flags, avp_vendor, avp_code, avp_p, avp_len); } /* Present the client information and auth cookie */ buf_truncate(reqbuf); buf_append_ift_hdr(reqbuf, VENDOR_TCG, IFT_CLIENT_AUTH_RESPONSE); buf_append_be32(reqbuf, JUNIPER_1); /* IF-T/TLS Auth Type */ eap_ofs = buf_append_eap_hdr(reqbuf, EAP_RESPONSE, eap_ident, EAP_TYPE_EXPANDED, 1); #if 0 /* Their client sends a lot of other stuff here, which we don't * understand and which doesn't appear to be mandatory. So leave * it out for now until/unless it becomes necessary. It seems that * sending Pulse-Secure/4.0.0.0 or anything newer makes it do * EAP-TLS *within* the EAP-TTLS session if you don't actually * present a certificate. */ buf_append_avp_be32(reqbuf, 0xd49, 3); buf_append_avp_be32(reqbuf, 0xd61, 0); buf_append_avp_string(reqbuf, 0xd5e, "Windows"); buf_append_avp_string(reqbuf, 0xd70, "Pulse-Secure/9.0.3.1667 (Windows Server 2016) Pulse/9.0.3.1667"); buf_append_avp_string(reqbuf, 0xd63, "\xac\x1e\x8a\x78\x2d\x96\x45\x69\xb7\x7b\x80\x0f\xb7\x39\x2e\x41"); buf_append_avp_string(reqbuf, 0xd64, "\x1a\x3d\x9f\xa4\x07\xd9\xcb\x40\x9d\x61\x6a\x7a\x89\x24\x9b\x15"); buf_append_avp_string(reqbuf, 0xd5f, "en-US"); buf_append_avp_string(reqbuf, 0xd6c, "\x02\xe9\xa7\x51\x92\x4e"); buf_append_avp_be32(reqbuf, 0xd84, 0); #else buf_append_avp_string(reqbuf, 0xd70, vpninfo->useragent); #endif if (vpninfo->cookie) buf_append_avp_string(reqbuf, 0xd53, vpninfo->cookie); buf_fill_eap_len(reqbuf, eap_ofs); ret = send_eap_packet(vpninfo, ttls, reqbuf); if (ret) goto out; /* Await start of auth negotiations */ auth_response: free(signin_prompt); signin_prompt = NULL; /* If there's a follow-on GTC prompt, remember it's not the first */ if (gtc_found) prompt_flags |= PROMPT_GTC_NEXT; else prompt_flags &= ~PROMPT_GTC_NEXT; realm_entry = realms_found = j2_found = old_sessions = 0, gtc_found = 0; eap = recv_eap_packet(vpninfo, ttls, (void *)bytes, sizeof(bytes)); if (!eap) { ret = -EIO; goto out; } eap_ident = eap[1]; l = load_be16(eap + 2) - 0x0c; /* Already validated */ p = eap + 0x0c; while (l) { if (parse_avp(vpninfo, &p, &l, &avp_p, &avp_len, &avp_flags, &avp_vendor, &avp_code)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse AVP\n")); goto bad_eap; } dump_avp(vpninfo, avp_flags, avp_vendor, avp_code, avp_p, avp_len); /* It's a bit late for this given that we don't get it until after * we provide the password. */ if (avp_vendor == VENDOR_JUNIPER2 && avp_code == 0xd55) { char md5buf[MD5_SIZE * 2 + 1]; get_cert_md5_fingerprint(vpninfo, vpninfo->peer_cert, md5buf); if (avp_len != MD5_SIZE * 2 || strncasecmp(avp_p, md5buf, MD5_SIZE * 2)) { vpn_progress(vpninfo, PRG_ERR, _("Server certificate mismatch. Aborting due to suspected MITM attack\n")); ret = -EPERM; goto out; } } if (avp_vendor == VENDOR_JUNIPER2 && avp_code == 0xd65) { old_sessions++; } else if (avp_vendor == VENDOR_JUNIPER2 && avp_code == 0xd60) { uint32_t failcode; if (avp_len != 4) goto auth_unknown; failcode = load_be32(avp_p); if (failcode == 0x0d) { vpn_progress(vpninfo, PRG_ERR, _("Authentication failure: Account locked out\n")); } else { vpn_progress(vpninfo, PRG_ERR, _("Authentication failure: Code 0x%02x\n"), failcode); } ret = -EPERM; goto out; } else if (avp_vendor == VENDOR_JUNIPER2 && avp_code == 0xd80) { dup_prompt(&user_prompt, avp_p, avp_len); } else if (avp_vendor == VENDOR_JUNIPER2 && avp_code == 0xd81) { dup_prompt(&pass_prompt, avp_p, avp_len); } else if (avp_vendor == VENDOR_JUNIPER2 && avp_code == 0xd82) { dup_prompt(&user2_prompt, avp_p, avp_len); } else if (avp_vendor == VENDOR_JUNIPER2 && avp_code == 0xd83) { dup_prompt(&pass2_prompt, avp_p, avp_len); } else if (avp_vendor == VENDOR_JUNIPER2 && avp_code == 0xd73) { uint32_t val; if (avp_len != 4) goto auth_unknown; val = load_be32(avp_p); switch (val) { case 1: /* Prompt for both username and password. */ prompt_flags = PROMPT_PASSWORD | PROMPT_USERNAME; break; case 3: /* Prompt for password.*/ prompt_flags = PROMPT_PASSWORD; break; case 5: /* Prompt for username.*/ prompt_flags = PROMPT_USERNAME; break; default: goto auth_unknown; } } else if (avp_vendor == VENDOR_JUNIPER2 && avp_code == 0xd7b) { free(signin_prompt); signin_prompt = strndup(avp_p, avp_len); } else if (avp_vendor == VENDOR_JUNIPER2 && avp_code == 0xd4e) { realms_found++; } else if (avp_vendor == VENDOR_JUNIPER2 && avp_code == 0xd4f) { realm_entry++; } else if (avp_vendor == VENDOR_JUNIPER2 && avp_code == 0xd53) { free(vpninfo->cookie); vpninfo->cookie = strndup(avp_p, avp_len); cookie_found = 1; } else if (!avp_vendor && avp_code == AVP_CODE_EAP_MESSAGE) { char *avp_c = avp_p; /* EAP within AVP within EAP within IF-T/TLS. Chewck EAP header. */ if (avp_len < 5 || avp_c[0] != EAP_REQUEST || load_be16(avp_c + 2) != avp_len) goto auth_unknown; eap2_ident = avp_c[1]; if (avp_c[4] == EAP_TYPE_GTC) { gtc_found = 1; free(gtc_prompt); gtc_prompt = strndup(avp_c + 5, avp_len - 5); } else if (avp_len == 13 && load_be32(avp_c + 4) == EXPANDED_JUNIPER) { switch (load_be32(avp_c + 8)) { case 2: /* Expanded Juniper/2: password */ j2_found = 1; j2_code = avp_c[12]; break; default: goto auth_unknown; } } else { goto auth_unknown; } } else if (avp_flags & AVP_MANDATORY) goto auth_unknown; } /* We want it to be precisely one type of request, not a mixture. */ if (realm_entry + !!realms_found + j2_found + gtc_found + cookie_found + !!old_sessions != 1 && !signin_prompt) { auth_unknown: vpn_progress(vpninfo, PRG_ERR, _("Unhandled Pulse authentication packet, or authentication failure\n")); goto bad_eap; } /* Prepare next response packet */ buf_truncate(reqbuf); buf_append_ift_hdr(reqbuf, VENDOR_TCG, IFT_CLIENT_AUTH_RESPONSE); buf_append_be32(reqbuf, JUNIPER_1); /* IF-T/TLS Auth Type */ eap_ofs = buf_append_eap_hdr(reqbuf, EAP_RESPONSE, eap_ident, EAP_TYPE_EXPANDED, 1); if (!cookie_found) { /* No user interaction when called from pulse_connect(). * We expect the cookie to work. */ if (connecting) { vpn_progress(vpninfo, PRG_ERR, _("Pulse authentication cookie not accepted\n")); ret = -EPERM; goto out; } if (realm_entry) { vpn_progress(vpninfo, PRG_TRACE, _("Pulse realm entry\n")); ret = pulse_request_realm_entry(vpninfo, reqbuf); if (ret) goto out; } else if (realms_found) { vpn_progress(vpninfo, PRG_TRACE, _("Pulse realm choice\n")); ret = pulse_request_realm_choice(vpninfo, reqbuf, realms_found, eap); if (ret) goto out; } else if (j2_found) { vpn_progress(vpninfo, PRG_TRACE, _("Pulse password auth request, code 0x%02x\n"), j2_code); /* Present user/password form to user */ ret = pulse_request_user_auth(vpninfo, reqbuf, eap2_ident, prompt_flags, (prompt_flags & PROMPT_PRIMARY) ? user_prompt : user2_prompt, (prompt_flags & PROMPT_PRIMARY) ? pass_prompt : pass2_prompt); if (ret) goto out; } else if (gtc_found) { vpn_progress(vpninfo, PRG_TRACE, _("Pulse password general token code request\n")); /* Present user/password form to user */ ret = pulse_request_gtc(vpninfo, reqbuf, eap2_ident, prompt_flags, (prompt_flags & PROMPT_PRIMARY) ? user_prompt : user2_prompt, (prompt_flags & PROMPT_PRIMARY) ? pass_prompt : pass2_prompt, gtc_prompt); if (ret) goto out; } else if (old_sessions) { vpn_progress(vpninfo, PRG_TRACE, _("Pulse session limit, %d sessions\n"), old_sessions); ret = pulse_request_session_kill(vpninfo, reqbuf, old_sessions, eap); if (ret) goto out; } else if (signin_prompt) { buf_append_avp_be32(reqbuf, 0xd7c, 1); } else { vpn_progress(vpninfo, PRG_ERR, _("Unhandled Pulse auth request\n")); goto bad_eap; } /* If we get here, something has filled in the next response */ buf_fill_eap_len(reqbuf, eap_ofs); ret = send_eap_packet(vpninfo, ttls, reqbuf); if (ret) goto out; goto auth_response; } /* We're done, but need to send an empty response to the above information * in order that the EAP session can complete with 'success'. Not quite * sure why they didn't send it as payload on the success frame, mind you. */ buf_fill_eap_len(reqbuf, eap_ofs); ret = send_eap_packet(vpninfo, ttls, reqbuf); if (ret) goto out; if (ttls) { /* Normally we don't actually send the EAP-TTLS frame until * we're waiting for a response, which allows us to coalesce. * This time, we need to flush the outbound frames. The empty * EAP response (within EAP-TTLS) causes the server to close * the EAP-TTLS session and the next response is plain IF-T/TLS * IFT_CLIENT_AUTH_SUCCESS just like the non-certificate mode. */ pulse_eap_ttls_recv(vpninfo, NULL, 0); } ret = recv_ift_packet(vpninfo, (void *)bytes, sizeof(bytes)); if (ret < 0) goto out; if (!valid_ift_success(bytes, ret)) { vpn_progress(vpninfo, PRG_ERR, _("Unexpected response instead of IF-T/TLS auth success:\n")); dump_buf_hex(vpninfo, PRG_ERR, '<', (void *)bytes, ret); ret = -EINVAL; goto out; } ret = 0; out: if (ret) openconnect_close_https(vpninfo, 0); buf_free(reqbuf); if (ttls) destroy_eap_ttls(vpninfo, ttls); buf_free(vpninfo->ttls_pushbuf); vpninfo->ttls_pushbuf = NULL; free(vpninfo->ttls_recvbuf); vpninfo->ttls_recvbuf = NULL; free(user_prompt); free(pass_prompt); free(user2_prompt); free(pass2_prompt); free(gtc_prompt); free(signin_prompt); return ret; } int pulse_eap_ttls_send(struct openconnect_info *vpninfo, const void *data, int len) { struct oc_text_buf *buf = vpninfo->ttls_pushbuf; if (!buf) { buf = vpninfo->ttls_pushbuf = buf_alloc(); if (!buf) return -ENOMEM; } /* We concatenate sent data into a single EAP-TTLS frame which is * sent just before we actually need to read something. */ if (!buf->pos) { buf_append_ift_hdr(buf, VENDOR_TCG, IFT_CLIENT_AUTH_RESPONSE); buf_append_be32(buf, JUNIPER_1); /* IF-T/TLS Auth Type */ buf_append_eap_hdr(buf, EAP_RESPONSE, vpninfo->ttls_eap_ident, EAP_TYPE_TTLS, 0); /* Flags byte for EAP-TTLS */ buf_append_bytes(buf, "\0", 1); } buf_append_bytes(buf, data, len); return len; } int pulse_eap_ttls_recv(struct openconnect_info *vpninfo, void *data, int len) { struct oc_text_buf *pushbuf= vpninfo->ttls_pushbuf; int ret; if (!vpninfo->ttls_recvlen) { uint8_t flags; if (pushbuf && !buf_error(pushbuf) && pushbuf->pos) { buf_fill_eap_len(pushbuf, 0x14); ret = send_ift_packet(vpninfo, pushbuf); if (ret) return ret; buf_truncate(pushbuf); } /* else send a continue? */ if (!len) return 0; vpninfo->ttls_recvlen = vpninfo->ssl_read(vpninfo, (void *)vpninfo->ttls_recvbuf, 16384); if (vpninfo->ttls_recvlen > 0 && vpninfo->dump_http_traffic) { vpn_progress(vpninfo, PRG_TRACE, _("Read %d bytes of IF-T/TLS EAP-TTLS record\n"), vpninfo->ttls_recvlen); dump_buf_hex(vpninfo, PRG_TRACE, '<', (void *)vpninfo->ttls_recvbuf, vpninfo->ttls_recvlen); } if (!valid_ift_auth_eap(vpninfo->ttls_recvbuf, vpninfo->ttls_recvlen) || vpninfo->ttls_recvlen < 0x1a || vpninfo->ttls_recvbuf[0x18] != EAP_TYPE_TTLS) { bad_pkt: vpn_progress(vpninfo, PRG_ERR, _("Bad EAP-TTLS packet\n")); return -EIO; } vpninfo->ttls_eap_ident = vpninfo->ttls_recvbuf[0x15]; flags = vpninfo->ttls_recvbuf[0x19]; if (flags & 0x7f) goto bad_pkt; if (flags & 0x80) { /* Length bit. */ if (vpninfo->ttls_recvlen < 0x1e || load_be32(vpninfo->ttls_recvbuf + 0x1a) != vpninfo->ttls_recvlen - 0x1e) goto bad_pkt; vpninfo->ttls_recvpos = 0x1e; vpninfo->ttls_recvlen -= 0x1e; } else { vpninfo->ttls_recvpos = 0x1a; vpninfo->ttls_recvlen -= 0x1a; } } if (len > vpninfo->ttls_recvlen) { memcpy(data, vpninfo->ttls_recvbuf + vpninfo->ttls_recvpos, vpninfo->ttls_recvlen); len = vpninfo->ttls_recvlen; vpninfo->ttls_recvlen = 0; return len; } memcpy(data, vpninfo->ttls_recvbuf + vpninfo->ttls_recvpos, len); vpninfo->ttls_recvpos += len; vpninfo->ttls_recvlen -= len; return len; } int pulse_obtain_cookie(struct openconnect_info *vpninfo) { return pulse_authenticate(vpninfo, 0); } /* Example config packet: < 0000: 00 00 0a 4c 00 00 00 01 00 00 01 80 00 00 01 fb |...L............| < 0010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 |................| < 0020: 2c 20 f0 00 00 00 00 00 00 00 01 70 2e 00 00 78 |, .........p...x| < 0030: 07 00 00 00 07 00 00 10 00 00 ff ff 05 05 00 00 |................| < 0040: 05 05 ff ff 07 00 00 10 00 00 ff ff 07 00 00 00 |................| < 0050: 07 00 00 ff 07 00 00 10 00 00 ff ff 08 08 08 08 |................| < 0060: 08 08 08 08 f1 00 00 10 00 00 ff ff 06 06 06 06 |................| < 0070: 06 06 06 07 f1 00 00 10 00 00 ff ff 09 09 09 09 |................| < 0080: 09 09 09 09 f1 00 00 10 00 00 ff ff 0a 0a 0a 0a |................| < 0090: 0a 0a 0a 0a f1 00 00 10 00 00 ff ff 0b 0b 0b 0b |................| < 00a0: 0b 0b 0b 0b 00 00 00 dc 03 00 00 00 40 00 00 01 |............@...| < 00b0: 00 40 01 00 01 00 40 1f 00 01 00 40 20 00 01 00 |.@....@....@ ...| < 00c0: 40 21 00 01 00 40 05 00 04 00 00 05 78 00 03 00 |@!...@......x...| < 00d0: 04 08 08 08 08 00 03 00 04 08 08 04 04 40 06 00 |.............@..| < 00e0: 0c 70 73 65 63 75 72 65 2e 6e 65 74 00 40 07 00 |.psecure.net.@..| < 00f0: 04 00 00 00 00 00 04 00 04 01 01 01 01 40 19 00 |.............@..| < 0100: 01 01 40 1a 00 01 00 40 0f 00 02 00 00 40 10 00 |..@....@.....@..| < 0110: 02 00 05 40 11 00 02 00 02 40 12 00 04 00 00 04 |...@.....@......| < 0120: b0 40 13 00 04 00 00 00 00 40 14 00 04 00 00 00 |.@.......@......| < 0130: 01 40 15 00 04 00 00 00 00 40 16 00 02 11 94 40 |.@.......@.....@| < 0140: 17 00 04 00 00 00 0f 40 18 00 04 00 00 00 3c 00 |.......@......<.| < 0150: 01 00 04 0a 14 03 01 00 02 00 04 ff ff ff ff 40 |...............@| < 0160: 0b 00 04 0a c8 c8 c8 40 0c 00 01 00 40 0d 00 01 |.......@....@...| < 0170: 00 40 0e 00 01 00 40 1b 00 01 00 40 1c 00 01 00 |.@....@....@....| It starts as an IF-T/TLS packet of type Juniper/1. Lots of zeroes at the start, and at 0x20 there is a distinctive 0x2c20f000 signature which appears to be in all config packets. At 0x28 it has the payload length (0x10 less than the full IF-T length). 0x2c is the start of the routing information. The 0x2e byte always seems to be there, and in this example 0x78 is the length of the routing information block. The number of entries is in byte 0x30. In the absence of IPv6 perhaps, the length at 0x2c seems always to be the number of entries (in 0x30) * 0x10 + 8. Routing entries are 0x10 bytes each, starting at 0x34. The ones starting with 0x07 are include, with 0xf1 are exclude. No idea what the following 7 bytes 0f 00 00 10 00 00 ff ff mean; perhaps the 0010 is a length? The IP address range is in bytes 8-11 (starting address) and the highest address of the range (traditionally a broadcast address) is in bytes 12-15. After the routing inforamation (in this example at 0xa4) comes another length field, this time for the information elements which comprise the rest of the packet. Not sure what the 03 00 00 00 at 0xa8 means; it *could* be an element type 0x3000 with payload length zero but if it is, we don't know what it means. Following that, the elements all have two bytes of type followed by two bytes length, then their payload. There follows an attempt to parse the packet based on the above understanding. Having more examples, especially with IPv6 split includes and excludes, would be useful... */ static int handle_main_config_packet(struct openconnect_info *vpninfo, unsigned char *bytes, int len) { int routes_len = 0; int l; unsigned char *p; /* First part of header, similar to ESP, has already been checked */ if (len < 0x31 || /* Start of routing information */ load_be16(bytes + 0x2c) != 0x2e00 || /* Routing length at 0x2e makes sense */ (routes_len = load_be16(bytes + 0x2e)) != ((int)bytes[0x30] * 0x10 + 8) || /* Make sure the next length field (at 0xa4 in the above example) is present */ len < 0x2c + routes_len + 4|| /* Another length field, must match to end of packet */ load_be32(bytes + 0x2c + routes_len) + routes_len + 0x2c != len) { bad_config: vpn_progress(vpninfo, PRG_ERR, _("Unexpected Pulse config packet:\n")); dump_buf_hex(vpninfo, PRG_ERR, '<', (void *)bytes, len); return -EINVAL; } p = bytes + 0x34; routes_len -= 8; /* The header including length and number of routes */ /* We know it's a multiple of 0x10 now. We checked. */ while (routes_len) { char buf[80]; /* Probably not a whole be32 but let's see if anything ever changes */ uint32_t type = load_be32(p); uint32_t ffff = load_be32(p+4); if (ffff != 0xffff) goto bad_config; /* Convert the range end into a netmask by xor. Mask out the * bits in the network address, leaving only the low bits set, * then invert what's left so that only the high bits are set * as in a normal netmask. * * e.g. * 10.0.0.0-10.0.63.255 becomes 0.0.63.255 becomes 255.255.192.0 */ snprintf(buf, sizeof(buf), "%d.%d.%d.%d/%d.%d.%d.%d", p[8], p[9], p[10], p[11], 255 ^ (p[8] ^ p[12]), 255 ^ (p[9] ^ p[13]), 255 ^ (p[10] ^ p[14]), 255 ^ (p[11] ^ p[15])); if (type == 0x07000010) { struct oc_split_include *inc; vpn_progress(vpninfo, PRG_DEBUG, _("Received split include route %s\n"), buf); inc = malloc(sizeof(*inc)); if (inc) { inc->route = add_option(vpninfo, "split-include", buf, -1); if (inc->route) { inc->next = vpninfo->ip_info.split_includes; vpninfo->ip_info.split_includes = inc; } else free(inc); } } else if (type == 0xf1000010) { struct oc_split_include *exc; vpn_progress(vpninfo, PRG_DEBUG, _("Received split exclude route %s\n"), buf); exc = malloc(sizeof(*exc)); if (exc) { exc->route = add_option(vpninfo, "split-exclude", buf, -1); if (exc->route) { exc->next = vpninfo->ip_info.split_excludes; vpninfo->ip_info.split_excludes = exc; } else free(exc); } } else { vpn_progress(vpninfo, PRG_ERR, _("Receive route of unknown type 0x%08x\n"), type); goto bad_config; } p += 0x10; routes_len -= 0x10; } /* p now points at the length field of the final elements, which was already checked. */ l = load_be32(p); /* No idea what this is */ if (l < 8 || load_be32(p + 4) != 0x03000000) goto bad_config; p += 8; l -= 8; while (l) { uint16_t type = load_be16(p); uint16_t attrlen = load_be16(p+2); if (attrlen + 4 > l) goto bad_config; p += 4; l -= 4; process_attr(vpninfo, type, p, attrlen); p += attrlen; l -= attrlen; if (l && l < 4) goto bad_config; } return 0; } /* Example ESP config packet: < 0000: 00 00 0a 4c 00 00 00 01 00 00 00 80 00 00 01 fc |...L............| < 0010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 |................| < 0020: 21 20 24 00 00 00 00 00 00 00 00 70 00 00 00 54 |! $........p...T| < 0030: 01 00 00 00 ec 52 1b 6c 00 40 11 9d c5 f6 85 f3 |.....R.l.@......| < 0040: 26 7d 70 75 44 45 63 eb 64 00 fb ba 89 4f 24 b2 |&}puDEc.d....O$.| < 0050: 81 42 ce 24 b8 0a f8 b6 71 39 78 f8 5e 6f 5f d6 |.B.$....q9x.^o_.| < 0060: 9e 5c 06 47 8d 1e f3 0e 5a 51 ae b2 3d 09 8d 27 |.\.G....ZQ..=..'| < 0070: e0 50 76 6a 22 9a d1 20 86 78 00 00 00 00 00 00 |.Pvj".. .x......| First 0x2c bytes are like the main config packet header. At 0x2c there is another length field, covering the whole of the rest of this packet. Then an unknown 0x01000000 at 0x30, followed by the server->client SPI in little-endian(!) form at 0x34. Then follows the secrets, with a 2-byte length field at 0x38 (which is always 0x40), followed by the secrets themselves. As with Juniper Network Connect, the HMAC secret immediately follows the encryption key, however large the latter is. */ static int handle_esp_config_packet(struct openconnect_info *vpninfo, unsigned char *bytes, int len) { #ifdef HAVE_ESP struct esp *esp; int secretslen; uint32_t spi; int ret; if (len < 0x6a || load_be32(bytes + 0x2c) != len - 0x2c || load_be32(bytes + 0x30) != 0x01000000 || load_be16(bytes + 0x38) != 0x40) { vpn_progress(vpninfo, PRG_ERR, _("Invalid ESP config packet:\n")); dump_buf_hex(vpninfo, PRG_ERR, '<', bytes, len); return -EINVAL; } /* We insist on this being 0x40 for now. But just in case it later changes... */ secretslen = load_be16(bytes + 0x38); vpn_progress(vpninfo, PRG_DEBUG, _("%d bytes of ESP secrets\n"), secretslen); if (!vpninfo->enc_key_len || !vpninfo->hmac_key_len || vpninfo->enc_key_len + vpninfo->hmac_key_len > secretslen) { vpn_progress(vpninfo, PRG_ERR, _("Invalid ESP setup\n")); return -EINVAL; } /* Yes, bizarrely this is little-endian on the wire. I have no idea * what made them do this. */ spi = load_le32(bytes + 0x34); vpn_progress(vpninfo, PRG_DEBUG, _("ESP SPI (outbound): %x\n"), spi); /* But we store it internally as big-endian because we never do any * calculations on it; it's only set into outbound packets and matched * on incoming ones... and we've NEVER had to see it in little-endian * form ever before because that's insane! */ store_be32(&vpninfo->esp_out.spi, spi); memcpy(vpninfo->esp_out.enc_key, bytes + 0x3a, vpninfo->enc_key_len); memcpy(vpninfo->esp_out.hmac_key, bytes + 0x3a + vpninfo->enc_key_len, vpninfo->hmac_key_len); ret = openconnect_setup_esp_keys(vpninfo, 1); if (ret) return ret; esp = &vpninfo->esp_in[vpninfo->current_esp_in]; /* Now, using the buffer in which we received the original packet (which * we trust our caller made large enough), create an appropriate reply. * A reply packet contains two sets of ESP information, as we are expected * to send our own followed by a copy of what the server sent to us. */ /* Adjust the length in the IF-T/TLS header */ store_be32(bytes + 8, 0x40 + 2 * secretslen); /* Copy the server's own ESP information into place */ memmove(bytes + secretslen + 0x3a, bytes + 0x34, secretslen + 0x06); /* Adjust other length fields. */ store_be32(bytes + 0x28, 0x30 + 2 * secretslen); store_be32(bytes + 0x2c, 0x14 + 2 * secretslen); /* Store the SPI. Bizarrely little-endian again. */ store_le32(bytes + 0x34, load_be32(&esp->spi)); memcpy(bytes + 0x3a, esp->enc_key, vpninfo->enc_key_len); memcpy(bytes + 0x3a + vpninfo->enc_key_len, esp->hmac_key, vpninfo->hmac_key_len); memset(bytes + 0x3a + vpninfo->enc_key_len + vpninfo->hmac_key_len, 0, 0x40 - vpninfo->enc_key_len - vpninfo->hmac_key_len); return 0; #else return -EINVAL; #endif } int pulse_connect(struct openconnect_info *vpninfo) { struct oc_text_buf *reqbuf; unsigned char bytes[16384]; int ret; /* If we already have a channel open, it's because we have just * successfully authenticated on it from pulse_obtain_cookie(). */ if (vpninfo->ssl_fd == -1) { ret = pulse_authenticate(vpninfo, 1); if (ret) return ret; } while (1) { uint32_t pkt_type; ret = recv_ift_packet(vpninfo, (void *)bytes, sizeof(bytes)); if (ret < 0) return ret; if (ret < 16 || load_be32(bytes + 8) != ret) { vpn_progress(vpninfo, PRG_ERR, _("Bad IF-T/TLS packet when expecting configuration:\n")); dump_buf_hex(vpninfo, PRG_ERR, '<', bytes, ret); return -EINVAL; } if (load_be32(bytes) != VENDOR_JUNIPER) { bad_pkt: vpn_progress(vpninfo, PRG_INFO, _("Unexpected IF-T/TLS packet when expecting configuration.\n")); dump_buf_hex(vpninfo, PRG_DEBUG, '<', bytes, ret); continue; } pkt_type = load_be32(bytes + 4); /* End of configuration? Seems to have a 4-byte payload of zeroes. */ if (pkt_type == 0x8f) break; /* The main and ESP config packets both start like this. The word at * 0x20 is 0x2c20f000 for config and 0x0x21202400 for ESP, and the word * at 0x2c is the length of the payload (0x10 less than the overall * length including (and in) the IF-T/TLS header. e.g 0x170 here: * * < 0000: 00 00 0a 4c 00 00 00 01 00 00 01 80 00 00 01 fb |...L............| * < 0010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 |................| * < 0020: 2c 20 f0 00 00 00 00 00 00 00 01 70 ... |, .........| */ if (pkt_type != 1 || ret < 0x2c || load_be32(bytes + 0x10) || load_be32(bytes + 0x14) || load_be32(bytes + 0x18) || load_be32(bytes + 0x1c) || load_be32(bytes + 0x24) || load_be32(bytes + 0x28) != ret - 0x10) goto bad_pkt; switch(load_be32(bytes + 0x20)) { case 0x2c20f000: ret = handle_main_config_packet(vpninfo, bytes, ret); if (ret) return ret; break; case 0x21202400: ret = handle_esp_config_packet(vpninfo, bytes, ret); if (ret) { vpninfo->dtls_state = DTLS_DISABLED; continue; } /* It has created a response packet to send. */ ret = send_ift_bytes(vpninfo, bytes, load_be32(bytes + 8)); if (ret) return ret; /* Tell server to enable ESP handling */ reqbuf = buf_alloc(); buf_append_ift_hdr(reqbuf, VENDOR_JUNIPER, 5); buf_append(reqbuf, "ncmo=1\n%c", 0); ret = send_ift_packet(vpninfo, reqbuf); buf_free(reqbuf); if (ret) return ret; break; default: goto bad_pkt; } } if (!vpninfo->ip_info.mtu || (!vpninfo->ip_info.addr && !vpninfo->ip_info.addr6)) { vpn_progress(vpninfo, PRG_ERR, "Insufficient configuration found\n"); return -EINVAL; } ret = 0; monitor_fd_new(vpninfo, ssl); monitor_read_fd(vpninfo, ssl); monitor_except_fd(vpninfo, ssl); free(vpninfo->cstp_pkt); vpninfo->cstp_pkt = NULL; return ret; } int pulse_mainloop(struct openconnect_info *vpninfo, int *timeout, int readable) { int ret; int work_done = 0; if (vpninfo->ssl_fd == -1) goto do_reconnect; /* FIXME: The poll() handling here is fairly simplistic. Actually, if the SSL connection stalls it could return a WANT_WRITE error on _either_ of the SSL_read() or SSL_write() calls. In that case, we should probably remove POLLIN from the events we're looking for, and add POLLOUT. As it is, though, it'll just chew CPU time in that fairly unlikely situation, until the write backlog clears. */ while (readable) { /* Some servers send us packets that are larger than negotiated MTU. We reserve some extra space to handle that */ int receive_mtu = MAX(16384, vpninfo->deflate_pkt_size ? : vpninfo->ip_info.mtu); struct pkt *pkt = vpninfo->cstp_pkt; int len, payload_len; if (!pkt) { pkt = vpninfo->cstp_pkt = malloc(sizeof(struct pkt) + receive_mtu); if (!pkt) { vpn_progress(vpninfo, PRG_ERR, _("Allocation failed\n")); break; } } /* Receive packet header, if there's anything there... */ len = ssl_nonblock_read(vpninfo, &pkt->pulse.vendor, 16); if (!len) break; if (len < 0) goto do_reconnect; if (len < 16) { vpn_progress(vpninfo, PRG_ERR, _("Short packet received (%d bytes)\n"), len); vpninfo->quit_reason = "Short packet received"; return 1; } /* Packets shouldn't cross SSL record boundaries (we hope!), so if there * was a header there, then rest of that packet should be there too. */ if (load_be32(&pkt->pulse.len) > receive_mtu + 0x10) { /* This doesn't look right. Pull the rest of the SSL record * and complain about it (which we will, since the length * won't match the header */ len = receive_mtu; } else len = load_be32(&pkt->pulse.len) - 0x10; payload_len = ssl_nonblock_read(vpninfo, &pkt->data, len); if (payload_len != load_be32(&pkt->pulse.len) - 0x10) { if (payload_len < 0) len = 0x10; else len = payload_len + 0x10; goto unknown_pkt; } if (load_be32(&pkt->pulse.vendor) != VENDOR_JUNIPER) goto unknown_pkt; vpninfo->ssl_times.last_rx = time(NULL); len = payload_len + 0x10; switch(load_be32(&pkt->pulse.type)) { case 4: vpn_progress(vpninfo, PRG_TRACE, _("Received data packet of %d bytes\n"), payload_len); dump_buf_hex(vpninfo, PRG_TRACE, '<', (void *)&vpninfo->cstp_pkt->pulse.vendor, len); vpninfo->cstp_pkt->len = payload_len; queue_packet(&vpninfo->incoming_queue, pkt); vpninfo->cstp_pkt = pkt = NULL; work_done = 1; continue; case 1: if (payload_len < 0x6a || load_be32(pkt->data + 0x10) != 0x21202400 || load_be32(pkt->data + 0x18) != payload_len || load_be32(pkt->data + 0x1c) != payload_len - 0x1c || load_be32(pkt->data + 0x20) != 0x01000000 || load_be16(pkt->data + 0x28) != 0x40) goto unknown_pkt; dump_buf_hex(vpninfo, PRG_ERR, '<', (void *)&vpninfo->cstp_pkt->pulse.vendor, len); ret = handle_esp_config_packet(vpninfo, (void *)&pkt->pulse.vendor, len); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("ESP rekey failed\n")); vpninfo->proto->udp_close(vpninfo); continue; } vpninfo->cstp_pkt = NULL; pkt->len = load_be32(&pkt->pulse.len) - 16; queue_packet(&vpninfo->oncp_control_queue, pkt); print_esp_keys(vpninfo, _("new incoming"), &vpninfo->esp_in[vpninfo->current_esp_in]); print_esp_keys(vpninfo, _("new outgoing"), &vpninfo->esp_out); continue; case 0x96: /* It sends the licence information once the connection is set up. For * now, abuse this to deal with the race condition in ESP setup — it looks * like the server doesn't process the ESP config until after we've sent * the probes, in some cases. */ if (vpninfo->dtls_state == DTLS_SLEEPING) vpninfo->proto->udp_send_probes(vpninfo); break; default: unknown_pkt: vpn_progress(vpninfo, PRG_ERR, _("Unknown Pulse packet\n")); dump_buf_hex(vpninfo, PRG_TRACE, '<', (void *)&vpninfo->cstp_pkt->pulse.vendor, len); continue; } } /* If SSL_write() fails we are expected to try again. With exactly the same data, at exactly the same location. So we keep the packet we had before.... */ if (vpninfo->current_ssl_pkt) { handle_outgoing: vpninfo->ssl_times.last_tx = time(NULL); unmonitor_write_fd(vpninfo, ssl); vpn_progress(vpninfo, PRG_TRACE, _("Packet outgoing:\n")); dump_buf_hex(vpninfo, PRG_TRACE, '>', (void *)&vpninfo->current_ssl_pkt->pulse.vendor, vpninfo->current_ssl_pkt->len + 16); ret = ssl_nonblock_write(vpninfo, &vpninfo->current_ssl_pkt->pulse.vendor, vpninfo->current_ssl_pkt->len + 16); if (ret < 0) { do_reconnect: /* XXX: Do we have to do this or can we leave it open? * Perhaps we could even reconnect asynchronously while * the ESP is still running? */ #ifdef HAVE_ESP esp_shutdown(vpninfo); #endif ret = ssl_reconnect(vpninfo); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("Reconnect failed\n")); vpninfo->quit_reason = "Pulse reconnect failed"; return ret; } vpninfo->dtls_need_reconnect = 1; return 1; } else if (!ret) { #if 0 /* Not for Pulse yet */ /* -EAGAIN: ssl_nonblock_write() will have added the SSL fd to ->select_wfds if appropriate, so we can just return and wait. Unless it's been stalled for so long that DPD kicks in and we kill the connection. */ switch (ka_stalled_action(&vpninfo->ssl_times, timeout)) { case KA_DPD_DEAD: goto peer_dead; case KA_REKEY: goto do_rekey; case KA_NONE: return work_done; default: /* This should never happen */ ; } #else return work_done; #endif } if (ret != vpninfo->current_ssl_pkt->len + 16) { vpn_progress(vpninfo, PRG_ERR, _("SSL wrote too few bytes! Asked for %d, sent %d\n"), vpninfo->current_ssl_pkt->len + 8, ret); vpninfo->quit_reason = "Internal error"; return 1; } /* Don't free the 'special' packets */ if (vpninfo->current_ssl_pkt == vpninfo->deflate_pkt) { free(vpninfo->pending_deflated_pkt); vpninfo->pending_deflated_pkt = NULL; } else free(vpninfo->current_ssl_pkt); vpninfo->current_ssl_pkt = NULL; } #if 0 /* Not understood for Pulse yet */ if (vpninfo->owe_ssl_dpd_response) { vpninfo->owe_ssl_dpd_response = 0; vpninfo->current_ssl_pkt = (struct pkt *)&dpd_resp_pkt; goto handle_outgoing; } switch (keepalive_action(&vpninfo->ssl_times, timeout)) { case KA_REKEY: do_rekey: /* Not that this will ever happen; we don't even process the setting when we're asked for it. */ vpn_progress(vpninfo, PRG_INFO, _("CSTP rekey due\n")); if (vpninfo->ssl_times.rekey_method == REKEY_TUNNEL) goto do_reconnect; else if (vpninfo->ssl_times.rekey_method == REKEY_SSL) { ret = cstp_handshake(vpninfo, 0); if (ret) { /* if we failed rehandshake try establishing a new-tunnel instead of failing */ vpn_progress(vpninfo, PRG_ERR, _("Rehandshake failed; attempting new-tunnel\n")); goto do_reconnect; } goto do_dtls_reconnect; } break; case KA_DPD_DEAD: peer_dead: vpn_progress(vpninfo, PRG_ERR, _("CSTP Dead Peer Detection detected dead peer!\n")); goto do_reconnect; do_reconnect: ret = cstp_reconnect(vpninfo); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("Reconnect failed\n")); vpninfo->quit_reason = "CSTP reconnect failed"; return ret; } do_dtls_reconnect: /* succeeded, let's rekey DTLS, if it is not rekeying * itself. */ if (vpninfo->dtls_state > DTLS_SLEEPING && vpninfo->dtls_times.rekey_method == REKEY_NONE) { vpninfo->dtls_need_reconnect = 1; } return 1; case KA_DPD: vpn_progress(vpninfo, PRG_DEBUG, _("Send CSTP DPD\n")); vpninfo->current_ssl_pkt = (struct pkt *)&dpd_pkt; goto handle_outgoing; case KA_KEEPALIVE: /* No need to send an explicit keepalive if we have real data to send */ if (vpninfo->dtls_state != DTLS_CONNECTED && vpninfo->outgoing_queue.head) break; vpn_progress(vpninfo, PRG_DEBUG, _("Send CSTP Keepalive\n")); vpninfo->current_ssl_pkt = (struct pkt *)&keepalive_pkt; goto handle_outgoing; case KA_NONE: ; } #endif if (vpninfo->dtls_state == DTLS_CONNECTING) { /* We don't currently do anything to make the server start sending * data packets in ESP instead of over IF-T/TLS. Just go straight * to CONNECTED mode. */ vpninfo->dtls_state = DTLS_CONNECTED; work_done = 1; } vpninfo->current_ssl_pkt = dequeue_packet(&vpninfo->oncp_control_queue); if (vpninfo->current_ssl_pkt) { /* Anything on the control queue will have the rest of its header filled in already. */ store_be32(&vpninfo->current_ssl_pkt->pulse.ident, vpninfo->ift_seq++); goto handle_outgoing; } /* Service outgoing packet queue, if no DTLS */ while (vpninfo->dtls_state != DTLS_CONNECTED && (vpninfo->current_ssl_pkt = dequeue_packet(&vpninfo->outgoing_queue))) { struct pkt *this = vpninfo->current_ssl_pkt; store_be32(&this->pulse.vendor, VENDOR_JUNIPER); store_be32(&this->pulse.type, 4); store_be32(&this->pulse.len, this->len + 16); store_be32(&this->pulse.ident, vpninfo->ift_seq++); vpn_progress(vpninfo, PRG_TRACE, _("Sending IF-T/TLS data packet of %d bytes\n"), this->len); vpninfo->current_ssl_pkt = this; goto handle_outgoing; } /* Work is not done if we just got rid of packets off the queue */ return work_done; } int pulse_bye(struct openconnect_info *vpninfo, const char *reason) { if (vpninfo->ssl_fd != -1) { struct oc_text_buf *buf = buf_alloc(); buf_append_ift_hdr(buf, VENDOR_JUNIPER, 0x89); if (!buf_error(buf)) send_ift_packet(vpninfo, buf); buf_free(buf); openconnect_close_https(vpninfo, 0); } return 0; } openconnect-8.05/gnutls_tpm2_ibm.c0000664000076400007640000003444213470043037021016 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2018 David Woodhouse. * Copyright © 2017-2018 James Bottomley * * Authors: James Bottomley * David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include "config.h" #include "openconnect-internal.h" #include "gnutls.h" #include #include #include #define TSSINCLUDE(x) < HAVE_TSS2/x > #include TSSINCLUDE(tss.h) #include TSSINCLUDE(tssresponsecode.h) #include TSSINCLUDE(Unmarshal_fp.h) #include TSSINCLUDE(RSA_Decrypt_fp.h) #include TSSINCLUDE(Sign_fp.h) #define KEY_AUTH_FAILED 0x9a2 #define PARENT_AUTH_FAILED 0x98e struct oc_tpm2_ctx { TPM2B_PUBLIC pub; TPM2B_PRIVATE priv; char *parent_pass, *key_pass; unsigned int need_userauth:1; unsigned int legacy_srk:1; unsigned int parent; }; static void tpm2_error(struct openconnect_info *vpninfo, TPM_RC rc, const char *reason) { const char *msg = NULL, *submsg = NULL, *num = NULL; TSS_ResponseCode_toString(&msg, &submsg, &num, rc); vpn_progress(vpninfo, PRG_ERR, _("TPM2 operation %s failed (%d): %s%s%s\n"), reason, rc, msg, submsg, num); } static TPM_RC tpm2_readpublic(struct openconnect_info *vpninfo, TSS_CONTEXT *tssContext, TPM_HANDLE handle, TPMT_PUBLIC *pub) { ReadPublic_In rin; ReadPublic_Out rout; TPM_RC rc; rin.objectHandle = handle; rc = TSS_Execute (tssContext, (RESPONSE_PARAMETERS *)&rout, (COMMAND_PARAMETERS *)&rin, NULL, TPM_CC_ReadPublic, TPM_RH_NULL, NULL, 0); if (rc) { tpm2_error(vpninfo, rc, "TPM2_ReadPublic"); return rc; } if (pub) *pub = rout.outPublic.publicArea; return rc; } static TPM_RC tpm2_get_session_handle(struct openconnect_info *vpninfo, TSS_CONTEXT *tssContext, TPM_HANDLE *handle, TPM_HANDLE bind, const char *auth, TPM_HANDLE salt_key) { TPM_RC rc; StartAuthSession_In in; StartAuthSession_Out out; StartAuthSession_Extra extra; memset(&in, 0, sizeof(in)); memset(&extra, 0 , sizeof(extra)); in.bind = bind; extra.bindPassword = auth; in.sessionType = TPM_SE_HMAC; in.authHash = TPM_ALG_SHA256; in.tpmKey = TPM_RH_NULL; in.symmetric.algorithm = TPM_ALG_AES; in.symmetric.keyBits.aes = 128; in.symmetric.mode.aes = TPM_ALG_CFB; if (salt_key) { /* For the TSS to use a key as salt, it must have * access to the public part. It does this by keeping * key files, but request the public part just to make * sure*/ tpm2_readpublic(vpninfo, tssContext, salt_key, NULL); /* don't care what rout returns, the purpose of the * operation was to get the public key parameters into * the tss so it can construct the salt */ in.tpmKey = salt_key; } rc = TSS_Execute(tssContext, (RESPONSE_PARAMETERS *)&out, (COMMAND_PARAMETERS *)&in, (EXTRA_PARAMETERS *)&extra, TPM_CC_StartAuthSession, TPM_RH_NULL, NULL, 0); if (rc) { tpm2_error(vpninfo, rc, "TPM2_StartAuthSession"); return rc; } *handle = out.sessionHandle; return TPM_RC_SUCCESS; } static void tpm2_flush_handle(TSS_CONTEXT *tssContext, TPM_HANDLE h) { FlushContext_In in; if (!h) return; in.flushHandle = h; TSS_Execute(tssContext, NULL, (COMMAND_PARAMETERS *)&in, NULL, TPM_CC_FlushContext, TPM_RH_NULL, NULL, 0); } #define parent_is_generated(parent) ((parent) >> HR_SHIFT == TPM_HT_PERMANENT) #define parent_is_persistent(parent) ((parent) >> HR_SHIFT == TPM_HT_PERSISTENT) static TPM_RC tpm2_load_srk(struct openconnect_info *vpninfo, TSS_CONTEXT *tssContext, TPM_HANDLE *h, const char *auth, TPM_HANDLE hierarchy, int legacy_srk) { TPM_RC rc; CreatePrimary_In in; CreatePrimary_Out out; TPM_HANDLE session; /* SPS owner */ in.primaryHandle = hierarchy; if (auth) { in.inSensitive.sensitive.userAuth.t.size = strlen(auth); memcpy(in.inSensitive.sensitive.userAuth.t.buffer, auth, strlen(auth)); } else { in.inSensitive.sensitive.userAuth.t.size = 0; } /* no sensitive date for storage keys */ in.inSensitive.sensitive.data.t.size = 0; /* no outside info */ in.outsideInfo.t.size = 0; /* no PCR state */ in.creationPCR.count = 0; /* public parameters for an RSA2048 key */ in.inPublic.publicArea.type = TPM_ALG_ECC; in.inPublic.publicArea.nameAlg = TPM_ALG_SHA256; in.inPublic.publicArea.objectAttributes.val = TPMA_OBJECT_NODA | TPMA_OBJECT_SENSITIVEDATAORIGIN | TPMA_OBJECT_USERWITHAUTH | TPMA_OBJECT_DECRYPT | TPMA_OBJECT_RESTRICTED; if (!legacy_srk) in.inPublic.publicArea.objectAttributes.val |= TPMA_OBJECT_FIXEDPARENT | TPMA_OBJECT_FIXEDTPM; in.inPublic.publicArea.parameters.eccDetail.symmetric.algorithm = TPM_ALG_AES; in.inPublic.publicArea.parameters.eccDetail.symmetric.keyBits.aes = 128; in.inPublic.publicArea.parameters.eccDetail.symmetric.mode.aes = TPM_ALG_CFB; in.inPublic.publicArea.parameters.eccDetail.scheme.scheme = TPM_ALG_NULL; in.inPublic.publicArea.parameters.eccDetail.curveID = TPM_ECC_NIST_P256; in.inPublic.publicArea.parameters.eccDetail.kdf.scheme = TPM_ALG_NULL; in.inPublic.publicArea.unique.ecc.x.t.size = 0; in.inPublic.publicArea.unique.ecc.y.t.size = 0; in.inPublic.publicArea.authPolicy.t.size = 0; /* use a bound session here because we have no known key objects * to encrypt a salt to */ rc = tpm2_get_session_handle(vpninfo, tssContext, &session, hierarchy, auth, 0); if (rc) return rc; rc = TSS_Execute(tssContext, (RESPONSE_PARAMETERS *)&out, (COMMAND_PARAMETERS *)&in, NULL, TPM_CC_CreatePrimary, session, auth, TPMA_SESSION_DECRYPT, TPM_RH_NULL, NULL, 0); if (rc) { tpm2_error(vpninfo, rc, "TSS_CreatePrimary"); tpm2_flush_handle(tssContext, session); return rc; } *h = out.objectHandle; return 0; } static TPM_HANDLE tpm2_load_key(struct openconnect_info *vpninfo, TSS_CONTEXT **tsscp) { TSS_CONTEXT *tssContext; Load_In in; Load_Out out; TPM_HANDLE key = 0; TPM_RC rc; TPM_HANDLE session; char *pass = vpninfo->tpm2->parent_pass; int need_pw = 0; vpninfo->tpm2->parent_pass = NULL; rc = TSS_Create(&tssContext); if (rc) { tpm2_error(vpninfo, rc, "TSS_Create"); return 0; } memset(&in, 0, sizeof(in)); memset(&out, 0, sizeof(out)); if (parent_is_persistent(vpninfo->tpm2->parent)) { if (!pass) { TPMT_PUBLIC pub; rc = tpm2_readpublic(vpninfo, tssContext, vpninfo->tpm2->parent, &pub); if (rc) goto out; if (!(pub.objectAttributes.val & TPMA_OBJECT_NODA)) need_pw = 1; } in.parentHandle = vpninfo->tpm2->parent; } else { reauth_srk: rc = tpm2_load_srk(vpninfo, tssContext, &in.parentHandle, pass, vpninfo->tpm2->parent, vpninfo->tpm2->legacy_srk); if (rc == KEY_AUTH_FAILED) { free_pass(&pass); if (!request_passphrase(vpninfo, "openconnect_tpm2_hierarchy", &pass, _("Enter TPM2 %s hierarchy password:"), "owner")) { goto reauth_srk; } } if (rc) goto out; } rc = tpm2_get_session_handle(vpninfo, tssContext, &session, 0, NULL, in.parentHandle); if (rc) goto out_flush_srk; memcpy(&in.inPublic, &vpninfo->tpm2->pub, sizeof(in.inPublic)); memcpy(&in.inPrivate, &vpninfo->tpm2->priv, sizeof(in.inPrivate)); if (need_pw && !pass) { reauth_parent: if (request_passphrase(vpninfo, "openconnect_tpm2_parent", &pass, _("Enter TPM2 parent key password:"))) { tpm2_flush_handle(tssContext, session); goto out_flush_srk; } } rc = TSS_Execute(tssContext, (RESPONSE_PARAMETERS *)&out, (COMMAND_PARAMETERS *)&in, NULL, TPM_CC_Load, session, pass, 0, TPM_RH_NULL, NULL, 0); if (rc == PARENT_AUTH_FAILED) { free_pass(&pass); goto reauth_parent; } if (rc) { tpm2_error(vpninfo, rc, "TPM2_Load"); tpm2_flush_handle(tssContext, session); } else key = out.objectHandle; out_flush_srk: if (parent_is_generated(vpninfo->tpm2->parent)) tpm2_flush_handle(tssContext, in.parentHandle); out: vpninfo->tpm2->parent_pass = pass; if (!key) TSS_Delete(tssContext); else *tsscp = tssContext; return key; } static void tpm2_unload_key(TSS_CONTEXT *tssContext, TPM_HANDLE key) { tpm2_flush_handle(tssContext, key); TSS_Delete(tssContext); } int tpm2_rsa_sign_hash_fn(gnutls_privkey_t key, gnutls_sign_algorithm_t algo, void *_vpninfo, unsigned int flags, const gnutls_datum_t *data, gnutls_datum_t *sig) { struct openconnect_info *vpninfo = _vpninfo; TSS_CONTEXT *tssContext = NULL; RSA_Decrypt_In in; RSA_Decrypt_Out out; int ret = GNUTLS_E_PK_SIGN_FAILED; TPM_HANDLE authHandle; TPM_RC rc; char *pass = vpninfo->tpm2->key_pass; vpninfo->tpm2->key_pass = NULL; memset(&in, 0, sizeof(in)); in.cipherText.t.size = vpninfo->tpm2->pub.publicArea.unique.rsa.t.size; if (oc_pkcs1_pad(vpninfo, in.cipherText.t.buffer, in.cipherText.t.size, data)) return GNUTLS_E_PK_SIGN_FAILED; in.inScheme.scheme = TPM_ALG_NULL; in.keyHandle = tpm2_load_key(vpninfo, &tssContext); in.label.t.size = 0; if (!in.keyHandle) return GNUTLS_E_PK_SIGN_FAILED; rc = tpm2_get_session_handle(vpninfo, tssContext, &authHandle, 0, NULL, 0); if (rc) goto out; reauth: rc = TSS_Execute(tssContext, (RESPONSE_PARAMETERS *)&out, (COMMAND_PARAMETERS *)&in, NULL, TPM_CC_RSA_Decrypt, authHandle, pass, TPMA_SESSION_DECRYPT, TPM_RH_NULL, NULL, 0); if (rc == KEY_AUTH_FAILED) { free_pass(&pass); if (!request_passphrase(vpninfo, "openconnect_tpm2_key", &pass, _("Enter TPM2 key password:"))) goto reauth; } if (rc) { tpm2_error(vpninfo, rc, "TPM2_RSA_Decrypt"); /* failure means auth handle is not flushed */ tpm2_flush_handle(tssContext, authHandle); goto out; } vpninfo->tpm2->key_pass = pass; sig->data = malloc(out.message.t.size); if (!sig->data) goto out; sig->size = out.message.t.size; memcpy(sig->data, out.message.t.buffer, out.message.t.size); ret = 0; out: tpm2_unload_key(tssContext, in.keyHandle); return ret; } int tpm2_ec_sign_hash_fn(gnutls_privkey_t key, gnutls_sign_algorithm_t algo, void *_vpninfo, unsigned int flags, const gnutls_datum_t *data, gnutls_datum_t *sig) { struct openconnect_info *vpninfo = _vpninfo; TSS_CONTEXT *tssContext = NULL; Sign_In in; Sign_Out out; int ret = GNUTLS_E_PK_SIGN_FAILED; TPM_HANDLE authHandle; TPM_RC rc; char *pass = vpninfo->tpm2->key_pass; gnutls_datum_t sig_r, sig_s; vpninfo->tpm2->key_pass = NULL; vpn_progress(vpninfo, PRG_DEBUG, _("TPM2 EC sign function called for %d bytes.\n"), data->size); memset(&in, 0, sizeof(in)); switch (algo) { case GNUTLS_SIGN_ECDSA_SHA1: in.inScheme.details.ecdsa.hashAlg = TPM_ALG_SHA1; break; case GNUTLS_SIGN_ECDSA_SHA256: in.inScheme.details.ecdsa.hashAlg = TPM_ALG_SHA256; break; case GNUTLS_SIGN_ECDSA_SHA384: in.inScheme.details.ecdsa.hashAlg = TPM_ALG_SHA384; break; #ifdef TPM_ALG_SHA512 case GNUTLS_SIGN_ECDSA_SHA512: in.inScheme.details.ecdsa.hashAlg = TPM_ALG_SHA512; break; #endif default: vpn_progress(vpninfo, PRG_ERR, _("Unknown TPM2 EC digest size %d\n"), data->size); return GNUTLS_E_PK_SIGN_FAILED; } in.inScheme.scheme = TPM_ALG_ECDSA; in.digest.t.size = data->size; memcpy(in.digest.t.buffer, data->data, data->size); in.validation.tag = TPM_ST_HASHCHECK; in.validation.hierarchy = TPM_RH_NULL; in.validation.digest.t.size = 0; in.keyHandle = tpm2_load_key(vpninfo, &tssContext); if (!in.keyHandle) return GNUTLS_E_PK_SIGN_FAILED; rc = tpm2_get_session_handle(vpninfo, tssContext, &authHandle, 0, NULL, 0); if (rc) goto out; reauth: rc = TSS_Execute(tssContext, (RESPONSE_PARAMETERS *)&out, (COMMAND_PARAMETERS *)&in, NULL, TPM_CC_Sign, authHandle, pass, TPMA_SESSION_DECRYPT, TPM_RH_NULL, NULL, 0); if (rc == KEY_AUTH_FAILED) { free_pass(&pass); if (!request_passphrase(vpninfo, "openconnect_tpm2_key", &pass, _("Enter TPM2 key password:"))) goto reauth; } if (rc) { tpm2_error(vpninfo, rc, "TPM2_Sign"); tpm2_flush_handle(tssContext, authHandle); goto out; } vpninfo->tpm2->key_pass = pass; sig_r.data = out.signature.signature.ecdsa.signatureR.t.buffer; sig_r.size = out.signature.signature.ecdsa.signatureR.t.size; sig_s.data = out.signature.signature.ecdsa.signatureS.t.buffer; sig_s.size = out.signature.signature.ecdsa.signatureS.t.size; ret = gnutls_encode_rs_value(sig, &sig_r, &sig_s); out: tpm2_unload_key(tssContext, in.keyHandle); return ret; } int install_tpm2_key(struct openconnect_info *vpninfo, gnutls_privkey_t *pkey, gnutls_datum_t *pkey_sig, unsigned int parent, int emptyauth, int legacy, gnutls_datum_t *privdata, gnutls_datum_t *pubdata) { TPM_RC rc; BYTE *der; INT32 dersize; if (!parent_is_persistent(parent) && parent != TPM_RH_OWNER && parent != TPM_RH_NULL && parent != TPM_RH_ENDORSEMENT && parent != TPM_RH_PLATFORM) { vpn_progress(vpninfo, PRG_ERR, _("Invalid TPM2 parent handle 0x%08x\n"), parent); return -EINVAL; } vpninfo->tpm2 = calloc(1, sizeof(*vpninfo->tpm2)); if (!vpninfo->tpm2) return -ENOMEM; vpninfo->tpm2->parent = parent; vpninfo->tpm2->need_userauth = !emptyauth; vpninfo->tpm2->legacy_srk = legacy; der = privdata->data; dersize = privdata->size; rc = TPM2B_PRIVATE_Unmarshal(&vpninfo->tpm2->priv, &der, &dersize); if (rc) { vpn_progress(vpninfo, PRG_ERR, _("Failed to import TPM2 private key data: 0x%x\n"), rc); goto err_out; } der = pubdata->data; dersize = pubdata->size; rc = TPM2B_PUBLIC_Unmarshal(&vpninfo->tpm2->pub, &der, &dersize, FALSE); if (rc) { vpn_progress(vpninfo, PRG_ERR, _("Failed to import TPM2 public key data: 0x%x\n"), rc); goto err_out; } switch(vpninfo->tpm2->pub.publicArea.type) { case TPM_ALG_RSA: return GNUTLS_PK_RSA; case TPM_ALG_ECC: return GNUTLS_PK_ECDSA; } vpn_progress(vpninfo, PRG_ERR, _("Unsupported TPM2 key type %d\n"), vpninfo->tpm2->pub.publicArea.type); ; err_out: release_tpm2_ctx(vpninfo); return -EINVAL; } void release_tpm2_ctx(struct openconnect_info *vpninfo) { if (vpninfo->tpm2) { free_pass(&vpninfo->tpm2->parent_pass); free_pass(&vpninfo->tpm2->key_pass); free(vpninfo->tpm2); vpninfo->tpm2 = NULL; } } openconnect-8.05/sspi.c0000664000076400007640000003046212741644647016703 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #include "openconnect-internal.h" static int sspi_setup(struct openconnect_info *vpninfo, struct http_auth_state *auth_state, const char *service, int proxy) { SECURITY_STATUS status; struct oc_text_buf *buf = buf_alloc(); buf_append_utf16le(buf, service); buf_append_utf16le(buf, "/"); buf_append_utf16le(buf, proxy ? vpninfo->proxy : vpninfo->hostname); if (buf_error(buf)) return buf_free(buf); auth_state->sspi_target_name = (wchar_t *)buf->data; buf->data = NULL; buf_free(buf); status = AcquireCredentialsHandleW(NULL, (SEC_WCHAR *)L"Negotiate", SECPKG_CRED_OUTBOUND, NULL, NULL, NULL, NULL, &auth_state->sspi_cred, NULL); if (status != SEC_E_OK) { vpn_progress(vpninfo, PRG_ERR, _("AcquireCredentialsHandle() failed: %lx\n"), status); free(auth_state->sspi_target_name); auth_state->sspi_target_name = NULL; return -EIO; } return 0; } int gssapi_authorization(struct openconnect_info *vpninfo, int proxy, struct http_auth_state *auth_state, struct oc_text_buf *hdrbuf) { SECURITY_STATUS status; SecBufferDesc input_desc, output_desc; SecBuffer in_token, out_token; ULONG ret_flags; int first = 1; if (auth_state->state == AUTH_AVAILABLE && sspi_setup(vpninfo, auth_state, "HTTP", proxy)) { auth_state->state = AUTH_FAILED; return -EIO; } if (auth_state->challenge && *auth_state->challenge) { int token_len = -EINVAL; input_desc.cBuffers = 1; input_desc.pBuffers = &in_token; input_desc.ulVersion = SECBUFFER_VERSION; in_token.BufferType = SECBUFFER_TOKEN; in_token.pvBuffer = openconnect_base64_decode(&token_len, auth_state->challenge); if (!in_token.pvBuffer) return token_len; in_token.cbBuffer = token_len; first = 0; } else if (auth_state->state > AUTH_AVAILABLE) { /* This indicates failure. We were trying, but got an empty 'Proxy-Authorization: Negotiate' header back from the server implying that we should start again... */ goto fail_gssapi; } auth_state->state = AUTH_IN_PROGRESS; output_desc.cBuffers = 1; output_desc.pBuffers = &out_token; output_desc.ulVersion = SECBUFFER_VERSION; out_token.BufferType = SECBUFFER_TOKEN; out_token.cbBuffer = 0; out_token.pvBuffer = NULL; status = InitializeSecurityContextW(&auth_state->sspi_cred, first ? NULL : &auth_state->sspi_ctx, auth_state->sspi_target_name, ISC_REQ_ALLOCATE_MEMORY | ISC_REQ_CONFIDENTIALITY | ISC_REQ_REPLAY_DETECT | ISC_REQ_CONNECTION, 0, SECURITY_NETWORK_DREP, first ? NULL : &input_desc, 0, &auth_state->sspi_ctx, &output_desc, &ret_flags, NULL); if (status != SEC_E_OK && status != SEC_I_CONTINUE_NEEDED) { vpn_progress(vpninfo, PRG_ERR, _("InitializeSecurityContext() failed: %lx\n"), status); fail_gssapi: cleanup_gssapi_auth(vpninfo, auth_state); auth_state->state = AUTH_FAILED; /* -EAGAIN to first a reconnect if we had been trying. Else -EIO */ return first ? -EIO : -EAGAIN; } buf_append(hdrbuf, "%sAuthorization: Negotiate ", proxy ? "Proxy-" : ""); buf_append_base64(hdrbuf, out_token.pvBuffer, out_token.cbBuffer); buf_append(hdrbuf, "\r\n"); FreeContextBuffer(out_token.pvBuffer); return 0; } void cleanup_gssapi_auth(struct openconnect_info *vpninfo, struct http_auth_state *auth_state) { if (auth_state->state >= AUTH_IN_PROGRESS) { free(auth_state->sspi_target_name); auth_state->sspi_target_name = NULL; FreeCredentialsHandle(&auth_state->sspi_cred); DeleteSecurityContext(&auth_state->sspi_ctx); } } int socks_gssapi_auth(struct openconnect_info *vpninfo) { SECURITY_STATUS status; SecBufferDesc input_desc, output_desc; SecBuffer in_token, out_token; ULONG ret_flags; unsigned char *pktbuf; int first = 1; int i; int ret = -EIO; struct http_auth_state *auth_state = &vpninfo->proxy_auth[AUTH_TYPE_GSSAPI]; if (sspi_setup(vpninfo, auth_state, "rcmd", 1)) return -EIO; vpninfo->proxy_auth[AUTH_TYPE_GSSAPI].state = AUTH_IN_PROGRESS; pktbuf = malloc(65538); if (!pktbuf) return -ENOMEM; input_desc.cBuffers = 1; input_desc.pBuffers = &in_token; input_desc.ulVersion = SECBUFFER_VERSION; in_token.BufferType = SECBUFFER_TOKEN; output_desc.cBuffers = 1; output_desc.pBuffers = &out_token; output_desc.ulVersion = SECBUFFER_VERSION; out_token.BufferType = SECBUFFER_TOKEN; out_token.cbBuffer = 0; out_token.pvBuffer = NULL; while (1) { status = InitializeSecurityContextW(&auth_state->sspi_cred, first ? NULL : &auth_state->sspi_ctx, auth_state->sspi_target_name, ISC_REQ_ALLOCATE_MEMORY | ISC_REQ_CONFIDENTIALITY | ISC_REQ_REPLAY_DETECT | ISC_REQ_CONNECTION, 0, SECURITY_NETWORK_DREP, first ? NULL : &input_desc, 0, &auth_state->sspi_ctx, &output_desc, &ret_flags, NULL); if (status == SEC_E_OK) { /* If we still have a token to send, send it. */ if (!out_token.cbBuffer) { vpn_progress(vpninfo, PRG_DEBUG, _("GSSAPI authentication completed\n")); ret = 0; break; } } else if (status != SEC_I_CONTINUE_NEEDED) { vpn_progress(vpninfo, PRG_ERR, _("InitializeSecurityContext() failed: %lx\n"), status); break; } if (out_token.cbBuffer > 65535) { vpn_progress(vpninfo, PRG_ERR, _("SSPI token too large (%ld bytes)\n"), out_token.cbBuffer); break; } pktbuf[0] = 1; /* ver */ pktbuf[1] = 1; /* mtyp */ store_be16(pktbuf + 2, out_token.cbBuffer); memcpy(pktbuf + 4, out_token.pvBuffer, out_token.cbBuffer); FreeContextBuffer(out_token.pvBuffer); vpn_progress(vpninfo, PRG_TRACE, _("Sending SSPI token of %lu bytes\n"), out_token.cbBuffer + 4); i = vpninfo->ssl_write(vpninfo, (void *)pktbuf, out_token.cbBuffer + 4); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to send SSPI authentication token to proxy: %s\n"), strerror(-i)); break; } i = vpninfo->ssl_read(vpninfo, (void *)pktbuf, 4); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to receive SSPI authentication token from proxy: %s\n"), strerror(-i)); break; } if (pktbuf[1] == 0xff) { vpn_progress(vpninfo, PRG_ERR, _("SOCKS server reported SSPI context failure\n")); break; } else if (pktbuf[1] != 1) { vpn_progress(vpninfo, PRG_ERR, _("Unknown SSPI status response (0x%02x) from SOCKS server\n"), pktbuf[1]); break; } in_token.cbBuffer = load_be16(pktbuf + 2); in_token.pvBuffer = pktbuf; first = 0; if (!in_token.cbBuffer) { vpn_progress(vpninfo, PRG_DEBUG, _("GSSAPI authentication completed\n")); ret = 0; break; } i = vpninfo->ssl_read(vpninfo, (void *)pktbuf, in_token.cbBuffer); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to receive SSPI authentication token from proxy: %s\n"), strerror(-i)); break; } vpn_progress(vpninfo, PRG_TRACE, _("Got SSPI token of %lu bytes: %02x %02x %02x %02x\n"), in_token.cbBuffer, pktbuf[0], pktbuf[1], pktbuf[2], pktbuf[3]); } if (!ret) { SecPkgContext_Sizes sizes; SecBufferDesc enc_desc; SecBuffer enc_bufs[3]; int len; ret = -EIO; status = QueryContextAttributes(&auth_state->sspi_ctx, SECPKG_ATTR_SIZES, &sizes); if (status != SEC_E_OK) { vpn_progress(vpninfo, PRG_ERR, _("QueryContextAttributes() failed: %lx\n"), status); goto err; } enc_desc.cBuffers = 3; enc_desc.pBuffers = enc_bufs; enc_desc.ulVersion = SECBUFFER_VERSION; enc_bufs[0].BufferType = SECBUFFER_TOKEN; enc_bufs[0].cbBuffer = sizes.cbSecurityTrailer; enc_bufs[0].pvBuffer = malloc(sizes.cbSecurityTrailer); if (!enc_bufs[0].pvBuffer) { ret = -ENOMEM; goto err; } memset(enc_bufs[0].pvBuffer, 0, enc_bufs[0].cbBuffer); enc_bufs[1].BufferType = SECBUFFER_DATA; enc_bufs[1].pvBuffer = pktbuf; enc_bufs[1].cbBuffer = 1; /* All this just to sign this single byte... */ pktbuf[0] = 0; enc_bufs[2].BufferType = SECBUFFER_PADDING; enc_bufs[2].cbBuffer = sizes.cbBlockSize; enc_bufs[2].pvBuffer = malloc(sizes.cbBlockSize); if (!enc_bufs[2].pvBuffer) { free(enc_bufs[0].pvBuffer); ret = -ENOMEM; goto err; } status = EncryptMessage(&auth_state->sspi_ctx, SECQOP_WRAP_NO_ENCRYPT, &enc_desc, 0); if (status != SEC_E_OK) { vpn_progress(vpninfo, PRG_ERR, _("EncryptMessage() failed: %lx\n"), status); free(enc_bufs[0].pvBuffer); free(enc_bufs[2].pvBuffer); goto err; } len = enc_bufs[0].cbBuffer + enc_bufs[1].cbBuffer + enc_bufs[2].cbBuffer; /* Check each one to avoid the (utterly theoretical) overflow when calculated into an 'int' type. */ if (enc_bufs[1].cbBuffer != 1 || enc_bufs[0].cbBuffer > 65535 || enc_bufs[2].cbBuffer > 65535 || len > 65535) { vpn_progress(vpninfo, PRG_ERR, _("EncryptMessage() result too large (%lu + %lu + %lu)\n"), enc_bufs[0].cbBuffer, enc_bufs[1].cbBuffer, enc_bufs[2].cbBuffer); free(enc_bufs[0].pvBuffer); free(enc_bufs[2].pvBuffer); goto err; } /* Our single byte of payload was *supposed* to be unencrypted but Windows doesn't always manage to do as it's told... */ pktbuf[4 + enc_bufs[0].cbBuffer] = pktbuf[0]; pktbuf[0] = 1; pktbuf[1] = 2; store_be16(pktbuf + 2, len); if (enc_bufs[0].cbBuffer) memcpy(pktbuf + 4, enc_bufs[0].pvBuffer, enc_bufs[0].cbBuffer); if (enc_bufs[2].cbBuffer) memcpy(pktbuf + 5 + enc_bufs[0].cbBuffer, enc_bufs[2].pvBuffer, enc_bufs[2].cbBuffer); free(enc_bufs[0].pvBuffer); free(enc_bufs[2].pvBuffer); vpn_progress(vpninfo, PRG_TRACE, _("Sending SSPI protection negotiation of %u bytes\n"), len + 4); i = vpninfo->ssl_write(vpninfo, (void *)pktbuf, len + 4); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to send SSPI protection response to proxy: %s\n"), strerror(-i)); goto err; } i = vpninfo->ssl_read(vpninfo, (void *)pktbuf, 4); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to receive SSPI protection response from proxy: %s\n"), strerror(-i)); goto err; } len = load_be16(pktbuf + 2); i = vpninfo->ssl_read(vpninfo, (void *)pktbuf, len); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to receive SSPI protection response from proxy: %s\n"), strerror(-i)); goto err; } vpn_progress(vpninfo, PRG_TRACE, _("Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n"), len, pktbuf[0], pktbuf[1], pktbuf[2], pktbuf[3]); enc_desc.cBuffers = 2; enc_bufs[0].BufferType = SECBUFFER_STREAM; enc_bufs[0].cbBuffer = len; enc_bufs[0].pvBuffer = pktbuf; enc_bufs[1].BufferType = SECBUFFER_DATA; enc_bufs[1].cbBuffer = 0; enc_bufs[1].pvBuffer = NULL; status = DecryptMessage(&auth_state->sspi_ctx, &enc_desc, 0, NULL); if (status != SEC_E_OK) { vpn_progress(vpninfo, PRG_ERR, _("DecryptMessage failed: %lx\n"), status); goto err; } if (enc_bufs[1].cbBuffer != 1) { vpn_progress(vpninfo, PRG_ERR, _("Invalid SSPI protection response from proxy (%lu bytes)\n"), enc_bufs[1].cbBuffer); FreeContextBuffer(enc_bufs[1].pvBuffer); goto err; } i = *(char *)enc_bufs[1].pvBuffer; if (i == 1) { vpn_progress(vpninfo, PRG_ERR, _("SOCKS proxy demands message integrity, which is not supported\n")); goto err; } else if (i == 2) { vpn_progress(vpninfo, PRG_ERR, _("SOCKS proxy demands message confidentiality, which is not supported\n")); goto err; } else if (i) { vpn_progress(vpninfo, PRG_ERR, _("SOCKS proxy demands protection unknown type 0x%02x\n"), (unsigned char)i); goto err; } ret = 0; } err: cleanup_gssapi_auth(vpninfo, &vpninfo->proxy_auth[AUTH_TYPE_GSSAPI]); vpninfo->proxy_auth[AUTH_TYPE_GSSAPI].state = AUTH_UNSEEN; free(pktbuf); return ret; } openconnect-8.05/ltmain.sh0000644000076400007640000117106713425105604017370 0ustar00dwoodhoudwoodhou00000000000000#! /bin/sh ## DO NOT EDIT - This file generated from ./build-aux/ltmain.in ## by inline-source v2014-01-03.01 # libtool (GNU libtool) 2.4.6 # Provide generalized library-building support services. # Written by Gordon Matzigkeit , 1996 # Copyright (C) 1996-2015 Free Software Foundation, Inc. # This is free software; see the source for copying conditions. There is NO # warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. # GNU Libtool is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 2 of the License, or # (at your option) any later version. # # As a special exception to the GNU General Public License, # if you distribute this file as part of a program or library that # is built using GNU Libtool, you may include this file under the # same distribution terms that you use for the rest of that program. # # GNU Libtool is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program. If not, see . PROGRAM=libtool PACKAGE=libtool VERSION=2.4.6 package_revision=2.4.6 ## ------ ## ## Usage. ## ## ------ ## # Run './libtool --help' for help with using this script from the # command line. ## ------------------------------- ## ## User overridable command paths. ## ## ------------------------------- ## # After configure completes, it has a better idea of some of the # shell tools we need than the defaults used by the functions shared # with bootstrap, so set those here where they can still be over- # ridden by the user, but otherwise take precedence. : ${AUTOCONF="autoconf"} : ${AUTOMAKE="automake"} ## -------------------------- ## ## Source external libraries. ## ## -------------------------- ## # Much of our low-level functionality needs to be sourced from external # libraries, which are installed to $pkgauxdir. # Set a version string for this script. scriptversion=2015-01-20.17; # UTC # General shell script boiler plate, and helper functions. # Written by Gary V. Vaughan, 2004 # Copyright (C) 2004-2015 Free Software Foundation, Inc. # This is free software; see the source for copying conditions. There is NO # warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. # This program is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 3 of the License, or # (at your option) any later version. # As a special exception to the GNU General Public License, if you distribute # this file as part of a program or library that is built using GNU Libtool, # you may include this file under the same distribution terms that you use # for the rest of that program. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNES FOR A PARTICULAR PURPOSE. See the GNU # General Public License for more details. # You should have received a copy of the GNU General Public License # along with this program. If not, see . # Please report bugs or propose patches to gary@gnu.org. ## ------ ## ## Usage. ## ## ------ ## # Evaluate this file near the top of your script to gain access to # the functions and variables defined here: # # . `echo "$0" | ${SED-sed} 's|[^/]*$||'`/build-aux/funclib.sh # # If you need to override any of the default environment variable # settings, do that before evaluating this file. ## -------------------- ## ## Shell normalisation. ## ## -------------------- ## # Some shells need a little help to be as Bourne compatible as possible. # Before doing anything else, make sure all that help has been provided! DUALCASE=1; export DUALCASE # for MKS sh if test -n "${ZSH_VERSION+set}" && (emulate sh) >/dev/null 2>&1; then : emulate sh NULLCMD=: # Pre-4.2 versions of Zsh do word splitting on ${1+"$@"}, which # is contrary to our usage. Disable this feature. alias -g '${1+"$@"}'='"$@"' setopt NO_GLOB_SUBST else case `(set -o) 2>/dev/null` in *posix*) set -o posix ;; esac fi # NLS nuisances: We save the old values in case they are required later. _G_user_locale= _G_safe_locale= for _G_var in LANG LANGUAGE LC_ALL LC_CTYPE LC_COLLATE LC_MESSAGES do eval "if test set = \"\${$_G_var+set}\"; then save_$_G_var=\$$_G_var $_G_var=C export $_G_var _G_user_locale=\"$_G_var=\\\$save_\$_G_var; \$_G_user_locale\" _G_safe_locale=\"$_G_var=C; \$_G_safe_locale\" fi" done # CDPATH. (unset CDPATH) >/dev/null 2>&1 && unset CDPATH # Make sure IFS has a sensible default sp=' ' nl=' ' IFS="$sp $nl" # There are apparently some retarded systems that use ';' as a PATH separator! if test "${PATH_SEPARATOR+set}" != set; then PATH_SEPARATOR=: (PATH='/bin;/bin'; FPATH=$PATH; sh -c :) >/dev/null 2>&1 && { (PATH='/bin:/bin'; FPATH=$PATH; sh -c :) >/dev/null 2>&1 || PATH_SEPARATOR=';' } fi ## ------------------------- ## ## Locate command utilities. ## ## ------------------------- ## # func_executable_p FILE # ---------------------- # Check that FILE is an executable regular file. func_executable_p () { test -f "$1" && test -x "$1" } # func_path_progs PROGS_LIST CHECK_FUNC [PATH] # -------------------------------------------- # Search for either a program that responds to --version with output # containing "GNU", or else returned by CHECK_FUNC otherwise, by # trying all the directories in PATH with each of the elements of # PROGS_LIST. # # CHECK_FUNC should accept the path to a candidate program, and # set $func_check_prog_result if it truncates its output less than # $_G_path_prog_max characters. func_path_progs () { _G_progs_list=$1 _G_check_func=$2 _G_PATH=${3-"$PATH"} _G_path_prog_max=0 _G_path_prog_found=false _G_save_IFS=$IFS; IFS=${PATH_SEPARATOR-:} for _G_dir in $_G_PATH; do IFS=$_G_save_IFS test -z "$_G_dir" && _G_dir=. for _G_prog_name in $_G_progs_list; do for _exeext in '' .EXE; do _G_path_prog=$_G_dir/$_G_prog_name$_exeext func_executable_p "$_G_path_prog" || continue case `"$_G_path_prog" --version 2>&1` in *GNU*) func_path_progs_result=$_G_path_prog _G_path_prog_found=: ;; *) $_G_check_func $_G_path_prog func_path_progs_result=$func_check_prog_result ;; esac $_G_path_prog_found && break 3 done done done IFS=$_G_save_IFS test -z "$func_path_progs_result" && { echo "no acceptable sed could be found in \$PATH" >&2 exit 1 } } # We want to be able to use the functions in this file before configure # has figured out where the best binaries are kept, which means we have # to search for them ourselves - except when the results are already set # where we skip the searches. # Unless the user overrides by setting SED, search the path for either GNU # sed, or the sed that truncates its output the least. test -z "$SED" && { _G_sed_script=s/aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/bbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbb/ for _G_i in 1 2 3 4 5 6 7; do _G_sed_script=$_G_sed_script$nl$_G_sed_script done echo "$_G_sed_script" 2>/dev/null | sed 99q >conftest.sed _G_sed_script= func_check_prog_sed () { _G_path_prog=$1 _G_count=0 printf 0123456789 >conftest.in while : do cat conftest.in conftest.in >conftest.tmp mv conftest.tmp conftest.in cp conftest.in conftest.nl echo '' >> conftest.nl "$_G_path_prog" -f conftest.sed conftest.out 2>/dev/null || break diff conftest.out conftest.nl >/dev/null 2>&1 || break _G_count=`expr $_G_count + 1` if test "$_G_count" -gt "$_G_path_prog_max"; then # Best one so far, save it but keep looking for a better one func_check_prog_result=$_G_path_prog _G_path_prog_max=$_G_count fi # 10*(2^10) chars as input seems more than enough test 10 -lt "$_G_count" && break done rm -f conftest.in conftest.tmp conftest.nl conftest.out } func_path_progs "sed gsed" func_check_prog_sed $PATH:/usr/xpg4/bin rm -f conftest.sed SED=$func_path_progs_result } # Unless the user overrides by setting GREP, search the path for either GNU # grep, or the grep that truncates its output the least. test -z "$GREP" && { func_check_prog_grep () { _G_path_prog=$1 _G_count=0 _G_path_prog_max=0 printf 0123456789 >conftest.in while : do cat conftest.in conftest.in >conftest.tmp mv conftest.tmp conftest.in cp conftest.in conftest.nl echo 'GREP' >> conftest.nl "$_G_path_prog" -e 'GREP$' -e '-(cannot match)-' conftest.out 2>/dev/null || break diff conftest.out conftest.nl >/dev/null 2>&1 || break _G_count=`expr $_G_count + 1` if test "$_G_count" -gt "$_G_path_prog_max"; then # Best one so far, save it but keep looking for a better one func_check_prog_result=$_G_path_prog _G_path_prog_max=$_G_count fi # 10*(2^10) chars as input seems more than enough test 10 -lt "$_G_count" && break done rm -f conftest.in conftest.tmp conftest.nl conftest.out } func_path_progs "grep ggrep" func_check_prog_grep $PATH:/usr/xpg4/bin GREP=$func_path_progs_result } ## ------------------------------- ## ## User overridable command paths. ## ## ------------------------------- ## # All uppercase variable names are used for environment variables. These # variables can be overridden by the user before calling a script that # uses them if a suitable command of that name is not already available # in the command search PATH. : ${CP="cp -f"} : ${ECHO="printf %s\n"} : ${EGREP="$GREP -E"} : ${FGREP="$GREP -F"} : ${LN_S="ln -s"} : ${MAKE="make"} : ${MKDIR="mkdir"} : ${MV="mv -f"} : ${RM="rm -f"} : ${SHELL="${CONFIG_SHELL-/bin/sh}"} ## -------------------- ## ## Useful sed snippets. ## ## -------------------- ## sed_dirname='s|/[^/]*$||' sed_basename='s|^.*/||' # Sed substitution that helps us do robust quoting. It backslashifies # metacharacters that are still active within double-quoted strings. sed_quote_subst='s|\([`"$\\]\)|\\\1|g' # Same as above, but do not quote variable references. sed_double_quote_subst='s/\(["`\\]\)/\\\1/g' # Sed substitution that turns a string into a regex matching for the # string literally. sed_make_literal_regex='s|[].[^$\\*\/]|\\&|g' # Sed substitution that converts a w32 file name or path # that contains forward slashes, into one that contains # (escaped) backslashes. A very naive implementation. sed_naive_backslashify='s|\\\\*|\\|g;s|/|\\|g;s|\\|\\\\|g' # Re-'\' parameter expansions in output of sed_double_quote_subst that # were '\'-ed in input to the same. If an odd number of '\' preceded a # '$' in input to sed_double_quote_subst, that '$' was protected from # expansion. Since each input '\' is now two '\'s, look for any number # of runs of four '\'s followed by two '\'s and then a '$'. '\' that '$'. _G_bs='\\' _G_bs2='\\\\' _G_bs4='\\\\\\\\' _G_dollar='\$' sed_double_backslash="\ s/$_G_bs4/&\\ /g s/^$_G_bs2$_G_dollar/$_G_bs&/ s/\\([^$_G_bs]\\)$_G_bs2$_G_dollar/\\1$_G_bs2$_G_bs$_G_dollar/g s/\n//g" ## ----------------- ## ## Global variables. ## ## ----------------- ## # Except for the global variables explicitly listed below, the following # functions in the '^func_' namespace, and the '^require_' namespace # variables initialised in the 'Resource management' section, sourcing # this file will not pollute your global namespace with anything # else. There's no portable way to scope variables in Bourne shell # though, so actually running these functions will sometimes place # results into a variable named after the function, and often use # temporary variables in the '^_G_' namespace. If you are careful to # avoid using those namespaces casually in your sourcing script, things # should continue to work as you expect. And, of course, you can freely # overwrite any of the functions or variables defined here before # calling anything to customize them. EXIT_SUCCESS=0 EXIT_FAILURE=1 EXIT_MISMATCH=63 # $? = 63 is used to indicate version mismatch to missing. EXIT_SKIP=77 # $? = 77 is used to indicate a skipped test to automake. # Allow overriding, eg assuming that you follow the convention of # putting '$debug_cmd' at the start of all your functions, you can get # bash to show function call trace with: # # debug_cmd='eval echo "${FUNCNAME[0]} $*" >&2' bash your-script-name debug_cmd=${debug_cmd-":"} exit_cmd=: # By convention, finish your script with: # # exit $exit_status # # so that you can set exit_status to non-zero if you want to indicate # something went wrong during execution without actually bailing out at # the point of failure. exit_status=$EXIT_SUCCESS # Work around backward compatibility issue on IRIX 6.5. On IRIX 6.4+, sh # is ksh but when the shell is invoked as "sh" and the current value of # the _XPG environment variable is not equal to 1 (one), the special # positional parameter $0, within a function call, is the name of the # function. progpath=$0 # The name of this program. progname=`$ECHO "$progpath" |$SED "$sed_basename"` # Make sure we have an absolute progpath for reexecution: case $progpath in [\\/]*|[A-Za-z]:\\*) ;; *[\\/]*) progdir=`$ECHO "$progpath" |$SED "$sed_dirname"` progdir=`cd "$progdir" && pwd` progpath=$progdir/$progname ;; *) _G_IFS=$IFS IFS=${PATH_SEPARATOR-:} for progdir in $PATH; do IFS=$_G_IFS test -x "$progdir/$progname" && break done IFS=$_G_IFS test -n "$progdir" || progdir=`pwd` progpath=$progdir/$progname ;; esac ## ----------------- ## ## Standard options. ## ## ----------------- ## # The following options affect the operation of the functions defined # below, and should be set appropriately depending on run-time para- # meters passed on the command line. opt_dry_run=false opt_quiet=false opt_verbose=false # Categories 'all' and 'none' are always available. Append any others # you will pass as the first argument to func_warning from your own # code. warning_categories= # By default, display warnings according to 'opt_warning_types'. Set # 'warning_func' to ':' to elide all warnings, or func_fatal_error to # treat the next displayed warning as a fatal error. warning_func=func_warn_and_continue # Set to 'all' to display all warnings, 'none' to suppress all # warnings, or a space delimited list of some subset of # 'warning_categories' to display only the listed warnings. opt_warning_types=all ## -------------------- ## ## Resource management. ## ## -------------------- ## # This section contains definitions for functions that each ensure a # particular resource (a file, or a non-empty configuration variable for # example) is available, and if appropriate to extract default values # from pertinent package files. Call them using their associated # 'require_*' variable to ensure that they are executed, at most, once. # # It's entirely deliberate that calling these functions can set # variables that don't obey the namespace limitations obeyed by the rest # of this file, in order that that they be as useful as possible to # callers. # require_term_colors # ------------------- # Allow display of bold text on terminals that support it. require_term_colors=func_require_term_colors func_require_term_colors () { $debug_cmd test -t 1 && { # COLORTERM and USE_ANSI_COLORS environment variables take # precedence, because most terminfo databases neglect to describe # whether color sequences are supported. test -n "${COLORTERM+set}" && : ${USE_ANSI_COLORS="1"} if test 1 = "$USE_ANSI_COLORS"; then # Standard ANSI escape sequences tc_reset='' tc_bold=''; tc_standout='' tc_red=''; tc_green='' tc_blue=''; tc_cyan='' else # Otherwise trust the terminfo database after all. test -n "`tput sgr0 2>/dev/null`" && { tc_reset=`tput sgr0` test -n "`tput bold 2>/dev/null`" && tc_bold=`tput bold` tc_standout=$tc_bold test -n "`tput smso 2>/dev/null`" && tc_standout=`tput smso` test -n "`tput setaf 1 2>/dev/null`" && tc_red=`tput setaf 1` test -n "`tput setaf 2 2>/dev/null`" && tc_green=`tput setaf 2` test -n "`tput setaf 4 2>/dev/null`" && tc_blue=`tput setaf 4` test -n "`tput setaf 5 2>/dev/null`" && tc_cyan=`tput setaf 5` } fi } require_term_colors=: } ## ----------------- ## ## Function library. ## ## ----------------- ## # This section contains a variety of useful functions to call in your # scripts. Take note of the portable wrappers for features provided by # some modern shells, which will fall back to slower equivalents on # less featureful shells. # func_append VAR VALUE # --------------------- # Append VALUE onto the existing contents of VAR. # We should try to minimise forks, especially on Windows where they are # unreasonably slow, so skip the feature probes when bash or zsh are # being used: if test set = "${BASH_VERSION+set}${ZSH_VERSION+set}"; then : ${_G_HAVE_ARITH_OP="yes"} : ${_G_HAVE_XSI_OPS="yes"} # The += operator was introduced in bash 3.1 case $BASH_VERSION in [12].* | 3.0 | 3.0*) ;; *) : ${_G_HAVE_PLUSEQ_OP="yes"} ;; esac fi # _G_HAVE_PLUSEQ_OP # Can be empty, in which case the shell is probed, "yes" if += is # useable or anything else if it does not work. test -z "$_G_HAVE_PLUSEQ_OP" \ && (eval 'x=a; x+=" b"; test "a b" = "$x"') 2>/dev/null \ && _G_HAVE_PLUSEQ_OP=yes if test yes = "$_G_HAVE_PLUSEQ_OP" then # This is an XSI compatible shell, allowing a faster implementation... eval 'func_append () { $debug_cmd eval "$1+=\$2" }' else # ...otherwise fall back to using expr, which is often a shell builtin. func_append () { $debug_cmd eval "$1=\$$1\$2" } fi # func_append_quoted VAR VALUE # ---------------------------- # Quote VALUE and append to the end of shell variable VAR, separated # by a space. if test yes = "$_G_HAVE_PLUSEQ_OP"; then eval 'func_append_quoted () { $debug_cmd func_quote_for_eval "$2" eval "$1+=\\ \$func_quote_for_eval_result" }' else func_append_quoted () { $debug_cmd func_quote_for_eval "$2" eval "$1=\$$1\\ \$func_quote_for_eval_result" } fi # func_append_uniq VAR VALUE # -------------------------- # Append unique VALUE onto the existing contents of VAR, assuming # entries are delimited by the first character of VALUE. For example: # # func_append_uniq options " --another-option option-argument" # # will only append to $options if " --another-option option-argument " # is not already present somewhere in $options already (note spaces at # each end implied by leading space in second argument). func_append_uniq () { $debug_cmd eval _G_current_value='`$ECHO $'$1'`' _G_delim=`expr "$2" : '\(.\)'` case $_G_delim$_G_current_value$_G_delim in *"$2$_G_delim"*) ;; *) func_append "$@" ;; esac } # func_arith TERM... # ------------------ # Set func_arith_result to the result of evaluating TERMs. test -z "$_G_HAVE_ARITH_OP" \ && (eval 'test 2 = $(( 1 + 1 ))') 2>/dev/null \ && _G_HAVE_ARITH_OP=yes if test yes = "$_G_HAVE_ARITH_OP"; then eval 'func_arith () { $debug_cmd func_arith_result=$(( $* )) }' else func_arith () { $debug_cmd func_arith_result=`expr "$@"` } fi # func_basename FILE # ------------------ # Set func_basename_result to FILE with everything up to and including # the last / stripped. if test yes = "$_G_HAVE_XSI_OPS"; then # If this shell supports suffix pattern removal, then use it to avoid # forking. Hide the definitions single quotes in case the shell chokes # on unsupported syntax... _b='func_basename_result=${1##*/}' _d='case $1 in */*) func_dirname_result=${1%/*}$2 ;; * ) func_dirname_result=$3 ;; esac' else # ...otherwise fall back to using sed. _b='func_basename_result=`$ECHO "$1" |$SED "$sed_basename"`' _d='func_dirname_result=`$ECHO "$1" |$SED "$sed_dirname"` if test "X$func_dirname_result" = "X$1"; then func_dirname_result=$3 else func_append func_dirname_result "$2" fi' fi eval 'func_basename () { $debug_cmd '"$_b"' }' # func_dirname FILE APPEND NONDIR_REPLACEMENT # ------------------------------------------- # Compute the dirname of FILE. If nonempty, add APPEND to the result, # otherwise set result to NONDIR_REPLACEMENT. eval 'func_dirname () { $debug_cmd '"$_d"' }' # func_dirname_and_basename FILE APPEND NONDIR_REPLACEMENT # -------------------------------------------------------- # Perform func_basename and func_dirname in a single function # call: # dirname: Compute the dirname of FILE. If nonempty, # add APPEND to the result, otherwise set result # to NONDIR_REPLACEMENT. # value returned in "$func_dirname_result" # basename: Compute filename of FILE. # value retuned in "$func_basename_result" # For efficiency, we do not delegate to the functions above but instead # duplicate the functionality here. eval 'func_dirname_and_basename () { $debug_cmd '"$_b"' '"$_d"' }' # func_echo ARG... # ---------------- # Echo program name prefixed message. func_echo () { $debug_cmd _G_message=$* func_echo_IFS=$IFS IFS=$nl for _G_line in $_G_message; do IFS=$func_echo_IFS $ECHO "$progname: $_G_line" done IFS=$func_echo_IFS } # func_echo_all ARG... # -------------------- # Invoke $ECHO with all args, space-separated. func_echo_all () { $ECHO "$*" } # func_echo_infix_1 INFIX ARG... # ------------------------------ # Echo program name, followed by INFIX on the first line, with any # additional lines not showing INFIX. func_echo_infix_1 () { $debug_cmd $require_term_colors _G_infix=$1; shift _G_indent=$_G_infix _G_prefix="$progname: $_G_infix: " _G_message=$* # Strip color escape sequences before counting printable length for _G_tc in "$tc_reset" "$tc_bold" "$tc_standout" "$tc_red" "$tc_green" "$tc_blue" "$tc_cyan" do test -n "$_G_tc" && { _G_esc_tc=`$ECHO "$_G_tc" | $SED "$sed_make_literal_regex"` _G_indent=`$ECHO "$_G_indent" | $SED "s|$_G_esc_tc||g"` } done _G_indent="$progname: "`echo "$_G_indent" | $SED 's|.| |g'`" " ## exclude from sc_prohibit_nested_quotes func_echo_infix_1_IFS=$IFS IFS=$nl for _G_line in $_G_message; do IFS=$func_echo_infix_1_IFS $ECHO "$_G_prefix$tc_bold$_G_line$tc_reset" >&2 _G_prefix=$_G_indent done IFS=$func_echo_infix_1_IFS } # func_error ARG... # ----------------- # Echo program name prefixed message to standard error. func_error () { $debug_cmd $require_term_colors func_echo_infix_1 " $tc_standout${tc_red}error$tc_reset" "$*" >&2 } # func_fatal_error ARG... # ----------------------- # Echo program name prefixed message to standard error, and exit. func_fatal_error () { $debug_cmd func_error "$*" exit $EXIT_FAILURE } # func_grep EXPRESSION FILENAME # ----------------------------- # Check whether EXPRESSION matches any line of FILENAME, without output. func_grep () { $debug_cmd $GREP "$1" "$2" >/dev/null 2>&1 } # func_len STRING # --------------- # Set func_len_result to the length of STRING. STRING may not # start with a hyphen. test -z "$_G_HAVE_XSI_OPS" \ && (eval 'x=a/b/c; test 5aa/bb/cc = "${#x}${x%%/*}${x%/*}${x#*/}${x##*/}"') 2>/dev/null \ && _G_HAVE_XSI_OPS=yes if test yes = "$_G_HAVE_XSI_OPS"; then eval 'func_len () { $debug_cmd func_len_result=${#1} }' else func_len () { $debug_cmd func_len_result=`expr "$1" : ".*" 2>/dev/null || echo $max_cmd_len` } fi # func_mkdir_p DIRECTORY-PATH # --------------------------- # Make sure the entire path to DIRECTORY-PATH is available. func_mkdir_p () { $debug_cmd _G_directory_path=$1 _G_dir_list= if test -n "$_G_directory_path" && test : != "$opt_dry_run"; then # Protect directory names starting with '-' case $_G_directory_path in -*) _G_directory_path=./$_G_directory_path ;; esac # While some portion of DIR does not yet exist... while test ! -d "$_G_directory_path"; do # ...make a list in topmost first order. Use a colon delimited # list incase some portion of path contains whitespace. _G_dir_list=$_G_directory_path:$_G_dir_list # If the last portion added has no slash in it, the list is done case $_G_directory_path in */*) ;; *) break ;; esac # ...otherwise throw away the child directory and loop _G_directory_path=`$ECHO "$_G_directory_path" | $SED -e "$sed_dirname"` done _G_dir_list=`$ECHO "$_G_dir_list" | $SED 's|:*$||'` func_mkdir_p_IFS=$IFS; IFS=: for _G_dir in $_G_dir_list; do IFS=$func_mkdir_p_IFS # mkdir can fail with a 'File exist' error if two processes # try to create one of the directories concurrently. Don't # stop in that case! $MKDIR "$_G_dir" 2>/dev/null || : done IFS=$func_mkdir_p_IFS # Bail out if we (or some other process) failed to create a directory. test -d "$_G_directory_path" || \ func_fatal_error "Failed to create '$1'" fi } # func_mktempdir [BASENAME] # ------------------------- # Make a temporary directory that won't clash with other running # libtool processes, and avoids race conditions if possible. If # given, BASENAME is the basename for that directory. func_mktempdir () { $debug_cmd _G_template=${TMPDIR-/tmp}/${1-$progname} if test : = "$opt_dry_run"; then # Return a directory name, but don't create it in dry-run mode _G_tmpdir=$_G_template-$$ else # If mktemp works, use that first and foremost _G_tmpdir=`mktemp -d "$_G_template-XXXXXXXX" 2>/dev/null` if test ! -d "$_G_tmpdir"; then # Failing that, at least try and use $RANDOM to avoid a race _G_tmpdir=$_G_template-${RANDOM-0}$$ func_mktempdir_umask=`umask` umask 0077 $MKDIR "$_G_tmpdir" umask $func_mktempdir_umask fi # If we're not in dry-run mode, bomb out on failure test -d "$_G_tmpdir" || \ func_fatal_error "cannot create temporary directory '$_G_tmpdir'" fi $ECHO "$_G_tmpdir" } # func_normal_abspath PATH # ------------------------ # Remove doubled-up and trailing slashes, "." path components, # and cancel out any ".." path components in PATH after making # it an absolute path. func_normal_abspath () { $debug_cmd # These SED scripts presuppose an absolute path with a trailing slash. _G_pathcar='s|^/\([^/]*\).*$|\1|' _G_pathcdr='s|^/[^/]*||' _G_removedotparts=':dotsl s|/\./|/|g t dotsl s|/\.$|/|' _G_collapseslashes='s|/\{1,\}|/|g' _G_finalslash='s|/*$|/|' # Start from root dir and reassemble the path. func_normal_abspath_result= func_normal_abspath_tpath=$1 func_normal_abspath_altnamespace= case $func_normal_abspath_tpath in "") # Empty path, that just means $cwd. func_stripname '' '/' "`pwd`" func_normal_abspath_result=$func_stripname_result return ;; # The next three entries are used to spot a run of precisely # two leading slashes without using negated character classes; # we take advantage of case's first-match behaviour. ///*) # Unusual form of absolute path, do nothing. ;; //*) # Not necessarily an ordinary path; POSIX reserves leading '//' # and for example Cygwin uses it to access remote file shares # over CIFS/SMB, so we conserve a leading double slash if found. func_normal_abspath_altnamespace=/ ;; /*) # Absolute path, do nothing. ;; *) # Relative path, prepend $cwd. func_normal_abspath_tpath=`pwd`/$func_normal_abspath_tpath ;; esac # Cancel out all the simple stuff to save iterations. We also want # the path to end with a slash for ease of parsing, so make sure # there is one (and only one) here. func_normal_abspath_tpath=`$ECHO "$func_normal_abspath_tpath" | $SED \ -e "$_G_removedotparts" -e "$_G_collapseslashes" -e "$_G_finalslash"` while :; do # Processed it all yet? if test / = "$func_normal_abspath_tpath"; then # If we ascended to the root using ".." the result may be empty now. if test -z "$func_normal_abspath_result"; then func_normal_abspath_result=/ fi break fi func_normal_abspath_tcomponent=`$ECHO "$func_normal_abspath_tpath" | $SED \ -e "$_G_pathcar"` func_normal_abspath_tpath=`$ECHO "$func_normal_abspath_tpath" | $SED \ -e "$_G_pathcdr"` # Figure out what to do with it case $func_normal_abspath_tcomponent in "") # Trailing empty path component, ignore it. ;; ..) # Parent dir; strip last assembled component from result. func_dirname "$func_normal_abspath_result" func_normal_abspath_result=$func_dirname_result ;; *) # Actual path component, append it. func_append func_normal_abspath_result "/$func_normal_abspath_tcomponent" ;; esac done # Restore leading double-slash if one was found on entry. func_normal_abspath_result=$func_normal_abspath_altnamespace$func_normal_abspath_result } # func_notquiet ARG... # -------------------- # Echo program name prefixed message only when not in quiet mode. func_notquiet () { $debug_cmd $opt_quiet || func_echo ${1+"$@"} # A bug in bash halts the script if the last line of a function # fails when set -e is in force, so we need another command to # work around that: : } # func_relative_path SRCDIR DSTDIR # -------------------------------- # Set func_relative_path_result to the relative path from SRCDIR to DSTDIR. func_relative_path () { $debug_cmd func_relative_path_result= func_normal_abspath "$1" func_relative_path_tlibdir=$func_normal_abspath_result func_normal_abspath "$2" func_relative_path_tbindir=$func_normal_abspath_result # Ascend the tree starting from libdir while :; do # check if we have found a prefix of bindir case $func_relative_path_tbindir in $func_relative_path_tlibdir) # found an exact match func_relative_path_tcancelled= break ;; $func_relative_path_tlibdir*) # found a matching prefix func_stripname "$func_relative_path_tlibdir" '' "$func_relative_path_tbindir" func_relative_path_tcancelled=$func_stripname_result if test -z "$func_relative_path_result"; then func_relative_path_result=. fi break ;; *) func_dirname $func_relative_path_tlibdir func_relative_path_tlibdir=$func_dirname_result if test -z "$func_relative_path_tlibdir"; then # Have to descend all the way to the root! func_relative_path_result=../$func_relative_path_result func_relative_path_tcancelled=$func_relative_path_tbindir break fi func_relative_path_result=../$func_relative_path_result ;; esac done # Now calculate path; take care to avoid doubling-up slashes. func_stripname '' '/' "$func_relative_path_result" func_relative_path_result=$func_stripname_result func_stripname '/' '/' "$func_relative_path_tcancelled" if test -n "$func_stripname_result"; then func_append func_relative_path_result "/$func_stripname_result" fi # Normalisation. If bindir is libdir, return '.' else relative path. if test -n "$func_relative_path_result"; then func_stripname './' '' "$func_relative_path_result" func_relative_path_result=$func_stripname_result fi test -n "$func_relative_path_result" || func_relative_path_result=. : } # func_quote_for_eval ARG... # -------------------------- # Aesthetically quote ARGs to be evaled later. # This function returns two values: # i) func_quote_for_eval_result # double-quoted, suitable for a subsequent eval # ii) func_quote_for_eval_unquoted_result # has all characters that are still active within double # quotes backslashified. func_quote_for_eval () { $debug_cmd func_quote_for_eval_unquoted_result= func_quote_for_eval_result= while test 0 -lt $#; do case $1 in *[\\\`\"\$]*) _G_unquoted_arg=`printf '%s\n' "$1" |$SED "$sed_quote_subst"` ;; *) _G_unquoted_arg=$1 ;; esac if test -n "$func_quote_for_eval_unquoted_result"; then func_append func_quote_for_eval_unquoted_result " $_G_unquoted_arg" else func_append func_quote_for_eval_unquoted_result "$_G_unquoted_arg" fi case $_G_unquoted_arg in # Double-quote args containing shell metacharacters to delay # word splitting, command substitution and variable expansion # for a subsequent eval. # Many Bourne shells cannot handle close brackets correctly # in scan sets, so we specify it separately. *[\[\~\#\^\&\*\(\)\{\}\|\;\<\>\?\'\ \ ]*|*]*|"") _G_quoted_arg=\"$_G_unquoted_arg\" ;; *) _G_quoted_arg=$_G_unquoted_arg ;; esac if test -n "$func_quote_for_eval_result"; then func_append func_quote_for_eval_result " $_G_quoted_arg" else func_append func_quote_for_eval_result "$_G_quoted_arg" fi shift done } # func_quote_for_expand ARG # ------------------------- # Aesthetically quote ARG to be evaled later; same as above, # but do not quote variable references. func_quote_for_expand () { $debug_cmd case $1 in *[\\\`\"]*) _G_arg=`$ECHO "$1" | $SED \ -e "$sed_double_quote_subst" -e "$sed_double_backslash"` ;; *) _G_arg=$1 ;; esac case $_G_arg in # Double-quote args containing shell metacharacters to delay # word splitting and command substitution for a subsequent eval. # Many Bourne shells cannot handle close brackets correctly # in scan sets, so we specify it separately. *[\[\~\#\^\&\*\(\)\{\}\|\;\<\>\?\'\ \ ]*|*]*|"") _G_arg=\"$_G_arg\" ;; esac func_quote_for_expand_result=$_G_arg } # func_stripname PREFIX SUFFIX NAME # --------------------------------- # strip PREFIX and SUFFIX from NAME, and store in func_stripname_result. # PREFIX and SUFFIX must not contain globbing or regex special # characters, hashes, percent signs, but SUFFIX may contain a leading # dot (in which case that matches only a dot). if test yes = "$_G_HAVE_XSI_OPS"; then eval 'func_stripname () { $debug_cmd # pdksh 5.2.14 does not do ${X%$Y} correctly if both X and Y are # positional parameters, so assign one to ordinary variable first. func_stripname_result=$3 func_stripname_result=${func_stripname_result#"$1"} func_stripname_result=${func_stripname_result%"$2"} }' else func_stripname () { $debug_cmd case $2 in .*) func_stripname_result=`$ECHO "$3" | $SED -e "s%^$1%%" -e "s%\\\\$2\$%%"`;; *) func_stripname_result=`$ECHO "$3" | $SED -e "s%^$1%%" -e "s%$2\$%%"`;; esac } fi # func_show_eval CMD [FAIL_EXP] # ----------------------------- # Unless opt_quiet is true, then output CMD. Then, if opt_dryrun is # not true, evaluate CMD. If the evaluation of CMD fails, and FAIL_EXP # is given, then evaluate it. func_show_eval () { $debug_cmd _G_cmd=$1 _G_fail_exp=${2-':'} func_quote_for_expand "$_G_cmd" eval "func_notquiet $func_quote_for_expand_result" $opt_dry_run || { eval "$_G_cmd" _G_status=$? if test 0 -ne "$_G_status"; then eval "(exit $_G_status); $_G_fail_exp" fi } } # func_show_eval_locale CMD [FAIL_EXP] # ------------------------------------ # Unless opt_quiet is true, then output CMD. Then, if opt_dryrun is # not true, evaluate CMD. If the evaluation of CMD fails, and FAIL_EXP # is given, then evaluate it. Use the saved locale for evaluation. func_show_eval_locale () { $debug_cmd _G_cmd=$1 _G_fail_exp=${2-':'} $opt_quiet || { func_quote_for_expand "$_G_cmd" eval "func_echo $func_quote_for_expand_result" } $opt_dry_run || { eval "$_G_user_locale $_G_cmd" _G_status=$? eval "$_G_safe_locale" if test 0 -ne "$_G_status"; then eval "(exit $_G_status); $_G_fail_exp" fi } } # func_tr_sh # ---------- # Turn $1 into a string suitable for a shell variable name. # Result is stored in $func_tr_sh_result. All characters # not in the set a-zA-Z0-9_ are replaced with '_'. Further, # if $1 begins with a digit, a '_' is prepended as well. func_tr_sh () { $debug_cmd case $1 in [0-9]* | *[!a-zA-Z0-9_]*) func_tr_sh_result=`$ECHO "$1" | $SED -e 's/^\([0-9]\)/_\1/' -e 's/[^a-zA-Z0-9_]/_/g'` ;; * ) func_tr_sh_result=$1 ;; esac } # func_verbose ARG... # ------------------- # Echo program name prefixed message in verbose mode only. func_verbose () { $debug_cmd $opt_verbose && func_echo "$*" : } # func_warn_and_continue ARG... # ----------------------------- # Echo program name prefixed warning message to standard error. func_warn_and_continue () { $debug_cmd $require_term_colors func_echo_infix_1 "${tc_red}warning$tc_reset" "$*" >&2 } # func_warning CATEGORY ARG... # ---------------------------- # Echo program name prefixed warning message to standard error. Warning # messages can be filtered according to CATEGORY, where this function # elides messages where CATEGORY is not listed in the global variable # 'opt_warning_types'. func_warning () { $debug_cmd # CATEGORY must be in the warning_categories list! case " $warning_categories " in *" $1 "*) ;; *) func_internal_error "invalid warning category '$1'" ;; esac _G_category=$1 shift case " $opt_warning_types " in *" $_G_category "*) $warning_func ${1+"$@"} ;; esac } # func_sort_ver VER1 VER2 # ----------------------- # 'sort -V' is not generally available. # Note this deviates from the version comparison in automake # in that it treats 1.5 < 1.5.0, and treats 1.4.4a < 1.4-p3a # but this should suffice as we won't be specifying old # version formats or redundant trailing .0 in bootstrap.conf. # If we did want full compatibility then we should probably # use m4_version_compare from autoconf. func_sort_ver () { $debug_cmd printf '%s\n%s\n' "$1" "$2" \ | sort -t. -k 1,1n -k 2,2n -k 3,3n -k 4,4n -k 5,5n -k 6,6n -k 7,7n -k 8,8n -k 9,9n } # func_lt_ver PREV CURR # --------------------- # Return true if PREV and CURR are in the correct order according to # func_sort_ver, otherwise false. Use it like this: # # func_lt_ver "$prev_ver" "$proposed_ver" || func_fatal_error "..." func_lt_ver () { $debug_cmd test "x$1" = x`func_sort_ver "$1" "$2" | $SED 1q` } # Local variables: # mode: shell-script # sh-indentation: 2 # eval: (add-hook 'before-save-hook 'time-stamp) # time-stamp-pattern: "10/scriptversion=%:y-%02m-%02d.%02H; # UTC" # time-stamp-time-zone: "UTC" # End: #! /bin/sh # Set a version string for this script. scriptversion=2014-01-07.03; # UTC # A portable, pluggable option parser for Bourne shell. # Written by Gary V. Vaughan, 2010 # Copyright (C) 2010-2015 Free Software Foundation, Inc. # This is free software; see the source for copying conditions. There is NO # warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. # This program is free software: you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by # the Free Software Foundation, either version 3 of the License, or # (at your option) any later version. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # You should have received a copy of the GNU General Public License # along with this program. If not, see . # Please report bugs or propose patches to gary@gnu.org. ## ------ ## ## Usage. ## ## ------ ## # This file is a library for parsing options in your shell scripts along # with assorted other useful supporting features that you can make use # of too. # # For the simplest scripts you might need only: # # #!/bin/sh # . relative/path/to/funclib.sh # . relative/path/to/options-parser # scriptversion=1.0 # func_options ${1+"$@"} # eval set dummy "$func_options_result"; shift # ...rest of your script... # # In order for the '--version' option to work, you will need to have a # suitably formatted comment like the one at the top of this file # starting with '# Written by ' and ending with '# warranty; '. # # For '-h' and '--help' to work, you will also need a one line # description of your script's purpose in a comment directly above the # '# Written by ' line, like the one at the top of this file. # # The default options also support '--debug', which will turn on shell # execution tracing (see the comment above debug_cmd below for another # use), and '--verbose' and the func_verbose function to allow your script # to display verbose messages only when your user has specified # '--verbose'. # # After sourcing this file, you can plug processing for additional # options by amending the variables from the 'Configuration' section # below, and following the instructions in the 'Option parsing' # section further down. ## -------------- ## ## Configuration. ## ## -------------- ## # You should override these variables in your script after sourcing this # file so that they reflect the customisations you have added to the # option parser. # The usage line for option parsing errors and the start of '-h' and # '--help' output messages. You can embed shell variables for delayed # expansion at the time the message is displayed, but you will need to # quote other shell meta-characters carefully to prevent them being # expanded when the contents are evaled. usage='$progpath [OPTION]...' # Short help message in response to '-h' and '--help'. Add to this or # override it after sourcing this library to reflect the full set of # options your script accepts. usage_message="\ --debug enable verbose shell tracing -W, --warnings=CATEGORY report the warnings falling in CATEGORY [all] -v, --verbose verbosely report processing --version print version information and exit -h, --help print short or long help message and exit " # Additional text appended to 'usage_message' in response to '--help'. long_help_message=" Warning categories include: 'all' show all warnings 'none' turn off all the warnings 'error' warnings are treated as fatal errors" # Help message printed before fatal option parsing errors. fatal_help="Try '\$progname --help' for more information." ## ------------------------- ## ## Hook function management. ## ## ------------------------- ## # This section contains functions for adding, removing, and running hooks # to the main code. A hook is just a named list of of function, that can # be run in order later on. # func_hookable FUNC_NAME # ----------------------- # Declare that FUNC_NAME will run hooks added with # 'func_add_hook FUNC_NAME ...'. func_hookable () { $debug_cmd func_append hookable_fns " $1" } # func_add_hook FUNC_NAME HOOK_FUNC # --------------------------------- # Request that FUNC_NAME call HOOK_FUNC before it returns. FUNC_NAME must # first have been declared "hookable" by a call to 'func_hookable'. func_add_hook () { $debug_cmd case " $hookable_fns " in *" $1 "*) ;; *) func_fatal_error "'$1' does not accept hook functions." ;; esac eval func_append ${1}_hooks '" $2"' } # func_remove_hook FUNC_NAME HOOK_FUNC # ------------------------------------ # Remove HOOK_FUNC from the list of functions called by FUNC_NAME. func_remove_hook () { $debug_cmd eval ${1}_hooks='`$ECHO "\$'$1'_hooks" |$SED "s| '$2'||"`' } # func_run_hooks FUNC_NAME [ARG]... # --------------------------------- # Run all hook functions registered to FUNC_NAME. # It is assumed that the list of hook functions contains nothing more # than a whitespace-delimited list of legal shell function names, and # no effort is wasted trying to catch shell meta-characters or preserve # whitespace. func_run_hooks () { $debug_cmd case " $hookable_fns " in *" $1 "*) ;; *) func_fatal_error "'$1' does not support hook funcions.n" ;; esac eval _G_hook_fns=\$$1_hooks; shift for _G_hook in $_G_hook_fns; do eval $_G_hook '"$@"' # store returned options list back into positional # parameters for next 'cmd' execution. eval _G_hook_result=\$${_G_hook}_result eval set dummy "$_G_hook_result"; shift done func_quote_for_eval ${1+"$@"} func_run_hooks_result=$func_quote_for_eval_result } ## --------------- ## ## Option parsing. ## ## --------------- ## # In order to add your own option parsing hooks, you must accept the # full positional parameter list in your hook function, remove any # options that you action, and then pass back the remaining unprocessed # options in '_result', escaped suitably for # 'eval'. Like this: # # my_options_prep () # { # $debug_cmd # # # Extend the existing usage message. # usage_message=$usage_message' # -s, --silent don'\''t print informational messages # ' # # func_quote_for_eval ${1+"$@"} # my_options_prep_result=$func_quote_for_eval_result # } # func_add_hook func_options_prep my_options_prep # # # my_silent_option () # { # $debug_cmd # # # Note that for efficiency, we parse as many options as we can # # recognise in a loop before passing the remainder back to the # # caller on the first unrecognised argument we encounter. # while test $# -gt 0; do # opt=$1; shift # case $opt in # --silent|-s) opt_silent=: ;; # # Separate non-argument short options: # -s*) func_split_short_opt "$_G_opt" # set dummy "$func_split_short_opt_name" \ # "-$func_split_short_opt_arg" ${1+"$@"} # shift # ;; # *) set dummy "$_G_opt" "$*"; shift; break ;; # esac # done # # func_quote_for_eval ${1+"$@"} # my_silent_option_result=$func_quote_for_eval_result # } # func_add_hook func_parse_options my_silent_option # # # my_option_validation () # { # $debug_cmd # # $opt_silent && $opt_verbose && func_fatal_help "\ # '--silent' and '--verbose' options are mutually exclusive." # # func_quote_for_eval ${1+"$@"} # my_option_validation_result=$func_quote_for_eval_result # } # func_add_hook func_validate_options my_option_validation # # You'll alse need to manually amend $usage_message to reflect the extra # options you parse. It's preferable to append if you can, so that # multiple option parsing hooks can be added safely. # func_options [ARG]... # --------------------- # All the functions called inside func_options are hookable. See the # individual implementations for details. func_hookable func_options func_options () { $debug_cmd func_options_prep ${1+"$@"} eval func_parse_options \ ${func_options_prep_result+"$func_options_prep_result"} eval func_validate_options \ ${func_parse_options_result+"$func_parse_options_result"} eval func_run_hooks func_options \ ${func_validate_options_result+"$func_validate_options_result"} # save modified positional parameters for caller func_options_result=$func_run_hooks_result } # func_options_prep [ARG]... # -------------------------- # All initialisations required before starting the option parse loop. # Note that when calling hook functions, we pass through the list of # positional parameters. If a hook function modifies that list, and # needs to propogate that back to rest of this script, then the complete # modified list must be put in 'func_run_hooks_result' before # returning. func_hookable func_options_prep func_options_prep () { $debug_cmd # Option defaults: opt_verbose=false opt_warning_types= func_run_hooks func_options_prep ${1+"$@"} # save modified positional parameters for caller func_options_prep_result=$func_run_hooks_result } # func_parse_options [ARG]... # --------------------------- # The main option parsing loop. func_hookable func_parse_options func_parse_options () { $debug_cmd func_parse_options_result= # this just eases exit handling while test $# -gt 0; do # Defer to hook functions for initial option parsing, so they # get priority in the event of reusing an option name. func_run_hooks func_parse_options ${1+"$@"} # Adjust func_parse_options positional parameters to match eval set dummy "$func_run_hooks_result"; shift # Break out of the loop if we already parsed every option. test $# -gt 0 || break _G_opt=$1 shift case $_G_opt in --debug|-x) debug_cmd='set -x' func_echo "enabling shell trace mode" $debug_cmd ;; --no-warnings|--no-warning|--no-warn) set dummy --warnings none ${1+"$@"} shift ;; --warnings|--warning|-W) test $# = 0 && func_missing_arg $_G_opt && break case " $warning_categories $1" in *" $1 "*) # trailing space prevents matching last $1 above func_append_uniq opt_warning_types " $1" ;; *all) opt_warning_types=$warning_categories ;; *none) opt_warning_types=none warning_func=: ;; *error) opt_warning_types=$warning_categories warning_func=func_fatal_error ;; *) func_fatal_error \ "unsupported warning category: '$1'" ;; esac shift ;; --verbose|-v) opt_verbose=: ;; --version) func_version ;; -\?|-h) func_usage ;; --help) func_help ;; # Separate optargs to long options (plugins may need this): --*=*) func_split_equals "$_G_opt" set dummy "$func_split_equals_lhs" \ "$func_split_equals_rhs" ${1+"$@"} shift ;; # Separate optargs to short options: -W*) func_split_short_opt "$_G_opt" set dummy "$func_split_short_opt_name" \ "$func_split_short_opt_arg" ${1+"$@"} shift ;; # Separate non-argument short options: -\?*|-h*|-v*|-x*) func_split_short_opt "$_G_opt" set dummy "$func_split_short_opt_name" \ "-$func_split_short_opt_arg" ${1+"$@"} shift ;; --) break ;; -*) func_fatal_help "unrecognised option: '$_G_opt'" ;; *) set dummy "$_G_opt" ${1+"$@"}; shift; break ;; esac done # save modified positional parameters for caller func_quote_for_eval ${1+"$@"} func_parse_options_result=$func_quote_for_eval_result } # func_validate_options [ARG]... # ------------------------------ # Perform any sanity checks on option settings and/or unconsumed # arguments. func_hookable func_validate_options func_validate_options () { $debug_cmd # Display all warnings if -W was not given. test -n "$opt_warning_types" || opt_warning_types=" $warning_categories" func_run_hooks func_validate_options ${1+"$@"} # Bail if the options were screwed! $exit_cmd $EXIT_FAILURE # save modified positional parameters for caller func_validate_options_result=$func_run_hooks_result } ## ----------------- ## ## Helper functions. ## ## ----------------- ## # This section contains the helper functions used by the rest of the # hookable option parser framework in ascii-betical order. # func_fatal_help ARG... # ---------------------- # Echo program name prefixed message to standard error, followed by # a help hint, and exit. func_fatal_help () { $debug_cmd eval \$ECHO \""Usage: $usage"\" eval \$ECHO \""$fatal_help"\" func_error ${1+"$@"} exit $EXIT_FAILURE } # func_help # --------- # Echo long help message to standard output and exit. func_help () { $debug_cmd func_usage_message $ECHO "$long_help_message" exit 0 } # func_missing_arg ARGNAME # ------------------------ # Echo program name prefixed message to standard error and set global # exit_cmd. func_missing_arg () { $debug_cmd func_error "Missing argument for '$1'." exit_cmd=exit } # func_split_equals STRING # ------------------------ # Set func_split_equals_lhs and func_split_equals_rhs shell variables after # splitting STRING at the '=' sign. test -z "$_G_HAVE_XSI_OPS" \ && (eval 'x=a/b/c; test 5aa/bb/cc = "${#x}${x%%/*}${x%/*}${x#*/}${x##*/}"') 2>/dev/null \ && _G_HAVE_XSI_OPS=yes if test yes = "$_G_HAVE_XSI_OPS" then # This is an XSI compatible shell, allowing a faster implementation... eval 'func_split_equals () { $debug_cmd func_split_equals_lhs=${1%%=*} func_split_equals_rhs=${1#*=} test "x$func_split_equals_lhs" = "x$1" \ && func_split_equals_rhs= }' else # ...otherwise fall back to using expr, which is often a shell builtin. func_split_equals () { $debug_cmd func_split_equals_lhs=`expr "x$1" : 'x\([^=]*\)'` func_split_equals_rhs= test "x$func_split_equals_lhs" = "x$1" \ || func_split_equals_rhs=`expr "x$1" : 'x[^=]*=\(.*\)$'` } fi #func_split_equals # func_split_short_opt SHORTOPT # ----------------------------- # Set func_split_short_opt_name and func_split_short_opt_arg shell # variables after splitting SHORTOPT after the 2nd character. if test yes = "$_G_HAVE_XSI_OPS" then # This is an XSI compatible shell, allowing a faster implementation... eval 'func_split_short_opt () { $debug_cmd func_split_short_opt_arg=${1#??} func_split_short_opt_name=${1%"$func_split_short_opt_arg"} }' else # ...otherwise fall back to using expr, which is often a shell builtin. func_split_short_opt () { $debug_cmd func_split_short_opt_name=`expr "x$1" : 'x-\(.\)'` func_split_short_opt_arg=`expr "x$1" : 'x-.\(.*\)$'` } fi #func_split_short_opt # func_usage # ---------- # Echo short help message to standard output and exit. func_usage () { $debug_cmd func_usage_message $ECHO "Run '$progname --help |${PAGER-more}' for full usage" exit 0 } # func_usage_message # ------------------ # Echo short help message to standard output. func_usage_message () { $debug_cmd eval \$ECHO \""Usage: $usage"\" echo $SED -n 's|^# || /^Written by/{ x;p;x } h /^Written by/q' < "$progpath" echo eval \$ECHO \""$usage_message"\" } # func_version # ------------ # Echo version message to standard output and exit. func_version () { $debug_cmd printf '%s\n' "$progname $scriptversion" $SED -n ' /(C)/!b go :more /\./!{ N s|\n# | | b more } :go /^# Written by /,/# warranty; / { s|^# || s|^# *$|| s|\((C)\)[ 0-9,-]*[ ,-]\([1-9][0-9]* \)|\1 \2| p } /^# Written by / { s|^# || p } /^warranty; /q' < "$progpath" exit $? } # Local variables: # mode: shell-script # sh-indentation: 2 # eval: (add-hook 'before-save-hook 'time-stamp) # time-stamp-pattern: "10/scriptversion=%:y-%02m-%02d.%02H; # UTC" # time-stamp-time-zone: "UTC" # End: # Set a version string. scriptversion='(GNU libtool) 2.4.6' # func_echo ARG... # ---------------- # Libtool also displays the current mode in messages, so override # funclib.sh func_echo with this custom definition. func_echo () { $debug_cmd _G_message=$* func_echo_IFS=$IFS IFS=$nl for _G_line in $_G_message; do IFS=$func_echo_IFS $ECHO "$progname${opt_mode+: $opt_mode}: $_G_line" done IFS=$func_echo_IFS } # func_warning ARG... # ------------------- # Libtool warnings are not categorized, so override funclib.sh # func_warning with this simpler definition. func_warning () { $debug_cmd $warning_func ${1+"$@"} } ## ---------------- ## ## Options parsing. ## ## ---------------- ## # Hook in the functions to make sure our own options are parsed during # the option parsing loop. usage='$progpath [OPTION]... [MODE-ARG]...' # Short help message in response to '-h'. usage_message="Options: --config show all configuration variables --debug enable verbose shell tracing -n, --dry-run display commands without modifying any files --features display basic configuration information and exit --mode=MODE use operation mode MODE --no-warnings equivalent to '-Wnone' --preserve-dup-deps don't remove duplicate dependency libraries --quiet, --silent don't print informational messages --tag=TAG use configuration variables from tag TAG -v, --verbose print more informational messages than default --version print version information -W, --warnings=CATEGORY report the warnings falling in CATEGORY [all] -h, --help, --help-all print short, long, or detailed help message " # Additional text appended to 'usage_message' in response to '--help'. func_help () { $debug_cmd func_usage_message $ECHO "$long_help_message MODE must be one of the following: clean remove files from the build directory compile compile a source file into a libtool object execute automatically set library path, then run a program finish complete the installation of libtool libraries install install libraries or executables link create a library or an executable uninstall remove libraries from an installed directory MODE-ARGS vary depending on the MODE. When passed as first option, '--mode=MODE' may be abbreviated as 'MODE' or a unique abbreviation of that. Try '$progname --help --mode=MODE' for a more detailed description of MODE. When reporting a bug, please describe a test case to reproduce it and include the following information: host-triplet: $host shell: $SHELL compiler: $LTCC compiler flags: $LTCFLAGS linker: $LD (gnu? $with_gnu_ld) version: $progname (GNU libtool) 2.4.6 automake: `($AUTOMAKE --version) 2>/dev/null |$SED 1q` autoconf: `($AUTOCONF --version) 2>/dev/null |$SED 1q` Report bugs to . GNU libtool home page: . General help using GNU software: ." exit 0 } # func_lo2o OBJECT-NAME # --------------------- # Transform OBJECT-NAME from a '.lo' suffix to the platform specific # object suffix. lo2o=s/\\.lo\$/.$objext/ o2lo=s/\\.$objext\$/.lo/ if test yes = "$_G_HAVE_XSI_OPS"; then eval 'func_lo2o () { case $1 in *.lo) func_lo2o_result=${1%.lo}.$objext ;; * ) func_lo2o_result=$1 ;; esac }' # func_xform LIBOBJ-OR-SOURCE # --------------------------- # Transform LIBOBJ-OR-SOURCE from a '.o' or '.c' (or otherwise) # suffix to a '.lo' libtool-object suffix. eval 'func_xform () { func_xform_result=${1%.*}.lo }' else # ...otherwise fall back to using sed. func_lo2o () { func_lo2o_result=`$ECHO "$1" | $SED "$lo2o"` } func_xform () { func_xform_result=`$ECHO "$1" | $SED 's|\.[^.]*$|.lo|'` } fi # func_fatal_configuration ARG... # ------------------------------- # Echo program name prefixed message to standard error, followed by # a configuration failure hint, and exit. func_fatal_configuration () { func_fatal_error ${1+"$@"} \ "See the $PACKAGE documentation for more information." \ "Fatal configuration error." } # func_config # ----------- # Display the configuration for all the tags in this script. func_config () { re_begincf='^# ### BEGIN LIBTOOL' re_endcf='^# ### END LIBTOOL' # Default configuration. $SED "1,/$re_begincf CONFIG/d;/$re_endcf CONFIG/,\$d" < "$progpath" # Now print the configurations for the tags. for tagname in $taglist; do $SED -n "/$re_begincf TAG CONFIG: $tagname\$/,/$re_endcf TAG CONFIG: $tagname\$/p" < "$progpath" done exit $? } # func_features # ------------- # Display the features supported by this script. func_features () { echo "host: $host" if test yes = "$build_libtool_libs"; then echo "enable shared libraries" else echo "disable shared libraries" fi if test yes = "$build_old_libs"; then echo "enable static libraries" else echo "disable static libraries" fi exit $? } # func_enable_tag TAGNAME # ----------------------- # Verify that TAGNAME is valid, and either flag an error and exit, or # enable the TAGNAME tag. We also add TAGNAME to the global $taglist # variable here. func_enable_tag () { # Global variable: tagname=$1 re_begincf="^# ### BEGIN LIBTOOL TAG CONFIG: $tagname\$" re_endcf="^# ### END LIBTOOL TAG CONFIG: $tagname\$" sed_extractcf=/$re_begincf/,/$re_endcf/p # Validate tagname. case $tagname in *[!-_A-Za-z0-9,/]*) func_fatal_error "invalid tag name: $tagname" ;; esac # Don't test for the "default" C tag, as we know it's # there but not specially marked. case $tagname in CC) ;; *) if $GREP "$re_begincf" "$progpath" >/dev/null 2>&1; then taglist="$taglist $tagname" # Evaluate the configuration. Be careful to quote the path # and the sed script, to avoid splitting on whitespace, but # also don't use non-portable quotes within backquotes within # quotes we have to do it in 2 steps: extractedcf=`$SED -n -e "$sed_extractcf" < "$progpath"` eval "$extractedcf" else func_error "ignoring unknown tag $tagname" fi ;; esac } # func_check_version_match # ------------------------ # Ensure that we are using m4 macros, and libtool script from the same # release of libtool. func_check_version_match () { if test "$package_revision" != "$macro_revision"; then if test "$VERSION" != "$macro_version"; then if test -z "$macro_version"; then cat >&2 <<_LT_EOF $progname: Version mismatch error. This is $PACKAGE $VERSION, but the $progname: definition of this LT_INIT comes from an older release. $progname: You should recreate aclocal.m4 with macros from $PACKAGE $VERSION $progname: and run autoconf again. _LT_EOF else cat >&2 <<_LT_EOF $progname: Version mismatch error. This is $PACKAGE $VERSION, but the $progname: definition of this LT_INIT comes from $PACKAGE $macro_version. $progname: You should recreate aclocal.m4 with macros from $PACKAGE $VERSION $progname: and run autoconf again. _LT_EOF fi else cat >&2 <<_LT_EOF $progname: Version mismatch error. This is $PACKAGE $VERSION, revision $package_revision, $progname: but the definition of this LT_INIT comes from revision $macro_revision. $progname: You should recreate aclocal.m4 with macros from revision $package_revision $progname: of $PACKAGE $VERSION and run autoconf again. _LT_EOF fi exit $EXIT_MISMATCH fi } # libtool_options_prep [ARG]... # ----------------------------- # Preparation for options parsed by libtool. libtool_options_prep () { $debug_mode # Option defaults: opt_config=false opt_dlopen= opt_dry_run=false opt_help=false opt_mode= opt_preserve_dup_deps=false opt_quiet=false nonopt= preserve_args= # Shorthand for --mode=foo, only valid as the first argument case $1 in clean|clea|cle|cl) shift; set dummy --mode clean ${1+"$@"}; shift ;; compile|compil|compi|comp|com|co|c) shift; set dummy --mode compile ${1+"$@"}; shift ;; execute|execut|execu|exec|exe|ex|e) shift; set dummy --mode execute ${1+"$@"}; shift ;; finish|finis|fini|fin|fi|f) shift; set dummy --mode finish ${1+"$@"}; shift ;; install|instal|insta|inst|ins|in|i) shift; set dummy --mode install ${1+"$@"}; shift ;; link|lin|li|l) shift; set dummy --mode link ${1+"$@"}; shift ;; uninstall|uninstal|uninsta|uninst|unins|unin|uni|un|u) shift; set dummy --mode uninstall ${1+"$@"}; shift ;; esac # Pass back the list of options. func_quote_for_eval ${1+"$@"} libtool_options_prep_result=$func_quote_for_eval_result } func_add_hook func_options_prep libtool_options_prep # libtool_parse_options [ARG]... # --------------------------------- # Provide handling for libtool specific options. libtool_parse_options () { $debug_cmd # Perform our own loop to consume as many options as possible in # each iteration. while test $# -gt 0; do _G_opt=$1 shift case $_G_opt in --dry-run|--dryrun|-n) opt_dry_run=: ;; --config) func_config ;; --dlopen|-dlopen) opt_dlopen="${opt_dlopen+$opt_dlopen }$1" shift ;; --preserve-dup-deps) opt_preserve_dup_deps=: ;; --features) func_features ;; --finish) set dummy --mode finish ${1+"$@"}; shift ;; --help) opt_help=: ;; --help-all) opt_help=': help-all' ;; --mode) test $# = 0 && func_missing_arg $_G_opt && break opt_mode=$1 case $1 in # Valid mode arguments: clean|compile|execute|finish|install|link|relink|uninstall) ;; # Catch anything else as an error *) func_error "invalid argument for $_G_opt" exit_cmd=exit break ;; esac shift ;; --no-silent|--no-quiet) opt_quiet=false func_append preserve_args " $_G_opt" ;; --no-warnings|--no-warning|--no-warn) opt_warning=false func_append preserve_args " $_G_opt" ;; --no-verbose) opt_verbose=false func_append preserve_args " $_G_opt" ;; --silent|--quiet) opt_quiet=: opt_verbose=false func_append preserve_args " $_G_opt" ;; --tag) test $# = 0 && func_missing_arg $_G_opt && break opt_tag=$1 func_append preserve_args " $_G_opt $1" func_enable_tag "$1" shift ;; --verbose|-v) opt_quiet=false opt_verbose=: func_append preserve_args " $_G_opt" ;; # An option not handled by this hook function: *) set dummy "$_G_opt" ${1+"$@"}; shift; break ;; esac done # save modified positional parameters for caller func_quote_for_eval ${1+"$@"} libtool_parse_options_result=$func_quote_for_eval_result } func_add_hook func_parse_options libtool_parse_options # libtool_validate_options [ARG]... # --------------------------------- # Perform any sanity checks on option settings and/or unconsumed # arguments. libtool_validate_options () { # save first non-option argument if test 0 -lt $#; then nonopt=$1 shift fi # preserve --debug test : = "$debug_cmd" || func_append preserve_args " --debug" case $host in # Solaris2 added to fix http://debbugs.gnu.org/cgi/bugreport.cgi?bug=16452 # see also: http://gcc.gnu.org/bugzilla/show_bug.cgi?id=59788 *cygwin* | *mingw* | *pw32* | *cegcc* | *solaris2* | *os2*) # don't eliminate duplications in $postdeps and $predeps opt_duplicate_compiler_generated_deps=: ;; *) opt_duplicate_compiler_generated_deps=$opt_preserve_dup_deps ;; esac $opt_help || { # Sanity checks first: func_check_version_match test yes != "$build_libtool_libs" \ && test yes != "$build_old_libs" \ && func_fatal_configuration "not configured to build any kind of library" # Darwin sucks eval std_shrext=\"$shrext_cmds\" # Only execute mode is allowed to have -dlopen flags. if test -n "$opt_dlopen" && test execute != "$opt_mode"; then func_error "unrecognized option '-dlopen'" $ECHO "$help" 1>&2 exit $EXIT_FAILURE fi # Change the help message to a mode-specific one. generic_help=$help help="Try '$progname --help --mode=$opt_mode' for more information." } # Pass back the unparsed argument list func_quote_for_eval ${1+"$@"} libtool_validate_options_result=$func_quote_for_eval_result } func_add_hook func_validate_options libtool_validate_options # Process options as early as possible so that --help and --version # can return quickly. func_options ${1+"$@"} eval set dummy "$func_options_result"; shift ## ----------- ## ## Main. ## ## ----------- ## magic='%%%MAGIC variable%%%' magic_exe='%%%MAGIC EXE variable%%%' # Global variables. extracted_archives= extracted_serial=0 # If this variable is set in any of the actions, the command in it # will be execed at the end. This prevents here-documents from being # left over by shells. exec_cmd= # A function that is used when there is no print builtin or printf. func_fallback_echo () { eval 'cat <<_LTECHO_EOF $1 _LTECHO_EOF' } # func_generated_by_libtool # True iff stdin has been generated by Libtool. This function is only # a basic sanity check; it will hardly flush out determined imposters. func_generated_by_libtool_p () { $GREP "^# Generated by .*$PACKAGE" > /dev/null 2>&1 } # func_lalib_p file # True iff FILE is a libtool '.la' library or '.lo' object file. # This function is only a basic sanity check; it will hardly flush out # determined imposters. func_lalib_p () { test -f "$1" && $SED -e 4q "$1" 2>/dev/null | func_generated_by_libtool_p } # func_lalib_unsafe_p file # True iff FILE is a libtool '.la' library or '.lo' object file. # This function implements the same check as func_lalib_p without # resorting to external programs. To this end, it redirects stdin and # closes it afterwards, without saving the original file descriptor. # As a safety measure, use it only where a negative result would be # fatal anyway. Works if 'file' does not exist. func_lalib_unsafe_p () { lalib_p=no if test -f "$1" && test -r "$1" && exec 5<&0 <"$1"; then for lalib_p_l in 1 2 3 4 do read lalib_p_line case $lalib_p_line in \#\ Generated\ by\ *$PACKAGE* ) lalib_p=yes; break;; esac done exec 0<&5 5<&- fi test yes = "$lalib_p" } # func_ltwrapper_script_p file # True iff FILE is a libtool wrapper script # This function is only a basic sanity check; it will hardly flush out # determined imposters. func_ltwrapper_script_p () { test -f "$1" && $lt_truncate_bin < "$1" 2>/dev/null | func_generated_by_libtool_p } # func_ltwrapper_executable_p file # True iff FILE is a libtool wrapper executable # This function is only a basic sanity check; it will hardly flush out # determined imposters. func_ltwrapper_executable_p () { func_ltwrapper_exec_suffix= case $1 in *.exe) ;; *) func_ltwrapper_exec_suffix=.exe ;; esac $GREP "$magic_exe" "$1$func_ltwrapper_exec_suffix" >/dev/null 2>&1 } # func_ltwrapper_scriptname file # Assumes file is an ltwrapper_executable # uses $file to determine the appropriate filename for a # temporary ltwrapper_script. func_ltwrapper_scriptname () { func_dirname_and_basename "$1" "" "." func_stripname '' '.exe' "$func_basename_result" func_ltwrapper_scriptname_result=$func_dirname_result/$objdir/${func_stripname_result}_ltshwrapper } # func_ltwrapper_p file # True iff FILE is a libtool wrapper script or wrapper executable # This function is only a basic sanity check; it will hardly flush out # determined imposters. func_ltwrapper_p () { func_ltwrapper_script_p "$1" || func_ltwrapper_executable_p "$1" } # func_execute_cmds commands fail_cmd # Execute tilde-delimited COMMANDS. # If FAIL_CMD is given, eval that upon failure. # FAIL_CMD may read-access the current command in variable CMD! func_execute_cmds () { $debug_cmd save_ifs=$IFS; IFS='~' for cmd in $1; do IFS=$sp$nl eval cmd=\"$cmd\" IFS=$save_ifs func_show_eval "$cmd" "${2-:}" done IFS=$save_ifs } # func_source file # Source FILE, adding directory component if necessary. # Note that it is not necessary on cygwin/mingw to append a dot to # FILE even if both FILE and FILE.exe exist: automatic-append-.exe # behavior happens only for exec(3), not for open(2)! Also, sourcing # 'FILE.' does not work on cygwin managed mounts. func_source () { $debug_cmd case $1 in */* | *\\*) . "$1" ;; *) . "./$1" ;; esac } # func_resolve_sysroot PATH # Replace a leading = in PATH with a sysroot. Store the result into # func_resolve_sysroot_result func_resolve_sysroot () { func_resolve_sysroot_result=$1 case $func_resolve_sysroot_result in =*) func_stripname '=' '' "$func_resolve_sysroot_result" func_resolve_sysroot_result=$lt_sysroot$func_stripname_result ;; esac } # func_replace_sysroot PATH # If PATH begins with the sysroot, replace it with = and # store the result into func_replace_sysroot_result. func_replace_sysroot () { case $lt_sysroot:$1 in ?*:"$lt_sysroot"*) func_stripname "$lt_sysroot" '' "$1" func_replace_sysroot_result='='$func_stripname_result ;; *) # Including no sysroot. func_replace_sysroot_result=$1 ;; esac } # func_infer_tag arg # Infer tagged configuration to use if any are available and # if one wasn't chosen via the "--tag" command line option. # Only attempt this if the compiler in the base compile # command doesn't match the default compiler. # arg is usually of the form 'gcc ...' func_infer_tag () { $debug_cmd if test -n "$available_tags" && test -z "$tagname"; then CC_quoted= for arg in $CC; do func_append_quoted CC_quoted "$arg" done CC_expanded=`func_echo_all $CC` CC_quoted_expanded=`func_echo_all $CC_quoted` case $@ in # Blanks in the command may have been stripped by the calling shell, # but not from the CC environment variable when configure was run. " $CC "* | "$CC "* | " $CC_expanded "* | "$CC_expanded "* | \ " $CC_quoted"* | "$CC_quoted "* | " $CC_quoted_expanded "* | "$CC_quoted_expanded "*) ;; # Blanks at the start of $base_compile will cause this to fail # if we don't check for them as well. *) for z in $available_tags; do if $GREP "^# ### BEGIN LIBTOOL TAG CONFIG: $z$" < "$progpath" > /dev/null; then # Evaluate the configuration. eval "`$SED -n -e '/^# ### BEGIN LIBTOOL TAG CONFIG: '$z'$/,/^# ### END LIBTOOL TAG CONFIG: '$z'$/p' < $progpath`" CC_quoted= for arg in $CC; do # Double-quote args containing other shell metacharacters. func_append_quoted CC_quoted "$arg" done CC_expanded=`func_echo_all $CC` CC_quoted_expanded=`func_echo_all $CC_quoted` case "$@ " in " $CC "* | "$CC "* | " $CC_expanded "* | "$CC_expanded "* | \ " $CC_quoted"* | "$CC_quoted "* | " $CC_quoted_expanded "* | "$CC_quoted_expanded "*) # The compiler in the base compile command matches # the one in the tagged configuration. # Assume this is the tagged configuration we want. tagname=$z break ;; esac fi done # If $tagname still isn't set, then no tagged configuration # was found and let the user know that the "--tag" command # line option must be used. if test -z "$tagname"; then func_echo "unable to infer tagged configuration" func_fatal_error "specify a tag with '--tag'" # else # func_verbose "using $tagname tagged configuration" fi ;; esac fi } # func_write_libtool_object output_name pic_name nonpic_name # Create a libtool object file (analogous to a ".la" file), # but don't create it if we're doing a dry run. func_write_libtool_object () { write_libobj=$1 if test yes = "$build_libtool_libs"; then write_lobj=\'$2\' else write_lobj=none fi if test yes = "$build_old_libs"; then write_oldobj=\'$3\' else write_oldobj=none fi $opt_dry_run || { cat >${write_libobj}T </dev/null` if test "$?" -eq 0 && test -n "$func_convert_core_file_wine_to_w32_tmp"; then func_convert_core_file_wine_to_w32_result=`$ECHO "$func_convert_core_file_wine_to_w32_tmp" | $SED -e "$sed_naive_backslashify"` else func_convert_core_file_wine_to_w32_result= fi fi } # end: func_convert_core_file_wine_to_w32 # func_convert_core_path_wine_to_w32 ARG # Helper function used by path conversion functions when $build is *nix, and # $host is mingw, cygwin, or some other w32 environment. Relies on a correctly # configured wine environment available, with the winepath program in $build's # $PATH. Assumes ARG has no leading or trailing path separator characters. # # ARG is path to be converted from $build format to win32. # Result is available in $func_convert_core_path_wine_to_w32_result. # Unconvertible file (directory) names in ARG are skipped; if no directory names # are convertible, then the result may be empty. func_convert_core_path_wine_to_w32 () { $debug_cmd # unfortunately, winepath doesn't convert paths, only file names func_convert_core_path_wine_to_w32_result= if test -n "$1"; then oldIFS=$IFS IFS=: for func_convert_core_path_wine_to_w32_f in $1; do IFS=$oldIFS func_convert_core_file_wine_to_w32 "$func_convert_core_path_wine_to_w32_f" if test -n "$func_convert_core_file_wine_to_w32_result"; then if test -z "$func_convert_core_path_wine_to_w32_result"; then func_convert_core_path_wine_to_w32_result=$func_convert_core_file_wine_to_w32_result else func_append func_convert_core_path_wine_to_w32_result ";$func_convert_core_file_wine_to_w32_result" fi fi done IFS=$oldIFS fi } # end: func_convert_core_path_wine_to_w32 # func_cygpath ARGS... # Wrapper around calling the cygpath program via LT_CYGPATH. This is used when # when (1) $build is *nix and Cygwin is hosted via a wine environment; or (2) # $build is MSYS and $host is Cygwin, or (3) $build is Cygwin. In case (1) or # (2), returns the Cygwin file name or path in func_cygpath_result (input # file name or path is assumed to be in w32 format, as previously converted # from $build's *nix or MSYS format). In case (3), returns the w32 file name # or path in func_cygpath_result (input file name or path is assumed to be in # Cygwin format). Returns an empty string on error. # # ARGS are passed to cygpath, with the last one being the file name or path to # be converted. # # Specify the absolute *nix (or w32) name to cygpath in the LT_CYGPATH # environment variable; do not put it in $PATH. func_cygpath () { $debug_cmd if test -n "$LT_CYGPATH" && test -f "$LT_CYGPATH"; then func_cygpath_result=`$LT_CYGPATH "$@" 2>/dev/null` if test "$?" -ne 0; then # on failure, ensure result is empty func_cygpath_result= fi else func_cygpath_result= func_error "LT_CYGPATH is empty or specifies non-existent file: '$LT_CYGPATH'" fi } #end: func_cygpath # func_convert_core_msys_to_w32 ARG # Convert file name or path ARG from MSYS format to w32 format. Return # result in func_convert_core_msys_to_w32_result. func_convert_core_msys_to_w32 () { $debug_cmd # awkward: cmd appends spaces to result func_convert_core_msys_to_w32_result=`( cmd //c echo "$1" ) 2>/dev/null | $SED -e 's/[ ]*$//' -e "$sed_naive_backslashify"` } #end: func_convert_core_msys_to_w32 # func_convert_file_check ARG1 ARG2 # Verify that ARG1 (a file name in $build format) was converted to $host # format in ARG2. Otherwise, emit an error message, but continue (resetting # func_to_host_file_result to ARG1). func_convert_file_check () { $debug_cmd if test -z "$2" && test -n "$1"; then func_error "Could not determine host file name corresponding to" func_error " '$1'" func_error "Continuing, but uninstalled executables may not work." # Fallback: func_to_host_file_result=$1 fi } # end func_convert_file_check # func_convert_path_check FROM_PATHSEP TO_PATHSEP FROM_PATH TO_PATH # Verify that FROM_PATH (a path in $build format) was converted to $host # format in TO_PATH. Otherwise, emit an error message, but continue, resetting # func_to_host_file_result to a simplistic fallback value (see below). func_convert_path_check () { $debug_cmd if test -z "$4" && test -n "$3"; then func_error "Could not determine the host path corresponding to" func_error " '$3'" func_error "Continuing, but uninstalled executables may not work." # Fallback. This is a deliberately simplistic "conversion" and # should not be "improved". See libtool.info. if test "x$1" != "x$2"; then lt_replace_pathsep_chars="s|$1|$2|g" func_to_host_path_result=`echo "$3" | $SED -e "$lt_replace_pathsep_chars"` else func_to_host_path_result=$3 fi fi } # end func_convert_path_check # func_convert_path_front_back_pathsep FRONTPAT BACKPAT REPL ORIG # Modifies func_to_host_path_result by prepending REPL if ORIG matches FRONTPAT # and appending REPL if ORIG matches BACKPAT. func_convert_path_front_back_pathsep () { $debug_cmd case $4 in $1 ) func_to_host_path_result=$3$func_to_host_path_result ;; esac case $4 in $2 ) func_append func_to_host_path_result "$3" ;; esac } # end func_convert_path_front_back_pathsep ################################################## # $build to $host FILE NAME CONVERSION FUNCTIONS # ################################################## # invoked via '$to_host_file_cmd ARG' # # In each case, ARG is the path to be converted from $build to $host format. # Result will be available in $func_to_host_file_result. # func_to_host_file ARG # Converts the file name ARG from $build format to $host format. Return result # in func_to_host_file_result. func_to_host_file () { $debug_cmd $to_host_file_cmd "$1" } # end func_to_host_file # func_to_tool_file ARG LAZY # converts the file name ARG from $build format to toolchain format. Return # result in func_to_tool_file_result. If the conversion in use is listed # in (the comma separated) LAZY, no conversion takes place. func_to_tool_file () { $debug_cmd case ,$2, in *,"$to_tool_file_cmd",*) func_to_tool_file_result=$1 ;; *) $to_tool_file_cmd "$1" func_to_tool_file_result=$func_to_host_file_result ;; esac } # end func_to_tool_file # func_convert_file_noop ARG # Copy ARG to func_to_host_file_result. func_convert_file_noop () { func_to_host_file_result=$1 } # end func_convert_file_noop # func_convert_file_msys_to_w32 ARG # Convert file name ARG from (mingw) MSYS to (mingw) w32 format; automatic # conversion to w32 is not available inside the cwrapper. Returns result in # func_to_host_file_result. func_convert_file_msys_to_w32 () { $debug_cmd func_to_host_file_result=$1 if test -n "$1"; then func_convert_core_msys_to_w32 "$1" func_to_host_file_result=$func_convert_core_msys_to_w32_result fi func_convert_file_check "$1" "$func_to_host_file_result" } # end func_convert_file_msys_to_w32 # func_convert_file_cygwin_to_w32 ARG # Convert file name ARG from Cygwin to w32 format. Returns result in # func_to_host_file_result. func_convert_file_cygwin_to_w32 () { $debug_cmd func_to_host_file_result=$1 if test -n "$1"; then # because $build is cygwin, we call "the" cygpath in $PATH; no need to use # LT_CYGPATH in this case. func_to_host_file_result=`cygpath -m "$1"` fi func_convert_file_check "$1" "$func_to_host_file_result" } # end func_convert_file_cygwin_to_w32 # func_convert_file_nix_to_w32 ARG # Convert file name ARG from *nix to w32 format. Requires a wine environment # and a working winepath. Returns result in func_to_host_file_result. func_convert_file_nix_to_w32 () { $debug_cmd func_to_host_file_result=$1 if test -n "$1"; then func_convert_core_file_wine_to_w32 "$1" func_to_host_file_result=$func_convert_core_file_wine_to_w32_result fi func_convert_file_check "$1" "$func_to_host_file_result" } # end func_convert_file_nix_to_w32 # func_convert_file_msys_to_cygwin ARG # Convert file name ARG from MSYS to Cygwin format. Requires LT_CYGPATH set. # Returns result in func_to_host_file_result. func_convert_file_msys_to_cygwin () { $debug_cmd func_to_host_file_result=$1 if test -n "$1"; then func_convert_core_msys_to_w32 "$1" func_cygpath -u "$func_convert_core_msys_to_w32_result" func_to_host_file_result=$func_cygpath_result fi func_convert_file_check "$1" "$func_to_host_file_result" } # end func_convert_file_msys_to_cygwin # func_convert_file_nix_to_cygwin ARG # Convert file name ARG from *nix to Cygwin format. Requires Cygwin installed # in a wine environment, working winepath, and LT_CYGPATH set. Returns result # in func_to_host_file_result. func_convert_file_nix_to_cygwin () { $debug_cmd func_to_host_file_result=$1 if test -n "$1"; then # convert from *nix to w32, then use cygpath to convert from w32 to cygwin. func_convert_core_file_wine_to_w32 "$1" func_cygpath -u "$func_convert_core_file_wine_to_w32_result" func_to_host_file_result=$func_cygpath_result fi func_convert_file_check "$1" "$func_to_host_file_result" } # end func_convert_file_nix_to_cygwin ############################################# # $build to $host PATH CONVERSION FUNCTIONS # ############################################# # invoked via '$to_host_path_cmd ARG' # # In each case, ARG is the path to be converted from $build to $host format. # The result will be available in $func_to_host_path_result. # # Path separators are also converted from $build format to $host format. If # ARG begins or ends with a path separator character, it is preserved (but # converted to $host format) on output. # # All path conversion functions are named using the following convention: # file name conversion function : func_convert_file_X_to_Y () # path conversion function : func_convert_path_X_to_Y () # where, for any given $build/$host combination the 'X_to_Y' value is the # same. If conversion functions are added for new $build/$host combinations, # the two new functions must follow this pattern, or func_init_to_host_path_cmd # will break. # func_init_to_host_path_cmd # Ensures that function "pointer" variable $to_host_path_cmd is set to the # appropriate value, based on the value of $to_host_file_cmd. to_host_path_cmd= func_init_to_host_path_cmd () { $debug_cmd if test -z "$to_host_path_cmd"; then func_stripname 'func_convert_file_' '' "$to_host_file_cmd" to_host_path_cmd=func_convert_path_$func_stripname_result fi } # func_to_host_path ARG # Converts the path ARG from $build format to $host format. Return result # in func_to_host_path_result. func_to_host_path () { $debug_cmd func_init_to_host_path_cmd $to_host_path_cmd "$1" } # end func_to_host_path # func_convert_path_noop ARG # Copy ARG to func_to_host_path_result. func_convert_path_noop () { func_to_host_path_result=$1 } # end func_convert_path_noop # func_convert_path_msys_to_w32 ARG # Convert path ARG from (mingw) MSYS to (mingw) w32 format; automatic # conversion to w32 is not available inside the cwrapper. Returns result in # func_to_host_path_result. func_convert_path_msys_to_w32 () { $debug_cmd func_to_host_path_result=$1 if test -n "$1"; then # Remove leading and trailing path separator characters from ARG. MSYS # behavior is inconsistent here; cygpath turns them into '.;' and ';.'; # and winepath ignores them completely. func_stripname : : "$1" func_to_host_path_tmp1=$func_stripname_result func_convert_core_msys_to_w32 "$func_to_host_path_tmp1" func_to_host_path_result=$func_convert_core_msys_to_w32_result func_convert_path_check : ";" \ "$func_to_host_path_tmp1" "$func_to_host_path_result" func_convert_path_front_back_pathsep ":*" "*:" ";" "$1" fi } # end func_convert_path_msys_to_w32 # func_convert_path_cygwin_to_w32 ARG # Convert path ARG from Cygwin to w32 format. Returns result in # func_to_host_file_result. func_convert_path_cygwin_to_w32 () { $debug_cmd func_to_host_path_result=$1 if test -n "$1"; then # See func_convert_path_msys_to_w32: func_stripname : : "$1" func_to_host_path_tmp1=$func_stripname_result func_to_host_path_result=`cygpath -m -p "$func_to_host_path_tmp1"` func_convert_path_check : ";" \ "$func_to_host_path_tmp1" "$func_to_host_path_result" func_convert_path_front_back_pathsep ":*" "*:" ";" "$1" fi } # end func_convert_path_cygwin_to_w32 # func_convert_path_nix_to_w32 ARG # Convert path ARG from *nix to w32 format. Requires a wine environment and # a working winepath. Returns result in func_to_host_file_result. func_convert_path_nix_to_w32 () { $debug_cmd func_to_host_path_result=$1 if test -n "$1"; then # See func_convert_path_msys_to_w32: func_stripname : : "$1" func_to_host_path_tmp1=$func_stripname_result func_convert_core_path_wine_to_w32 "$func_to_host_path_tmp1" func_to_host_path_result=$func_convert_core_path_wine_to_w32_result func_convert_path_check : ";" \ "$func_to_host_path_tmp1" "$func_to_host_path_result" func_convert_path_front_back_pathsep ":*" "*:" ";" "$1" fi } # end func_convert_path_nix_to_w32 # func_convert_path_msys_to_cygwin ARG # Convert path ARG from MSYS to Cygwin format. Requires LT_CYGPATH set. # Returns result in func_to_host_file_result. func_convert_path_msys_to_cygwin () { $debug_cmd func_to_host_path_result=$1 if test -n "$1"; then # See func_convert_path_msys_to_w32: func_stripname : : "$1" func_to_host_path_tmp1=$func_stripname_result func_convert_core_msys_to_w32 "$func_to_host_path_tmp1" func_cygpath -u -p "$func_convert_core_msys_to_w32_result" func_to_host_path_result=$func_cygpath_result func_convert_path_check : : \ "$func_to_host_path_tmp1" "$func_to_host_path_result" func_convert_path_front_back_pathsep ":*" "*:" : "$1" fi } # end func_convert_path_msys_to_cygwin # func_convert_path_nix_to_cygwin ARG # Convert path ARG from *nix to Cygwin format. Requires Cygwin installed in a # a wine environment, working winepath, and LT_CYGPATH set. Returns result in # func_to_host_file_result. func_convert_path_nix_to_cygwin () { $debug_cmd func_to_host_path_result=$1 if test -n "$1"; then # Remove leading and trailing path separator characters from # ARG. msys behavior is inconsistent here, cygpath turns them # into '.;' and ';.', and winepath ignores them completely. func_stripname : : "$1" func_to_host_path_tmp1=$func_stripname_result func_convert_core_path_wine_to_w32 "$func_to_host_path_tmp1" func_cygpath -u -p "$func_convert_core_path_wine_to_w32_result" func_to_host_path_result=$func_cygpath_result func_convert_path_check : : \ "$func_to_host_path_tmp1" "$func_to_host_path_result" func_convert_path_front_back_pathsep ":*" "*:" : "$1" fi } # end func_convert_path_nix_to_cygwin # func_dll_def_p FILE # True iff FILE is a Windows DLL '.def' file. # Keep in sync with _LT_DLL_DEF_P in libtool.m4 func_dll_def_p () { $debug_cmd func_dll_def_p_tmp=`$SED -n \ -e 's/^[ ]*//' \ -e '/^\(;.*\)*$/d' \ -e 's/^\(EXPORTS\|LIBRARY\)\([ ].*\)*$/DEF/p' \ -e q \ "$1"` test DEF = "$func_dll_def_p_tmp" } # func_mode_compile arg... func_mode_compile () { $debug_cmd # Get the compilation command and the source file. base_compile= srcfile=$nonopt # always keep a non-empty value in "srcfile" suppress_opt=yes suppress_output= arg_mode=normal libobj= later= pie_flag= for arg do case $arg_mode in arg ) # do not "continue". Instead, add this to base_compile lastarg=$arg arg_mode=normal ;; target ) libobj=$arg arg_mode=normal continue ;; normal ) # Accept any command-line options. case $arg in -o) test -n "$libobj" && \ func_fatal_error "you cannot specify '-o' more than once" arg_mode=target continue ;; -pie | -fpie | -fPIE) func_append pie_flag " $arg" continue ;; -shared | -static | -prefer-pic | -prefer-non-pic) func_append later " $arg" continue ;; -no-suppress) suppress_opt=no continue ;; -Xcompiler) arg_mode=arg # the next one goes into the "base_compile" arg list continue # The current "srcfile" will either be retained or ;; # replaced later. I would guess that would be a bug. -Wc,*) func_stripname '-Wc,' '' "$arg" args=$func_stripname_result lastarg= save_ifs=$IFS; IFS=, for arg in $args; do IFS=$save_ifs func_append_quoted lastarg "$arg" done IFS=$save_ifs func_stripname ' ' '' "$lastarg" lastarg=$func_stripname_result # Add the arguments to base_compile. func_append base_compile " $lastarg" continue ;; *) # Accept the current argument as the source file. # The previous "srcfile" becomes the current argument. # lastarg=$srcfile srcfile=$arg ;; esac # case $arg ;; esac # case $arg_mode # Aesthetically quote the previous argument. func_append_quoted base_compile "$lastarg" done # for arg case $arg_mode in arg) func_fatal_error "you must specify an argument for -Xcompile" ;; target) func_fatal_error "you must specify a target with '-o'" ;; *) # Get the name of the library object. test -z "$libobj" && { func_basename "$srcfile" libobj=$func_basename_result } ;; esac # Recognize several different file suffixes. # If the user specifies -o file.o, it is replaced with file.lo case $libobj in *.[cCFSifmso] | \ *.ada | *.adb | *.ads | *.asm | \ *.c++ | *.cc | *.ii | *.class | *.cpp | *.cxx | \ *.[fF][09]? | *.for | *.java | *.go | *.obj | *.sx | *.cu | *.cup) func_xform "$libobj" libobj=$func_xform_result ;; esac case $libobj in *.lo) func_lo2o "$libobj"; obj=$func_lo2o_result ;; *) func_fatal_error "cannot determine name of library object from '$libobj'" ;; esac func_infer_tag $base_compile for arg in $later; do case $arg in -shared) test yes = "$build_libtool_libs" \ || func_fatal_configuration "cannot build a shared library" build_old_libs=no continue ;; -static) build_libtool_libs=no build_old_libs=yes continue ;; -prefer-pic) pic_mode=yes continue ;; -prefer-non-pic) pic_mode=no continue ;; esac done func_quote_for_eval "$libobj" test "X$libobj" != "X$func_quote_for_eval_result" \ && $ECHO "X$libobj" | $GREP '[]~#^*{};<>?"'"'"' &()|`$[]' \ && func_warning "libobj name '$libobj' may not contain shell special characters." func_dirname_and_basename "$obj" "/" "" objname=$func_basename_result xdir=$func_dirname_result lobj=$xdir$objdir/$objname test -z "$base_compile" && \ func_fatal_help "you must specify a compilation command" # Delete any leftover library objects. if test yes = "$build_old_libs"; then removelist="$obj $lobj $libobj ${libobj}T" else removelist="$lobj $libobj ${libobj}T" fi # On Cygwin there's no "real" PIC flag so we must build both object types case $host_os in cygwin* | mingw* | pw32* | os2* | cegcc*) pic_mode=default ;; esac if test no = "$pic_mode" && test pass_all != "$deplibs_check_method"; then # non-PIC code in shared libraries is not supported pic_mode=default fi # Calculate the filename of the output object if compiler does # not support -o with -c if test no = "$compiler_c_o"; then output_obj=`$ECHO "$srcfile" | $SED 's%^.*/%%; s%\.[^.]*$%%'`.$objext lockfile=$output_obj.lock else output_obj= need_locks=no lockfile= fi # Lock this critical section if it is needed # We use this script file to make the link, it avoids creating a new file if test yes = "$need_locks"; then until $opt_dry_run || ln "$progpath" "$lockfile" 2>/dev/null; do func_echo "Waiting for $lockfile to be removed" sleep 2 done elif test warn = "$need_locks"; then if test -f "$lockfile"; then $ECHO "\ *** ERROR, $lockfile exists and contains: `cat $lockfile 2>/dev/null` This indicates that another process is trying to use the same temporary object file, and libtool could not work around it because your compiler does not support '-c' and '-o' together. If you repeat this compilation, it may succeed, by chance, but you had better avoid parallel builds (make -j) in this platform, or get a better compiler." $opt_dry_run || $RM $removelist exit $EXIT_FAILURE fi func_append removelist " $output_obj" $ECHO "$srcfile" > "$lockfile" fi $opt_dry_run || $RM $removelist func_append removelist " $lockfile" trap '$opt_dry_run || $RM $removelist; exit $EXIT_FAILURE' 1 2 15 func_to_tool_file "$srcfile" func_convert_file_msys_to_w32 srcfile=$func_to_tool_file_result func_quote_for_eval "$srcfile" qsrcfile=$func_quote_for_eval_result # Only build a PIC object if we are building libtool libraries. if test yes = "$build_libtool_libs"; then # Without this assignment, base_compile gets emptied. fbsd_hideous_sh_bug=$base_compile if test no != "$pic_mode"; then command="$base_compile $qsrcfile $pic_flag" else # Don't build PIC code command="$base_compile $qsrcfile" fi func_mkdir_p "$xdir$objdir" if test -z "$output_obj"; then # Place PIC objects in $objdir func_append command " -o $lobj" fi func_show_eval_locale "$command" \ 'test -n "$output_obj" && $RM $removelist; exit $EXIT_FAILURE' if test warn = "$need_locks" && test "X`cat $lockfile 2>/dev/null`" != "X$srcfile"; then $ECHO "\ *** ERROR, $lockfile contains: `cat $lockfile 2>/dev/null` but it should contain: $srcfile This indicates that another process is trying to use the same temporary object file, and libtool could not work around it because your compiler does not support '-c' and '-o' together. If you repeat this compilation, it may succeed, by chance, but you had better avoid parallel builds (make -j) in this platform, or get a better compiler." $opt_dry_run || $RM $removelist exit $EXIT_FAILURE fi # Just move the object if needed, then go on to compile the next one if test -n "$output_obj" && test "X$output_obj" != "X$lobj"; then func_show_eval '$MV "$output_obj" "$lobj"' \ 'error=$?; $opt_dry_run || $RM $removelist; exit $error' fi # Allow error messages only from the first compilation. if test yes = "$suppress_opt"; then suppress_output=' >/dev/null 2>&1' fi fi # Only build a position-dependent object if we build old libraries. if test yes = "$build_old_libs"; then if test yes != "$pic_mode"; then # Don't build PIC code command="$base_compile $qsrcfile$pie_flag" else command="$base_compile $qsrcfile $pic_flag" fi if test yes = "$compiler_c_o"; then func_append command " -o $obj" fi # Suppress compiler output if we already did a PIC compilation. func_append command "$suppress_output" func_show_eval_locale "$command" \ '$opt_dry_run || $RM $removelist; exit $EXIT_FAILURE' if test warn = "$need_locks" && test "X`cat $lockfile 2>/dev/null`" != "X$srcfile"; then $ECHO "\ *** ERROR, $lockfile contains: `cat $lockfile 2>/dev/null` but it should contain: $srcfile This indicates that another process is trying to use the same temporary object file, and libtool could not work around it because your compiler does not support '-c' and '-o' together. If you repeat this compilation, it may succeed, by chance, but you had better avoid parallel builds (make -j) in this platform, or get a better compiler." $opt_dry_run || $RM $removelist exit $EXIT_FAILURE fi # Just move the object if needed if test -n "$output_obj" && test "X$output_obj" != "X$obj"; then func_show_eval '$MV "$output_obj" "$obj"' \ 'error=$?; $opt_dry_run || $RM $removelist; exit $error' fi fi $opt_dry_run || { func_write_libtool_object "$libobj" "$objdir/$objname" "$objname" # Unlock the critical section if it was locked if test no != "$need_locks"; then removelist=$lockfile $RM "$lockfile" fi } exit $EXIT_SUCCESS } $opt_help || { test compile = "$opt_mode" && func_mode_compile ${1+"$@"} } func_mode_help () { # We need to display help for each of the modes. case $opt_mode in "") # Generic help is extracted from the usage comments # at the start of this file. func_help ;; clean) $ECHO \ "Usage: $progname [OPTION]... --mode=clean RM [RM-OPTION]... FILE... Remove files from the build directory. RM is the name of the program to use to delete files associated with each FILE (typically '/bin/rm'). RM-OPTIONS are options (such as '-f') to be passed to RM. If FILE is a libtool library, object or program, all the files associated with it are deleted. Otherwise, only FILE itself is deleted using RM." ;; compile) $ECHO \ "Usage: $progname [OPTION]... --mode=compile COMPILE-COMMAND... SOURCEFILE Compile a source file into a libtool library object. This mode accepts the following additional options: -o OUTPUT-FILE set the output file name to OUTPUT-FILE -no-suppress do not suppress compiler output for multiple passes -prefer-pic try to build PIC objects only -prefer-non-pic try to build non-PIC objects only -shared do not build a '.o' file suitable for static linking -static only build a '.o' file suitable for static linking -Wc,FLAG pass FLAG directly to the compiler COMPILE-COMMAND is a command to be used in creating a 'standard' object file from the given SOURCEFILE. The output file name is determined by removing the directory component from SOURCEFILE, then substituting the C source code suffix '.c' with the library object suffix, '.lo'." ;; execute) $ECHO \ "Usage: $progname [OPTION]... --mode=execute COMMAND [ARGS]... Automatically set library path, then run a program. This mode accepts the following additional options: -dlopen FILE add the directory containing FILE to the library path This mode sets the library path environment variable according to '-dlopen' flags. If any of the ARGS are libtool executable wrappers, then they are translated into their corresponding uninstalled binary, and any of their required library directories are added to the library path. Then, COMMAND is executed, with ARGS as arguments." ;; finish) $ECHO \ "Usage: $progname [OPTION]... --mode=finish [LIBDIR]... Complete the installation of libtool libraries. Each LIBDIR is a directory that contains libtool libraries. The commands that this mode executes may require superuser privileges. Use the '--dry-run' option if you just want to see what would be executed." ;; install) $ECHO \ "Usage: $progname [OPTION]... --mode=install INSTALL-COMMAND... Install executables or libraries. INSTALL-COMMAND is the installation command. The first component should be either the 'install' or 'cp' program. The following components of INSTALL-COMMAND are treated specially: -inst-prefix-dir PREFIX-DIR Use PREFIX-DIR as a staging area for installation The rest of the components are interpreted as arguments to that command (only BSD-compatible install options are recognized)." ;; link) $ECHO \ "Usage: $progname [OPTION]... --mode=link LINK-COMMAND... Link object files or libraries together to form another library, or to create an executable program. LINK-COMMAND is a command using the C compiler that you would use to create a program from several object files. The following components of LINK-COMMAND are treated specially: -all-static do not do any dynamic linking at all -avoid-version do not add a version suffix if possible -bindir BINDIR specify path to binaries directory (for systems where libraries must be found in the PATH setting at runtime) -dlopen FILE '-dlpreopen' FILE if it cannot be dlopened at runtime -dlpreopen FILE link in FILE and add its symbols to lt_preloaded_symbols -export-dynamic allow symbols from OUTPUT-FILE to be resolved with dlsym(3) -export-symbols SYMFILE try to export only the symbols listed in SYMFILE -export-symbols-regex REGEX try to export only the symbols matching REGEX -LLIBDIR search LIBDIR for required installed libraries -lNAME OUTPUT-FILE requires the installed library libNAME -module build a library that can dlopened -no-fast-install disable the fast-install mode -no-install link a not-installable executable -no-undefined declare that a library does not refer to external symbols -o OUTPUT-FILE create OUTPUT-FILE from the specified objects -objectlist FILE use a list of object files found in FILE to specify objects -os2dllname NAME force a short DLL name on OS/2 (no effect on other OSes) -precious-files-regex REGEX don't remove output files matching REGEX -release RELEASE specify package release information -rpath LIBDIR the created library will eventually be installed in LIBDIR -R[ ]LIBDIR add LIBDIR to the runtime path of programs and libraries -shared only do dynamic linking of libtool libraries -shrext SUFFIX override the standard shared library file extension -static do not do any dynamic linking of uninstalled libtool libraries -static-libtool-libs do not do any dynamic linking of libtool libraries -version-info CURRENT[:REVISION[:AGE]] specify library version info [each variable defaults to 0] -weak LIBNAME declare that the target provides the LIBNAME interface -Wc,FLAG -Xcompiler FLAG pass linker-specific FLAG directly to the compiler -Wl,FLAG -Xlinker FLAG pass linker-specific FLAG directly to the linker -XCClinker FLAG pass link-specific FLAG to the compiler driver (CC) All other options (arguments beginning with '-') are ignored. Every other argument is treated as a filename. Files ending in '.la' are treated as uninstalled libtool libraries, other files are standard or library object files. If the OUTPUT-FILE ends in '.la', then a libtool library is created, only library objects ('.lo' files) may be specified, and '-rpath' is required, except when creating a convenience library. If OUTPUT-FILE ends in '.a' or '.lib', then a standard library is created using 'ar' and 'ranlib', or on Windows using 'lib'. If OUTPUT-FILE ends in '.lo' or '.$objext', then a reloadable object file is created, otherwise an executable program is created." ;; uninstall) $ECHO \ "Usage: $progname [OPTION]... --mode=uninstall RM [RM-OPTION]... FILE... Remove libraries from an installation directory. RM is the name of the program to use to delete files associated with each FILE (typically '/bin/rm'). RM-OPTIONS are options (such as '-f') to be passed to RM. If FILE is a libtool library, all the files associated with it are deleted. Otherwise, only FILE itself is deleted using RM." ;; *) func_fatal_help "invalid operation mode '$opt_mode'" ;; esac echo $ECHO "Try '$progname --help' for more information about other modes." } # Now that we've collected a possible --mode arg, show help if necessary if $opt_help; then if test : = "$opt_help"; then func_mode_help else { func_help noexit for opt_mode in compile link execute install finish uninstall clean; do func_mode_help done } | $SED -n '1p; 2,$s/^Usage:/ or: /p' { func_help noexit for opt_mode in compile link execute install finish uninstall clean; do echo func_mode_help done } | $SED '1d /^When reporting/,/^Report/{ H d } $x /information about other modes/d /more detailed .*MODE/d s/^Usage:.*--mode=\([^ ]*\) .*/Description of \1 mode:/' fi exit $? fi # func_mode_execute arg... func_mode_execute () { $debug_cmd # The first argument is the command name. cmd=$nonopt test -z "$cmd" && \ func_fatal_help "you must specify a COMMAND" # Handle -dlopen flags immediately. for file in $opt_dlopen; do test -f "$file" \ || func_fatal_help "'$file' is not a file" dir= case $file in *.la) func_resolve_sysroot "$file" file=$func_resolve_sysroot_result # Check to see that this really is a libtool archive. func_lalib_unsafe_p "$file" \ || func_fatal_help "'$lib' is not a valid libtool archive" # Read the libtool library. dlname= library_names= func_source "$file" # Skip this library if it cannot be dlopened. if test -z "$dlname"; then # Warn if it was a shared library. test -n "$library_names" && \ func_warning "'$file' was not linked with '-export-dynamic'" continue fi func_dirname "$file" "" "." dir=$func_dirname_result if test -f "$dir/$objdir/$dlname"; then func_append dir "/$objdir" else if test ! -f "$dir/$dlname"; then func_fatal_error "cannot find '$dlname' in '$dir' or '$dir/$objdir'" fi fi ;; *.lo) # Just add the directory containing the .lo file. func_dirname "$file" "" "." dir=$func_dirname_result ;; *) func_warning "'-dlopen' is ignored for non-libtool libraries and objects" continue ;; esac # Get the absolute pathname. absdir=`cd "$dir" && pwd` test -n "$absdir" && dir=$absdir # Now add the directory to shlibpath_var. if eval "test -z \"\$$shlibpath_var\""; then eval "$shlibpath_var=\"\$dir\"" else eval "$shlibpath_var=\"\$dir:\$$shlibpath_var\"" fi done # This variable tells wrapper scripts just to set shlibpath_var # rather than running their programs. libtool_execute_magic=$magic # Check if any of the arguments is a wrapper script. args= for file do case $file in -* | *.la | *.lo ) ;; *) # Do a test to see if this is really a libtool program. if func_ltwrapper_script_p "$file"; then func_source "$file" # Transform arg to wrapped name. file=$progdir/$program elif func_ltwrapper_executable_p "$file"; then func_ltwrapper_scriptname "$file" func_source "$func_ltwrapper_scriptname_result" # Transform arg to wrapped name. file=$progdir/$program fi ;; esac # Quote arguments (to preserve shell metacharacters). func_append_quoted args "$file" done if $opt_dry_run; then # Display what would be done. if test -n "$shlibpath_var"; then eval "\$ECHO \"\$shlibpath_var=\$$shlibpath_var\"" echo "export $shlibpath_var" fi $ECHO "$cmd$args" exit $EXIT_SUCCESS else if test -n "$shlibpath_var"; then # Export the shlibpath_var. eval "export $shlibpath_var" fi # Restore saved environment variables for lt_var in LANG LANGUAGE LC_ALL LC_CTYPE LC_COLLATE LC_MESSAGES do eval "if test \"\${save_$lt_var+set}\" = set; then $lt_var=\$save_$lt_var; export $lt_var else $lt_unset $lt_var fi" done # Now prepare to actually exec the command. exec_cmd=\$cmd$args fi } test execute = "$opt_mode" && func_mode_execute ${1+"$@"} # func_mode_finish arg... func_mode_finish () { $debug_cmd libs= libdirs= admincmds= for opt in "$nonopt" ${1+"$@"} do if test -d "$opt"; then func_append libdirs " $opt" elif test -f "$opt"; then if func_lalib_unsafe_p "$opt"; then func_append libs " $opt" else func_warning "'$opt' is not a valid libtool archive" fi else func_fatal_error "invalid argument '$opt'" fi done if test -n "$libs"; then if test -n "$lt_sysroot"; then sysroot_regex=`$ECHO "$lt_sysroot" | $SED "$sed_make_literal_regex"` sysroot_cmd="s/\([ ']\)$sysroot_regex/\1/g;" else sysroot_cmd= fi # Remove sysroot references if $opt_dry_run; then for lib in $libs; do echo "removing references to $lt_sysroot and '=' prefixes from $lib" done else tmpdir=`func_mktempdir` for lib in $libs; do $SED -e "$sysroot_cmd s/\([ ']-[LR]\)=/\1/g; s/\([ ']\)=/\1/g" $lib \ > $tmpdir/tmp-la mv -f $tmpdir/tmp-la $lib done ${RM}r "$tmpdir" fi fi if test -n "$finish_cmds$finish_eval" && test -n "$libdirs"; then for libdir in $libdirs; do if test -n "$finish_cmds"; then # Do each command in the finish commands. func_execute_cmds "$finish_cmds" 'admincmds="$admincmds '"$cmd"'"' fi if test -n "$finish_eval"; then # Do the single finish_eval. eval cmds=\"$finish_eval\" $opt_dry_run || eval "$cmds" || func_append admincmds " $cmds" fi done fi # Exit here if they wanted silent mode. $opt_quiet && exit $EXIT_SUCCESS if test -n "$finish_cmds$finish_eval" && test -n "$libdirs"; then echo "----------------------------------------------------------------------" echo "Libraries have been installed in:" for libdir in $libdirs; do $ECHO " $libdir" done echo echo "If you ever happen to want to link against installed libraries" echo "in a given directory, LIBDIR, you must either use libtool, and" echo "specify the full pathname of the library, or use the '-LLIBDIR'" echo "flag during linking and do at least one of the following:" if test -n "$shlibpath_var"; then echo " - add LIBDIR to the '$shlibpath_var' environment variable" echo " during execution" fi if test -n "$runpath_var"; then echo " - add LIBDIR to the '$runpath_var' environment variable" echo " during linking" fi if test -n "$hardcode_libdir_flag_spec"; then libdir=LIBDIR eval flag=\"$hardcode_libdir_flag_spec\" $ECHO " - use the '$flag' linker flag" fi if test -n "$admincmds"; then $ECHO " - have your system administrator run these commands:$admincmds" fi if test -f /etc/ld.so.conf; then echo " - have your system administrator add LIBDIR to '/etc/ld.so.conf'" fi echo echo "See any operating system documentation about shared libraries for" case $host in solaris2.[6789]|solaris2.1[0-9]) echo "more information, such as the ld(1), crle(1) and ld.so(8) manual" echo "pages." ;; *) echo "more information, such as the ld(1) and ld.so(8) manual pages." ;; esac echo "----------------------------------------------------------------------" fi exit $EXIT_SUCCESS } test finish = "$opt_mode" && func_mode_finish ${1+"$@"} # func_mode_install arg... func_mode_install () { $debug_cmd # There may be an optional sh(1) argument at the beginning of # install_prog (especially on Windows NT). if test "$SHELL" = "$nonopt" || test /bin/sh = "$nonopt" || # Allow the use of GNU shtool's install command. case $nonopt in *shtool*) :;; *) false;; esac then # Aesthetically quote it. func_quote_for_eval "$nonopt" install_prog="$func_quote_for_eval_result " arg=$1 shift else install_prog= arg=$nonopt fi # The real first argument should be the name of the installation program. # Aesthetically quote it. func_quote_for_eval "$arg" func_append install_prog "$func_quote_for_eval_result" install_shared_prog=$install_prog case " $install_prog " in *[\\\ /]cp\ *) install_cp=: ;; *) install_cp=false ;; esac # We need to accept at least all the BSD install flags. dest= files= opts= prev= install_type= isdir=false stripme= no_mode=: for arg do arg2= if test -n "$dest"; then func_append files " $dest" dest=$arg continue fi case $arg in -d) isdir=: ;; -f) if $install_cp; then :; else prev=$arg fi ;; -g | -m | -o) prev=$arg ;; -s) stripme=" -s" continue ;; -*) ;; *) # If the previous option needed an argument, then skip it. if test -n "$prev"; then if test X-m = "X$prev" && test -n "$install_override_mode"; then arg2=$install_override_mode no_mode=false fi prev= else dest=$arg continue fi ;; esac # Aesthetically quote the argument. func_quote_for_eval "$arg" func_append install_prog " $func_quote_for_eval_result" if test -n "$arg2"; then func_quote_for_eval "$arg2" fi func_append install_shared_prog " $func_quote_for_eval_result" done test -z "$install_prog" && \ func_fatal_help "you must specify an install program" test -n "$prev" && \ func_fatal_help "the '$prev' option requires an argument" if test -n "$install_override_mode" && $no_mode; then if $install_cp; then :; else func_quote_for_eval "$install_override_mode" func_append install_shared_prog " -m $func_quote_for_eval_result" fi fi if test -z "$files"; then if test -z "$dest"; then func_fatal_help "no file or destination specified" else func_fatal_help "you must specify a destination" fi fi # Strip any trailing slash from the destination. func_stripname '' '/' "$dest" dest=$func_stripname_result # Check to see that the destination is a directory. test -d "$dest" && isdir=: if $isdir; then destdir=$dest destname= else func_dirname_and_basename "$dest" "" "." destdir=$func_dirname_result destname=$func_basename_result # Not a directory, so check to see that there is only one file specified. set dummy $files; shift test "$#" -gt 1 && \ func_fatal_help "'$dest' is not a directory" fi case $destdir in [\\/]* | [A-Za-z]:[\\/]*) ;; *) for file in $files; do case $file in *.lo) ;; *) func_fatal_help "'$destdir' must be an absolute directory name" ;; esac done ;; esac # This variable tells wrapper scripts just to set variables rather # than running their programs. libtool_install_magic=$magic staticlibs= future_libdirs= current_libdirs= for file in $files; do # Do each installation. case $file in *.$libext) # Do the static libraries later. func_append staticlibs " $file" ;; *.la) func_resolve_sysroot "$file" file=$func_resolve_sysroot_result # Check to see that this really is a libtool archive. func_lalib_unsafe_p "$file" \ || func_fatal_help "'$file' is not a valid libtool archive" library_names= old_library= relink_command= func_source "$file" # Add the libdir to current_libdirs if it is the destination. if test "X$destdir" = "X$libdir"; then case "$current_libdirs " in *" $libdir "*) ;; *) func_append current_libdirs " $libdir" ;; esac else # Note the libdir as a future libdir. case "$future_libdirs " in *" $libdir "*) ;; *) func_append future_libdirs " $libdir" ;; esac fi func_dirname "$file" "/" "" dir=$func_dirname_result func_append dir "$objdir" if test -n "$relink_command"; then # Determine the prefix the user has applied to our future dir. inst_prefix_dir=`$ECHO "$destdir" | $SED -e "s%$libdir\$%%"` # Don't allow the user to place us outside of our expected # location b/c this prevents finding dependent libraries that # are installed to the same prefix. # At present, this check doesn't affect windows .dll's that # are installed into $libdir/../bin (currently, that works fine) # but it's something to keep an eye on. test "$inst_prefix_dir" = "$destdir" && \ func_fatal_error "error: cannot install '$file' to a directory not ending in $libdir" if test -n "$inst_prefix_dir"; then # Stick the inst_prefix_dir data into the link command. relink_command=`$ECHO "$relink_command" | $SED "s%@inst_prefix_dir@%-inst-prefix-dir $inst_prefix_dir%"` else relink_command=`$ECHO "$relink_command" | $SED "s%@inst_prefix_dir@%%"` fi func_warning "relinking '$file'" func_show_eval "$relink_command" \ 'func_fatal_error "error: relink '\''$file'\'' with the above command before installing it"' fi # See the names of the shared library. set dummy $library_names; shift if test -n "$1"; then realname=$1 shift srcname=$realname test -n "$relink_command" && srcname=${realname}T # Install the shared library and build the symlinks. func_show_eval "$install_shared_prog $dir/$srcname $destdir/$realname" \ 'exit $?' tstripme=$stripme case $host_os in cygwin* | mingw* | pw32* | cegcc*) case $realname in *.dll.a) tstripme= ;; esac ;; os2*) case $realname in *_dll.a) tstripme= ;; esac ;; esac if test -n "$tstripme" && test -n "$striplib"; then func_show_eval "$striplib $destdir/$realname" 'exit $?' fi if test "$#" -gt 0; then # Delete the old symlinks, and create new ones. # Try 'ln -sf' first, because the 'ln' binary might depend on # the symlink we replace! Solaris /bin/ln does not understand -f, # so we also need to try rm && ln -s. for linkname do test "$linkname" != "$realname" \ && func_show_eval "(cd $destdir && { $LN_S -f $realname $linkname || { $RM $linkname && $LN_S $realname $linkname; }; })" done fi # Do each command in the postinstall commands. lib=$destdir/$realname func_execute_cmds "$postinstall_cmds" 'exit $?' fi # Install the pseudo-library for information purposes. func_basename "$file" name=$func_basename_result instname=$dir/${name}i func_show_eval "$install_prog $instname $destdir/$name" 'exit $?' # Maybe install the static library, too. test -n "$old_library" && func_append staticlibs " $dir/$old_library" ;; *.lo) # Install (i.e. copy) a libtool object. # Figure out destination file name, if it wasn't already specified. if test -n "$destname"; then destfile=$destdir/$destname else func_basename "$file" destfile=$func_basename_result destfile=$destdir/$destfile fi # Deduce the name of the destination old-style object file. case $destfile in *.lo) func_lo2o "$destfile" staticdest=$func_lo2o_result ;; *.$objext) staticdest=$destfile destfile= ;; *) func_fatal_help "cannot copy a libtool object to '$destfile'" ;; esac # Install the libtool object if requested. test -n "$destfile" && \ func_show_eval "$install_prog $file $destfile" 'exit $?' # Install the old object if enabled. if test yes = "$build_old_libs"; then # Deduce the name of the old-style object file. func_lo2o "$file" staticobj=$func_lo2o_result func_show_eval "$install_prog \$staticobj \$staticdest" 'exit $?' fi exit $EXIT_SUCCESS ;; *) # Figure out destination file name, if it wasn't already specified. if test -n "$destname"; then destfile=$destdir/$destname else func_basename "$file" destfile=$func_basename_result destfile=$destdir/$destfile fi # If the file is missing, and there is a .exe on the end, strip it # because it is most likely a libtool script we actually want to # install stripped_ext= case $file in *.exe) if test ! -f "$file"; then func_stripname '' '.exe' "$file" file=$func_stripname_result stripped_ext=.exe fi ;; esac # Do a test to see if this is really a libtool program. case $host in *cygwin* | *mingw*) if func_ltwrapper_executable_p "$file"; then func_ltwrapper_scriptname "$file" wrapper=$func_ltwrapper_scriptname_result else func_stripname '' '.exe' "$file" wrapper=$func_stripname_result fi ;; *) wrapper=$file ;; esac if func_ltwrapper_script_p "$wrapper"; then notinst_deplibs= relink_command= func_source "$wrapper" # Check the variables that should have been set. test -z "$generated_by_libtool_version" && \ func_fatal_error "invalid libtool wrapper script '$wrapper'" finalize=: for lib in $notinst_deplibs; do # Check to see that each library is installed. libdir= if test -f "$lib"; then func_source "$lib" fi libfile=$libdir/`$ECHO "$lib" | $SED 's%^.*/%%g'` if test -n "$libdir" && test ! -f "$libfile"; then func_warning "'$lib' has not been installed in '$libdir'" finalize=false fi done relink_command= func_source "$wrapper" outputname= if test no = "$fast_install" && test -n "$relink_command"; then $opt_dry_run || { if $finalize; then tmpdir=`func_mktempdir` func_basename "$file$stripped_ext" file=$func_basename_result outputname=$tmpdir/$file # Replace the output file specification. relink_command=`$ECHO "$relink_command" | $SED 's%@OUTPUT@%'"$outputname"'%g'` $opt_quiet || { func_quote_for_expand "$relink_command" eval "func_echo $func_quote_for_expand_result" } if eval "$relink_command"; then : else func_error "error: relink '$file' with the above command before installing it" $opt_dry_run || ${RM}r "$tmpdir" continue fi file=$outputname else func_warning "cannot relink '$file'" fi } else # Install the binary that we compiled earlier. file=`$ECHO "$file$stripped_ext" | $SED "s%\([^/]*\)$%$objdir/\1%"` fi fi # remove .exe since cygwin /usr/bin/install will append another # one anyway case $install_prog,$host in */usr/bin/install*,*cygwin*) case $file:$destfile in *.exe:*.exe) # this is ok ;; *.exe:*) destfile=$destfile.exe ;; *:*.exe) func_stripname '' '.exe' "$destfile" destfile=$func_stripname_result ;; esac ;; esac func_show_eval "$install_prog\$stripme \$file \$destfile" 'exit $?' $opt_dry_run || if test -n "$outputname"; then ${RM}r "$tmpdir" fi ;; esac done for file in $staticlibs; do func_basename "$file" name=$func_basename_result # Set up the ranlib parameters. oldlib=$destdir/$name func_to_tool_file "$oldlib" func_convert_file_msys_to_w32 tool_oldlib=$func_to_tool_file_result func_show_eval "$install_prog \$file \$oldlib" 'exit $?' if test -n "$stripme" && test -n "$old_striplib"; then func_show_eval "$old_striplib $tool_oldlib" 'exit $?' fi # Do each command in the postinstall commands. func_execute_cmds "$old_postinstall_cmds" 'exit $?' done test -n "$future_libdirs" && \ func_warning "remember to run '$progname --finish$future_libdirs'" if test -n "$current_libdirs"; then # Maybe just do a dry run. $opt_dry_run && current_libdirs=" -n$current_libdirs" exec_cmd='$SHELL "$progpath" $preserve_args --finish$current_libdirs' else exit $EXIT_SUCCESS fi } test install = "$opt_mode" && func_mode_install ${1+"$@"} # func_generate_dlsyms outputname originator pic_p # Extract symbols from dlprefiles and create ${outputname}S.o with # a dlpreopen symbol table. func_generate_dlsyms () { $debug_cmd my_outputname=$1 my_originator=$2 my_pic_p=${3-false} my_prefix=`$ECHO "$my_originator" | $SED 's%[^a-zA-Z0-9]%_%g'` my_dlsyms= if test -n "$dlfiles$dlprefiles" || test no != "$dlself"; then if test -n "$NM" && test -n "$global_symbol_pipe"; then my_dlsyms=${my_outputname}S.c else func_error "not configured to extract global symbols from dlpreopened files" fi fi if test -n "$my_dlsyms"; then case $my_dlsyms in "") ;; *.c) # Discover the nlist of each of the dlfiles. nlist=$output_objdir/$my_outputname.nm func_show_eval "$RM $nlist ${nlist}S ${nlist}T" # Parse the name list into a source file. func_verbose "creating $output_objdir/$my_dlsyms" $opt_dry_run || $ECHO > "$output_objdir/$my_dlsyms" "\ /* $my_dlsyms - symbol resolution table for '$my_outputname' dlsym emulation. */ /* Generated by $PROGRAM (GNU $PACKAGE) $VERSION */ #ifdef __cplusplus extern \"C\" { #endif #if defined __GNUC__ && (((__GNUC__ == 4) && (__GNUC_MINOR__ >= 4)) || (__GNUC__ > 4)) #pragma GCC diagnostic ignored \"-Wstrict-prototypes\" #endif /* Keep this code in sync between libtool.m4, ltmain, lt_system.h, and tests. */ #if defined _WIN32 || defined __CYGWIN__ || defined _WIN32_WCE /* DATA imports from DLLs on WIN32 can't be const, because runtime relocations are performed -- see ld's documentation on pseudo-relocs. */ # define LT_DLSYM_CONST #elif defined __osf__ /* This system does not cope well with relocations in const data. */ # define LT_DLSYM_CONST #else # define LT_DLSYM_CONST const #endif #define STREQ(s1, s2) (strcmp ((s1), (s2)) == 0) /* External symbol declarations for the compiler. */\ " if test yes = "$dlself"; then func_verbose "generating symbol list for '$output'" $opt_dry_run || echo ': @PROGRAM@ ' > "$nlist" # Add our own program objects to the symbol list. progfiles=`$ECHO "$objs$old_deplibs" | $SP2NL | $SED "$lo2o" | $NL2SP` for progfile in $progfiles; do func_to_tool_file "$progfile" func_convert_file_msys_to_w32 func_verbose "extracting global C symbols from '$func_to_tool_file_result'" $opt_dry_run || eval "$NM $func_to_tool_file_result | $global_symbol_pipe >> '$nlist'" done if test -n "$exclude_expsyms"; then $opt_dry_run || { eval '$EGREP -v " ($exclude_expsyms)$" "$nlist" > "$nlist"T' eval '$MV "$nlist"T "$nlist"' } fi if test -n "$export_symbols_regex"; then $opt_dry_run || { eval '$EGREP -e "$export_symbols_regex" "$nlist" > "$nlist"T' eval '$MV "$nlist"T "$nlist"' } fi # Prepare the list of exported symbols if test -z "$export_symbols"; then export_symbols=$output_objdir/$outputname.exp $opt_dry_run || { $RM $export_symbols eval "$SED -n -e '/^: @PROGRAM@ $/d' -e 's/^.* \(.*\)$/\1/p' "'< "$nlist" > "$export_symbols"' case $host in *cygwin* | *mingw* | *cegcc* ) eval "echo EXPORTS "'> "$output_objdir/$outputname.def"' eval 'cat "$export_symbols" >> "$output_objdir/$outputname.def"' ;; esac } else $opt_dry_run || { eval "$SED -e 's/\([].[*^$]\)/\\\\\1/g' -e 's/^/ /' -e 's/$/$/'"' < "$export_symbols" > "$output_objdir/$outputname.exp"' eval '$GREP -f "$output_objdir/$outputname.exp" < "$nlist" > "$nlist"T' eval '$MV "$nlist"T "$nlist"' case $host in *cygwin* | *mingw* | *cegcc* ) eval "echo EXPORTS "'> "$output_objdir/$outputname.def"' eval 'cat "$nlist" >> "$output_objdir/$outputname.def"' ;; esac } fi fi for dlprefile in $dlprefiles; do func_verbose "extracting global C symbols from '$dlprefile'" func_basename "$dlprefile" name=$func_basename_result case $host in *cygwin* | *mingw* | *cegcc* ) # if an import library, we need to obtain dlname if func_win32_import_lib_p "$dlprefile"; then func_tr_sh "$dlprefile" eval "curr_lafile=\$libfile_$func_tr_sh_result" dlprefile_dlbasename= if test -n "$curr_lafile" && func_lalib_p "$curr_lafile"; then # Use subshell, to avoid clobbering current variable values dlprefile_dlname=`source "$curr_lafile" && echo "$dlname"` if test -n "$dlprefile_dlname"; then func_basename "$dlprefile_dlname" dlprefile_dlbasename=$func_basename_result else # no lafile. user explicitly requested -dlpreopen . $sharedlib_from_linklib_cmd "$dlprefile" dlprefile_dlbasename=$sharedlib_from_linklib_result fi fi $opt_dry_run || { if test -n "$dlprefile_dlbasename"; then eval '$ECHO ": $dlprefile_dlbasename" >> "$nlist"' else func_warning "Could not compute DLL name from $name" eval '$ECHO ": $name " >> "$nlist"' fi func_to_tool_file "$dlprefile" func_convert_file_msys_to_w32 eval "$NM \"$func_to_tool_file_result\" 2>/dev/null | $global_symbol_pipe | $SED -e '/I __imp/d' -e 's/I __nm_/D /;s/_nm__//' >> '$nlist'" } else # not an import lib $opt_dry_run || { eval '$ECHO ": $name " >> "$nlist"' func_to_tool_file "$dlprefile" func_convert_file_msys_to_w32 eval "$NM \"$func_to_tool_file_result\" 2>/dev/null | $global_symbol_pipe >> '$nlist'" } fi ;; *) $opt_dry_run || { eval '$ECHO ": $name " >> "$nlist"' func_to_tool_file "$dlprefile" func_convert_file_msys_to_w32 eval "$NM \"$func_to_tool_file_result\" 2>/dev/null | $global_symbol_pipe >> '$nlist'" } ;; esac done $opt_dry_run || { # Make sure we have at least an empty file. test -f "$nlist" || : > "$nlist" if test -n "$exclude_expsyms"; then $EGREP -v " ($exclude_expsyms)$" "$nlist" > "$nlist"T $MV "$nlist"T "$nlist" fi # Try sorting and uniquifying the output. if $GREP -v "^: " < "$nlist" | if sort -k 3 /dev/null 2>&1; then sort -k 3 else sort +2 fi | uniq > "$nlist"S; then : else $GREP -v "^: " < "$nlist" > "$nlist"S fi if test -f "$nlist"S; then eval "$global_symbol_to_cdecl"' < "$nlist"S >> "$output_objdir/$my_dlsyms"' else echo '/* NONE */' >> "$output_objdir/$my_dlsyms" fi func_show_eval '$RM "${nlist}I"' if test -n "$global_symbol_to_import"; then eval "$global_symbol_to_import"' < "$nlist"S > "$nlist"I' fi echo >> "$output_objdir/$my_dlsyms" "\ /* The mapping between symbol names and symbols. */ typedef struct { const char *name; void *address; } lt_dlsymlist; extern LT_DLSYM_CONST lt_dlsymlist lt_${my_prefix}_LTX_preloaded_symbols[];\ " if test -s "$nlist"I; then echo >> "$output_objdir/$my_dlsyms" "\ static void lt_syminit(void) { LT_DLSYM_CONST lt_dlsymlist *symbol = lt_${my_prefix}_LTX_preloaded_symbols; for (; symbol->name; ++symbol) {" $SED 's/.*/ if (STREQ (symbol->name, \"&\")) symbol->address = (void *) \&&;/' < "$nlist"I >> "$output_objdir/$my_dlsyms" echo >> "$output_objdir/$my_dlsyms" "\ } }" fi echo >> "$output_objdir/$my_dlsyms" "\ LT_DLSYM_CONST lt_dlsymlist lt_${my_prefix}_LTX_preloaded_symbols[] = { {\"$my_originator\", (void *) 0}," if test -s "$nlist"I; then echo >> "$output_objdir/$my_dlsyms" "\ {\"@INIT@\", (void *) <_syminit}," fi case $need_lib_prefix in no) eval "$global_symbol_to_c_name_address" < "$nlist" >> "$output_objdir/$my_dlsyms" ;; *) eval "$global_symbol_to_c_name_address_lib_prefix" < "$nlist" >> "$output_objdir/$my_dlsyms" ;; esac echo >> "$output_objdir/$my_dlsyms" "\ {0, (void *) 0} }; /* This works around a problem in FreeBSD linker */ #ifdef FREEBSD_WORKAROUND static const void *lt_preloaded_setup() { return lt_${my_prefix}_LTX_preloaded_symbols; } #endif #ifdef __cplusplus } #endif\ " } # !$opt_dry_run pic_flag_for_symtable= case "$compile_command " in *" -static "*) ;; *) case $host in # compiling the symbol table file with pic_flag works around # a FreeBSD bug that causes programs to crash when -lm is # linked before any other PIC object. But we must not use # pic_flag when linking with -static. The problem exists in # FreeBSD 2.2.6 and is fixed in FreeBSD 3.1. *-*-freebsd2.*|*-*-freebsd3.0*|*-*-freebsdelf3.0*) pic_flag_for_symtable=" $pic_flag -DFREEBSD_WORKAROUND" ;; *-*-hpux*) pic_flag_for_symtable=" $pic_flag" ;; *) $my_pic_p && pic_flag_for_symtable=" $pic_flag" ;; esac ;; esac symtab_cflags= for arg in $LTCFLAGS; do case $arg in -pie | -fpie | -fPIE) ;; *) func_append symtab_cflags " $arg" ;; esac done # Now compile the dynamic symbol file. func_show_eval '(cd $output_objdir && $LTCC$symtab_cflags -c$no_builtin_flag$pic_flag_for_symtable "$my_dlsyms")' 'exit $?' # Clean up the generated files. func_show_eval '$RM "$output_objdir/$my_dlsyms" "$nlist" "${nlist}S" "${nlist}T" "${nlist}I"' # Transform the symbol file into the correct name. symfileobj=$output_objdir/${my_outputname}S.$objext case $host in *cygwin* | *mingw* | *cegcc* ) if test -f "$output_objdir/$my_outputname.def"; then compile_command=`$ECHO "$compile_command" | $SED "s%@SYMFILE@%$output_objdir/$my_outputname.def $symfileobj%"` finalize_command=`$ECHO "$finalize_command" | $SED "s%@SYMFILE@%$output_objdir/$my_outputname.def $symfileobj%"` else compile_command=`$ECHO "$compile_command" | $SED "s%@SYMFILE@%$symfileobj%"` finalize_command=`$ECHO "$finalize_command" | $SED "s%@SYMFILE@%$symfileobj%"` fi ;; *) compile_command=`$ECHO "$compile_command" | $SED "s%@SYMFILE@%$symfileobj%"` finalize_command=`$ECHO "$finalize_command" | $SED "s%@SYMFILE@%$symfileobj%"` ;; esac ;; *) func_fatal_error "unknown suffix for '$my_dlsyms'" ;; esac else # We keep going just in case the user didn't refer to # lt_preloaded_symbols. The linker will fail if global_symbol_pipe # really was required. # Nullify the symbol file. compile_command=`$ECHO "$compile_command" | $SED "s% @SYMFILE@%%"` finalize_command=`$ECHO "$finalize_command" | $SED "s% @SYMFILE@%%"` fi } # func_cygming_gnu_implib_p ARG # This predicate returns with zero status (TRUE) if # ARG is a GNU/binutils-style import library. Returns # with nonzero status (FALSE) otherwise. func_cygming_gnu_implib_p () { $debug_cmd func_to_tool_file "$1" func_convert_file_msys_to_w32 func_cygming_gnu_implib_tmp=`$NM "$func_to_tool_file_result" | eval "$global_symbol_pipe" | $EGREP ' (_head_[A-Za-z0-9_]+_[ad]l*|[A-Za-z0-9_]+_[ad]l*_iname)$'` test -n "$func_cygming_gnu_implib_tmp" } # func_cygming_ms_implib_p ARG # This predicate returns with zero status (TRUE) if # ARG is an MS-style import library. Returns # with nonzero status (FALSE) otherwise. func_cygming_ms_implib_p () { $debug_cmd func_to_tool_file "$1" func_convert_file_msys_to_w32 func_cygming_ms_implib_tmp=`$NM "$func_to_tool_file_result" | eval "$global_symbol_pipe" | $GREP '_NULL_IMPORT_DESCRIPTOR'` test -n "$func_cygming_ms_implib_tmp" } # func_win32_libid arg # return the library type of file 'arg' # # Need a lot of goo to handle *both* DLLs and import libs # Has to be a shell function in order to 'eat' the argument # that is supplied when $file_magic_command is called. # Despite the name, also deal with 64 bit binaries. func_win32_libid () { $debug_cmd win32_libid_type=unknown win32_fileres=`file -L $1 2>/dev/null` case $win32_fileres in *ar\ archive\ import\ library*) # definitely import win32_libid_type="x86 archive import" ;; *ar\ archive*) # could be an import, or static # Keep the egrep pattern in sync with the one in _LT_CHECK_MAGIC_METHOD. if eval $OBJDUMP -f $1 | $SED -e '10q' 2>/dev/null | $EGREP 'file format (pei*-i386(.*architecture: i386)?|pe-arm-wince|pe-x86-64)' >/dev/null; then case $nm_interface in "MS dumpbin") if func_cygming_ms_implib_p "$1" || func_cygming_gnu_implib_p "$1" then win32_nmres=import else win32_nmres= fi ;; *) func_to_tool_file "$1" func_convert_file_msys_to_w32 win32_nmres=`eval $NM -f posix -A \"$func_to_tool_file_result\" | $SED -n -e ' 1,100{ / I /{ s|.*|import| p q } }'` ;; esac case $win32_nmres in import*) win32_libid_type="x86 archive import";; *) win32_libid_type="x86 archive static";; esac fi ;; *DLL*) win32_libid_type="x86 DLL" ;; *executable*) # but shell scripts are "executable" too... case $win32_fileres in *MS\ Windows\ PE\ Intel*) win32_libid_type="x86 DLL" ;; esac ;; esac $ECHO "$win32_libid_type" } # func_cygming_dll_for_implib ARG # # Platform-specific function to extract the # name of the DLL associated with the specified # import library ARG. # Invoked by eval'ing the libtool variable # $sharedlib_from_linklib_cmd # Result is available in the variable # $sharedlib_from_linklib_result func_cygming_dll_for_implib () { $debug_cmd sharedlib_from_linklib_result=`$DLLTOOL --identify-strict --identify "$1"` } # func_cygming_dll_for_implib_fallback_core SECTION_NAME LIBNAMEs # # The is the core of a fallback implementation of a # platform-specific function to extract the name of the # DLL associated with the specified import library LIBNAME. # # SECTION_NAME is either .idata$6 or .idata$7, depending # on the platform and compiler that created the implib. # # Echos the name of the DLL associated with the # specified import library. func_cygming_dll_for_implib_fallback_core () { $debug_cmd match_literal=`$ECHO "$1" | $SED "$sed_make_literal_regex"` $OBJDUMP -s --section "$1" "$2" 2>/dev/null | $SED '/^Contents of section '"$match_literal"':/{ # Place marker at beginning of archive member dllname section s/.*/====MARK====/ p d } # These lines can sometimes be longer than 43 characters, but # are always uninteresting /:[ ]*file format pe[i]\{,1\}-/d /^In archive [^:]*:/d # Ensure marker is printed /^====MARK====/p # Remove all lines with less than 43 characters /^.\{43\}/!d # From remaining lines, remove first 43 characters s/^.\{43\}//' | $SED -n ' # Join marker and all lines until next marker into a single line /^====MARK====/ b para H $ b para b :para x s/\n//g # Remove the marker s/^====MARK====// # Remove trailing dots and whitespace s/[\. \t]*$// # Print /./p' | # we now have a list, one entry per line, of the stringified # contents of the appropriate section of all members of the # archive that possess that section. Heuristic: eliminate # all those that have a first or second character that is # a '.' (that is, objdump's representation of an unprintable # character.) This should work for all archives with less than # 0x302f exports -- but will fail for DLLs whose name actually # begins with a literal '.' or a single character followed by # a '.'. # # Of those that remain, print the first one. $SED -e '/^\./d;/^.\./d;q' } # func_cygming_dll_for_implib_fallback ARG # Platform-specific function to extract the # name of the DLL associated with the specified # import library ARG. # # This fallback implementation is for use when $DLLTOOL # does not support the --identify-strict option. # Invoked by eval'ing the libtool variable # $sharedlib_from_linklib_cmd # Result is available in the variable # $sharedlib_from_linklib_result func_cygming_dll_for_implib_fallback () { $debug_cmd if func_cygming_gnu_implib_p "$1"; then # binutils import library sharedlib_from_linklib_result=`func_cygming_dll_for_implib_fallback_core '.idata$7' "$1"` elif func_cygming_ms_implib_p "$1"; then # ms-generated import library sharedlib_from_linklib_result=`func_cygming_dll_for_implib_fallback_core '.idata$6' "$1"` else # unknown sharedlib_from_linklib_result= fi } # func_extract_an_archive dir oldlib func_extract_an_archive () { $debug_cmd f_ex_an_ar_dir=$1; shift f_ex_an_ar_oldlib=$1 if test yes = "$lock_old_archive_extraction"; then lockfile=$f_ex_an_ar_oldlib.lock until $opt_dry_run || ln "$progpath" "$lockfile" 2>/dev/null; do func_echo "Waiting for $lockfile to be removed" sleep 2 done fi func_show_eval "(cd \$f_ex_an_ar_dir && $AR x \"\$f_ex_an_ar_oldlib\")" \ 'stat=$?; rm -f "$lockfile"; exit $stat' if test yes = "$lock_old_archive_extraction"; then $opt_dry_run || rm -f "$lockfile" fi if ($AR t "$f_ex_an_ar_oldlib" | sort | sort -uc >/dev/null 2>&1); then : else func_fatal_error "object name conflicts in archive: $f_ex_an_ar_dir/$f_ex_an_ar_oldlib" fi } # func_extract_archives gentop oldlib ... func_extract_archives () { $debug_cmd my_gentop=$1; shift my_oldlibs=${1+"$@"} my_oldobjs= my_xlib= my_xabs= my_xdir= for my_xlib in $my_oldlibs; do # Extract the objects. case $my_xlib in [\\/]* | [A-Za-z]:[\\/]*) my_xabs=$my_xlib ;; *) my_xabs=`pwd`"/$my_xlib" ;; esac func_basename "$my_xlib" my_xlib=$func_basename_result my_xlib_u=$my_xlib while :; do case " $extracted_archives " in *" $my_xlib_u "*) func_arith $extracted_serial + 1 extracted_serial=$func_arith_result my_xlib_u=lt$extracted_serial-$my_xlib ;; *) break ;; esac done extracted_archives="$extracted_archives $my_xlib_u" my_xdir=$my_gentop/$my_xlib_u func_mkdir_p "$my_xdir" case $host in *-darwin*) func_verbose "Extracting $my_xabs" # Do not bother doing anything if just a dry run $opt_dry_run || { darwin_orig_dir=`pwd` cd $my_xdir || exit $? darwin_archive=$my_xabs darwin_curdir=`pwd` func_basename "$darwin_archive" darwin_base_archive=$func_basename_result darwin_arches=`$LIPO -info "$darwin_archive" 2>/dev/null | $GREP Architectures 2>/dev/null || true` if test -n "$darwin_arches"; then darwin_arches=`$ECHO "$darwin_arches" | $SED -e 's/.*are://'` darwin_arch= func_verbose "$darwin_base_archive has multiple architectures $darwin_arches" for darwin_arch in $darwin_arches; do func_mkdir_p "unfat-$$/$darwin_base_archive-$darwin_arch" $LIPO -thin $darwin_arch -output "unfat-$$/$darwin_base_archive-$darwin_arch/$darwin_base_archive" "$darwin_archive" cd "unfat-$$/$darwin_base_archive-$darwin_arch" func_extract_an_archive "`pwd`" "$darwin_base_archive" cd "$darwin_curdir" $RM "unfat-$$/$darwin_base_archive-$darwin_arch/$darwin_base_archive" done # $darwin_arches ## Okay now we've a bunch of thin objects, gotta fatten them up :) darwin_filelist=`find unfat-$$ -type f -name \*.o -print -o -name \*.lo -print | $SED -e "$sed_basename" | sort -u` darwin_file= darwin_files= for darwin_file in $darwin_filelist; do darwin_files=`find unfat-$$ -name $darwin_file -print | sort | $NL2SP` $LIPO -create -output "$darwin_file" $darwin_files done # $darwin_filelist $RM -rf unfat-$$ cd "$darwin_orig_dir" else cd $darwin_orig_dir func_extract_an_archive "$my_xdir" "$my_xabs" fi # $darwin_arches } # !$opt_dry_run ;; *) func_extract_an_archive "$my_xdir" "$my_xabs" ;; esac my_oldobjs="$my_oldobjs "`find $my_xdir -name \*.$objext -print -o -name \*.lo -print | sort | $NL2SP` done func_extract_archives_result=$my_oldobjs } # func_emit_wrapper [arg=no] # # Emit a libtool wrapper script on stdout. # Don't directly open a file because we may want to # incorporate the script contents within a cygwin/mingw # wrapper executable. Must ONLY be called from within # func_mode_link because it depends on a number of variables # set therein. # # ARG is the value that the WRAPPER_SCRIPT_BELONGS_IN_OBJDIR # variable will take. If 'yes', then the emitted script # will assume that the directory where it is stored is # the $objdir directory. This is a cygwin/mingw-specific # behavior. func_emit_wrapper () { func_emit_wrapper_arg1=${1-no} $ECHO "\ #! $SHELL # $output - temporary wrapper script for $objdir/$outputname # Generated by $PROGRAM (GNU $PACKAGE) $VERSION # # The $output program cannot be directly executed until all the libtool # libraries that it depends on are installed. # # This wrapper script should never be moved out of the build directory. # If it is, it will not operate correctly. # Sed substitution that helps us do robust quoting. It backslashifies # metacharacters that are still active within double-quoted strings. sed_quote_subst='$sed_quote_subst' # Be Bourne compatible if test -n \"\${ZSH_VERSION+set}\" && (emulate sh) >/dev/null 2>&1; then emulate sh NULLCMD=: # Zsh 3.x and 4.x performs word splitting on \${1+\"\$@\"}, which # is contrary to our usage. Disable this feature. alias -g '\${1+\"\$@\"}'='\"\$@\"' setopt NO_GLOB_SUBST else case \`(set -o) 2>/dev/null\` in *posix*) set -o posix;; esac fi BIN_SH=xpg4; export BIN_SH # for Tru64 DUALCASE=1; export DUALCASE # for MKS sh # The HP-UX ksh and POSIX shell print the target directory to stdout # if CDPATH is set. (unset CDPATH) >/dev/null 2>&1 && unset CDPATH relink_command=\"$relink_command\" # This environment variable determines our operation mode. if test \"\$libtool_install_magic\" = \"$magic\"; then # install mode needs the following variables: generated_by_libtool_version='$macro_version' notinst_deplibs='$notinst_deplibs' else # When we are sourced in execute mode, \$file and \$ECHO are already set. if test \"\$libtool_execute_magic\" != \"$magic\"; then file=\"\$0\"" qECHO=`$ECHO "$ECHO" | $SED "$sed_quote_subst"` $ECHO "\ # A function that is used when there is no print builtin or printf. func_fallback_echo () { eval 'cat <<_LTECHO_EOF \$1 _LTECHO_EOF' } ECHO=\"$qECHO\" fi # Very basic option parsing. These options are (a) specific to # the libtool wrapper, (b) are identical between the wrapper # /script/ and the wrapper /executable/ that is used only on # windows platforms, and (c) all begin with the string "--lt-" # (application programs are unlikely to have options that match # this pattern). # # There are only two supported options: --lt-debug and # --lt-dump-script. There is, deliberately, no --lt-help. # # The first argument to this parsing function should be the # script's $0 value, followed by "$@". lt_option_debug= func_parse_lt_options () { lt_script_arg0=\$0 shift for lt_opt do case \"\$lt_opt\" in --lt-debug) lt_option_debug=1 ;; --lt-dump-script) lt_dump_D=\`\$ECHO \"X\$lt_script_arg0\" | $SED -e 's/^X//' -e 's%/[^/]*$%%'\` test \"X\$lt_dump_D\" = \"X\$lt_script_arg0\" && lt_dump_D=. lt_dump_F=\`\$ECHO \"X\$lt_script_arg0\" | $SED -e 's/^X//' -e 's%^.*/%%'\` cat \"\$lt_dump_D/\$lt_dump_F\" exit 0 ;; --lt-*) \$ECHO \"Unrecognized --lt- option: '\$lt_opt'\" 1>&2 exit 1 ;; esac done # Print the debug banner immediately: if test -n \"\$lt_option_debug\"; then echo \"$outputname:$output:\$LINENO: libtool wrapper (GNU $PACKAGE) $VERSION\" 1>&2 fi } # Used when --lt-debug. Prints its arguments to stdout # (redirection is the responsibility of the caller) func_lt_dump_args () { lt_dump_args_N=1; for lt_arg do \$ECHO \"$outputname:$output:\$LINENO: newargv[\$lt_dump_args_N]: \$lt_arg\" lt_dump_args_N=\`expr \$lt_dump_args_N + 1\` done } # Core function for launching the target application func_exec_program_core () { " case $host in # Backslashes separate directories on plain windows *-*-mingw | *-*-os2* | *-cegcc*) $ECHO "\ if test -n \"\$lt_option_debug\"; then \$ECHO \"$outputname:$output:\$LINENO: newargv[0]: \$progdir\\\\\$program\" 1>&2 func_lt_dump_args \${1+\"\$@\"} 1>&2 fi exec \"\$progdir\\\\\$program\" \${1+\"\$@\"} " ;; *) $ECHO "\ if test -n \"\$lt_option_debug\"; then \$ECHO \"$outputname:$output:\$LINENO: newargv[0]: \$progdir/\$program\" 1>&2 func_lt_dump_args \${1+\"\$@\"} 1>&2 fi exec \"\$progdir/\$program\" \${1+\"\$@\"} " ;; esac $ECHO "\ \$ECHO \"\$0: cannot exec \$program \$*\" 1>&2 exit 1 } # A function to encapsulate launching the target application # Strips options in the --lt-* namespace from \$@ and # launches target application with the remaining arguments. func_exec_program () { case \" \$* \" in *\\ --lt-*) for lt_wr_arg do case \$lt_wr_arg in --lt-*) ;; *) set x \"\$@\" \"\$lt_wr_arg\"; shift;; esac shift done ;; esac func_exec_program_core \${1+\"\$@\"} } # Parse options func_parse_lt_options \"\$0\" \${1+\"\$@\"} # Find the directory that this script lives in. thisdir=\`\$ECHO \"\$file\" | $SED 's%/[^/]*$%%'\` test \"x\$thisdir\" = \"x\$file\" && thisdir=. # Follow symbolic links until we get to the real thisdir. file=\`ls -ld \"\$file\" | $SED -n 's/.*-> //p'\` while test -n \"\$file\"; do destdir=\`\$ECHO \"\$file\" | $SED 's%/[^/]*\$%%'\` # If there was a directory component, then change thisdir. if test \"x\$destdir\" != \"x\$file\"; then case \"\$destdir\" in [\\\\/]* | [A-Za-z]:[\\\\/]*) thisdir=\"\$destdir\" ;; *) thisdir=\"\$thisdir/\$destdir\" ;; esac fi file=\`\$ECHO \"\$file\" | $SED 's%^.*/%%'\` file=\`ls -ld \"\$thisdir/\$file\" | $SED -n 's/.*-> //p'\` done # Usually 'no', except on cygwin/mingw when embedded into # the cwrapper. WRAPPER_SCRIPT_BELONGS_IN_OBJDIR=$func_emit_wrapper_arg1 if test \"\$WRAPPER_SCRIPT_BELONGS_IN_OBJDIR\" = \"yes\"; then # special case for '.' if test \"\$thisdir\" = \".\"; then thisdir=\`pwd\` fi # remove .libs from thisdir case \"\$thisdir\" in *[\\\\/]$objdir ) thisdir=\`\$ECHO \"\$thisdir\" | $SED 's%[\\\\/][^\\\\/]*$%%'\` ;; $objdir ) thisdir=. ;; esac fi # Try to get the absolute directory name. absdir=\`cd \"\$thisdir\" && pwd\` test -n \"\$absdir\" && thisdir=\"\$absdir\" " if test yes = "$fast_install"; then $ECHO "\ program=lt-'$outputname'$exeext progdir=\"\$thisdir/$objdir\" if test ! -f \"\$progdir/\$program\" || { file=\`ls -1dt \"\$progdir/\$program\" \"\$progdir/../\$program\" 2>/dev/null | $SED 1q\`; \\ test \"X\$file\" != \"X\$progdir/\$program\"; }; then file=\"\$\$-\$program\" if test ! -d \"\$progdir\"; then $MKDIR \"\$progdir\" else $RM \"\$progdir/\$file\" fi" $ECHO "\ # relink executable if necessary if test -n \"\$relink_command\"; then if relink_command_output=\`eval \$relink_command 2>&1\`; then : else \$ECHO \"\$relink_command_output\" >&2 $RM \"\$progdir/\$file\" exit 1 fi fi $MV \"\$progdir/\$file\" \"\$progdir/\$program\" 2>/dev/null || { $RM \"\$progdir/\$program\"; $MV \"\$progdir/\$file\" \"\$progdir/\$program\"; } $RM \"\$progdir/\$file\" fi" else $ECHO "\ program='$outputname' progdir=\"\$thisdir/$objdir\" " fi $ECHO "\ if test -f \"\$progdir/\$program\"; then" # fixup the dll searchpath if we need to. # # Fix the DLL searchpath if we need to. Do this before prepending # to shlibpath, because on Windows, both are PATH and uninstalled # libraries must come first. if test -n "$dllsearchpath"; then $ECHO "\ # Add the dll search path components to the executable PATH PATH=$dllsearchpath:\$PATH " fi # Export our shlibpath_var if we have one. if test yes = "$shlibpath_overrides_runpath" && test -n "$shlibpath_var" && test -n "$temp_rpath"; then $ECHO "\ # Add our own library path to $shlibpath_var $shlibpath_var=\"$temp_rpath\$$shlibpath_var\" # Some systems cannot cope with colon-terminated $shlibpath_var # The second colon is a workaround for a bug in BeOS R4 sed $shlibpath_var=\`\$ECHO \"\$$shlibpath_var\" | $SED 's/::*\$//'\` export $shlibpath_var " fi $ECHO "\ if test \"\$libtool_execute_magic\" != \"$magic\"; then # Run the actual program with our arguments. func_exec_program \${1+\"\$@\"} fi else # The program doesn't exist. \$ECHO \"\$0: error: '\$progdir/\$program' does not exist\" 1>&2 \$ECHO \"This script is just a wrapper for \$program.\" 1>&2 \$ECHO \"See the $PACKAGE documentation for more information.\" 1>&2 exit 1 fi fi\ " } # func_emit_cwrapperexe_src # emit the source code for a wrapper executable on stdout # Must ONLY be called from within func_mode_link because # it depends on a number of variable set therein. func_emit_cwrapperexe_src () { cat < #include #ifdef _MSC_VER # include # include # include #else # include # include # ifdef __CYGWIN__ # include # endif #endif #include #include #include #include #include #include #include #include #define STREQ(s1, s2) (strcmp ((s1), (s2)) == 0) /* declarations of non-ANSI functions */ #if defined __MINGW32__ # ifdef __STRICT_ANSI__ int _putenv (const char *); # endif #elif defined __CYGWIN__ # ifdef __STRICT_ANSI__ char *realpath (const char *, char *); int putenv (char *); int setenv (const char *, const char *, int); # endif /* #elif defined other_platform || defined ... */ #endif /* portability defines, excluding path handling macros */ #if defined _MSC_VER # define setmode _setmode # define stat _stat # define chmod _chmod # define getcwd _getcwd # define putenv _putenv # define S_IXUSR _S_IEXEC #elif defined __MINGW32__ # define setmode _setmode # define stat _stat # define chmod _chmod # define getcwd _getcwd # define putenv _putenv #elif defined __CYGWIN__ # define HAVE_SETENV # define FOPEN_WB "wb" /* #elif defined other platforms ... */ #endif #if defined PATH_MAX # define LT_PATHMAX PATH_MAX #elif defined MAXPATHLEN # define LT_PATHMAX MAXPATHLEN #else # define LT_PATHMAX 1024 #endif #ifndef S_IXOTH # define S_IXOTH 0 #endif #ifndef S_IXGRP # define S_IXGRP 0 #endif /* path handling portability macros */ #ifndef DIR_SEPARATOR # define DIR_SEPARATOR '/' # define PATH_SEPARATOR ':' #endif #if defined _WIN32 || defined __MSDOS__ || defined __DJGPP__ || \ defined __OS2__ # define HAVE_DOS_BASED_FILE_SYSTEM # define FOPEN_WB "wb" # ifndef DIR_SEPARATOR_2 # define DIR_SEPARATOR_2 '\\' # endif # ifndef PATH_SEPARATOR_2 # define PATH_SEPARATOR_2 ';' # endif #endif #ifndef DIR_SEPARATOR_2 # define IS_DIR_SEPARATOR(ch) ((ch) == DIR_SEPARATOR) #else /* DIR_SEPARATOR_2 */ # define IS_DIR_SEPARATOR(ch) \ (((ch) == DIR_SEPARATOR) || ((ch) == DIR_SEPARATOR_2)) #endif /* DIR_SEPARATOR_2 */ #ifndef PATH_SEPARATOR_2 # define IS_PATH_SEPARATOR(ch) ((ch) == PATH_SEPARATOR) #else /* PATH_SEPARATOR_2 */ # define IS_PATH_SEPARATOR(ch) ((ch) == PATH_SEPARATOR_2) #endif /* PATH_SEPARATOR_2 */ #ifndef FOPEN_WB # define FOPEN_WB "w" #endif #ifndef _O_BINARY # define _O_BINARY 0 #endif #define XMALLOC(type, num) ((type *) xmalloc ((num) * sizeof(type))) #define XFREE(stale) do { \ if (stale) { free (stale); stale = 0; } \ } while (0) #if defined LT_DEBUGWRAPPER static int lt_debug = 1; #else static int lt_debug = 0; #endif const char *program_name = "libtool-wrapper"; /* in case xstrdup fails */ void *xmalloc (size_t num); char *xstrdup (const char *string); const char *base_name (const char *name); char *find_executable (const char *wrapper); char *chase_symlinks (const char *pathspec); int make_executable (const char *path); int check_executable (const char *path); char *strendzap (char *str, const char *pat); void lt_debugprintf (const char *file, int line, const char *fmt, ...); void lt_fatal (const char *file, int line, const char *message, ...); static const char *nonnull (const char *s); static const char *nonempty (const char *s); void lt_setenv (const char *name, const char *value); char *lt_extend_str (const char *orig_value, const char *add, int to_end); void lt_update_exe_path (const char *name, const char *value); void lt_update_lib_path (const char *name, const char *value); char **prepare_spawn (char **argv); void lt_dump_script (FILE *f); EOF cat <= 0) && (st.st_mode & (S_IXUSR | S_IXGRP | S_IXOTH))) return 1; else return 0; } int make_executable (const char *path) { int rval = 0; struct stat st; lt_debugprintf (__FILE__, __LINE__, "(make_executable): %s\n", nonempty (path)); if ((!path) || (!*path)) return 0; if (stat (path, &st) >= 0) { rval = chmod (path, st.st_mode | S_IXOTH | S_IXGRP | S_IXUSR); } return rval; } /* Searches for the full path of the wrapper. Returns newly allocated full path name if found, NULL otherwise Does not chase symlinks, even on platforms that support them. */ char * find_executable (const char *wrapper) { int has_slash = 0; const char *p; const char *p_next; /* static buffer for getcwd */ char tmp[LT_PATHMAX + 1]; size_t tmp_len; char *concat_name; lt_debugprintf (__FILE__, __LINE__, "(find_executable): %s\n", nonempty (wrapper)); if ((wrapper == NULL) || (*wrapper == '\0')) return NULL; /* Absolute path? */ #if defined HAVE_DOS_BASED_FILE_SYSTEM if (isalpha ((unsigned char) wrapper[0]) && wrapper[1] == ':') { concat_name = xstrdup (wrapper); if (check_executable (concat_name)) return concat_name; XFREE (concat_name); } else { #endif if (IS_DIR_SEPARATOR (wrapper[0])) { concat_name = xstrdup (wrapper); if (check_executable (concat_name)) return concat_name; XFREE (concat_name); } #if defined HAVE_DOS_BASED_FILE_SYSTEM } #endif for (p = wrapper; *p; p++) if (*p == '/') { has_slash = 1; break; } if (!has_slash) { /* no slashes; search PATH */ const char *path = getenv ("PATH"); if (path != NULL) { for (p = path; *p; p = p_next) { const char *q; size_t p_len; for (q = p; *q; q++) if (IS_PATH_SEPARATOR (*q)) break; p_len = (size_t) (q - p); p_next = (*q == '\0' ? q : q + 1); if (p_len == 0) { /* empty path: current directory */ if (getcwd (tmp, LT_PATHMAX) == NULL) lt_fatal (__FILE__, __LINE__, "getcwd failed: %s", nonnull (strerror (errno))); tmp_len = strlen (tmp); concat_name = XMALLOC (char, tmp_len + 1 + strlen (wrapper) + 1); memcpy (concat_name, tmp, tmp_len); concat_name[tmp_len] = '/'; strcpy (concat_name + tmp_len + 1, wrapper); } else { concat_name = XMALLOC (char, p_len + 1 + strlen (wrapper) + 1); memcpy (concat_name, p, p_len); concat_name[p_len] = '/'; strcpy (concat_name + p_len + 1, wrapper); } if (check_executable (concat_name)) return concat_name; XFREE (concat_name); } } /* not found in PATH; assume curdir */ } /* Relative path | not found in path: prepend cwd */ if (getcwd (tmp, LT_PATHMAX) == NULL) lt_fatal (__FILE__, __LINE__, "getcwd failed: %s", nonnull (strerror (errno))); tmp_len = strlen (tmp); concat_name = XMALLOC (char, tmp_len + 1 + strlen (wrapper) + 1); memcpy (concat_name, tmp, tmp_len); concat_name[tmp_len] = '/'; strcpy (concat_name + tmp_len + 1, wrapper); if (check_executable (concat_name)) return concat_name; XFREE (concat_name); return NULL; } char * chase_symlinks (const char *pathspec) { #ifndef S_ISLNK return xstrdup (pathspec); #else char buf[LT_PATHMAX]; struct stat s; char *tmp_pathspec = xstrdup (pathspec); char *p; int has_symlinks = 0; while (strlen (tmp_pathspec) && !has_symlinks) { lt_debugprintf (__FILE__, __LINE__, "checking path component for symlinks: %s\n", tmp_pathspec); if (lstat (tmp_pathspec, &s) == 0) { if (S_ISLNK (s.st_mode) != 0) { has_symlinks = 1; break; } /* search backwards for last DIR_SEPARATOR */ p = tmp_pathspec + strlen (tmp_pathspec) - 1; while ((p > tmp_pathspec) && (!IS_DIR_SEPARATOR (*p))) p--; if ((p == tmp_pathspec) && (!IS_DIR_SEPARATOR (*p))) { /* no more DIR_SEPARATORS left */ break; } *p = '\0'; } else { lt_fatal (__FILE__, __LINE__, "error accessing file \"%s\": %s", tmp_pathspec, nonnull (strerror (errno))); } } XFREE (tmp_pathspec); if (!has_symlinks) { return xstrdup (pathspec); } tmp_pathspec = realpath (pathspec, buf); if (tmp_pathspec == 0) { lt_fatal (__FILE__, __LINE__, "could not follow symlinks for %s", pathspec); } return xstrdup (tmp_pathspec); #endif } char * strendzap (char *str, const char *pat) { size_t len, patlen; assert (str != NULL); assert (pat != NULL); len = strlen (str); patlen = strlen (pat); if (patlen <= len) { str += len - patlen; if (STREQ (str, pat)) *str = '\0'; } return str; } void lt_debugprintf (const char *file, int line, const char *fmt, ...) { va_list args; if (lt_debug) { (void) fprintf (stderr, "%s:%s:%d: ", program_name, file, line); va_start (args, fmt); (void) vfprintf (stderr, fmt, args); va_end (args); } } static void lt_error_core (int exit_status, const char *file, int line, const char *mode, const char *message, va_list ap) { fprintf (stderr, "%s:%s:%d: %s: ", program_name, file, line, mode); vfprintf (stderr, message, ap); fprintf (stderr, ".\n"); if (exit_status >= 0) exit (exit_status); } void lt_fatal (const char *file, int line, const char *message, ...) { va_list ap; va_start (ap, message); lt_error_core (EXIT_FAILURE, file, line, "FATAL", message, ap); va_end (ap); } static const char * nonnull (const char *s) { return s ? s : "(null)"; } static const char * nonempty (const char *s) { return (s && !*s) ? "(empty)" : nonnull (s); } void lt_setenv (const char *name, const char *value) { lt_debugprintf (__FILE__, __LINE__, "(lt_setenv) setting '%s' to '%s'\n", nonnull (name), nonnull (value)); { #ifdef HAVE_SETENV /* always make a copy, for consistency with !HAVE_SETENV */ char *str = xstrdup (value); setenv (name, str, 1); #else size_t len = strlen (name) + 1 + strlen (value) + 1; char *str = XMALLOC (char, len); sprintf (str, "%s=%s", name, value); if (putenv (str) != EXIT_SUCCESS) { XFREE (str); } #endif } } char * lt_extend_str (const char *orig_value, const char *add, int to_end) { char *new_value; if (orig_value && *orig_value) { size_t orig_value_len = strlen (orig_value); size_t add_len = strlen (add); new_value = XMALLOC (char, add_len + orig_value_len + 1); if (to_end) { strcpy (new_value, orig_value); strcpy (new_value + orig_value_len, add); } else { strcpy (new_value, add); strcpy (new_value + add_len, orig_value); } } else { new_value = xstrdup (add); } return new_value; } void lt_update_exe_path (const char *name, const char *value) { lt_debugprintf (__FILE__, __LINE__, "(lt_update_exe_path) modifying '%s' by prepending '%s'\n", nonnull (name), nonnull (value)); if (name && *name && value && *value) { char *new_value = lt_extend_str (getenv (name), value, 0); /* some systems can't cope with a ':'-terminated path #' */ size_t len = strlen (new_value); while ((len > 0) && IS_PATH_SEPARATOR (new_value[len-1])) { new_value[--len] = '\0'; } lt_setenv (name, new_value); XFREE (new_value); } } void lt_update_lib_path (const char *name, const char *value) { lt_debugprintf (__FILE__, __LINE__, "(lt_update_lib_path) modifying '%s' by prepending '%s'\n", nonnull (name), nonnull (value)); if (name && *name && value && *value) { char *new_value = lt_extend_str (getenv (name), value, 0); lt_setenv (name, new_value); XFREE (new_value); } } EOF case $host_os in mingw*) cat <<"EOF" /* Prepares an argument vector before calling spawn(). Note that spawn() does not by itself call the command interpreter (getenv ("COMSPEC") != NULL ? getenv ("COMSPEC") : ({ OSVERSIONINFO v; v.dwOSVersionInfoSize = sizeof(OSVERSIONINFO); GetVersionEx(&v); v.dwPlatformId == VER_PLATFORM_WIN32_NT; }) ? "cmd.exe" : "command.com"). Instead it simply concatenates the arguments, separated by ' ', and calls CreateProcess(). We must quote the arguments since Win32 CreateProcess() interprets characters like ' ', '\t', '\\', '"' (but not '<' and '>') in a special way: - Space and tab are interpreted as delimiters. They are not treated as delimiters if they are surrounded by double quotes: "...". - Unescaped double quotes are removed from the input. Their only effect is that within double quotes, space and tab are treated like normal characters. - Backslashes not followed by double quotes are not special. - But 2*n+1 backslashes followed by a double quote become n backslashes followed by a double quote (n >= 0): \" -> " \\\" -> \" \\\\\" -> \\" */ #define SHELL_SPECIAL_CHARS "\"\\ \001\002\003\004\005\006\007\010\011\012\013\014\015\016\017\020\021\022\023\024\025\026\027\030\031\032\033\034\035\036\037" #define SHELL_SPACE_CHARS " \001\002\003\004\005\006\007\010\011\012\013\014\015\016\017\020\021\022\023\024\025\026\027\030\031\032\033\034\035\036\037" char ** prepare_spawn (char **argv) { size_t argc; char **new_argv; size_t i; /* Count number of arguments. */ for (argc = 0; argv[argc] != NULL; argc++) ; /* Allocate new argument vector. */ new_argv = XMALLOC (char *, argc + 1); /* Put quoted arguments into the new argument vector. */ for (i = 0; i < argc; i++) { const char *string = argv[i]; if (string[0] == '\0') new_argv[i] = xstrdup ("\"\""); else if (strpbrk (string, SHELL_SPECIAL_CHARS) != NULL) { int quote_around = (strpbrk (string, SHELL_SPACE_CHARS) != NULL); size_t length; unsigned int backslashes; const char *s; char *quoted_string; char *p; length = 0; backslashes = 0; if (quote_around) length++; for (s = string; *s != '\0'; s++) { char c = *s; if (c == '"') length += backslashes + 1; length++; if (c == '\\') backslashes++; else backslashes = 0; } if (quote_around) length += backslashes + 1; quoted_string = XMALLOC (char, length + 1); p = quoted_string; backslashes = 0; if (quote_around) *p++ = '"'; for (s = string; *s != '\0'; s++) { char c = *s; if (c == '"') { unsigned int j; for (j = backslashes + 1; j > 0; j--) *p++ = '\\'; } *p++ = c; if (c == '\\') backslashes++; else backslashes = 0; } if (quote_around) { unsigned int j; for (j = backslashes; j > 0; j--) *p++ = '\\'; *p++ = '"'; } *p = '\0'; new_argv[i] = quoted_string; } else new_argv[i] = (char *) string; } new_argv[argc] = NULL; return new_argv; } EOF ;; esac cat <<"EOF" void lt_dump_script (FILE* f) { EOF func_emit_wrapper yes | $SED -n -e ' s/^\(.\{79\}\)\(..*\)/\1\ \2/ h s/\([\\"]\)/\\\1/g s/$/\\n/ s/\([^\n]*\).*/ fputs ("\1", f);/p g D' cat <<"EOF" } EOF } # end: func_emit_cwrapperexe_src # func_win32_import_lib_p ARG # True if ARG is an import lib, as indicated by $file_magic_cmd func_win32_import_lib_p () { $debug_cmd case `eval $file_magic_cmd \"\$1\" 2>/dev/null | $SED -e 10q` in *import*) : ;; *) false ;; esac } # func_suncc_cstd_abi # !!ONLY CALL THIS FOR SUN CC AFTER $compile_command IS FULLY EXPANDED!! # Several compiler flags select an ABI that is incompatible with the # Cstd library. Avoid specifying it if any are in CXXFLAGS. func_suncc_cstd_abi () { $debug_cmd case " $compile_command " in *" -compat=g "*|*\ -std=c++[0-9][0-9]\ *|*" -library=stdcxx4 "*|*" -library=stlport4 "*) suncc_use_cstd_abi=no ;; *) suncc_use_cstd_abi=yes ;; esac } # func_mode_link arg... func_mode_link () { $debug_cmd case $host in *-*-cygwin* | *-*-mingw* | *-*-pw32* | *-*-os2* | *-cegcc*) # It is impossible to link a dll without this setting, and # we shouldn't force the makefile maintainer to figure out # what system we are compiling for in order to pass an extra # flag for every libtool invocation. # allow_undefined=no # FIXME: Unfortunately, there are problems with the above when trying # to make a dll that has undefined symbols, in which case not # even a static library is built. For now, we need to specify # -no-undefined on the libtool link line when we can be certain # that all symbols are satisfied, otherwise we get a static library. allow_undefined=yes ;; *) allow_undefined=yes ;; esac libtool_args=$nonopt base_compile="$nonopt $@" compile_command=$nonopt finalize_command=$nonopt compile_rpath= finalize_rpath= compile_shlibpath= finalize_shlibpath= convenience= old_convenience= deplibs= old_deplibs= compiler_flags= linker_flags= dllsearchpath= lib_search_path=`pwd` inst_prefix_dir= new_inherited_linker_flags= avoid_version=no bindir= dlfiles= dlprefiles= dlself=no export_dynamic=no export_symbols= export_symbols_regex= generated= libobjs= ltlibs= module=no no_install=no objs= os2dllname= non_pic_objects= precious_files_regex= prefer_static_libs=no preload=false prev= prevarg= release= rpath= xrpath= perm_rpath= temp_rpath= thread_safe=no vinfo= vinfo_number=no weak_libs= single_module=$wl-single_module func_infer_tag $base_compile # We need to know -static, to get the right output filenames. for arg do case $arg in -shared) test yes != "$build_libtool_libs" \ && func_fatal_configuration "cannot build a shared library" build_old_libs=no break ;; -all-static | -static | -static-libtool-libs) case $arg in -all-static) if test yes = "$build_libtool_libs" && test -z "$link_static_flag"; then func_warning "complete static linking is impossible in this configuration" fi if test -n "$link_static_flag"; then dlopen_self=$dlopen_self_static fi prefer_static_libs=yes ;; -static) if test -z "$pic_flag" && test -n "$link_static_flag"; then dlopen_self=$dlopen_self_static fi prefer_static_libs=built ;; -static-libtool-libs) if test -z "$pic_flag" && test -n "$link_static_flag"; then dlopen_self=$dlopen_self_static fi prefer_static_libs=yes ;; esac build_libtool_libs=no build_old_libs=yes break ;; esac done # See if our shared archives depend on static archives. test -n "$old_archive_from_new_cmds" && build_old_libs=yes # Go through the arguments, transforming them on the way. while test "$#" -gt 0; do arg=$1 shift func_quote_for_eval "$arg" qarg=$func_quote_for_eval_unquoted_result func_append libtool_args " $func_quote_for_eval_result" # If the previous option needs an argument, assign it. if test -n "$prev"; then case $prev in output) func_append compile_command " @OUTPUT@" func_append finalize_command " @OUTPUT@" ;; esac case $prev in bindir) bindir=$arg prev= continue ;; dlfiles|dlprefiles) $preload || { # Add the symbol object into the linking commands. func_append compile_command " @SYMFILE@" func_append finalize_command " @SYMFILE@" preload=: } case $arg in *.la | *.lo) ;; # We handle these cases below. force) if test no = "$dlself"; then dlself=needless export_dynamic=yes fi prev= continue ;; self) if test dlprefiles = "$prev"; then dlself=yes elif test dlfiles = "$prev" && test yes != "$dlopen_self"; then dlself=yes else dlself=needless export_dynamic=yes fi prev= continue ;; *) if test dlfiles = "$prev"; then func_append dlfiles " $arg" else func_append dlprefiles " $arg" fi prev= continue ;; esac ;; expsyms) export_symbols=$arg test -f "$arg" \ || func_fatal_error "symbol file '$arg' does not exist" prev= continue ;; expsyms_regex) export_symbols_regex=$arg prev= continue ;; framework) case $host in *-*-darwin*) case "$deplibs " in *" $qarg.ltframework "*) ;; *) func_append deplibs " $qarg.ltframework" # this is fixed later ;; esac ;; esac prev= continue ;; inst_prefix) inst_prefix_dir=$arg prev= continue ;; mllvm) # Clang does not use LLVM to link, so we can simply discard any # '-mllvm $arg' options when doing the link step. prev= continue ;; objectlist) if test -f "$arg"; then save_arg=$arg moreargs= for fil in `cat "$save_arg"` do # func_append moreargs " $fil" arg=$fil # A libtool-controlled object. # Check to see that this really is a libtool object. if func_lalib_unsafe_p "$arg"; then pic_object= non_pic_object= # Read the .lo file func_source "$arg" if test -z "$pic_object" || test -z "$non_pic_object" || test none = "$pic_object" && test none = "$non_pic_object"; then func_fatal_error "cannot find name of object for '$arg'" fi # Extract subdirectory from the argument. func_dirname "$arg" "/" "" xdir=$func_dirname_result if test none != "$pic_object"; then # Prepend the subdirectory the object is found in. pic_object=$xdir$pic_object if test dlfiles = "$prev"; then if test yes = "$build_libtool_libs" && test yes = "$dlopen_support"; then func_append dlfiles " $pic_object" prev= continue else # If libtool objects are unsupported, then we need to preload. prev=dlprefiles fi fi # CHECK ME: I think I busted this. -Ossama if test dlprefiles = "$prev"; then # Preload the old-style object. func_append dlprefiles " $pic_object" prev= fi # A PIC object. func_append libobjs " $pic_object" arg=$pic_object fi # Non-PIC object. if test none != "$non_pic_object"; then # Prepend the subdirectory the object is found in. non_pic_object=$xdir$non_pic_object # A standard non-PIC object func_append non_pic_objects " $non_pic_object" if test -z "$pic_object" || test none = "$pic_object"; then arg=$non_pic_object fi else # If the PIC object exists, use it instead. # $xdir was prepended to $pic_object above. non_pic_object=$pic_object func_append non_pic_objects " $non_pic_object" fi else # Only an error if not doing a dry-run. if $opt_dry_run; then # Extract subdirectory from the argument. func_dirname "$arg" "/" "" xdir=$func_dirname_result func_lo2o "$arg" pic_object=$xdir$objdir/$func_lo2o_result non_pic_object=$xdir$func_lo2o_result func_append libobjs " $pic_object" func_append non_pic_objects " $non_pic_object" else func_fatal_error "'$arg' is not a valid libtool object" fi fi done else func_fatal_error "link input file '$arg' does not exist" fi arg=$save_arg prev= continue ;; os2dllname) os2dllname=$arg prev= continue ;; precious_regex) precious_files_regex=$arg prev= continue ;; release) release=-$arg prev= continue ;; rpath | xrpath) # We need an absolute path. case $arg in [\\/]* | [A-Za-z]:[\\/]*) ;; *) func_fatal_error "only absolute run-paths are allowed" ;; esac if test rpath = "$prev"; then case "$rpath " in *" $arg "*) ;; *) func_append rpath " $arg" ;; esac else case "$xrpath " in *" $arg "*) ;; *) func_append xrpath " $arg" ;; esac fi prev= continue ;; shrext) shrext_cmds=$arg prev= continue ;; weak) func_append weak_libs " $arg" prev= continue ;; xcclinker) func_append linker_flags " $qarg" func_append compiler_flags " $qarg" prev= func_append compile_command " $qarg" func_append finalize_command " $qarg" continue ;; xcompiler) func_append compiler_flags " $qarg" prev= func_append compile_command " $qarg" func_append finalize_command " $qarg" continue ;; xlinker) func_append linker_flags " $qarg" func_append compiler_flags " $wl$qarg" prev= func_append compile_command " $wl$qarg" func_append finalize_command " $wl$qarg" continue ;; *) eval "$prev=\"\$arg\"" prev= continue ;; esac fi # test -n "$prev" prevarg=$arg case $arg in -all-static) if test -n "$link_static_flag"; then # See comment for -static flag below, for more details. func_append compile_command " $link_static_flag" func_append finalize_command " $link_static_flag" fi continue ;; -allow-undefined) # FIXME: remove this flag sometime in the future. func_fatal_error "'-allow-undefined' must not be used because it is the default" ;; -avoid-version) avoid_version=yes continue ;; -bindir) prev=bindir continue ;; -dlopen) prev=dlfiles continue ;; -dlpreopen) prev=dlprefiles continue ;; -export-dynamic) export_dynamic=yes continue ;; -export-symbols | -export-symbols-regex) if test -n "$export_symbols" || test -n "$export_symbols_regex"; then func_fatal_error "more than one -exported-symbols argument is not allowed" fi if test X-export-symbols = "X$arg"; then prev=expsyms else prev=expsyms_regex fi continue ;; -framework) prev=framework continue ;; -inst-prefix-dir) prev=inst_prefix continue ;; # The native IRIX linker understands -LANG:*, -LIST:* and -LNO:* # so, if we see these flags be careful not to treat them like -L -L[A-Z][A-Z]*:*) case $with_gcc/$host in no/*-*-irix* | /*-*-irix*) func_append compile_command " $arg" func_append finalize_command " $arg" ;; esac continue ;; -L*) func_stripname "-L" '' "$arg" if test -z "$func_stripname_result"; then if test "$#" -gt 0; then func_fatal_error "require no space between '-L' and '$1'" else func_fatal_error "need path for '-L' option" fi fi func_resolve_sysroot "$func_stripname_result" dir=$func_resolve_sysroot_result # We need an absolute path. case $dir in [\\/]* | [A-Za-z]:[\\/]*) ;; *) absdir=`cd "$dir" && pwd` test -z "$absdir" && \ func_fatal_error "cannot determine absolute directory name of '$dir'" dir=$absdir ;; esac case "$deplibs " in *" -L$dir "* | *" $arg "*) # Will only happen for absolute or sysroot arguments ;; *) # Preserve sysroot, but never include relative directories case $dir in [\\/]* | [A-Za-z]:[\\/]* | =*) func_append deplibs " $arg" ;; *) func_append deplibs " -L$dir" ;; esac func_append lib_search_path " $dir" ;; esac case $host in *-*-cygwin* | *-*-mingw* | *-*-pw32* | *-*-os2* | *-cegcc*) testbindir=`$ECHO "$dir" | $SED 's*/lib$*/bin*'` case :$dllsearchpath: in *":$dir:"*) ;; ::) dllsearchpath=$dir;; *) func_append dllsearchpath ":$dir";; esac case :$dllsearchpath: in *":$testbindir:"*) ;; ::) dllsearchpath=$testbindir;; *) func_append dllsearchpath ":$testbindir";; esac ;; esac continue ;; -l*) if test X-lc = "X$arg" || test X-lm = "X$arg"; then case $host in *-*-cygwin* | *-*-mingw* | *-*-pw32* | *-*-beos* | *-cegcc* | *-*-haiku*) # These systems don't actually have a C or math library (as such) continue ;; *-*-os2*) # These systems don't actually have a C library (as such) test X-lc = "X$arg" && continue ;; *-*-openbsd* | *-*-freebsd* | *-*-dragonfly* | *-*-bitrig*) # Do not include libc due to us having libc/libc_r. test X-lc = "X$arg" && continue ;; *-*-rhapsody* | *-*-darwin1.[012]) # Rhapsody C and math libraries are in the System framework func_append deplibs " System.ltframework" continue ;; *-*-sco3.2v5* | *-*-sco5v6*) # Causes problems with __ctype test X-lc = "X$arg" && continue ;; *-*-sysv4.2uw2* | *-*-sysv5* | *-*-unixware* | *-*-OpenUNIX*) # Compiler inserts libc in the correct place for threads to work test X-lc = "X$arg" && continue ;; esac elif test X-lc_r = "X$arg"; then case $host in *-*-openbsd* | *-*-freebsd* | *-*-dragonfly* | *-*-bitrig*) # Do not include libc_r directly, use -pthread flag. continue ;; esac fi func_append deplibs " $arg" continue ;; -mllvm) prev=mllvm continue ;; -module) module=yes continue ;; # Tru64 UNIX uses -model [arg] to determine the layout of C++ # classes, name mangling, and exception handling. # Darwin uses the -arch flag to determine output architecture. -model|-arch|-isysroot|--sysroot) func_append compiler_flags " $arg" func_append compile_command " $arg" func_append finalize_command " $arg" prev=xcompiler continue ;; -mt|-mthreads|-kthread|-Kthread|-pthread|-pthreads|--thread-safe \ |-threads|-fopenmp|-openmp|-mp|-xopenmp|-omp|-qsmp=*) func_append compiler_flags " $arg" func_append compile_command " $arg" func_append finalize_command " $arg" case "$new_inherited_linker_flags " in *" $arg "*) ;; * ) func_append new_inherited_linker_flags " $arg" ;; esac continue ;; -multi_module) single_module=$wl-multi_module continue ;; -no-fast-install) fast_install=no continue ;; -no-install) case $host in *-*-cygwin* | *-*-mingw* | *-*-pw32* | *-*-os2* | *-*-darwin* | *-cegcc*) # The PATH hackery in wrapper scripts is required on Windows # and Darwin in order for the loader to find any dlls it needs. func_warning "'-no-install' is ignored for $host" func_warning "assuming '-no-fast-install' instead" fast_install=no ;; *) no_install=yes ;; esac continue ;; -no-undefined) allow_undefined=no continue ;; -objectlist) prev=objectlist continue ;; -os2dllname) prev=os2dllname continue ;; -o) prev=output ;; -precious-files-regex) prev=precious_regex continue ;; -release) prev=release continue ;; -rpath) prev=rpath continue ;; -R) prev=xrpath continue ;; -R*) func_stripname '-R' '' "$arg" dir=$func_stripname_result # We need an absolute path. case $dir in [\\/]* | [A-Za-z]:[\\/]*) ;; =*) func_stripname '=' '' "$dir" dir=$lt_sysroot$func_stripname_result ;; *) func_fatal_error "only absolute run-paths are allowed" ;; esac case "$xrpath " in *" $dir "*) ;; *) func_append xrpath " $dir" ;; esac continue ;; -shared) # The effects of -shared are defined in a previous loop. continue ;; -shrext) prev=shrext continue ;; -static | -static-libtool-libs) # The effects of -static are defined in a previous loop. # We used to do the same as -all-static on platforms that # didn't have a PIC flag, but the assumption that the effects # would be equivalent was wrong. It would break on at least # Digital Unix and AIX. continue ;; -thread-safe) thread_safe=yes continue ;; -version-info) prev=vinfo continue ;; -version-number) prev=vinfo vinfo_number=yes continue ;; -weak) prev=weak continue ;; -Wc,*) func_stripname '-Wc,' '' "$arg" args=$func_stripname_result arg= save_ifs=$IFS; IFS=, for flag in $args; do IFS=$save_ifs func_quote_for_eval "$flag" func_append arg " $func_quote_for_eval_result" func_append compiler_flags " $func_quote_for_eval_result" done IFS=$save_ifs func_stripname ' ' '' "$arg" arg=$func_stripname_result ;; -Wl,*) func_stripname '-Wl,' '' "$arg" args=$func_stripname_result arg= save_ifs=$IFS; IFS=, for flag in $args; do IFS=$save_ifs func_quote_for_eval "$flag" func_append arg " $wl$func_quote_for_eval_result" func_append compiler_flags " $wl$func_quote_for_eval_result" func_append linker_flags " $func_quote_for_eval_result" done IFS=$save_ifs func_stripname ' ' '' "$arg" arg=$func_stripname_result ;; -Xcompiler) prev=xcompiler continue ;; -Xlinker) prev=xlinker continue ;; -XCClinker) prev=xcclinker continue ;; # -msg_* for osf cc -msg_*) func_quote_for_eval "$arg" arg=$func_quote_for_eval_result ;; # Flags to be passed through unchanged, with rationale: # -64, -mips[0-9] enable 64-bit mode for the SGI compiler # -r[0-9][0-9]* specify processor for the SGI compiler # -xarch=*, -xtarget=* enable 64-bit mode for the Sun compiler # +DA*, +DD* enable 64-bit mode for the HP compiler # -q* compiler args for the IBM compiler # -m*, -t[45]*, -txscale* architecture-specific flags for GCC # -F/path path to uninstalled frameworks, gcc on darwin # -p, -pg, --coverage, -fprofile-* profiling flags for GCC # -fstack-protector* stack protector flags for GCC # @file GCC response files # -tp=* Portland pgcc target processor selection # --sysroot=* for sysroot support # -O*, -g*, -flto*, -fwhopr*, -fuse-linker-plugin GCC link-time optimization # -specs=* GCC specs files # -stdlib=* select c++ std lib with clang -64|-mips[0-9]|-r[0-9][0-9]*|-xarch=*|-xtarget=*|+DA*|+DD*|-q*|-m*| \ -t[45]*|-txscale*|-p|-pg|--coverage|-fprofile-*|-F*|@*|-tp=*|--sysroot=*| \ -O*|-g*|-flto*|-fwhopr*|-fuse-linker-plugin|-fstack-protector*|-stdlib=*| \ -specs=*) func_quote_for_eval "$arg" arg=$func_quote_for_eval_result func_append compile_command " $arg" func_append finalize_command " $arg" func_append compiler_flags " $arg" continue ;; -Z*) if test os2 = "`expr $host : '.*\(os2\)'`"; then # OS/2 uses -Zxxx to specify OS/2-specific options compiler_flags="$compiler_flags $arg" func_append compile_command " $arg" func_append finalize_command " $arg" case $arg in -Zlinker | -Zstack) prev=xcompiler ;; esac continue else # Otherwise treat like 'Some other compiler flag' below func_quote_for_eval "$arg" arg=$func_quote_for_eval_result fi ;; # Some other compiler flag. -* | +*) func_quote_for_eval "$arg" arg=$func_quote_for_eval_result ;; *.$objext) # A standard object. func_append objs " $arg" ;; *.lo) # A libtool-controlled object. # Check to see that this really is a libtool object. if func_lalib_unsafe_p "$arg"; then pic_object= non_pic_object= # Read the .lo file func_source "$arg" if test -z "$pic_object" || test -z "$non_pic_object" || test none = "$pic_object" && test none = "$non_pic_object"; then func_fatal_error "cannot find name of object for '$arg'" fi # Extract subdirectory from the argument. func_dirname "$arg" "/" "" xdir=$func_dirname_result test none = "$pic_object" || { # Prepend the subdirectory the object is found in. pic_object=$xdir$pic_object if test dlfiles = "$prev"; then if test yes = "$build_libtool_libs" && test yes = "$dlopen_support"; then func_append dlfiles " $pic_object" prev= continue else # If libtool objects are unsupported, then we need to preload. prev=dlprefiles fi fi # CHECK ME: I think I busted this. -Ossama if test dlprefiles = "$prev"; then # Preload the old-style object. func_append dlprefiles " $pic_object" prev= fi # A PIC object. func_append libobjs " $pic_object" arg=$pic_object } # Non-PIC object. if test none != "$non_pic_object"; then # Prepend the subdirectory the object is found in. non_pic_object=$xdir$non_pic_object # A standard non-PIC object func_append non_pic_objects " $non_pic_object" if test -z "$pic_object" || test none = "$pic_object"; then arg=$non_pic_object fi else # If the PIC object exists, use it instead. # $xdir was prepended to $pic_object above. non_pic_object=$pic_object func_append non_pic_objects " $non_pic_object" fi else # Only an error if not doing a dry-run. if $opt_dry_run; then # Extract subdirectory from the argument. func_dirname "$arg" "/" "" xdir=$func_dirname_result func_lo2o "$arg" pic_object=$xdir$objdir/$func_lo2o_result non_pic_object=$xdir$func_lo2o_result func_append libobjs " $pic_object" func_append non_pic_objects " $non_pic_object" else func_fatal_error "'$arg' is not a valid libtool object" fi fi ;; *.$libext) # An archive. func_append deplibs " $arg" func_append old_deplibs " $arg" continue ;; *.la) # A libtool-controlled library. func_resolve_sysroot "$arg" if test dlfiles = "$prev"; then # This library was specified with -dlopen. func_append dlfiles " $func_resolve_sysroot_result" prev= elif test dlprefiles = "$prev"; then # The library was specified with -dlpreopen. func_append dlprefiles " $func_resolve_sysroot_result" prev= else func_append deplibs " $func_resolve_sysroot_result" fi continue ;; # Some other compiler argument. *) # Unknown arguments in both finalize_command and compile_command need # to be aesthetically quoted because they are evaled later. func_quote_for_eval "$arg" arg=$func_quote_for_eval_result ;; esac # arg # Now actually substitute the argument into the commands. if test -n "$arg"; then func_append compile_command " $arg" func_append finalize_command " $arg" fi done # argument parsing loop test -n "$prev" && \ func_fatal_help "the '$prevarg' option requires an argument" if test yes = "$export_dynamic" && test -n "$export_dynamic_flag_spec"; then eval arg=\"$export_dynamic_flag_spec\" func_append compile_command " $arg" func_append finalize_command " $arg" fi oldlibs= # calculate the name of the file, without its directory func_basename "$output" outputname=$func_basename_result libobjs_save=$libobjs if test -n "$shlibpath_var"; then # get the directories listed in $shlibpath_var eval shlib_search_path=\`\$ECHO \"\$$shlibpath_var\" \| \$SED \'s/:/ /g\'\` else shlib_search_path= fi eval sys_lib_search_path=\"$sys_lib_search_path_spec\" eval sys_lib_dlsearch_path=\"$sys_lib_dlsearch_path_spec\" # Definition is injected by LT_CONFIG during libtool generation. func_munge_path_list sys_lib_dlsearch_path "$LT_SYS_LIBRARY_PATH" func_dirname "$output" "/" "" output_objdir=$func_dirname_result$objdir func_to_tool_file "$output_objdir/" tool_output_objdir=$func_to_tool_file_result # Create the object directory. func_mkdir_p "$output_objdir" # Determine the type of output case $output in "") func_fatal_help "you must specify an output file" ;; *.$libext) linkmode=oldlib ;; *.lo | *.$objext) linkmode=obj ;; *.la) linkmode=lib ;; *) linkmode=prog ;; # Anything else should be a program. esac specialdeplibs= libs= # Find all interdependent deplibs by searching for libraries # that are linked more than once (e.g. -la -lb -la) for deplib in $deplibs; do if $opt_preserve_dup_deps; then case "$libs " in *" $deplib "*) func_append specialdeplibs " $deplib" ;; esac fi func_append libs " $deplib" done if test lib = "$linkmode"; then libs="$predeps $libs $compiler_lib_search_path $postdeps" # Compute libraries that are listed more than once in $predeps # $postdeps and mark them as special (i.e., whose duplicates are # not to be eliminated). pre_post_deps= if $opt_duplicate_compiler_generated_deps; then for pre_post_dep in $predeps $postdeps; do case "$pre_post_deps " in *" $pre_post_dep "*) func_append specialdeplibs " $pre_post_deps" ;; esac func_append pre_post_deps " $pre_post_dep" done fi pre_post_deps= fi deplibs= newdependency_libs= newlib_search_path= need_relink=no # whether we're linking any uninstalled libtool libraries notinst_deplibs= # not-installed libtool libraries notinst_path= # paths that contain not-installed libtool libraries case $linkmode in lib) passes="conv dlpreopen link" for file in $dlfiles $dlprefiles; do case $file in *.la) ;; *) func_fatal_help "libraries can '-dlopen' only libtool libraries: $file" ;; esac done ;; prog) compile_deplibs= finalize_deplibs= alldeplibs=false newdlfiles= newdlprefiles= passes="conv scan dlopen dlpreopen link" ;; *) passes="conv" ;; esac for pass in $passes; do # The preopen pass in lib mode reverses $deplibs; put it back here # so that -L comes before libs that need it for instance... if test lib,link = "$linkmode,$pass"; then ## FIXME: Find the place where the list is rebuilt in the wrong ## order, and fix it there properly tmp_deplibs= for deplib in $deplibs; do tmp_deplibs="$deplib $tmp_deplibs" done deplibs=$tmp_deplibs fi if test lib,link = "$linkmode,$pass" || test prog,scan = "$linkmode,$pass"; then libs=$deplibs deplibs= fi if test prog = "$linkmode"; then case $pass in dlopen) libs=$dlfiles ;; dlpreopen) libs=$dlprefiles ;; link) libs="$deplibs %DEPLIBS% $dependency_libs" ;; esac fi if test lib,dlpreopen = "$linkmode,$pass"; then # Collect and forward deplibs of preopened libtool libs for lib in $dlprefiles; do # Ignore non-libtool-libs dependency_libs= func_resolve_sysroot "$lib" case $lib in *.la) func_source "$func_resolve_sysroot_result" ;; esac # Collect preopened libtool deplibs, except any this library # has declared as weak libs for deplib in $dependency_libs; do func_basename "$deplib" deplib_base=$func_basename_result case " $weak_libs " in *" $deplib_base "*) ;; *) func_append deplibs " $deplib" ;; esac done done libs=$dlprefiles fi if test dlopen = "$pass"; then # Collect dlpreopened libraries save_deplibs=$deplibs deplibs= fi for deplib in $libs; do lib= found=false case $deplib in -mt|-mthreads|-kthread|-Kthread|-pthread|-pthreads|--thread-safe \ |-threads|-fopenmp|-openmp|-mp|-xopenmp|-omp|-qsmp=*) if test prog,link = "$linkmode,$pass"; then compile_deplibs="$deplib $compile_deplibs" finalize_deplibs="$deplib $finalize_deplibs" else func_append compiler_flags " $deplib" if test lib = "$linkmode"; then case "$new_inherited_linker_flags " in *" $deplib "*) ;; * ) func_append new_inherited_linker_flags " $deplib" ;; esac fi fi continue ;; -l*) if test lib != "$linkmode" && test prog != "$linkmode"; then func_warning "'-l' is ignored for archives/objects" continue fi func_stripname '-l' '' "$deplib" name=$func_stripname_result if test lib = "$linkmode"; then searchdirs="$newlib_search_path $lib_search_path $compiler_lib_search_dirs $sys_lib_search_path $shlib_search_path" else searchdirs="$newlib_search_path $lib_search_path $sys_lib_search_path $shlib_search_path" fi for searchdir in $searchdirs; do for search_ext in .la $std_shrext .so .a; do # Search the libtool library lib=$searchdir/lib$name$search_ext if test -f "$lib"; then if test .la = "$search_ext"; then found=: else found=false fi break 2 fi done done if $found; then # deplib is a libtool library # If $allow_libtool_libs_with_static_runtimes && $deplib is a stdlib, # We need to do some special things here, and not later. if test yes = "$allow_libtool_libs_with_static_runtimes"; then case " $predeps $postdeps " in *" $deplib "*) if func_lalib_p "$lib"; then library_names= old_library= func_source "$lib" for l in $old_library $library_names; do ll=$l done if test "X$ll" = "X$old_library"; then # only static version available found=false func_dirname "$lib" "" "." ladir=$func_dirname_result lib=$ladir/$old_library if test prog,link = "$linkmode,$pass"; then compile_deplibs="$deplib $compile_deplibs" finalize_deplibs="$deplib $finalize_deplibs" else deplibs="$deplib $deplibs" test lib = "$linkmode" && newdependency_libs="$deplib $newdependency_libs" fi continue fi fi ;; *) ;; esac fi else # deplib doesn't seem to be a libtool library if test prog,link = "$linkmode,$pass"; then compile_deplibs="$deplib $compile_deplibs" finalize_deplibs="$deplib $finalize_deplibs" else deplibs="$deplib $deplibs" test lib = "$linkmode" && newdependency_libs="$deplib $newdependency_libs" fi continue fi ;; # -l *.ltframework) if test prog,link = "$linkmode,$pass"; then compile_deplibs="$deplib $compile_deplibs" finalize_deplibs="$deplib $finalize_deplibs" else deplibs="$deplib $deplibs" if test lib = "$linkmode"; then case "$new_inherited_linker_flags " in *" $deplib "*) ;; * ) func_append new_inherited_linker_flags " $deplib" ;; esac fi fi continue ;; -L*) case $linkmode in lib) deplibs="$deplib $deplibs" test conv = "$pass" && continue newdependency_libs="$deplib $newdependency_libs" func_stripname '-L' '' "$deplib" func_resolve_sysroot "$func_stripname_result" func_append newlib_search_path " $func_resolve_sysroot_result" ;; prog) if test conv = "$pass"; then deplibs="$deplib $deplibs" continue fi if test scan = "$pass"; then deplibs="$deplib $deplibs" else compile_deplibs="$deplib $compile_deplibs" finalize_deplibs="$deplib $finalize_deplibs" fi func_stripname '-L' '' "$deplib" func_resolve_sysroot "$func_stripname_result" func_append newlib_search_path " $func_resolve_sysroot_result" ;; *) func_warning "'-L' is ignored for archives/objects" ;; esac # linkmode continue ;; # -L -R*) if test link = "$pass"; then func_stripname '-R' '' "$deplib" func_resolve_sysroot "$func_stripname_result" dir=$func_resolve_sysroot_result # Make sure the xrpath contains only unique directories. case "$xrpath " in *" $dir "*) ;; *) func_append xrpath " $dir" ;; esac fi deplibs="$deplib $deplibs" continue ;; *.la) func_resolve_sysroot "$deplib" lib=$func_resolve_sysroot_result ;; *.$libext) if test conv = "$pass"; then deplibs="$deplib $deplibs" continue fi case $linkmode in lib) # Linking convenience modules into shared libraries is allowed, # but linking other static libraries is non-portable. case " $dlpreconveniencelibs " in *" $deplib "*) ;; *) valid_a_lib=false case $deplibs_check_method in match_pattern*) set dummy $deplibs_check_method; shift match_pattern_regex=`expr "$deplibs_check_method" : "$1 \(.*\)"` if eval "\$ECHO \"$deplib\"" 2>/dev/null | $SED 10q \ | $EGREP "$match_pattern_regex" > /dev/null; then valid_a_lib=: fi ;; pass_all) valid_a_lib=: ;; esac if $valid_a_lib; then echo $ECHO "*** Warning: Linking the shared library $output against the" $ECHO "*** static library $deplib is not portable!" deplibs="$deplib $deplibs" else echo $ECHO "*** Warning: Trying to link with static lib archive $deplib." echo "*** I have the capability to make that library automatically link in when" echo "*** you link to this library. But I can only do this if you have a" echo "*** shared version of the library, which you do not appear to have" echo "*** because the file extensions .$libext of this argument makes me believe" echo "*** that it is just a static archive that I should not use here." fi ;; esac continue ;; prog) if test link != "$pass"; then deplibs="$deplib $deplibs" else compile_deplibs="$deplib $compile_deplibs" finalize_deplibs="$deplib $finalize_deplibs" fi continue ;; esac # linkmode ;; # *.$libext *.lo | *.$objext) if test conv = "$pass"; then deplibs="$deplib $deplibs" elif test prog = "$linkmode"; then if test dlpreopen = "$pass" || test yes != "$dlopen_support" || test no = "$build_libtool_libs"; then # If there is no dlopen support or we're linking statically, # we need to preload. func_append newdlprefiles " $deplib" compile_deplibs="$deplib $compile_deplibs" finalize_deplibs="$deplib $finalize_deplibs" else func_append newdlfiles " $deplib" fi fi continue ;; %DEPLIBS%) alldeplibs=: continue ;; esac # case $deplib $found || test -f "$lib" \ || func_fatal_error "cannot find the library '$lib' or unhandled argument '$deplib'" # Check to see that this really is a libtool archive. func_lalib_unsafe_p "$lib" \ || func_fatal_error "'$lib' is not a valid libtool archive" func_dirname "$lib" "" "." ladir=$func_dirname_result dlname= dlopen= dlpreopen= libdir= library_names= old_library= inherited_linker_flags= # If the library was installed with an old release of libtool, # it will not redefine variables installed, or shouldnotlink installed=yes shouldnotlink=no avoidtemprpath= # Read the .la file func_source "$lib" # Convert "-framework foo" to "foo.ltframework" if test -n "$inherited_linker_flags"; then tmp_inherited_linker_flags=`$ECHO "$inherited_linker_flags" | $SED 's/-framework \([^ $]*\)/\1.ltframework/g'` for tmp_inherited_linker_flag in $tmp_inherited_linker_flags; do case " $new_inherited_linker_flags " in *" $tmp_inherited_linker_flag "*) ;; *) func_append new_inherited_linker_flags " $tmp_inherited_linker_flag";; esac done fi dependency_libs=`$ECHO " $dependency_libs" | $SED 's% \([^ $]*\).ltframework% -framework \1%g'` if test lib,link = "$linkmode,$pass" || test prog,scan = "$linkmode,$pass" || { test prog != "$linkmode" && test lib != "$linkmode"; }; then test -n "$dlopen" && func_append dlfiles " $dlopen" test -n "$dlpreopen" && func_append dlprefiles " $dlpreopen" fi if test conv = "$pass"; then # Only check for convenience libraries deplibs="$lib $deplibs" if test -z "$libdir"; then if test -z "$old_library"; then func_fatal_error "cannot find name of link library for '$lib'" fi # It is a libtool convenience library, so add in its objects. func_append convenience " $ladir/$objdir/$old_library" func_append old_convenience " $ladir/$objdir/$old_library" elif test prog != "$linkmode" && test lib != "$linkmode"; then func_fatal_error "'$lib' is not a convenience library" fi tmp_libs= for deplib in $dependency_libs; do deplibs="$deplib $deplibs" if $opt_preserve_dup_deps; then case "$tmp_libs " in *" $deplib "*) func_append specialdeplibs " $deplib" ;; esac fi func_append tmp_libs " $deplib" done continue fi # $pass = conv # Get the name of the library we link against. linklib= if test -n "$old_library" && { test yes = "$prefer_static_libs" || test built,no = "$prefer_static_libs,$installed"; }; then linklib=$old_library else for l in $old_library $library_names; do linklib=$l done fi if test -z "$linklib"; then func_fatal_error "cannot find name of link library for '$lib'" fi # This library was specified with -dlopen. if test dlopen = "$pass"; then test -z "$libdir" \ && func_fatal_error "cannot -dlopen a convenience library: '$lib'" if test -z "$dlname" || test yes != "$dlopen_support" || test no = "$build_libtool_libs" then # If there is no dlname, no dlopen support or we're linking # statically, we need to preload. We also need to preload any # dependent libraries so libltdl's deplib preloader doesn't # bomb out in the load deplibs phase. func_append dlprefiles " $lib $dependency_libs" else func_append newdlfiles " $lib" fi continue fi # $pass = dlopen # We need an absolute path. case $ladir in [\\/]* | [A-Za-z]:[\\/]*) abs_ladir=$ladir ;; *) abs_ladir=`cd "$ladir" && pwd` if test -z "$abs_ladir"; then func_warning "cannot determine absolute directory name of '$ladir'" func_warning "passing it literally to the linker, although it might fail" abs_ladir=$ladir fi ;; esac func_basename "$lib" laname=$func_basename_result # Find the relevant object directory and library name. if test yes = "$installed"; then if test ! -f "$lt_sysroot$libdir/$linklib" && test -f "$abs_ladir/$linklib"; then func_warning "library '$lib' was moved." dir=$ladir absdir=$abs_ladir libdir=$abs_ladir else dir=$lt_sysroot$libdir absdir=$lt_sysroot$libdir fi test yes = "$hardcode_automatic" && avoidtemprpath=yes else if test ! -f "$ladir/$objdir/$linklib" && test -f "$abs_ladir/$linklib"; then dir=$ladir absdir=$abs_ladir # Remove this search path later func_append notinst_path " $abs_ladir" else dir=$ladir/$objdir absdir=$abs_ladir/$objdir # Remove this search path later func_append notinst_path " $abs_ladir" fi fi # $installed = yes func_stripname 'lib' '.la' "$laname" name=$func_stripname_result # This library was specified with -dlpreopen. if test dlpreopen = "$pass"; then if test -z "$libdir" && test prog = "$linkmode"; then func_fatal_error "only libraries may -dlpreopen a convenience library: '$lib'" fi case $host in # special handling for platforms with PE-DLLs. *cygwin* | *mingw* | *cegcc* ) # Linker will automatically link against shared library if both # static and shared are present. Therefore, ensure we extract # symbols from the import library if a shared library is present # (otherwise, the dlopen module name will be incorrect). We do # this by putting the import library name into $newdlprefiles. # We recover the dlopen module name by 'saving' the la file # name in a special purpose variable, and (later) extracting the # dlname from the la file. if test -n "$dlname"; then func_tr_sh "$dir/$linklib" eval "libfile_$func_tr_sh_result=\$abs_ladir/\$laname" func_append newdlprefiles " $dir/$linklib" else func_append newdlprefiles " $dir/$old_library" # Keep a list of preopened convenience libraries to check # that they are being used correctly in the link pass. test -z "$libdir" && \ func_append dlpreconveniencelibs " $dir/$old_library" fi ;; * ) # Prefer using a static library (so that no silly _DYNAMIC symbols # are required to link). if test -n "$old_library"; then func_append newdlprefiles " $dir/$old_library" # Keep a list of preopened convenience libraries to check # that they are being used correctly in the link pass. test -z "$libdir" && \ func_append dlpreconveniencelibs " $dir/$old_library" # Otherwise, use the dlname, so that lt_dlopen finds it. elif test -n "$dlname"; then func_append newdlprefiles " $dir/$dlname" else func_append newdlprefiles " $dir/$linklib" fi ;; esac fi # $pass = dlpreopen if test -z "$libdir"; then # Link the convenience library if test lib = "$linkmode"; then deplibs="$dir/$old_library $deplibs" elif test prog,link = "$linkmode,$pass"; then compile_deplibs="$dir/$old_library $compile_deplibs" finalize_deplibs="$dir/$old_library $finalize_deplibs" else deplibs="$lib $deplibs" # used for prog,scan pass fi continue fi if test prog = "$linkmode" && test link != "$pass"; then func_append newlib_search_path " $ladir" deplibs="$lib $deplibs" linkalldeplibs=false if test no != "$link_all_deplibs" || test -z "$library_names" || test no = "$build_libtool_libs"; then linkalldeplibs=: fi tmp_libs= for deplib in $dependency_libs; do case $deplib in -L*) func_stripname '-L' '' "$deplib" func_resolve_sysroot "$func_stripname_result" func_append newlib_search_path " $func_resolve_sysroot_result" ;; esac # Need to link against all dependency_libs? if $linkalldeplibs; then deplibs="$deplib $deplibs" else # Need to hardcode shared library paths # or/and link against static libraries newdependency_libs="$deplib $newdependency_libs" fi if $opt_preserve_dup_deps; then case "$tmp_libs " in *" $deplib "*) func_append specialdeplibs " $deplib" ;; esac fi func_append tmp_libs " $deplib" done # for deplib continue fi # $linkmode = prog... if test prog,link = "$linkmode,$pass"; then if test -n "$library_names" && { { test no = "$prefer_static_libs" || test built,yes = "$prefer_static_libs,$installed"; } || test -z "$old_library"; }; then # We need to hardcode the library path if test -n "$shlibpath_var" && test -z "$avoidtemprpath"; then # Make sure the rpath contains only unique directories. case $temp_rpath: in *"$absdir:"*) ;; *) func_append temp_rpath "$absdir:" ;; esac fi # Hardcode the library path. # Skip directories that are in the system default run-time # search path. case " $sys_lib_dlsearch_path " in *" $absdir "*) ;; *) case "$compile_rpath " in *" $absdir "*) ;; *) func_append compile_rpath " $absdir" ;; esac ;; esac case " $sys_lib_dlsearch_path " in *" $libdir "*) ;; *) case "$finalize_rpath " in *" $libdir "*) ;; *) func_append finalize_rpath " $libdir" ;; esac ;; esac fi # $linkmode,$pass = prog,link... if $alldeplibs && { test pass_all = "$deplibs_check_method" || { test yes = "$build_libtool_libs" && test -n "$library_names"; }; }; then # We only need to search for static libraries continue fi fi link_static=no # Whether the deplib will be linked statically use_static_libs=$prefer_static_libs if test built = "$use_static_libs" && test yes = "$installed"; then use_static_libs=no fi if test -n "$library_names" && { test no = "$use_static_libs" || test -z "$old_library"; }; then case $host in *cygwin* | *mingw* | *cegcc* | *os2*) # No point in relinking DLLs because paths are not encoded func_append notinst_deplibs " $lib" need_relink=no ;; *) if test no = "$installed"; then func_append notinst_deplibs " $lib" need_relink=yes fi ;; esac # This is a shared library # Warn about portability, can't link against -module's on some # systems (darwin). Don't bleat about dlopened modules though! dlopenmodule= for dlpremoduletest in $dlprefiles; do if test "X$dlpremoduletest" = "X$lib"; then dlopenmodule=$dlpremoduletest break fi done if test -z "$dlopenmodule" && test yes = "$shouldnotlink" && test link = "$pass"; then echo if test prog = "$linkmode"; then $ECHO "*** Warning: Linking the executable $output against the loadable module" else $ECHO "*** Warning: Linking the shared library $output against the loadable module" fi $ECHO "*** $linklib is not portable!" fi if test lib = "$linkmode" && test yes = "$hardcode_into_libs"; then # Hardcode the library path. # Skip directories that are in the system default run-time # search path. case " $sys_lib_dlsearch_path " in *" $absdir "*) ;; *) case "$compile_rpath " in *" $absdir "*) ;; *) func_append compile_rpath " $absdir" ;; esac ;; esac case " $sys_lib_dlsearch_path " in *" $libdir "*) ;; *) case "$finalize_rpath " in *" $libdir "*) ;; *) func_append finalize_rpath " $libdir" ;; esac ;; esac fi if test -n "$old_archive_from_expsyms_cmds"; then # figure out the soname set dummy $library_names shift realname=$1 shift libname=`eval "\\$ECHO \"$libname_spec\""` # use dlname if we got it. it's perfectly good, no? if test -n "$dlname"; then soname=$dlname elif test -n "$soname_spec"; then # bleh windows case $host in *cygwin* | mingw* | *cegcc* | *os2*) func_arith $current - $age major=$func_arith_result versuffix=-$major ;; esac eval soname=\"$soname_spec\" else soname=$realname fi # Make a new name for the extract_expsyms_cmds to use soroot=$soname func_basename "$soroot" soname=$func_basename_result func_stripname 'lib' '.dll' "$soname" newlib=libimp-$func_stripname_result.a # If the library has no export list, then create one now if test -f "$output_objdir/$soname-def"; then : else func_verbose "extracting exported symbol list from '$soname'" func_execute_cmds "$extract_expsyms_cmds" 'exit $?' fi # Create $newlib if test -f "$output_objdir/$newlib"; then :; else func_verbose "generating import library for '$soname'" func_execute_cmds "$old_archive_from_expsyms_cmds" 'exit $?' fi # make sure the library variables are pointing to the new library dir=$output_objdir linklib=$newlib fi # test -n "$old_archive_from_expsyms_cmds" if test prog = "$linkmode" || test relink != "$opt_mode"; then add_shlibpath= add_dir= add= lib_linked=yes case $hardcode_action in immediate | unsupported) if test no = "$hardcode_direct"; then add=$dir/$linklib case $host in *-*-sco3.2v5.0.[024]*) add_dir=-L$dir ;; *-*-sysv4*uw2*) add_dir=-L$dir ;; *-*-sysv5OpenUNIX* | *-*-sysv5UnixWare7.[01].[10]* | \ *-*-unixware7*) add_dir=-L$dir ;; *-*-darwin* ) # if the lib is a (non-dlopened) module then we cannot # link against it, someone is ignoring the earlier warnings if /usr/bin/file -L $add 2> /dev/null | $GREP ": [^:]* bundle" >/dev/null; then if test "X$dlopenmodule" != "X$lib"; then $ECHO "*** Warning: lib $linklib is a module, not a shared library" if test -z "$old_library"; then echo echo "*** And there doesn't seem to be a static archive available" echo "*** The link will probably fail, sorry" else add=$dir/$old_library fi elif test -n "$old_library"; then add=$dir/$old_library fi fi esac elif test no = "$hardcode_minus_L"; then case $host in *-*-sunos*) add_shlibpath=$dir ;; esac add_dir=-L$dir add=-l$name elif test no = "$hardcode_shlibpath_var"; then add_shlibpath=$dir add=-l$name else lib_linked=no fi ;; relink) if test yes = "$hardcode_direct" && test no = "$hardcode_direct_absolute"; then add=$dir/$linklib elif test yes = "$hardcode_minus_L"; then add_dir=-L$absdir # Try looking first in the location we're being installed to. if test -n "$inst_prefix_dir"; then case $libdir in [\\/]*) func_append add_dir " -L$inst_prefix_dir$libdir" ;; esac fi add=-l$name elif test yes = "$hardcode_shlibpath_var"; then add_shlibpath=$dir add=-l$name else lib_linked=no fi ;; *) lib_linked=no ;; esac if test yes != "$lib_linked"; then func_fatal_configuration "unsupported hardcode properties" fi if test -n "$add_shlibpath"; then case :$compile_shlibpath: in *":$add_shlibpath:"*) ;; *) func_append compile_shlibpath "$add_shlibpath:" ;; esac fi if test prog = "$linkmode"; then test -n "$add_dir" && compile_deplibs="$add_dir $compile_deplibs" test -n "$add" && compile_deplibs="$add $compile_deplibs" else test -n "$add_dir" && deplibs="$add_dir $deplibs" test -n "$add" && deplibs="$add $deplibs" if test yes != "$hardcode_direct" && test yes != "$hardcode_minus_L" && test yes = "$hardcode_shlibpath_var"; then case :$finalize_shlibpath: in *":$libdir:"*) ;; *) func_append finalize_shlibpath "$libdir:" ;; esac fi fi fi if test prog = "$linkmode" || test relink = "$opt_mode"; then add_shlibpath= add_dir= add= # Finalize command for both is simple: just hardcode it. if test yes = "$hardcode_direct" && test no = "$hardcode_direct_absolute"; then add=$libdir/$linklib elif test yes = "$hardcode_minus_L"; then add_dir=-L$libdir add=-l$name elif test yes = "$hardcode_shlibpath_var"; then case :$finalize_shlibpath: in *":$libdir:"*) ;; *) func_append finalize_shlibpath "$libdir:" ;; esac add=-l$name elif test yes = "$hardcode_automatic"; then if test -n "$inst_prefix_dir" && test -f "$inst_prefix_dir$libdir/$linklib"; then add=$inst_prefix_dir$libdir/$linklib else add=$libdir/$linklib fi else # We cannot seem to hardcode it, guess we'll fake it. add_dir=-L$libdir # Try looking first in the location we're being installed to. if test -n "$inst_prefix_dir"; then case $libdir in [\\/]*) func_append add_dir " -L$inst_prefix_dir$libdir" ;; esac fi add=-l$name fi if test prog = "$linkmode"; then test -n "$add_dir" && finalize_deplibs="$add_dir $finalize_deplibs" test -n "$add" && finalize_deplibs="$add $finalize_deplibs" else test -n "$add_dir" && deplibs="$add_dir $deplibs" test -n "$add" && deplibs="$add $deplibs" fi fi elif test prog = "$linkmode"; then # Here we assume that one of hardcode_direct or hardcode_minus_L # is not unsupported. This is valid on all known static and # shared platforms. if test unsupported != "$hardcode_direct"; then test -n "$old_library" && linklib=$old_library compile_deplibs="$dir/$linklib $compile_deplibs" finalize_deplibs="$dir/$linklib $finalize_deplibs" else compile_deplibs="-l$name -L$dir $compile_deplibs" finalize_deplibs="-l$name -L$dir $finalize_deplibs" fi elif test yes = "$build_libtool_libs"; then # Not a shared library if test pass_all != "$deplibs_check_method"; then # We're trying link a shared library against a static one # but the system doesn't support it. # Just print a warning and add the library to dependency_libs so # that the program can be linked against the static library. echo $ECHO "*** Warning: This system cannot link to static lib archive $lib." echo "*** I have the capability to make that library automatically link in when" echo "*** you link to this library. But I can only do this if you have a" echo "*** shared version of the library, which you do not appear to have." if test yes = "$module"; then echo "*** But as you try to build a module library, libtool will still create " echo "*** a static module, that should work as long as the dlopening application" echo "*** is linked with the -dlopen flag to resolve symbols at runtime." if test -z "$global_symbol_pipe"; then echo echo "*** However, this would only work if libtool was able to extract symbol" echo "*** lists from a program, using 'nm' or equivalent, but libtool could" echo "*** not find such a program. So, this module is probably useless." echo "*** 'nm' from GNU binutils and a full rebuild may help." fi if test no = "$build_old_libs"; then build_libtool_libs=module build_old_libs=yes else build_libtool_libs=no fi fi else deplibs="$dir/$old_library $deplibs" link_static=yes fi fi # link shared/static library? if test lib = "$linkmode"; then if test -n "$dependency_libs" && { test yes != "$hardcode_into_libs" || test yes = "$build_old_libs" || test yes = "$link_static"; }; then # Extract -R from dependency_libs temp_deplibs= for libdir in $dependency_libs; do case $libdir in -R*) func_stripname '-R' '' "$libdir" temp_xrpath=$func_stripname_result case " $xrpath " in *" $temp_xrpath "*) ;; *) func_append xrpath " $temp_xrpath";; esac;; *) func_append temp_deplibs " $libdir";; esac done dependency_libs=$temp_deplibs fi func_append newlib_search_path " $absdir" # Link against this library test no = "$link_static" && newdependency_libs="$abs_ladir/$laname $newdependency_libs" # ... and its dependency_libs tmp_libs= for deplib in $dependency_libs; do newdependency_libs="$deplib $newdependency_libs" case $deplib in -L*) func_stripname '-L' '' "$deplib" func_resolve_sysroot "$func_stripname_result";; *) func_resolve_sysroot "$deplib" ;; esac if $opt_preserve_dup_deps; then case "$tmp_libs " in *" $func_resolve_sysroot_result "*) func_append specialdeplibs " $func_resolve_sysroot_result" ;; esac fi func_append tmp_libs " $func_resolve_sysroot_result" done if test no != "$link_all_deplibs"; then # Add the search paths of all dependency libraries for deplib in $dependency_libs; do path= case $deplib in -L*) path=$deplib ;; *.la) func_resolve_sysroot "$deplib" deplib=$func_resolve_sysroot_result func_dirname "$deplib" "" "." dir=$func_dirname_result # We need an absolute path. case $dir in [\\/]* | [A-Za-z]:[\\/]*) absdir=$dir ;; *) absdir=`cd "$dir" && pwd` if test -z "$absdir"; then func_warning "cannot determine absolute directory name of '$dir'" absdir=$dir fi ;; esac if $GREP "^installed=no" $deplib > /dev/null; then case $host in *-*-darwin*) depdepl= eval deplibrary_names=`$SED -n -e 's/^library_names=\(.*\)$/\1/p' $deplib` if test -n "$deplibrary_names"; then for tmp in $deplibrary_names; do depdepl=$tmp done if test -f "$absdir/$objdir/$depdepl"; then depdepl=$absdir/$objdir/$depdepl darwin_install_name=`$OTOOL -L $depdepl | awk '{if (NR == 2) {print $1;exit}}'` if test -z "$darwin_install_name"; then darwin_install_name=`$OTOOL64 -L $depdepl | awk '{if (NR == 2) {print $1;exit}}'` fi func_append compiler_flags " $wl-dylib_file $wl$darwin_install_name:$depdepl" func_append linker_flags " -dylib_file $darwin_install_name:$depdepl" path= fi fi ;; *) path=-L$absdir/$objdir ;; esac else eval libdir=`$SED -n -e 's/^libdir=\(.*\)$/\1/p' $deplib` test -z "$libdir" && \ func_fatal_error "'$deplib' is not a valid libtool archive" test "$absdir" != "$libdir" && \ func_warning "'$deplib' seems to be moved" path=-L$absdir fi ;; esac case " $deplibs " in *" $path "*) ;; *) deplibs="$path $deplibs" ;; esac done fi # link_all_deplibs != no fi # linkmode = lib done # for deplib in $libs if test link = "$pass"; then if test prog = "$linkmode"; then compile_deplibs="$new_inherited_linker_flags $compile_deplibs" finalize_deplibs="$new_inherited_linker_flags $finalize_deplibs" else compiler_flags="$compiler_flags "`$ECHO " $new_inherited_linker_flags" | $SED 's% \([^ $]*\).ltframework% -framework \1%g'` fi fi dependency_libs=$newdependency_libs if test dlpreopen = "$pass"; then # Link the dlpreopened libraries before other libraries for deplib in $save_deplibs; do deplibs="$deplib $deplibs" done fi if test dlopen != "$pass"; then test conv = "$pass" || { # Make sure lib_search_path contains only unique directories. lib_search_path= for dir in $newlib_search_path; do case "$lib_search_path " in *" $dir "*) ;; *) func_append lib_search_path " $dir" ;; esac done newlib_search_path= } if test prog,link = "$linkmode,$pass"; then vars="compile_deplibs finalize_deplibs" else vars=deplibs fi for var in $vars dependency_libs; do # Add libraries to $var in reverse order eval tmp_libs=\"\$$var\" new_libs= for deplib in $tmp_libs; do # FIXME: Pedantically, this is the right thing to do, so # that some nasty dependency loop isn't accidentally # broken: #new_libs="$deplib $new_libs" # Pragmatically, this seems to cause very few problems in # practice: case $deplib in -L*) new_libs="$deplib $new_libs" ;; -R*) ;; *) # And here is the reason: when a library appears more # than once as an explicit dependence of a library, or # is implicitly linked in more than once by the # compiler, it is considered special, and multiple # occurrences thereof are not removed. Compare this # with having the same library being listed as a # dependency of multiple other libraries: in this case, # we know (pedantically, we assume) the library does not # need to be listed more than once, so we keep only the # last copy. This is not always right, but it is rare # enough that we require users that really mean to play # such unportable linking tricks to link the library # using -Wl,-lname, so that libtool does not consider it # for duplicate removal. case " $specialdeplibs " in *" $deplib "*) new_libs="$deplib $new_libs" ;; *) case " $new_libs " in *" $deplib "*) ;; *) new_libs="$deplib $new_libs" ;; esac ;; esac ;; esac done tmp_libs= for deplib in $new_libs; do case $deplib in -L*) case " $tmp_libs " in *" $deplib "*) ;; *) func_append tmp_libs " $deplib" ;; esac ;; *) func_append tmp_libs " $deplib" ;; esac done eval $var=\"$tmp_libs\" done # for var fi # Add Sun CC postdeps if required: test CXX = "$tagname" && { case $host_os in linux*) case `$CC -V 2>&1 | sed 5q` in *Sun\ C*) # Sun C++ 5.9 func_suncc_cstd_abi if test no != "$suncc_use_cstd_abi"; then func_append postdeps ' -library=Cstd -library=Crun' fi ;; esac ;; solaris*) func_cc_basename "$CC" case $func_cc_basename_result in CC* | sunCC*) func_suncc_cstd_abi if test no != "$suncc_use_cstd_abi"; then func_append postdeps ' -library=Cstd -library=Crun' fi ;; esac ;; esac } # Last step: remove runtime libs from dependency_libs # (they stay in deplibs) tmp_libs= for i in $dependency_libs; do case " $predeps $postdeps $compiler_lib_search_path " in *" $i "*) i= ;; esac if test -n "$i"; then func_append tmp_libs " $i" fi done dependency_libs=$tmp_libs done # for pass if test prog = "$linkmode"; then dlfiles=$newdlfiles fi if test prog = "$linkmode" || test lib = "$linkmode"; then dlprefiles=$newdlprefiles fi case $linkmode in oldlib) if test -n "$dlfiles$dlprefiles" || test no != "$dlself"; then func_warning "'-dlopen' is ignored for archives" fi case " $deplibs" in *\ -l* | *\ -L*) func_warning "'-l' and '-L' are ignored for archives" ;; esac test -n "$rpath" && \ func_warning "'-rpath' is ignored for archives" test -n "$xrpath" && \ func_warning "'-R' is ignored for archives" test -n "$vinfo" && \ func_warning "'-version-info/-version-number' is ignored for archives" test -n "$release" && \ func_warning "'-release' is ignored for archives" test -n "$export_symbols$export_symbols_regex" && \ func_warning "'-export-symbols' is ignored for archives" # Now set the variables for building old libraries. build_libtool_libs=no oldlibs=$output func_append objs "$old_deplibs" ;; lib) # Make sure we only generate libraries of the form 'libNAME.la'. case $outputname in lib*) func_stripname 'lib' '.la' "$outputname" name=$func_stripname_result eval shared_ext=\"$shrext_cmds\" eval libname=\"$libname_spec\" ;; *) test no = "$module" \ && func_fatal_help "libtool library '$output' must begin with 'lib'" if test no != "$need_lib_prefix"; then # Add the "lib" prefix for modules if required func_stripname '' '.la' "$outputname" name=$func_stripname_result eval shared_ext=\"$shrext_cmds\" eval libname=\"$libname_spec\" else func_stripname '' '.la' "$outputname" libname=$func_stripname_result fi ;; esac if test -n "$objs"; then if test pass_all != "$deplibs_check_method"; then func_fatal_error "cannot build libtool library '$output' from non-libtool objects on this host:$objs" else echo $ECHO "*** Warning: Linking the shared library $output against the non-libtool" $ECHO "*** objects $objs is not portable!" func_append libobjs " $objs" fi fi test no = "$dlself" \ || func_warning "'-dlopen self' is ignored for libtool libraries" set dummy $rpath shift test 1 -lt "$#" \ && func_warning "ignoring multiple '-rpath's for a libtool library" install_libdir=$1 oldlibs= if test -z "$rpath"; then if test yes = "$build_libtool_libs"; then # Building a libtool convenience library. # Some compilers have problems with a '.al' extension so # convenience libraries should have the same extension an # archive normally would. oldlibs="$output_objdir/$libname.$libext $oldlibs" build_libtool_libs=convenience build_old_libs=yes fi test -n "$vinfo" && \ func_warning "'-version-info/-version-number' is ignored for convenience libraries" test -n "$release" && \ func_warning "'-release' is ignored for convenience libraries" else # Parse the version information argument. save_ifs=$IFS; IFS=: set dummy $vinfo 0 0 0 shift IFS=$save_ifs test -n "$7" && \ func_fatal_help "too many parameters to '-version-info'" # convert absolute version numbers to libtool ages # this retains compatibility with .la files and attempts # to make the code below a bit more comprehensible case $vinfo_number in yes) number_major=$1 number_minor=$2 number_revision=$3 # # There are really only two kinds -- those that # use the current revision as the major version # and those that subtract age and use age as # a minor version. But, then there is irix # that has an extra 1 added just for fun # case $version_type in # correct linux to gnu/linux during the next big refactor darwin|freebsd-elf|linux|osf|windows|none) func_arith $number_major + $number_minor current=$func_arith_result age=$number_minor revision=$number_revision ;; freebsd-aout|qnx|sunos) current=$number_major revision=$number_minor age=0 ;; irix|nonstopux) func_arith $number_major + $number_minor current=$func_arith_result age=$number_minor revision=$number_minor lt_irix_increment=no ;; esac ;; no) current=$1 revision=$2 age=$3 ;; esac # Check that each of the things are valid numbers. case $current in 0|[1-9]|[1-9][0-9]|[1-9][0-9][0-9]|[1-9][0-9][0-9][0-9]|[1-9][0-9][0-9][0-9][0-9]) ;; *) func_error "CURRENT '$current' must be a nonnegative integer" func_fatal_error "'$vinfo' is not valid version information" ;; esac case $revision in 0|[1-9]|[1-9][0-9]|[1-9][0-9][0-9]|[1-9][0-9][0-9][0-9]|[1-9][0-9][0-9][0-9][0-9]) ;; *) func_error "REVISION '$revision' must be a nonnegative integer" func_fatal_error "'$vinfo' is not valid version information" ;; esac case $age in 0|[1-9]|[1-9][0-9]|[1-9][0-9][0-9]|[1-9][0-9][0-9][0-9]|[1-9][0-9][0-9][0-9][0-9]) ;; *) func_error "AGE '$age' must be a nonnegative integer" func_fatal_error "'$vinfo' is not valid version information" ;; esac if test "$age" -gt "$current"; then func_error "AGE '$age' is greater than the current interface number '$current'" func_fatal_error "'$vinfo' is not valid version information" fi # Calculate the version variables. major= versuffix= verstring= case $version_type in none) ;; darwin) # Like Linux, but with the current version available in # verstring for coding it into the library header func_arith $current - $age major=.$func_arith_result versuffix=$major.$age.$revision # Darwin ld doesn't like 0 for these options... func_arith $current + 1 minor_current=$func_arith_result xlcverstring="$wl-compatibility_version $wl$minor_current $wl-current_version $wl$minor_current.$revision" verstring="-compatibility_version $minor_current -current_version $minor_current.$revision" # On Darwin other compilers case $CC in nagfor*) verstring="$wl-compatibility_version $wl$minor_current $wl-current_version $wl$minor_current.$revision" ;; *) verstring="-compatibility_version $minor_current -current_version $minor_current.$revision" ;; esac ;; freebsd-aout) major=.$current versuffix=.$current.$revision ;; freebsd-elf) func_arith $current - $age major=.$func_arith_result versuffix=$major.$age.$revision ;; irix | nonstopux) if test no = "$lt_irix_increment"; then func_arith $current - $age else func_arith $current - $age + 1 fi major=$func_arith_result case $version_type in nonstopux) verstring_prefix=nonstopux ;; *) verstring_prefix=sgi ;; esac verstring=$verstring_prefix$major.$revision # Add in all the interfaces that we are compatible with. loop=$revision while test 0 -ne "$loop"; do func_arith $revision - $loop iface=$func_arith_result func_arith $loop - 1 loop=$func_arith_result verstring=$verstring_prefix$major.$iface:$verstring done # Before this point, $major must not contain '.'. major=.$major versuffix=$major.$revision ;; linux) # correct to gnu/linux during the next big refactor func_arith $current - $age major=.$func_arith_result versuffix=$major.$age.$revision ;; osf) func_arith $current - $age major=.$func_arith_result versuffix=.$current.$age.$revision verstring=$current.$age.$revision # Add in all the interfaces that we are compatible with. loop=$age while test 0 -ne "$loop"; do func_arith $current - $loop iface=$func_arith_result func_arith $loop - 1 loop=$func_arith_result verstring=$verstring:$iface.0 done # Make executables depend on our current version. func_append verstring ":$current.0" ;; qnx) major=.$current versuffix=.$current ;; sco) major=.$current versuffix=.$current ;; sunos) major=.$current versuffix=.$current.$revision ;; windows) # Use '-' rather than '.', since we only want one # extension on DOS 8.3 file systems. func_arith $current - $age major=$func_arith_result versuffix=-$major ;; *) func_fatal_configuration "unknown library version type '$version_type'" ;; esac # Clear the version info if we defaulted, and they specified a release. if test -z "$vinfo" && test -n "$release"; then major= case $version_type in darwin) # we can't check for "0.0" in archive_cmds due to quoting # problems, so we reset it completely verstring= ;; *) verstring=0.0 ;; esac if test no = "$need_version"; then versuffix= else versuffix=.0.0 fi fi # Remove version info from name if versioning should be avoided if test yes,no = "$avoid_version,$need_version"; then major= versuffix= verstring= fi # Check to see if the archive will have undefined symbols. if test yes = "$allow_undefined"; then if test unsupported = "$allow_undefined_flag"; then if test yes = "$build_old_libs"; then func_warning "undefined symbols not allowed in $host shared libraries; building static only" build_libtool_libs=no else func_fatal_error "can't build $host shared library unless -no-undefined is specified" fi fi else # Don't allow undefined symbols. allow_undefined_flag=$no_undefined_flag fi fi func_generate_dlsyms "$libname" "$libname" : func_append libobjs " $symfileobj" test " " = "$libobjs" && libobjs= if test relink != "$opt_mode"; then # Remove our outputs, but don't remove object files since they # may have been created when compiling PIC objects. removelist= tempremovelist=`$ECHO "$output_objdir/*"` for p in $tempremovelist; do case $p in *.$objext | *.gcno) ;; $output_objdir/$outputname | $output_objdir/$libname.* | $output_objdir/$libname$release.*) if test -n "$precious_files_regex"; then if $ECHO "$p" | $EGREP -e "$precious_files_regex" >/dev/null 2>&1 then continue fi fi func_append removelist " $p" ;; *) ;; esac done test -n "$removelist" && \ func_show_eval "${RM}r \$removelist" fi # Now set the variables for building old libraries. if test yes = "$build_old_libs" && test convenience != "$build_libtool_libs"; then func_append oldlibs " $output_objdir/$libname.$libext" # Transform .lo files to .o files. oldobjs="$objs "`$ECHO "$libobjs" | $SP2NL | $SED "/\.$libext$/d; $lo2o" | $NL2SP` fi # Eliminate all temporary directories. #for path in $notinst_path; do # lib_search_path=`$ECHO "$lib_search_path " | $SED "s% $path % %g"` # deplibs=`$ECHO "$deplibs " | $SED "s% -L$path % %g"` # dependency_libs=`$ECHO "$dependency_libs " | $SED "s% -L$path % %g"` #done if test -n "$xrpath"; then # If the user specified any rpath flags, then add them. temp_xrpath= for libdir in $xrpath; do func_replace_sysroot "$libdir" func_append temp_xrpath " -R$func_replace_sysroot_result" case "$finalize_rpath " in *" $libdir "*) ;; *) func_append finalize_rpath " $libdir" ;; esac done if test yes != "$hardcode_into_libs" || test yes = "$build_old_libs"; then dependency_libs="$temp_xrpath $dependency_libs" fi fi # Make sure dlfiles contains only unique files that won't be dlpreopened old_dlfiles=$dlfiles dlfiles= for lib in $old_dlfiles; do case " $dlprefiles $dlfiles " in *" $lib "*) ;; *) func_append dlfiles " $lib" ;; esac done # Make sure dlprefiles contains only unique files old_dlprefiles=$dlprefiles dlprefiles= for lib in $old_dlprefiles; do case "$dlprefiles " in *" $lib "*) ;; *) func_append dlprefiles " $lib" ;; esac done if test yes = "$build_libtool_libs"; then if test -n "$rpath"; then case $host in *-*-cygwin* | *-*-mingw* | *-*-pw32* | *-*-os2* | *-*-beos* | *-cegcc* | *-*-haiku*) # these systems don't actually have a c library (as such)! ;; *-*-rhapsody* | *-*-darwin1.[012]) # Rhapsody C library is in the System framework func_append deplibs " System.ltframework" ;; *-*-netbsd*) # Don't link with libc until the a.out ld.so is fixed. ;; *-*-openbsd* | *-*-freebsd* | *-*-dragonfly*) # Do not include libc due to us having libc/libc_r. ;; *-*-sco3.2v5* | *-*-sco5v6*) # Causes problems with __ctype ;; *-*-sysv4.2uw2* | *-*-sysv5* | *-*-unixware* | *-*-OpenUNIX*) # Compiler inserts libc in the correct place for threads to work ;; *) # Add libc to deplibs on all other systems if necessary. if test yes = "$build_libtool_need_lc"; then func_append deplibs " -lc" fi ;; esac fi # Transform deplibs into only deplibs that can be linked in shared. name_save=$name libname_save=$libname release_save=$release versuffix_save=$versuffix major_save=$major # I'm not sure if I'm treating the release correctly. I think # release should show up in the -l (ie -lgmp5) so we don't want to # add it in twice. Is that correct? release= versuffix= major= newdeplibs= droppeddeps=no case $deplibs_check_method in pass_all) # Don't check for shared/static. Everything works. # This might be a little naive. We might want to check # whether the library exists or not. But this is on # osf3 & osf4 and I'm not really sure... Just # implementing what was already the behavior. newdeplibs=$deplibs ;; test_compile) # This code stresses the "libraries are programs" paradigm to its # limits. Maybe even breaks it. We compile a program, linking it # against the deplibs as a proxy for the library. Then we can check # whether they linked in statically or dynamically with ldd. $opt_dry_run || $RM conftest.c cat > conftest.c </dev/null` $nocaseglob else potential_libs=`ls $i/$libnameglob[.-]* 2>/dev/null` fi for potent_lib in $potential_libs; do # Follow soft links. if ls -lLd "$potent_lib" 2>/dev/null | $GREP " -> " >/dev/null; then continue fi # The statement above tries to avoid entering an # endless loop below, in case of cyclic links. # We might still enter an endless loop, since a link # loop can be closed while we follow links, # but so what? potlib=$potent_lib while test -h "$potlib" 2>/dev/null; do potliblink=`ls -ld $potlib | $SED 's/.* -> //'` case $potliblink in [\\/]* | [A-Za-z]:[\\/]*) potlib=$potliblink;; *) potlib=`$ECHO "$potlib" | $SED 's|[^/]*$||'`"$potliblink";; esac done if eval $file_magic_cmd \"\$potlib\" 2>/dev/null | $SED -e 10q | $EGREP "$file_magic_regex" > /dev/null; then func_append newdeplibs " $a_deplib" a_deplib= break 2 fi done done fi if test -n "$a_deplib"; then droppeddeps=yes echo $ECHO "*** Warning: linker path does not have real file for library $a_deplib." echo "*** I have the capability to make that library automatically link in when" echo "*** you link to this library. But I can only do this if you have a" echo "*** shared version of the library, which you do not appear to have" echo "*** because I did check the linker path looking for a file starting" if test -z "$potlib"; then $ECHO "*** with $libname but no candidates were found. (...for file magic test)" else $ECHO "*** with $libname and none of the candidates passed a file format test" $ECHO "*** using a file magic. Last file checked: $potlib" fi fi ;; *) # Add a -L argument. func_append newdeplibs " $a_deplib" ;; esac done # Gone through all deplibs. ;; match_pattern*) set dummy $deplibs_check_method; shift match_pattern_regex=`expr "$deplibs_check_method" : "$1 \(.*\)"` for a_deplib in $deplibs; do case $a_deplib in -l*) func_stripname -l '' "$a_deplib" name=$func_stripname_result if test yes = "$allow_libtool_libs_with_static_runtimes"; then case " $predeps $postdeps " in *" $a_deplib "*) func_append newdeplibs " $a_deplib" a_deplib= ;; esac fi if test -n "$a_deplib"; then libname=`eval "\\$ECHO \"$libname_spec\""` for i in $lib_search_path $sys_lib_search_path $shlib_search_path; do potential_libs=`ls $i/$libname[.-]* 2>/dev/null` for potent_lib in $potential_libs; do potlib=$potent_lib # see symlink-check above in file_magic test if eval "\$ECHO \"$potent_lib\"" 2>/dev/null | $SED 10q | \ $EGREP "$match_pattern_regex" > /dev/null; then func_append newdeplibs " $a_deplib" a_deplib= break 2 fi done done fi if test -n "$a_deplib"; then droppeddeps=yes echo $ECHO "*** Warning: linker path does not have real file for library $a_deplib." echo "*** I have the capability to make that library automatically link in when" echo "*** you link to this library. But I can only do this if you have a" echo "*** shared version of the library, which you do not appear to have" echo "*** because I did check the linker path looking for a file starting" if test -z "$potlib"; then $ECHO "*** with $libname but no candidates were found. (...for regex pattern test)" else $ECHO "*** with $libname and none of the candidates passed a file format test" $ECHO "*** using a regex pattern. Last file checked: $potlib" fi fi ;; *) # Add a -L argument. func_append newdeplibs " $a_deplib" ;; esac done # Gone through all deplibs. ;; none | unknown | *) newdeplibs= tmp_deplibs=`$ECHO " $deplibs" | $SED 's/ -lc$//; s/ -[LR][^ ]*//g'` if test yes = "$allow_libtool_libs_with_static_runtimes"; then for i in $predeps $postdeps; do # can't use Xsed below, because $i might contain '/' tmp_deplibs=`$ECHO " $tmp_deplibs" | $SED "s|$i||"` done fi case $tmp_deplibs in *[!\ \ ]*) echo if test none = "$deplibs_check_method"; then echo "*** Warning: inter-library dependencies are not supported in this platform." else echo "*** Warning: inter-library dependencies are not known to be supported." fi echo "*** All declared inter-library dependencies are being dropped." droppeddeps=yes ;; esac ;; esac versuffix=$versuffix_save major=$major_save release=$release_save libname=$libname_save name=$name_save case $host in *-*-rhapsody* | *-*-darwin1.[012]) # On Rhapsody replace the C library with the System framework newdeplibs=`$ECHO " $newdeplibs" | $SED 's/ -lc / System.ltframework /'` ;; esac if test yes = "$droppeddeps"; then if test yes = "$module"; then echo echo "*** Warning: libtool could not satisfy all declared inter-library" $ECHO "*** dependencies of module $libname. Therefore, libtool will create" echo "*** a static module, that should work as long as the dlopening" echo "*** application is linked with the -dlopen flag." if test -z "$global_symbol_pipe"; then echo echo "*** However, this would only work if libtool was able to extract symbol" echo "*** lists from a program, using 'nm' or equivalent, but libtool could" echo "*** not find such a program. So, this module is probably useless." echo "*** 'nm' from GNU binutils and a full rebuild may help." fi if test no = "$build_old_libs"; then oldlibs=$output_objdir/$libname.$libext build_libtool_libs=module build_old_libs=yes else build_libtool_libs=no fi else echo "*** The inter-library dependencies that have been dropped here will be" echo "*** automatically added whenever a program is linked with this library" echo "*** or is declared to -dlopen it." if test no = "$allow_undefined"; then echo echo "*** Since this library must not contain undefined symbols," echo "*** because either the platform does not support them or" echo "*** it was explicitly requested with -no-undefined," echo "*** libtool will only create a static version of it." if test no = "$build_old_libs"; then oldlibs=$output_objdir/$libname.$libext build_libtool_libs=module build_old_libs=yes else build_libtool_libs=no fi fi fi fi # Done checking deplibs! deplibs=$newdeplibs fi # Time to change all our "foo.ltframework" stuff back to "-framework foo" case $host in *-*-darwin*) newdeplibs=`$ECHO " $newdeplibs" | $SED 's% \([^ $]*\).ltframework% -framework \1%g'` new_inherited_linker_flags=`$ECHO " $new_inherited_linker_flags" | $SED 's% \([^ $]*\).ltframework% -framework \1%g'` deplibs=`$ECHO " $deplibs" | $SED 's% \([^ $]*\).ltframework% -framework \1%g'` ;; esac # move library search paths that coincide with paths to not yet # installed libraries to the beginning of the library search list new_libs= for path in $notinst_path; do case " $new_libs " in *" -L$path/$objdir "*) ;; *) case " $deplibs " in *" -L$path/$objdir "*) func_append new_libs " -L$path/$objdir" ;; esac ;; esac done for deplib in $deplibs; do case $deplib in -L*) case " $new_libs " in *" $deplib "*) ;; *) func_append new_libs " $deplib" ;; esac ;; *) func_append new_libs " $deplib" ;; esac done deplibs=$new_libs # All the library-specific variables (install_libdir is set above). library_names= old_library= dlname= # Test again, we may have decided not to build it any more if test yes = "$build_libtool_libs"; then # Remove $wl instances when linking with ld. # FIXME: should test the right _cmds variable. case $archive_cmds in *\$LD\ *) wl= ;; esac if test yes = "$hardcode_into_libs"; then # Hardcode the library paths hardcode_libdirs= dep_rpath= rpath=$finalize_rpath test relink = "$opt_mode" || rpath=$compile_rpath$rpath for libdir in $rpath; do if test -n "$hardcode_libdir_flag_spec"; then if test -n "$hardcode_libdir_separator"; then func_replace_sysroot "$libdir" libdir=$func_replace_sysroot_result if test -z "$hardcode_libdirs"; then hardcode_libdirs=$libdir else # Just accumulate the unique libdirs. case $hardcode_libdir_separator$hardcode_libdirs$hardcode_libdir_separator in *"$hardcode_libdir_separator$libdir$hardcode_libdir_separator"*) ;; *) func_append hardcode_libdirs "$hardcode_libdir_separator$libdir" ;; esac fi else eval flag=\"$hardcode_libdir_flag_spec\" func_append dep_rpath " $flag" fi elif test -n "$runpath_var"; then case "$perm_rpath " in *" $libdir "*) ;; *) func_append perm_rpath " $libdir" ;; esac fi done # Substitute the hardcoded libdirs into the rpath. if test -n "$hardcode_libdir_separator" && test -n "$hardcode_libdirs"; then libdir=$hardcode_libdirs eval "dep_rpath=\"$hardcode_libdir_flag_spec\"" fi if test -n "$runpath_var" && test -n "$perm_rpath"; then # We should set the runpath_var. rpath= for dir in $perm_rpath; do func_append rpath "$dir:" done eval "$runpath_var='$rpath\$$runpath_var'; export $runpath_var" fi test -n "$dep_rpath" && deplibs="$dep_rpath $deplibs" fi shlibpath=$finalize_shlibpath test relink = "$opt_mode" || shlibpath=$compile_shlibpath$shlibpath if test -n "$shlibpath"; then eval "$shlibpath_var='$shlibpath\$$shlibpath_var'; export $shlibpath_var" fi # Get the real and link names of the library. eval shared_ext=\"$shrext_cmds\" eval library_names=\"$library_names_spec\" set dummy $library_names shift realname=$1 shift if test -n "$soname_spec"; then eval soname=\"$soname_spec\" else soname=$realname fi if test -z "$dlname"; then dlname=$soname fi lib=$output_objdir/$realname linknames= for link do func_append linknames " $link" done # Use standard objects if they are pic test -z "$pic_flag" && libobjs=`$ECHO "$libobjs" | $SP2NL | $SED "$lo2o" | $NL2SP` test "X$libobjs" = "X " && libobjs= delfiles= if test -n "$export_symbols" && test -n "$include_expsyms"; then $opt_dry_run || cp "$export_symbols" "$output_objdir/$libname.uexp" export_symbols=$output_objdir/$libname.uexp func_append delfiles " $export_symbols" fi orig_export_symbols= case $host_os in cygwin* | mingw* | cegcc*) if test -n "$export_symbols" && test -z "$export_symbols_regex"; then # exporting using user supplied symfile func_dll_def_p "$export_symbols" || { # and it's NOT already a .def file. Must figure out # which of the given symbols are data symbols and tag # them as such. So, trigger use of export_symbols_cmds. # export_symbols gets reassigned inside the "prepare # the list of exported symbols" if statement, so the # include_expsyms logic still works. orig_export_symbols=$export_symbols export_symbols= always_export_symbols=yes } fi ;; esac # Prepare the list of exported symbols if test -z "$export_symbols"; then if test yes = "$always_export_symbols" || test -n "$export_symbols_regex"; then func_verbose "generating symbol list for '$libname.la'" export_symbols=$output_objdir/$libname.exp $opt_dry_run || $RM $export_symbols cmds=$export_symbols_cmds save_ifs=$IFS; IFS='~' for cmd1 in $cmds; do IFS=$save_ifs # Take the normal branch if the nm_file_list_spec branch # doesn't work or if tool conversion is not needed. case $nm_file_list_spec~$to_tool_file_cmd in *~func_convert_file_noop | *~func_convert_file_msys_to_w32 | ~*) try_normal_branch=yes eval cmd=\"$cmd1\" func_len " $cmd" len=$func_len_result ;; *) try_normal_branch=no ;; esac if test yes = "$try_normal_branch" \ && { test "$len" -lt "$max_cmd_len" \ || test "$max_cmd_len" -le -1; } then func_show_eval "$cmd" 'exit $?' skipped_export=false elif test -n "$nm_file_list_spec"; then func_basename "$output" output_la=$func_basename_result save_libobjs=$libobjs save_output=$output output=$output_objdir/$output_la.nm func_to_tool_file "$output" libobjs=$nm_file_list_spec$func_to_tool_file_result func_append delfiles " $output" func_verbose "creating $NM input file list: $output" for obj in $save_libobjs; do func_to_tool_file "$obj" $ECHO "$func_to_tool_file_result" done > "$output" eval cmd=\"$cmd1\" func_show_eval "$cmd" 'exit $?' output=$save_output libobjs=$save_libobjs skipped_export=false else # The command line is too long to execute in one step. func_verbose "using reloadable object file for export list..." skipped_export=: # Break out early, otherwise skipped_export may be # set to false by a later but shorter cmd. break fi done IFS=$save_ifs if test -n "$export_symbols_regex" && test : != "$skipped_export"; then func_show_eval '$EGREP -e "$export_symbols_regex" "$export_symbols" > "${export_symbols}T"' func_show_eval '$MV "${export_symbols}T" "$export_symbols"' fi fi fi if test -n "$export_symbols" && test -n "$include_expsyms"; then tmp_export_symbols=$export_symbols test -n "$orig_export_symbols" && tmp_export_symbols=$orig_export_symbols $opt_dry_run || eval '$ECHO "$include_expsyms" | $SP2NL >> "$tmp_export_symbols"' fi if test : != "$skipped_export" && test -n "$orig_export_symbols"; then # The given exports_symbols file has to be filtered, so filter it. func_verbose "filter symbol list for '$libname.la' to tag DATA exports" # FIXME: $output_objdir/$libname.filter potentially contains lots of # 's' commands, which not all seds can handle. GNU sed should be fine # though. Also, the filter scales superlinearly with the number of # global variables. join(1) would be nice here, but unfortunately # isn't a blessed tool. $opt_dry_run || $SED -e '/[ ,]DATA/!d;s,\(.*\)\([ \,].*\),s|^\1$|\1\2|,' < $export_symbols > $output_objdir/$libname.filter func_append delfiles " $export_symbols $output_objdir/$libname.filter" export_symbols=$output_objdir/$libname.def $opt_dry_run || $SED -f $output_objdir/$libname.filter < $orig_export_symbols > $export_symbols fi tmp_deplibs= for test_deplib in $deplibs; do case " $convenience " in *" $test_deplib "*) ;; *) func_append tmp_deplibs " $test_deplib" ;; esac done deplibs=$tmp_deplibs if test -n "$convenience"; then if test -n "$whole_archive_flag_spec" && test yes = "$compiler_needs_object" && test -z "$libobjs"; then # extract the archives, so we have objects to list. # TODO: could optimize this to just extract one archive. whole_archive_flag_spec= fi if test -n "$whole_archive_flag_spec"; then save_libobjs=$libobjs eval libobjs=\"\$libobjs $whole_archive_flag_spec\" test "X$libobjs" = "X " && libobjs= else gentop=$output_objdir/${outputname}x func_append generated " $gentop" func_extract_archives $gentop $convenience func_append libobjs " $func_extract_archives_result" test "X$libobjs" = "X " && libobjs= fi fi if test yes = "$thread_safe" && test -n "$thread_safe_flag_spec"; then eval flag=\"$thread_safe_flag_spec\" func_append linker_flags " $flag" fi # Make a backup of the uninstalled library when relinking if test relink = "$opt_mode"; then $opt_dry_run || eval '(cd $output_objdir && $RM ${realname}U && $MV $realname ${realname}U)' || exit $? fi # Do each of the archive commands. if test yes = "$module" && test -n "$module_cmds"; then if test -n "$export_symbols" && test -n "$module_expsym_cmds"; then eval test_cmds=\"$module_expsym_cmds\" cmds=$module_expsym_cmds else eval test_cmds=\"$module_cmds\" cmds=$module_cmds fi else if test -n "$export_symbols" && test -n "$archive_expsym_cmds"; then eval test_cmds=\"$archive_expsym_cmds\" cmds=$archive_expsym_cmds else eval test_cmds=\"$archive_cmds\" cmds=$archive_cmds fi fi if test : != "$skipped_export" && func_len " $test_cmds" && len=$func_len_result && test "$len" -lt "$max_cmd_len" || test "$max_cmd_len" -le -1; then : else # The command line is too long to link in one step, link piecewise # or, if using GNU ld and skipped_export is not :, use a linker # script. # Save the value of $output and $libobjs because we want to # use them later. If we have whole_archive_flag_spec, we # want to use save_libobjs as it was before # whole_archive_flag_spec was expanded, because we can't # assume the linker understands whole_archive_flag_spec. # This may have to be revisited, in case too many # convenience libraries get linked in and end up exceeding # the spec. if test -z "$convenience" || test -z "$whole_archive_flag_spec"; then save_libobjs=$libobjs fi save_output=$output func_basename "$output" output_la=$func_basename_result # Clear the reloadable object creation command queue and # initialize k to one. test_cmds= concat_cmds= objlist= last_robj= k=1 if test -n "$save_libobjs" && test : != "$skipped_export" && test yes = "$with_gnu_ld"; then output=$output_objdir/$output_la.lnkscript func_verbose "creating GNU ld script: $output" echo 'INPUT (' > $output for obj in $save_libobjs do func_to_tool_file "$obj" $ECHO "$func_to_tool_file_result" >> $output done echo ')' >> $output func_append delfiles " $output" func_to_tool_file "$output" output=$func_to_tool_file_result elif test -n "$save_libobjs" && test : != "$skipped_export" && test -n "$file_list_spec"; then output=$output_objdir/$output_la.lnk func_verbose "creating linker input file list: $output" : > $output set x $save_libobjs shift firstobj= if test yes = "$compiler_needs_object"; then firstobj="$1 " shift fi for obj do func_to_tool_file "$obj" $ECHO "$func_to_tool_file_result" >> $output done func_append delfiles " $output" func_to_tool_file "$output" output=$firstobj\"$file_list_spec$func_to_tool_file_result\" else if test -n "$save_libobjs"; then func_verbose "creating reloadable object files..." output=$output_objdir/$output_la-$k.$objext eval test_cmds=\"$reload_cmds\" func_len " $test_cmds" len0=$func_len_result len=$len0 # Loop over the list of objects to be linked. for obj in $save_libobjs do func_len " $obj" func_arith $len + $func_len_result len=$func_arith_result if test -z "$objlist" || test "$len" -lt "$max_cmd_len"; then func_append objlist " $obj" else # The command $test_cmds is almost too long, add a # command to the queue. if test 1 -eq "$k"; then # The first file doesn't have a previous command to add. reload_objs=$objlist eval concat_cmds=\"$reload_cmds\" else # All subsequent reloadable object files will link in # the last one created. reload_objs="$objlist $last_robj" eval concat_cmds=\"\$concat_cmds~$reload_cmds~\$RM $last_robj\" fi last_robj=$output_objdir/$output_la-$k.$objext func_arith $k + 1 k=$func_arith_result output=$output_objdir/$output_la-$k.$objext objlist=" $obj" func_len " $last_robj" func_arith $len0 + $func_len_result len=$func_arith_result fi done # Handle the remaining objects by creating one last # reloadable object file. All subsequent reloadable object # files will link in the last one created. test -z "$concat_cmds" || concat_cmds=$concat_cmds~ reload_objs="$objlist $last_robj" eval concat_cmds=\"\$concat_cmds$reload_cmds\" if test -n "$last_robj"; then eval concat_cmds=\"\$concat_cmds~\$RM $last_robj\" fi func_append delfiles " $output" else output= fi ${skipped_export-false} && { func_verbose "generating symbol list for '$libname.la'" export_symbols=$output_objdir/$libname.exp $opt_dry_run || $RM $export_symbols libobjs=$output # Append the command to create the export file. test -z "$concat_cmds" || concat_cmds=$concat_cmds~ eval concat_cmds=\"\$concat_cmds$export_symbols_cmds\" if test -n "$last_robj"; then eval concat_cmds=\"\$concat_cmds~\$RM $last_robj\" fi } test -n "$save_libobjs" && func_verbose "creating a temporary reloadable object file: $output" # Loop through the commands generated above and execute them. save_ifs=$IFS; IFS='~' for cmd in $concat_cmds; do IFS=$save_ifs $opt_quiet || { func_quote_for_expand "$cmd" eval "func_echo $func_quote_for_expand_result" } $opt_dry_run || eval "$cmd" || { lt_exit=$? # Restore the uninstalled library and exit if test relink = "$opt_mode"; then ( cd "$output_objdir" && \ $RM "${realname}T" && \ $MV "${realname}U" "$realname" ) fi exit $lt_exit } done IFS=$save_ifs if test -n "$export_symbols_regex" && ${skipped_export-false}; then func_show_eval '$EGREP -e "$export_symbols_regex" "$export_symbols" > "${export_symbols}T"' func_show_eval '$MV "${export_symbols}T" "$export_symbols"' fi fi ${skipped_export-false} && { if test -n "$export_symbols" && test -n "$include_expsyms"; then tmp_export_symbols=$export_symbols test -n "$orig_export_symbols" && tmp_export_symbols=$orig_export_symbols $opt_dry_run || eval '$ECHO "$include_expsyms" | $SP2NL >> "$tmp_export_symbols"' fi if test -n "$orig_export_symbols"; then # The given exports_symbols file has to be filtered, so filter it. func_verbose "filter symbol list for '$libname.la' to tag DATA exports" # FIXME: $output_objdir/$libname.filter potentially contains lots of # 's' commands, which not all seds can handle. GNU sed should be fine # though. Also, the filter scales superlinearly with the number of # global variables. join(1) would be nice here, but unfortunately # isn't a blessed tool. $opt_dry_run || $SED -e '/[ ,]DATA/!d;s,\(.*\)\([ \,].*\),s|^\1$|\1\2|,' < $export_symbols > $output_objdir/$libname.filter func_append delfiles " $export_symbols $output_objdir/$libname.filter" export_symbols=$output_objdir/$libname.def $opt_dry_run || $SED -f $output_objdir/$libname.filter < $orig_export_symbols > $export_symbols fi } libobjs=$output # Restore the value of output. output=$save_output if test -n "$convenience" && test -n "$whole_archive_flag_spec"; then eval libobjs=\"\$libobjs $whole_archive_flag_spec\" test "X$libobjs" = "X " && libobjs= fi # Expand the library linking commands again to reset the # value of $libobjs for piecewise linking. # Do each of the archive commands. if test yes = "$module" && test -n "$module_cmds"; then if test -n "$export_symbols" && test -n "$module_expsym_cmds"; then cmds=$module_expsym_cmds else cmds=$module_cmds fi else if test -n "$export_symbols" && test -n "$archive_expsym_cmds"; then cmds=$archive_expsym_cmds else cmds=$archive_cmds fi fi fi if test -n "$delfiles"; then # Append the command to remove temporary files to $cmds. eval cmds=\"\$cmds~\$RM $delfiles\" fi # Add any objects from preloaded convenience libraries if test -n "$dlprefiles"; then gentop=$output_objdir/${outputname}x func_append generated " $gentop" func_extract_archives $gentop $dlprefiles func_append libobjs " $func_extract_archives_result" test "X$libobjs" = "X " && libobjs= fi save_ifs=$IFS; IFS='~' for cmd in $cmds; do IFS=$sp$nl eval cmd=\"$cmd\" IFS=$save_ifs $opt_quiet || { func_quote_for_expand "$cmd" eval "func_echo $func_quote_for_expand_result" } $opt_dry_run || eval "$cmd" || { lt_exit=$? # Restore the uninstalled library and exit if test relink = "$opt_mode"; then ( cd "$output_objdir" && \ $RM "${realname}T" && \ $MV "${realname}U" "$realname" ) fi exit $lt_exit } done IFS=$save_ifs # Restore the uninstalled library and exit if test relink = "$opt_mode"; then $opt_dry_run || eval '(cd $output_objdir && $RM ${realname}T && $MV $realname ${realname}T && $MV ${realname}U $realname)' || exit $? if test -n "$convenience"; then if test -z "$whole_archive_flag_spec"; then func_show_eval '${RM}r "$gentop"' fi fi exit $EXIT_SUCCESS fi # Create links to the real library. for linkname in $linknames; do if test "$realname" != "$linkname"; then func_show_eval '(cd "$output_objdir" && $RM "$linkname" && $LN_S "$realname" "$linkname")' 'exit $?' fi done # If -module or -export-dynamic was specified, set the dlname. if test yes = "$module" || test yes = "$export_dynamic"; then # On all known operating systems, these are identical. dlname=$soname fi fi ;; obj) if test -n "$dlfiles$dlprefiles" || test no != "$dlself"; then func_warning "'-dlopen' is ignored for objects" fi case " $deplibs" in *\ -l* | *\ -L*) func_warning "'-l' and '-L' are ignored for objects" ;; esac test -n "$rpath" && \ func_warning "'-rpath' is ignored for objects" test -n "$xrpath" && \ func_warning "'-R' is ignored for objects" test -n "$vinfo" && \ func_warning "'-version-info' is ignored for objects" test -n "$release" && \ func_warning "'-release' is ignored for objects" case $output in *.lo) test -n "$objs$old_deplibs" && \ func_fatal_error "cannot build library object '$output' from non-libtool objects" libobj=$output func_lo2o "$libobj" obj=$func_lo2o_result ;; *) libobj= obj=$output ;; esac # Delete the old objects. $opt_dry_run || $RM $obj $libobj # Objects from convenience libraries. This assumes # single-version convenience libraries. Whenever we create # different ones for PIC/non-PIC, this we'll have to duplicate # the extraction. reload_conv_objs= gentop= # if reload_cmds runs $LD directly, get rid of -Wl from # whole_archive_flag_spec and hope we can get by with turning comma # into space. case $reload_cmds in *\$LD[\ \$]*) wl= ;; esac if test -n "$convenience"; then if test -n "$whole_archive_flag_spec"; then eval tmp_whole_archive_flags=\"$whole_archive_flag_spec\" test -n "$wl" || tmp_whole_archive_flags=`$ECHO "$tmp_whole_archive_flags" | $SED 's|,| |g'` reload_conv_objs=$reload_objs\ $tmp_whole_archive_flags else gentop=$output_objdir/${obj}x func_append generated " $gentop" func_extract_archives $gentop $convenience reload_conv_objs="$reload_objs $func_extract_archives_result" fi fi # If we're not building shared, we need to use non_pic_objs test yes = "$build_libtool_libs" || libobjs=$non_pic_objects # Create the old-style object. reload_objs=$objs$old_deplibs' '`$ECHO "$libobjs" | $SP2NL | $SED "/\.$libext$/d; /\.lib$/d; $lo2o" | $NL2SP`' '$reload_conv_objs output=$obj func_execute_cmds "$reload_cmds" 'exit $?' # Exit if we aren't doing a library object file. if test -z "$libobj"; then if test -n "$gentop"; then func_show_eval '${RM}r "$gentop"' fi exit $EXIT_SUCCESS fi test yes = "$build_libtool_libs" || { if test -n "$gentop"; then func_show_eval '${RM}r "$gentop"' fi # Create an invalid libtool object if no PIC, so that we don't # accidentally link it into a program. # $show "echo timestamp > $libobj" # $opt_dry_run || eval "echo timestamp > $libobj" || exit $? exit $EXIT_SUCCESS } if test -n "$pic_flag" || test default != "$pic_mode"; then # Only do commands if we really have different PIC objects. reload_objs="$libobjs $reload_conv_objs" output=$libobj func_execute_cmds "$reload_cmds" 'exit $?' fi if test -n "$gentop"; then func_show_eval '${RM}r "$gentop"' fi exit $EXIT_SUCCESS ;; prog) case $host in *cygwin*) func_stripname '' '.exe' "$output" output=$func_stripname_result.exe;; esac test -n "$vinfo" && \ func_warning "'-version-info' is ignored for programs" test -n "$release" && \ func_warning "'-release' is ignored for programs" $preload \ && test unknown,unknown,unknown = "$dlopen_support,$dlopen_self,$dlopen_self_static" \ && func_warning "'LT_INIT([dlopen])' not used. Assuming no dlopen support." case $host in *-*-rhapsody* | *-*-darwin1.[012]) # On Rhapsody replace the C library is the System framework compile_deplibs=`$ECHO " $compile_deplibs" | $SED 's/ -lc / System.ltframework /'` finalize_deplibs=`$ECHO " $finalize_deplibs" | $SED 's/ -lc / System.ltframework /'` ;; esac case $host in *-*-darwin*) # Don't allow lazy linking, it breaks C++ global constructors # But is supposedly fixed on 10.4 or later (yay!). if test CXX = "$tagname"; then case ${MACOSX_DEPLOYMENT_TARGET-10.0} in 10.[0123]) func_append compile_command " $wl-bind_at_load" func_append finalize_command " $wl-bind_at_load" ;; esac fi # Time to change all our "foo.ltframework" stuff back to "-framework foo" compile_deplibs=`$ECHO " $compile_deplibs" | $SED 's% \([^ $]*\).ltframework% -framework \1%g'` finalize_deplibs=`$ECHO " $finalize_deplibs" | $SED 's% \([^ $]*\).ltframework% -framework \1%g'` ;; esac # move library search paths that coincide with paths to not yet # installed libraries to the beginning of the library search list new_libs= for path in $notinst_path; do case " $new_libs " in *" -L$path/$objdir "*) ;; *) case " $compile_deplibs " in *" -L$path/$objdir "*) func_append new_libs " -L$path/$objdir" ;; esac ;; esac done for deplib in $compile_deplibs; do case $deplib in -L*) case " $new_libs " in *" $deplib "*) ;; *) func_append new_libs " $deplib" ;; esac ;; *) func_append new_libs " $deplib" ;; esac done compile_deplibs=$new_libs func_append compile_command " $compile_deplibs" func_append finalize_command " $finalize_deplibs" if test -n "$rpath$xrpath"; then # If the user specified any rpath flags, then add them. for libdir in $rpath $xrpath; do # This is the magic to use -rpath. case "$finalize_rpath " in *" $libdir "*) ;; *) func_append finalize_rpath " $libdir" ;; esac done fi # Now hardcode the library paths rpath= hardcode_libdirs= for libdir in $compile_rpath $finalize_rpath; do if test -n "$hardcode_libdir_flag_spec"; then if test -n "$hardcode_libdir_separator"; then if test -z "$hardcode_libdirs"; then hardcode_libdirs=$libdir else # Just accumulate the unique libdirs. case $hardcode_libdir_separator$hardcode_libdirs$hardcode_libdir_separator in *"$hardcode_libdir_separator$libdir$hardcode_libdir_separator"*) ;; *) func_append hardcode_libdirs "$hardcode_libdir_separator$libdir" ;; esac fi else eval flag=\"$hardcode_libdir_flag_spec\" func_append rpath " $flag" fi elif test -n "$runpath_var"; then case "$perm_rpath " in *" $libdir "*) ;; *) func_append perm_rpath " $libdir" ;; esac fi case $host in *-*-cygwin* | *-*-mingw* | *-*-pw32* | *-*-os2* | *-cegcc*) testbindir=`$ECHO "$libdir" | $SED -e 's*/lib$*/bin*'` case :$dllsearchpath: in *":$libdir:"*) ;; ::) dllsearchpath=$libdir;; *) func_append dllsearchpath ":$libdir";; esac case :$dllsearchpath: in *":$testbindir:"*) ;; ::) dllsearchpath=$testbindir;; *) func_append dllsearchpath ":$testbindir";; esac ;; esac done # Substitute the hardcoded libdirs into the rpath. if test -n "$hardcode_libdir_separator" && test -n "$hardcode_libdirs"; then libdir=$hardcode_libdirs eval rpath=\" $hardcode_libdir_flag_spec\" fi compile_rpath=$rpath rpath= hardcode_libdirs= for libdir in $finalize_rpath; do if test -n "$hardcode_libdir_flag_spec"; then if test -n "$hardcode_libdir_separator"; then if test -z "$hardcode_libdirs"; then hardcode_libdirs=$libdir else # Just accumulate the unique libdirs. case $hardcode_libdir_separator$hardcode_libdirs$hardcode_libdir_separator in *"$hardcode_libdir_separator$libdir$hardcode_libdir_separator"*) ;; *) func_append hardcode_libdirs "$hardcode_libdir_separator$libdir" ;; esac fi else eval flag=\"$hardcode_libdir_flag_spec\" func_append rpath " $flag" fi elif test -n "$runpath_var"; then case "$finalize_perm_rpath " in *" $libdir "*) ;; *) func_append finalize_perm_rpath " $libdir" ;; esac fi done # Substitute the hardcoded libdirs into the rpath. if test -n "$hardcode_libdir_separator" && test -n "$hardcode_libdirs"; then libdir=$hardcode_libdirs eval rpath=\" $hardcode_libdir_flag_spec\" fi finalize_rpath=$rpath if test -n "$libobjs" && test yes = "$build_old_libs"; then # Transform all the library objects into standard objects. compile_command=`$ECHO "$compile_command" | $SP2NL | $SED "$lo2o" | $NL2SP` finalize_command=`$ECHO "$finalize_command" | $SP2NL | $SED "$lo2o" | $NL2SP` fi func_generate_dlsyms "$outputname" "@PROGRAM@" false # template prelinking step if test -n "$prelink_cmds"; then func_execute_cmds "$prelink_cmds" 'exit $?' fi wrappers_required=: case $host in *cegcc* | *mingw32ce*) # Disable wrappers for cegcc and mingw32ce hosts, we are cross compiling anyway. wrappers_required=false ;; *cygwin* | *mingw* ) test yes = "$build_libtool_libs" || wrappers_required=false ;; *) if test no = "$need_relink" || test yes != "$build_libtool_libs"; then wrappers_required=false fi ;; esac $wrappers_required || { # Replace the output file specification. compile_command=`$ECHO "$compile_command" | $SED 's%@OUTPUT@%'"$output"'%g'` link_command=$compile_command$compile_rpath # We have no uninstalled library dependencies, so finalize right now. exit_status=0 func_show_eval "$link_command" 'exit_status=$?' if test -n "$postlink_cmds"; then func_to_tool_file "$output" postlink_cmds=`func_echo_all "$postlink_cmds" | $SED -e 's%@OUTPUT@%'"$output"'%g' -e 's%@TOOL_OUTPUT@%'"$func_to_tool_file_result"'%g'` func_execute_cmds "$postlink_cmds" 'exit $?' fi # Delete the generated files. if test -f "$output_objdir/${outputname}S.$objext"; then func_show_eval '$RM "$output_objdir/${outputname}S.$objext"' fi exit $exit_status } if test -n "$compile_shlibpath$finalize_shlibpath"; then compile_command="$shlibpath_var=\"$compile_shlibpath$finalize_shlibpath\$$shlibpath_var\" $compile_command" fi if test -n "$finalize_shlibpath"; then finalize_command="$shlibpath_var=\"$finalize_shlibpath\$$shlibpath_var\" $finalize_command" fi compile_var= finalize_var= if test -n "$runpath_var"; then if test -n "$perm_rpath"; then # We should set the runpath_var. rpath= for dir in $perm_rpath; do func_append rpath "$dir:" done compile_var="$runpath_var=\"$rpath\$$runpath_var\" " fi if test -n "$finalize_perm_rpath"; then # We should set the runpath_var. rpath= for dir in $finalize_perm_rpath; do func_append rpath "$dir:" done finalize_var="$runpath_var=\"$rpath\$$runpath_var\" " fi fi if test yes = "$no_install"; then # We don't need to create a wrapper script. link_command=$compile_var$compile_command$compile_rpath # Replace the output file specification. link_command=`$ECHO "$link_command" | $SED 's%@OUTPUT@%'"$output"'%g'` # Delete the old output file. $opt_dry_run || $RM $output # Link the executable and exit func_show_eval "$link_command" 'exit $?' if test -n "$postlink_cmds"; then func_to_tool_file "$output" postlink_cmds=`func_echo_all "$postlink_cmds" | $SED -e 's%@OUTPUT@%'"$output"'%g' -e 's%@TOOL_OUTPUT@%'"$func_to_tool_file_result"'%g'` func_execute_cmds "$postlink_cmds" 'exit $?' fi exit $EXIT_SUCCESS fi case $hardcode_action,$fast_install in relink,*) # Fast installation is not supported link_command=$compile_var$compile_command$compile_rpath relink_command=$finalize_var$finalize_command$finalize_rpath func_warning "this platform does not like uninstalled shared libraries" func_warning "'$output' will be relinked during installation" ;; *,yes) link_command=$finalize_var$compile_command$finalize_rpath relink_command=`$ECHO "$compile_var$compile_command$compile_rpath" | $SED 's%@OUTPUT@%\$progdir/\$file%g'` ;; *,no) link_command=$compile_var$compile_command$compile_rpath relink_command=$finalize_var$finalize_command$finalize_rpath ;; *,needless) link_command=$finalize_var$compile_command$finalize_rpath relink_command= ;; esac # Replace the output file specification. link_command=`$ECHO "$link_command" | $SED 's%@OUTPUT@%'"$output_objdir/$outputname"'%g'` # Delete the old output files. $opt_dry_run || $RM $output $output_objdir/$outputname $output_objdir/lt-$outputname func_show_eval "$link_command" 'exit $?' if test -n "$postlink_cmds"; then func_to_tool_file "$output_objdir/$outputname" postlink_cmds=`func_echo_all "$postlink_cmds" | $SED -e 's%@OUTPUT@%'"$output_objdir/$outputname"'%g' -e 's%@TOOL_OUTPUT@%'"$func_to_tool_file_result"'%g'` func_execute_cmds "$postlink_cmds" 'exit $?' fi # Now create the wrapper script. func_verbose "creating $output" # Quote the relink command for shipping. if test -n "$relink_command"; then # Preserve any variables that may affect compiler behavior for var in $variables_saved_for_relink; do if eval test -z \"\${$var+set}\"; then relink_command="{ test -z \"\${$var+set}\" || $lt_unset $var || { $var=; export $var; }; }; $relink_command" elif eval var_value=\$$var; test -z "$var_value"; then relink_command="$var=; export $var; $relink_command" else func_quote_for_eval "$var_value" relink_command="$var=$func_quote_for_eval_result; export $var; $relink_command" fi done relink_command="(cd `pwd`; $relink_command)" relink_command=`$ECHO "$relink_command" | $SED "$sed_quote_subst"` fi # Only actually do things if not in dry run mode. $opt_dry_run || { # win32 will think the script is a binary if it has # a .exe suffix, so we strip it off here. case $output in *.exe) func_stripname '' '.exe' "$output" output=$func_stripname_result ;; esac # test for cygwin because mv fails w/o .exe extensions case $host in *cygwin*) exeext=.exe func_stripname '' '.exe' "$outputname" outputname=$func_stripname_result ;; *) exeext= ;; esac case $host in *cygwin* | *mingw* ) func_dirname_and_basename "$output" "" "." output_name=$func_basename_result output_path=$func_dirname_result cwrappersource=$output_path/$objdir/lt-$output_name.c cwrapper=$output_path/$output_name.exe $RM $cwrappersource $cwrapper trap "$RM $cwrappersource $cwrapper; exit $EXIT_FAILURE" 1 2 15 func_emit_cwrapperexe_src > $cwrappersource # The wrapper executable is built using the $host compiler, # because it contains $host paths and files. If cross- # compiling, it, like the target executable, must be # executed on the $host or under an emulation environment. $opt_dry_run || { $LTCC $LTCFLAGS -o $cwrapper $cwrappersource $STRIP $cwrapper } # Now, create the wrapper script for func_source use: func_ltwrapper_scriptname $cwrapper $RM $func_ltwrapper_scriptname_result trap "$RM $func_ltwrapper_scriptname_result; exit $EXIT_FAILURE" 1 2 15 $opt_dry_run || { # note: this script will not be executed, so do not chmod. if test "x$build" = "x$host"; then $cwrapper --lt-dump-script > $func_ltwrapper_scriptname_result else func_emit_wrapper no > $func_ltwrapper_scriptname_result fi } ;; * ) $RM $output trap "$RM $output; exit $EXIT_FAILURE" 1 2 15 func_emit_wrapper no > $output chmod +x $output ;; esac } exit $EXIT_SUCCESS ;; esac # See if we need to build an old-fashioned archive. for oldlib in $oldlibs; do case $build_libtool_libs in convenience) oldobjs="$libobjs_save $symfileobj" addlibs=$convenience build_libtool_libs=no ;; module) oldobjs=$libobjs_save addlibs=$old_convenience build_libtool_libs=no ;; *) oldobjs="$old_deplibs $non_pic_objects" $preload && test -f "$symfileobj" \ && func_append oldobjs " $symfileobj" addlibs=$old_convenience ;; esac if test -n "$addlibs"; then gentop=$output_objdir/${outputname}x func_append generated " $gentop" func_extract_archives $gentop $addlibs func_append oldobjs " $func_extract_archives_result" fi # Do each command in the archive commands. if test -n "$old_archive_from_new_cmds" && test yes = "$build_libtool_libs"; then cmds=$old_archive_from_new_cmds else # Add any objects from preloaded convenience libraries if test -n "$dlprefiles"; then gentop=$output_objdir/${outputname}x func_append generated " $gentop" func_extract_archives $gentop $dlprefiles func_append oldobjs " $func_extract_archives_result" fi # POSIX demands no paths to be encoded in archives. We have # to avoid creating archives with duplicate basenames if we # might have to extract them afterwards, e.g., when creating a # static archive out of a convenience library, or when linking # the entirety of a libtool archive into another (currently # not supported by libtool). if (for obj in $oldobjs do func_basename "$obj" $ECHO "$func_basename_result" done | sort | sort -uc >/dev/null 2>&1); then : else echo "copying selected object files to avoid basename conflicts..." gentop=$output_objdir/${outputname}x func_append generated " $gentop" func_mkdir_p "$gentop" save_oldobjs=$oldobjs oldobjs= counter=1 for obj in $save_oldobjs do func_basename "$obj" objbase=$func_basename_result case " $oldobjs " in " ") oldobjs=$obj ;; *[\ /]"$objbase "*) while :; do # Make sure we don't pick an alternate name that also # overlaps. newobj=lt$counter-$objbase func_arith $counter + 1 counter=$func_arith_result case " $oldobjs " in *[\ /]"$newobj "*) ;; *) if test ! -f "$gentop/$newobj"; then break; fi ;; esac done func_show_eval "ln $obj $gentop/$newobj || cp $obj $gentop/$newobj" func_append oldobjs " $gentop/$newobj" ;; *) func_append oldobjs " $obj" ;; esac done fi func_to_tool_file "$oldlib" func_convert_file_msys_to_w32 tool_oldlib=$func_to_tool_file_result eval cmds=\"$old_archive_cmds\" func_len " $cmds" len=$func_len_result if test "$len" -lt "$max_cmd_len" || test "$max_cmd_len" -le -1; then cmds=$old_archive_cmds elif test -n "$archiver_list_spec"; then func_verbose "using command file archive linking..." for obj in $oldobjs do func_to_tool_file "$obj" $ECHO "$func_to_tool_file_result" done > $output_objdir/$libname.libcmd func_to_tool_file "$output_objdir/$libname.libcmd" oldobjs=" $archiver_list_spec$func_to_tool_file_result" cmds=$old_archive_cmds else # the command line is too long to link in one step, link in parts func_verbose "using piecewise archive linking..." save_RANLIB=$RANLIB RANLIB=: objlist= concat_cmds= save_oldobjs=$oldobjs oldobjs= # Is there a better way of finding the last object in the list? for obj in $save_oldobjs do last_oldobj=$obj done eval test_cmds=\"$old_archive_cmds\" func_len " $test_cmds" len0=$func_len_result len=$len0 for obj in $save_oldobjs do func_len " $obj" func_arith $len + $func_len_result len=$func_arith_result func_append objlist " $obj" if test "$len" -lt "$max_cmd_len"; then : else # the above command should be used before it gets too long oldobjs=$objlist if test "$obj" = "$last_oldobj"; then RANLIB=$save_RANLIB fi test -z "$concat_cmds" || concat_cmds=$concat_cmds~ eval concat_cmds=\"\$concat_cmds$old_archive_cmds\" objlist= len=$len0 fi done RANLIB=$save_RANLIB oldobjs=$objlist if test -z "$oldobjs"; then eval cmds=\"\$concat_cmds\" else eval cmds=\"\$concat_cmds~\$old_archive_cmds\" fi fi fi func_execute_cmds "$cmds" 'exit $?' done test -n "$generated" && \ func_show_eval "${RM}r$generated" # Now create the libtool archive. case $output in *.la) old_library= test yes = "$build_old_libs" && old_library=$libname.$libext func_verbose "creating $output" # Preserve any variables that may affect compiler behavior for var in $variables_saved_for_relink; do if eval test -z \"\${$var+set}\"; then relink_command="{ test -z \"\${$var+set}\" || $lt_unset $var || { $var=; export $var; }; }; $relink_command" elif eval var_value=\$$var; test -z "$var_value"; then relink_command="$var=; export $var; $relink_command" else func_quote_for_eval "$var_value" relink_command="$var=$func_quote_for_eval_result; export $var; $relink_command" fi done # Quote the link command for shipping. relink_command="(cd `pwd`; $SHELL \"$progpath\" $preserve_args --mode=relink $libtool_args @inst_prefix_dir@)" relink_command=`$ECHO "$relink_command" | $SED "$sed_quote_subst"` if test yes = "$hardcode_automatic"; then relink_command= fi # Only create the output if not a dry run. $opt_dry_run || { for installed in no yes; do if test yes = "$installed"; then if test -z "$install_libdir"; then break fi output=$output_objdir/${outputname}i # Replace all uninstalled libtool libraries with the installed ones newdependency_libs= for deplib in $dependency_libs; do case $deplib in *.la) func_basename "$deplib" name=$func_basename_result func_resolve_sysroot "$deplib" eval libdir=`$SED -n -e 's/^libdir=\(.*\)$/\1/p' $func_resolve_sysroot_result` test -z "$libdir" && \ func_fatal_error "'$deplib' is not a valid libtool archive" func_append newdependency_libs " ${lt_sysroot:+=}$libdir/$name" ;; -L*) func_stripname -L '' "$deplib" func_replace_sysroot "$func_stripname_result" func_append newdependency_libs " -L$func_replace_sysroot_result" ;; -R*) func_stripname -R '' "$deplib" func_replace_sysroot "$func_stripname_result" func_append newdependency_libs " -R$func_replace_sysroot_result" ;; *) func_append newdependency_libs " $deplib" ;; esac done dependency_libs=$newdependency_libs newdlfiles= for lib in $dlfiles; do case $lib in *.la) func_basename "$lib" name=$func_basename_result eval libdir=`$SED -n -e 's/^libdir=\(.*\)$/\1/p' $lib` test -z "$libdir" && \ func_fatal_error "'$lib' is not a valid libtool archive" func_append newdlfiles " ${lt_sysroot:+=}$libdir/$name" ;; *) func_append newdlfiles " $lib" ;; esac done dlfiles=$newdlfiles newdlprefiles= for lib in $dlprefiles; do case $lib in *.la) # Only pass preopened files to the pseudo-archive (for # eventual linking with the app. that links it) if we # didn't already link the preopened objects directly into # the library: func_basename "$lib" name=$func_basename_result eval libdir=`$SED -n -e 's/^libdir=\(.*\)$/\1/p' $lib` test -z "$libdir" && \ func_fatal_error "'$lib' is not a valid libtool archive" func_append newdlprefiles " ${lt_sysroot:+=}$libdir/$name" ;; esac done dlprefiles=$newdlprefiles else newdlfiles= for lib in $dlfiles; do case $lib in [\\/]* | [A-Za-z]:[\\/]*) abs=$lib ;; *) abs=`pwd`"/$lib" ;; esac func_append newdlfiles " $abs" done dlfiles=$newdlfiles newdlprefiles= for lib in $dlprefiles; do case $lib in [\\/]* | [A-Za-z]:[\\/]*) abs=$lib ;; *) abs=`pwd`"/$lib" ;; esac func_append newdlprefiles " $abs" done dlprefiles=$newdlprefiles fi $RM $output # place dlname in correct position for cygwin # In fact, it would be nice if we could use this code for all target # systems that can't hard-code library paths into their executables # and that have no shared library path variable independent of PATH, # but it turns out we can't easily determine that from inspecting # libtool variables, so we have to hard-code the OSs to which it # applies here; at the moment, that means platforms that use the PE # object format with DLL files. See the long comment at the top of # tests/bindir.at for full details. tdlname=$dlname case $host,$output,$installed,$module,$dlname in *cygwin*,*lai,yes,no,*.dll | *mingw*,*lai,yes,no,*.dll | *cegcc*,*lai,yes,no,*.dll) # If a -bindir argument was supplied, place the dll there. if test -n "$bindir"; then func_relative_path "$install_libdir" "$bindir" tdlname=$func_relative_path_result/$dlname else # Otherwise fall back on heuristic. tdlname=../bin/$dlname fi ;; esac $ECHO > $output "\ # $outputname - a libtool library file # Generated by $PROGRAM (GNU $PACKAGE) $VERSION # # Please DO NOT delete this file! # It is necessary for linking the library. # The name that we can dlopen(3). dlname='$tdlname' # Names of this library. library_names='$library_names' # The name of the static archive. old_library='$old_library' # Linker flags that cannot go in dependency_libs. inherited_linker_flags='$new_inherited_linker_flags' # Libraries that this one depends upon. dependency_libs='$dependency_libs' # Names of additional weak libraries provided by this library weak_library_names='$weak_libs' # Version information for $libname. current=$current age=$age revision=$revision # Is this an already installed library? installed=$installed # Should we warn about portability when linking against -modules? shouldnotlink=$module # Files to dlopen/dlpreopen dlopen='$dlfiles' dlpreopen='$dlprefiles' # Directory that this library needs to be installed in: libdir='$install_libdir'" if test no,yes = "$installed,$need_relink"; then $ECHO >> $output "\ relink_command=\"$relink_command\"" fi done } # Do a symbolic link so that the libtool archive can be found in # LD_LIBRARY_PATH before the program is installed. func_show_eval '( cd "$output_objdir" && $RM "$outputname" && $LN_S "../$outputname" "$outputname" )' 'exit $?' ;; esac exit $EXIT_SUCCESS } if test link = "$opt_mode" || test relink = "$opt_mode"; then func_mode_link ${1+"$@"} fi # func_mode_uninstall arg... func_mode_uninstall () { $debug_cmd RM=$nonopt files= rmforce=false exit_status=0 # This variable tells wrapper scripts just to set variables rather # than running their programs. libtool_install_magic=$magic for arg do case $arg in -f) func_append RM " $arg"; rmforce=: ;; -*) func_append RM " $arg" ;; *) func_append files " $arg" ;; esac done test -z "$RM" && \ func_fatal_help "you must specify an RM program" rmdirs= for file in $files; do func_dirname "$file" "" "." dir=$func_dirname_result if test . = "$dir"; then odir=$objdir else odir=$dir/$objdir fi func_basename "$file" name=$func_basename_result test uninstall = "$opt_mode" && odir=$dir # Remember odir for removal later, being careful to avoid duplicates if test clean = "$opt_mode"; then case " $rmdirs " in *" $odir "*) ;; *) func_append rmdirs " $odir" ;; esac fi # Don't error if the file doesn't exist and rm -f was used. if { test -L "$file"; } >/dev/null 2>&1 || { test -h "$file"; } >/dev/null 2>&1 || test -f "$file"; then : elif test -d "$file"; then exit_status=1 continue elif $rmforce; then continue fi rmfiles=$file case $name in *.la) # Possibly a libtool archive, so verify it. if func_lalib_p "$file"; then func_source $dir/$name # Delete the libtool libraries and symlinks. for n in $library_names; do func_append rmfiles " $odir/$n" done test -n "$old_library" && func_append rmfiles " $odir/$old_library" case $opt_mode in clean) case " $library_names " in *" $dlname "*) ;; *) test -n "$dlname" && func_append rmfiles " $odir/$dlname" ;; esac test -n "$libdir" && func_append rmfiles " $odir/$name $odir/${name}i" ;; uninstall) if test -n "$library_names"; then # Do each command in the postuninstall commands. func_execute_cmds "$postuninstall_cmds" '$rmforce || exit_status=1' fi if test -n "$old_library"; then # Do each command in the old_postuninstall commands. func_execute_cmds "$old_postuninstall_cmds" '$rmforce || exit_status=1' fi # FIXME: should reinstall the best remaining shared library. ;; esac fi ;; *.lo) # Possibly a libtool object, so verify it. if func_lalib_p "$file"; then # Read the .lo file func_source $dir/$name # Add PIC object to the list of files to remove. if test -n "$pic_object" && test none != "$pic_object"; then func_append rmfiles " $dir/$pic_object" fi # Add non-PIC object to the list of files to remove. if test -n "$non_pic_object" && test none != "$non_pic_object"; then func_append rmfiles " $dir/$non_pic_object" fi fi ;; *) if test clean = "$opt_mode"; then noexename=$name case $file in *.exe) func_stripname '' '.exe' "$file" file=$func_stripname_result func_stripname '' '.exe' "$name" noexename=$func_stripname_result # $file with .exe has already been added to rmfiles, # add $file without .exe func_append rmfiles " $file" ;; esac # Do a test to see if this is a libtool program. if func_ltwrapper_p "$file"; then if func_ltwrapper_executable_p "$file"; then func_ltwrapper_scriptname "$file" relink_command= func_source $func_ltwrapper_scriptname_result func_append rmfiles " $func_ltwrapper_scriptname_result" else relink_command= func_source $dir/$noexename fi # note $name still contains .exe if it was in $file originally # as does the version of $file that was added into $rmfiles func_append rmfiles " $odir/$name $odir/${name}S.$objext" if test yes = "$fast_install" && test -n "$relink_command"; then func_append rmfiles " $odir/lt-$name" fi if test "X$noexename" != "X$name"; then func_append rmfiles " $odir/lt-$noexename.c" fi fi fi ;; esac func_show_eval "$RM $rmfiles" 'exit_status=1' done # Try to remove the $objdir's in the directories where we deleted files for dir in $rmdirs; do if test -d "$dir"; then func_show_eval "rmdir $dir >/dev/null 2>&1" fi done exit $exit_status } if test uninstall = "$opt_mode" || test clean = "$opt_mode"; then func_mode_uninstall ${1+"$@"} fi test -z "$opt_mode" && { help=$generic_help func_fatal_help "you must specify a MODE" } test -z "$exec_cmd" && \ func_fatal_help "invalid operation mode '$opt_mode'" if test -n "$exec_cmd"; then eval exec "$exec_cmd" exit $EXIT_FAILURE fi exit $exit_status # The TAGs below are defined such that we never get into a situation # where we disable both kinds of libraries. Given conflicting # choices, we go for a static library, that is the most portable, # since we can't tell whether shared libraries were disabled because # the user asked for that or because the platform doesn't support # them. This is particularly important on AIX, because we don't # support having both static and shared libraries enabled at the same # time on that platform, so we default to a shared-only configuration. # If a disable-shared tag is given, we'll fallback to a static-only # configuration. But we'll never go from static-only to shared-only. # ### BEGIN LIBTOOL TAG CONFIG: disable-shared build_libtool_libs=no build_old_libs=yes # ### END LIBTOOL TAG CONFIG: disable-shared # ### BEGIN LIBTOOL TAG CONFIG: disable-static build_old_libs=`case $build_libtool_libs in yes) echo no;; *) echo yes;; esac` # ### END LIBTOOL TAG CONFIG: disable-static # Local Variables: # mode:shell-script # sh-indentation:2 # End: